1 tails (5.21) unstable; urgency=medium
3 * Upgrade to Tor Browser 13.0.7 based on Firefox 115.6 (tails/tails!1329)
6 - Upgrade to Tor Browser based on Firefox 115.6 (tails/tails#20067)
9 - Fetch Tor Browser from our own archive
10 - Upgrade Tor Browser to 13.0.7-build1
12 * Merge /lib/firmware → /usr/lib/firmware (tails/tails!1324)
15 - Ensure Tails 5.x (Bullseye, non-/usr-merged) can load all the firmware we
16 include (tails/tails#20075)
19 - Merge /lib/firmware → /usr/lib/firmware (refs: tails/tails#20075)
21 * upgrade kernel to 6.1.66 (tails/tails!1320)
24 - upgrade kernel to 6.1.66
26 * Upgrade Tor Browser to 13.0.6 (tails/tails!1316)
29 - Tor Browser sometimes crashes when clicking the uBlock icon (tails/tails#20061)
32 - Fetch Tor Browser from our own archive
33 - Upgrade Tor Browser to 13.0.6
35 * Help users when first-boot resizing fails and creates a semi-broken USB stick
39 - Help users when first-boot resizing fails and creates a semi-broken USB stick
43 - dialog text reflects our decision better
44 - usrmerge won't break our code
45 - set -o pipefail helps writing more robust code
46 - rename utils for consistency
47 - enable units (and rename them)
48 - Apply 1 suggestion(s) to 1 file(s)
49 - Actually send the report
50 - Add forgotten report-disk-errors.pot to po/POTFILES.in
51 - allow for report-disk-errors to be translated
52 - break up text so it's easier to translate
53 - better function name
54 - show UI for partition resize errors
55 - catch disk errors in flag file
57 * enable bookworm-updates and switch to kernel 6.1.67 (tails/tails!1330)
60 - Fix regressions introduced in Linux 6.1.66 (tails/tails#20086)
61 - Upgrade to Linux 6.1.67 (tails/tails#20091)
64 - enable bookworm-updates and switch to kernel 6.1.67
66 * Localize the clock displayed in the GNOME top bar (tails/tails!1328)
69 - Clock displayed by date@tails.boum.org is not localized (tails/tails#19895)
72 - tails-get-date: sort import block
73 - tails-get-date: reformat with Black
74 - tails-get-date: Try LANG when LC_TIME is empty
76 * Upgrade Linux to 6.1.66 on stable (tails/tails!1322)
79 - Upgrade to Linux 6.1.66 (tails/tails#20072)
82 - fixing line numbers in diff for #20033
83 - fix prestera location
84 - upgrade kernel to 6.1.66
85 - Update the snapshot of the Debian archive to 2023121004
87 * Resolve "Upgrade to tor 0.4.8.10" (tails/tails!1319)
90 - Upgrade to tor 0.4.8.10 (tails/tails#20080)
93 - upgrading tor to 0.4.8.10
95 * fix prestera location (tails/tails!1314)
98 - fix prestera location
100 * Have CI enforce Ruff linting rules for files modified by MRs (tails/tails!1311)
103 - Establish a coding standards baseline for our Python code base
105 - Add Ruff configuration (tails/tails#20049)
109 - refactor: plain text output is default
110 - junit output for ruff CI test
111 - explain differences
112 - developers style guidelines for Python
113 - apply CI suggestions
114 - isort. check that CI finds problems in this file
116 - resolve revisions to hash
117 - more specific filtering
120 * Fix incorrect check button label text when no target USB present
124 - Starting Tails Cloner without target USB has wrong message (tails/tails#20063)
127 - Resolve merge conflict of new formatting with changed `elif self.opts.partition
128 or not self.get_selected_drive():` line.
129 - Fix incorrect check button label text when no target USB present.
131 * Make time synchronization more robust: replace unreliable web servers in
132 htpdate pools (tails/tails!1307)
135 - Some web servers in our htpdate pool return incorrect time (tails/tails#19923)
138 - htpdate: replace www.thunderbird.net with www.gimp.org
139 - htpdate: replace en.wikipedia.org with www.openpgp.org
140 - htpdate: drop leap.se, replacing it with gnu.org, replacing it with
143 * tps error is in details, not in summary (tails/tails!1306)
146 - Revisit how we prefill WhisperBack reports with information from tps
150 - specify app that triggered the bug report
151 - summary and details have separate headers
153 * Tails Cloner: give more relevant "Backup Instructions" if clone Persistent
154 Storage checked (tails/tails!1305)
157 - Apply black formatting to `help_link.set_` lines in on_target_partition_changed
158 - Removed incorrect white space after def
159 on_check_button_clone_persistent_storage_toggled
160 - Clone Persistent Storage Toggle should call `on_target_partitions_changed` with
161 None argument since `combobox_target` parameter is unused.
162 - Change misleading method name on_target_changed to on_target_partitions_changed
163 - Show 'Backup Instructions' link if clone Persistent Storage checked
165 * Fix Tails Cloner bug: button sensitivity or labels don't update if source or
166 targets change #20042 (tails/tails!1302)
169 - Tails Cloner: Upgrade stays sensitive if tick clone Persistent Storage then
170 switch to a Tails target device (tails/tails#20042)
173 - Fix Tails Cloner bug: button sensitivity or labels don't update if source or
174 targets change #20042
176 * Reformat Python code with Black and enforce via GitLab CI (tails/tails!1300)
180 - Use Optional[TYPE], more readable that Union[None, TYPE]
181 - Document how to set up .git-blame-ignore-revs
182 - Document .git-blame-ignore-revs a bit
185 - More type hints fixes and modernization
187 - Type hints don't have to be comments anymore
188 - Move import to a type-checking block
189 - Greeter: fix most type annotations and mypy errors
191 - Add more revisions that git blame should ignore
192 - Add .git-blame-ignore-revs, referencing the first reformatting with Black
193 - Move "nosec blacklist" back where bandit honors it
194 - GitLab CI: enforce Black formatting of Python code
195 - Reformat with Black
196 - Add Black configuration
198 * Revert update to the Electrum incentive during our fundraiser
202 - Update the language for Electrum incentive during the donation campaign
206 - Revert "Update the Electrum incentive during our fundraiser"
208 -- Tails developers <tails@boum.org> Thu, 21 Dec 2023 10:34:04 +0000
210 tails (5.20) unstable; urgency=medium
212 * Upgrade Thunderbird to 1:115.5.0-1~deb11u1
214 * Upgrade Tor Browser to 13.0.4 (refs: tails/tails#20043) (tails/tails!1295)
217 - Upgrade to Tor Browser 13.0.4 based on Firefox 115.5 (tails/tails#20043)
220 - Upgrade Tor Browser to 13.0.4 (refs: tails/tails#20043)
222 * fixing line numbers in diff for #20033 (tails/tails!1298)
225 - fixing line numbers in diff for #20033
227 * GitLab CI: ensure Rubocop compliance (tails/tails!1301)
230 - Run Rubocop in GitLab CI (tails/tails#19307)
233 - Fix regression introduced by partial renaming in
234 5b46d28df4f40418cd6cde90b1fbbc9dd48b3c14
235 - Test suite: remove duplicate step
236 - Manually correct Rubocop offense
237 - Test suite: simplifications prompted by Rubocop
238 - Rubocop: replace obsolete parameters with their new names
239 - Manually correct or disable Rubocop offenses
240 - GitLab CI: test Rubocop compliance
241 - rubocop --regenerate-todo
242 - Manually correct or disable Rubocop offenses
243 - Rubocop: relax a few limits
244 - Manually correct or disable Rubocop offenses
245 - rubocop --autocorrect--all
246 - Rubocop: use 88 chars max line length
247 - Rubocop: target Ruby 3.1 (Bookworm)
248 - Test suite: work around the OSK not showing on new tabs
249 - Rubocop: silence false positive
250 - Test suite: fix more Rubocop offenses
252 - Explain why we're retrying and future nicer workaround
253 - Test suite: give some time when verifying that each action we took happened
254 - Test suite: verify that ctrl+a selected all of the address bar
255 - Test suite: don't focus the address bar in "open new tab" step
256 - Test suite: make browser helper work for all browsers
257 - Test suite: make Dogtail code work in all locales
258 - Test suite: retry inputting the URL into the browser navigation bar if it
259 failed (refs: tails/tails#20017)
261 * Test suite: remove obsolete localization of UnsafeBrowserStartPage.png
265 - Test suite: clean up obsolete localization of UnsafeBrowserStartPage.png
269 - Test suite: remove obsolete localization of UnsafeBrowserStartPage.png
271 * explain locale descriptions RM process (tails/tails!1297)
274 - Explain how to inspect the locale-descriptions diff during the release process
278 - clarify what to do when inspecting
280 - comment po-to-mozilla.toml
281 - clarifies relationship between code and process
283 * Draft: Resolve "devel branch FTBFS since the upgrade to uBlock 1.53"
287 - Ensure tails-debugging-info does not crash in case lsblk returns a non-zero
289 - Include more information about the boot device partition and filesystem layout
290 in WhisperBack reports
291 - partitioning: always "set -x"
292 - Include /var/log/boot.log in WhisperBack reports
293 - automailer supports content-type: html
294 - automailer: multiple x-attach fields
295 - Test suite: give sysadmins a chance to update OpenPGP keys before we fail
297 * tps: various bug fixes (tails/tails!1294)
300 - tpsd: TypeError: exceptions must derive from BaseException (tails/tails#20011)
304 - tps: use logger object consistently
305 - Remove now unused variable
306 - tps: don't log exception object twice
307 - tps: fix reporting of errors about refreshing state of features
308 - tps: Fix "return" used instead of "raise"
310 * Emacs: configure the perlnavigator Perl Language Server when used with the
311 Eglot LSP client (tails/tails!1291)
314 - Emacs: configure the perlnavigator Perl Language Server when used in
315 combination with the Eglot LSP client
317 * misc whisperback improvements (tails/tails!1290)
320 - Whisperback is only displayed in English (tails/tails#20040)
321 - Too many WhisperBack reports without description (tails/tails#19351)
322 - tails-debugging-info is available to amnesia-level attacker (tails/tails#19997)
325 - Fix what these comments are about
326 - Remove useless comment
327 - remove useless a11y code
328 - sort import modules better with isort
330 - WhisperBack: remove useless shebangs on files that are not meant to be executed
331 - Remove unused variable
332 - Remove unused variable
333 - WhisperBack: reformat with black
334 - WhisperBack: remove useless inheritance from object class
335 - WhisperBack: remove About dialog
338 - hidden_msg → details
339 - add a middle "technical details" frame
340 - headers are not editable
342 - remove useless instance variable
343 - Test suite: fix typo in WhisperBack name, improve phrasing of scenarios and
345 - put fields in bold, html markup only if needed
346 - use whisperback css to clean padding
347 - add trailing ellipsis
348 - more space between textareas
349 - ignore temporary files
350 - improve python linting
351 - don't maximize automatically
352 - UI matches design more closely
353 - report has more prefilled data
354 - tps sends more informative reports
355 - TPS sends prefill data to WhisperBack
356 - whisperback supports being prefilled
357 - redesign Whisperback UI
359 - automatic tests changed to reflect #19997
360 - fix whisperback localization
361 - only whisperback can read debug logs
363 * Make WhisperBack reports quicker to triage and possibly more actionable wrt.
364 unusual or buggy boot device partition topology (tails/tails!1289)
367 - Ensure tails-debugging-info does not crash in case lsblk returns a non-zero
369 - Include more information about the boot device partition and filesystem layout
370 in WhisperBack reports
371 - partitioning: always "set -x"
372 - Include /var/log/boot.log in WhisperBack reports
374 * Ensure uBlock does not download and enable additional per-region/language
375 blocklists (tails/tails!1287)
378 - uBlock enables and downloads per-region/language additional blocklists
382 - code slightly more readable
383 - extra newline makes reading easier
384 - Avoid fingerprinting by refreshing uBlock lists
385 - Ensure uBlock does not download and enable additional per-region/language
388 * automailer: more featuresss (tails/tails!1286)
391 - automailer supports content-type: html
392 - automailer: multiple x-attach fields
394 * Update the Electrum incentive during our fundraiser (tails/tails!1283)
397 - Update the language for Electrum incentive during the donation campaign
401 - Make comment match updated frequency
402 - Clarify test instructions
403 - Document how to test the incentives
404 - Update the Electrum incentive during our fundraiser
406 * Fix IUK test suite and make it test what it was meant to (tails/tails!1282)
409 - iuk test suite fails on sid: "A: constructing full path: invalid argument."
413 - IUK test suite: fix the ownership test
414 - IUK test suite: fix test for existence of file in SquashFS
415 - IUK test suite: ensure we can read the files we're going to pack
416 - IUK test suite: fix argument matching
418 * Test suite: retry inputting the URL into the browser navigation bar if it
419 failed (tails/tails!1277)
422 - Make opening URLs in the browser in the test suite reliable again
426 - Test suite: work around the OSK not showing on new tabs
427 - Rubocop: silence false positive
428 - Test suite: fix more Rubocop offenses
430 - Explain why we're retrying and future nicer workaround
431 - Test suite: give some time when verifying that each action we took happened
432 - Test suite: verify that ctrl+a selected all of the address bar
433 - Test suite: don't focus the address bar in "open new tab" step
434 - Test suite: make browser helper work for all browsers
435 - Test suite: make Dogtail code work in all locales
436 - Test suite: retry inputting the URL into the browser navigation bar if it
437 failed (refs: tails/tails#20017)
439 * Test suite: give sysadmins a chance to update OpenPGP keys before failing
443 - Test suite: give sysadmins a chance to update OpenPGP keys before we fail
445 * Tor blog post: shift all headings 1 level further (tails/tails!1270)
448 - Tor blog post: shift all headings 1 level further
450 * Test suite: allow Thunderbird to connect to test email server even if it's
451 within RFC1918 range (tails/tails!1268)
454 - Test suite: allow Thunderbird to connect to test email server even if it's
456 - Refactoring: extract code to method
457 - Move method to a more appropriate location
459 * Add script to recover lost translations (tails/tails!1263)
462 - Improve script documentation
463 - Do not try to recover obsolete translations
464 - use wrapwidth also for parsing.
467 - Use argparser and add width support.
468 - merge does too much -> create a own copy method.
469 - Add Recover-lost-translationy.py
471 * simplify locale-descriptions update during RM (tails/tails!1187)
474 - fix pipeline doctest dependencies
476 - output is sanitized and checked
478 - suggest mozilla-compatible locales
480 - update locale descriptions
481 - always show the second suggestion block
483 - documentation available to people that need to fix
484 - integrate with Gitlab CI
485 - more detailed process
486 - non-copypastable suggestions are more exhaustive
487 - separate generate and suggest usecases
488 - map more languages using semi-automated tool
490 - comments clarifying language
491 - automatically get suggestions
493 - some languages needs to be added anyway
495 - follow new process, new mozilla descriptions file
496 - change approach: only partially automated
497 - automatically generate locale list
499 -- Tails developers <tails@boum.org> Mon, 27 Nov 2023 12:54:50 +0100
501 tails (5.19.1) unstable; urgency=medium
503 * Upgrade tor to 0.4.8.9 (tails/tails!1285)
506 - Upgrade to tor 0.4.8.9 (tails/tails#20031)
509 - Upgrade tor to 0.4.8.9 (refs: tails/tails#20031)
511 * upgrade to tor 0.4.8.8 (tails/tails!1281)
514 - Upgrade to tor 0.4.8.8 (tails/tails#20018)
517 - upgrade to tor 0.4.8.8
519 * Test suite: adapt to subtle UI change in Thunderbird 115.4.1 (tails/tails!1271)
522 - Thunderbird test fails: can't find received test email in the UI while it's
523 there (tails/tails#20008)
526 - Test suite: adapt to subtle UI change in Thunderbird 115.4.1
528 * Help the RM when we FTBFS during release process due to an unused APT source
532 - FTBFS during release process when an unused APT source is configured
536 - Use clearer grep --recursive instead of rgrep
537 - Help the RM when we FTBFS during release process due to an unused APT source
539 -- Tails developers <tails@boum.org> Tue, 14 Nov 2023 11:55:39 +0100
541 tails (5.19) unstable; urgency=medium
543 * Upgrade to Tor Browser 13.0.1 based on Firefox 115.4 (tails/tails!1265)
546 - Upgrade to Tor Browser 13.0.1 based on Firefox 115.4 (tails/tails#19994)
549 - Tor Browser release process: adjust one more thing to new tarball naming scheme
550 - Upgrade Tor Browser to 13.0.1 (refs: tails/tails#19994)
552 * Update to Thunderbird 115 and re-enable Thunderbird automated tests
556 - Fix and re-enable "I can send emails, and receive emails over IMAP" automated
557 test: Certificate handling on Jenkins needs updating for Thunderbird 102
559 - Update to Thunderbird 115 (tails/tails#19885)
562 - Test suite: remove unused step
563 - Test suite: adapt steps for changes in Thunderbird 115 (refs:
565 - Test suite: dont import isotesters' snakeoil SSL cert anymore
566 - Test suite: re-enable "I can send emails, and receive emails over IMAP" test
567 - Update Thunderbird patches from
568 tails/thunderbird@b8b54f4bb25b028171be3b7548f2b7d309d5b61d
570 * Refresh Thunderbird patch (tails/tails!1257)
573 - Refresh Thunderbird patch
575 * Tor Browser 13 (tails/tails!1232)
578 - Upgrade to Tor Browser 13 based on Firefox 115 (tails/tails#19478)
581 - Test suite: adapt test to Tor Browser's download dialog having random roles
582 - Browsers: hide the bookmark toolbar
583 - Escape "." that's meant as a literal char, rather than a special regepx char
584 - Test suite: don't assign an assignment :)
585 - Test suite: add image due to new Italian translation
586 - Test suite: move browser-related scenarios from common_steps.rb to browser.rb
587 - Test suite: don't use translated string in Dogtail
588 - Test suite: adapt scenario for Tor Browser's New Identity feature vs version
590 - Test suite: rename step
592 - Tor Browser: hide Tor donation campaign in about:tor
593 - 10-tbb: don't create the profile directory outside of create_default_profile()
594 - Test suite: make sure browser URL bar is focused and ready for interaction
595 - Test suite: refactor
597 - Test suite: bump images for Tor Browser 13.0
598 - Upgrade Tor Browser to final 13.0 (refs: tails/tails#19478)
599 - Update (last time!) AppArmor policy for Tor Browser 13 (refs:
601 - onion-grater: log the rewrite of CIRC CLOSED events when tor-browser-mode is
603 - Update AppArmor policy for Tor Browser 13
604 - onion-grater: make the circuit leak prevention compatible with Tor Browser 13
605 - Upgrade Tor Browser to 13.0a6 (refs: tails/tails#19478)
606 - Upgrade Tor Browser to 13.0a5-build1 (refs: tails/tails#19478)
607 - Test suite: adapt test to Tor Browser 13.0a4's file download UX (refs:
609 - Upgrade Tor Browser to 13.0a4 (refs: tails/tails#19478)
610 - Update (again) AppArmor policy for Tor Browser 13 (refs: tails/tails#19478)
611 - Test suite: bump images
612 - Test suite: optimize
613 - Test suite: fix test where method names were mixed up
614 - Test suite: German uses a new separator in Tor Browser 13
615 - Adapt for new Tor Browser tarball naming scheme.
616 - Upgrade Tor Browser to 13.0a3-build1 (refs: tails/tails#19478)
617 - onion-grater: craft correct empty answers for `getinfo circuit-status`
618 - Clean up unnecessary json data
619 - Tor Browser: allow subscribing to CIRC events via onion-grater
620 - Unsafe Browser: disable uBlock Origin
621 - Update AppArmor policy for Tor Browser 13 (refs: tails/tails#19478)
622 - Browsers: hide warning when downloading files
623 - Test suite: revert from setting browser url with Dogtail's .text= to
625 - 10-tbb: sanity check that we migrated everything from TBB's profile
626 - 10-tbb: clean up TorBrowser sub-dir properly
627 - 10-tbb: remove potential residual file from inside omni.ja
628 - 10-tbb: adapt for upgrade to Tor Browser 13 (refs: tails/tails#19478)
629 - Upgrade Tor Browser to 13.0a2-build2
631 * add image for new translation (tails/tails!1264)
634 - Fix "Tails is localized for every tier-1 language, Examples (#6)"
638 - add image for new translation
640 * Upgrade to Linux 6.1.55-1 (tails/tails!1266)
643 - Upgrade to Linux 6.1.55 (tails/tails#20004)
646 - Upgrade to linux-image-6.1.0-13-amd64 (currently at version 6.1.55-1)
648 * Avoid errors when publishing UDFs (tails/tails!1260)
651 - run test from the right directory
652 - fix: diff-index exit code
653 - Apply 1 suggestion(s) to 1 file(s)
654 - less git commit errors
655 - manually check test udf
656 - More checks where I do errors
658 * Upgrade to Bullseye 11.8, tor 0.4.8.7, and OnionCircuits 0.8 (tails/tails!1259)
661 - Onion Circuits: please allow copying relay information (tails/tails#12114)
662 - OnionCircuits uses deprecated functions (tails/tails#19917)
663 - Replicate Vidalia's ability to close arbitrary circuits (tails/tails#8927)
664 - Release Onion Circuits 0.8 (tails/tails#19963)
665 - Upgrade to tor 0.4.8.7 (tails/tails#19978)
666 - Upgrade to Bullseye 11.8 (tails/tails#19957)
670 - onion-grater: allow OnionCircuits to close arbitrary circuits
671 - Install OnionCircuits from sid (currently 0.8)
672 - Upgrade to tor 0.4.8.7
673 - Upgrade to Bullseye 11.8
675 * post-5.18 release improvements (tails/tails!1254)
678 - Apply 3 suggestion(s) to 2 file(s)
681 - locale-independent output for date
682 - tests can be selected passing arguments
683 - announce-and-seed-torrents a bit more idempotent
685 - clarify what to do in case of "no"
686 - better merge-main-branch question
687 - some tips on configuring automailer
688 - some info on how to configure automailer
689 - thunderbird command can be customized
691 * Install sq-keyring-linter (tails/tails!1248)
694 - Add sq-keyring-linter to Tails images (tails/tails#19970)
697 - Install sq-keyring-linter
699 * fix deprecation warning (tails/tails!1140)
702 - date GNOME Shell extension uses deprecated JavaScript (tails/tails#19021)
705 - usage of object.actor is deprecated
706 - fix deprecation warning
708 -- Tails developers <tails@boum.org> Mon, 30 Oct 2023 07:45:10 +0000
710 tails (5.18) unstable; urgency=medium
712 * Resolve "Upgrade Tor Browser to 12.5.6" (tails/tails!1253)
715 - Upgrade Tor Browser to 12.5.6 (tails/tails#19983)
718 - Fetch Tor Browser from our own archive
719 - Upgrade Tor Browser to 12.5.6
721 * Update tor to 0.4.8.6 (tails/tails!1252)
724 - Upgrade to tor 0.4.8.6 (tails/tails#19977)
727 - Update tor to 0.4.8.6
729 * Upgrade to Linux linux-image-6.1.0-12-amd64 (currently version 6.1.52-1)
733 - Upgrade to Linux 6.1.52 (DSA 5492-1) (tails/tails#19967)
736 - Refresh webext-ublock-origin-firefox patch vs 1.51.0+dfsg-2
737 - Update the snapshot of the Debian archive to 2023092602
738 - Upgrade to Linux linux-image-6.1.0-12-amd64 (currently version 6.1.52-1)
740 * Upgrade to Tor Browser 12.5.5 (tails/tails!1249)
743 - Upgrade to Tor Browser 12.5.5 (tails/tails#19980)
746 - Fetch Tor Browser from our own archive
747 - Get ready for upcoming "git-annex sync" behavior change
748 - Upgrade Tor Browser to 12.5.5
750 * Fix cryptsetup backport (tails/tails!1240)
753 - Clarify reason why we install our cryptsetup backport
754 - Temporarily pin our cryptsetup 2:2.6.1-4~deb11u1~tails1 backport
755 - Needed package update: add exception for cryptsetup
756 - Enable the fix-cryptsetup-backport APT overlay
758 * Test suite: ensure node is focused after node.grabFocus (tails/tails!1235)
761 - Test suite: drop grabFocus workaround + simplify
762 - Test suite: drop grabFocus workaround + simplify
763 - Test suite: mechanically drop workaround that is now part of grabFocus
764 - Test suite: ensure node is focused after node.grabFocus
766 * Defer the chutney bootstrap check until we need Tor (tails/tails!1179)
769 - keep-snapshots is better avoided for release
770 - move script to its own file
771 - waiting chutney starts *after* test suite started
772 - test-rerun waits for chutney to be bootstrapped
773 - Release process: document how to run `chutney wait_for_bootstrap`
774 - Test suite: make --disable-chutney work again
775 - Test suite: be more careful about when we require Chutney to have bootstrapped
776 - Test suite: disable the network for the VM by default
777 - Test suite: debug_log chutney events instead of puts:ing
778 - Test suite: defer the chutney bootstrap check until we need Tor
780 -- Tails developers <tails@boum.org> Mon, 02 Oct 2023 11:26:32 +0200
782 tails (5.17.1) unstable; urgency=medium
784 * Upgrade Tor Browser to 12.5.4 (tails/tails!1244)
787 - Upgrade TorBrowser to 12.5.4 (tails/tails#19972)
790 - Upgrade Tor Browser to 12.5.4 (refs: tails/tails#19972)
792 * Update tor to 0.4.8.5 (tails/tails!1241)
795 - Support conflux circuits (tails/tails#19879)
796 - Upgrade to tor 0.4.8.x (tails/tails#19952)
799 - Update tor to 0.4.8.5 (refs: tails/tails#19952)
801 * Add $HOME/.local/bin to $PATH if it exists (tails/tails!1237)
804 - Add $HOME/.local/bin to $PATH if it exists Update .profile
806 -- Tails developers <tails@boum.org> Thu, 14 Sep 2023 20:06:20 +0200
808 tails (5.17) unstable; urgency=medium
810 * Upgrade Thunderbird to 1:102.15.0-1~deb11u1
812 * tps: make is_upgraded() require a single upgraded keyslot (tails/tails!1209)
815 - Upgrading Persistent Storage times out on some systems and displays an error in
816 the Welcome Screen but succeeds in the background (tails/tails#19728)
819 - tps: revert commented out code that was committed by mistake
820 - Enable the 19728-tps-upgrade-check-vs-corrupt-keys APT overlay (refs:
822 - tps: drop parsing of luksDump and use JSON instead
823 - Avoid variables named "match" which is a Python >= 3.10 keyword
824 - tps: assign variable to regexp for readability
826 - Welcome screen: bump timeout for activating persistence from 2m to 5m
827 - Welcome Screen: drop timeout for upgrading the persistent storage
828 - tps: redact sensitive information from luksDump in the logs
829 - tps: use more redable re.MULTILINE instead of re.M alias
830 - tps: make is_upgraded() require a single upgraded keyslot
832 * Upgrade Tor Browser to 12.5.3 (tails/tails!1238)
835 - Remove obsolete config/chroot_local-includes/usr/share/live/config/xserver-
836 xorg/*.ids (tails/tails#19330)
839 - Fetch Tor Browser from our own archive
840 - Upgrade Tor Browser to 12.5.3-build1
842 * Test suite: capture needed-package-updates's output by on failure
846 - Tets suite: capture needed-package-updates's output by on failure
848 * Enable all available printers. (tails/tails!1234)
851 - Enable all available printers.
853 * Test suite: make changing Persistent Storage passphrase, and deleting
854 Persistent Storage, more robust (tails/tails!1231)
857 - Flaky tests: Changing the Persistent Storage passphrase, deleting Persistent
858 Storage (tails/tails#19950)
862 - Test suite: make deleting the Persistent Storage more robust
863 - Test suite: make changing Persistent Storage passphrase more robust
865 * Remove manual manipulation of env of start-systemd-desktop-target
869 - Simplify start-systemd-desktop-target (tails/tails#16968)
872 - Remove manual manipulation of env of start-systemd-desktop-target
874 * Install printer-driver-brlaser (tails/tails!1228)
877 - Install printer-driver-brlaser (tails/tails#18254)
880 - Install printer-driver-brlaser
882 * Remove the plymouth.ignore-udev hack (tails/tails!1224)
885 - Check if we can get rid of the plymouth.ignore-udev hack in tails-gdm-failed-
886 to-start.service (tails/tails#16964)
889 - Remove the plymouth.ignore-udev hack.
891 * Resolve "Document how to deal with virt-viewer's CSD" (tails/tails!1223)
894 - Document how to deal with virt-viewer's CSD (tails/tails#19941)
897 - Make sure Tails APT signing key is trusted
898 - Update apt to ensure that apt-cache policy will present a candidate
899 - Test suite: check that virt-viewer is not affected by tails/tails#19064
900 - Set up automated test suite so it is not affected by tails/tails#19064
902 * Display binary package names if not everything needs an update
906 - Prevent version mismatches among binary packages from src:linux
910 - fix loop over issues
911 - Reformat with black
912 - Display binary package names· if not everything needs an update tails#16375
914 * Misc post-release fixes (tails/tails!1219)
917 - Lack of regex support in Dogtail's child method breaks Thunderbird tests
922 - Rewrite regexp to fit in Dogtail syntax
923 - test suite supports regexp
924 - workaround test hidden in test suite
925 - locale-independent output for date
927 * RM doc updates (tails/tails!1218)
930 - Apply 1 suggestion(s) to 1 file(s)
931 - twitter credentials explained
932 - expected timing updated
934 - list possible stages in rm-config help
935 - explicitly say which stage we're in now
940 * GitLab CI: allow forcing to run a pipeline by setting $CI_FORCE_RUN
944 - GitLab CI: allow forcing to run a pipeline by setting $CI_FORCE_RUN
946 * Rename Tails Installer as Tails Cloner (tails/tails!1200)
949 - Rename Tails Installer as Tails Cloner (tails/tails#16907)
952 - Rename Tails Installer as Tails Cloner
954 * Add script to detect needed package updates from Debian (tails/tails!1155)
957 - Prevent version mismatches among binary packages from src:linux
959 - Track security updates during the Tails code freeze (tails/tails#14728)
962 - Release process: add special mention for the needed package update test
963 - Print error instead of trigger an exception.
964 - Use highest package version if multiple are available.
965 - Reformat with black
966 - Test suite setup doc: update dependencies
968 - Use the Ultimate Debian Database (UDD) directly.
970 - Test suite: document new dependencies
971 - Test suite: ensure frozen packages are up-to-date
972 - Needed package update: add exception
973 - APT: switch to pinning via source package when relevant
974 - Fix logic to detect an issue correctly.
975 - Reformat with black
977 - make mypy happy again.
978 - Fix logic to return errcode 0 if no issue is shown.
979 - move SUITES into part of Madison.
980 - make madison a local variable
983 - Have default value be the correct type
984 - Reformat with black
985 - Use consistent terminology
986 - Start linting new script
988 - Remove unused import
991 - use qa.debian.org Madison API
992 - restructure the config file to handle also distribution.
994 - Fix type annotations.
995 - Always query stable-security's version to and request update..
996 - Query also stable-secuirty for updates.
997 - We should first look for the source, as we have only query source package
999 - Only add metadata, when available.
1000 - Add script to detect needed package updates from Debian
1002 -- Tails developers <tails@boum.org> Mon, 04 Sep 2023 09:10:16 +0000
1004 tails (5.16.1) unstable; urgency=medium
1006 * Mitigate Downfall and INCEPTION speculative-execution vulnerabilities
1010 - Fix Downfall and INCEPTION speculative-execution vulnerabilities
1014 - Update SquashFS sort file manually
1015 - Upgrade to Linux linux-image-6.1.0-11-amd64 (currently version 6.1.38-4)
1017 * onion-grater: deal with race condition in my_circuits() (tails/tails!1212)
1020 - Circuits view sometimes not displayed in Tor Browser, possibly related onion-
1021 grater exception and dropped restricted stream event (tails/tails#19897)
1024 - onion-grater: deal with race condition in my_circuits()
1026 * automailer.py: add support for notmuch (tails/tails!1213)
1029 - automailer.py: add support for notmuch (tails/tails#19932)
1032 - automailer: remove duplicate variable
1033 - automailer (notmuch): add support for attachments
1034 - Reformat with black
1035 - automailer: refactoring (extract code to function)
1037 - automailer: name parameter instead of relying on position
1038 - automailer (notmuch): use the specified email body
1039 - automailer: simplify
1041 * Add options verification to Tails shell library (tails/tails!1211)
1044 - Tails shell library should verify that it is called set -e -u
1048 - Replace backticks with single quotes to prevent command substitution
1049 - Add another options verification to Tails shell library
1050 - Add options verification to Tails shell library
1052 * simplify and fix automailer parser config (tails/tails!1210)
1055 - generate-call-for-trusted-reproducer is broken: TypeError: add_parser_mailer()
1056 missing 1 required positional argument: 'config' (tails/tails#19929)
1059 - simplify and fix automailer parser config
1061 * create_box.sh: fix IMG_SIZE parsing on Debian Sid (tails/tails!1208)
1064 - Creating basebox broken on Debian Sid (tails/tails#19927)
1067 - create_box.sh: use jq for json parsing instead of awk
1068 - create_box.sh: fix IMG_SIZE parsing on Debian Sid
1070 * Test suite: make --view and --vnc-server-only compatible with Wayland without
1071 sudo (tails/tails!1203)
1074 - Make shellcheck happy
1075 - Test suite: send arbitrary options to x11vnc via the TAILS_X11VNC_OPTS
1076 environment variable
1077 - Test suite: make --view and --vnc-server-only compatible with Wayland
1079 * Initialize passphrase strength hint as blank, don't show 0%! (tails/tails!1202)
1082 - Passphrase strength meter initially shows 0% (tails/tails#19918)
1085 - Update passphrase_view.py to remove "0%" and display blank hint initially
1086 - Update passphrase_dialog.py to not display "0%" as strength hint before the
1088 - Update change_passphrase_dialog.py to have a blank default hint instead of "0%"
1091 -- Tails developers <tails@boum.org> Mon, 14 Aug 2023 15:11:40 +0200
1093 tails (5.16) unstable; urgency=medium
1095 * Upgrade to Thunderbird 1:102.14.0-1~deb11u1
1097 * Upgrade to Linux 6.1.38-2
1099 * Upgrade to Tor Browser 12.5.2 (Firefox 102.14) (tails/tails!1207)
1102 - Upgrade to Tor Browser 12.5.2 (Firefox 102.14) (tails/tails#19889)
1105 - Fetch Tor Browser from our own archive
1106 - Upgrade Tor Browser to 12.5.2
1108 * Install amd64-microcode from Debian security (tails/tails!1204)
1111 - Upgrade to Linux 6.1.38 and amd64-microcode 3.20230719.1 (tails/tails#19888)
1114 - Install amd64-microcode from Debian security
1116 * Test suite: ensure tails-debugging-info does not crash (tails/tails!1206)
1119 - Automated tests for Whisperback (tails/tails#19881)
1122 - Remove obsolete justification
1124 - Stop installing inotify-tools
1125 - Drop obsolete /run/tordate
1126 - WhisperBack: move huge "lsusb --verbose" below info that's more often used
1127 - Test suite: ensure tails-debugging-info does not crash
1129 * Test suite: ignore exception if LAN web server is kill():ed before we wait()
1133 - Test suite: ignore exception if LAN web server is kill():ed before we wait()
1135 * onion-grater: make my_circuits() handle unattached streams correctly
1139 - Compare to None with identity, not equality
1140 - onion-grater: make my_circuits() handle unattached streams correctly
1142 * Turn off capitalization to make passphrase suggestion easier to type.
1146 - Turn off capitalization to make passphrase suggestion easier to type.
1148 * Doc updates for 5.15 (tails/tails!1194)
1151 - More robust UDF signing (tails/tails#19665)
1155 - UDFs signature check
1156 - variables, not constants!
1157 - less bogus usages of cat
1158 - login cmdline option useful in testing again
1159 - more usages for automailer
1160 - fix rc/final check
1161 - automatic manual testing email
1162 - automailer supports attachments
1163 - kernel cmdline options make instructions simpler
1164 - black reformatting
1165 - automailer: set default in configuration file
1167 - clarify what's inside the "If" statement
1168 - Update PO files takes longer than you think
1169 - let's remove useless sections early
1171 - tbb upgrade: clarify norm vs exception
1172 - tbb upgrade: chdir in subshell
1173 - tbb upgrade: add ma1 repository
1175 -- Tails developers <tails@boum.org> Sun, 06 Aug 2023 10:32:57 +0000
1177 tails (5.15.1) unstable; urgency=medium
1179 * Emergency fix: fix whisperback reporting
1181 -- Tails developers <tails@boum.org> Tue, 11 Jul 2023 13:20:32 +0200
1183 tails (5.15) unstable; urgency=medium
1185 * Resolve "Upgrade Tor Browser to 12.5.1" (tails/tails!1195)
1188 - Upgrade Tor Browser to 12.5.1 (tails/tails#19724)
1191 - Fetch Tor Browser from our own archive
1192 - Upgrade Tor Browser to 12.5.1-build1
1194 * onion-grater: fix the stream ownership check (tails/tails!1184)
1197 - onion-grater stream ownership check is very buggy resulting in restrict-stream-
1198 events being broken (tails/tails#19741)
1202 - turn on debug automatically based on cmdline
1203 - no stream belongs to pid-based matching
1204 - onion-grater: log events dropped by restrict-stream-events
1205 - onion-grater: only use address comparison for event ownership
1206 - Test suite: test that Tor Browser's circuit view is working
1207 - Upgrade Tor Browser to 12.5-build2
1208 - Test suite: wait longer for Unsafe Browser's zenity dialogs
1209 - Browsers: deal with another extension directory from TBB 12.5 (refs:
1211 - Browsers: update to new fontconfig path for Tor Browser 12.5 (refs
1213 - Test suite: remove useless torified_browsing.rb
1214 - Test suite: adapt test to Tor Browser's new file download UX (refs:
1216 - Test suite: embed old image next to match in automatic image bumping mode
1217 - Defer lyrebird → obfs4proxy renaming
1218 - Upgrade Tor Browser to 12.5.0-build1 (refs: tails/tails#19724)
1219 - Browsers: add new locales supported by Tor Browser 12.5 (refs:
1221 - Upgrade Tor Browser to 12.5a7 (refs: tails/tails#19724)
1222 - onion-grater: fix the stream ownership check (refs: tails/tails#19741)
1224 * Upgrade Tor Browser to 12.5 (tails/tails!1182)
1227 - Upgrade Tor Browser to 12.5-build2
1228 - Test suite: wait longer for Unsafe Browser's zenity dialogs
1229 - Browsers: deal with another extension directory from TBB 12.5 (refs:
1231 - Browsers: update to new fontconfig path for Tor Browser 12.5 (refs
1233 - Test suite: remove useless torified_browsing.rb
1234 - Test suite: adapt test to Tor Browser's new file download UX (refs:
1236 - Test suite: embed old image next to match in automatic image bumping mode
1237 - Defer lyrebird → obfs4proxy renaming
1238 - Upgrade Tor Browser to 12.5.0-build1 (refs: tails/tails#19724)
1239 - Browsers: add new locales supported by Tor Browser 12.5 (refs:
1241 - Upgrade Tor Browser to 12.5a7 (refs: tails/tails#19724)
1243 * Test suite: avoid writing to script while it may be executing
1247 - "Scenario: I can use a network with captive portal" frequently fails: OSError:
1248 [Errno 26] Text file busy: '/etc/NetworkManager/dispatcher.d/00-firewall.sh'
1249 (RemoteShell::ServerFailure) (tails/tails#19736)
1252 - Test suite: avoid writing to script while it may be executing
1254 * Release calendar available from website (tails/tails!1188)
1257 - Apply 2 suggestion(s) to 2 file(s)
1258 - update instructions for updating calendar
1259 - contribute/calendar points to actual calendar
1260 - Revert "Remove our public calendar"
1262 * tps: Fix LUKS upgraded each boot on some systems (tails/tails!1181)
1265 - Persistent Storage upgraded on every login (tails/tails#19734)
1268 - tps: add more debug logging for #19728 and #19734
1269 - tps: calculate available RAM just as cryptsetup does in is_upgraded()
1270 - reports memory and cpu, too
1271 - include information about disks
1272 - Whisperback: more usb information
1273 - decrease the argon2id minimum memory requirement
1275 - make debug-for-5.15 expire automatically
1276 - Enable debug logging in the tps backend by default
1277 - tps: clarify the whole situation around create() using a lower PBDKF memory
1278 cost that we fix with an upgrade at next boot
1279 - tps: use constant instead of magic number
1280 - tps: also set --pbkdf-force-iterations when createing a new volume
1281 - tps: Fix LUKS upgraded each boot on some systems
1283 * Test suite: Fix flaky step "the displayed clock is less than (\d+) minutes
1284 incorrect" (tails/tails!1180)
1287 - Flaky test "the displayed clock is less than (\d+) minutes incorrect"
1292 - Test suite: Fix flaky step "the displayed clock is less than (\d+) minutes
1294 - Test suite: Fix usage of backslashes in arguments to Dogtail
1296 * Support authenticated v3 Onion Services in Tor Browser (tails/tails!1160)
1299 - Support authenticated v3 Onion Services in Tor Browser (tails/tails#17816)
1302 - Revert bits about persistent onion auth keys
1303 - Tor Browser: hide UI related to persisting onion auth keys
1304 - Tor Browser: also allow viewing and removing onion auth keys.
1305 - ONION_CLIENT_AUTH_ADD must take arguments.
1306 - Use upper case as we normally do.
1307 - Tor: enable ClientOnionAuthDir to be able to remember onion auth keys (refs:
1309 - Onion Grater: update Tor Browser to allow onion authentication (refs:
1311 - Tor: enable ExtendedErrors for Tor Browser's SocksPort
1313 * Welcome Screen: Bump UpgradeLUKS timeout to 240s (tails/tails!1190)
1316 - workaround for tails#19871
1317 - Welcome Screen: Bump UpgradeLUKS timeout to 240s
1319 * Upgrade to Linux 6.1.37-1 (tails/tails!1196)
1322 - Install the Linux kernel from Bookworm (tails/tails#19669)
1323 - Upgrade to Linux 6.1.37-1 (tails/tails#19670)
1326 - Document workaround
1328 - Update the snapshot of the Debian archive to 2023070701
1329 - Upgrade to Linux 6.1.37-1 from bookworm-security
1330 - Stop tracking sid when we can get the package we want from Bookworm
1331 - APT: add fallback pinning for Debian-Security
1332 - APT: add Bookworm sources
1334 * automailer parsing fixed (tails/tails!1193)
1337 - simpler and more effective body parsing
1339 * tails-installer open wrong URI (tails/tails!1191)
1342 - Honor the "debug" kernel cmdline option in Tails Installer (tails/tails#12396)
1343 - Tails Installer open wrong documentation URI (tails/tails#19870)
1346 - rename function to reflect what it does
1347 - verbose is explicitly disabled
1349 - tails-documentation de-localize input links
1350 - tails-documentation supports URLs as arguments
1351 - tails-documentation --dry-run
1352 - tails-installer honors debug cmdline
1353 - refactor debug activation in tails installer
1355 * Fix gitlab-triage-post-release (tails/tails!1186)
1358 - Multiple failures in gitlab-triage-post-release (tails/tails#19723)
1361 - prevent running with unset variables
1362 - let's ignore milestone.due_date
1365 * onion-grater: fix getinfo circuit-status leak (tails/tails!1185)
1368 - onion-grater leaks info about unassociated circuits to Tor Browser
1372 - onion-grater: refactor
1373 - onion-grater: add comments per reviewer request
1374 - onion-grater: log events dropped by restrict-stream-events
1375 - onion-grater: only use address comparison for event ownership
1376 - Test suite: test that Tor Browser's circuit view is working
1377 - WIP fix for refs: tails/tails#19740
1378 - onion-grater: fix the stream ownership check (refs: tails/tails#19741)
1380 * TCA: Fix error not displayed after QR code scanning failure (tails/tails!1183)
1383 - Error not displayed after QR code scanning failure: "TypeError: 'dict' object
1384 is not callable" for "_" (tails/tails#19737)
1387 - TCA: Fix error not displayed after QR code scanning failure
1389 * Replace connect-drop executable (tails/tails!1177)
1392 - simplify --debug handling
1393 - fix: forward INHERIT_FD to tails-installer
1394 - get env var: raise if not present
1395 - fix: forward INHERIT_FD to tps-frontend
1396 - Fix python3-gi missing in test-tailslib job
1397 - connect-socket: Use parser default value for --debug option
1398 - Inline connect-drop-tails-installer in tails-installer
1399 - Inline connect-drop-tps in tails-persistent-storage
1400 - Replace connect-drop with connect-socket
1401 - run-tca-in-netns: Support setting logging level to debug
1402 - tps-frontend: Fix comment
1404 * Welcome Screen: Fix search (tails/tails!1176)
1407 - Improve search in language and keyboard selection widgets (tails/tails#19200)
1410 - Welcome Screen: Also search the language code
1411 - Welcome Screen: Support multiple search strings
1412 - Welcome Screen: Fix search
1414 * post-RM doc updates (tails/tails!1174)
1417 - use automailer at least once in the doc
1419 - make sending emails easier multi-MUA
1420 - blog.torproject.org: link to old MR
1421 - let's validate using check-po-msgfmt, too
1422 - I just want to copy-paste
1423 - discard non-diff lines
1424 - more readable output
1426 * Rename tps executables (tails/tails!1172)
1429 - Rename tps to tpsd (tails/tails#19430)
1432 - Rename tps -> tpsd
1433 - Rename tps-frontend-wrapper -> tails-persistent-storage
1435 * tps: Rename mount -> binding (tails/tails!1171)
1438 - Use the term "binding" instead of "mount" in tps backend code
1443 - tps: Rename mount -> binding
1445 * tps: Make sure that the header correctly unlocks the partition
1449 - Investigate LUKS header restore failure (tails/tails#19718)
1452 - tps: Fix error case in which LUKS header backup is not restored
1455 - tps: Remove unused imports
1456 - tps: Remove unused D-Bus method TestPassphrase
1457 - tps: Don't include UUID in LUKS header backup path
1458 - tps: Make sure that the header correctly unlocks the partition
1460 * Dogtail: re-enable showingOnly by default (tails/tails!1166)
1463 - Re-enable showingOnly by default in the test suite (tails/tails#19717)
1466 - Test suite: fix another Dogtail configuration issue
1467 - Test suite: simplify
1468 - Test suite: deal with test relying on showingOnly not being enabled
1469 - Test suite: drop useless require
1470 - Test suite: deal with test relying on showingOnly not being enabled
1471 - Test suite: actually "simulate" a failing connection during time sync
1472 - Test suite: drop all explicit `showingOnly: true` arguments
1473 - Dogtail: disable debugging output
1474 - Dogtail: enable showingOnly by default (refs: tails/tails#19771)
1476 * test: user can install w/o cloning (tails/tails!1165)
1479 - Tails Installer: test that the user can install without cloning
1483 - rename scenarios consistently
1484 - remove useless step
1485 - Apply 1 suggestion(s) to 1 file(s)
1486 - test: user can install w/o cloning
1488 * Upgrade Linux on devel branch to 6.1.27-1 (tails/tails!1151)
1491 - Upgrade to Linux 6.1.27-1 (devel branch)
1493 * Display the Tails version in the boot loader entry (tails/tails!1137)
1496 - Display the Tails version number during boot (Boot Loader Menu or Welcome
1497 Screen) (tails/tails#16796)
1500 - Display the Tails version number in all GRUB menu entries
1502 - Display the Tails version in the boot loader entry
1504 -- Tails developers <tails@boum.org> Mon, 10 Jul 2023 12:04:32 +0200
1506 tails (5.14) unstable; urgency=medium
1508 * tailslib: Fix spawn_tps_frontend (tails/tails!1168)
1511 - tailslib: Fix spawn_tps_frontend
1512 - run-with-user-env: Support the --systemd-run option
1513 - userenv.py: Allow passing the DEBUG environment variable
1515 * Upgrade Tor Browser to 12.0.7 (tails/tails!1159)
1518 - Upgrade Tor Browser to 12.0.7 (tails/tails#19662)
1521 - Fetch Tor Browser from our own archive
1522 - Upgrade Tor Browser to 12.0.7
1524 * Upgrade to Bullseye 11.7 and Linux 6.1.25-1 (stable branch) (tails/tails!1121)
1527 - Switch to open-ath9k-htc-firmware (tails/tails#19625)
1528 - Consider allowing initramfs size > 32 MiB (tails/tails#19663)
1529 - Upgrade to Bullseye 11.7 (tails/tails#19555)
1530 - Upgrade to Linux 6.1.25-1 (tails/tails#19608)
1533 - Upgrade to Bullseye 11.7 and Linux 6.1.25-1 (stable branch)
1534 - Allow initramfs size larger than 32 MiB
1535 - Revert "initramfs: remove amdgpu and nvidia drivers"
1536 - initramfs: remove amdgpu and nvidia drivers
1537 - Install the free firmware firmware-ath9k-htc
1539 * Test suite: Fix flaky low-memory test (tails/tails!1161)
1542 - Cannot create Persistent Storage when the system is low on memory on Bookworm
1547 - Test suite: Fix flaky low-memory test
1549 * Test suite: Paste bridge via Dogtail (tails/tails!1156)
1552 - Test suite: Paste bridge via Dogtail
1554 * Test suite: make --image-bumping-mode work with find_any() (tails/tails!1154)
1557 - `run_test_suite --image-bumping-mode` fails sometimes: 'NoneType' object has no
1558 attribute 'shape' (tails/tails#19055)
1561 - Test suite: simplify the return value for the *_any() methods
1562 - Test suite: make --image-bumping-mode work with find_any()
1564 * Test suite: fix corruption in the OpenCV helper script output
1568 - run_test_suite --image-bumping-mode fails: wrong number of arguments (given 13,
1569 expected 6) (ArgumentError) (tails/tails#19243)
1572 - Test suite: add assertion
1573 - Test suite: deal with OpenCV errors more reliably
1574 - Test suite: properly separate stdout and stderr in OpenCV helper script
1576 * Welcome Screen: Replace "Create Persistent Storage" button with switch
1580 - Confusing UX of Persistent Storage onboarding in Welcome Screen
1584 - Welcome Screen: Replace "Create Persistent Storage" button with switch
1586 * Test suite: Use Dogtail to shut down / reboot the system (tails/tails!1150)
1589 - Test suite: Use Dogtail to shut down / reboot the system
1591 * Mention Kleopatra in the name of the Persistent Storage features
1595 - Mention Kleopatra in Persistent Storage settings (tails/tails#19675)
1598 - Mention Kleotra in Persistent Storage settings
1600 * Improve labels while creating Persistent Storage (tails/tails!1148)
1603 - Improve labels during creation of Persistent Storage (tails/tails#19674)
1607 - Integrate tps Python files into our l10n framework
1608 - Improve labels while creating Persistent Storage
1610 * Test suite: Use Dogtail to open additional settings dialog (tails/tails!1146)
1613 - Test suite: remove images that are not used anymore
1614 - Test suite: Use Dogtail to open additional settings dialog
1616 * Replace 'tails.boum.org' by 'tails.net' (except for wiki/src)
1620 - Use the new domain when checking for invalid hosts
1621 - Keep checking for translatable URLs using the old domain
1622 - Fix expected length for GPU-related error message
1623 - Replace 'tails.boum.org' by 'tails.net' (except for wiki/src)
1625 * tps: Avoid triggering OOM killer (tails/tails!1144)
1628 - Creating Persistent Storage can cause OOM killer to kill gnome-shell
1632 - Test suite: Test creating Persistent Storage with low memory
1633 - tps: Avoid triggering OOM killer
1635 * Test suite: Use dogtail in step 'I (dis)?connect the network through GNOME'
1639 - Test suite: Use dogtail in step 'I (dis)?connect the network through GNOME'
1641 * Whisperback warning (tails/tails!1133)
1644 - reformat with black
1645 - Fix SyntaxWarning in whisperback
1647 * Persistent Storage feature descriptions (tails/tails!1131)
1650 - Implement missing descriptions of Persistent Storage features
1654 - tps-frontend: Fix label style context "error" not reset
1655 - tps-frontend: Improve subtitle of Persistent Folder
1656 - tps-frontend: Add subtitle for Persistent Folder
1657 - tps-frontend: Fix subtitles not shown
1659 * tps: Hide mounts from the desktop environment (tails/tails!1130)
1662 - The Persistent Folder should not appear as an external device in the Files
1663 browser (tails/tails#19646)
1666 - tps: Hide mounts from the desktop environment
1668 * Test suite: Replace more usages of fragile @screen.paste (tails/tails!1127)
1671 - Test suite: Replace more usages of fragile @screen.paste
1673 * Electrum: Ask for donations in 1/20 of cases (tails/tails!1117)
1676 - Have an incentive to donate to Tails from Electrum in Tails (tails/tails#18023)
1679 - Remove unused import
1680 - electrum: Fix dialog not closed when process exits
1681 - electrum: Use different donation addresses
1682 - Store Bitcoin addresses for Electrum incentive
1683 - Implement changes proposed by segfault and bokonon
1684 - Electrum: Change effect of the ELECTRUM_DONATION_MESSAGE variable
1685 - Add link to our donation page
1687 - Improve notification message
1688 - Add vertical space
1689 - Add default description for transfer
1690 - Electrum: Ask for donations in 1/20 of cases
1691 - Electrum: Don't show message dialog if called with arguments
1693 * Use argon2id and support upgrading to LUKS2 and argon2id (tails/tails!1116)
1696 - tps: Explain why we use the UUID in the backup file name
1697 - Test suite: Add comment
1699 - Welcome Screen: Upgrade Persistent Storage explicitly
1700 - tps: Also restore backup LUKS header if the UUID can't be read
1701 - tps: Test the backup header before upgrading the original header
1702 - tps: Always use shred to delete backup LUKS header
1703 - Test suite: Fix flaky scenario "Feature activation fails"
1704 - Test suite: Test automatically upgrading LUKS header
1705 - Welcome Screen: Set label back to "Unlock Encryption"
1706 - Test suite: Fix step 'I enable persistence' returning early
1707 - Test suite: Fix usage of Gherkin keyword
1708 - tps: Add note about wear leveling to UpgradeLUKS docstring
1709 - tps: Use shred to delete backup LUKS header
1710 - tps: Also update memory cost of Argon2id
1711 - tps: Add type hint
1712 - tps: Rename the Partition class to TPSPartition
1713 - tps: Fix stacklevel of log functions
1714 - tps: Automatically upgrade LUKS header when unlocking
1715 - tps: Support upgrading to LUKS2 and argon2id
1717 * Detect captive portals (tails/tails!1107)
1720 - use iptables --wait in test suite (tails/tails#19698)
1721 - tails-get-network-time sets different User-Agent than NetworkManager
1723 - Bring the Tor Connection user story to a state where it should not be our top
1724 priority anymore (tails/tails#19473)
1725 - Detect captive portals (tails/tails#5785)
1728 - iptables waits for lock
1730 - Test suite: Replace some usages of "Tor is ready"
1731 - Test suite: Check time sync headers
1732 - Test suite: Change how we imitate a captive portal
1733 - Test suite: Replace httpbin.org with our own web server
1734 - Test suite: Catch errors when copying Chutney data
1735 - Revert "while at it, remove all usages of "Tor is ready""
1736 - Test suite: Replace usage of httpbin.org
1737 - Test suite: Check that TCA knows when a portal was detected
1738 - tails-get-network-time: Restructure
1739 - tails-get-network-time: Fix case that not enough data was received
1740 - tails-get-network-time: Print curl debug output in debug mode
1741 - tails-get-network-time: Support config file
1742 - tails-get-network-time: Don't fail if response code is other than 200 and 204
1743 - tails-get-network-time: Fix handling of extra bytes after expected response
1744 - tails-get-network-time: Fix handling of empty body
1745 - tails-get-network-time: Fix typo
1746 - tails-get-network-time: Remove unused variable
1747 - tails-get-network-time: Remove unreachable code
1748 - tails-get-network-time: Ignore case of X-NetworkManager-Status value
1749 - keep the comment near to relevant code block
1750 - Apply 1 suggestion(s) to 1 file(s)
1752 - while at it, remove all usages of "Tor is ready"
1753 - use the non-deprecated step
1754 - captive portal automated test
1755 - More generic error, because we're not sure
1756 - User-visible captive portal detection
1757 - actually detect captive portal
1758 - type hint for callbacks
1759 - pass additional data in case of errors
1760 - fix error response code
1761 - override for GetNetworkTimeCommand
1762 - Refactor code to allow per-command override
1763 - define shared constant in module
1764 - tails-get-network-time: Don't set any User-Agent
1766 -- Tails developers <tails@boum.org> Mon, 12 Jun 2023 14:53:26 +0200
1768 tails (5.13) unstable; urgency=medium
1770 * Resolve "Upgrade Tor Browser to 12.0.6, based on Firefox 102.11"
1774 - Upgrade Tor Browser to 12.0.6, based on Firefox 102.11 (tails/tails#19621)
1777 - Fetch Tor Browser from our own archive
1778 - Upgrade Tor Browser to 12.0.6-build1
1780 * unsafe-browser: Explain why our use of flock is not vulnerable
1784 - Unsafe Browser - Local Privilege Escalation (LPE) via symlink - Arbitrary File
1785 Content Delete (tails/tails#19616)
1788 - Use /run/lock instead of /var/lock
1789 - unsafe-browser: Explain why our use of flock is not vulnerable
1791 * Make curl use Tor (tails/tails!1123)
1794 - Make curl work out of the box (tails/tails#19488)
1797 - test that curl works out of the box
1800 * udisks2: Use LUKS2 by default (tails/tails!1115)
1803 - Persistent Storage: Use LUKS2 (tails/tails#15450)
1806 - Test suite: Increase timeout for changing the LUKS passphrase
1807 - Test suite: Check that Persistent Storage uses LUKS2
1808 - Test suite: record old version when installing one to disk
1809 - Test suite: move step definition to a more suitable place
1810 - udisks2: Use LUKS2 by default
1812 * tails-documentation: Check that joined path is below website path
1816 - tails-documentation - Limited Path Traversal (tails/tails#19576)
1819 - tails-documentation: Check that joined path is below website path
1821 * Test suite: Don't check for "Display output is not active" screen
1825 - Tests sometimes fail with "Display output is not active" after clicking login
1826 button in Welcome Screen (tails/tails#19639)
1829 - Test suite: Don't check for "Display output is not active" screen
1830 - Test suite: Print step status
1831 - Welcome Screen: Make error message more useful
1833 * Remove our public calendar (tails/tails!1125)
1838 - Remove our public calendar
1840 * tps: Use argon2id (tails/tails!1120)
1843 - Persistent Storage: Use argon2id (tails/tails#19633)
1846 - Test suite: Check that Persistent Storage uses argon2id
1847 - tps: Reduce the number of triggered udev events
1848 - tps: Fix creation sometimes failing because udisks object is not ready
1849 - tps: Fix `udevadm trigger --settle` sometimes blocking forever
1850 - tps-frontend: Fix first job update sometimes ignored
1851 - tps: Send only one PropertiesChanged signal per job update
1852 - tps: Don't restrict CPU usage during Persistent Storage creation
1853 - tps: Keep the system responsive while creating Persistent Storage
1856 * tps: Fix stderr of failed commands not printed (tails/tails!1118)
1859 - tps: Fix stderr of failed commands not printed
1861 * Test suite: Avoid TCA scenario failing if the error panel is briefly shown
1865 - Fix "Scenario: The same Tor configuration is applied when the network is
1866 reconnected" failing (tails/tails#19591)
1869 - Test suite: Avoid TCA scenario failing if the error panel is briefly shown
1871 * tps: Fix InvalidBootDeviceError raised in finally block (tails/tails!1103)
1874 - "Persistent Greeter options" test suite scenario always fails
1876 - tps reports the need for "USB stick installed with a USB image or Tails
1877 Installer" in unrelated failure modes (tails/tails#19588)
1880 - tps: Fix InvalidBootDeviceError raised in finally block
1881 - tps: Remove unused exception
1883 -- Tails developers <tails@boum.org> Mon, 15 May 2023 12:22:05 +0200
1885 tails (5.12) unstable; urgency=medium
1887 * Test suite: Try to catch another case of "Display output is not active"
1891 - Test suite breakage when restoring an old Bullseye snapshot: "Guest disabled
1892 display", "Display output is not active" (tails/tails#18953)
1895 - Test suite: Try to catch another case of "Display output is not active"
1897 * Test suite: Press escape to wake up the display (tails/tails!1089)
1900 - Test suite breakage when restoring an old Bullseye snapshot: "Guest disabled
1901 display", "Display output is not active" (tails/tails#18953)
1904 - Test suite: Retry restoring snapshot 3 times
1905 - Test suite: Press escape up wake up the display
1907 * Upgrade to Linux 6.1.20-1 (stable branch) (tails/tails!1080)
1910 - Upgrade to Linux 6.1.15 (tails/tails#19484)
1911 - Upgrade to Linux 6.1.20+ (tails/tails#19556)
1914 - Upgrade to Linux 6.1.20-1 from sid
1916 * Upgrade to Linux 6.1.20-1 from sid (devel branch) (tails/tails!1079)
1919 - Upgrade to Linux 6.1.20-1 from sid
1921 * Add icon for tails-backup (tails/tails!1111)
1924 - Have an icon for the backup utility (tails/tails#19363)
1927 - Update icon for Persistent Storage settings
1928 - Add icon for tails-backup
1930 * Additional Software: Fix launched apps not accessible via Dogtail
1934 - tca-portal, tails-additional-software: don't run apps as amnesia under the
1935 scope of the (root) systemd service (tails/tails#19131)
1936 - Additional Software is in English when launched from a notification
1938 - tails-additional-software-config and gedit started from a notification are not
1939 accessible ⇒ breaks test suite (tails/tails#19233)
1942 - Additional Software: Make tails-additional-software-config D-Bus activatable
1943 - Additional Software: Launch apps with gtk-launch
1945 * Resolve "myspace.com has become incompatible with our htpdate setup"
1949 - myspace.com has become incompatible with our htpdate setup (tails/tails#19561)
1952 - test-iuk: list 1 package per line, for nicer future diffs
1953 - test-iuk: make it breathe
1954 - test-iuk: refuse running unless in a throw-away container
1955 - convert shell script to set -eu
1956 - move test-iuk to its own file
1957 - refactor: put in its own file
1959 - replace myspace.com with facebook.com
1961 * Test suite: Fix step "persistent Greeter options were restored"
1965 - "Persistent Greeter options" test suite scenario always fails
1969 - Test suite: Avoid an unnecessary reboot
1970 - Test suite: Make clicking "Connect to Tor" button more robust
1971 - Test suite: Add alternative persian comma image
1972 - Test suite: Fix step "persistent Greeter options were restored"
1973 - Test suite: Translate Dogtail args to $lang_code
1974 - Remote shell: Support setting environment variables in remote commands
1975 - Test suite: Support configuring chutney start time
1977 * tps: Fix hook execution with --profiling option (tails/tails!1112)
1980 - tps: Fix hook execution with --profiling option
1982 * Shell library: Validate LANG before using it (tails/tails!1110)
1985 - Validate LANG in localization.sh (tails/tails#19576)
1988 - Shell library: Validate LANG before using it
1990 * Remove obsolete disabling of nf_conntrack_helper (tails/tails!1109)
1993 - Update disabling of netfilter's automatic conntrack helper assignment
1997 - Remove obsolete disabling of nf_conntrack_helper
1999 * Test suite: Fix Electrum test (tails/tails!1105)
2002 - Electrum test suite broken by !1010 (tails/tails#19589)
2005 - Test suite: Fix Electrum test
2007 * Test suite: Fix additional software scenario (tails/tails!1102)
2010 - Test suite: Scenario "Recovering in offline mode after Additional Software
2011 previously failed to upgrade and then succeed to upgrade when online" fails
2015 - Remove @fragile tags that were only justified by #19233, which was solved via
2017 - Test suite: Fix additional software scenario
2019 * Additional Software: Use valid D-Bus name as app name (tails/tails!1099)
2022 - `gtk-launch org.boum.tails.additional-software-config.desktop` is broken
2026 - Design doc: update path
2027 - Additional Software: Use valid D-Bus name as app name
2029 * Test suite: allow the pattern to cover slightly less of the write cache
2033 - Test Suite: Feature "System memory erasure on shutdown" is fragile
2037 - Test suite: allow the pattern to cover even less of the write cache
2038 - Test suite: allow the pattern to cover slightly less of the write cache
2040 * Upgrade Tor Browser to 12.0.5 (tails/tails!1097)
2043 - Upgrade to Tor Browser 12.0.5, based on Firefox 102.10 (tails/tails#19559)
2046 - Fetch Tor Browser from our own archive
2047 - Upgrade Tor Browser to 12.0.5-build2
2048 - Upgrade Tor Browser to 12.0.5-build1
2050 * tps: Fix "python.UnknownError" returned for builtin errors (tails/tails!1095)
2053 - Buggy error handling in tps: OSError is not a valid D-Bus name
2057 - tps: Fix "python.UnknownError" returned for builtin errors
2059 * Welcome Screen: Support login kernel command-line option (tails/tails!1093)
2062 - Welcome Screen: Support login kernel command-line option
2064 * Welcome Screen: Don't allow unlocking with empty passphrase by pressing Enter
2068 - Welcome Screen: Don't allow unlocking with empty passphrase by pressing Enter
2072 - Welcome Screen: Don't allow unlocking with empty passphrase by pressing Enter
2074 * systemd: Use name in unit status messages (tails/tails!1088)
2077 - systemd: Use name instead of description in unit status messages
2081 - systemd: Use both name and description in unit status messages
2083 * Display a diceware suggestion when creating the Persistent Storage
2087 - Display a diceware suggestion when creating the Persistent Storage
2091 - tps-frontend: Move passphrase suggestion code to passphrase_view.py
2092 - tps-frontend: Fix local variable 'passphrase' might be referenced before
2094 - tps-frontend: Increase spacing between suggested passphrase and refresh button
2095 - tps-frontend: Add missing space to error message
2096 - tps-frontend: Fix indentation
2097 - tps-frontend: hide relevant UI elements when diceware fails
2098 - tps-frontend: give attribute an expressive name
2099 - Wait Bookworm to use the non-English wordlists
2100 - Determine passphrase suggestion width automatically
2101 - tps-frontend: Remove default passphrase suggestion
2102 - tps-frontend: refactoring
2103 - tps-frontend: hide 'for example' label when diceware suggestion fails
2104 - tps-frontend: don't break when wordlist directory doesn't exist
2105 - tps-frontend: Use a method to set a new passphrase hint
2106 - tps-frontend: Log the exceptions caused by diceware suggestion
2107 - tps-frontend: print stderr when diceware fails
2108 - tps-frontend: use a wordlist in the currently configured language when
2110 - tps-frontend: adjust passphrase view UI
2111 - Display a diceware suggestion when creating the Persistent Storage
2113 * Fix race when starting tails-ibus-proxy.service (tails/tails!1086)
2116 - tails-dbus-proxy: Add missing PIDFile= property to systemd services
2117 - tails-ibus-proxy: Busy wait on ibus-daemon
2118 - tails-ibus-proxy: Fix missing whitespace (PEP-8)
2119 - Fix race when starting tails-ibus-proxy.service
2121 * Don't translate "known security vulnerabilities" (tails/tails!1081)
2124 - Don't translate "known security vulnerabilities"
2126 * Fix progress information inconsistencies when resuming an automatic upgrade
2127 download (tails/tails!1071)
2130 - Upgrader sometimes fails: Negative number not allowed in format_bytes at
2131 /usr/local/share/perl/5.32.1/Tails/IUK/Role/FormatByte.pm line 45 (Fix progress
2132 information inconsistencies when resuming an automatic upgrade download)
2136 - Revert "Upgrader: Avoid display the progress dialog initial text"
2138 - Make code style more consistent
2140 - Upgrader: Avoid display the progress dialog initial text
2141 - Tails::IUK::LWP::UserAgent::WithProgress: check if the temp file exists
2142 - Tails::IUK::LWP::UserAgent::WithProgress: always display the total amount of
2145 * Persistent Storage design docs (tails/tails!1035)
2148 - Persistent Storage: Update design doc (tails/tails#19223)
2151 - Remove XXX comments
2152 - Remove glossary entry for tails-persistence-setup
2153 - Link to contribute/Persistent_Storage in contribute.mdwn
2154 - Persistent Storage design doc: Don't link to line numbers
2155 - Revert "Rename persistence.mdwn -> Persistent_Storage.mdwn"
2156 - Follow style guide
2159 - Improve Persistent Storage contribute doc
2160 - Rename persistence.mdwn -> Persistent_Storage.mdwn
2161 - Move persistent-storage/HACKING.md to website
2162 - Update Additional Software design doc
2163 - Persistent Storage design doc: Add section on symlink attacks
2164 - Improve Persistent Storage design doc
2165 - better draft of Persistent Storage design docs
2167 * tps: Fix activation of feature in inconsistent state (tails/tails!1010)
2170 - Consider sync'ing data to disk after copying it to Persistent Storage when
2171 activating a feature (tails/tails#19368)
2172 - Seemingly spurious tps.configuration.mount.IsActiveException when deactivating
2173 a Persistent Storage feature (tails/tails#19331)
2174 - Delete corresponding data when a feature of the Persistent Storage is turned
2175 off in the settings (tails/tails#8447)
2176 - Switches of the new Persistent Storage are too slow to respond on some USB
2177 sticks (tails/tails#19291)
2178 - tps: Fix activation failing when in inconsistent state (tails/tails#19376)
2181 - Test suite: Update string
2182 - less ambiguous variable name
2183 - libtps.sh: Print JSON output
2184 - Apply 1 suggestion(s) to 1 file(s)
2185 - libtps.sh: Describe format returned by tps_get_features()
2186 - Apply 1 suggestion(s) to 1 file(s)
2187 - Make code easier to review
2188 - tps-frontend: Check if action row is defined
2190 - Explain stacklevel option
2191 - Use normal string instead of f-string
2195 - tps: Delete feature data via `rm -rf`
2196 - tps: Set HasData to True if we can't figure it out
2197 - tps-frontend: Ensure that the delete data button has the correct visibility
2198 - tps-frontend: Fix feature deactivated when IsActive changes to False
2199 - tps: Ensure that all feature properties are refreshed
2200 - Welcome Screen: Improve error message
2201 - Test suite: Use tpscli instead of parsing persistence.conf
2202 - Test suite: Fix "Given" used instead of "Then"
2203 - Test suite: Improve scenario "Feature activation fails"
2204 - Test suite: Use consistent wording
2205 - tps: Support reloading the service
2206 - Test suite: Improve comment and variable names
2207 - Test suite: Add another check that tps feature is deactivated immediately
2208 - Test suite: Use "active" instead of "enabled" for Persistent Storage
2209 - Test suite: Add scenario "Feature activation fails"
2210 - Welcome Screen: Show unlocked message when features failed to activate
2211 - Integrate tps-frontend Python files into our l10n framework
2212 - tps: Don't return an error in Unlock when features have unexpected state
2214 - tps-frontend: Don't insert hyphens when breaking lines in the error message
2215 - Test suite: Add scenario "Deleting data of a Persistent Storage feature"
2216 - tps-frontend: Remove unused imports
2217 - tps-frontend: Add accessible name to delete data button
2218 - tps-frontend: Make title of error dialogs bold
2219 - tps: Print stderr of failed commands in error messages
2220 - Test suite: Improve Gherkin of "Activating and deactivating Persistent Storage
2222 - tps: Strip the "GDBus.Error:" prefix from errors displayed to users
2223 - tps: Check that enabling/disabling feature worked
2224 - tps: Fix ActivationFailedError raised instead of DeactivationFailedError
2225 - tps: Fix incorrect PropertiesChanged signal
2226 - tps: Add behave test for deleting feature
2227 - tps: Fix behave tests failing
2228 - tps: Fix no PropertiesChanged emitted for HasData
2229 - tps: Remove Error property
2230 - tps-frontend: Use IsEnabled property
2231 - tps: Don't raise AlreadyActivatedError and NotActivatedError
2232 - tps: Fix race condition when adding/removing features from config file
2233 - tps: Add new property Feature.IsEnabled
2234 - Welcome Screen: Mention which features failed to activate
2235 - tps-frontend: Move delete data button into first row
2236 - tps-frontend: Remove separator between first and second row
2237 - Welcome Screen: Document GtkInspector
2239 - tps: Sync data copied to Persistent Storage
2240 - tps: Improve error in Welcome Screen when features failed to activate
2241 - tps-frontend: Show warning for features which failed to activate
2242 - tps: Remove features which failed to activate
2243 - tps: Store errors during service activation
2244 - tps: Make error message label selectable
2245 - tps-frontend: Use … instead of ... in button labels
2246 - tps-frontend: Confirm data deletion
2247 - tps: Treat Persistent directory with empty "Tor Browser" directory as empty
2248 - tps: Fix "return" used instead of "raise"
2250 - tps: Support deleting data
2251 - tps-frontend: Show a spinner while activating/deactivating features
2252 - tps-frontend: Hide persistent folder button when feature is inactive
2253 - Also make on-deactived hooks work when run twice
2254 - tps behave-tests: Test deactivating feature with inconsistent state
2255 - tps: Make on-activated hooks work when run twice
2256 - Fix shellcheck source comments
2257 - tps: Fix deactivation of feature in inconsistent state
2258 - tps behave-tests: Test activating feature with inconsistent state
2259 - Revert "Don't try (and fail) to refresh features' IsActive when unlocking"
2260 - tps: Fix activation of feature in inconsistent state
2262 -- Tails developers <tails@boum.org> Tue, 18 Apr 2023 16:54:56 +0000
2264 tails (5.11) unstable; urgency=medium
2266 * Upgrade Thunderbird to 102.9.0-1~deb11u1
2268 * Upgrade Tor Browser to 12.0.4-build2 (tails/tails!1082)
2271 - Upgrade to Tor Browser 12.0.4 based on Firefox 102.9 (tails/tails#19450)
2274 - Fetch Tor Browser from our own archive
2275 - Upgrade Tor Browser to 12.0.4-build2
2277 * Upgrade Tor Browser to 12.0.4-build1 (tails/tails!1078)
2280 - Upgrade to Tor Browser 12.0.4 based on Firefox 102.9 (tails/tails#19450)
2283 - workaround failure
2284 - Fetch Tor Browser from our own archive
2285 - Upgrade Tor Browser to 12.0.4-build1
2287 * Fix root exporting unsafe env (tails/tails!1067)
2290 - LPE via Environment Key Injection (tails/tails#19464)
2293 - remove inaccurate type hint
2294 - Revert "tails-additional-software: Fix string returned instead of int"
2295 - tails-additional-software: Fix logging command
2296 - tails-additional-software: Fix string returned instead of int
2297 - tails-additional-software: Log stderr of the executed command to Journal
2298 - tails-additional-software: Fix _ (gettext.gettext) not defined
2299 - tails-additional-software: Add type hints
2300 - tails-additional-software: Print logs of apt hooks to journal
2301 - Remote shell: Don't capture stderr of "sh_spawn" commands
2302 - tailslib: Make code easier to read
2303 - Start tails-dump-user-env.service automatically again
2304 - Revert "workaround failure"
2305 - 10-tor.sh: Remove obsolete wait loops
2306 - run-with-user-env: Depend on tails-dump-user-env.service
2307 - run-with-env: Fix current environment not passed to the command
2308 - tails-additional-software: Log stderr of the executed command
2309 - let's use standard logging methods
2310 - Remote shell: Fix some log output not printed to stderr
2311 - Apply 1 suggestion(s) to 1 file(s)
2312 - Rename exec-with-env -> run-with-env
2313 - INHERIT_FD is needed for connect-drop to work
2314 - port exec-with-env to argparse
2316 - Use exec in some places
2317 - tails-dump-user-env.service: Be explicit about which users the service should
2319 - userenv.py: Don't use current env in read_allowed_env_vars_from_file
2320 - dump-user-env: Use logging module
2321 - userenv.py: Fix all env vars from the current env passed
2322 - exec-with-env: Move read_allowed_env_vars_from_file() to userenv.py
2323 - exec-with-env: Only export allow-listed environment variables
2324 - tailslib: Move NOSYMFOLLOW_MOUNTPOINT back to tps package
2325 - exec-with-env: Fix error message
2326 - dump-user-env: Fix error message
2327 - dump-user-env: Don't set $EUID
2328 - userenv.py: Log invalid environment variables
2329 - dump-user-env: Only dump specific environment variables
2330 - Remote shell: Remove unused imports
2331 - Test Suite: Use "systemctl poweroff" instead of "poweroff"
2332 - Remote shell: Don't fail if user env is not found
2333 - Remote shell: Use user env in commands executed as root
2334 - refactor: Rename loadenv-exec -> exec-with-env
2335 - Run tails-additional-software-notify as amnesia with user env
2336 - exec-with-user-env: Fix comment and add usage message
2337 - refactor: Rename launch_x_application -> run_with_user_env
2338 - refactor: Rename gnome-env -> user-env
2339 - dump-user-env: Print error message when required variables could not be set
2340 - tps-frontend-wrapper: Pass current user environment
2341 - Reimplement loadenv-exec in Python
2342 - Replace most usages of gnome_env in Python scripts
2343 - netnsdrop.py: Remove unused argument user
2344 - tails-additional-software-notify: Fix error when printing usage message
2345 - tails-additional-software-notify: Fix unresolved reference '_'
2346 - Replace systemctl-user with exec-in-gnome-env
2347 - Avoid exporting gnome environment file in privileged processes
2348 - Dump gnome-shell env as amnesia
2349 - tails-notify-user: Use consistent indentation
2350 - 20-time.sh: Don't export amnesia-controlled gnome env
2351 - tailslib: Don't export gnome env
2352 - Test suite: Fix unset environment variables evaluating to true
2353 - tca-portal: Support setting debug log level via environment and kernel cmdline
2355 * Sanitize input (tails/tails!1058)
2358 - LPE via Environment Key Injection (tails/tails#19464)
2361 - sanitize WAYLAND_DISPLAY
2364 * Test new tps functionality (tails/tails!1052)
2367 - Ensure Cucumber tests cover new tps functionality (tails/tails#19225)
2370 - Quote variable used in shell command
2371 - rubocop --auto-correct
2372 - Test Suite: Improve Gherkin of "Creating a Persistent Storage" scenario
2373 - Test Suite: Add scenario "Changing the Persistent Storage passphrase"
2374 - Test Suite: Add scenario "Activating and deactivating Persistent Storage
2376 - Test Suite: Add scenario "Creating a Persistent Storage"
2378 * Test suite: Fix step "the clearnet user has not sent packets out to the
2379 Internet" (tails/tails!1074)
2382 - Test suite step "the clearnet user has not sent packets out to the Internet" is
2383 now irrelevant to Unsafe Browser (tails/tails#19370)
2387 - Test suite: Add anti test for packets sent by the Unsafe Browser
2388 - Test suite: Fix step "the clearnet user has not sent packets out to the
2391 * Remove custom window-center extension (tails/tails!1072)
2394 - Consider replacing our custom window-center GNOME Shell extension with the
2395 center-new-windows Mutter option (tails/tails#19489)
2398 - Remove custom window-center extension
2400 * 10-tor.sh: Add log output (tails/tails!1070)
2403 - Remote shell: Improve log output
2404 - 10-tor.sh: Add log output
2406 * Use zram (tails/tails!1064)
2409 - Consider using zram (tails/tails#5740)
2412 - remove unused variable
2413 - chdir / makes paths more predictable
2414 - move swapon.tails in its own file
2415 - 05-replace_swapon: Use exec to run the original swapon
2416 - 05-replace_swapon: Improve device check
2417 - 05-replace_swapon: Fail if any argument contains non-zram device
2421 * Welcome Screen: UI changes (tails/tails!1063)
2424 - Help new users understand better the encryption model (#18732)
2425 - Test suite: Make output easier to search for
2426 - Remote Shell: Automatically restart service when it fails
2427 - Test Suite: Use Dogtail to check if the Greeter has started
2428 - Test Suite: Avoid spamming log with stacktrace of the same error
2429 - Test Suite: Fix failure because of outdated screenshot
2430 - Test Suite: Use Dogtail to open GNOME Shell menus
2431 - Test Suite: Use Dogtail for some Greeter steps
2432 - Welcome Screen: Fix excessive height
2433 - Welcome Screen: Replace passphrase entry placeholder with a label
2434 - Welcome Screen: Align section header icons / link buttons
2435 - Welcome Screen: Remove unnecessary GtkBox
2436 - Welcome Screen: Update label
2437 - Welcome Screen: Update string shown when Persistent Storage is unlocked
2439 * Upgrade to Linux 6.1.12-1 from sid (stable branch) (tails/tails!1062)
2442 - Upgrade Linux kernel to 6.1.7+ (tails/tails#19444)
2445 - Test suite: disable bridge QR code automated tests
2446 - Upgrade to Linux 6.1.12-1 from sid
2448 * Welcome Screen: Don't allow unlocking with empty passphrase (tails/tails!1059)
2451 - Disable "Unlock" button until a passphrase has been entered (tails/tails#19357)
2454 - Welcome Screen: Don't allow unlocking with empty passphrase
2456 * Upgrade to Linux 6.1.12-1 from sid (devel branch) (tails/tails!1055)
2459 - Test suite: relax timeout
2460 - Test suite: disable bridge QR code automated tests
2461 - Upgrade to Linux 6.1.12-1 from sid
2463 * tps: Fix strings not translatable (tails/tails!1053)
2466 - Missing translations of UI strings about Persistent Storage (tails/tails#19415)
2469 - tails-backup: Fix strings not translatable
2470 - tps: Fix strings not translatable
2472 * Set screencast feature to never stop automatically (#12723) (tails/tails!1049)
2475 - Set screencast feature to never stop automatically (#12723)
2477 * Avoid double negation (tails/tails!1048)
2481 - Avoid double negation
2483 * Unlock VeraCrypt Volumes: Use Gtk.show_uri_on_window to open directories
2487 - Opening VeraCrypt volume spawns zombie process (tails/tails#19423)
2490 - Unlock VeraCrypt Volumes: Use Gtk.show_uri_on_window to open directories
2492 * Enable non-free-firmware archive area for distributions that support it
2496 - devel FTBFS (tails/tails#19456)
2497 - devel branch FTBFS: uBlock diff (tails/tails#19398)
2498 - Enable non-free-firmware APT component (tails/tails#19411)
2501 - fix FTBFS: patch wasnt applying
2502 - Fix FTBFS by installing b43-fwcutter from bullseye instead of sid
2503 - Bump the debian APT snapshot to one that supports the non-free-firmware archive
2505 - Enable non-free-firmware archive area for distributions that support it
2507 -- Tails developers <tails@boum.org> Sat, 18 Mar 2023 15:21:33 +0000
2509 tails (5.10) unstable; urgency=medium
2511 * Upgrade Tor Browser to 12.0.3-build1 (tails/tails!1046)
2514 - Upgrade to Tor Browser based on Firefox 102.8 (tails/tails#19412)
2517 - Fetch Tor Browser from our own archive
2518 - Upgrade Tor Browser to 12.0.3-build1
2520 * Avoid symlink attack when writing amnesia owned file as root (tails/tails!1038)
2522 Dennis Brinkrolf discovered a privilege escalation in Tails 5.9:
2523 an adversary, who can already run arbitrary code as the amnesia user,
2524 could escalate their privileges to reading arbitrary files on the
2525 system. It might be possible to use this as part of an exploit chain
2526 to gain full root privileges.
2529 - Privilege escalation via Dotfiles, sudo, and gnome-shell-save-environment
2533 - clarify/acknowledge security limitations
2535 - Avoid symlink attack when writing amnesia owned file as root
2537 * Stop some dbus proxies when they are unneeded (tails/tails!1019)
2540 - Keyboard input sometimes not working in Tor Connection and Tor Browser
2544 - Rewrite dbus proxy code
2545 - Only run Tor Browser dbus proxy services when needed
2546 - Only run Onion Circuits dbus proxy service when needed
2547 - Automatically start dbus proxy service when Onion Circuits is started
2548 - Automatically start dbus proxy service when Tor Browser is started
2550 * tps: Treat unmounted partition as locked (tails/tails!1043)
2553 - tps-frontend lets user activate features when the Persistent Storage LUKS was
2554 not fully set up (tails/tails#19352)
2557 - tps: Treat unmounted partition as locked
2559 * Upgrader: don't crash when a download is interrupted and then resumed
2563 - Upgrader: don't crash when a download is interrupted and then resumed
2565 * tps: Bump the unlocking timeout to 120 seconds (tails/tails!1039)
2568 - Persistent Storage fails to unlock: timeout (tails/tails#19432)
2571 - tps: Bump the unlocking timeout to 120 seconds
2573 * Test suite: adjust to updated Tor Browser localization in German
2577 - Test suite step "the support documentation page opens in Tor Browser" is broken
2578 in German (tails/tails#19419)
2581 - Test suite: relax our expectations, again
2582 - Test suite: adjust to updated Tor Browser localization in German
2584 * Small fixes on Persistent Storage UI (tails/tails!1032)
2589 - Update doc-source-relationships.yml
2590 - Replace: 'doc/first_steps/persistence' with 'doc/persistent_storage'
2592 - Avoid confusing future tense
2597 - Improve error message
2598 - Be more helpful in UI
2600 * GitLab CI: remove lint-latest-po job (tails/tails!1031)
2603 - Fix lint-latest-po (tails/tails#19378)
2606 - GitLab CI: remove lint-latest-po job
2608 * Welcome Screen: Avoid starting Persistent Storage app on each login
2612 - Remove Welcome Screen persistent settings hack (tails/tails#19062)
2613 - Persistent Storage settings always opened after login (tails/tails#19410)
2616 - still renaming directories
2617 - Improve comment documenting Welcome Screen settings design
2618 - Rename Welcome Screen settings directories
2619 - document Welcome Screen settings design
2620 - Remove workaround for persistent Welcome Screen settings directory
2621 - Welcome Screen: Avoid starting Persistent Storage app on each login
2623 * Update our doc to the new Persistent Storage (tails/tails!1024)
2627 - Remove old issue and work around
2629 - Add a bit more doubt
2630 - Add dummy changelog entry for 5.10.
2631 - Remove UDFs for versions we'll never release
2635 - This file is not about persistence anymore
2636 - Update cross-references
2639 - Update cross-references
2641 - Give more visibility
2642 - Reorder by importance
2644 - Integrate FAQ into doc
2646 - Remove Persistent Storage from installation doc
2647 - Move last warning to a better place
2649 - Remove useless warning
2650 - Integrate warning in doc
2652 - Remove screenshots
2653 - Layer the information
2654 - Remove CSS classes
2655 - Complete procedure
2656 - Update list of features
2657 - Rewrite in Markdown and improve style
2659 - Update to new Persistent Storage
2660 - Move instructions to use the Persistent Storage to a dedicated page
2663 - Add subsections and TOC
2664 - Reorder features as in new interface
2665 - Update to new Persistent Storage
2666 - Update to new Persistent Storage
2667 - Rename as Markdown file
2668 - Deduplicate content
2670 - Add missing alt tags
2671 - Update to new Persistent Storage
2672 - Update doc to #19338
2673 - Add missing alt tags
2674 - Use more consistent terminology
2677 - Remove unused page
2679 - Rename more pages and images
2680 - Merge inline in the only place where it was used
2681 - Create a dedicated doc section about the Persistent Storage
2682 - Deactivate trail plugin
2683 - Remove CSS about traillink
2684 - Remove traillink from templates
2685 - Remove HTML tags in Markdown
2686 - Remove traillink directives (#18951)
2687 - Explain better how to exchange with another Linux
2688 - Move long warning and FAQ to a dedicated page
2689 - Improve warning on opening from another OS
2690 - Remove unactionable warning
2692 - Improve style guide
2696 - Split Persistent Storage creation and configuration
2698 * FIX Persistent Greeter options scenario (tails/tails!1021)
2701 - "Persistent Greeter options" test case is broken (tails/tails#19397)
2705 - login button in german, too
2706 - fix more images for German greeter
2707 - Fix test suite regexp
2708 - new images for persistent language
2709 - FIX Persistent Greeter options scenario
2711 * No predictable names in /tmp (tails/tails!1018)
2714 - Don't use predictable names in /tmp (tails/tails#19389)
2717 - Don't use predictable names in /tmp
2718 - Use service name without variables
2720 * tps: Ask for confirmation when Persistent Storage exists but is not unlocked
2724 - Confirm when starting without unlocking the Persistent Storage
2728 - Test Suite: Check if the confirmation dialog is displayed
2729 - Test suite: Fix "I log in to a new session" step failing
2730 - tps: Ask for confirmation when Persistent Storage exists but is not unlocked
2732 -- Tails developers <tails@boum.org> Wed, 15 Feb 2023 09:44:33 +0000
2734 tails (5.9) unstable; urgency=medium
2736 * Update tor to 0.4.7.13 (tails/tails!1013)
2739 - Upgrade to Tor 0.4.7.13 (tails/tails#19377)
2742 - Update tor to 0.4.7.13
2744 * Resolve "Upgrade to Tor Browser based on Firefox 102.7" (tails/tails!1012)
2747 - Upgrade to Tor Browser based on Firefox 102.7 (tails/tails#19360)
2750 - Fetch Tor Browser from our own archive
2751 - Upgrade Tor Browser to 12.0.2-build1
2753 * tps: Increase timeout of activate call (tails/tails!1006)
2756 - tps logs passphrase in cleartext in debug mode (tails/tails#19350)
2757 - Persistent Storage fails to activate: timeout (tails/tails#19347)
2760 - tps: Don't print status of NetworkManager.service to stdout
2761 - tps: Bump the activation timeout to 120 seconds
2762 - tps: Add log messages
2763 - tps: Log line which called executil helper functions
2765 * Troubleshooting mode: stop passing options that can only break stuff
2769 - Reconsider Troubleshooting Mode kernel command line wrt. Wayland
2773 - Troubleshooting mode (syslinux): stop passing options that can only break stuff
2774 - Troubleshooting mode (EFI): stop passing options that can only break stuff
2776 * Upgrade to Linux 6.0 (tails/tails!996)
2779 - Add randomize_kstack_offset=1 to boot parameters (tails/tails#19023)
2780 - Enable BPF JIT hardening (tails/tails#19345)
2781 - Upgrade to Linux 6.0 (tails/tails#18467)
2784 - Test suite: allow the pattern to cover slightly less of the write cache
2785 - Revert renaming of /etc/amnesia/version to /etc/tails/version
2786 - Move "set -eu" to a better location
2787 - Test suite: remove dead code
2788 - Test suite: drop check about tails-version output
2789 - Upgrade to Linux 6.0.12-1~bpo11+1
2790 - early_patch: implement the initramfs-tools' "prereqs" interface
2791 - initramfs: stop including SCSI drivers
2792 - initramfs: bring back including all DRM modules
2793 - Always log the size of the initramfs
2794 - initramfs: remove support for AFS and CIFS
2795 - initramfs: remove support for PCMCIA and parallel port
2796 - initramfs: don't include firmware for drivers we removed
2797 - initramfs: remove sunrpc support
2798 - initramfs: remove a bunch more SCSI drivers
2801 - Include fewer modules in the initramfs
2802 - Compress the initramfs with the most space-efficient XZ compression level
2803 - Simplify how we set initramfs compression algorithm
2804 - Hardening: turn on BPF JIT hardening, if the JIT is enabled.
2805 - Fix headings levels
2806 - Hardening: randomize kernel stack offset on syscall entry
2807 - initrd: install privacy screen provider drivers
2808 - Upgrade to Linux 6.0.3-1~bpo11+1 from bullseye-backports
2809 - Enable bullseye-backports APT source
2810 - Rename config/amnesia to config/variables
2811 - Rename /etc/amnesia to /etc/tails
2812 - Deprecate /usr/share/doc/amnesia/
2813 - The thing is called Tails
2814 - Drop support for config/amnesia.local
2816 - Rename $AMNESIA_* variables
2817 - Remove unused variables
2819 * Tor Connection: Hide "Fix clock", "Proxy", and "Captive Portal" when time sync
2820 was successful already (tails/tails!986)
2823 - Add label to bridge line on the error screen (tails/tails#19332)
2824 - Hide "Fix clock", "Proxy", and "Captive Portal" when time sync was successful
2825 already (tails/tails#19171)
2828 - Make it easier to reason about state transitions
2829 - Tor Connection: simplify test
2830 - Tor Connection: improve phrasing
2831 - Tor Connection: make phrasing consistent
2832 - Tor Connection: tell the user when we know their network is blocking access to
2834 - Tor Connection: explain what bridges are on the error screen
2835 - Tor Connection: rename "Bridge by email" section on the error screen
2836 - Tor Connection: add label to bridge line on the error screen too
2837 - Tor Connection: fix alignment of "Send an empty email" string
2838 - Tor Connection: Hide "Fix clock", "Proxy", and "Captive Portal" when time sync
2839 was successful already
2840 - Name widgets so we can act on them
2841 - Tor Connection: make log message somewhat clearer
2842 - Tor Connection: remember the result of tails-get-network-time
2844 * tps: Fix handling of symlink bindings (tails/tails!1009)
2847 - Persistent Storage sometimes fails to activate Dotfiles (tails/tails#19346)
2850 - tps behave-tests: Support passing flags to behave
2851 - tps behave-tests: Test source directory with symlink
2852 - tps behave-tests: Add README
2853 - tps: Fix BEHAVE_DEBUG_ON_ERROR feature of the behave tests
2854 - tps: Improve log messages
2855 - tps-frontend: Improve log and error messages
2856 - tps-frontend: Fix log level of message
2857 - tps: Fix activation of symlink bindings failing
2858 - tps: Fix log message
2859 - tps: Improve error message
2860 - tps: Fix Activate call failing with spurious error
2861 - tps: More useful error message
2863 * tps: Don't log parameters which can contain secrets (tails/tails!1005)
2866 - tps logs passphrase in cleartext in debug mode (tails/tails#19350)
2869 - tps: Don't log parameters which can contain secrets
2871 * Do not hide the GTK3 “application menu” button in title bars (tails/tails!1004)
2874 - Cannot access GTK3 application menus in Tails 5.8 / Wayland (tails/tails#19371)
2877 - Do not hide the GTK3 “application menu” button in title bars
2879 * Fix Tor Browser homepage localization when started from Tor Connection
2883 - Tor Browser homepage is not localized when started from Tor Connection
2889 - Fix Tor Browser homepage localization when started from Tor Connection
2891 * Update tails@ key (tails/tails!1001)
2894 - Test suite: ensure OpenPGP keys test is run when the only change on the branch
2898 * Pull non-website PO files from Weblate (tails/tails!1000)
2901 - Pull non-website PO files from Weblate (tails/tails#19322)
2904 - import-translations: remove obsolete reference to Transifex
2905 - import-translations: drop support for excluding languages
2906 - generate-languages-list: workaround the fact we can't distinguish reviewed
2907 translations from non-reviewed ones
2908 - Pull non-website PO files from Weblate
2910 * Make a few user-facing strings localizable (tails/tails!998)
2913 - Not localized (internationalized) strings (tails/tails#19349)
2916 - Integrate the Welcome Screen's main_window.py into our l10n framework
2918 - Make a few user-facing strings localizable
2920 * Autocorrect Rubocop violations (tails/tails!997)
2924 - Test suite: run rubocop --autocorrect
2926 * Improve wording of backup utility (tails/tails!995)
2929 - Improve wording of backup utility (tails/tails#19348)
2932 - Test suite: adjust to new UI wording
2933 - Use more consistent wording
2937 * Fix newly discovered shellcheck violations (tails/tails!994)
2940 - Fix "lb build" exit code reporting
2941 - Add missing quotes
2943 * Remove scrollbar in Favorites (tails/tails!992)
2946 - Need to scroll to see all Favorites (tails/tails#19338)
2949 - Apply 1 suggestion(s) to 1 file(s)
2950 - Test suite: fix "the screen keyboard works in Tor Browser"
2952 - Test suite: remove dead code
2953 - Test suite: retry opening new tab
2954 - Test suite: ensure Tor Browser has loaded the home page before we continue
2955 - Test suite: spam Tor Browser less intensively
2956 - Test suite: remove unused code
2957 - Test suite: start Tor Browser and Thunderbird by typing their name
2958 - Test suite: fix typo in comment
2959 - Remove scrollbar in Favorites
2961 * Remove dead code about TAILS_WIKI_SUPPORTED_LANGUAGES (tails/tails!991)
2964 - WhisperBack: don't try to include non-existing tails-greeter.errors file
2965 - WhisperBack: don't try to include non-existing xorg.conf
2966 - Remove l10n plumbing for WhisperBack configuration file
2967 - Remove obsolete .xsessionrc
2969 - WhisperBack config: remove dead code
2971 * Test suite: fix Unsafe Browser localization test in French (tails/tails!988)
2974 - Test suite: fix Unsafe Browser localization test in French
2976 * Revert "Run Qt applications as native Wayland by default" (tails/tails!987)
2979 - Remove obsolete config/chroot_local-includes/usr/share/live/config/xserver-
2980 xorg/*.ids (tails/tails#19330)
2981 - Qt AppImages broken on Tails 5.8 (tails/tails#19326)
2982 - Clipboard encryption/decryption with Kleopatra is broken on Wayland
2984 - can't paste into unlock password field in KeepassXC in Tails 5.8
2988 - Remove obsolete per-device X.Org driver override via live-config
2989 - Revert "Don't run OnionShare as a native Wayland app"
2990 - Revert "Run Qt applications as native Wayland by default"
2992 * Remove the warning dialog when starting the Unsafe Browser (tails/tails!985)
2995 - Explain better the Unsafe Browser from Tor Connection (tails/tails#19168)
2998 - Test suite: adjust to removed warning dialog
2999 - Remove the warning dialog when starting the Unsafe Browser
3001 * Make the Upgrader use the mirror redirector (tails/tails!983)
3004 - Upgrader: use dedicated SocksPort with no stream isolation
3005 - Test suite: remove test whose cost/benefit has become very high
3006 - Test suite: apply user-facing terminology
3007 - Design doc: remove outdated details
3008 - Remove now unused mirror-pool-dispatcher submodule
3009 - Design doc: update what the fallback DNS pool is used for
3010 - Drop dead code, obsolete dependencies, and obsolete tweaks
3011 - Upgrader: Drop the "replace URL with a random one from the mirror pool JSON"
3012 and "fallback to DNS pool" mechanisms
3013 - Upgrader: bring back explanation when impossible to do an incremental upgrade
3014 - IUK test suite: adjust to 888b78811bcd156284d01a063d448f6bd693db22
3015 - Design doc: use new download URI in example UDFs
3016 - Generate UDFs that point to the mirror redirector for ISO and IUK downloads
3018 * Welcome Screen: restore ability to login with default settings by pressing
3019 "Enter" (tails/tails!982)
3022 - Login with default settings now requires pressing "Enter" twice in the Welcome
3023 Screen (tails/tails#19323)
3026 - Welcome Screen: restore ability to login with default settings by pressing
3029 * switch Persistent Storage icon to SVG (tails/tails!980)
3032 - Replace Persistent Storage icon with SVG version (tails/tails#19316)
3035 - Also use the SVG icon in the Welcome Screen
3036 - Switch Persistent Storage icon to SVG
3038 -- Tails developers <tails@boum.org> Mon, 23 Jan 2023 11:53:31 +0100
3040 tails (5.8) unstable; urgency=medium
3042 * Upgrade Thunderbird to 102.6.0-1~deb11u1
3044 * Fix FTBFS: refresh patch (tails/tails!965)
3049 - Fix FTBFS: refresh patch
3051 * Update tor browser to 12.0.1 (tails/tails!979)
3056 - Fetch Tor Browser from our own archive
3057 - Upgrade Tor Browser to 12.0.1-build1
3059 * Enable bullseye-proposed-updates (to test Bullseye 11.6 before it's released),
3060 upgrade to Linux 5.10.158 (tails/tails!975)
3062 Closes #19301, #19293
3065 - After disabling the Tor Configuration persistence feature, only start Tor
3066 Connection if we're connected to a local network
3067 - Also consider the Linux kernel from bullseye-updates
3068 - Install the Linux kernel from bullseye-proposed-updates, if that suite is
3070 - Test suite: remove unused image
3071 - Upgrade to Linux 5.10.158-1
3072 - Enable bullseye-proposed-updates, to test Bullseye 11.6 before it's released
3073 - Bump snapshot of the Debian archive to 2022121302, so we can use proposed-
3074 updates for Bullseye 11.6
3076 * Test suite: make keyboard input more reliable (tails/tails!971)
3079 - Test suite: increase sleep time at the end of Screen#type
3080 - Test suite: correct comment
3081 - Test suite: keep keys pressed for 40 ms
3082 - Test suite: improve comment
3083 - Test suite: keep keys pressed for 20 ms instead of 10 ms
3084 - Test suite: update comment
3086 * Fix Dotfiles access for non-root users (tails/tails!968)
3091 - Fix dotfiles access for non-root users
3093 * Adapt to Wayland our error reporting mechanism when GDM fails to start
3099 - resorting to X.Org → crash → better UX!
3100 - Adapt to Wayland our error reporting mechanism when GDM fails to start
3102 * Switch from bullseye-proposed-updates to Bullseye 11.6 (tails/tails!978)
3107 - Revert "Enable bullseye-proposed-updates, to test Bullseye 11.6 before it's
3109 - Bump APT snapshots
3111 * Tor Connection UI improvements (tails/tails!977)
3113 Closes #19238, #19256, #19169, #19172
3116 - Tor Connection: fix window size
3117 - Fix links from Tor Connection to the offline documentation
3118 - Tor Connection: fix typo in string
3119 - Tor Connection: display QR code scanning error below the scanning button
3120 - Add label to bridge line
3122 * Persistent Storage: use new icon (tails/tails!976)
3125 - Use the new Persistent Storage icon on the Welcome Screen when the Persistent
3126 Storage does not exist yet
3127 - Persistent Storage: use new icon
3129 * Allow persisting bridge scanned from QR code, take 1 (tails/tails!973)
3134 - Allow persisting bridge scanned from QR code, take 1
3136 * Update tor to 0.4.7.12 (tails/tails!972)
3141 - Update tor to 0.4.7.12
3143 * fix window centering (tails/tails!970)
3148 - Ensure extension description matches what it actually does
3149 - gdm-tails is a GDM session, with extension support
3150 - more comments to clarify subtleties
3151 - check which session we're in is more to the point
3153 - Apply 1 suggestion(s) to 1 file(s)
3154 - stop "when it's done" , not predefined time
3155 - window-centering only runs in GDM
3157 - rounding is needed to avoid false moves
3158 - better comments and log messages
3159 - Revert "avoid useless CPU work"
3160 - avoid useless CPU work
3161 - extensions are disabled in GDM: workaround
3162 - window centering in Greeter
3164 * Remove static suggestion of diceware passphrase (tails/tails!969)
3169 - Remove static suggestion of diceware passphrase
3171 * Allow disabling the Unsafe Browser (tails/tails!967)
3176 - fix "I disable the Unsafe Browser" in corner cases
3177 - adapt Greeter options persistence
3178 - fix test suite for new wording
3179 - Adjust to the Unsafe Browser being disabled by default
3181 - Enable Unsafe Browser by default
3182 - Revert "Welcome Screen: always enable the Unsafe Browser and make the setting
3185 * Misc Persistent Storage fixes for 5.8 (tails/tails!966)
3187 Closes #19220, #19279, #19280, #19148, #19294
3190 - Don't run OnionShare as a native Wayland app
3191 - Run Qt applications as native Wayland by default
3192 - Allow running Qt applications as native Wayland
3193 - Remove Dasher (broken on Wayland)
3194 - Tell the user what's going on while deleting Persistent Storage
3195 - When Persistent Storage is unlocked, instruct how to delete it
3196 - Persistent Storage: add missing link to doc on the features screen
3198 * FIX --disable-chutney (tails/tails!961)
3201 - FIX --disable-chutney
3203 * Tor Connection: select "Ask for a bridge by email" by default when "Hiding"
3209 - Make it easier to scan a QR code
3210 - Tor Connection: select "Ask for a bridge by email" by default when "Hiding"
3212 * Tor Connection: display percentage on the connection progress bar
3216 - Tor Connection: display percentage on the connection progress bar
3218 * TPS explanation strings, and more (tails/tails!947)
3223 - remove vague comment
3226 - explanation strings for relevant TPS features
3228 * Additional Software: ensure APT is not broken after being interrupted
3234 - Additional Software: ensure APT is not broken after being interrupted
3236 * Test suite: relax our expectations for coverage of the known pattern in memory
3240 - Test suite: relax our expectations for coverage of the known pattern in memory
3242 * create persistent storage from the greeter (tails/tails!922)
3247 - change wording following the new style
3248 - comment to explain flag files
3250 - Apply 3 suggestion(s) to 3 file(s)
3252 - greeter test suite code refactor
3253 - checking early is useless and ineffective
3254 - FIX look at the actual value
3255 - big code refactoring
3256 - actually handle button
3257 - better size and margins for padlock
3258 - make label the same in glade and python
3259 - remove suggested-action
3260 - Reorder in greeter
3261 - Better real estate use
3262 - draft: automated tests
3263 - "don't create" is not a suggested-action
3264 - Clearer state management in UI
3265 - actually start persistent storage setup
3266 - draft: create persistent storage from greeter
3268 * Upgrade Tor Browser to 12.0 (tails/tails!921)
3270 Closes #19135, #19085
3273 - Test suite: bump timeout
3274 - Make code more readable
3275 - Fetch Tor Browser from our own archive
3276 - Upgrade Tor Browser to 12.0
3277 - Test suite: fix "Downloading files with the Tor Browser" scenario with Tor
3278 Browser 12 on Wayland
3279 - Test suite: improve comment phrasing
3280 - Test suite: only compute keymap once in Screen#press
3281 - Test suite (mouse_location): remove unused method parameters
3282 - Fix buggy (invisible) conflict resolution from rebase
3283 - Turn off shellcheck false positive
3284 - Drop obsolete mentions of $TBB_EXT
3285 - Drop import of library that's not needed anymore
3286 - Update handling of Tor Browser locales
3287 - Fix location for Burmese
3288 - Declare newly added Tor Browser locales
3289 - Don't try to install non-existing langpacks
3290 - Tor Browser update process: there's no langpacks anymore
3291 - Fetch Tor Browser from our own archive
3292 - Upgrade Tor Browser to 12.0a5
3293 - Upgrade Tor Browser to nightly.2022.11.22
3294 - Thunderbird: avoid proxy bypass, same as Tor Browser
3295 - Test suite: Unsafe Browser has no bookmarks at all anymore
3296 - Unsafe Browser: delete default bookmarks
3297 - Test suite: update expected images
3298 - Test suite: update expected images
3299 - Upgrade Tor Browser to 12.0a4
3300 - Thunderbird: replace network.security.ports.banned pref with
3301 network.proxy.allow_hijacking_localhost
3302 - Tor Browser: remove network.security.ports.banned pref, which does more harm
3304 - Update AppArmor policy for Tor Browser 12
3305 - Test suite: update expected images for Tor Browser 12
3306 - Test suite: update expected Unsafe Browser images for Tor Browser 12
3308 - Remove unused variable
3309 - Test suite: update expected images for Tor Browser 12
3310 - Test suite: remove obsolete complexity
3311 - Test suite: update for new "New Identity" UX in Tor Browser 12
3312 - Test suite: spam Tor Browser less intensively
3313 - Test suite: refactoring (DRY)
3314 - Test suite: update expected image
3315 - Test suite: spam Tor Browser less intensively
3316 - Test suite: add support for Tor Browser nightly builds
3319 - Drop unused flexibility
3320 - Remove obsolete variable
3321 - Adjust to multilingual Tor Browser tarball
3322 - Adjust to script being renamed upstream
3323 - Upgrade Tor Browser to nightly.2022.10.19
3324 - Tor Browser upgrade doc: support nightly builds, assume multilingual tarball
3325 - Upgrade Tor Browser to 12.0a3
3326 - Unsafe Browser: also apply branding to brand.properties
3327 - Fix grammar in comment
3328 - Unsafe Browser: don't ask confirmation when quitting with CTRL+q
3329 - Test suite: update Unsafe Browser images
3330 - Test suite: add expected unused Tor Browser library
3331 - Test suite: adjust to Tor Browser 12's (Firefox 102) new download flow
3332 - Upgrade Tor Browser to 12.0a2
3335 -- Tails developers <tails@boum.org> Mon, 19 Dec 2022 09:43:26 +0000
3337 tails (5.8~beta1) unstable; urgency=medium
3339 * Rewrite the Persistent Storage settings in Python (tails/tails!897)
3341 Closes: #17803, #15142, #11529, #15827, #7002, #18008, #17331, #7503, #19130, #16061, #15313
3344 - Change test case to reflect what we wanted
3345 - Really disable broken Thunderbird test
3346 - fix reload-connections hook during greeter
3347 - clarify Mount.__str__ from persistence.conf format
3348 - one more type hint
3349 - remove a (never used) systemd alias
3350 - symlink_to ignores the second argument.
3351 - sort hook execution
3354 - Reset Tor configuration when deactivating the corresponding Persistent Storage
3356 - Don't install/upgrade Additional Software unless the corresponding persistent
3357 directories are mounted
3358 - Don't try to create Persistent Storage when the system partition is not called
3360 - Don't try to create Persistent Storage on non-GPT device
3361 - Persistent Storage creation: use UI strings from the design
3362 - Add ssh as a conflict app for the SSH client feature
3363 - Move "Tor Browser Bookmarks" to Applications section of Persistent Storage
3365 - Save with Glade 3.40.0
3366 - Reload NetworkManager connections when activating/deactivating the
3367 corresponding Persistent Storage feature
3368 - tps-frontend: fix icons path
3369 - Stop setting custom permissions on /var/lib/live/config
3370 - WhisperBack: don't include obsolete file in the attached technical info
3371 - CUPS: update configuration files as soon as possible
3372 - Restart CUPS after enabling/disabling the Printers persistent storage feature
3373 - Remove incorrect comment
3374 - Remove function that's not used anymore
3375 - tails-additional-software-config: adjust to new Persistent Storage
3377 - Refactoring: move method to library
3378 - Revert "Test suite: workaround regression in Additional Software"
3379 - tails-additional-software: don't wait for tps-frontend to complete before
3380 writing contents to live-additional-software.conf
3382 - launch_x_application: drop feature we don't need anymore
3383 - Add exceptions for Bandit false positives
3384 - Use long option name
3385 - Harden sudo configuration
3386 - Revert "Test suite: add temporary workaround for tps buggy user story wrt.
3388 - Fix the user story for Dotfiles
3390 - tps: document behavior that can be surprising
3391 - TCA: fix setup of persistent bridge switch widget
3392 - Remove unused script and service
3393 - Test suite: remove obsolete workaround
3394 - TCA: drop useless code
3395 - TCA: fix localization of window title
3396 - Remove unused copied'n'pasted constant
3397 - TCA: mediate reading/writing from/to tca.conf via tca-portal
3398 - Update logger's name: "tor-launcher" does not mean anything in this context
3400 - Remove unused import
3401 - TCA: remove unused import
3402 - TCA: fix type of argument
3403 - Don't allow deleting an unlocked Persistent Storage
3404 - Drop incomplete attempt to support unlocking Persistent Storage after login
3405 - Unsafe Browser: adjust to the removal of persistence_is_enabled in tails-
3408 - Remove useless customization
3409 - Fix typo in docstring
3410 - Add Synaptic, apt-get, and dpkg as conflicting apps for the Additional Software
3411 persistent storage feature
3412 - Remove "XXX" comment: this is about further improving a feature that was not
3413 even planned in the design
3414 - Remove "XXX" comment: already tracked on the issue
3416 - Remove "XXX" comment: moved to the issue
3418 - Fix variable type mismatch
3419 - Remove "XXX" comment: moved to the issue
3420 - Remove "XXX" comment
3422 - Remove "XXX" comment: let's not translate stuff that the user has no chance to
3424 - Remove "XXX" comment: moved to the issue
3425 - Test suite: fix Gherkin When/Then semantics
3426 - Test suite: fix backup scenario
3427 - Remove unused import
3428 - Test suite: refactoring (extract code to method)
3429 - Revert "Test suite: adjust for increased TimeoutStopsec= (refs: #17278)"
3430 - Test suite: check earlier that Additional Software is correctly configured
3431 - Test suite: workaround regression in Additional Software
3432 - Test suite: minor refactoring
3433 - Additional Software: add more accurate wait loop
3435 - Additional Software: don't run tps a second time
3436 - Additional Software: drop unsupported and now useless options
3437 - mypy: enable a few more checks
3438 - mypy: ignore gi and gi.repository
3439 - Help mypy discover our Python libraries
3441 - Fix comment phrasing
3442 - Fix activating Additional Software with an unlocked persistent storage
3443 - Test suite: use shortcut
3444 - Test suite: continue adapting to new UI
3445 - Remove obsolete scripts
3446 - Test suite: drop the Persistent Storage configuration file unit tests
3448 - Ignore flake8 false positives
3449 - tps test suite: make config_file_test support the case when udisks is not
3451 - Fix typo in comment
3452 - GitLab CI: drop test-persistent-storage-behave
3453 - Fix tps behave tests when a dedicated filesystem is mounted on /tmp
3454 - Add support for debug output without a debugger installed
3458 - Test suite: finish adapting "I delete the persistent partition" to new UI
3459 - Use string from the design
3460 - Fix inverted boolean logic
3461 - Fix typo in comment
3462 - Make it possible to run config_file_test.py without a tails-persistent-storage
3464 - Revert "tps: Change owner of persistence.conf to root"
3465 - Move class docstring where it belongs
3466 - Fix typo in comment
3467 - Test suite: don't test for persistence.conf.bak existence
3468 - Test suite: run the persistence storage behave and config file unit tests
3469 - GitLab CI: add missing dependencies
3470 - GitLab CI: run persistent storage tests in separate jobs
3471 - tps test suite: use larger filesystem to that mke2fs can create a Journal
3472 - Fix typo in comment
3473 - Declare mount flags used by the tps test suite
3474 - tps test suite: use the same mount flags as production
3475 - Sort ExecStartPre before ExecStart, just like their execution order
3476 - Maintain directories with systemd-tmpfiles
3477 - Forbid usage as non-amnesia: this would break stuff
3478 - Simplify code and make bookmark removal an atomic operation
3479 - Do all GNOME bookmarks changes as the amnesia user
3480 - Use canonical directory location
3481 - Protect grep command against special regexp chars
3482 - Revert incomplete split of the Welcome Screen persistence feature
3483 - Welcome Screen: don't allow login until we're fully done activating the
3485 - Remove unused import
3486 - Welcome Screen: point to new issue that tracks a cleanup that's now possible
3487 - Remove unused imports
3489 - Remove unused import
3490 - Don't let tempfile try to delete file that we just renamed
3491 - Don't try (and fail) to refresh features' IsActive when unlocking
3492 - Use different variables names when we're using them to store different data
3494 - Fix comment grammar and clarify
3495 - Test suite: add temporary workaround for tps buggy user story wrt. dotfiles
3496 - Add shellcheck exception
3497 - Test suite: actually enable all persistence presets.
3498 - tps: Remove config file backup functionality
3499 - tps: Make writes to the configuration file atomic
3500 - tps: Fix "invalid boot device" message not shown
3501 - tps: Fix state handling
3502 - tps: Handle expected error that deletion fails because device is busy
3503 - tps: Don't unmount with force
3504 - Remove unused IncorrectOwnerException and IncorrectOwnerError
3505 - Rename test directory
3506 - tps: Remove the obsolete mount test
3507 - GitLab CI: Run the tps config file test
3508 - tps: Fix config file test
3509 - tps: Change owner of persistence.conf to root
3510 - tps: Deactivate features before deleting
3511 - Test suite: start porting to new implementation of Persistent Storage
3512 - Test suite: update referenced class name
3513 - tps: Don't make the tps service exit when closing the app
3514 - tps: Add button to open tails-additional-software-config
3515 - tps: Add labelled-by property to list boxes in features_view.ui
3517 - tps: Print debug log messages when running behave tests
3518 - tps: Make features view accessible to screen readers
3519 - tps: Format features_view.ui with glade
3520 - tps: Use connect-drop
3521 - connect-drop: Avoid opening an additional file descriptor
3522 - actually authenticate to dbus
3523 - Test suite: remove obsolete images
3524 - Persistent Storage frontend: add accessibility relationships
3525 - connect-drop: fix style
3526 - connect-drop: --dbus has help line
3527 - connect-drop: option groups
3528 - connect-drop --env-keep
3529 - connect-drop is now DBus-aware
3530 - WIP: Update Persistent Storage design document
3531 - Update Persistent Storage design document
3532 - tps: Add basic support for custom features
3533 - Clarify branded names
3534 - tps: Add some accessibility information
3535 - tps: Improve layout
3536 - Set executable bit on unlock-veracrypt-volumes
3537 - tps: Use tails-documentation to open doc links
3538 - tps: Add a HACKING.md
3539 - tps: Try again using get_block_for_dev
3540 - tps: Add Tor Configuration feature
3541 - tps: Remove Language and Region feature
3542 - tps: Start implementing language and region feature
3543 - Rewrite Persistent Storage settings in Python (refs: #17803)
3545 * Tor bridges QR code scanning (tails/tails!874)
3550 - match labels between code and tests
3551 - do whatever dogtail wants
3552 - fix labeling in tca
3553 - Test suite: update to new string
3554 - Apply GNOME style guide
3555 - Implement sajolida's new design for bridges input on the error screen
3556 - Polish new bridge input UI
3557 - infobar works in error page, too
3559 - MessageDialog → InfoBar
3560 - scanning QR from error page is tested, too
3561 - test suite refactoring
3562 - adapt QR code automated test to new mockup
3563 - using QR code sets state
3564 - the new mockup now seems to behave
3565 - scan qrcode: new mockup
3566 - change wording for QR code errors
3567 - Test suite: ensure we see the QR code on the screen
3568 - run_test_suite: check recently added dependencies
3569 - WIP: Test suite: add test for QR code scanning feature in Tor Connection
3570 - Reference issue that has more details instead of a commit that lacks context
3571 - Don't load library that we don't use anymore
3572 - show no dialog if the user closes zbarcam
3573 - Ignore zbarcam output if it arrives too late
3574 - Add the v4l2loopback kernel module
3575 - improve labels before UX does :)
3576 - Tor Connection: disable the "Scan a QR code" button until "Enter a bridge that
3577 you already know" is selected
3578 - gettext for dialog
3579 - implement Scan QR code from error step, too
3580 - better error handling
3581 - QR code content is parsed/validated
3582 - doctests for parse_qr_content
3583 - Convert the contents of the QR code into bridge lines
3584 - clicking on "Scan QR code" does something...
3585 - glade: clicked callback + naming convention
3586 - Tor Connection: add button to scan QR code
3587 - scanning Tor bridges QR codes: building blocks
3589 * Migrate from X.Org to Wayland (tails/tails!838)
3591 Closes: #12213, #19042, #14623, #15635, #19008, #16795, #18020, #17284, #5422, #9767, #7502, #18339
3594 - Test suite: don't expect the application title seen on the accessibility bus to
3596 - Glade: AtkObject::accessible-role properties should not be translatable
3597 - Test suite: fix clearing notifications
3598 - FIX sandbox check for some parts of the test suite
3599 - Test suite: simplify
3600 - workaround an a11y bug preventing test suite
3601 - one more test suite fix
3602 - Test suite: migrate to input techniques that work on Wayland
3603 - TPS is on Wayland, a11y, ibus...
3604 - remove unused import
3606 - more explicit block clearnet → internal services
3607 - FIX proxy test for unsafebrowser
3608 - Really disable broken Thunderbird test
3609 - no incoming connections to UnsafeBrowser
3610 - tails-add-session-firewall-rune work without --apply
3612 - Test suite: make test work in non-English locales
3613 - Test suite: rename step to match what it currently checks
3614 - Fix typos in comment
3615 - Test suite: remove workaround
3616 - Test suite: fix race condition
3617 - Test suite: add missing space between words in error message
3618 - Extract Python code to an external script
3620 - Drop unnecessary /g regexp modifiers
3621 - Use extended regexps
3622 - Don't install unneeded systemd-container
3624 - Remove obsolete comment
3625 - Fix typo in comment
3627 - Improve user-facing string
3628 - Use install(1) instead of mkdir + chown
3629 - Make variable name correctly reflect its value
3630 - Make variable name correctly reflect its value
3631 - Add missing word in error message
3632 - Test suite: drop unnecessary step
3633 - Test suite: move and warn about xdotool using code
3634 - Fix a bunch of issues identified by shellcheck
3635 - Unsafe Browser: drop workarounds.
3636 - Test suite: clarify/simplify code
3637 - Test suite: fix recovery
3638 - Test suite: fix robustness issue
3639 - Test suite: verify that browser address bar images exist
3640 - Test suite: adjust path
3641 - Test suite: fix sanity check
3642 - Test suite: drop comment
3643 - Unsafe Browser: move code
3644 - Unsafe Browser: drop unnecessary mount for container
3645 - Test suite: adapt firewall sanity check to the clearnet network namespace
3646 - Test suite: adapt test after dropping the greeter's Unsafe Browser setting
3647 - Test suite: adapt regex to new command line
3648 - Test suite: deal with Unsafe Browser permission error
3649 - Test suite: export Unsafe Browser bookmarks into an accessible directory
3650 - Unsafe Browser: allow access to /etc/hosts in AppArmor profile
3651 - Test suite: use correct step
3652 - Welcome Screen: really hide the "Add" button for obsolete settings
3653 - Welcome Screen: always enable the Unsafe Browser and make the setting obsolete
3654 - Revert "Unsafe Browser: prevent accidental/malicious operation under Xorg"
3655 - Unsafe Browser: further isolate from the root filesystem
3656 - Unsafe Browser: drop duplicated mount
3657 - Fix incorrect merge conflict resolution.
3658 - Unsafe Browser: expose the real /home
3659 - Unsafe Browser: confine with AppArmor
3660 - Unsafe Browser: prevent accidental/malicious operation under Xorg
3661 - Unsafe Browser: work around issue with ibus/a11y proxy stopping
3662 - Make necessary firewall rules in tails-create-netns persist throughout the
3664 - Unsafe Browser: migrate to tails-create-netns
3665 - Unsafe Browser: run as native Wayland application
3666 - Unsafe Browser: start with tailslib.netnsdrop.run_in_netns()
3667 - Add missing double quotes
3668 - Use $() to get a command's output, not backticks
3669 - Add missing double quotes
3670 - Drop unused argument
3671 - Disable shellcheck false positive
3672 - Test suite: work around the Screen Keyboard not appearing as it should on
3674 - Patch Thunderbird AppArmor profile so it works in Wayland.
3675 - Thunderbird: enable Wayland support
3676 - Test suite: fix a bunch of incorrect/buggy Dogtail click actions
3677 - Tor Browser: enable Wayland support
3678 - Test suite: fix a bunch of incorrect Dogtail "click" actions
3679 - Test suite: make test more robust.
3680 - Unsafe Browser: enable ibus and accessibility!
3681 - Test suite: actually disable TOR_TRANSPROXY for the Unsafe Browser
3682 - Test suite: optimization
3683 - Test suite: fix chroot vs pmap mismatch.
3684 - Test suite: fix Dogtail for non-amneisia users
3685 - Test suite vs Wayland: fix another issue when clicking crashes accessibility
3686 - Remote shell: get the GNOME environment from the python library instead
3687 - Fix environment so accessibility is working with launch_x_application()
3688 - Test suite vs Wayland: deal with several issues when installing packages in
3690 - Test suite: deal with XWayland vs Dogtail issue for synaptic run as root
3691 - Test suite: enable the accessibility toolkit for the root user
3692 - Remote shell: set XAUTHORITY, which isn't set by export_gnome_env() any more
3693 - Wayland vs export_gnome_env(): drop variables not dumped into /run/gnome-shell-
3695 - Test suite: deal with Wayland vs Dogtail issue
3696 - Test suite: deal with GNOME notification buttons being unclickable through
3698 - Test suite: work around another instance where Dogtail breaks after clicking a
3700 - Test suite: use correct activation for some particular push buttons.
3701 - Test suite: deal with Wayland vs Dogtail issue.
3702 - Test suite: some radio buttons want 'click', some want 'select'.
3703 - Test suite: work around AT-SPI action bug
3704 - Test suite: apparently some buttons want "click" while others want "press"
3705 - Test suite: fix Electrum test vs Wayland migration.
3706 - Test suite: use appropriate Dogtail actions for push/radio buttons.
3707 - Test suite: use better image when waiting for snapshots to be restored fully.
3708 - Unsafe Browser: hook zenity dialogs to at-spi bus.
3709 - stop installing xorg packages
3710 - Test suite: handle Unsafe Browser exiting with an error code after being
3712 - Test suite: adapt Unsafe Browser tests since migrating to Wayland.
3713 - Test suite: adapt to Wayland
3714 - Test suite: adapt to Wayland
3715 - Revert "Remove unused exec_unconfined_firefox()."
3716 - Update GNOME Shell user service name for Wayland
3717 - Test suite: migrate more tests to input techniques that work on Wayland
3718 - Remote shell: ensure $DISPLAY is set
3719 - Test suite: don't import dogtail.rawinput that can't work on Wayland
3720 - Test suite: generate methods with meta-programming
3721 - Test suite: migrate to input techniques that work on Wayland
3722 - Test suite: remove X.Org-specific workaround
3723 - Fix typo in comment
3724 - Test suite: click in a way that works on Wayland
3725 - Test suite: remove unused method that's broken on Wayland
3726 - Unsafe Browser: set up networking via a new namespace.
3727 - Revert "Unsafe Browser: crappy attempt to sort of get networking up."
3728 - Unsafe Browser: crappy attempt to sort of get networking up.
3729 - Unsafe Browser: bind-mount resolv.conf as read-only.
3730 - Unsafe Browser: experiment for running as the amnesia user.
3731 - Stop disabling Wayland in GDM (refs: #12213).
3732 - Revert "Use X.Org in amnesia's GNOME session (refs: #12213)."
3734 -- Tails developers <tails@boum.org> Wed, 02 Nov 2022 09:47:35 +0000
3736 tails (5.7) unstable; urgency=medium
3738 * fix FTBFS: don't remove, just hold (tails/tails!960)
3741 - Tails FTBFS: grub-pc is not configured (tails/tails#19290)
3744 - don't remove, just hold
3746 * Resolve "Upgrade to Tor Browser 11.5.8" (tails/tails!962)
3749 - Upgrade to Tor Browser 11.5.8 (tails/tails#19295)
3752 - Fetch Tor Browser from our own archive
3753 - Upgrade Tor Browser to 11.5.8-build1
3755 * Add Metadata Cleaner (#18101) (tails/tails!959)
3758 - Mention MAT and metadata on /about (tails/tails#19206)
3759 - Add Metadata Cleaner (tails/tails#18101)
3762 - Mention Metadata Cleaner from /about (#19206)
3763 - Document Metadata Cleaner (#18101)
3764 - Add Metadata Cleaner (#18101)
3766 * WhisperBack debugging info: have df ignore filesystems of type fuse.portal
3770 - Can't start WhisperBack when /root/.cache/doc is mounted (tails/tails#19282)
3773 - WhisperBack debugging info: have df ignore filesystems of type fuse.portal
3775 * Update htpdate pool: secure.flickr.com → flickr.com (tails/tails!954)
3778 - Update htpdate pool: secure.flickr.com → flickr.com
3780 * Update tor to 0.4.7.11 (tails/tails!953)
3783 - Upgrade to tor 0.4.7.11 (tails/tails#19276)
3786 - Update tor to 0.4.7.11
3788 * Remove broken pdf-redact-tools (tails/tails!950)
3791 - pdf-redact-tools broken (tails/tails#19250)
3794 - Remove broken pdf-redact-tools
3796 * Resolve "Explain better the Unsafe Browser from Tor Connection"
3800 - Test suite: update wrt. new UI strings
3801 - Insist on signing in, then closing (#19168)
3802 - Be more clear (#19168)
3804 * Remove (easier) and (safer) label from consent question (#19166)
3808 - Remove (easier) and (safer) label from consent question (tails/tails#19166)
3811 - Test suite: update wrt. new UI strings
3812 - Remove (easier) and (safer) label from consent question (#19166)
3814 * fix snakeoil certificates in Thunderbird test suite (tails/tails!943)
3817 - Fix and re-enable "I can send emails, and receive emails over IMAP" automated
3818 test: Certificate handling on Jenkins needs updating for Thunderbird 102
3822 - add snakeoil to thunderbird using certutil
3823 - reneable test by default
3824 - Revert "Really disable broken Thunderbird test"
3826 * extend validity time check for OpenPGP keys (tails/tails!939)
3829 - Extend period for "The included OpenPGP keys are up-to-date"
3833 - extend validity time check for OpenPGP keys
3835 * Fetch Tor Browser from our own archive (tails/tails!938)
3838 - Fetch Tor Browser from our own archive
3840 -- Tails developers <tails@boum.org> Mon, 21 Nov 2022 11:13:06 +0100
3842 tails (5.6) unstable; urgency=medium
3844 * Upgrade Linux to 5.10.149 (tails/tails!935)
3847 - Fix beacown (tails/tails#19210)
3850 - Release process: bring back test that we can run locally, but not on Jenkins
3851 - Really disable broken Thunderbird test
3852 - Upgrade Linux to 5.10.149-1
3854 * Disable broken Thunderbird test (tails/tails!934)
3857 - Disable broken Thunderbird test
3859 * Upgrade Tor Browser to 11.5.5 (tails/tails!936)
3862 - Upgrade to Tor Browser 11.5.5 (ESR 91.13 + ESR 102.4 backports)
3866 - Upgrade Tor Browser to 11.5.5
3868 * post-release misc updates (tails/tails!932)
3871 - easier transmission-remote instructions
3872 - avoid re-downloading if restarting
3873 - better instructions for automated test suite
3875 * Thunderbird: remove obsolete oauth2 pref (tails/tails!929)
3878 - Thunderbird: remove obsolete oauth2 pref
3880 * Upgrader: when a manual upgrade is needed, point to the news & manual upgrade
3881 doc without specifying a (probably incorrect) version (tails/tails!915)
3884 - Tails Upgrader recommends manual upgrades to deprecated versions
3888 - Make /latest inline the translated version of the release notes
3889 - Rewrite in Markdown
3890 - Move latest release notes out of /news
3892 - Point to release notes of latest version only
3893 - Upgrader: when a manual upgrade is needed, point to the news & manual upgrade
3894 doc without specifying a version
3896 -- Tails developers <tails@boum.org> Mon, 24 Oct 2022 08:06:36 +0000
3898 tails (5.5) unstable; urgency=medium
3900 * Upgrade to Tor Browser 11.5.4 (ESR 91.13 + ESR 102.3 backports)
3904 - Upgrade to Tor Browser 11.5.4 (ESR 91.13 + ESR 102.3 backports)
3908 - Fetch Tor Browser from our own archive
3909 - Upgrade Tor Browser to 11.5.4-build2
3911 * Upgrade to Thunderbird 102 (tails/tails!928)
3914 - Upgrade to Thunderbird 102 (tails/tails#19156)
3917 - adapt test suite to new UI
3918 - JS hardening in Thunderbird
3920 - Update Thunderbird patches from
3921 tails/thunderbird@4efe2ce285c552c1808120d54a11f4be9e57527f
3922 - Update Thunderbird patches from
3923 tails/thunderbird@4efe2ce285c552c1808120d54a11f4be9e57527f
3924 - Thunderbird patches update doc: update examples
3925 - Thunderbird patches update doc: push upstream tags too
3926 - Thunderbird patches update doc: document how to verify
3927 - Thunderbird patches update doc: add missing commit and push steps
3928 - Thunderbird patches update doc: don't suggest we're still trying to upstream
3930 - Thunderbird patches update doc: adjust to Bullseye
3933 * import-translations: use new remote (tails/tails!927)
3936 - App translations supported by Tor Project moving from Transifex to weblate
3940 - import-translations: drop support for standalone WhisperBack project
3941 - import-translations: use new remote
3943 * GitLab CI: ensure all website core pages exist (tails/tails!926)
3946 - Make code more readable
3947 - GitLab CI: ensure all website core pages exist
3949 * GitLab CI: build our website on master and branches targeting master
3953 - GitLab CI: build our website on master and branches targeting master
3954 - build-website: remove check now done in GitLab CI
3956 * Test suite: remove Cucumber test scenarios and build website checks that are
3957 now covered by GitLab CI (tails/tails!923)
3960 - Remove Cucumber test scenarios that are now covered by GitLab CI
3964 - build-website: remove check now done in GitLab CI
3965 - Test suite: remove Cucumber test scenarios that are now covered by GitLab CI
3967 * Upgrade to Bullseye 11.5 and Linux 5.10.140 (tails/tails!920)
3970 - Upgrade Linux to 5.10.140 (tails/tails#19127)
3971 - Upgrade to Bullseye 11.5 (tails/tails#19082)
3974 - Test suite: relax timeouts
3975 - Test suite: bump timeout
3977 - Upgrade to Bullseye 11.5 and Linux 5.10.140
3979 * Test suite: fix virt-viewer active?() check to work with all versions
3983 - virt-viewer 11.0 breaks our test suite (tails/tails#19064)
3986 - Test suite: fix virt-viewer active?() check to work with all versions
3988 * Fix screen lock keyboard shortcut (tails/tails!918)
3991 - Super+L sometimes starts the screensaver when it should ask for a screen lock
3992 password (tails/tails#19090)
3995 - Fix screen lock keyboard shortcut
3997 * Test suite: make localized Unsafe Browser tests faster and easier to maintain
4001 - Localized Unsafe Browser tests are slow and hard to maintain
4005 - Test suite: add comment
4006 - Make Gherkin scenario outline placeholder more descriptive
4007 - Test suite: make localized Unsafe Browser tests faster and easier to maintain
4008 - Test suite: remove dead code
4010 * Add standard fields to /etc/os-release (tails/tails!914)
4013 - Add standard fields to /etc/os-release
4015 * Build system: make our website cache volume smaller (tails/tails!913)
4018 - Build system: make our website cache volume smaller
4020 * Use "torsocks --isolate" everywhere we use torsocks (tails/tails!912)
4023 - Use "torsocks --isolate" everywhere we use torsocks
4025 * Fix devel FTBFS with uBlock 1.44.0+dfsg-1 (tails/tails!910)
4030 * Post-release doc updates (tails/tails!907)
4033 - call for testers has meaningful date
4034 - warning: tb-build-05 not serving files over HTTP
4035 - cleanup script that waits for new TBB release
4037 * GitLab CI: run the Bandit security oriented static analyzer for Python
4041 - Check re.match's return value in a way that always returns a boolean
4042 - Add typing information
4043 - GitLab CI: also check shell and Python files that have no shebang
4044 - GitLab CI: run the Bandit security oriented static analyzer for Python
4045 - Lint comments format
4046 - Ignore Bandit false positives
4047 - Remove obsolete Emacs "coding: UTF-8" configuration
4048 - WhisperBack: only load global configuration file
4049 - Add configuration for the Bandit security oriented static analyzer for Python
4051 * Make it easy to re-run failed test suite scenarios (tails/tails!901)
4054 - run_test_suite wrapper that retries failed tests (tails/tails#19072)
4057 - RM tip: run all test scenarios
4058 - RM tip: multiple test suite runs overnight
4059 - set rerun file from ruby
4061 -- Tails developers <tails@boum.org> Thu, 13 Oct 2022 11:55:08 +0200
4063 tails (5.4) unstable; urgency=medium
4065 * Upgrade Tor Browser to 11.5.2 (tails/tails!908)
4068 - Upgrade to Tor Browser based on 91.13 (tails/tails#19073)
4071 - automatic redirect to HTTPS, here we meet again
4072 - Upgrade Tor Browser to UNVERIFIED 11.5.2-build1
4074 * Upgrade Linux packages to 5.10.0-17, currently at version 5.10.136
4078 - Handle CVE-2022-2585 (POSIX CPU timer UAF) (tails/tails#19081)
4081 - Upgrade Linux packages to 5.10.0-17, currnetly at version 5.10.136
4083 * Disable HTTPS-only mode in Unsafe Browser (tails/tails!906)
4086 - Disable HTTPS-only mode in Unsafe Browser (tails/tails#19095)
4089 - disable HTTPS-only mode for unsafe browser
4091 * Upgrade tor to 0.4.7.10 (tails/tails!903)
4094 - Upgrade to tor 0.4.7.10 (tails/tails#19083)
4097 - Don't mention irrelevant implementation detail
4098 - Avoid initially pushed branch failing its pipeline
4099 - Drop obsolete step
4100 - Upgrade tor to 0.4.7.10
4102 * Resolve "Some time sync related automated tests fail when run on a system whose
4103 system clock is not in UTC" (tails/tails!902)
4106 - Some time sync related automated tests fail when run on a system whose system
4107 clock is not in UTC (tails/tails#19070)
4110 - uses UTC time even on non-UTC systems
4112 * Misc kernel hardening (tails/tails!899)
4115 - Kernel hardening: restricts loading TTY line disciplines (tails/tails#18302)
4116 - Enable page allocator freelist randomization (tails/tails#18886)
4117 - Consider dropping slub_debug=P and page_poison=1 options and let init_on_free
4118 wipe slab and page allocations (tails/tails#18858)
4121 - Kernel hardening: restricts loading TTY line disciplines
4122 - Kernel: enable page allocator freelist randomization
4123 - Remove obsolete kernel command line options
4125 * Actually stop NetworkManager before applying an upgrade (tails/tails!896)
4128 - Remove obsolete comment
4129 - Use systemctl(1) instead of service(8)
4130 - Actually stop NetworkManager before applying an upgrade
4132 * Test suite: fix Unsafe Browser localization tests (tails/tails!867)
4135 - testing unsafebrowser is more deterministic
4136 - add spanish start page image for unsafe browser
4137 - add portuguese start page image for unsafe browser
4138 - debug unsafe browser errors
4140 -- Tails developers <tails@boum.org> Wed, 24 Aug 2022 13:18:27 +0200
4142 tails (5.3.1) unstable; urgency=medium
4144 * Upgrade Linux to 5.10.127-2 (DSA-5191)
4145 * Upgrade Thunderbird to 91.12.0 (DSA-5195)
4147 -- Tails developers <tails@boum.org> Mon, 01 Aug 2022 23:19:49 +0000
4149 tails (5.3) unstable; urgency=medium
4151 * Upgrade to Tor Browser 11.5.1, bring back uBlock, and fix the Unsafe Browser's
4152 window title (tails/tails!894)
4155 - uBlock is not enabled in Tor Browser (tails/tails#19059)
4156 - Upgrade to Tor Browser based on ESR 91.12 (tails/tails#19058)
4157 - Window title of Unsafe Browser reads "Tor Browser" (tails/tails#18603)
4160 - Tor Browser: use the system's libstdc++.so.6 like upstream would on a Bullseye
4162 - update-acng-config: get ready for 6.x
4163 - Remove hack that's not needed on Bullseye anymore
4165 - Make cp behavior deterministic
4166 - htpdate pool 2: replace fragile thepiratebay.org with www.gnome.org
4167 - Bring back code needed to install uBlock
4168 - Create directory before copying into it
4169 - Browsers: also pass --name to Firefox
4170 - Reformat code: make room for more options and nicer Git diffs
4171 - Unsafe Browser: also set brandProductName to "Unsafe Browser", for consistency
4172 - Unsafe Browser: set the branding in the file that's actually used in current
4174 - Fetch Tor Browser from our own archive
4175 - Upgrade Tor Browser to 11.5.1-build1
4177 * Test suite: misc. improvements (tails/tails!892)
4180 - Test suite sometimes fails to find a picture (e.g. TailsGreeterLoginButton.png)
4181 while it's present on screen (tails/tails#19044)
4184 - Test suite: also display stdout on vmcommand failure
4185 - Test suite: bump timeout
4186 - Test suite: fix typo in comment
4187 - Welcome Screen: remove unused import
4188 - Test suite: point to relevant issue
4189 - Test suite: wait more for some images
4190 - Test suite: have Screen#find wait longer
4191 - Test suite: add debug logging to investigate #19044
4192 - Test suite: fix variable name
4193 - Test suite: give some time to the persistence passphrase widget to get focus
4194 - Use named constants instead of magic numbers
4195 - Don't catch unrelated IndexError exceptions
4197 - Remove unused import
4198 - Test suite: fix, improve, and update comments
4199 - Test suite: set the time in the guest using timedatectl
4200 - Make host_to_guest_time_sync raise an exception on failure
4203 * Upgrade to Debian Bullseye 11.4, Linux 5.10.127, and Network Manager 1.30.6
4207 - Upgrade to Debian Bullseye 11.4 (tails/tails#19046)
4211 - Update Vagrant box to Debian Bullseye 11.4
4212 - Enable the 19046-bullseye-11.4-force-all-tests APT overlay (refs: #19046).
4213 - Upgrade to Linux 5.10.0-16 (currently at 5.10.127-1)
4214 - Upgrade to Debian Bullseye 11.4
4216 * Upgrade mat2 to 0.12.1-2+deb11u1
4218 -- Tails developers <tails@boum.org> Mon, 25 Jul 2022 13:45:07 +0200
4220 tails (5.2) unstable; urgency=medium
4222 * Upgrade Thunderbird to 91.11.0
4224 * Upgrade Tor Browser to 11.5 (tails/tails!889)
4227 - Upgrade to Tor Browser based on Firefox 91.11 (tails/tails#19029)
4230 - more bumping tor browser
4231 - bump torbrowser images
4233 - manual bump TorBrowserOverviewIcon.png
4234 - some more image bumping
4235 - l10n screenshot updated
4236 - bump duckduckgo prompt image
4237 - adapt tor browser screenshot
4238 - Fetch Tor Browser from our own archive
4239 - Upgrade Tor Browser to 11.5
4240 - Revert "NIGHTLY ONLY! REMOVE ME!"
4241 - clean nightly dirt
4242 - install langpacks for nightlies, too (if possible)
4243 - NIGHTLY ONLY! REMOVE ME!
4244 - Revert "disable OnionAliases for Unsafe Browser"
4245 - use new TBB setting to disable onionrewrites altogether
4246 - take tbb 11.5 from nightlies
4247 - disable OnionAliases for Unsafe Browser
4248 - Upgrade Tor Browser to 11.5a13-build2
4250 * Adapt release process to new Tor blog platform (tails/tails!887)
4253 - Change release process details for blog.torproject.org (tails/tails#18963)
4257 - Release process: suggest publishing a Tor blog even for bugfix releases
4258 - Release process: improve Tor blog post instructions
4259 - generate-Tor-blog-post: use actual template and also generate the Lektor header
4260 - generate-Tor-blog-post: refactor (extract code to function)
4261 - generate-Tor-blog-post: remove inline images too
4262 - Release process: adapt the Tor blog post process to Lektor
4263 - generate-Tor-blog-post: fix ikiwiki command
4265 * GitLab CI: clean up and refactor https-get-expired jobs (tails/tails!884)
4268 - GitLab CI: force running jobs when updating .gitlab-ci.yml
4269 - GitLab CI: factorize
4270 - GitLab CI: install golang in the same way we do during a Tails build
4271 - GitLab CI: remove duplicate call to "apt-get update"
4272 - GitLab CI: drop obsolete pinning to Buster
4274 * Git: ignore the early_patch= (aka. --early-patch) hook (tails/tails!882)
4277 - Git: ignore the early_patch= (aka. --early-patch) hook
4279 * Resolve "IUK test suite: features/frontend is broken (tails-transform-mirror-
4280 url fails)" (tails/tails!880)
4283 - IUK test suite: features/frontend is broken (tails-transform-mirror-url fails)
4287 - IUk test suite: Set Torsocks to allow outbound connections to the loopback
4289 - IUK test suite: Add test file
4290 - IUK test suite: disable certificate verification
4292 * Test suite: fix copying a new directory with late patch (tails/tails!877)
4295 - Test suite: fix copying a new directory with late patch
4297 * Resolve "Test "The included APT repository keys are up-to-date" does not check
4298 subkeys" (tails/tails!876)
4301 - Test "The included APT repository keys are up-to-date" does not check subkeys
4305 - check we have at least one *relevant* subkey
4306 - gpg checks deeper: both master keys and subkeys
4308 - Revert "Revert "check APT subkeys, too""
4310 * Test suite: misc bugfixes (tails/tails!872)
4313 - Test suite: also set the guest's time when connected to the LAN but not to Tor
4314 - Test suite: move sleep where it was supposed to be
4316 * workaround persistent Tor bridges bug (tails/tails!870)
4319 - Tor Bridges persistence sometimes fails to save bridges during initial setup on
4320 Bullseye, at least in our test suite (tails/tails#18926)
4323 - workaround for bug only present in test suite
4325 * check APT subkeys, too (tails/tails!869)
4328 - Test "The included APT repository keys are up-to-date" does not check subkeys
4332 - check APT subkeys, too
4334 * Set Samba workgroup used by GTK applications to "localhost" (tails/tails!865)
4337 - Several applications ask Tor to resolve the "workgroup" hostname
4341 - Set Samba workgroup used by GTK applications to "localhost"
4343 -- Tails developers <tails@boum.org> Mon, 11 Jul 2022 08:13:08 +0000
4345 tails (5.1.1) unstable; urgency=medium
4347 * Upgrade Linux to 5.10.120-1 and tor to 0.4.7.8 (tails/tails!863)
4350 - Upgrade to tor 0.4.7.8 (tails/tails#19035)
4351 - Upgrade Linux to 5.10.120-1 (tails/tails#19036)
4354 - Upgrade Linux kernel packages to 5.10.0-15 (currently at version 5.10.120-1)
4355 - Upgrade to tor 0.4.7.8
4357 * Upgrade to Thunderbird 91.10.0
4359 * Fix htpdate pool: https://www.mozilla.org returns incorrects Date header
4363 - Fix htpdate pool: https://www.mozilla.org returns incorrects Date header
4367 - Fix htpdate pool: https://www.mozilla.org returns incorrects Date header
4369 * Test suite: update the set of @fragile tags (tails/tails!862)
4372 - "Persistent browser bookmarks" is fragile (tails/tails#11585)
4373 - "The persistent Tor Browser directory is usable" test suite scenario is fragile
4375 - The "is properly stream isolated" test suite mechanism is fragile
4377 - Step "a screenshot is saved to the live user's Pictures directory" is fragile
4379 - "I can view and print a PDF file" scenarios are fragile (tails/tails#10994)
4380 - Memory erasure on boot medium removal is fragile (tails/tails#13462)
4381 - Test suite: update the set of @fragile tags (tails/tails#19007)
4384 - add @fragile tags when it's useful
4385 - Remove many @feature tags
4387 * follow up again on tca audit: clarify comments (tails/tails!860)
4390 - Audit tca-portal (tails/tails#18374)
4393 - acknowledge jvoisin's comments
4395 * Test suite: exercise the screen keyboard with a key that won't auto-complete
4399 - "the screen keyboard works in Tor Browser" fails in Arabic (tails/tails#19013)
4402 - Test suite: exercise the screen keyboard with a key that won't auto-complete
4404 * GitLab CI: improve jobs rules (tails/tails!856)
4407 - GitLab CI: don't run code tests on the master branch
4408 - GitLab CI: also run https-get-expired* jobs when we modify our htpdate
4410 - GitLab CI: only run https-get-expired when relevant
4412 * Inline strtobool function (tails/tails!855)
4415 - Inline strtobool function
4417 * Test suite: improve robustness (tails/tails!851)
4420 - Developers need to apply workaround in order to build Tails during the release
4421 process (tails/tails#18998)
4422 - Test scenario "htpdate is using the Tails-specific SocksPort" is broken
4426 - Test suite: avoid missed clicks retry when opening the calendar & notifications
4428 - Test suite: give the Upgrader time to fill the zenity dialog
4429 - Test suite: give the Greeter some time to re-enable the login button
4430 - Fix building from dev branches during the release process
4431 - Test suite: don't reset virtual X display between clients
4432 - Test suite: hopefully increase chances we catch the process we want
4434 - Test suite: ensure we write every line extracted from "ss -taupen" as soon as
4436 - Test suite: migrate from service(8) to directly using systemctl
4437 - Test suite: adapt to new HTTPS client used by htpdate
4438 - Test suite: make setting up a Pidgin account more robust
4439 - Test suite: make interaction with GNOME Disks title bar buttons more robust
4440 - Test suite: make copying'n'pasting into a Terminal more robust
4442 * Have a better footer (tails/tails!756)
4445 - Translate a couple strings to check sidebar2 vs. PO plugin
4448 - Link to accessibility from footer
4449 - Rescue translations
4452 - Use sidebar2 to replace translation hacks in templates
4453 - Integrate sidebar2 in the local build
4454 - Add missing ARIA label
4455 - Make the label bold
4456 - Improve the appeal to the newsletter (#16888)
4457 - Translate footer into Spanish
4459 - Move jobs from top navigation to footer
4460 - Use more consistent margin system
4461 - Have a better footer (#17699)
4462 - Create dedicated page for testimonials
4463 - Don't use all capitals (#16137)
4465 * early-patch: live-patch at initramfs's time (tails/tails!696)
4469 - Fix documentation wrt. the name of the option actually passed
4470 - Document --late-patch
4471 - more documentation
4472 - works even if hook fails
4473 - early_patch from test suite umounts immediately
4474 - pass 9p fs to TailsToaster: --early-patch works
4475 - live-patch → late-patch
4476 - early-live-patch → early-patch
4477 - Test suite: make EARLY_LIVE_PATCH a boolean
4478 - Disable obsolete shellcheck override
4479 - Don't enable live_patch by default
4480 - Make headings levels consistent with the rest of our website
4482 - Apply 4 suggestion(s) to 1 file(s)
4483 - run_test_suite --early-live-patch
4484 - developer documentation for live_patch
4485 - live_patch: early-patching system
4487 -- Tails developers <tails@boum.org> Wed, 22 Jun 2022 11:31:52 +0000
4489 tails (5.1) unstable; urgency=medium
4491 * Upgrade to Thunderbird 91.9.0
4493 * Upgrade to Tor Browser 11.0.14 based on Firefox 91.10 (tails/tails!852)
4496 - Upgrade to Tor Browser 11.0.14 based on Firefox 91.10 (tails/tails#18979)
4499 - htpdate: replace tachanka.org with www.autistici.org
4500 - Mark security advisory against 5.0 as fixed
4501 - Fetch Tor Browser from our own archive
4502 - Upgrade Tor Browser to 11.0.14-build1
4504 * Resolve "displayed_time_str fails in test suite" (tails/tails!839)
4507 - displayed_time_str fails in test suite (tails/tails#18991)
4510 - Ignore advisories when looking for displayed time
4513 * FIX Clock disappearing when the user sets UTC as their local timezone
4517 - Clock disappears from the GNOME top bar after "Fix the clock" and choosing UTC
4518 timezone (tails/tails#18993)
4521 - safety net for future problems
4522 - handle UTC special-case
4524 * Test suite: workaround lost and duplicate key presses by pasting long strings
4525 instead of typing them (tails/tails!821)
4528 - Test suite: merge step used only by another step into its caller
4529 - Test suite: paste long strings instead of typing them
4530 - Test suite: drop useless step
4531 - Test suite: refactor (extract code to method)
4533 * Test suite: Make opening GNOME menus more robust (tails/tails!816)
4536 - Opening GNOME menus in the test suite on Bullseye is very fragile
4540 - Test suite: try harder to open GNOME menus
4541 - Test suite: drop unnecessary delay
4542 - Test suite: use Dogtail to check presence of GNOME bookmarks
4543 - Test suite: use Dogtail to open the GNOME menus
4544 - Test suite: wait for the desktop to be visible before we interact with it after
4545 restoring a snapshot
4548 * Upgrade to Linux 5.10.113-1 (DSA 5127-1) (tails/tails!813)
4551 - Upgrade Linux to 5.10.113-1 (DSA 5127-1) (tails/tails#18962)
4554 - Upgrade to Linux 5.10.113-1 (DSA 5127-1)
4556 * Make console-setup.service startup non-racy (tails/tails!811)
4559 - console-setup.service fails sometimes, which breaks "Tor is ready" in test
4560 suite (tails/tails#18636)
4563 - Make console-setup.service startup non-racy
4565 * Test suite: support running on Ruby 3.0 (tails/tails!810)
4568 - Test suite misbehaves on Ruby 3.0, e.g. "the Tor Connection Assistant connects
4569 to Tor" step always incorrectly fails (tails/tails#18904)
4572 - Test suite: ensure we don't try to click the "Restore Disk Image" button before
4574 - Test suite: support Bookworm host system's improved UEFI graphics
4575 - Test suite: enable Ruby deprecation warnings
4576 - Test suite: adjust to separation of positional and keyword arguments in Ruby
4578 - Test suite: update button label for Bullseye
4579 - Remove duplicate word in comment
4580 - Test suite: drop workaround for Ruby < 2.7
4581 - Test suite: migrate from deprecated luks_open and luks_close to
4582 cryptsetup_{open,close}
4584 * test https-get-expired with sid's Go (tails/tails!849)
4587 - GitLab CI: only run https-get-expired-sid job when relevant
4588 - GitLab CI: factorize
4589 - GitLab CI: test https-get-expired with sid's Go on a sid image
4590 - also test https-get-expired with sid's golang
4592 * Vagrant: install ikiwiki that fixes #18992 (tails/tails!847)
4595 - ikiwiki generates buggy PO files with po4a 0.62 (tails/tails#18992)
4598 - Vagrant: stop using the obsolete builder-jessie APT suite
4599 - Vagrant: install ikiwiki that fixes #18992
4601 * tca-portal: stricter validation (tails/tails!846)
4604 - test: right length, valid for date(1), but invalid format
4605 - drop test case for "minutes" timespec
4606 - be more explicit about the format we want
4607 - seconds always included
4608 - stricter validation for SetTimeCommand
4610 * ignore advisories + better debug (tails/tails!845)
4616 * Test suite: fix regression when testing Tor Connection in non-English locale
4620 - Test suite: fix regression when testing Tor Connection in non-English locale
4622 * FIX sharing via onionshare from nautilus (tails/tails!840)
4625 - "Share via OnionShare" does nothing (tails/tails#18990)
4628 - FIX sharing via onionshare from nautilus
4630 * lint_po: ignore unknown-message-flag errors (tails/tails!836)
4633 - lint_po: ignore unknown-message-flag errors
4635 * Don't enable "configure a bridge" just because the user looked at the hide mode
4639 - “Configure a Bridge” is enabled when rolling back from hiding Tor
4643 - regression test for #18546
4644 - enable easymode-bridges only in easy mode
4646 * Vagrant build box: upgrade to po4a 0.62-1 (tails/tails!834)
4649 - Vagrant build box: drop APT configuration for Buster
4650 - Vagrant build box: upgrade to po4a 0.62-1
4652 * Installer: create system partition 2 MiB from the beginning of the drive
4656 - Installer: create system partition 2 MiB from the beginning of the drive
4658 * Various Tor Connection UX improvements (tails/tails!831)
4661 - Tor Connection: Give the same instructions on both bridge screens
4663 - Always tell whether bridges are used in the success screen (tails/tails#18547)
4667 - Test suite: update expected images
4668 - Make phrasing consistent
4670 - refactor: properties allow our code to be clearer
4671 - bridges: same instructions on both screens
4672 - Success message conditional to bridges
4674 * Rewrite the home pages of the Unsafe Browser + Have different homes for the
4675 Unsafe Browser depending on whether we're connected to Tor already
4679 - Have different homes for the Unsafe Browser depending on whether we're
4680 connected to Tor already (tails/tails#18601)
4681 - Rewrite the home pages of the Unsafe Browser (tails/tails#18602)
4690 - Add illustration by Andrés
4691 - Test suite: remove obsolete localized images
4692 - Test suite: update expected image
4693 - Test suite: add missing @doc tag
4694 - FIX wrong path was checked
4695 - Clarify that the image is an example
4696 - Clarify use of CSS (Take 2)
4697 - Unsafe browser: home page if non connected to Tor
4698 - Clarify use of CSS
4701 - Write a dedicated page for captive portals
4702 - Improve instructions
4703 - Give examples of websites to use
4704 - Use our own image and remove the login and password
4707 * Test suite: misc. robustness improvements (tails/tails!827)
4710 - Tests for backup are fragile (tails/tails#18727)
4713 - Test suite: add localized expected image for Unsafe Browser start page in pt_BR
4714 - Test suite: enable debug logging for Screen#wait
4715 - Test suite: Fix frequent "cannot find TailsGreeterLoginButton.png" failures
4716 - Test suite: update expected image for Bullseye
4717 - Test suite: give the XMPP server some time to create the room
4718 - Test suite: update expected Pidgin images
4719 - Test suite: fix error message
4720 - Test suite: Improve error reporting
4721 - Test suite: Fix clock upper bound calculation
4722 - Test suite: refactoring (save value to variable)
4723 - Test suite: Drop most debugging info for issue that does not happen anymore
4724 - Test suite: Drop spurious verb in debug log
4725 - Revert "Mark test scenario as fragile"
4726 - Test suite (backup): Wait for Zenity to have filled its widgets with the
4729 * Upgrade apt-cacher-ng to bullseye-backports - fixes issue #18931
4733 - rake build fails - apt-get works erratically ( 502 connection closed
4734 [IP:127.0.0.1:3142] ) - No build artifacts were found! (tails/tails#18931)
4737 - Upgrade apt-cacher-ng to bullseye-backports.
4739 * Disable search providers in the Activities Overview: Calculator, Nautilus,
4740 Terminal (tails/tails!824)
4743 - Disable some GNOME Overview search providers (tails/tails#18952)
4746 - Disable search providers in the Activities Overview: Calculator, Contacts,
4747 Documents, Nautilus, Terminal
4749 * Test suite: ignore failures to destroy a stopped domain (tails/tails!822)
4752 - Scenario: "Upgrading an old Tails USB installation from another Tails USB
4753 drive" after-hook is racy (tails/tails#18972)
4756 - Test suite: ignore failures to destroy a stopped domain
4758 * Associate OpenPGP-encrypted files with Kleopatra (tails/tails!820)
4761 - Tails 5 does not decrypt .gpg files when double-clicking them
4765 - Associate OpenPGP-encrypted files with Kleopatra
4767 * safely get gnome_env_vars (tails/tails!819)
4770 - clarify about which environment is being dumped
4772 - Fix typo in comment
4773 - comments clarify why we think we are safe
4775 - gnome_env_vars look at the gnome-shell env dump
4776 - gnome-shell dumps its conf in a root-owned file
4778 * Avoid user confusion wrt. name of the default KeePassXC database
4782 - KeePassXC offers to rename the default database on non-English locales
4786 - Silence false positive
4787 - Drop obsolete reason
4788 - Don't allow translating Passwords.kdbx
4790 * Use Bullseye debootstrap configuration (tails/tails!817)
4793 - Use Bullseye debootstrap configuration
4795 * FIX IUK verification when we have 2 series at the same time (tails/tails!815)
4798 - bin/copy-iuks-to-rsync-server-and-verify failing because of old releases
4802 - Apply 1 suggestion(s) to 1 file(s)
4803 - document how the RM should use this command
4804 - don't fail when 404s have been ignored
4805 - proper exit code on failure
4806 - refactor --ignore-404
4809 - 404s found -> non-zero exit code
4810 - --ignore-404 and --dry-run
4812 * Fix FTBFS with uBlock 1.42 (tails/tails!814)
4817 * Upgrade to tor 0.4.7.7 (tails/tails!812)
4820 - Upgrade to tor 0.4.7.x (tails/tails#18932)
4823 - Upgrade to tor 0.4.7.7
4825 * Add translation files for Qt5 (#18958) (tails/tails!808)
4828 - Translations of basic Qt5 strings are missing (tails/tails#18958)
4831 - Add translation files for Qt
4833 * Make news/version_3* non-translatable (#16758) (tails/tails!805)
4836 - Make news/version_3* non-translatable (#16758)
4838 * Add Kleopatra to the Favorites (tails/tails!802)
4841 - Test suite: make expected image a tiny bit smaller
4842 - Add Kleopatra to the Favorites submenu
4844 * Test suite: drop pre-Bullseye compatibility (tails/tails!789)
4847 - Test suite: drop workaround for Ruby < 2.7
4848 - Test suite: migrate from deprecated luks_open and luks_close to
4849 cryptsetup_{open,close}
4851 * Add to confirm before restarting (#18912) (tails/tails!782)
4854 - New dialog when Unsafe Browser is not enabled makes it too easy to lose work
4858 - Make code more readable
4859 - Make function's responsibility tighter to simplify its code
4860 - Handle new code branch that was forgotten
4861 - Fix local variables declaration
4862 - Use 'Cancel' as default button (#18912)
4863 - 'Cancel' is more standard
4864 - Add to confirm before restarting (#18912)
4866 * Display time in the timezone that the user has chosen in Tor Connection
4870 - Display time in the timezone that the user has chosen in Tor Connection
4874 - Design doc: Explain security trade-off
4875 - Test suite: Explain that Asia/Shanghai == +08:00
4876 - tails-get-date: use Python instead of date(1)
4877 - Fix typo in error message
4878 - Test suite: ensure the displayed clock is in the user's timezone
4879 - Test suite: remove workaround
4880 - Test suite: refactor (extract code do method)
4881 - Test suite: be more defensive to give better error output
4882 - Test suite: send debug info to the debug log
4883 - Test suite: make step name clearer
4884 - Design doc: mention timezone status and plans
4885 - Apply 1 suggestion(s) to 1 file(s)
4886 - Fix typo in comment
4889 - Remove unnecessary comma
4890 - try to fix the vertical misalignment
4892 - Link back to main page
4893 - https://www.merriam-webster.com/dictionary/time%20zone
4894 - Move FAQ to a dedicated page
4896 - Don't potentially overwrite TZ key in dict with environment's value.
4897 - Cleanup dead code, fix formatting.
4898 - Consistently display GMT instead of UTC.
4899 - Use the same time format as GNOME's clock.
4900 - use date to format the date
4901 - date@ extension does The Right Thing
4902 - DRAFT: display time in local timezone
4904 * Follow-up on "Audit tca-portal" (tails/tails!723)
4907 - useless shellcheck directive
4908 - Apply 2 suggestion(s) to 2 file(s)
4909 - Fix typo in comment
4910 - clarify how we believe pgrep --ns 1 will help us
4911 - PersistenceSetupCommand: gnome_env_vars not needed
4912 - export_gnome_env hardening
4913 - some more validation when setting system time
4914 - gnome.py executes later; required for testing
4915 - add some doctests to tca-portal
4916 - more tuples, less lists
4917 - clarify: we are fine with the TOCTOU
4918 - --systemd-socket is exclusive with --listen
4919 - be more explicit about stdout/stderr handling
4920 - clarify handle_* comments
4921 - clarify what is the role of handle_line
4922 - anchor SetTimeCommand regexp
4923 - clarify comment about validate_args
4924 - use full path to commands whenever possible
4926 * Automatic time sync before connecting to Tor in automatic mode
4930 - Mitigate attack by active network adversary on automated time sync + replayed
4931 Tor consensus (tails/tails#18830)
4932 - Automatic time sync before connecting to Tor in automatic mode
4936 - Test suite: rename step to make it closer to what a user would do
4937 - use the non-deprecated version of "Tor is ready"
4939 - Add missing word in comment
4940 - Update comment: this now build reproducibly
4942 - fix undefined local variable
4943 - tails-get-network-time better syslog
4944 - tails-get-network-time has timeout
4945 - refactor old test case based on new functions
4946 - new test: time sync times out
4947 - tor connection runs even if timesync fails
4949 - some info is shown during network time sync
4951 - wait for time to be retrieved before starting Tor
4952 - use APT preferences, not --target-release
4953 - gitlab tests run with the correct Go version
4954 - public key type check
4955 - Explain why these if statements don't apply to us
4957 - Design doc: 2 out of 3 is enough since we're using the median
4959 - test all urls in htpdate.pools
4960 - https-get-expired gets more testing
4961 - https-get-expired: explain how this compares to Go implementation
4962 - Test suite: explain why scenarios pass in a somewhat surprisingly manner
4965 - Design doc: explain why we accept a risk
4966 - Design doc: improve phrasing
4967 - Design doc: drop conditional
4968 - Design doc: explain why we're protected
4969 - Design doc: clarify phrasing
4970 - Update design doc: this is not a problem anymore
4971 - reproducibility: clean cache after compiling
4973 - htpdate performs the median
4974 - design doc: explain https-get-expired
4976 - Pick Go from buster-backports
4977 - try to make go build reproducible: -trimpath
4978 - Test suite: mark fragile scenario as such
4979 - https-get-expired: CI tests now
4980 - test https-get-expired building
4981 - https-get-expired gains -proxy option
4982 - port htpdate to https-get-expired
4983 - https-get-expired: more similar to htpdate's curl
4984 - https-get-expired output headers, not body
4985 - fix go compilation
4986 - add https-get-expired: will need for time sync
4987 - "date in past" check is more robust
4988 - sanity check: the new date cannot be in the past
4989 - unsafe browser is checked for tor leaks
4990 - UnsafeBrowser correctly detects if we're online
4991 - checking DisableNetowrk is #18293-aware
4992 - Merge the new scenario with the old one
4993 - FIX restore: some snapshot has network but no Tor
4994 - UnsafeBrowser tests don't need Tor; scenarios--
4995 - FIX we don't even need to check Tor
4996 - Test suite: clarify what we're actually testing
5000 - Update doc to automatic time sync (#18717)
5001 - Improve structure of design doc
5003 - Design doc: copy more detailed explanation from the blueprint
5004 - Design doc: improve structure
5005 - Design doc: document new automatic time sync mechanism
5006 - Remove very old explanation
5007 - wording: we're looking for unneeded *exceptions*
5008 - Apply 5 suggestion(s) to 2 file(s)
5009 - FIX test case: allow it to use time sync
5010 - "flow through" supports fake connectivity check
5011 - FIX globally setting allowed DNS queries
5012 - refactor check for leaks
5013 - debugging leaks is easier
5014 - fix DNS query for easy mode
5015 - test suite self-correction warning
5016 - dns queries are allowed only when needed
5017 - +debug "traffic has only flowed through"
5018 - break the "Tor is ready" step in two
5020 - easy-mode allowed_hosts are set in tca_configure
5021 - explicitly allow connectivity check in many tests
5022 - fix time sync error simulation
5023 - fix exception wording
5024 - use DNS inspection to check for leaks
5025 - the FirewallHelper is DNS-aware
5027 - test "traffic only flows through" supports timesync
5028 - Add tests for time sync before Tor connects
5029 - Improve TCA test suite code
5030 - add vm script to upload/download files
5031 - tails-get-network-time: don't assume anything about body encoding
5032 - Raise exception instance, not class
5034 - tails-get-network-time: emulate NetworkManager's behavior more closely
5035 - Move hard-coded string to constant
5037 - tails-get-network-time: refactor
5039 - tails-get-network-time: migrate to pycurl, to make our fingerprint closer to
5041 - Store the network time server in a configuration file
5042 - Move code to main() function
5043 - Test suite: adjust to new automatic time sync feature
5044 - Test suite: drop workaround
5045 - Tor Connection: in automatic mode, set the system time from the network
5046 - tca-portal: implement a new get-network-time command
5047 - tca-portal: include stdout in responses
5049 -- Tails developers <tails@boum.org> Sat, 04 Jun 2022 08:11:47 +0000
5051 tails (5.0) unstable; urgency=medium
5053 * Upgrade Thunderbird to 91.8
5055 * Upgrade Tor Browser to 11.0.11 (based on esr91.9) (tails/tails!804)
5058 - Test suite: update expected image
5059 - Test suite: update expected web page title
5060 - Fetch Tor Browser from our own archive
5061 - Upgrade Tor Browser to 11.0.11-build1
5063 * Fix Additional Software test suite on Bullseye (tails/tails!794)
5066 - Test suite: use popularity-contest as a test package instead of sslh
5068 * Fix devel branch FTBFS (tails/tails!773)
5071 - Preserve UIDs/GIDs stability
5072 - Refresh list of standard packages
5074 * Drop obsolete patch (tails/tails!690)
5077 - Drop obsolete patch
5079 * all languages are listed (tails/tails!683)
5082 - all formats are shown
5083 - translations appear again in Greeter
5084 - when native l10n is not available, use english
5085 - all languages are listed
5087 * Fix the Tails Installer in bullseye (tails/tails!679)
5090 - retry has shorter sleep times
5091 - FIX self.sleep never existed
5092 - retry getting udisks object upon failure
5093 - don't rescan devices: we already know!
5094 - partition_device returns a UDI
5095 - refactor detect_supported_drives
5096 - retrying getting system partition helps
5097 - race conditions? let's increase sleep time!
5099 * Document Kleopatra (tails/tails!803)
5108 - Mention Kleopatra in the Persistent Storage settings
5109 - Remove not-so-useful note
5110 - Document Kleopatra (Closes: #18933)
5111 - Remove Seahorse from the doc
5112 - Remove screenshots that need updating
5113 - Remove OpenPGP Applet from the doc
5114 - Patch screenshots for the removal of the OpenPGP Applet
5116 * Fix opening links and attachments from Thunderbird, disable LibreOffice tip of
5117 the day (tails/tails!793)
5120 - AppArmor Thunderbird profile: allow executing /bin/dash with inherited policy
5121 - Disable LibreOffice's tip of the day
5123 * fix whisperback sending error (tails/tails!787)
5126 - Thread.isAlive -> is_alive
5128 * Fix Scenario: Upgrading an old Tails USB installation from another Tails USB
5129 drive (tails/tails!765)
5132 - apparently fix tails/tails#18840
5133 - send tails installer log to syslog
5135 * Additional Software: synchronize APT data when needed directly from t-p-s
5139 - Test suite: restart Tails in the same way we expect the user to
5140 - Test suite: don't exit the persistence wizard once done, make saving settings
5142 - Test suite: refactoring (convert step to method)
5143 - Additional Software: synchronize APT data when needed directly from t-p-s
5144 - Remove XXX:Bullseye: this is not going to happen
5146 * Persistence: enable Additional Software by default (tails/tails!800)
5149 - Persistence Setup: adjust test suite to Additional Software being enabled by
5151 - Persistence: enable Additional Software by default
5153 * Let the user know they should wait while we are copying Additional Software to
5154 a new Persistent Storage (tails/tails!799)
5157 - Use phrasing proposed by sajolida
5158 - t-p-s: ensure the GUI is updated while we synchronize data to the new
5160 - Persistence setup: forbid clicking "Restart Now" twice in a row
5161 - Test suite: save a file listing of /var/cache/apt when a Additional Software
5163 - Let the user know they should wait while we are copying Additional Software
5164 data to a new Persistent Storage
5166 * htpdate.service is always started (tails/tails!796)
5169 - be more explicit about what we are testing
5170 - htpdate is started every time
5171 - some tests can be excluded from feature branches
5172 - add regression test for #18868
5173 - start htpdate.service earlier
5175 * Replace Seahorse and OpenPGP Applet with Kleopatra (tails/tails!792)
5178 - Ensure Seahorse icons are present when running the persistence-setup test suite
5179 - Persistent Storage: re-add custom icons for the GnuPG and SSH Client features
5180 - FT role definition: remove seahorse-nautilus
5181 - Contributors & design doc: drop OpenPGP Applet
5182 - Remove the topIcons GNOME Shell extension
5183 - Test suite: remove OpenPGP Applet tests, and the code & images they used
5184 - Re-add and update explanation for disabling ssh-agent
5185 - Remove broken patch
5186 - Remove Gettext stuff for Seahorse
5187 - Remove hooks about Seahorse and OpenPGP Applet
5188 - Replace our PGP tools with Kleopatra
5190 * Fix Bullseye-based Tails booting 20% slower than 4.x (tails/tails!791)
5193 - Freeze the AppArmor kernel feature set too
5195 * Stop trusting our old APT signing key (tails/tails!788)
5198 - Bump APT snapshots to versions signed with our new key
5199 - Test suite: stop ignoring our old APT key
5200 - Stop trusting our old APT signing key
5202 * Update live-build to include the local packages fix. (tails/tails!776)
5205 - Update live-build to include the local packages fix.
5207 * Tails Installer: retry getting partition table (tails/tails!767)
5210 - retry getting partition table
5212 * Update gdm-tails.json for Bullseye (tails/tails!689)
5215 - Add pointer accessibility support to gdm-tails.json
5216 - gdm-tails.json: remove panelStyle
5218 * Update VeraCrypt test suite for Bullseye (tails/tails!686)
5221 - Test suite: trim expected image to account for GNOME mounted volume
5223 - Give exchange USB drive more space
5224 - Test suite: update to new GNOME Disks UI
5225 - Test suite: update Nautilus application name
5226 - Test suite: update expected picture
5228 -- Tails developers <tails@boum.org> Mon, 02 May 2022 12:03:37 +0200
5230 tails (5.0~beta1) unstable; urgency=medium
5232 * Upgrade to Debian 11 (Bullseye).
5233 - Fixes opening a Veracrypt volume with a long passphrase (tails#17474)
5234 - NetworkManager now uses its internal DHCP client
5236 - Software upgrades:
5239 - bookletimposer 0.3
5243 - NetworkManager 1.30.0
5246 - Thunderbird 91.7.0-2~deb11u1
5249 * Upgrade Tor Browser to 11.0.10-build1 (tails#777)
5251 * Enable driverless printing and scanning (tails#18521)
5253 * Fix locales translation in the Welcome Screen (tails#18199, tails/tails!683)
5256 - all formats are shown
5257 - translations appear again in Greeter
5258 - when native l10n is not available, use english
5259 - all languages are listed
5261 * Drop hack to kill GDM on login, not necessary anymore on Bullseye (tails#17952)
5263 * Have tor log to the Journal (tails#18842)
5265 * Have NetworkManager and MAC spoofing ignore veth* network interfaces (tails#18443)
5267 * Drop deprecated printer-driver-hpijs (tails#18225)
5269 * Fix devel branch FTBFS (tails/tails!773)
5272 - Preserve UIDs/GIDs stability
5273 - Refresh list of standard packages
5275 * Drop obsolete patch (tails/tails!690)
5278 - Drop obsolete patch
5280 * Fix the Tails Installer in bullseye (tails/tails!679)
5283 - retry has shorter sleep times
5284 - FIX self.sleep never existed
5285 - retry getting udisks object upon failure
5286 - don't rescan devices: we already know!
5287 - partition_device returns a UDI
5288 - refactor detect_supported_drives
5289 - retrying getting system partition helps
5290 - race conditions? let's increase sleep time!
5292 * Fix Scenario: Upgrading an old Tails USB installation from another Tails USB
5293 drive (tails/tails!765)
5296 - apparently fix tails/tails#18840
5297 - send tails installer log to syslog
5299 * Additional Software: synchronize APT data when needed directly from t-p-s
5303 - Test suite: restart Tails in the same way we expect the user to
5304 - Test suite: don't exit the persistence wizard once done, make saving settings
5306 - Test suite: refactoring (convert step to method)
5307 - Additional Software: synchronize APT data when needed directly from t-p-s
5308 - Remove XXX:Bullseye: this is not going to happen
5310 * Update gdm-tails.json for Bullseye (tails/tails!689)
5313 - Add pointer accessibility support to gdm-tails.json
5314 - gdm-tails.json: remove panelStyle
5316 * Update VeraCrypt test suite for Bullseye (tails/tails!686)
5319 - Test suite: trim expected image to account for GNOME mounted volume
5321 - Give exchange USB drive more space
5322 - Test suite: update to new GNOME Disks UI
5323 - Test suite: update Nautilus application name
5324 - Test suite: update expected picture
5326 -- Tails developers <tails@boum.org> Mon, 04 Apr 2022 09:25:25 +0000
5328 tails (4.29) unstable; urgency=medium
5330 * Upgrade to Tor Browser 11.0.x based on Firefox 91.8 (tails/tails!777)
5333 - Upgrade to Tor Browser 11.0.x based on Firefox 91.8 (tails/tails#18874)
5336 - Fetch Tor Browser from our own archive
5337 - Upgrade Tor Browser to 11.0.10-build1
5339 * Upgrade Thunderbird to 91.7
5341 * Upgrade to obfs4proxy 0.0.12 (Elligator2 bug) (tails/tails!728)
5344 - Fix bug in obfs4proxy (Elligator2), upgrading to 0.0.12+ (tails/tails#18800)
5347 - Revert "Downgrade obfs4proxy to 0.0.12-dev from the Tor Browser 11.0.4 tarball"
5349 * htpdate: log to stdout even when a log file is specified (tails/tails!772)
5352 - htpdate: also log to the Journal (tails/tails#18895)
5355 - htpdate: log to stdout even when a log file is specified
5357 * Upgrade to Buster 10.12 and Linux 5.10.103-1 (tails/tails!771)
5360 - Upgrade to Buster 10.12 (tails/tails#18885)
5361 - Upgrade Linux to 5.10.103-1 (DSA-5095-1) (tails/tails#18877)
5364 - Drop unused KERNEL_SOURCE_VERSION variable
5365 - Upgrade to Buster 10.12 and Linux 5.10.106-1
5367 * Test suite: drop OTR tests (tails/tails!769)
5370 - "Pidgin automatically generates an OTR key" test suite step fails when host
5371 system is Bullseye (tails/tails#18866)
5374 - Test suite: rename otr-bot to xmpp-bot
5375 - Test suite: drop support for OTR
5376 - Test suite: drop OTR tests
5378 * Provide HTTPS link when JavaScript is disabled (#18559) (tails/tails!755)
5381 - Update release process
5383 - Provide HTTPS link when JavaScript is disabled (#18559)
5385 * Clarify purpose and timeline (tails/tails!744)
5388 - Add link to release notes on GitLab
5389 - Include technical writers in the procedure
5392 - Remember Technical Writers where to find the latest stable
5393 - Clarify purpose and timeline
5395 * Upgrade zlib1g to 1:1.2.11.dfsg-1+deb10u1 (DSA-5111-1)
5398 * doc updates after releasing 4.28 (tails/tails!742)
5401 - Use expected location of release notes
5402 - Easier technical-writers notification
5403 - clean RCs from rsync.lizard: command
5404 - twitter: less brain usage, more commands
5405 - clicking links is easier than thinking
5406 - RM: please communicate before clocking off
5407 - more parallelization: do tests while IUKs are building
5408 - lesson learned: read DSA mailing list
5409 - be sure you are on the right branch
5410 - importing PO often fails: let's explain why
5411 - check iuks/v2 exists: scripted
5413 -- Tails developers <tails@boum.org> Mon, 04 Apr 2022 13:21:09 +0200
5415 tails (4.28) unstable; urgency=medium
5417 * Upgrade to Tor Browser 11.0.7-build2 based on Firefox 91.7 (tails/tails!741)
5420 - Upgrade to Tor Browser 11.0.7 based on Firefox 91.7 (tails/tails#18853)
5423 - Fetch Tor Browser from our own archive
5424 - Upgrade Tor Browser to 11.0.7-build2
5426 * Upgrade to Thunderbird 91.6.1
5428 * Upgrade to tor 0.4.6.10 (tails/tails!737)
5431 - Upgrade to tor 0.4.6.10 (tails/tails#18835)
5434 - Upgrade to tor 0.4.6.10 (Closes #18835)
5436 * Enable obfs4proxy logging (tails/tails!734)
5439 - save obfs4proxy logs into artifacts
5440 - enable obfs4proxy debug logging
5441 - "obfs4proxy managed" is an option from the past
5443 * minor fixes to custom-apt-cruft-check (tails/tails!733)
5446 - custom-apt-cruft-check: output nicer Markdown
5447 - Give method a name closer to what it wraps
5449 - fix wrong variable name
5453 * Test suite: collect logs of tor & friends when we timed out waiting for TCA to
5454 connect (tails/tails!732)
5457 - Test suite does not save tor log on "Timed out while waiting for TCA to connect
5458 to Tor (Timeout::Error)" (tails/tails#18850)
5461 - Apply 2 suggestion(s) to 1 file(s)
5462 - Test suite: collect logs of tor & friends when we timed out waiting for TCA to
5465 * Test suite: ignore old APT repository signing key (tails/tails!731)
5468 - Test suite: ignore expiration date of 221F9A3C6FA3E09E182E060BC7988EA7A358D82E
5472 - Test suite: ignore old APT repository signing key
5474 * Test suite can test on the real Tor network (tails/tails!725)
5477 - Test behavior on the real Tor network (tails/tails#18847)
5480 - move Jenkins-only code in the appropriate section
5481 - better debug message
5482 - shell oneliner converted to ruby
5483 - Configure simulated Tor network: step -> function
5484 - rubocop is happier
5485 - Test suite: don't try to save chutney data when it does not exist
5486 - add at least one relevant scenario
5487 - if +real-Tor, select relevant scenarios
5488 - test suite runs with real Tor, if +real-Tor
5489 - "default bridges" honors --disable-chutney
5490 - Check adapted to --disable-chutney
5491 - run_test_suite --disable-chutney
5492 - chutney-specific conf moved into appropriate step
5494 -- Tails developers <tails@boum.org> Mon, 07 Mar 2022 18:16:01 +0100
5496 tails (4.27) unstable; urgency=medium
5498 * Upgrade Tor Browser to 11.0.6-build1, based on Firefox 91.6 (tails!724)
5500 Closes issues: tails#18799
5502 This upgrades obfs4proxy to the version shipped with Tor Browser 11.0.4
5503 (0.0.11 + a few commits).
5505 * Upgrade to Linux 5.10.92 (tails/tails!721)
5508 - devel branch FTBFS with webext-ublock-origin-firefox 1.39.0+dfsg-2
5510 - Upgrade Linux to 5.10.92+ (DSA 5050-1) (tails/tails#18805)
5513 - Refresh uBlock Origin patch
5514 - Dropping VirtualBox guest support for now
5515 - Bump APT snapshot of the Debian archive to 2022012801
5516 - Upgrade to Linux 5.10.0-11 (currently at version 5.10.92-1)
5518 * Upgrade to Thunderbird 91 (tails/tails!720)
5521 - Upgrade to Thunderbird 91 (tails/tails#18069)
5524 - Test suite: update expected images for Thunderbird 91
5525 - Test suite: adjust to Thunderbird 91 UI
5526 - Test suite: drop dead code
5527 - Test suite: lint (thanks Rubocop)
5528 - Test suite: refactor (extract code to method) to solve Rubocop error
5530 - Update path mangling in Thunderbird patches for v91
5531 - Update Thunderbird patches from
5532 tails/thunderbird@bef716a60762b743dce1f48c37a64a99a0707b21
5533 - Upgrade to Thunderbird 91
5535 * Insist on Tor Browser being offline (#18584) (tails/tails!711)
5538 - Change buttons to [Start Tor Browser Offline] [Open Tor Connection] when
5539 starting Tor Browser while not connected to tor (tails/tails#18584)
5542 - Insist on Tor Browser being offline (#18584)
5544 * Install obfs4proxy from the Tor Browser tarball (tails/tails!716)
5547 - Briefly document what config/equivs is for
5548 - Install our dummy obfs4proxy package
5549 - Enable the 18800-obfs4proxy-from-tor-browser-tarball APT overlay (refs:
5551 - Add equivs configuration for our new obfs4proxy dummy package
5552 - AppArmor: allow access that obfs4proxy 0.0.11 needs
5553 - Install obfs4proxy from the Tor Browser tarball
5556 * Test suite: update expected button label (tails/tails!718)
5559 - Test suite: update expected button label
5561 * Re-generate our test IUKs using gensquashfs (tails/tails!715)
5564 - Re-generate our test IUKs using gensquashfs (tails/tails#18654)
5567 - Test suite: use test IUKs generated with gensquashfs
5568 - Release process: never delete test IUKs generated with gensquashfs
5569 - Give new, unique names to test IUKs generated with gensquashfs
5571 * Add generated tails-backup.desktop to .gitignore (tails/tails!714)
5574 - Add generated tails-backup.desktop to .gitignore
5576 * simplify workflow when adding an APT overlay (tails/tails!708)
5579 - waiting now uses a proper tool
5580 - add-APT-overlay can wait for suite creation
5582 * Resolve "Tests for backup are fragile" (tails/tails!706)
5585 - Tests for backup are fragile (tails/tails#18727)
5588 - try to make backup tool test more resilient
5590 * fix wi-fi settings from Tor Connection (tails/tails!692)
5593 - Fix Wi-Fi settings when open from Tor Connection (tails/tails#18587)
5596 - Fix Wi-Fi settings from Tor Connection
5598 -- Tails developers <tails@boum.org> Mon, 07 Feb 2022 13:50:41 +0000
5600 tails (4.26) unstable; urgency=medium
5602 * Resolve "All branches FTBFS since Thunderbird 91 was uploaded"
5606 - All branches FTBFS since Thunderbird 91 was uploaded (tails/tails#18789)
5609 - pin thunderbird l10n packages, too
5610 - Add freeze exceptions for 4.26
5611 - Enable the 18789-fix-ftbfs-thunderbird-91 APT overlay (refs: #18789).
5613 * Upgrade Tor Browser to 11.0.4-build2 (tails/tails!710)
5616 - Upgrade to Tor Browser 11.0. … 4? (tails/tails#18795)
5619 - Fetch Tor Browser from our own archive
5620 - Upgrade Tor Browser to 11.0.4-build2
5622 * Resolve "Change buttons to [Start Tor Browser Offline] [Open Tor Connection]
5623 when starting Tor Browser while not connected to tor" (tails/tails!704)
5626 - Change buttons to [Start Tor Browser Offline] [Open Tor Connection] when
5627 starting Tor Browser while not connected to tor (tails/tails#18584)
5630 - open TorBrowser when offline →opens Tor Connection
5632 * Use DuckDuckGo for search queries on our website (tails/tails!498)
5635 - Don't search on staging.tails.boum.org
5637 - Translate searchbox placeholder
5638 - Factorize the CSS translation hack
5639 - Remove useless template
5640 - Improve search box
5641 - Align better the heart and the label
5642 - Use DuckDuckGo on news as well
5643 - Prevent Search and Donate from touching on small screen
5644 - Fix contrast to WCAG AA
5645 - Use DuckDuckGo for search queries (#17652)
5647 -- Tails developers <tails@boum.org> Mon, 10 Jan 2022 13:15:16 +0100
5649 tails (4.25) unstable; urgency=medium
5651 * Upgrade Tor Browser to 11.0.2-build3 (tails/tails!684)
5654 - Upgrade to Tor Browser 11.0.2 based on Firefox 91.4esr (tails/tails#18726)
5657 - Fetch Tor Browser from our own archive
5658 - FIX sha256sums for TorBrowser
5659 - Upgrade Tor Browser to 11.0.2-build3
5661 * Unsafe Browser: fix buggy GUI after upgrade to Tor Browser 11.0a10
5665 - Buggy GUI in Unsafe Browser after upgrade to Tor Browser 11.0a10
5669 - Unsafe Browser: fix buggy GUI after upgrade to Tor Browser 11.0a10.
5671 * IUK generation: stop using the "extreme" extra compression option
5675 - squashfs-tools-ng is slow (tails/tails#18675)
5678 - IUK generation: stop using the "extreme" extra compression option
5680 * Fix devel FTBFS by dropping VirtualBox guest support for now (tails/tails!652)
5683 - Test suite: the live user is no longer a member of vboxsf.
5684 - Fix FTBFS by dropping VirtualBox for now (Closes #18643)
5686 * APT: trust the new signing key for our APT repositories (tails/tails!682)
5689 - APT: trust the new signing key for our APT repositories (tails/sysadmin#17810)
5691 * Resolve ""I can listen to an Ogg audio track in Tor Browser" test suite step
5692 sometimes fails" (tails/tails!680)
5695 - "I can listen to an Ogg audio track in Tor Browser" test suite step sometimes
5696 fails (tails/tails#18716)
5699 - Test suite: make audio in browser test more robust
5700 - Test suite: simplify
5702 * Refresh uBlock origin patch to fix devel FTBFS (tails/tails!678)
5705 - Refresh uBlock Origin patch
5707 * Fix shellcheck CI job (tails/tails!677)
5710 - Replace unsupported braces expansion with list
5711 - Add missing quotes
5712 - Update shellcheck exclusion for newer shellcheck
5714 * Drop feature/tor-nightly-master branch (tails/tails!676)
5717 - APT time-based snapshots fail: tor-nightly-master-buster suite does not exist
5718 anymore (tails/tails#17877)
5721 - Drop feature/tor-nightly-master branch
5723 * Upgrade Tor Browser to 11.0.1-build1 (tails/tails!675)
5726 - Upgrade to Tor Browser 11.0.1 (based on Firefox 91.3esr) (tails/tails#18641)
5729 - Revert "Unsafe Browser: fix buggy GUI after upgrade to Tor Browser 11.0a10."
5730 - Upgrade Tor Browser to 11.0.1-build1
5732 * run_test_suite --live-patch (and more!) (tails/tails!674)
5735 - one-line if can be made more compact
5736 - enjoy some File module goodness
5737 - avoid using shell, let's Find.find with ruby
5738 - Apply 1 suggestion(s) to 1 file(s)
5739 - correctly handle invocations without --live-patch
5740 - refactoring: live_patch is a VM method
5741 - --live-patch is more powerful
5742 - --live-patch (draft)
5743 - run_test_suite --view-interact
5744 - test suite debug: easier to copy files in the VM
5746 * Test suite: remove unused step definition and the corresponding image
5750 - Test suite: remove unused step definition and the corresponding image
5752 * Test suite: fix reporting of hostname leaks via DHCP (tails/tails!671)
5755 - Test suite: fix reporting of hostname leaks via DHCP
5757 * Fix some GitLab CI tests (tails/tails!669)
5760 - Add missing dependencies
5761 - Add missing dependency
5762 - Maintain the list of Tor Connection dependencies in a single place
5764 * Resolve "Compute years range dynamically in Tor Connection's time setting
5765 dialog" (tails/tails!668)
5768 - Compute years range dynamically in Tor Connection's time setting dialog
5772 - Tor Connection year range derives from build time
5774 * add comments to connect-drop after security audit (tails/tails!666)
5777 - add comments to connect-drop after security audit
5779 * Add a "Tails (External Hard Disk)" boot menu option (tails/tails!665)
5782 - Add a "Tails (External Hard Disk)" option that removes live-media=removable
5784 * Vagrant build box: have hostname resolve to 127.0.0.1 (tails/tails!661)
5787 - Vagrant build box: have hostname resolve to 127.0.0.1
5789 * Test suite: give GNOME Overview more time to process our search
5793 - Test suite: give GNOME Overview more time to process our search
5795 * Upgrade Vagrant build box to Bullseye (tails/tails!653)
5798 - Upgrade Vagrant build box to Bullseye (tails/tails#18660)
5801 - Vagrant: add more debug output
5802 - build-tails: fix submodule initialization
5803 - Use long option name
5804 - Vagrant build box provisioning: don't assume the "debian" and "debian-security"
5805 snapshots have the same serial
5806 - Document when we can drop a workaround
5807 - Upgrade Vagrant build box to Bullseye
5808 - Vagrant build box: bump all APT snapshots
5810 * create-usb-image-from-iso: detect syslinux installation failure
5814 - Builds succeeds even if syslinux failed to install in create-usb-image-from-iso
5819 - create-usb-image-from-iso: remove obsolete comments
5820 - create-usb-image-from-iso: remove obsolete workaround
5821 - create-usb-image-from-iso: detect syslinux installation failure
5823 * Tor Connection: Add link to Troubleshooting doc (tails/tails!650)
5826 - Link to the Tor connection troubleshooting doc from the error screen
5830 - apply UX tip: move link to bottom
5831 - Tor Connection: Add link to Troubleshooting doc
5833 * Trim down SquashFS exclusions: remove obsolete ones, move as much as possible
5834 to chroot_local-hooks (tails/tails!649)
5837 - leading slashes are clearer
5838 - Trim down SquashFS exclusions: remove obsolete ones, move as much as possible
5839 to chroot_local-hooks
5841 * Upgrade to tor 0.4.6.8 (tails/tails!647)
5844 - Upgrade tor to 0.4.6 (tails/tails#18310)
5847 - Upgrade to tor 0.4.6.8, by bumping the snapshot of the torproject APT
5848 repository to 2021110301
5850 * Improve dialog when Unsafe Browser is not enabled (tails/tails!628)
5853 - Improve dialog when Unsafe Browser is not enabled (tails/tails#18598)
5858 - Apply 1 suggestion(s) to 1 file(s)
5859 - Make the link for the Unsafe Browser documentation translatable
5860 - Use a named anchor (refs: #18598)
5861 - Include link for the Unsafe Browser documentation
5862 - Associate text/html with tor-browser (refs: #18598)
5863 - Apply 1 suggestion(s) to 1 file(s)
5864 - Improve dialog when Unsafe Browser is not enabled
5866 * Basic GUI to backup a Persistent Storage to another one (tails/tails!596)
5869 - Retry updating the backup if only mounting the backup Tails is missing
5871 - Basic GUI to backup a Persistent Storage to another one (tails/tails#18504)
5874 - Test suite: improve readability
5875 - Test suite: test that the backup is identical to the source
5876 - Adjust to a04204cba2
5877 - Adjust to 6161e4f823
5878 - Adjust to a77c2425f3
5879 - Adjust to cb7b877fda
5880 - Test suite: use deprecated GuestFS luks_* functions
5883 - tails-backup: avoid issue in non-English locales
5884 - Shellcheck: disable excessive rule
5885 - Test suite: detect disks being plugged using udisks
5886 - Test suite: add elementary scenario for tails-backup.
5887 - tails-backup: implement pinentry retries and cancel
5888 - tails-backup: handle unlocked but unmounted TailsData
5889 - tails-backup: suppress bilibop's message
5890 - tails-backup: detect if rsync fails through pipefail
5891 - Expand rsync short options.
5892 - tails-backup-rsync: defensively check that we copy between mountpoints
5893 - tails-backup: make shellcheck happy
5894 - tails-backup: don't try to unlock and already unlocked and mounted volume
5895 - tails-backup: drop need for admin password
5896 - tails-backup: drop unused parameters
5897 - tails-backup: add back progress bar that doesn't hide rsync's output
5898 - tails-backup: fix up on "Always display the 1st screen"
5900 - Improve feedback (for now)
5902 - Always display the 1st screen if there's any error (#18720)
5903 - Use consistent quotes
5904 - Put the most meaningful word first
5905 - Move together with the other Persistent Storage utilities
5906 - tails-backup: drop unused variables
5907 - tails-backup: use consistent indentation
5908 - tails-backup: unlock and mount the drive automatically
5909 - tails-backup: show pulsating progress while copying
5910 - tails-backup: try to eject automatically
5911 - tails-backup: fix quoting.
5912 - Make tails-backup executable.
5914 - Advice to upgrade from the backup utility
5915 - Update doc to Persistent Storage Backup utility
5917 - Rework interactions and copy
5918 - fix typo in .desktop file
5919 - update to latest version of the script
5922 * Improve robustness of new TCA automated tests (tails/tails!525)
5925 - Test suite: drop unused step.
5926 - Test suite: correctly use "is None" in python script.
5927 - Remove usage of tor.sh's tor_is_working
5928 - Drop most of the tor shell library.
5929 - tor_is_working is stem-based, too
5930 - refactor bash+py stem wrapper into py script
5931 - python ♥ equality to None should use `is` keyword
5932 - python ♥ let's PEP8 everything
5933 - python ♥ remove useless imports
5934 - python ♥ proper argument parser
5935 - python ♥ main function
5937 - Drop unused variable.
5938 - Catch correct exception.
5940 - Rewrite tor_wait_until_bootstrapped() to be more robust.
5941 - Extreme Nitpicking™
5942 - Make tor_wait_until_bootstrapped() handle tor restarts.
5943 - Improve debugging.
5944 - Avoid spamming new python interpreters while waiting for Tor to bootstrap.
5945 - Allow multiline code blocks in tor_control_stem_wrapper().
5946 - Target the 4.22 code base
5947 - XXX debugging for test/18293-improve-tca-test-robustness
5948 - Test suite: adapt to removal of tor_control_send().
5949 - Test suite: test that tor's control port is open for real.
5950 - Tor shell library: improve error handling when the Tor control port is
5952 - Remove mention of unused import.
5953 - Tor shell library: re-implement control interaction with Python and stem.
5954 - Tor shell library: improve parsing and error handling of getinfo/getconf.
5955 - Add missing shell quoting.
5956 - Add forgotten local variables.
5957 - Add proper error handling to the shell library's control port interaction.
5958 - Test suite: wait for tor's ControlPort before using it (refs: #18293).
5960 -- Tails developers <tails@boum.org> Mon, 06 Dec 2021 16:03:22 +0100
5962 tails (4.24) unstable; urgency=medium
5964 * Upgrade to Tor Browser based on Firefox 91 ESR (tails/tails!639)
5967 - Upgrade to Tor Browser based on Firefox 91 ESR (tails/tails#18261)
5970 - Unsafe Browser: disable more "phone home" features
5971 - Unsafe Browser: disable services.settings.server
5972 - Test suite: search for element more widely.
5973 - Test suite: Firefox' Print dialog is now a panel (refs #18261)
5974 - Update the Tor Browser AppArmor policy for Tor Browser 11 (Firefox 91)
5976 - Test suite: make Gherkin test description more honest
5977 - Rubocop: disable a pattern we use all over the place
5978 - Test suite: update expected images and drop obsolete special-case for Chinese
5979 - Test suite: account for different separator used in German
5981 - Test suite: update comment
5982 - Fix typo in comment
5983 - Test suite: adjust to new Firefox print dialog
5984 - Test suite: update expected windows titles
5985 - Test suite: update expected images
5986 - Upgrade Tor Browser to 11.0a9
5988 * Test suite: make "Unsafe Browser has only Firefox's default bookmarks
5989 configured" step more robust (tails/tails!646)
5992 - Fragile test since the upgrade to Tor Browser 11: "Unsafe Browser has only
5993 Firefox's default bookmarks configured" (tails/tails#18658)
5996 - Test suite: wait for menu to really open before looking for menu entry
5997 - Test suite: update expected picture
5999 * APT sources: add Bullseye security (stable) (tails/tails!637)
6002 - APT sources: add Bullseye security (tails/tails#18492)
6005 - APT pinning: ensure we get security updates for the packages we pull from
6007 - APT sources: add Bullseye security repo
6009 * Move tca developer doc to more appropriate places (tails/tails!636)
6012 - Update "Tor network configuration" design doc (tails/tails#18360)
6015 - tips to develop Tor Connection are reachable
6016 - tca doc behavior.md moved to Gherkin
6017 - move tca/HACKING.md to website
6019 * APT sources: add Bullseye security (tails/tails!626)
6022 - APT pinning: ensure we get security updates for the packages we pull from
6024 - APT sources: add Bullseye security repo
6026 * Upgrade kernel to 5.10.46-5 in stable (tails/tails!625)
6029 - Upgrade Linux to 5.10.46-5 (DSA 4978-1) (tails/tails#18613)
6030 - Upgrade to Buster 10.11 (tails/tails#18608)
6033 - Pull libzstd1 from Bullseye: needed by updated squashfs-tools
6034 - Install squashfs-tools from bullseye.
6036 - to get a new kernel in stable, bump debian/serial
6037 - change pinning to get kernel from bullseye
6038 - bump kernel to 5.10.46-5
6040 * Upgrade kernel to 5.10.46-5 in devel (tails/tails!622)
6043 - Pull libzstd1 from Bullseye: needed by updated squashfs-tools
6044 - change pinning to get kernel from bullseye
6045 - bump kernel to 5.10.46-5
6047 * update Tor network configuration design doc (tails/tails!606)
6050 - TCA is not a Tor Launcher wrapper.
6051 - Apply intrigeri's proofreading suggestions.
6052 - explain why tca-portal runs as root
6053 - Document connect-drop security model
6054 - update Tor network configuration design doc
6056 * TCA: clean leftovers (tails/tails!604)
6059 - TCA clean leftovers (tails/tails#18273)
6062 - systemd-notify: move to better way
6063 - we considered this implementation good enough
6065 - move XXX to #18610
6066 - clarify comment after tails/tails!567
6067 - remove code that was never used and never tested
6068 - comment moved to #18609
6070 * Upgrade Tor Browser to 11.0a10-build1 (tails/tails!655)
6073 - Upgrade Tor Browser to 11.0a10-build1
6075 * Remove obsolete freeze exception (tails/tails!648)
6078 - Remove obsolete freeze exception
6080 * Port the iuk test suite from squashfs-tools to squashfs-tools-ng
6084 - Port the iuk test suite from squashfs-tools to squashfs-tools-ng
6088 - IUK test suite: support file names with spaces
6089 - IUK test suite: take into account gensquashfs behavior wrt. SOURCE_DATE_EPOCH
6090 - IUK test suite: add missing import
6091 - IUK test suite: port from squashfs-tools to squashfs-tools-ng
6092 - IUK generation: add assertion
6093 - Upgrader: use apparent size to compute space needed to install an IUK
6095 * Switch to zstd for SquashFS compression in development ISO/USB images
6099 - Switch to zstd for SquashFS compression in development ISO/USB images
6101 * Switch to squashfs-tools-ng to build IUKs (tails/tails!640)
6104 - Switch to squashfs-tools-ng to fix IUKs build reproducibly (tails/tails#18577)
6105 - Failure reproducing IUKs for 4.22~rc1 (tails/tails#18536)
6106 - Failure reproducing IUKs for 4.23 (tails/tails#18627)
6109 - GitLab CI: avoid confusing error message
6110 - Release process: use only the isobuilders that have squashfs-tools-ng
6111 - Switch to squashfs-tools-ng to generate our IUKs
6112 - Update release process requirements for building IUKs
6114 * Resolve "Tor Connection bridge tests fail" (tails/tails!621)
6117 - Tor Connection bridge tests fail (tails/tails#18634)
6120 - FIX tests for 84e047ebd39e too
6121 - fix tests after 68b0e77119e
6123 * Upgrader: avoid high cpu usage when getting download progress info
6127 - tails-upgrade-frontend causes very high CPU load when downloading upgrade
6131 - Upgrader: avoid high cpu usage when getting download progress info
6133 * Explain better how to type a bridge (#18597) (tails/tails!617)
6136 - Explain better "type in a bridge" (tails/tails#18597)
6140 - Use singular as much as possible
6141 - Use 'bridge' in singular as much as possible
6143 - Explain better how to type a bridge (#18597)
6144 - Style guide: not everybody types
6146 * Don't mention local network in Unsafe Browser confirmation (tails/tails!615)
6149 - Don't mention local network in Unsafe Browser confirmation (tails/tails#18600)
6154 * Rephrase intro of Fix Clock dialog (tails/tails!614)
6157 - Rephrase intro of Fix Clock dialog (tails/tails#18572)
6160 - Be consistent with /doc/about/warnings/identity
6162 - Remove duplicate text
6163 - Simplify and be more correct
6165 * Improve time zone selection UX (tails/tails!595)
6168 - Improve time zone selection UX (tails/tails#18514)
6171 - the test suite correctly handles UTC/GMT
6172 - UTC can be selected, too
6173 - test suite enjoys better UX, too
6174 - pressing enter selects topmost entry
6175 - tca gtk errors are logged immediately
6176 - test suite waits for filtering to be applied
6177 - Test suite: replace usage of non-existing Screen.pressKey with Screen.press
6178 - revamp the time selection dialog
6180 - test suite updated for new timezone selection
6181 - FIX matching (lets hope so)
6182 - better UX for timezone selection
6183 - proper logging in asyncutils
6185 * Installer: make the confirmation dialog more scary (tails/tails!593)
6188 - Make the confirmation more scary when reinstalling a USB stick that has a
6189 Persistent Storage (tails/tails#18301)
6192 - Test suite: adjust confirmation label when reinstalling over a usb with a
6194 - Test suite: adjust confirmation dialog label in Installer (refs #18301)
6195 - Installer: inform when there is no target available
6196 - Installer: enforce Persistent Storage detection
6197 - Installer: display if the target device has a Persistence Storage
6198 - Make the confirmation more scary when reinstalling a USB stick that has a
6199 Persistent Storage (refs: #18301)
6201 * TCA: Fix "AttributeError: no attribute persistence_config_failed"
6206 - make the diff smaller
6207 - TCA: Fix "AttributeError: no attribute persistence_config_failed"
6209 -- Tails developers <tails@boum.org> Thu, 04 Nov 2021 14:25:18 +0100
6211 tails (4.23) unstable; urgency=medium
6213 * Upgrade Tor Browser to 10.5.8-build2 (tails/tails!611)
6216 - Upgrade to Tor Browser 10.5.8 (based on Firefox 78.15.0esr) (tails/tails#18623)
6219 - Fetch Tor Browser from our own archive
6220 - Upgrade Tor Browser to 10.5.8-build2
6222 * FIX #18568: wait after killing TBB (tails/tails!607)
6225 - "Tails is localized for every tier-1 language" test fails on iguana
6229 - FIX #18568: wait after killing TBB
6231 * Fix devel FTBFS (tails/tails!601)
6234 - Install squashfs-tools from bullseye.
6235 - Refresh uBlock patch vs version 1.37.0+dfsg-1 (fixes: #18537)
6237 * copy-iuks-to-rsync-server-and-verify: handle arbitrary build agents
6241 - copy-iuks-to-rsync-server-and-verify: needs adjustment for changing isobuilder
6242 names (tails/tails#18574)
6245 - copy-iuks-to-rsync-server-and-verify: handle arbitrary build agents.
6247 -- Tails developers <tails@boum.org> Tue, 05 Oct 2021 08:20:24 +0200
6249 tails (4.22) unstable; urgency=medium
6251 * Upgrade Thunderbird to 78.13.0-1~deb10u1
6253 * Upgrade to Tor Browser 10.5.6 (78.14.0esr) (tails/tails!594)
6256 - Upgrade Tor Browser to 10.5.6-build2 (fixes: #18566)
6258 * Remove Prestera firmware, that's useless in the context of Tails
6262 - Stop setting up a kernel module build environment during the images build
6263 - Remove Prestera firmware, that's useless in the context of Tails
6265 * Only allow typing 1 bridge (tails/tails!587)
6268 - Only allow typing 1 bridge
6270 * Don't pretend tor has bootstrapped when tor@default.service failed to start
6274 - Don't pretend tor has bootstrapped when tor@default.service failed to start
6276 * Upgrade firmware-amd-graphics to 20210818-1 (tails/tails!582)
6279 - Install version 20210818-1 of packages built from src:firmware-nonfree
6280 - Enable the 18556-amd-gpu-firmware APT overlay (refs: #18556).
6282 * Ensure we use a working mirror to download automatic upgrades (tails/tails!581)
6285 - Update mirror-pool-dispatcher submodule
6286 - Allow the Upgrader to use tor, now needed by tails-transform-mirror-url for
6288 - many improvements to mirror-pool-dispatcher
6289 - FIX dependency for tails-transform-mirror-url
6290 - apply suggestion from mirror-pool-dispatcher!2
6291 - mirror-pool-dispatcher tests mirrors
6293 * Test suite: fix Pidgin scenarios with XMPP accounts on a server that requires
6294 going through the "Create New Room" UI (tails/tails!580)
6297 - Some Pidgin test suite scenarios fail when using XMPP accounts on a server that
6298 requires going through the "Create New Room" UI (tails/tails#18560)
6301 - Test suite: update expected Pidgin images
6303 * Test suite: fail if tor reports that DisableNetwork is an empty string
6307 - Test suite: log and fail if tor reports that DisableNetwork is an empty string
6309 * Persistent Bridges, iteration 4: integrate bridges persistence in Tor
6310 Connection (tails/tails!543)
6313 - Tor Connection: remove visible border around scrolled window
6314 - Drop unneeded grep option
6315 - Test suite: be more defensive when interacting with toggle buttons
6316 - Test suite: disable step that does not reflect the current implementation
6318 - Mention alternate implementation idea in comment
6319 - Fix typo in comment
6320 - Make checks closer to our needs
6321 - Move shell code from tca-portal to helper script
6322 - Make tca-portal helper script more generic
6323 - Tor Connection: when pre-filling bridges, adjust the verb from "Type in" to
6325 - Test suite: explain what labelee is
6326 - Test suite: adjust to current UI
6327 - TCA: fix display on low-height screen resolutions
6328 - Test suite: update expected UI text to match current implementation
6329 - TCA: correctly set the bridges persistence switch's initial state
6330 - TCA: adapt to new tca-portal API
6331 - TCA: remove unused imports
6332 - TCA: display error when enabling/disabling persistence failed
6333 - TCA: check success/failure of portal call when enabling/disabling persistence
6335 - Test suite: adjust strings to match current implementation
6336 - TCA: lock the UI and display a spinner while enabling/disabling persistence
6337 - TCA: add another keyboard accelerator
6338 - TCA: when toggling bridges persistence, wait the portal call to return a
6340 - TCA: remove unused import
6341 - Change usages of call_async to new API
6342 - TCA: remove incorrect signal handling
6343 - TCA: actually enable/disable Tor bridges persistence when the user asks us to
6344 - TCA: display vertical scrollbar when contents does not fit
6345 - TCA: hide Network Monitor launcher
6346 - Test suite: use the Tor Connection UI to enable bridges persistence
6347 - TCA: add skeleton implementation for toggling bridges persistence on/off
6348 - TCA: draft bridges Glade UI
6349 - TCA: improve keyboard navigation
6350 - TCA: add accessibility relationships between a bunch of widgets
6351 - TCA: add debug output
6352 - TCA: move persistence detection to the wrapper script
6353 - TCA: avoid throwing an (invisible) KeyError exception on first launch
6356 * Persistent Bridges, iteration 3: allow persisting bridges (tails/tails!539)
6359 - Test suite: lint, again
6360 - Test suite: adjust expected owner to actual implementation
6361 - TCA: check and save persistence status on startup
6362 - tca-portal: add commands to enable/disable persistence of Tor configuration
6363 - Test suite: mock functionality that's not implemented yet
6364 - Test suite: add step implementation
6365 - Test suite: disable incorrect step definition
6366 - Test suite: implement steps
6367 - Test suite: adjust to expected permissions of /var/lib/tca
6368 - Persistence setup: add support for disabling a preset non-interactively
6369 - Persistence setup: add a "Tor Bridges" feature
6370 - On shutdown, copy to Persistent Storage the Tor configuration that should now
6372 - Test suite: implement "I accept Tor Connection's offer to use my persistent
6374 - Test suite: implement "I choose to connect to Tor automatically" step.
6375 - Test suite: extend step to handle configuring persistent bridges.
6376 - TDD: add (unimplemented) steps for Tor bridges persistence
6377 - Test suite: simplify feature name
6379 * Persistent Bridges, iteration 2: use settings from tca.conf on first start
6383 - Revert "Test suite: cope with current actual behavior"
6384 - TCA: rename method to reflect what it now does
6385 - TCA: on first run, pre-seed bridges UI state from configuration
6386 - TCA: add debug logging to help understand what configuration we've loaded
6387 - TCA: add debug output to help figure out whether we loaded tca.conf
6388 - TCA: fix loading an empty or invalid configuration file
6389 - TCA: on first start, load Tor connection configuration from tca.conf
6391 * Persistent Bridges, iteration 1: split transient / potentially persistent state
6395 - Test suite: cope with current actual behavior
6396 - Test suite: adjust to actual implementation
6397 - TCA: don't save the default bridges to tca.conf
6398 - Test suite: fix buggy "tca.conf is empty" test
6399 - Make method name clearer and consistent with read_tca_state()
6400 - TCA: Rename method
6402 - TCA: Migrate transient state information to a dedicated file
6403 - TCA: Rename method
6404 - TCA: Refactoring (extract code to functions)
6405 - Test suite: Implement new steps
6407 - TDD: add (unimplemented) steps for the contents of tca.conf
6408 - TCA: Disable loading proxy settings from the configuration file
6409 - TCA: Set up, pass through, and inherit a new state file
6410 - TCA: Remove unused import
6411 - TCA: Drop unneeded call to expanduser()
6412 - TCA: Only save known-working Tor configuration to tca.conf
6413 - TCA: Minor refactoring (avoid having to reason about double-negations)
6414 - TCA: Make methods names more specific
6416 * Always start tor@default.service at boot, don't restart it after closing the
6417 Unsafe Browser (tails/tails!584)
6420 - Test suite: adjust to the fact tor@default.service is started during boot
6421 - Don't restart tor after exiting the Unsafe Browser
6422 - Always start tor@default.service at boot
6424 * Unsafe Browser: Only mention the Persistent Storage when there is one
6428 - Unsafe Browser: Only mention the Persistent Storage when there is one
6430 * Fix running the test suite on sid (tails/tails!579)
6433 - Drop another instance of the obsolete which(1)
6434 - Test suite: migrate away from obsolete which(1)
6435 - Test suite: switch to virtio graphics
6437 * FIX run_test_suite usage of tor --version for corner-cases (tails/tails!575)
6440 - FIX run_test_suite for corner-cases
6442 * Installer: fix combobox freezes (tails/tails!571)
6445 - Installer: fix combobox freezes (refs: #18531)
6447 * Update Tor Browser AppArmor policy (tails/tails!568)
6450 - Update Tor Browser AppArmor policy
6452 * Tor Connection: decrease "sign of life" timeout, increase bootstrap timeout
6456 - Test suite: DRY clicking "Connect to Tor"
6457 - Test suite: drop obsolete workaround
6459 - Tor Connection: allow the user to retry connecting to Tor from the error screen
6460 with the same settings
6461 - TCA hacking: use numbers that we have a chance to somewhat support
6462 - TCA hacking: drop buggy option
6463 - Add dummy entry for next release
6464 - Tor Connection: decrease "sign of life" timeout, increase bootstrap timeout
6466 * Test suite: use new XMPP chat rooms (tails/tails!566)
6469 - Deal with xmpp.riseup.net going away (tails/tails#17956)
6472 - Test suite: remove dead code
6473 - Test suite: rename argument to match its current usage
6474 - Test suite: use new XMPP chat rooms
6476 * Resolve "TCA does not connect with default bridges when it should"
6480 - Let's use user-centric (first person) phrasing whenever possible
6481 - Always set variables
6482 - better variable names
6483 - test suite: support using bridges w/o needing them
6484 - Gherkin for #18462
6485 - preserve user's choice of using default bridges
6487 * Stop trying to connect to Tor when we reach the Tor Connection error screen
6491 - TCA hacking: add missing sudo
6492 - TCA hacking: make test firewall rule not depend on already having connected to
6494 - TCA hacking: make test firewall rule more accurate
6495 - Test suite: adjust to the new, fixed situation
6496 - Revert "let's wait for the Fix Clock dialog to show up"
6497 - let's wait for the Fix Clock dialog to show up
6498 - state machine docstring
6499 - minor cleaning use of variables
6500 - FIX state machine wrt DisableNetwork
6501 - refactor _decide_right_step
6502 - remove hopefully-obsolete todo comments
6503 - stop trying to connect after timeout
6505 * Move wait_for_working_tor logic from NetworkManager to systemd
6509 - Update links in comment
6510 - Drop useless logging
6511 - Allow NM to start htpdate again if it failed last time
6512 - Clean up implementation of "Does not run htpdate again after success"
6514 - sw upgrade should only run when tor is ready
6515 - waiting for readiness sounds like a pre-command
6516 - Does not run htpdate again after success
6517 - let's use the flag file, instead of asking tor
6518 - systemd-controlled htpdate
6520 * Add Russian to the bundled offline documentation (tails/tails!552)
6523 - enable Russian on our website. will-fix:
6524 https://gitlab.tails.boum.org/tails/tails/-/issues/18454
6526 * vagrant/lib/tails_build_settings.rb: use --no-signature with git log
6530 - vagrant/lib/tails_build_settings.rb: use --no-signature with git log
6531 - .gitignore: ignore vmdb2.log
6533 * GJsonRpcClient.call_async can set a callback (tails/tails!544)
6536 - tca-portal: add missing sentence bits
6537 - Apply 3 suggestion(s) to 1 file(s)
6538 - GJsonRpcClient response handler fix
6539 - tca-portal is now fully asynchronous
6540 - change previous usages of call_async to new API
6541 - call_async can set callbacks
6543 * drop tordate (tails/tails!542)
6546 - ooops, that wasn't useless!
6547 - Tor Connection: make GtkSpinButton's UI consistent
6548 - Tor Connection: add keyboard accelerators
6549 - Tor Connection: use "Wrong clock" instead of "Wrong time" terminology
6550 - Tor Connection: use "Fix Clock" instead of "Set Time" terminology
6552 - Test suite: simplify
6553 - Test suite: use higher-level predicate
6554 - Test suite: remove obsolete exception
6555 - htpdate: increase timeout for working tor
6556 - drop useless stuff from 10-time.sh
6557 - 20-time imports: update comments, fix shellcheck
6558 - remove confusing log line
6559 - htpdate works successfully after manual time set
6560 - tca sends stderr to journal
6561 - no reason to delete the tor log anymore
6562 - testing for tordate in test suite is now useless
6563 - stop mentioning tordate in website
6564 - update time syncing design doc
6565 - remove unused code from 20-time.sh
6566 - be bold: let's drop @fragile from tor bridges!
6569 * Re-enable the tor sandbox when no PTs are used (tails/tails!535)
6572 - Use variable name more readable than $1
6573 - Add missing "set -eu"
6574 - Test suite: fix typo in not-enabled-yet code
6575 - Test suite: prepare sandbox test for when #18470 is fixed
6576 - Test suite: adjust to tor sandbox being disabled when falling back to default
6578 - Remove unused attribute
6579 - Revamp management of the Tor Sandbox configuration option
6581 - Use consistent and less confusing names for attribute and method
6582 - Adjust to new call_async API
6583 - Tor Connection: disable caching of information retrieved from tor by Stem
6584 - Wait for side-effects of async call to complete.
6585 - Improve encapsulation.
6586 - Rename tor-sandbox-helper → tor-pt-configuration-helper.
6587 - Be defensive about arguments.
6588 - Give base-class a better name.
6589 - Drop useless re-definition of method in subclass.
6591 - Apply 1 suggestion(s) to 1 file(s)
6592 - Test suite: re-enable tor sandbox sanity check (refs: #18237).
6593 - Drop unused, out-of-date main() used for testing a library.
6594 - Re-enable the tor sandbox when no PTs are used (refs: #18237)
6596 * TCA: Allow the user to manually set time (tails/tails!531)
6599 - time dialog: spacing + follow mockups better
6600 - reference to how a problem might be solved
6601 - Set time test scenario uses snapshots
6602 - stricter date validation
6604 - Test suite re-introduce linting lost by merge conflict resolution
6606 - more bringing back from devel
6607 - Tor Connection: translate 1 string to test l10n
6608 - Update POT and PO files
6609 - bring back lost changes to tor.rb
6610 - fix datestring validation
6611 - Test suite: revert indentation regression
6612 - Test suite: use user-facing terminology in Gherkin
6613 - fix test suite about time dialog
6614 - loggers are better than prints
6615 - tca remembers user timezone
6616 - bring back "unsuccessfully configure" step
6617 - reorder fixes in the error screen
6618 - set-system-time has early input validation
6619 - tca-portal can validate arguments
6620 - set-system-time errors are handled
6621 - less noisy logging
6622 - tails-set-date cleaned a bit
6623 - tails-set-date checks if the date is valid early
6624 - wait for set time window to be closed
6625 - rewrite Gherkin using more user-centric language
6626 - fix "Apply suggestion"
6627 - Apply 1 suggestion(s) to 1 file(s)
6628 - tca test: combo box faster and cleaner
6629 - Tooltip for combo box
6630 - tca-portal is a bit more verbose
6631 - when changing the time, tor must be restarted
6632 - Test "set the time in tca" does what it says
6634 - FIX: missing .ui file translation support
6635 - Connect to Tor can be clicked
6636 - TCA: adds a dialog to Set Time
6637 - tca-portal allows setting time
6638 - Separate the anti-test from the fix
6639 - reword: "I try to" actually check failure
6640 - 15548 implementation is "simulated"
6641 - test suite: hw clock can be set to relative time
6642 - test: cmd_helper modernized
6643 - DRAFT: Add a Scenario for #15548
6645 * Allow running our test suite on modern AMD CPUs (tails/tails!406)
6648 - document LIBVIRT_CPUMODEL
6649 - amd hack: convert to config file
6650 - modern AMD CPUs apparently benefit from this fix
6652 -- Tails developers <tails@boum.org> Mon, 06 Sep 2021 15:14:57 +0200
6654 tails (4.21) unstable; urgency=medium
6656 * Upgrade to Linux 5.10.46-3 (tails/tails!549)
6659 - Upgrade to Linux 5.10.46-2+ (CVE-2021-33909) (tails/tails#18489)
6662 - Update /etc/group's expected lines ordering
6663 - Ensure UIDs/GIDs don't change
6664 - Remove obsolete dkms logs cleanup
6665 - Don't (attempt to) build VirtualBox guest modules anymore
6666 - Upgrade snapshot of the Debian archive to 2021080201
6668 * Upgrade Thunderbird to 78.12.0-1~deb10u1
6670 * Don't (attempt to) build VirtualBox guest modules anymore (tails/tails!537)
6673 - Update /etc/group's expected lines ordering
6674 - Ensure UIDs/GIDs don't change
6675 - Remove obsolete dkms logs cleanup
6676 - Don't (attempt to) build VirtualBox guest modules anymore
6678 * Installer: allow choose Upgrade option when reinstall is cancelled
6682 - Choosing "Upgrade" option in Tails Installer can delete persistent volume
6686 - Installer: allow choose Upgrade option when reinstall is cancelled
6688 * Upgrade to Tor Browser 10.5.4 (based on Firefox 78.13esr) (tails/tails!555)
6691 - Upgrade to Tor Browser 10.5.4 (based on Firefox 78.13esr) (tails/tails#18479)
6694 - Fetch Tor Browser from our own archive
6695 - Upgrade Tor Browser to 10.5.4-build1
6697 * Clean up code and pre-TCA leftovers (tails/tails!541)
6700 - Clean up pre-TCA leftovers (tails/tails#18365)
6701 - Rename a11y-proxy-netns: it's now used for ibus as well (tails/tails#18366)
6704 - Give function the name we use
6705 - Rename a11y-proxy-netns → netns-bus-proxy.
6706 - Rename TCA's torlaunch network namespace from torlaunch to tca.
6708 - Test suite: drop obsolete workaround.
6709 - Drop already done TODO comment.
6710 - Fix outdated references to Tor Launcher.
6711 - Drop unneeded workaround.
6712 - Test suite: drop code used to support --old-iso for 4.20 release.
6713 - Remove unused exec_unconfined_firefox().
6715 * Refactor and consolidate how we explicitly check for Tor leaks in the automated
6716 test suite (tails/tails!540)
6719 - "all Internet traffic has only flowed through Tor" sometimes fails: does not
6720 allow for varying behavior (fallback to default bridges, or not)
6724 - Test suite: refactor and consolidate how we explicitly check for Tor leaks.
6725 - Revert "Test suite: temporarily disable failing step in scenario."
6727 * Post-RM: doc improvements (tails/tails!528)
6730 - clarify release types
6731 - after releasing: give more guidance
6733 - rm doc: give manual testers the signatures
6734 - some parts are not related to freeze
6735 - refresh-translations explains that it failed
6736 - rm doc: clarify what to do with the package diff
6737 - rm doc: clarify freezing
6739 * Fix usage of mutable default arguments in Python (tails/tails!527)
6742 - Fix usage of mutable default arguments in Python
6744 * More automated testing of TCA for Sponsor08/10 (tails/tails!435)
6750 - Test suite: wait longer for the TCA to report errors.
6751 - Test suite: test that TCA reports an error when reconnecting to a network where
6753 - Test suite: drop unnecessary step.
6754 - Test suite: make blocking Tor survive reconnections.
6755 - Test suite: monitor Tor leaks.
6756 - Fix erroneous camel casing in translation.
6757 - Test suite: test explicitly selecting default bridges in TCA.
6758 - Test suite: test that the same Tor config is applied if TCA reconnects.
6759 - Test suite: test that TCA disallows normal bridges in hide mode.
6761 -- Tails developers <tails@boum.org> Mon, 09 Aug 2021 07:55:57 +0000
6763 tails (4.20) unstable; urgency=medium
6765 * Upgrade Thunderbird to 78.11.0-1~deb10u1
6767 * Upgrade KeePassXC to 2.6.2+dfsg.1-1~bpo10+1
6769 * 20-time.sh: actually abort if Tor has failed to bootstrap (tails/tails!514)
6772 - 20-time.sh: temporarily workaround buggy check
6773 - 20-time.sh: fix success and error handling
6774 - 20-time.sh: simplify control flow
6776 - 20-time.sh: actually abort if Tor has failed to bootstrap
6778 * Resolve "TCA sometimes fails to start: "bwrap: Can't find source path
6779 /tmp/netns-specific/torlaunch: No such file or directory"" (tails/tails!489)
6782 - tails-ibus-proxy-netns@.service: remove now unneeded NotifyAccess=all
6783 - a11y: systemd-notify -> import systemd.daemon
6784 - silence useless information to syslog
6785 - avoid errors when started directly
6786 - clean systemd unit
6787 - more timeout on a11y-proxy-netns
6788 - FIX gnome.sh search for exact name gnome-shell
6791 - wait for user systemd session to be ready
6792 - FIX systemctl path
6793 - remove testing leftover
6794 - a11y/ibus proxy wait socket to signal readiness
6795 - tca-related proxies only active when unneeded
6796 - tails-tor-launcher not needed anymore
6797 - a11y/ibus proxies for TCA only started with TCA
6798 - FIX: call systemctl --user
6799 - tentatively setting TCA as a systemd service
6801 * Resolve "TCA asks consent question when changing network" (tails/tails!460)
6804 - FIX: switching to progress, not success, on connection
6805 - small code cleaning
6807 - tca: FIX success-error-retry
6808 - tca reacts to DisableNetwork changes
6809 - reduce stem logging noise
6810 - tca application monitors DisableNetwork
6812 * tca-portal service (tails/tails!422)
6815 - start tca-portal at boot
6816 - restrict access to tca-portal.socket!
6817 - tca-portal: add open-documentation + refactoring
6818 - FIX FTBFS on tca-portal.service
6819 - gnome-system-monitor opens at network tab
6820 - ooops: enable tca-portal unit
6821 - tca-portal opens onioncircuits
6822 - tca-portal (sic!) has systemd socket-activation
6823 - tca can talk to its portal
6824 - tca-connection-helper based on tinyrpc
6825 - draft of a tor-connection-helper service
6827 * Resolve "TCA: buggy window detection logic on app startup" (tails/tails!457)
6830 - TCA sends startup notification to DE
6832 * Resolve "The amnesia user might have too much power over TCA's configuration
6833 directory" (tails/tails!442)
6836 - change documentation wrt to tca.conf
6837 - tca.conf path changed to /var/lib/tca/
6839 * Install Linux 5.10.46 and upgrade shim (tails/tails!521)
6842 - Update shim* to the version from sid
6843 - Update Linux to 5.10.46
6845 * Don't run a useless IBus proxy for OnionCircuits (tails/tails!510)
6848 - Don't run a useless IBus proxy for OnionCircuits
6850 * Rakefile: actually build with the base branch merged (tails/tails!504)
6853 - Merging the base branch is not effective ⇒ different Git state between
6854 isobuilders and isotesters (tails/tails#18441)
6857 - Rakefile: actually build with the base branch merged
6859 * Rewrite notification when closing TCA on progress bar (tails/tails!496)
6862 - Rewrite notification when closing TCA on progress bar (#18362)
6864 * Implement "Connect to Tor" button in error screen (tails/tails!494)
6867 - Revert "avoid errors when started directly"
6868 - step error correctly indicates that bridges are on
6869 - better textarea alignment
6870 - put the current bridges in the textarea
6871 - keeps more state about bridge configuration
6872 - avoid errors when started directly
6873 - error: step proxy now goes back to error screen
6874 - connect to tor actually does something
6875 - bridges + "connect to tor" on error
6876 - DRAFT of better error screen
6878 * Tor Connection Assistant (tails/tails!375)
6881 - open unsafe-browser (if configured)
6882 - Test suite: properly tear down after cloding TCA.
6883 - Test suite: add some extra error handling.
6884 - Test suite: pass showingOnly even though it should not be needed.
6885 - Test suite: add error message.
6886 - Test suite: fix bad syntax.
6887 - Test suite: add delay between tries in override_child().
6888 - Test suite: add optional delay between retry_action() tries.
6889 - Make is_tor_working() more accurate.
6890 - Test suite: only set default bridges when relevant.
6891 - design change: Tor Launcher is just removed.
6892 - document tca behaviour
6893 - bootstrap/phase may include WARN, too
6894 - Test suite: work around closing TCA too fast.
6895 - more logging to debug test suite
6896 - remove leftover commit
6897 - proper place for hacking tips
6898 - Add icon for the Tor Connection assistant
6899 - Generate the list of default bridges at build time.
6900 - Test suite: drop workaround.
6901 - success indication and fallback to default bridges
6902 - more hacking tips to test tca
6903 - cover corner cases better
6904 - NetworkManager state: signal instead of polling
6905 - tca calls NM immediately
6906 - tca reacts to nm state changes
6907 - Test suite: save Tor journal if TCA fails to start.
6908 - Test suite: bump image.
6909 - Test suite: TCA has a new internal name.
6910 - Test suite: attempt to make try_for() more robust.
6911 - Test suite: adapt to TCA UI change.
6912 - Test suite: fix retring for child() with regexp matching.
6913 - TCA: move to Gtk.Application style
6914 - progress bar get data from bootstrap-phase
6915 - TCA: drop debugging.
6916 - Test suite: convert potentially endless loop to try_for() with timeout.
6917 - Persistent Welcome Screen settings: migrate obsolete network setting to new
6918 offline mode setting.
6919 - Test suite: optimize upgrade check.
6920 - smoother progress bar
6921 - connect-drop: clean unnecessary hacks
6922 - s/amnesia/LIVE_USERNAME/
6923 - drop tor-sandbox-helper: not used right now
6924 - FIX proxy not working
6925 - document tca wrappers
6926 - some css rule to style TCA a bit
6927 - refactoring: utils -> torutils
6928 - more user freedom: consent question can be changed
6929 - current Tor state is observed when filling bridges
6931 - resize window on every change_box
6932 - FIX GAsyncSpawn 100% CPU
6933 - no internet probe anymore: also fix 100% CPU bug
6934 - Welcome Screen: use "airplane mode" icon for Offline mode.
6935 - Test suite: add scenario testing that TCA can connect after an initial
6937 - Test suite: make function usable in more contexts.
6938 - Test suite: also make it possible to block default bridges.
6939 - Test suite: detect TCA errors and fail early.
6940 - Test suite: add scenario testing that TCA falls back to default bridges if Tor
6942 - Test suite: run a dedicated default bridge.
6943 - Test suite: refactor.
6944 - Test suite: adapt to another changed label.
6945 - FIX doc about how to check for non-working Tor
6946 - improve display size detection
6948 - Test suite: refer to the correct variable.
6949 - Test suite: adapt to changed label.
6950 - Test suite: fix syntax error.
6952 - Improve user-visible strings
6953 - Test suite: improve names.
6954 - Test suite: use TCA's "hide Tor usage" path when testing PTs.
6955 - Disable launcher buttons: broken because of netns
6956 - use the 3 images + better layout
6957 - normal bridges are not accepted in Hide Mode
6958 - Bridge validation + better handle IPv6
6959 - Always obfs4 + bridge documentation link
6960 - GitLab CI: tails-documentation
6961 - tails-documentation gains --force-local
6962 - document tips&tricks for tca
6963 - don't kill TCA on network reconnection
6964 - syslog logging really has identity set
6965 - lots of logging to understand bridge bug
6966 - put doctests in gitlab in shape again
6967 - FIX IBus connection for onion-circuits
6968 - more debug about bridge-connection part
6969 - Port TCA to onion-grater-over-netns magic
6970 - TCA will honor debug flag
6972 - a bit less noise for translatable mixin
6973 - TCA logs to syslog/stderr automagically
6974 - gitlab-ci: TCA doctest dependency
6975 - FIX .gitlab-ci.yml (syntax error)
6976 - normal bridges were to be stripped, not expanded
6977 - default bridges imported
6978 - FIX: bridges have ip-port, not only IP!
6979 - put TCA testing in gitlab-ci
6982 - Revert "Test suite: add workaround for TCA not sanitizing bridge input
6984 - Decent validation for bridge lines
6985 - rewrite tca wrapper in python
6986 - Test suite: reorder steps to avoid TCA blocking the desktop.
6987 - Revert "Test suite: wait for TCA's GUI to be available before using it."
6988 - Test suite: work around lost click around TCA start.
6989 - Test suite: refactor.
6990 - Test suite: add workaround for TCA not sanitizing bridge input properly.
6991 - Test suite: wait for TCA's GUI to be available before using it.
6992 - Test suite: add timeout.
6993 - Test suite: work around Ruby <2.7 args vs keywords handling.
6994 - Test suite: fix exception message.
6995 - Test suite: adapt scenario for new "Offline Mode" Greeter setting.
6996 - Welcome Screen: obsolete "Network Connection" and add new "Offline Mode"
6998 - Test suite: rewrite Tor Launcher tests for Tor Connection Assistant.
6999 - Test suite: allow regexp matching in Dogtail's child() method.
7000 - Test suite: drop unnecessary methods from subclass.
7002 - tca: state saved, still to little use
7003 - tca: don't run two times
7005 - tca: side icon will be added from Python
7006 - Temporarily add pluggable transport config to torrc.
7007 - Convert Tor Launcher .desktop file to one for TCA.
7008 - Remove Tor Launcher, for real!
7009 - tca: small text improvement
7010 - connect-drop works fine without environment
7011 - Revert "Remove Tor Launcher"
7012 - tails-tor-launcher actually runs tca
7013 - Remove Tor Launcher
7014 - another workaround for #18123
7015 - onion-grater: quoting matters
7016 - Move very context-specific script out of root's PATH.
7017 - onion-grater: options are case insensitive
7018 - adapt profile to onion-grater's case-sensitiveness
7019 - Temporarily workaround tor bug by always disabling the seccomp sandbox.
7020 - FIX onion-grater tca profile
7021 - run `tca` and it will auto-sudo
7022 - tca can connect to onion-grater
7023 - translations refreshed for TCA
7025 - add tca .ui file to POTFILES.in for l10n
7026 - Test suite: delete obsolete scenario.
7028 - Test suite: use correct bridge/PT terminology.
7029 - Test suite: fix tor seccomp check in the normal bridge case.
7031 - Fix assertion failure message.
7032 - Let's settle for 'normal' bridge when no PT is used.
7033 - Add Tor Launcher to GNOME favorite applications.
7034 - Tor Launcher: allow amnesia to start and add suitable .desktop file.
7035 - Tor Launcher: kill old instances when starting.
7036 - Remove the "Tor is ready" notification.
7038 - small TorConnectionProxy fixes
7040 - tca: --debug-statefile for better simulation
7041 - error page + early proxy config
7043 - main workflows work!
7044 - Step forwards for bridge configuration
7045 - bridge selection: beginning
7046 - easy Tor configuration works!
7047 - sudo tca will do; start Tor integration
7048 - more steps in Tor launcher UI
7049 - GUI: first step implemented (more or less)
7050 - a first attempt at a GUI
7051 - Test suite: always verify that Tor's Sandbox setting.
7052 - Handle multiline GETCONF responses.
7053 - Welcome Screen: add note about the missing bridge mode option.
7054 - Test suite: fix tor Seccomp verification.
7055 - Tor Launcher: enable tor's Seccomp sandbox when not using pluggable transports.
7056 - tor-launcher: repair the --force-net-config feature.
7057 - Drop now unused restart-tor script.
7058 - Unsafe Browser: don't restart tor with restart-tor.
7059 - Drop ugly hook killing Tor Launcher.
7060 - onion-grater: transparently recover lost tor controller connections.
7061 - Work around event handling bug in stem?
7062 - Make dynamic configuration we always do static.
7063 - Test suite: another attempt to deal with lost key press.
7064 - Test suite: deal with lost key press.
7065 - Test suite: adapt to Tor Launcher always starting (refs: #17330)
7067 - tor launcher: set *every* option
7068 - tor-launcher supports proxy authentication
7069 - detect Tor bootstrapping status
7070 - Tor Launcher some more implementation
7071 - WIP: a first attempt at rewriting Tor Launcher
7072 - onion-grater: fix error handling.
7073 - onion-grater: workaround tor bug by switch from control socket to control port.
7074 - Always start Tor Launcher (refs: #17330).
7075 - onion-grater: connect to control socket without control port fallback.
7076 - Improve check by verifying at least one "nameserver" line.
7077 - Drop unused imports.
7079 * Upgrade Tor Browser to 10.5.2 (tails/tails!524)
7082 - Fetch Tor Browser from our own archive
7083 - Tor Browser upgrade process: adjust branch name
7084 - Upgrade Tor Browser to 10.5.2-build1
7085 - Tor Browser upgrade process: adjust instructions to new file names
7086 - Factorize export of TOR_USE_LEGACY_LAUNCHER (fixes: #18459)
7088 * Fix feature branch commit encoded into the artifacts' names (fixes: #18468)
7092 - Built images encode incorrect topic branch commit (tails/tails#18468)
7095 - Fix feature branch commit encoded into the artifacts' names (fixes: #18468)
7097 * Update the jenkins-tools submodule, to fix po.feature (tails/tails!520)
7100 - Update the jenkins-tools submodule, to fix po.feature
7102 * Upgrader: more robust upgrade download and verification failure detection
7106 - Upgrader: confusing download failure but upgrade still applied
7110 - tails-iuk-cancel-download: return exit code as-is if it's neither 0 nor 1
7111 - tails-iuk-cancel-download: fix shell syntax errors
7112 - Avoid that the Upgrader breaks if pgrep won't match any process
7113 - Upgrader: cancell the IUK download if an error appears
7114 - Upgrader: more defensive programming
7115 - Upgrader: ensure we fail closed on download and verification errors
7117 * Test suite: consistently save artifacts for various Tor connection failures
7121 - Test suite: handle case where the htpdate logs do not exist.
7122 - Test suite: add headings to output in Tor failure artifacts.
7123 - Test suite: make save_tor_journal() possible to run without Tor logs.
7124 - Revert "Revert "Test suite: consistently save artifacts for various Tor
7125 connection failures.""
7127 * Upgrade to OnionShare 2.2 (tails/tails!515)
7130 - OnionShare: use ~/Downloads/ as the upload directory in "Receive Files" mode
7131 - AppArmor: allow a few more things that OnionShare v2 needs
7132 - OnionShare config: use the same indentation as what the app saves
7133 - OnionShare config: import new settings
7134 - onion-grater: update rules for OnionShare v2
7135 - OnionShare: hide Tor settings
7136 - Install OnionShare from Bullseye
7138 * Upgrade Tor Browser to 10.5a17 (tails/tails!513)
7141 - Test suite: update expected image
7142 - Unsafe Browser: Disable Tor Browser's tor bootstrapping mechanism
7143 - Test suite: add support for testing Tor Browser alpha versions
7144 - Fetch Tor Browser from our own archive.
7145 - Disable Tor Browser's tor bootstrapping UI
7146 - Upgrade Tor Browser to 10.5a17.
7148 * WhisperBack: set lower expectations for handling of error reports
7152 - Temporarily set low expectations for handling of error reports, via our website
7153 and/or in WhisperBack (tails/tails#18427)
7156 - WhisperBack: set lower expectations
7158 * Fix issues in testing's test suite (tails/tails!509)
7161 - Revert "Test suite: consistently save artifacts for various Tor connection
7163 - Test suite: consistently save artifacts for various Tor connection failures.
7164 - Test suite: work around the desktop icons being obscured by TCA.
7166 - Test suite: correctly identify supported Tor Browser locales (fixes #18319)
7167 - Test suite: drop unknown keyword parameters from translate().
7168 - Test suite: rework translate() to not always use the tails domain (fixes:
7171 * onion-grater: fix support for restrict-stream-events for namespace matched
7172 profiles (tails/tails!508)
7176 - Move hard-coded network address to constant
7177 - onion-grater: fix remote connection check.
7178 - Untangle if-statements a bit.
7179 - onion-grater: fix support for restrict-stream-events for namespace matched
7180 profiles (closes: #18417).
7182 * Upgrade Linux to 5.10.40 (tails/tails!507)
7185 - Upgrade Linux to 5.10.40 (5.10.0-0.bpo.7)
7187 * Upgrade to Debian Buster 10.10 (tails/tails!506)
7190 - Upgrade to Debian Buster 10.10 by bumping APT snapshot of the Debian archive to
7192 - Test suite: don't break if there are multiple Firefox processes
7193 - lint_po: ignore torbrowser-launcher's PO files
7194 - generate-build-manifest: support builds that used no source package
7195 - Switch to a simpler way to maintain our Tor Browser AppArmor profile delta
7196 - Rebase AppArmor profile for Tor Browser on top of torbrowser-launcher 0.3.3-5
7198 * Upgrade Tor to 0.4.5.9 (tails/tails!505)
7201 - Upgrade tor to 0.4.5.9 (tails/tails#18309)
7204 - Upgrade Tor to 0.4.5.9
7206 * build-tails: fix bugs that prevent local submodules from being used
7210 - build-tails: fix resetting the submodules' origin
7211 - build-tails: fix syntax error
7213 * Installer: Make "Reinstall" option not disappear when coming back from
7214 confirmation dialog (tails/tails!502)
7217 - "Reinstall" option disappears when coming back from Upgrade confirmation
7219 - Disable Tails Installer options when there is no target USB stick available
7223 - Installer: disable widgets when there is no target available
7224 - Make "Reinstall" option not disappear when coming back from confirmation dialog
7226 * always start tor (except offline mode) (tails/tails!497)
7229 - FIX comment explaining how we user tor@ units
7230 - always start tor (except offline mode)
7232 * Fix build vmdb2 without http proxy (tails/tails!490)
7235 - variables are better than hardcoded names!
7236 - logs are preserved in case of error
7237 - cleaner temporary files handling
7238 - FIX building without a http_proxy
7240 * Resolve "Run tails-*-proxy-netns@.service only for the amnesia user"
7244 - a11y/ibus: description includes netns name
7245 - a11y/ibus proxy are only enabled for amnesia user
7247 * Jenkins lib: support extracting issue number at the beginning of the branch
7248 name (tails/tails!482)
7251 - adds doctests to ActiveBranches
7252 - Jenkins lib: support extracting issue number at the beginning of the branch
7255 * Resolve "TCA: Implement screen when not connected to a local network"
7259 - open the _real_ wifi settings page
7260 - wording follows wireframe design
7261 - gnome env: add XDG_CURRENT_DESKTOP
7262 - tca can open wi-fi config window
7264 * Test suite: drop low-value tests, add Cucumber tags, improve wording a little
7268 - Test suite: try harder not to click a button before it's active
7269 - Test suite: remove a few low-value USB installation, upgrade, and boot tests
7270 - Test suite: remove wget plaintext http:// test
7271 - fixup! Test suite: remove whois(1) tests
7272 - Test suite: give generic method a more generic name
7273 - Test suite: remove whois(1) tests
7274 - Test suite: merge closely related scenarios to improve performance
7275 - Test suite: use an existing snapshot instead of booting a fresh Tails
7276 - Test suite: improve wording of scenarios and steps
7277 - Test suite: remove Pidgin custom certificates tests
7278 - Test suite: remove basic AppArmor test
7279 - Test suite: remove GnuPG keyserver test
7280 - Test suite: remove browser plugins tests
7281 - Test suite: add @slow and @not_release_blockers Cucumber tags
7282 - Test suite: remove definition for unused step
7283 - Test suite: remove VirtualBox test
7285 * Generate the Vagrant base boxes using vmdb2 instead of vmdebootstrap
7289 - Add shellcheck exception.
7290 - Drop insane backticks.
7291 - Re-introduce some comments that were lost when migrating to vmdb2.
7292 - Build doc: remove obsolete instructions
7293 - vmdb2: remove no-op duplicated mirror parameters
7294 - Fix copy-paste mistakes.
7295 - Use grub.d instead of fighting with sed/perl escaping.
7296 - vmdb2: disable caching
7297 - Drop duplicated work.
7298 - Update docs and instructions for migration from vmdebootstrap to vmdb2.
7299 - Let's stop claiming Tails can be built from Stretch.
7300 - Escape \ in here doc.
7301 - Vagrant: work around Debian#951257.
7302 - Vagrant: abort when the proxy is invalid.
7303 - Vagrant: use IP address for internal proxy.
7304 - Drop leftovers from when we used vmdeboostrap to generate Vagrant boxes.
7305 - Apply policy-rc.d trick to workaround Debian bug when installing udisks2 in a
7307 - tails-builder: install missing udisks2 deps.
7308 - Workaround the fact subshells don't inherit set -e
7310 - Include the .qcow2, not raw image, in the Vagrant box.
7311 - Bump tails-builder image back to 20G.
7313 - Switch to vmdb2-based Vagrant box creation (refs: #15349)
7314 - Split long command over multiple lines.
7315 - Generate .box file.
7316 - Add back --rootfs-tarball argument to vmdb2.
7317 - Use correct sed syntax in replacement to refer to matched groups.
7318 - Use variables in place of hard-coded strings.
7320 - Drop unnecessary `touch`.
7321 - Clean up before and after calling vmdb2.
7322 - Generate image name dynamically.
7323 - Set APT serials dynamically.
7324 - Use mktemp for temporary file.
7325 - Drop unused stuff for generating container images.
7326 - Do `set -u` in script.
7327 - vmdb2: append newline at the end of authorized_keys entry
7328 - vmdb2: add HTTP proxy support
7329 - WIP: Vagrant: script for generating tails-builder images using vmdb2 instead of
7330 vmdebootstrap (refs: #15349)
7332 * Drop obsolete workaround for Jenkins passing mergebasebranch (tails/tails!475)
7335 - Revert "Rakefile: handle jenkins passing the now obsolete mergebasebranch."
7337 * custom-apt-cruft-check: indentify used binary packages where we lack the source
7341 - custom-apt-cruft-check: add support for the testing suite
7342 - custom-apt-cruft-check: indentify used binary packages where we lack the
7345 * GitLab CI (test-tca): add missing python3-dbus dependency (tails/tails!472)
7348 - GitLab CI (test-tca): add missing python3-dbus dependency
7350 * Disable shellcheck false positive (tails/tails!471)
7353 - Disable shellcheck false positive
7355 * Fix the dependencies of tca-portal.service and tca-portal.socket
7359 - Fix tca-portl.{socket,service} dependencies
7360 - Let tca-portal.service be started via systemd socket activation
7362 * Resolve "No spinner when starting Tor Browser from TCA" (tails/tails!459)
7365 - offline step now follows wording from our design
7366 - FIX: going offline should not display error step
7367 - tca-portal open applications using gtk stuff
7369 * Drop monkeysphere configuration (tails/tails!454)
7372 - Drop monkeysphere configuration
7374 * Use v3 Onion Service for the deb.torproject.org APT repository
7378 - Use v3 Onion Service for the deb.torproject.org APT repository
7380 * Test suite: drop Seahorse tests (tails/tails!451)
7383 - Test suite: drop now useless background
7384 - Test suite: update rationale for workaround
7385 - Test suite: drop support for running v2 Onion services in Chutney
7386 - Test suite: drop Seahorse tests
7388 * Maintain our Tor Browser AppArmor profile delta in a simpler way
7392 - Test suite: don't break if there are multiple Firefox processes
7393 - lint_po: ignore torbrowser-launcher's PO files
7394 - generate-build-manifest: support builds that used no source package
7395 - Switch to a simpler way to maintain our Tor Browser AppArmor profile delta
7396 - Rebase AppArmor profile for Tor Browser on top of torbrowser-launcher 0.3.3-5
7398 * Recover TCA fix + test suite work from now defunct !431 (tails/tails!447)
7401 - Test suite: fix racy test.
7402 - Test suite: avoid using regex matching since we can.
7403 - Test suite: drop escaping we already deal with.
7404 - Test suite: implement proper dropping of markup.
7405 - Test suite: escape single-quotes in generated Python strings.
7406 - Test suite: drop markup from translated strings.
7407 - Test suite: make Dogtail automatically translate strings.
7408 - TCA: fix tor crashing when falling back to default bridges.
7410 * TCA asks for confirmation if you close it during progress (tails/tails!446)
7413 - Apply 1 suggestion(s) to 1 file(s)
7414 - asks confirmation on quit during progress
7416 * TCA: explain the autoconfig better and implement designed behavior for
7417 displaying help (tails/tails!445)
7420 - TCA: hide bridge help by default
7421 - TCA: use the designed toggle instead of a link near "Configure a Tor bridge" in
7423 - TCA: Explain more about the implications of the autoconfig of Tor
7425 * Resolve "TCA connects with default bridges when it shouldn't" (tails/tails!444)
7428 - TCA always saves configuration
7430 * Resolve "TCA status does not reflect the current status of the connection to
7431 Tor" (tails/tails!443)
7434 - tca reacts to /run/tor-has-bootstrapped/done
7435 - tca monitors /run/tor-has-bootstrapped/done
7437 * Improve Tor Connection GUI (tails/tails!438)
7440 - Test suite: adapt to UI changes in TCA.
7441 - Fix shellcheck regressions
7442 - TCA: add title to proxy configuration window
7443 - TCA: add link to doc in consent question
7444 - TCA: make status messages consistently include "to Tor"
7445 - TCA: define margin in 1 single place
7446 - TCA: make the bridges config screen breathe
7447 - TCA: implement designed link to the bridges doc
7448 - TCA: remove icons on proxy port & pasword entries
7449 - TCA: make the "Connecting" progress screen breathe
7450 - TCA: make proxy configuration visual layout linear
7451 - TCA: basic visual layout for the "Error connecting to Tor" screen
7452 - TCA: reorganize container/child structure to fix vertical text alignment
7453 - TCA: Fix vertical text alignment
7454 - TCA: Fix vertical text alignment
7455 - TCA: make "Connected to Tor successfully" a progress-box-heading
7456 - TCA: add standard spacing between label and progress bar
7457 - TCA: make "Connecting to Tor…" a progress-box-heading
7458 - TCA: move progress-box-heading styling to CSS
7459 - TCA: make it breathe
7460 - TCA: drop duplicate margin
7461 - TCA: improve vertical alignment of success icon
7462 - TCA: hide percentage
7463 - fixup! TCA: use Unicode ellipsis char
7464 - TCA: use correct Unicode char
7465 - TCA: hide non-functional "Reset Tor Connection" button
7466 - TCA: explicitly declare translation domain in Glade UI file
7467 - TCA: style step titles via CSS, make them larger
7468 - TCA: make layout more GNOME HIG compliant
7469 - TCA: use non-deprecated margin properties, make them multiples of 6px
7470 - TCA: make the "Start Tor Browser button" fill the dialog width as designed
7471 - TCA: drop custom font size
7472 - TCA: use standard GNOME HIG spacing
7473 - TCA: improve visual layout
7474 - TCA: fix alignment
7475 - TCA: improve visual layout
7477 - TCA: port CSS to pixels and start making it a bit more GNOME HIG compliant
7478 - TCA: give widget a name so it can be styled with CSS
7479 - WIP: save with glade/sid
7480 - Git, please ignore Glade backup files for TCA
7481 - TCA Glade UI: require the GTK version we're shipping in Tails 4.x
7483 * Resolve "Confusing behavior of Tor Connection in offline mode"
7487 - better function naming
7488 - offline mode error strings changed
7489 - FIX ci dependencies for tca
7490 - update gettext strings
7491 - tca offline mode errors are translatable
7492 - TCA give clear error message in Offline Mode
7493 - tailslib has doctests
7494 - tailslib: can check greeter variables
7496 * Resolve "Ensure WhisperBack still tells us how successful connections to Tor
7497 were made" (tails/tails!434)
7500 - whisperback includes tca details
7502 * TCA UI improvements (tails/tails!428)
7505 - Test suite: don't throw TCAConnectionFailure on try_for() timeout.
7506 - Test suite: adapt for recent UI changes in TCA.
7507 - explain bridge requirements in hide mode
7508 - smaller image in TCA
7509 - Improvements to TCA GUI
7510 - doc: how to tweak tca GUI
7511 - corner case about bridge validation
7512 - FIX resize problems through GtkStack
7513 - tca UI improvements
7514 - changing to default bridges is honored
7515 - tca ui more consistent
7517 * TCA reports an error in case of slow connection (tails/tails!426)
7520 - progress bar was very slow; + more testing
7521 - tca timeout understands "sign-of-life" UX concept
7522 - quick & dirty: increase timeout
7524 * Display an error message when upgrader fails to check for available upgrades
7528 - Display an error message when the Upgrader fails to check for available
7529 upgrades (tails/tails#18238)
7532 - Display a dialog if an error happens when getting the UDF
7533 - Make debugging_info parameter optional
7534 - Display an error dialog when the Upgrader fails to check for available upgrades
7536 * Rename "MAC address spoofing" as "MAC address anonymization" (tails/tails!411)
7540 - Avoid in-page link
7542 - Rename "MAC address spoofing" as "MAC address anonymization" (#18286)
7544 * Upgrade Linux to 5.10.24 (tails/tails!409)
7547 - Upgrade Linux to 5.10.24
7548 - Revert "Install linux-compiler-* linux-kbuild-* from our custom APT repository"
7550 * Fix shellcheck error (tails/tails!394)
7553 - Fix shellcheck error
7555 * Establish a coding standards baseline on our shell code base (tails/tails!190)
7558 - GitLab CI: install "file" for the shellcheck test
7561 - GitLab CI: use Unit test reports for shellcheck
7562 - shellcheck-tree: drop unused import
7563 - shellcheck-tree: drop obsolete comment
7564 - GitLab CI: check shell scripts
7565 - ShellCheck: fix remaining offenses
7566 - ShellCheck: fix remaining SC2086 offenses
7567 - shellcheck-tree: skip built website
7568 - Drop unused variables
7569 - ShellCheck: make exceptions where warranted
7570 - Misc. linting suggested by ShellCheck
7571 - shellcheck-tree: new script, that runs shellcheck on all shell scripts
7572 - Misc. linting suggested by ShellCheck
7573 - ShellCheck: make exceptions where warranted
7574 - Drop $ in arithmetic variables
7575 - Drop useless calls to cat
7576 - ShellCheck: fix offenses
7577 - ShellCheck: fix SC2155 offenses
7578 - ShellCheck: backticks → $()
7579 - auto/config: fix stderr redirection
7581 - ShellCheck: make exceptions where warranted
7582 - ShellCheck: add missing quoting
7583 - branch_name_to_suite: fix bug in tr call
7584 - ShellCheck: disable false positive
7585 - unsafe-browser: use $* when our intent is to concatenate
7586 - keepassxc wrapper: fix behavior in case 2+ arguments are passed
7587 - live-persist: fix usage message
7588 - ShellCheck: fix SC2162 offense
7589 - ShellCheck: make exceptions where warranted
7590 - ShellCheck: add missing quoting
7591 - ShellCheck: fix SC2006 offenses
7592 - ShellCheck: fix SC2155 offenses
7593 - Drop useless "echo"
7594 - ShellCheck: make exceptions where warranted
7595 - ShellCheck: fix SC2006 offenses
7596 - ShellCheck: replace deprecated tempfile with mktemp (SC2186)
7597 - ShellCheck: add missing quoting
7598 - Replace antiquated use of expr
7599 - Drop unused variables
7600 - ShellCheck: fix SC2155 offenses
7601 - ShellCheck: disable check that generates mostly false positives
7603 - Drop unused variables
7604 - ShellCheck: add missing quoting
7605 - Drop unused variable
7606 - ShellCheck: fix SC2059 offense
7607 - Ensure here-doc text is not subject to parameter expansion, command
7608 substitution, and arithmetic expansion, unless we do need it
7609 - ShellCheck: fix SC2162 offenses
7610 - chroot_local-hooks: consistently set the executable bit
7612 - Make for loop more robust
7613 - Ensure filenames that start with '-' are not interpreted as switches
7614 - Ensure glob is not expanded by the shell interpreter
7615 - 10-tbb: fix typo in variable name
7617 - ShellCheck: make exceptions where warranted
7618 - ShellCheck: disable false positive
7619 - ShellCheck: disable following included source files
7621 -- Tails developers <tails@boum.org> Mon, 12 Jul 2021 13:50:41 +0200
7623 tails (4.19) unstable; urgency=medium
7625 * Upgrade Tor Browser to 10.0.17-build1 (tails/tails!468)
7628 - Upgrade to Tor Browser based on Firefox 78.11 (tails/tails#18284)
7631 - Fetch Tor Browser from our own archive.
7632 - Upgrade Tor Browser to 10.0.17-build1.
7634 * Upgrade Thunderbird to 1:78.10.0-1~deb10u1
7636 * run_test_suite: fix tor version check with recent tor (tails/tails!450)
7639 - Chutney: fix tor version check with recent tor
7640 - run_test_suite: fix tor version check with recent tor
7642 * Upgrader, tails-security-check: drop CA pinning (tails/tails!448)
7645 - TLS certificate issue prevents tails-upgrade-frontend to check for updates :
7646 Error while downloading the signing key (tails/tails#18324)
7649 - Design doc: update tense
7650 - Remove unused Let's Encrypt certificates
7651 - Upgrader, tails-security-check: drop CA pinning
7652 - Design doc: drop overly optimistic future improvement idea
7653 - Design doc: mirrors used by the Upgrader are all HTTPS nowadays
7655 * gitlab-triage: migrate from Docker to podman (tails/tails!440)
7658 - gitlab-triage: migrate from Docker to podman
7660 * Add password feedback for sudo (refs: #18355) (tails/tails!439)
7663 - Add password feedback for sudo (refs: #18355)
7665 * Remove ikiwiki-cgi.setup (tails/tails!405)
7668 - Document how to test changes to the banner locally
7669 - Deduplicate content
7670 - Don't disable plugins that are not enabled by default
7671 - Remove ikiwiki-cgi.setup and references to it
7673 -- Tails developers <tails@boum.org> Mon, 31 May 2021 09:19:03 +0000
7675 tails (4.18) unstable; urgency=medium
7677 * Upgrade Thunderbird to 78.9.0-1~deb10u1
7679 * Upgrade Tor Browser to 10.0.16 (tails/tails!400)
7682 - Upgrade to Tor Browser based on Firefox 78.10 (tails/tails#18252)
7685 - Fetch Tor Browser from our own archive.
7686 - Upgrade Tor Browser to 10.0.15.
7688 * Upgrade Intel microcodes to 3.20210216.1~deb10u1
7690 * Upgrade firmware-linux-nonfree to 20210315-2
7692 * Remove Poedit (#18236) (tails/tails!395)
7695 - Remove Poedit (#18236)
7697 * Display an error message when the Upgrader fails to download the signing key
7701 - Display an error message when the Upgrader fails to check for available
7702 upgrades (tails/tails#18238)
7705 - Display an error message when the Upgrader fails to download the signing key
7707 * Remove clock sync notification (tails/tails!389)
7710 - Remove the "clock synchronization" notification (tails/tails#7439)
7713 - tails-htp-notify-user only notifies if $problems
7715 * Bump snapshots of the Debian APT archive to 2021033101 (tails/tails!388)
7718 - Bump snapshots of the Debian APT archive to 2021033101
7720 * APT: use non-onion HTTPS sources for Debian repositories (tails/tails!383)
7723 - Fix failures with Debian's APT repository onion service (tails/tails#17993)
7726 - APT: use non-onion HTTPS sources for Debian repositories
7728 * Merge base branch earlier (tails/tails!381)
7731 - The mergebasebranch option merges the base branch too late (tails/tails#12557)
7734 - Document that faketime is needed on the host to build Tails.
7735 - Vagrant: don't install faketime any more.
7736 - Drop useless version part from development build filenames.
7737 - Build system: only add base branch info to image names when relevant.
7738 - Build system: make development images' names more consistent.
7739 - Build system: move around logic to reduce ENV state.
7740 - Build system: re-run rake after merging base branch (#12557)
7741 - Rakefile: handle jenkins passing the now obsolete mergebasebranch.
7742 - Build system: by default, merge the base branch early when building (#12557)
7744 -- Tails developers <tails@boum.org> Mon, 19 Apr 2021 14:19:38 +0000
7746 tails (4.17) unstable; urgency=medium
7748 * Upgrade Thunderbird to 78.8.0-1~deb10u1
7750 * Upgrade Tor Browser to 10.0.14-build1 (tails/tails!382)
7753 - Upgrade Tor Browser to 10.0.14-build1.
7755 * Upgrade tor to 0.4.5.7 (tails/tails!380)
7758 - Upgrade tor to 0.4.5.7 (tails/tails#18244)
7761 - Upgrade tor to 0.4.5.7
7763 * Retry failed upgrade downloads, reusing the previously downloaded data, and
7764 fallback to the DNS mirror pool (tails/tails!379)
7767 - Make it possible to resume an automatic upgrade download (tails/tails#15875)
7768 - Make Tails Upgrader resilient to broken mirrors (tails/tails#17615)
7771 - Tails::IUK::TargetFile::Download: always disable exponential backoff when
7773 - Tails::IUK::LWP::UserAgent::WithProgress: display correct progress status when
7774 resuming a previously failed download
7775 - Give Tails::IUK::LWP::UserAgent::WithProgress information that it'll need
7776 - Refactoring: make temp_file an attribute
7777 - Refactoring: use more meaningful variable name and document what value it holds
7778 - GitLab CI: disable test that now requires systemd
7779 - Retry failed upgrade downloads, reusing the previously downloaded data, and
7780 fallback to the DNS mirror pool
7781 - Upgrader hardening: comment out sudo env_keep settings that are not needed in
7783 - Tails::Download::HTTPS hardening: drop support for SSL_NO_VERIFY
7784 - Upgrader test suite: remove useless Win32 support code
7786 * Repair the filesystem on the system partition and avoid breaking it in the
7787 first place (tails/tails!374)
7790 - Deleted obsolete automatic upgrades still occupy disk space ⇒ no automatic
7791 upgrade possible after a while (tails/tails#17902)
7794 - On boot, repair the filesystem on the system partition
7795 - Refactoring: move repartitioning code to a function
7796 - Unmount the system partition on shutdown
7798 * Upgrade GRUB2 to 2.04-16+ (tails/tails!372)
7801 - Upgrade GRUB2 to 2.04-16+ (tails/tails#18227)
7802 - devel branch FTBFS with uBlock 1.33.0+dfsg-1 (tails/tails#18191)
7805 - Bump snapshots of the Debian APT archive to 2021030401
7807 * Upgrade non-free Linux firmware to 20210208-3 (tails/tails!371)
7810 - Upgrade non-free Linux firmware to 20210208-3+ (tails/tails#18226)
7811 - devel branch FTBFS with uBlock 1.33.0+dfsg-1 (tails/tails#18191)
7814 - Revert "Temporarily install the kernel from Bullseye"
7815 - Refresh uBlock patch
7816 - Bump snapshots of the Debian APT archive to 2021030101
7818 * Test suite: relax delay for OpenPGP future expiration date (tails/tails!370)
7821 - Test suite: relax delay for OpenPGP future expiration date
7823 * Improve security advisory since they don't list vulnerabilities anymore
7827 - Help people find the information on their own (#18221)
7828 - Remove not-so-helpful TOC
7829 - Simplify and reuse the same wording
7830 - Don't make people click for nothing (#18221)
7832 * Clarify error message when starting the Unsafe Browser while offline
7836 - Clarify error message when the Unsafe Browser was launched without network
7837 connection (tails/tails#12251)
7840 - Test suite: update to match UI change
7841 - Clarify error message when starting offline (#12251)
7843 * Release process: add po4a version sanity checks (tails/tails!364)
7846 - Release process: ensure the RM has the correct version of po4a
7848 * Upgrade our production and test-only tor configuration (tails/tails!363)
7851 - Upgrade our production and test-only tor configuration (tails/tails#18216)
7854 - Test suite: bump PathsNeededToBuildCircuits to 0.67, like Chutney
7855 - Test suite: drop "TestingBridgeDownloadInitialDelay" customization
7856 - Test suite: drop "DownloadInitialDelay" testing options that we set to their
7858 - Test suite: drop unused second argument for the "DownloadInitialDelay" tor
7860 - Test suite: use the new "DownloadInitialDelay" names for the "DownloadSchedule"
7862 - torrc: drop obsolete WarnUnsafeSocks setting
7863 - torrc: migrate from deprecated {Control,Trans}ListenAddress to
7864 {Control,Trans}Port address syntax
7866 * Upgrade tor to 0.4.5.6 (tails/tails!361)
7869 - run_test_suite: abort if the host system's tor is too old
7870 - Test suite setup doc: ensure we have a recent enough tor
7871 - Test suite setup doc: update APT pinning to support current QEMU backport
7872 - Upgrade tor to 0.4.5.6 final
7874 * Update uBlock Origin patch (tails/tails!354)
7877 - Refresh uBlock patch
7879 * Resolve "onion-grater race condition" (tails/tails!345)
7882 - onion-grater race condition (tails/tails#18123)
7886 - onioncircuits: longer options are more readable
7887 - tails-create-netns: more consistent style
7888 - tails-create-netns: avoid bashisms
7889 - a11y-proxy-netns: explain behavior with comments
7890 - review tips: is_veth_nic is more readable
7891 - review tips: clearer behaviour
7892 - Remove another remain from the reverted TBB experiment.
7893 - veth exclusion: log to debug
7894 - don't spoof veth interfaces
7895 - a11y proxy now can be passed to the right netns
7896 - onioncircuits is accessible!
7897 - small cleanup to tailslib.gnome
7898 - really: let's forget about TBB and its netns
7899 - Let's forget about TBB in its netns
7900 - get_all_ethernet_nics behave even if no real eth
7901 - update design doc for netns improvements
7902 - test: tor can bind a non-127.0.0.1 port
7903 - FIX helper lib to recognize veth appropriately
7905 - tails-documentation: fixed when Tor is not ready
7906 - sudo tor-browser allowed
7907 - FIX service: run before network.target
7908 - we need veth: don't blacklist it, it's harmless
7909 - /stop tails-create-netns service can stop
7910 - FIX tails-create-netns.service
7911 - TBB: changed onion-grater
7912 - TBB works + port 9150 drop
7913 - netns: firewall configuration moved to ferm
7914 - configure tor and ferm for TBB netns address
7915 - tails-create-netns is a systemd.service
7916 - onion-grater whitelisted in sane_defaults
7917 - onioncircuits profile adapted to netns
7918 - onioncircuits wrapper to use netns
7919 - still a draft, but at least tidier
7920 - DRAFT of network namespace support
7922 * Test suite: disable sound forwarding to host (tails/tails!333)
7925 - Test suite: consider disabling SPICE audio (tails/tails#18122)
7928 - Test suite: disable sound forwarding to host (Closes: #18122)
7930 -- Tails developers <tails@boum.org> Mon, 22 Mar 2021 08:11:53 +0000
7932 tails (4.15.1) unstable; urgency=medium
7934 * Upgrade sudo to 1.8.27-1+deb10u3 due to CVE-2021-3156 ("Baron
7937 -- Tails developers <tails@boum.org> Wed, 27 Jan 2021 19:33:08 +0100
7939 tails (4.15) unstable; urgency=medium
7941 * Upgrade Thunderbird to 1:78.6.0-1~deb10u1
7943 * Upgrade Tor Browser to 10.0.9, based on Firefox 78.7 (tails/tails!331)
7946 - Upgrade Tor Browser to 10.0.9, based on Firefox 78.7 (tails/tails#18100)
7949 - Fetch Tor Browser from our own archive.
7950 - Upgrade Tor Browser to 10.0.9-build2.
7952 * Test suite: support path of tcpdump in current sid (tails/tails!328)
7955 - Test suite broken on current sid: "No such file or directory -
7956 /usr/sbin/tcpdump" (tails/tails#18126)
7959 - Test suite: support path of tcpdump in current sid
7961 * Update CAs trusted to connect to our website (tails/tails!327)
7964 - Upgrader fails to check upgrades: CA changed for our website
7966 - Remove AddTrust_External_Root.pem from our website CA bundle
7971 - Reference issue and add another related XXX
7972 - Don't ship individual Let's Encrypt intermediate certificates files in the
7974 - Move Let's Encrypt intermediate certificates outside of the system-wide CA
7976 - Upgrader: trust current and upcoming Let's Encrypt intermediate certificates
7977 - Add current and upcoming Let's Encrypt intermediate certificates
7978 - Remove AddTrust_External_Root.pem from our website CA bundle (refs: #11811).
7980 * Upgrade Linux to 5.9.15-1~bpo10+1 (stable branch) (tails/tails!325)
7983 - Upgrade to Linux 5.9.15 (tails/tails#18104)
7984 - Install Intel SOF Firmware and Topology binaries from Debian
7986 - USB tethering is broken with iOS 14 => Need kernel upgrade (tails/tails#18097)
7989 - Refresh uBlock patch
7990 - Install Intel SOF Firmware and Topology binaries from Debian
7991 - Upgrade Linux to 5.9.15-1~bpo10+1
7992 - Update APT snapshot for the "debian" archive to 2021011501
7994 * Upgrade firmware-linux to 20201218-1
7996 * Migrate blueprints to GitLab wiki (tails/tails!323)
7998 * Fix stream isolation test suite after !306 (tails/tails!319)
8001 - Test suite: update wrt. recent htpdate changes (tails/tails#18095)
8004 - fix stream isolation test suite after !306
8006 * Refresh uBlock patch to fix devel branch FTBFS (tails/tails!318)
8009 - Refresh uBlock patch
8011 * Test suite: improve error reporting for GuestFS problems and user mistakes
8015 - Test suite: error out early if images to be tested are directories
8016 - Test suite: log all guestfs events, not only "trace" level messages
8018 * Make 'Upgrading the system' dialog appear faster (tails/tails!316)
8021 - Make "Upgrading the system" dialog appear faster (tails/tails#18051)
8024 - Upgrader test suite: adjust to match UI changes
8025 - Warn in advance about the network connection being disabled (#18051)
8026 - Avoid ambiguous future tense
8028 - Upgrader: don't declare variable in conditional statement
8029 - Upgrader: adjust test suite to user interaction changes
8031 - Make 'Upgrading the system' dialog appear faster
8033 * Make writing Tails.module more robust (tails/tails!315)
8036 - Make writing Tails.module more robust (tails/tails#17906)
8039 - Make writing Tails.module more robust
8041 * Fix support for Ledger hardware wallet, by upgrading python3-btchip
8045 - "No hardware device detected" with Ledger Nano S wallet in Electrum
8049 - Fix support for Ledger hardware wallet, by upgrading python3-btchip
8051 * Test expiration date for all keys trusted by APT (tails/tails!310)
8054 - Test expiration date for all keys trusted by APT (tails/tails#18094)
8057 - Test suite: improve Gherkin phrasing
8058 - Test suite: check expiration date for all trusted APT keys
8060 * Log more info upon curl failure in htpdate (tails/tails!306)
8063 - htpdate: make output more useful on name resolution errors
8064 - htpdate: include stdout and stderr of curl(1) upon failure
8065 - htpdate: remove misleading comment
8067 * Clarify that this message is about the size of the USB stick (#18073)
8071 - Improve error message when the USB stick is too small (tails/tails#18073)
8074 - Add comment to explain the unit being used
8075 - Display too small boot device size in GB, not GiB
8076 - Display too small boot device size with 1 digit of precision after the decimal
8078 - Make displayed number and unit match
8079 - Only use variable after we've assigned it a value
8080 - Clarify that this message is about the size of the USB stick (#18073)
8082 * Thunderbird: drop obsolete patch. (tails/tails!304)
8085 - Thunderbird: drop obsolete patch.
8087 * Make build reproducibility verification easier (tails/tails!303)
8090 - Don't trust any random key that has a UID which contains "deb.tails.boum.org"
8091 - Make formatting consistent with other command lines
8094 - Use numbered list: order matters
8095 - Reorder instructions to avoid a step essentially depend on the next one
8096 - contribute/build.mdwn: add instruction for importing deb.tails.boum.org key
8097 - release_process/test/reproducibility.mdwn: add -p to mkdir
8098 - Rakefile: add option to scp to disable agent
8100 * Test suite: differentiate between tordate and htpdate errors (tails/tails!295)
8103 - Test suite: split exception.
8104 - Test suite: use more specific exception.
8105 - We can have TimeSyncingError due to tordate, so no htpdate log exists.
8106 - Rename variable and rearrange code to fix scoping issues.
8107 - Test suite: differentiate between tordate and htpdate errors.
8109 * Add "Don't Show Again" button to the notification when starting Tails in a VM
8113 - Add "Don't Show Again" button to notifications where appropriate
8117 - swap buttons in tails-virt-notify-user
8118 - Refresh translations.
8119 - tails-documentation: drop yelp dependency.
8120 - Revert "Patch libdesktop-notify-perl to accept an array ref for actions."
8121 - tails-documentation: let Gnome start Tor Browser so it can quit.
8122 - tails-virt-notify-user: port form Perl to Python.
8124 - Improve button labels
8125 - Apply 1 suggestion(s) to 1 file(s)
8126 - Apply 1 suggestion(s) to 1 file(s)
8127 - tails-virt-notify-user: make action IDs globally unique again.
8129 - tails-virt-notify-user: make action buttons ordering deterministic.
8130 - Patch libdesktop-notify-perl to accept an array ref for actions.
8131 - live-persist: always enable support for "Don't ask again" (refs: #10553).
8132 - tails-virt-notify-user: only show "Don't ask again" if feature is available
8134 - tails-virt-notify-user: add "Don't ask again" button PoC (refs: #10553).
8135 - Add tooling for "Don't ask me again" feature for notifications etc.
8137 -- Tails developers <tails@boum.org> Mon, 25 Jan 2021 08:23:10 +0000
8139 tails (4.14) unstable; urgency=medium
8141 * Grant the user read access to external Persistent Storage (tails/tails!300)
8144 - Nautilus cannot open a plugged Tails Persistent Storage anymore
8148 - Make *external* TailsData's root user-readable when mounted (closes: #18050)
8150 * Upgrade Tor Browser to 10.0.7 (tails/tails!297)
8153 - Upgrade Tor Browser to 10.0.7 (tails/tails#18058)
8156 - Fetch Tor Browser from our own archive.
8157 - Upgrade Tor Browser to 10.0.7-build1.
8159 * Add a script to help updating our UX debt spreadsheet (tails/tails!292)
8162 - ux-debt-changes: list issues that had the UX:debt label removed
8163 - ux-debt-changes: list issues that had the UX:debt label added
8164 - ux-debt-changes: allow running only some of the supported reports
8165 - ux-debt-changes: cache GitLab API responses
8166 - ux-debt-changes initial version: lists solved or rejected UX:debt issues since
8169 * Upgrade to Linux 5.9 and to Buster 10.7 (tails/tails!288)
8172 - Upgrade Linux to 5.9 (tails/tails#17973)
8173 - Upgrade to Buster 10.7 (tails/tails#17995)
8176 - Upgrade Linux to 5.9.0-0.bpo.2, currently at version 5.9.6-1~bpo10+1
8177 - Install the kernel from buster-backports
8178 - Upgrade Tails and the Vagrant build box to Debian Buster 10.7
8180 * Test suite: make evince "Print to File" test more robust (tails/tails!287)
8183 - Test suite: update and fix comment
8184 - Test suite: make evince "Print to File" test more robust
8186 * Upgrade Linux to 5.9 (devel branch) (tails/tails!285)
8189 - Upgrade Linux to 5.9.0-0.bpo.2, currently at version 5.9.6-1~bpo10+1
8191 * Don't include URLs pointing to our live website in translatable strings
8195 - Upgrader: don't use non-existent debug method
8196 - GitLab CI: ensure we don't re-add translatable URLs to our live website
8197 - Update POT and PO files
8198 - Don't include URLs pointing to our live website in translatable strings
8201 * Test suite: bump timeout for the Greeter's GUI to update after language change.
8205 - Revert "Test suite: switch from sleep() to more robust approach."
8206 - Test suite: switch from sleep() to more robust approach.
8207 - Test suite: bump timeout for the Greeter's GUI to update after language change.
8209 * Port otr-bot to Python 3 and migrate to slixmpp (tails/tails!278)
8212 - Test suite's otr-bot.py has obsolete dependencies (tails/tails#17031)
8215 - Test suite doc: update dependencies
8216 - Make otr-bot quiet.
8218 - Improve variable names.
8219 - otr-bot: port to python3 and migrate from jabberbot to slixmpp.
8221 * Detect corrupt GnuPG public keyring and restore its backup (tails/tails!275)
8224 - Automate fix for "GnuPG keys missing" problem (tails/tails#17807)
8227 - Try to detect corrupt GnuPG pubring.kbx and restore any backup (refs: #17807)
8229 * Drop superfluous block.events_dfl_poll_msecs=1000 kernel parameter
8233 - Drop superfluous block.events_dfl_poll_msecs=1000 kernel parameter
8235 * Install the kernel from buster-backports (tails/tails!273)
8238 - Install the kernel from buster-backports
8240 * Enable Electrum's Ledger hardware wallet support (tails/tails!272)
8243 - Ledger Nano S hardware wallet is not recognized due to wrong udev rules
8247 - Enable Electrum's Ledger hardware wallet support
8249 * Test suite: update expected title of the GitLab page we use (tails/tails!271)
8252 - Test suite: update expected title of the GitLab page we use
8254 * Port Tails Installer to Python 3 (tails/tails!270)
8257 - Port Tails Installer to Python 3 (tails/tails#10085)
8258 - Installer: get rid of workaround for udisks bug#418 in SetFlags()
8262 - Update POT and PO files
8263 - Also undo mistaken changes to Tails 3.0 release note PO files.
8264 - Installer: get rid of workaround for udisks#418 in SetFlags()
8265 - Installer: update URL (Redmine → GitLab)
8266 - Installer: drop obsolete comment
8267 - Installer: don't make user-facing URLs translatable
8268 - Undo mistaken change to Tails 3.0 release notes.
8269 - Tails Installer: fix incorrect function/variable names.
8270 - Update installer's deps after porting to Python 3 (refs: #10085)
8271 - Apply 1 suggestion(s) to 1 file(s)
8272 - Tails Installer: don't show install/cancel buttons on warning prompts.
8273 - Tails Installer: delay deletion of parents until all drives have been examined.
8274 - Tails Installer: update PO/POT files after migration to Python 3.
8275 - Tails Installer: move into Python 3's dist-packages.
8276 - Tails Installer: revive _set_liberal_perms_recursive().
8277 - Tails Installer: pass argument list to subprocess.Popen().
8278 - Tails Installer: port to Python 3 based on saschamarkus's patches (refs:
8281 * Update deb.torproject.org's APT key (tails/tails!269)
8284 - Outdated APT key for deb.torproject.org (tails/tails#18042)
8287 - Stop installing deb.torproject.org-keyring
8288 - Update deb.torproject.org's APT key
8290 * Release process: drop dependency on parallel_collect_IUKs (tails/tails!267)
8294 - Release process: don't pass --debug to copy-iuks-to-rsync-server-and-verify
8295 - Release process: drop dependency on parallel_collect_IUKs
8298 * Allow users to change persisted admin password option (tails/tails!266)
8301 - Allow users to change persisted admin password option (tails/tails#18018)
8304 - Fix not being able to delete a once persisted admin password
8306 * Upgrade Thunderbird to 1:78.5.1-1~deb10u1, and accordingly update
8307 its patch series (tails/tails!264)
8310 - All branches FTBFS since Thunderbird 78.5.0 upload (tails/tails#18034)
8313 - Drop Thunderbird patch: applied in 78.5.0 upstream
8314 - Drop Thunderbird patch: applied in 78.5.0 upstream
8315 - patch-thunderbird: log which patch we're currently trying to apply
8318 * Stop installing the Unifont fonts (tails/tails!263)
8321 - Stop installing the Unifont fonts
8323 * Upgrade tor to 0.4.4.6 (tails/tails!259)
8326 - Upgrade tor to 0.4.4.6
8328 * Document python-gitlab setup needed for generate-changelog and generate-report
8332 - Don't track testing forever
8333 - Make instructions work on sid
8334 - python3-gitlab from Buster doesn't work
8335 - Document torsocks for GitLab scripts
8336 - Improve readibility
8337 - generate-changelog, generate-report: point to documentation
8338 - Document how to configure python-gitlab
8340 * Test suite: use the qemu-xhci USB controller (tails/tails!255)
8343 - Use qemu-xhci for TailsToaster (tails/tails#15831)
8346 - Test suite: use the qemu-xhci USB controller
8348 * Require Buster or newer for running our test suite (tails/tails!254)
8351 - Require Buster or newer for running our test suite (tails/tails#17842)
8354 - Test suite: run a Q35 5.0 machine
8355 - Test suite: drop workarounds for running on Stretch
8356 - run_test_suite: drop support for Stretch
8357 - Test suite doc: drop support for Stretch
8359 -- Tails developers <tails@boum.org> Mon, 14 Dec 2020 08:56:31 +0000
8361 tails (4.13) unstable; urgency=medium
8363 * Tor Browser 10.0.5 (tails/tails!253)
8366 - Upgrade to Tor Browser 10.0.5 (tails/tails#18017)
8367 - Most Tor Browser scenarios fail (tails/tails#18016)
8368 - Only ship locale definitions that the user can select in the Welcome Screen
8372 - Mark security issue as fixed
8373 - Test suite: avoid wait_any() in error-prone situation.
8374 - Test suite: adapt image so it works for RTL locales too.
8375 - Upgrade Tor Browser to 10.0.5-build1.
8378 * Browsers: drop el-GR from browser localization (tails/tails!252)
8381 - "The Unsafe Browser can be used in all languages supported in Tails" scenario
8382 fails in Greek (tails/tails#18015)
8385 - Browsers: drop el-GR from browser localization.
8387 * Test suite: wait for GNOME Overview launchers to be ready before interacting
8388 with them (tails/tails!251)
8391 - Most Tor Browser scenarios fail (tails/tails#18016)
8394 - Test suite: wait for GNOME Overview launchers to be ready before interacting
8395 with them (fixes: #18016).
8397 * Garbage collect website cache more aggressively (tails/tails!248)
8400 - Some builds fail on Jenkins due to lack of disk space to store cached built
8401 website (tails/tails#18010)
8404 - website-cache: don't delete lost+found directory
8406 - website-cache: garbage collect cache directories older than 20 days
8408 * generate-report: Buster compatibility, help the user install dependencies
8412 - generate-report: add helpful message on missing Python modules
8413 - generate-changelog, generate-report: support Python 3.7
8415 * custom-apt-cruft-check: fix output when there's nothing to remove
8419 - custom-apt-cruft-check: fix output when there's nothing to remove
8421 * Release process: streamline configuration and environment management
8425 - Release process: rename variable to avoid confusion
8426 - Apply 1 suggestion(s) to 1 file(s)
8427 - Fix typo in suggestion
8428 - Apply 3 suggestion(s) to 3 file(s)
8429 - rm-config: workaround pylint false positives
8430 - remove-unused-udfs: lint
8431 - remove-unused-udfs: actually use passed before_version
8432 - rm-config: add mypy exceptions
8433 - rm-config: add docstrings
8435 - rm-config: drop unused import
8436 - rm-config: import generation of IUK_SOURCE_VERSIONS
8438 - rm-config: import more configuration generation
8439 - rm-config: validate configuration
8440 - RM config template: quote "FIXME" as it should be in the manually-filled
8442 - rm-config: fix generate-environment for non-string values
8443 - rm-config: log config before validating
8444 - rm-config: pass stage to Config()
8445 - rm-config: add validate-configuration action
8446 - Release process: consistently provide editor command-line
8447 - rm-config: ensure generated shell snippet has a trailing newline
8448 - Release process: move generation of derived values to rm-config
8450 - Release process: fully phrase the rm-config usage bits
8451 - Release process: bring all notes together
8452 - Release process: document how to get your own local.yml
8453 - Release process: convert example local.yml to YAML, move generated variable out
8457 - rm-config: generate boilerplate config, read config & export it as shell
8459 - Release process: ensure the configuration does not taint the next release
8461 - Document config format
8462 - Ensure RM config snippets produce 1 single YAML document when concatenated
8463 - Release process: specify interface for new RM config management.
8465 * WhisperBack: include the output of lsusb in reports (tails/tails!244)
8468 - WhisperBack: include the output of lsusb in reports
8470 * Automate Tor Browser WebRTC tests (tails/tails!243)
8473 - Automate Tor Browser WebRTC tests (tails/tails#10264)
8476 - Test suite: automatically test that WebRTC is disabled in Tor Browser
8477 - Test suite: refactoring (extract code to function)
8479 * GitLab CI: only run the apt-snapshots-expiry job when relevant
8483 - GitLab CI: only run the apt-snapshots-expiry job when relevant
8484 - GitLab CI: switch to "Pipelines for Merge Requests" mode
8486 * GitLab CI: check PO files that we did not import from Transifex yet, only run
8487 PO checks when relevant (tails/tails!241)
8492 - GitLab CI: only run check-po-msgfmt and lint-po when relevant
8493 - GitLab CI: check PO files that we did not import from Transifex yet
8495 * Add script that checks which packages in our custom APT repo are unused
8499 - Remove cruft from our custom APT repository (2020Q4 edition)
8503 - custom-apt-cruft-check: look for custom package on the suite we're working on
8504 - custom-apt-cruft-check: update script description to match current usage
8505 - custom-apt-cruft-check: fix generated reprepro command
8506 - custom-apt-cruft-check: make output command line easier to copy'n'paste
8507 - custom-apt-cruft-check: use a command line argument to specify which suite to
8509 - Revert overzealous linting
8510 - custom-apt-cruft-check: fix branch check
8512 - custom-apt-cruft-check: add helpful comment to error message
8513 - custom-apt-cruft-check: output require reprepro clean up command
8514 - custom-apt-cruft-check: fetch .build-manifest from Jenkins
8515 - custom-apt-cruft-check: change quoting so \n becomes an actual newline
8516 - custom-apt-cruft-check: also support the devel branch/APT suite
8518 - custom-apt-cruft-check: add support for Onion service
8519 - Add script that checks which packages in our custom APT repo that are unused.
8521 * Release process: automate removing unused UDFs (tails/tails!239)
8524 - Remove UDFs for versions we'll never release
8525 - remove-unused-udfs: avoid computing the list of tags multiple times
8526 - remove-unused-udfs: avoid using global variable.
8527 - Release process: automate removing unused UDFs
8528 - Release process: remove now-irrelevant case
8529 - Release process: move cleaning up Changelog to a smarter place
8530 - Release process: remove duplicate operation
8531 - Release process: bundle together actions on the devel branch
8533 * GitLab CI: check that no APT snapshot will expire within 1 month
8537 - GitLab CI: give job a name that better reflects its, well, job
8539 - GitLab CI: check that no APT snapshot will expire within 1 month.
8540 - apt-snapshot-expiry: exit with error if any snapshot will expire within 1
8542 - Get rid of subshell.
8544 * Release process: automate generation of email to manual testers
8548 - Release process: make the shell complain if setting PAD was forgotten.
8549 - Release process: de-duplicate
8550 - Release process: automate generating the call for manual testing
8552 * Release process: streamline APT repository operations (tails/tails!236)
8555 - Release process: only context switch to freeze exception management if needed
8556 - Release process: streamline thawing time-based APT snapshots
8557 - Release process: streamline bumping time-based APT snapshots expiration date
8558 - Fix Vagrant build box APT snapshots updating info
8559 - Release process: streamline freezing time-based APT snapshots
8560 - Release process: automate
8561 - Release process: streamline post-release operations
8562 - Release process: streamline initializing the versioned custom APT suite
8563 - Replace link to obsolete reprepro homepage with link to Tracker
8564 - Release process: automate
8565 - Release process: streamline merging base branches
8566 - Custom APT repo doc: move to a script merging a main branch
8567 - Release process: streamline resetting custom APT suites
8569 - Custom APT repo doc: move to a script resetting a suite
8570 - Release process: streamline merging APT overlays
8571 - Release process: be extra explicit about what "freeze time" means
8572 - Revert "Release process: be explicit about the required setting when merging"
8574 * Ensure that we install the required custom packages from our custom APT repo
8578 - Release process: drop VeraCrypt reminder.
8579 - Build system: ensure we install the required custom packages from our custom
8582 * Release process: move big code snippets to scripts (tails/tails!234)
8586 - Release process: move to a script preparing the included website
8587 - Release process: move to a script cleaning SquashFS sort file
8589 - Release process: move to a script generating images signatures and Torrents
8591 - Release process: move to a script publishing test UDFs
8593 - Release process: move to a script signing UDFs
8594 - Release process: move to a script updating the trace file
8596 - Release process: move to a script publishing IUKs
8598 - Release process: move to a script announcing and seeding the Torrents
8600 - Release process: move to a script copying release files to the website
8601 - Release process: move Tor blog post generation to a script
8603 * check-po-msgstr: Add option to sanitize .po files (tails#17661)
8607 - check-po-msgstr: Add option to sanitize .po files (tails#17661)
8609 * GitLab CI: run the perl5lib, persistence-setup, and a subset of the upgrader
8610 test suites (tails/tails!228)
8613 - Upgrader test suite: drop noisy output
8614 - Add missing strictures
8615 - GitLab CI: run the subset of the iuk test suite that works in a Docker
8617 - GitLab CI: run the persistence-setup test suite
8618 - GitLab CI: run the perl5lib test suite
8619 - Skip chattr when running in a test environment
8620 - Perl program test suite doc: run tests in a UTF-8 locale
8621 - Perl program test suite doc: use command-line --all flag instead of environment
8623 - Perl program test suite doc: add missing dependency
8625 * GitLab CI: run unit tests for tails-gdm-error-message (tails/tails!224)
8628 - GitLab CI: run unit tests for tails-gdm-error-message
8630 * GitLab CI: run WhisperBack unit tests (tails/tails!222)
8633 - GitLab CI: run WhisperBack unit tests
8635 * GitLab CI: check PO files with lint_po, that calls i18nspector
8639 - GitLab CI: use Debian testing for lint-po stage
8640 - GitLab CI: check PO files with lint_po, that calls i18nspector
8642 * Fix test suite robustness regression introduced by the upgrade of lizard
8643 isotesters to Buster (tails/tails!218)
8646 - Test suite robustness regressed since the lizard isotesters were upgraded to
8647 Buster (tails/tails#17985)
8650 - Test suite: don't let Screen#find mess with Screen#wait_vanish's timeout
8652 - Test suite: make @screen.find() @screen.wait() for 5 seconds
8654 * Fix Tails Installer in Turkish and in languages that have a translation for the
8655 "Clone the current Tails" string (tails/tails!217)
8658 - Tails Installer does not allow upgrade in languages that have a translation for
8659 the "Clone the current Tails" string (tails/tails#17982)
8660 - tails-installer fails to operate in Turkish (tails/tails#17576)
8663 - Fix Tails Installer in Turkish
8664 - Update POT and PO files
8665 - Installer: s/Live.?OS/Tails/
8666 - Installer: use translations for strings defined in Glade
8668 * Move wrap_test_suite cucumber args logic into run_test_suite (tails/tails!216)
8671 - run_test_suite: use variable consistently.
8672 - run_test_suite: don't use current Git state, but the one described by Jenkin's
8673 environment variables.
8675 - Test suite: print which Cucumber tags are used on start.
8676 - Remove unused Rake 'test' task.
8677 - run_test_suite: make @doc tag handling independent of ~@fragile.
8679 - run_test_suite: move cucumber logic from wrap_test_suite in here (refs:
8680 tails/sysadmin#17772).
8682 * Test suite: automate a few manual tests (tails/tails!213)
8685 - Automatically test that we cannot login as root (tails/tails#10274)
8686 - Automate APT manual tests (tails/tails#17017)
8687 - Test that the correct keyboard layout is set (tails/tails#10261)
8688 - Test that DuckDuckGo is the default search engine in Tor Browser
8690 - Test that the on-screen keyboard works and its layout is correctly set
8694 - Test suite: fix regexp
8695 - Test suite: login using the button, not accelerators.
8696 - Test suite: implement find_any() with real_find().
8698 - Test suite: enable localization tests in Spanish and Turkish
8699 - Test suite: have #(exists|find|wait)_any return a hash instead of an array
8700 - run_test_suite: pass --expand to Cucumber
8701 - Test suite: handle the fact that the browser address bar is initialized lazily
8703 - Test suite: make new tests not run by default
8704 - Test suite: automate the screen keyboard manual tests
8705 - Test suite: enable keyboard layout and browser search engine tests for Arabic
8706 - Test suite: automate testing that DuckDuckGo is the default search engine in
8707 all tier-1 languages
8708 - Test suite: automate testing that the correct keyboard layout is set
8709 - Test suite: automate manual /bin/su tests
8710 - Test suite: automate manual APT tests
8711 - Test suite: fix steps semantics
8712 - Test suite: don't bother logging in when not needed
8714 * Drop dead code for read-only persistence (tails/tails!211)
8717 - Drop dead code for read-only persistence (tails/tails#17972)
8720 - Drop dead code for read-only persistence
8722 * Make the root directory of the persistence non-world-readable (tails/tails!210)
8725 - Make the root directory of the persistence non-world-readable
8729 - Put first what matters most to the user
8731 - Add period at the end of (imperative) sentences
8732 - Fix Markdown formatting
8733 - Add, and take benefit from, a GTK bookmark for the persistent Dotfiles source
8735 - Make the root directory of the persistence non-world-readable
8737 * Make udisks less verbose about "errors" to determine whether unused loop
8738 devices are encrypted (tails/tails!209)
8741 - Revert "Raise the maximum number of loop devices to 32 (refs: #12065)."
8743 * Allow raising sound volume above 100% (tails/tails!207)
8746 - Allow raising sound volume above 100% (tails/tails#17322)
8747 - Re-enable TCP timestamps (tails/tails#17491)
8750 - Allow raising sound volume above 100%
8752 * Re-enable TCP timestamps (tails/tails!206)
8755 - Re-enable TCP timestamps (tails/tails#17491)
8758 - Re-enable TCP timestamps
8760 * Add a button to restart Tails at the end of creating the Persistent Storage
8764 - Drop unneeded sentence
8765 - Add a button to restart Tails at the end of creating the Persistent Storage
8767 * Only install usable locales and Tor Browser langpacks (tails/tails!204)
8770 - Only ship locale definitions that the user can select in the Welcome Screen
8772 - Test suite often fails on Jenkins due to lack of "disk" space in
8773 /tmp/TailsToaster/TailsToasterStorage (tails/tails#17984)
8776 - Test suite: calculate supported locales outside of loop.
8777 - Test suite: add expected image for the Unsafe Browser in Spanish
8778 - Test suite: don't use English as a way of testing localization of the Unsafe
8780 - Test suite: adjust for the removal of locales-all
8781 - Avoid localepurge deleting ll_RR.utf8 locale variants
8782 - Build system: drop browser localization descriptions for languages not
8783 available in the Welcome Screen
8784 - Bring back localepurge, to delete unneeded localizations
8785 - Only ship Tor Browser langpacks for locales that the user can select in the
8787 - Only ship locale definitions that the user can select in the Welcome Screen
8789 * Thunderbird 78 and Enigmail obsoletion (tails/tails!203)
8792 - Upgrade to Thunderbird 78 ESR (tails/tails#17148)
8793 - Migrate from Enigmail to Thunderbird 78's built-in OpenPGP support
8797 - Test suite: adjust tests for Thunderbird 78.
8798 - Test suite: make local.yml load before *.d dirs, as intended.
8799 - Apply 1 suggestion(s) to 1 file(s)
8800 - Apply 1 suggestion(s) to 1 file(s)
8801 - Add missing 'set -u' to build-time hook.
8802 - Apply 1 suggestion(s) to 1 file(s)
8805 - I'm not sure whether it's still the case
8806 - Update more references
8807 - Instruct to disable the GnuPG feature of the Persistent Storage
8808 - Document 'Require Encryption' by default
8809 - Rewrite anonym's draft
8813 - Remove outdated screenshot
8814 - Explain better the protection of the Master Password
8815 - Thunderbird: drop part of patch.
8816 - Thunderbird: don't automatically attach public key to signed messages.
8817 - Thunderbird: backport patch introducing pref for whether to automatically
8818 attach the public key.
8819 - Thunderbird: backport fix for OpenPGP dialog when sending to a recipient
8821 - Create libresolv.so → libresolv-${version}.so symlink.
8822 - Thunderbird: use the "Require encryption by default" policy.
8823 - Thunderbird: apply patch fixing issue with default encryption policy.
8824 - Revert "Thunderbird: patch to disable protectHeaders AKA MemoryHole."
8825 - Revert "Thunderbird: set allow_external_gnupg = true."
8826 - Improve migration prompt
8827 - Help user know how old Tails 4.13 is
8828 - Update Persistent Storage UI and doc
8829 - Remove fuzzy duplicates in PO files.
8830 - Remove section that's too generic
8831 - Remove deprecated migration instructions
8832 - Add section to import private keys
8833 - Move shorter and more generic sections first
8834 - Use automatic TOC anchors
8835 - Merge inline with its only page
8836 - Add headings and make the instructions linear
8837 - Thunderbird: patch to disable protectHeaders AKA MemoryHole.
8838 - Apply 1 suggestion(s) to 1 file(s)
8839 - Apply 1 suggestion(s) to 1 file(s)
8840 - Apply 1 suggestion(s) to 1 file(s)
8841 - Apply 1 suggestion(s) to 1 file(s)
8842 - Apply 1 suggestion(s) to 1 file(s)
8843 - Apply 1 suggestion(s) to 1 file(s)
8844 - Apply 1 suggestion(s) to 1 file(s)
8845 - Hook thunderbird wrapper script into our translation infrastructure.
8846 - Thunderbird: notify user about Enigmail migration.
8847 - Update Thunderbird OpenPGP docs for version 78.
8848 - Drop everything related to Enigmail.
8849 - Thunderbird: set allow_external_gnupg = true.
8850 - Thunderbird: update renamed prefs from upstreamed patches.
8851 - Don't install Enigmail (refs: #17147).
8852 - Update Thunderbird patches from icedove.git at commit
8853 90184f927783370a65bfde271a67613d21372c9f
8855 - Revert "Install Thunderbird 68 until we're ready for 78"
8857 -- Tails developers <tails@boum.org> Mon, 16 Nov 2020 12:23:11 +0100
8859 tails (4.12) unstable; urgency=medium
8862 - Upgrade libx11 to 2:1.6.7-1+deb10u1
8865 - Upgrade firmware-linux-nonfree to 20200918-1
8867 * Upgrade to Tor Browser 10.0.2 (based on Firefox 78.4) (tails/tails!208)
8870 - Upgrade to Tor Browser 10.0.2 (based on Firefox 78.4) (tails/tails#17971)
8873 - Revert "Tor Browser: patch in prefs changes introduced in 10.0-build3."
8874 - Fetch Tor Browser from our own archive.
8875 - Upgrade Tor Browser to 10.0.2-build2.
8877 * Use v3 Onion service to connect to our custom APT repository (tails/tails!201)
8880 - Migrate deb.tails.boum.org APT source to v3 onion (tails/tails#17937)
8883 - Use v3 Onion service to connect to our custom APT repository
8885 * onion-grater: fix rate limiting of how often we try to connect to tor
8889 - onion-grater: fix rate limiting of how often we try to connect to tor
8891 * Electrum & Upgrader wrappers: fix i18n support and use canonical URL for manual
8892 upgrade doc (tails/tails!198)
8895 - tails-upgrade-frontend-wrapper points users to a 404 URL for manual upgrades in
8896 French (tails/tails#17958)
8897 - Some Python scripts fail to set the gettext text domain correctly
8902 - Electrum & Upgrader wrappers: fix internationalization support, by setting the
8903 text domain correctly
8904 - Unfuzzy 2 translation strings
8905 - Update POT and PO files
8906 - tails-upgrade-frontend-wrapper: remove spurious double quotes surrounding error
8908 - Update POT and PO files
8909 - tails-upgrade-frontend-wrapper: use canonical URLs for manual upgrade doc
8911 * Keep installing Thunderbird 68 until we're ready for 78 (tails/tails!197)
8914 - All branches FTBFS since Thunderbird 78 reached the Buster security repo
8918 - Install Thunderbird 68 until we're ready for 78
8920 * WhisperBack: sanitize HTTP(s) URLs (tails/tails!196)
8923 - Unscrubbed URL in WhisperBack reports (tails/tails#10695)
8926 - WhisperBack: sanitize HTTP(s) URLs
8928 * Avoid mirrors and rsync.lizard running out of disk space during the release
8929 process when upgrades to a beta/RC are present (tails/tails!195)
8932 - Avoid mirrors and rsync.lizard running out of disk space during the release
8933 process when upgrades to a beta/RC are present (tails/tails#17944)
8936 - Release process: delete beta/RC IUKs before uploading the IUKs for the final
8938 - Call for testing: set a deadline for providing feedback (2 days before the
8940 - Release process: automate generation of call for testing
8942 * Installer: fix various internationalization bugs (tails/tails!194)
8945 - Various internationalization bugs in the Installer (tails/tails#17961)
8948 - Update POT and PO files, to match translatable strings changes
8949 - Installer: allow translators to reorder string arguments in translations
8950 - Installer: fix translations being unused due to translatable string being
8953 * Upgrade Linux to 5.8 and Debian to 10.6 (tails/tails!188)
8956 - Upgrade Linux to 5.8 (tails/tails#17896)
8957 - Upgrade to Buster 10.6 (tails/tails#17930)
8958 - Regression with Intel Corporation [8086:22b0] and [8086:22b1] GPU since 4.9
8962 - Tor Browser AppArmor profile: allow access to DRI nodes
8963 - Tor Browser AppArmor profile: update patch to apply on top of 0.3.2-14
8964 - Update GNOME Shell to 3.30.2-11~deb10u2.0tails1
8965 - Update systemd to 241-7~deb10u4.0tails1
8966 - Refresh uBlock patch to apply cleanly on top of webext-ublock-origin-firefox
8968 - Adjust for webext-ublock-origin package split
8969 - Adjust fake linux-compiler-gcc-N-x86 hack to Linux 5.8's needs
8970 - Kernel command line: drop init_on_alloc=1, now set by default in Debian
8971 - Upgrade Linux to 5.8.0-2 (currently at version 5.8.10-1)
8972 - Bump snapshot of the Debian archive to 2020101002
8974 * Upgrade to tor 0.4.4.5 (tails/tails!187)
8977 - Upgrade to tor 0.4.4 (tails/tails#17932)
8980 - Bump APT snapshot of the "torproject" archive to 2020091901, that has tor
8983 * Port Perl code to translatable strings format supported by GNU gettext
8987 - Port Perl code to translatable strings format supported by GNU gettext
8991 - refresh-translations: check PO files while converting them to MO
8992 - Upgrader, Persistence wizard: set the UTF-8 flag on all strings returned by
8994 - Re-add loading POSIX: we use it for more than setlocale
8995 - Upgrader, Persistence wizard: assume UTF-8 locale
8996 - Drop unneeded call to setlocale
8997 - Drop meaningless attempt at localization
8998 - Persistence setup: encode output when displaying errors on stdout
8999 - IUK creation: make saveas method benchmarking info honor its $outfile_name
9001 - Port Perl code to translatable strings format supported by GNU gettext
9003 * Import WhisperBack into our main Git repository (tails/tails!179)
9006 - Move WhisperBack source to our main Git repository (tails/tails#16936)
9009 - generate-changelog: don't consider obsolete tails/whisperback project
9010 - Integrate WhisperBack into our l10n setup
9011 - Import WhisperBack
9013 * Import Tails Installer into our main Git repository and delete its dead code
9017 - Move Tails Installer to our main Git repository (tails/tails#17917)
9020 - generate-changelog: don't consider obsolete tails/installer project
9021 - Adjust tails-installer.desktop to l10n setup
9022 - Installer: adjust gettext files lookup
9023 - Installer: adjust data directory lookup
9024 - Update Transifex script & doc: most of our Transifex projects are obsolete
9025 - Adjust code and doc to the fact Tails Installer now lives in tails.git
9026 - Import Tails Installer
9028 * Add a button to cancel the upgrade while downloading (tails/tails!12)
9031 - Add a button to cancel the upgrade while it's downloading (tails/tails#17310)
9034 - Fix regression introduced by 26b9b1b83f3857232474dd2291889867e80a3b45
9035 - Upgrader: port code added in !12 to the l10n setup we switched to in !181
9037 - Convert tails-iuk-get-target-file | zenity pipeline to start / pump / finish
9039 - Update design doc wrt. new tails-iuk-get-target-file permissions
9040 - Remove unnecessary exit code handling
9042 - Allow tails-upgrade-frontend to kill the download process
9043 - Set a signal handler to cancel the download when the zenity dialog is closed
9044 - Add a button to cancel the upgrade while it is downloading
9046 -- Tails developers <tails@boum.org> Mon, 19 Oct 2020 08:35:44 +0000
9048 tails (4.11) unstable; urgency=medium
9051 - Upgrade Linux kernel to 5.7.0-3 at 5.7.17-1 (#17895).
9052 - Upgrade Tor Browser to 10.0 (#17933).
9053 - Upgrade Thunderbird to 68.12.0-1~deb10u1.
9054 - Upgrade xorg-server to 1.20.4-1+deb10u1.
9055 - Upgrade openexr to 2.2.1-4.1+deb10u1.
9056 - Upgrade bind9 to 9.11.5.P4+dfsg-5.1+deb10u2.
9057 - Upgrade ghostscript to 9.27~dfsg-2+deb10u4.
9058 - Upgrade libzmq5 to 4.3.1-4+deb10u2.
9060 * Minor improvements and updates
9061 - Upgrade Electrum to 4.0.2-2.
9063 * Tor Browser 10.0 (tails/tails!189)
9066 - Tor Browser: patch in prefs changes introduced in 10.0-build3.
9067 - Test suite: make scenario titles consistently not end with period
9068 - Unsafe Browser: adjust disabling add-ons to Tor Browser 10
9069 - Unsafe Browser: add missing escaping
9070 - Upgrade Tor Browser to 10.0-build2 (refs: #17933).
9071 - Rename, refactor, reorganize.
9072 - Tor Browser: use new trick to avoid mandatory extension signing.
9073 - Upgrade Tor Browser to 10.0a7.
9075 * Test suite: use versioned python2 interpreter for otr-bot.py (tails/tails!186)
9078 - Test suite: use versioned python2 interpreter for otr-bot.py
9080 * Test suite: switch to virtio transport for the remote shell (tails/tails!185)
9083 - Improve the remote shell's performance by switching to a virtio channel
9087 - Test suite: make SocketReadTimeout inherit from RuntimeError
9089 - Test suite: use factorized way to get and update the domain's XML definition
9090 - Fix Layout/EmptyLineAfterGuardClause Rubocop regression
9091 - Fix Style/StringLiterals Rubocop regression
9092 - Fix Naming/HeredocDelimiterNaming Rubocop regression
9093 - Rubocop: fix a Security/JSONLoad regression
9094 - tails-autotest-remote-shell: lint
9095 - tails-autotest-remote-shell: remove unused import
9096 - Remote shell: improve warning.
9097 - Test suite: log whenever remote_shell_is_up?() returns false.
9098 - Remote shell: use timed read() for virtio channel.
9099 - Remote shell: switch from serial to virtio transport (refs: #11888).
9101 * Release process: generate UDFs to non-final releases from any supported
9102 previous version (tails/tails!178)
9105 - UDF generation is broken for release candidates (tails/tails#17921)
9108 - Don't generate UDFs on the stable channel to point to a release candidate
9109 - Release process: generate UDFs to non-final releases from any supported
9112 * Don't override Debian's system-wide Thunderbird configuration (tails/tails!177)
9115 - Adding comment explaining extensions.update.enabled Thunderbird pref (Refs:
9117 - Removing network.protocol-handler.app.http[s] Thunderbird preferences (Refs:
9119 - Removing intl.locale.requested Thunderbird preference (Refs: #16021)
9120 - Changing header in Thunderbird's prefs file indicating they are Tails' prefs
9122 - aa_tails.js: Removing repeated thunderbird preferences
9123 - Moving local included thunderbird config to not overwrite debian default (Will-
9126 * Clarify phrasing of KeePassXC database renaming dialog (tails/tails!175)
9130 - Explain that the change came from KeePassXC (#17286)
9132 * Test Thunderbird with local email server on Jenkins (tails/tails!172)
9135 - Checking credentials in Thunderbird autoconfig wizard sometimes fails in the
9136 test suite (tails/tails#11890)
9137 - Run our own email (IMAP/POP3/SMTP) server for automated tests run on lizard
9141 - Test suite: fix Rubocop offenses
9143 - Test suite: add debug logging so we can tell whether we're installing the
9144 hosts' email server's snakeoil certificate
9145 - Test suite: add missing newline.
9146 - Test suite: set promiscuous trust for the certificate we import.
9147 - Test suite: import isotesters' snakoil SSL cert into Thunderbird.
9148 - Test suite: complete the switch from Icedove to Thunderbird namespace in
9149 configuration (refs: #12277)
9151 * Chutney docs and logging (tails/tails!167)
9154 - Test suite: improve logging message for initial Chutney cleanup.
9155 - Test suite: also log when Chutney is up and running.
9156 - Test suite: make Chutney logging visible without debug formatter.
9157 - Test suite: document our usage of Chutney (refs: #17801).
9159 * Install python3-trezor from buster-backports (tails/tails!165)
9162 - Install trezor packages from buster-backports
9164 * Fix “return to Greeter when clicking the Start Tails button” on Intel+AMD dual-
9165 GPU systems (tails/tails!163)
9168 - tails-unblock-network: skip most graphics-related devices when triggering udev
9170 * Round the download size in "Upgrade available" dialog (tails/tails!162)
9173 - Rounds the size of numbers displayed in stderr if is not possible to do an
9174 incremental upgrade because there is no free memory or disk space available
9175 - Round the download size in Upgrade available IUK dialog
9177 * Save KeePassXC database in persistent directory (tails/tails!161)
9180 - Adjust end-user documentation for new default KeePassXC database filename
9181 - Open Passwords.kdbx by default (#17286)
9182 - Install KeePassXC 2.5.4 from buster-backports (#17286)
9184 * Support audio on recent Intel platforms: Comet Lake, Whiskey Lake, etc.
9188 - auto/build: enable the pipefail option
9189 - Add Intel SOF Firmware and Topology binaries as a submodule and install them
9190 - build-tails: give our build scripts access to submodules' refs
9191 - Make code fail hard if it becomes obsolete
9193 * "Synchronizing the system's clock" notification: hidden → onion services
9197 - update hidden to onion services
9198 (https://gitlab.tails.boum.org/tails/tails/-/issues/15354)
9200 * Drop obsolete workaround for python3-qdarkstyle, fixing devel FTBFS
9204 - Drop now unneeded APT pinning on helpdev and python3-qdarkstyle
9205 - Revert "Avoid installing python3-qdarkstyle by default"
9207 * Build the changelog from GitLab MRs rather than from Git commits
9211 - generate-changelog: only list merged MRs
9212 - Changelog generation: support preparing a non-final (alpha, beta, RC) release
9214 - Release process: update obsolete reference to Stretch
9215 - Release process: use HTTPS URIs
9216 - Remove obsolete "release" script
9217 - RM doc: drop obsolete process hack around painful changelog generation
9218 - Release process and release notes checklist: switch to automated changelog
9220 - changelog.jinja2: add newlines for nicer formatting if rendered as Markdown
9221 - generate-changelog: skip merge commits
9222 - Add PoC script that generates a changelog from GitLab MRs
9224 * Include "initially installed Tails version" info in WhisperBack reports
9228 - Include "initially installed Tails version" in WhisperBack reports
9229 - Reorder debugging info: keep persistence-related info together
9231 * try_for() timeout is not honored (tails/tails!151)
9234 - Test suite: try_for timeout is not honored (tails/tails#17822)
9237 - Revert "Revert "Test suite: revert exception handling change in try_for""
9239 * Enable persistence for all Greeter settings (tails/tails!149)
9242 - Test suite: make sure Greeter settings are default when they should.
9243 - Test suite: add scenario testing persistent Greeter options (refs: #17136).
9244 - Test suite: support entering sudo/persistent password in German.
9245 - Test suite: simplify.
9246 - Test suite: refactor.
9247 - Test suite: restore $language after reboot during the same scenario.
9248 - Test suite: consistently wait for notifications after logging in.
9249 - Greeter: Explain in a comment why we need this ugly workaround
9250 - Greeter: expand persistence support to all settings.
9252 * Tor browser 10.0.x based on ESR78 (tails/tails!148)
9255 - Automate Tor Browser import branch name generation.
9256 - Tor Browser: disable update checks via Enterprise Policy mechanism.
9257 - Revert "Tor Browser: disable the update check with a hack."
9258 - Upgrade Tor Browser to 10.0a6.
9259 - Tor Browser: disable the update check with a hack.
9260 - Test Suite: bump image.
9261 - Test Suite: bump UnsafeBrowserStartPage.fa.png.
9262 - Unsafe Browser: enable userChrome.css.
9263 - Unsafe Browser: Fix pref → user_pref error.
9264 - Tor Browser: drop userChrome.css.
9265 - Unsafe Browsesr: make DNS resolution work.
9266 - Revert "Tor Browser: remove leftover .orig."
9267 - Revert "Tor Browser: delete all Namecoin stuff."
9268 - Revert "Tor Browser: temporarily disable all non-en_US locales."
9269 - Tor Browser: refresh extension hacks patches.
9270 - Upgrade Tor Browser to 10.0a5-build2.
9272 - Don't ignore grep failure.
9273 - Tor Browser: delete all Namecoin stuff.
9274 - Tor Browser: use the bundled libstdc++.so.6.
9275 - Tor Browser: remove leftover .orig.
9276 - Tor Browser: temporarily disable all non-en_US locales.
9277 - Upgrade Tor Browser to 10.x nightly build as of 2020-08-13.
9278 - Tor Browser: naming scheme for nightly builds has changed.
9280 * Hide broken "Turn on Wi-Fi Hotspot" feature in GNOME Wi-Fi settings
9284 - Hide broken "Turn on Wi-Fi Hotspot" feature in GNOME Wi-Fi settings (#17887)
9286 * Upgrade Linux to 5.7.17-1, adjust for updated Electrum dependencies, support
9287 older TREZOR firmware (tails/tails!142)
9290 - Avoid installing python3-qdarkstyle by default
9291 - Install python3-hid, to support the HID version of TREZOR
9292 - Install python3-qdarkstyle from Bullseye: Electrum now depends on it (#17904)
9293 - Upgrade Linux to 5.7.0-3, currently at version 5.7.17-1 (#17895)
9294 - Revert "Install python3-cryptography, otherwise Electrum 4.0.2-0.1 won't start"
9295 - Install python3-construct from buster-backports: python3-trezor needs it
9298 * Fix sorting Intel GPUs last in the "Error starting GDM" message
9302 - Multiple GPUs are not sorted in the intended order in the "Error starting GDM"
9303 message (tails/tails#17903)
9306 - Fix sorting Intel GPUs last in the "Error starting GDM" message (#17903)
9308 * Include information about the contents of the system partition in WhisperBack
9309 reports (tails/tails!140)
9312 - tails-debugging-info: include information about the contents of the system
9314 - tails-debugging-info: add support for commands that need to go through a shell
9316 -- Tails developers <tails@boum.org> Mon, 21 Sep 2020 12:03:51 +0200
9318 tails (4.10) unstable; urgency=medium
9321 - Upgrade Tor Browser to 9.5.4-build1 (Closes: #17885).
9322 - Upgrade Linux kernel to 5.7.0-2 at 5.7.10-1 (Closes: #17841,
9326 - Make iPhone Tethering work by adding udev rule to disable MAC
9327 spoofing for it (Closes: #17820).
9328 - Remove broken Thunderbird protocol selection. This code has been
9329 a no-op in practice since at least Tails 4.0. We've decided to
9330 reject #17276 and investigate what the biggest problems are for
9331 email in Tails with slow/shitty Internet connections:
9332 default'ing to IMAP may, or may not, be part of these
9333 problems (Closes #17276).
9335 * Minor improvements and updates
9336 - Upgrade to Tor 0.4.3.6 (Closes: #17835).
9337 - Upgrade to Electrum 4.0.2 (Closes: #17828).
9338 - Hide Thunderbird welcome message: it is not relevant in the
9339 context of Tails. For example, it feels weird that we would
9340 encourage users to donate to Thunderbird about as loudly as we
9341 encourage them to donate to Tails. Besides, the default message
9342 is retrieved from the web when Thunderbird starts. We don't
9343 need this extra network activity.
9344 - import-translations: use *_release branches instead of
9345 *_completed branches. The new *_release branches contain exactly
9346 what we want, i.e. all reviewed translations from
9347 Transifex. While the *_completed branches only contain PO files
9348 for languages that are fully translated (Closes: #16774).
9351 - Upgrade snapshot of the Debian archive to 2020081601, including
9352 the 10.5 point release of Debian Buster (Closes: #17790).
9353 - On Bullseye and newer: use custom, fake, unversioned python
9354 packages. The unversioned python packages are not shipped in
9355 Bullseye/sid anymore, and even old versions are not installable
9356 anymore (Closes: #17858).
9357 - Import vagrant-libvirt's create_box.sh script. It's not included
9358 in vagrant-libvirt 0.1.2-1 anymore (Closes: #17872).
9361 - Improve robustness for scenario "The Additional Software dpkg
9362 hook notices when persistence is locked down while installing a
9364 - Improve robustness for scenario "Use GNOME Disks to unlock a USB
9365 drive that has a basic VeraCrypt volume with a keyfile".
9366 - Improve robustness of cloning a Git repository.
9367 - Don't hammer resources of the system under test while
9368 installing/removing packages. I see every such dpkg|grep call
9369 takes about 0.3 seconds on lizard, i.e. 30% of the 1 second
9370 default delay between checks, which I suspect is enough to slow
9371 down the package installation/removal we're exercising.
9372 - Update expected title of the GitLab page we use
9373 - Rubocop: target Ruby 2.5 (Buster).
9375 -- Tails developers <tails@boum.org> Mon, 24 Aug 2020 13:28:43 +0200
9377 tails (4.9) unstable; urgency=medium
9380 - Upgrade Tor Browser to 9.5.3-build1 (Closes: #17827).
9381 - Upgrade Thunderbird to 1:68.10.0-1~deb10u1 (DSA-4718).
9382 - Upgrade Linux to 5.7.0-1 at 5.7.6-1 (Closes: #17786).
9383 - Upgrade Evolution Data Server to 3.30.5-1+deb10u1 (DSA-4725).
9384 - Upgrade FFmpeg to 7:4.1.6-1~deb10u1 (DSA-4722).
9385 - Upgrade ImageMagick to 8:6.9.10.23+dfsg-2.1+deb10u1 (DSA-4712).
9386 - Upgrade NSS to 2:3.42.1-1+deb10u3 (DSA-4726).
9387 - Upgrade OpenMPT to 2:3.42.1-1+deb10u3 (DSA-4729).
9388 - Upgrade WebKitGTK to 2.28.3-2~deb10u1 (DSA-4724).
9391 - Fix quoting issue triggering problems with some administration
9392 passwords (Closes: #17792).
9393 - Fix toram boot option by not starting the tails-shutdown-on-media-removal
9394 service unit in that case (Closes: #17800).
9395 - Fix keyboard setting handling in the greeter (Closes: #17794).
9396 - Make sure log messages can be displayed by Plymouth, which has strict
9397 limits, and improve parsing in tails-gdm-error-message (Closes: #17533).
9398 - Upgrade firmware-linux and firmware-nonfree to 20200421-1.
9400 * Minor improvements and updates
9401 - Ensure MAC spoofing messages are translated (Closes: #17783).
9402 - Improve failure handling for MAC spoofing (Closes: #17784).
9403 - Trigger MAC spoofing "panic" mode when the debug=test_mac_spoof_panic boot
9405 - Upgrade VirtualBox guest modules to 6.1.12-dfsg-5.
9408 - Automate post-release GitLab updates, using gitlab-triage (Closes: #17589).
9409 - Fix a lot of possible problems spotted by ShellCheck, thanks to Paul Wise.
9410 - Stop installing custom firmware: firmware-realtek 20200421-1 includes it
9411 (See: #17786, #17323).
9412 - Update Thunderbird patches (Closes: #6156, #17808).
9413 - Bump snapshot of the Debian archive to 2020071801 (Closes: #17786).
9416 - Add shell-special chars to passwords (See: #17792).
9417 - Always test the Unsafe Browser in Farsi.
9418 - Fix support for symlinks (Closes: #17547).
9419 - Update persistence-setup test suite for a new preset in Welcome Screen
9421 - Drop Thunderbird POP3 test.
9422 - Make the "the Tor Browser has started" step stricter.
9423 - Improve error output when the Unsafe Browser fails to start in some locale.
9425 -- Tails developers <tails@boum.org> Mon, 27 Jul 2020 09:03:10 +0200
9427 tails (4.8) unstable; urgency=medium
9430 - Welcome Screen: after a large refactoring we now can persist
9431 settings (See: #17136)! Currently it is limited to the newly
9432 added option that controls whether the Unsafe Browser is allowed
9433 to start (#17085). In the next major release we'll support all
9437 - Allow to disable the Unsafe Browser in the Welcome Screen
9438 (Closes: #17085). The Unsafe Browser can be used by exploits to
9439 deanonymize the Tails user (for details, see: #15635).
9440 - Upgrade Tor Browser to 9.5.1-build2 (Closes: 17782).
9442 * Upgrade to Thunderbird 68.9.0 (DSA-4702).
9443 * Disable unsafe MX automatic configuration method (Closes:
9445 * Disable unsafe MS Exchange automatic configuration method
9447 - Upgrade Linux kernel to linux-image-5.6.0-2 at 5.6.14-2 (Closes:
9449 - Upgrade gnutls28-based packages to 3.6.7-4+deb10u4 (DSA-4697).
9450 - Upgrade intel-microcode to 3.20200609.2~deb10u1 (DSA-4701).
9453 - Trigger emergency shutdown on resume when the boot device was
9454 removed while suspended (Closes: #16787).
9455 - Thunderbird: make searching in messages (Find bar and Find in
9456 This Message) work again (Closes: #17328).
9457 - Ensure Mac Spoofing Panic messages will be correctly displayed
9458 (Closes: #17779). udev may close child processes when a process
9459 associated with a rule (/etc/udev/rules) terminates so we wait
9460 for those processes before exiting.
9461 - Wrap `seahorse-tool --import` so it is handled by `gpg --import`
9462 (Closes: #17183). This makes importing binary keys via GNOME
9463 Files integration possible again.
9465 * Minor improvements and updates
9466 - Upgrade to tor 0.4.3.5-1 (Closes: #17741).
9467 - Upgrade LibreOffice to 1:6.1.5-3+deb10u6.
9468 - Upgrade VirtualBox guest modules to 6.1.10-dfsg-1.
9469 - Append Unsafe Browser setting to WhisperBack debug info.
9472 - Upgrade snapshot of the Debian archive to 2020061003, including
9473 the 10.4 point release of Debian Buster (Closes: #17620).
9474 - Tor Browser AppArmor profile: update patch to apply on top of
9475 0.3.2-11 (Closes: #17612)
9476 - Thunderbird AppArmor profile: update patch to apply on top of
9477 68.9.0 (Closes: #17769).
9480 - Establish a coding standards baseline on our Ruby code base
9481 using Rubocop (Closes: #17646). This *MASSIVE* change includes
9482 mainly stylistic fixes and linting but also a few bug fixes,
9483 some dead code removal and code simplifications/refactorings,
9484 spelling fixes, improved gherkin and even removal the of
9485 a few duplicated tests and merging of very similar tests.
9486 - Improve robustness of navigating the GRUB menu in UEFI mode, and
9487 consequently drop the @fragile tag on the UEFI boot scenario
9489 - Allow configuring the number of vCPUs given to TailsToaster.
9490 Based on work done by kytv (♥) on #6729. On powerful hardware
9491 with many CPUs, Tails boots much faster with >2 vCPUs given to
9493 - Disable desktop size and clipboard interference between the host
9494 system and the system under test when using --view.
9495 - Ensure we run post_snapshot_restore_hook every time it's needed.
9496 - Fix running with XDG_SESSION_TYPE unset (Closes: #17596).
9497 - Always test the localized start up page of the Unsafe Browser.
9498 - Add --keep-chutney option to keep Chutney data, but no
9499 snapshots, between runs.
9500 - Revert "Test suite: disable tests about notifications in case of
9501 MAC spoofing failure (refs: #10774)"
9502 - Verify that the Unsafe Browser is disabled by default.
9503 - Test suite: fix --image-bumping-mode.
9505 -- Tails developers <tails@boum.org> Mon, 29 Jun 2020 16:02:18 +0200
9507 tails (4.7) unstable; urgency=medium
9510 - Upgrade Tor Browser to 9.5-build2 (Closes: #17710).
9511 - Upgrade APT to 1.8.2.1 (DSA-4685).
9512 - Upgrade BIND to 1:9.11.5.P4+dfsg-5.1+deb10u1 (DSA-4689).
9513 - Upgrade WebKitGTK to 2.28.2-2~deb10u1 (DSA-4681).
9514 - Upgrade Thunderbird to 1:68.8.0-1~deb10u1 (DSA-4683).
9517 - Improve Additional Software reliability (Closes: #17278): disable
9518 periodic APT operations entirely, adjust timeouts, force data
9519 synchronization, preserve file ownership.
9520 - Make memory erasure feature compatible with overlayfs (Closes: #15146).
9521 - Adjust various documentation for the new GitLab-based hosting.
9523 * Minor improvements and updates
9524 - Fix title of unlock-veracrypt-volume error dialog in case of incorrect
9525 password (Closes: #17668).
9526 - Clean up confusing torrc (Closes: #17706).
9529 - IUK creation: don't use extreme compression options for the outer
9530 SquashFS container refs.
9531 - IUK creation: add support for building several IUKs in parallel locally
9533 - IUK verification: add support for fetching IUKs built in parallel on
9534 Jenkins (Closes: #17658).
9535 - Release process: generate UDFs on the alpha channel for previous
9536 non-final releases (Closes: #17614).
9537 - Remove aufs-based IUK generation code and doc (Closes: #17489).
9540 - Adjust for augmented timeouts in Additional Software.
9541 - Adjust locale lookup to check several directories.
9542 - Speed up 'I fill a ... MiB file' step by 1000%.
9543 - Keep latest test suite screenshot (Closes: #17621).
9544 - Fix test suite breaking when the user connects to the VM via virt-viewer
9546 - Adjust reference images and titles following the migration to GitLab
9547 (Closes: #17718, 17719).
9549 -- Tails developers <tails@boum.org> Mon, 01 Jun 2020 18:31:41 +0200
9551 tails (4.6) unstable; urgency=medium
9554 - Upgrade Tor Browser to 9.0.10-build2 (Closes: #17660).
9555 - Upgrade Thunderbird to 1:68.7.0-1~deb10u1 (MFSA-2020-14, DSA-4656).
9556 - Upgrade Git to 1:2.11.0-3+deb9u3 (DSA-4657, DSA-4659).
9557 - Upgrade Node.js to 10.19.0~dfsg1-1 (DSA-4669).
9558 - Upgrade OpenLDAP to 2.4.47+dfsg-3+deb10u2 (DSA-4666).
9559 - Upgrade OpenSSL to 1.1.1d-0+deb10u3 (DSA-4661).
9560 - Upgrade ReportLab to 3.5.13-1+deb10u1 (DSA-4663).
9561 - Upgrade WebKitGTK to 2.26.4-1~deb10u3 (DSA-4658).
9564 - Switch Japanese input method from Anthy to Mozc (Closes: #16719).
9565 - Install the libu2f-udev package, for U2F device support.
9566 - Update our list of 'Favorites' applications (Closes: #16990).
9569 - lint_po: support locales with "@" in their name, such as ru@petr1708
9571 - perl5lib: declare missing test dependencies (Closes: #17591).
9572 - iuk: declare missing test dependencies (Closes: #17592).
9573 - Upgrade to po4a 0.55 for Tails images and Vagrant box (Closes: #17005).
9576 - Print disk usage information when the test suite fails with “No
9578 - Ensure no zombie processes are left around, by cleaning subprocesses
9579 correctly (Closes: #17551).
9580 - Prevent webrick from becoming a zombie process.
9581 - Avoid test suite getting stuck due to a zero timeout.
9582 - Fix obsoletion warnings (Closes: #17552).
9583 - Add root check and --allow-non-root option (Closes: #17613). Let's
9584 make it clear running the test suite requires root privileges in
9587 -- Tails developers <tails@boum.org> Mon, 04 May 2020 18:43:38 +0200
9589 tails (4.5) unstable; urgency=medium
9592 - Upgrade Tor Browser to 9.0.9-build1 (Closes: #17594).
9593 - Upgrade BlueZ to 5.50-1.2~deb10u1 (DSA-4647).
9594 - Upgrade GnuTLS to 3.6.7-4+deb10u3 (DSA-4652).
9596 -- Tails developers <tails@boum.org> Mon, 06 Apr 2020 21:51:05 +0200
9598 tails (4.5~rc1) unstable; urgency=medium
9601 - Migrate from aufs to overlayfs (Closes: #8415). This change touches
9602 many components which won't all be listed individually, but some
9603 highlights are listed below:
9604 ⋅ Adjust the build system to stop building the aufs kernel module.
9605 ⋅ Switch the kernel command line from union=aufs to union=overlayfs.
9606 ⋅ Adjust AppArmor profiles (Closes: #9045, #12112).
9607 . Adapt chroot-browsers (Closes: #12105).
9608 ⋅ Drop the aufs Git submodule.
9609 ⋅ Make memory erasure feature compatible with overlayfs
9611 ⋅ Make Upgrader support and also generate overlayfs-based IUKs by
9612 default (Closes: #9373).
9613 - Use GRUB with Secure Boot support for x86_64 (Closes: #6560, #15806).
9614 This is also a large change, touching many components:
9615 ⋅ Install grub from bullseye.
9616 ⋅ Introduce a custom grub configuration file.
9617 ⋅ Use a custom background image.
9618 ⋅ Mimick Debian Installer's efi-image build script to handle all
9619 details in binary local hooks.
9620 ⋅ Add SYSLINUX in the syslinux bootloader menu, to make it easier to
9621 troubleshoot GRUB vs. syslinux issues (Closes: #17538).
9622 ⋅ Upgrader: Adjust to also handle files in EFI/debian when dealing
9624 ⋅ Adjust test suite.
9625 - Migrate test suite from Sikuli to a combination of OpenCV (image
9626 matching), xdotool (mouse interaction), plus libvirt's send-key
9627 (keyboard interaction) (Closes: #15460). This is another major
9628 changes, allowing the test suite to run on Buster-based systems,
9629 touching various areas of the test suite, among which:
9630 ⋅ Add workaround for the Greeter when restoring snapshot.
9631 ⋅ Fix dependencies for Buster.
9632 ⋅ Replace some Sikuli-based options with some OpenCV-based ones
9633 (e.g. --retry-find → --image-bumping-mode).
9634 ⋅ Handle non-English keyboards.
9635 ⋅ Fix --capture on Buster and above.
9636 ⋅ Deal with Buster having migrated from avconv to ffmpeg.
9639 - Upgrade ICU to 63.1-6+deb10u1 (DSA-4646).
9641 * Minor improvements and updates
9642 - Refactor tails-documentation (Closes: #16903).
9645 - Freeze APT snapshots for 4.5~rc1.
9646 - Rakefile: always disable website caching when building from a tag
9648 - Rakefile: fix recommended permissions (libvirt needs +r to share the
9649 source tree with the Vagrant box).
9650 - Import persistence-setup.git from its own repository into tails.git
9651 (Closes: #17526, #6487).
9652 - IUK: ensure rsync runtime dependency is installed.
9655 - Adjust for the aufs → overlayfs migration (Closes: #12106, #17440,
9657 - run_test_suite: don't print usage on error.
9658 - run_test_suite: --view/--vnc-server-only are only supported on x11.
9659 - Optimize checking if file is empty.
9660 - Speed up some test failures to avoid resource starvation.
9661 - Check for tcplay dependency.
9662 - Increase chances chutney starts after unclean shutdown.
9663 - Make chutney log what it is doing.
9664 - Make opening Thunderbird's Extensions tab more robust.
9666 -- Tails developers <tails@boum.org> Thu, 26 Mar 2020 22:51:35 +0100
9668 tails (4.4.1) unstable; urgency=medium
9671 - Upgrade Tor Browser to 9.0.7-build1 (Closes: #17539).
9672 - Upgrade tor to 0.4.2.7 (Closes: #17531).
9673 - Upgrade Thunderbird to 1:68.6.0-1~deb10u1 (MFSA-2020-10, DSA-4642).
9674 - Upgrade WebKitGTK to 2.26.4-1~deb10u2 (DSA-4641).
9677 - lint_po: avoid race conditions when checking PO files (Closes: #17359).
9679 -- Tails developers <tails@boum.org> Sun, 22 Mar 2020 20:27:47 +0100
9681 tails (4.4) unstable; urgency=medium
9684 - Upgrade Tor Browser to 9.0.6-build2 (MFSA-2020-09).
9685 - Upgrade Linux kernel to linux-image-5.4.0-4, currently at 5.4.19-1
9687 - Upgrade Thunderbird to 68.5.0-1~deb10u1 (MFSA-2020-07, Closes: #17481).
9688 - Upgrade cURL to 7.64.0-4+deb10u1 (DSA-4633).
9689 - Upgrade evince to 3.30.2-3+deb10u1 (DSA-4624).
9690 - Upgrade Pillow to 5.4.1-2+deb10u1 (DSA-4631).
9691 - Upgrade ppp to 2.4.7-2+4.1+deb10u1 (DSA-4632).
9692 - Upgrade WebKitGTK to 2.26.4-1~deb10u1 (DSA-4627).
9695 - Fix missing firmware for RTL8822BE/RTL8822CE (See: #17323). Use the
9696 tails-workarounds provided firmwares until the firmware-realtek
9697 package is updated with the patch by Sjoerd Simons (Debian#935969).
9698 Note: This might not be sufficient to support those cards.
9700 * Minor improvements and updates
9701 - Upgrade dogtail to 0.9.11-6.
9702 - Upgrade virtualbox to 6.1.4-dfsg-1.
9705 - Vagrant build box: disable mitigation features for CPU
9706 vulnerabilities (Closes: #17386). Given the kind of things we do in
9707 our Vagrant build box, it seems very unlikely that vulnerabilities
9708 such as Spectre and Meltdown can be exploited in there. Let's
9709 reclaim some of the performance cost of the corresponding mitigation
9711 - Enable website caching by default, with a way option to disable it
9713 - Key the website cache on debian/changelog too (Closes: #17511).
9714 - Update APT snapshot of the Debian archive to 2020030101.
9715 - Add support for the tails-workarounds submodule.
9717 -- Tails developers <tails@boum.org> Wed, 11 Mar 2020 10:59:10 +0100
9719 tails (4.3) unstable; urgency=medium
9722 - Upgrade Tor Browser to 9.0.5-build2 (Closes: #17469).
9723 - Update Linux kernel to linux-image-5.4.0-3-amd64, currently at
9724 5.4.13-1 (Closes: #17443).
9725 - Upgrade Thunderbird to 1:68.4.1-1~deb10u1
9726 - Upgrade WebKitGTK to 2.26.3-1~deb10u1 (DSA-4610).
9729 - live-persist: don't backup empty configuration files (Closes:
9730 #17112). In some cases, the previous code would overwrite a
9731 non-empty backup file with an empty one, making it harder to
9732 recover from the already painful #10976.
9733 - create-usb-image-from-iso: Run syslinux within proper chroot
9734 (Closes: #17179). Previously we ran syslinux from the host,
9735 which can lead to bugs if its versions differs from the one
9736 inside the chroot (which is what Tails will use later). Thanks
9737 to Johan Blåbäck for the patch!
9738 - Tails Upgrader: Fix progress bar not pulsating and hide useless
9739 OK button (Closes: #16603).
9741 * Minor improvements and updates
9742 - Upgrade tor to 0.4.2.6 (Closes: #17059).
9743 - Install the trezor package, which adds a command-line (only)
9744 tool for managing Trezor devices (Closes: #17463). Thanks to
9745 Pavol Rusnak for the patch!
9746 - As a consequence of the Linux kernel upgrade we also:
9747 * Upgrade aufs to 5.4.3 20200127.
9748 * Install VirtualBox guest tools and kernel modules from sid.
9751 - Upgrade snapshot of the Debian archive to 2020020302, including
9752 the 10.3 point release of Debian Buster (Closes: #17458).
9753 - Add opt-in caching of the wiki (Closes: #15342).
9754 - Use mksquashfs' -no-exports option even when the fastcomp build
9755 option is set. "fastcomp" is supposed to only tweak SquashFS
9756 compression settings, but so far it was also disabling the
9757 -no-exports option that we set for our release builds.
9758 - Drop a bunch of packages installed for ikiwiki for various
9760 * libfile-chdir-perl, libyaml-perl and libxml-simple-perl which
9761 was needed back when we built our own ikiwiki from Git… a
9763 * libtext-multimarkdown-perl used multimarkdown ikiwiki which
9764 its doubtful we ever will use.
9765 * libhtml-scrubber-perl, libhtml-template-perl,
9766 libhtml-parser-perl, libyaml-libyaml-perl and liburi-perl
9767 which are already installed as ikiwiki dependencies.
9768 - Install libimage-magick-perl instead of the perlmagick
9769 transitional package.
9770 - Don't install obsolete dependencies whois and eatmydata.
9771 - Consistently validate individual build options as we parse them.
9772 This is consistent with how we handled "fastcomp" already. Only
9773 compatibility checks between multiple build options really need
9774 to happen later, once we've parsed all build options.
9775 - Remove 5 years old transition code
9776 - Fully provision the Vagrant box every time it starts, and
9777 partially re-provision it for every build.
9778 - Behave correctly when disabling a previously set "offline" or
9779 "vmproxy+extproxy" build option. Previously, setting one of
9780 these build options *once* would taint the Vagrant box forever
9781 with the resulting apt-cacher-ng configuration.
9782 - Shrink the apt-cacher-ng cache after a successful build too
9784 - Set up infrastructure to retrieve log file from the VM even on
9785 build failure (Closes: #7749).
9786 - Always build from a fresh Git clone.
9787 - Set the permissions that Vagrant needs inside the source tree
9788 (Closes: #11411, #16607, #17289).
9791 - Remove Seahorse key synchronization scenarios. These 2 scenarios
9792 never pass due to #17169, so currently:
9793 * They don't teach us anything new → no benefit.
9794 * Every time a developer looks at test suite results,
9795 they need to filter out this known problem, which takes time
9796 and trains us to ignore problems.
9798 -- Tails developers <tails@boum.org> Mon, 10 Feb 2020 14:08:59 +0100
9800 tails (4.2.2) unstable; urgency=medium
9803 - Upgrade Tor Browser to 9.0.4-build1 (MFSA-2020-03)
9806 - Avoid the Upgrader proposing to upgrade to the version
9807 that's already running (Closes: #17425)
9808 - Avoid 2 minutes delay while rebooting after applying an automatic
9809 upgrade (Closes: #17026)
9810 - Make Thunderbird support TLS 1.3 (Closes: #17333)
9813 - IUK generation: don't make all files in the SquashFS diff
9814 owned by root, otherwise an upgraded system cannot start
9817 -- Tails developers <tails@boum.org> Mon, 13 Jan 2020 09:21:51 +0000
9819 tails (4.2) unstable; urgency=medium
9822 - Switch to a redesigned upgrade system (Closes: #15281), which:
9823 - removes the need for manual upgrades caused by lack of disk space
9826 - Bump snapshot of the Debian archive to 2019122802
9829 - Upgrade Tor Browser to 9.0.3 (Closes: #17402)
9830 - Upgrade Linux to 5.3.15-1 (Closes: #17332)
9831 and upgrade the aufs module to 5.3-20191223
9832 - Upgrade Thunderbird to 1:68.3.0-2~deb10u1
9833 - Upgrade libsasl2 to 2.1.27+dfsg-1+deb10u1
9834 - Upgrade python3-ecdsa to 0.13-3+deb10u1
9838 - Open ~/Persistent/keepassx.kdbx by default again (Closes: #17212)
9839 - Open the database specified by the user on the command-line, if any
9840 - Fix database renaming prompt
9842 - Ensure debugging info lands in the Journal before we refer to it
9843 - Catch more download errors
9844 - Upgrade amd64-microcode to 3.20191218.1, which removes firmware
9845 updates that cause issues
9847 * Minor improvements and updates
9848 - Add metadata analysis tools used by SecureDrop (Closes: #17178)
9849 - Refresh the signing key before checking for available upgrades
9851 - Port the Upgrader and perl5lib to a set of dependencies that are
9852 faster and have a lower memory footprint (Closes: #17152)
9853 - Ensure IUKs don't include files of our website if their content
9854 has not changed (refs: #15290)
9855 - Zero heap memory at allocation time and at free time (Closes: #17236)
9858 - Import the Upgrader and perl5lib codebases into tails.git
9860 - lint_po: ignore pre-existing rply cache file that can cause
9861 trouble if it's corrupted (Closes: #17359)
9862 - Move generate-languages-list to auto/scripts
9863 - import-translations: work around the lack of usable branches
9864 in Tor's translation.git (Closes: #17279)
9865 - Build released IUKs on Jenkins and verify that they match
9866 those built locally by the Release Manager (Closes: #15287)
9867 - Don't download every localized Tor Browser tarball: instead,
9868 use the new tarball that includes every langpacks (Closes: #17400)
9871 - Adapt for the "one single SquashFS diff" upgrade scheme
9872 - Chutney: update to upstream 33cbff7fc73aa51a785197c5f4afa5a91d81de9c
9874 - Fix tagging of Chutney exit relays and bridge authorities
9875 - Tag Chutney clients as such
9876 - Wait for all Chutney nodes to have bootstrapped before assuming
9877 the simulated Tor network is ready
9878 - Don't try to save tor control sockets as artifacts
9879 - Add a crude script to generate IUKs for our test suite
9881 -- Tails developers <tails@boum.org> Mon, 06 Jan 2020 16:25:22 +0000
9883 tails (4.1.1) unstable; urgency=medium
9886 - Drop all network drivers from the initramfs to shrink its size
9887 drastically. Going over the 32 MiB mark might be the reason why so
9888 many Apple machines can't boot 4.1 while they could boot 4.0
9890 - Only allow up to (but excluding) 32 MiB for initramfs accordingly.
9892 * Minor improvements and updates
9893 - Fix escape sequence in tails-gdm-failed-to-start.service, to avoid a
9894 warning message (Closes: #17166).
9896 -- Tails developers <tails@boum.org> Sun, 15 Dec 2019 23:51:25 +0100
9898 tails (4.1) unstable; urgency=medium
9901 - Upgrade Tor Browser to 9.0.2-build2, based on Firefox ESR 68.3
9903 - Upgrade Thunderbird to 68.2.2 (Closes: #16771, #17220, #17222, #17267).
9904 - Upgrade Enigmail to 2:2.1.3+ds1-4~deb10u2 accordingly.
9907 - Upgrade Linux to 5.3.9-2 from sid (Closes: #17124).
9908 - Disable unprivileged userfaultfd syscall (Closes: #17196).
9909 - Upgrade file to 1:5.35-4+deb10u1 (DSA-4550-1).
9910 - Upgrade FriBidi to 1.0.5-3.1+deb10u1 (DSA-4561-1).
9911 - Upgrade Ghostscript to 9.27~dfsg-2+deb10u3 (DSA-4569-1)
9912 - Upgrade Intel microcode to 3.20191112.1~deb10u1 (DSA-4565-1,
9914 - Upgrade libarchive to 3.3.3-4+deb10u1 (DSA-4557-1).
9915 - Upgrade libvpx to 1.7.0-3+deb10u1 (DSA-4578-1).
9916 - Upgrade libxslt to 1.1.32-2.2~deb10u1 (CVE-2019-18197).
9917 - Upgrade ncurses to 6.1+20181013-2+deb10u2 (CVE-2019-17594,
9919 - Upgrade Python 2.7 to 2.7.16-2+deb10u1 (CVE-2018-20852,
9920 CVE-2019-10160, CVE-2019-16056, CVE-2019-16935, CVE-2019-9740,
9922 - Upgrade Qt to 5.11.3+dfsg1-1+deb10u1 (DSA-4556-1).
9923 - Upgrade tcpdump to 4.9.3-1~deb10u1 (DSA-4547-1).
9924 - Upgrade WebKitGTK to 2.26.2-1~deb10+1 (DSA-4558-1, DSA-4563-1).
9927 - Remove TorBirdy (Closes: #17219, #17269).
9928 - Use keys.openpgp.org's Onion service as the default keyserver
9929 (Closes: #12689, #14770).
9930 - Fix ordering of GTK bookmarks setup vs. Tor Browser directories
9931 creation (Closes: #17206).
9932 - Bring back the "Show Passphrase" button in the Greeter
9934 - Bring back "Open in Terminal" entry in the GNOME Files context menu
9936 - Revert "Browsers: disable the Quantum Bar." (Closes: #17143).
9937 - Revert "Hide all Tor connection-related settings in
9938 about:preferences in all browsers" (Closes: #17214).
9939 - Wait until Tor has bootstrapped before we try to upgrade Additional
9940 Software (Closes: #17203).
9941 - Fix the "GDM failed to start" splash screen functionality
9944 * Minor improvements and updates
9945 - htpdate: stop sending User-Agent that fakes Tor Browser
9947 - HTP: replace encrypted.google.com with www.google.com.
9948 - Remove signal handler from Greeter UI file (Closes: #17240).
9949 - Upgrade AMD microcode to 3.20191021.1.
9950 - Upgrade fonts-noto-cjk to 1:20170601+repack1-3+deb10u1
9954 - Update Vagrant box to Buster (Closes: #16868).
9955 - Adjust to timedatectl's output on Buster.
9956 - Adjust to Buster's debootstrap.
9957 - Vagrant: ensure the chroot has a /proc filesystem while running
9959 - Vagrant: install po4a from Stretch in the basebox.
9960 - build-tails: wait for NTP to be disabled before setting the desired
9962 - Bump APT snapshot of the Debian archive to 2019111801, including the
9963 10.2 point release of Buster (Closes: #17124, #17021).
9964 - Install virtualbox 6.0.12-dfsg-1 from our custom APT repository
9968 - Ensure we don't break tests by opening the Applications menu in
9969 post_vm_start_hook (Closes: #17164).
9970 - Improve GnuPG testing (Closes: #12689):
9971 · Switch to using sajolida's key.
9972 · Start adjusting for keys.openpgp.org.
9973 · Make the "GnuPG's dirmngr uses the configured keyserver" step
9974 actually test what it is meant to.
9975 · Make error strings better reflect what failure they are about.
9976 · Ensure dirmngr uses IPv4 since our CI runs on an IPv4-only
9978 - Ensure dirmngr picks up the changes we make to its configuration.
9979 - Switch backend keyservers (Closes: #14770).
9980 - Don't leave redir(1) processes behind (Closes: #14948).
9981 - Update image for Buster (Closes: #14770).
9982 - Update fragility status of Seahorse scenarios.
9983 - Avoid multiple instances of tcpdump writing to the same file,
9984 resulting in an unparsable network capture (Closes: #17102).
9985 - Update for Thunderbird 68 (Closes: #17269).
9988 - Remove or adapt mentions to Tails Installer as only installation
9989 method (Closes: #17204).
9990 - Add a warning about which Tails to run rsync from (Closes: #17197).
9992 -- Tails developers <tails@boum.org> Mon, 02 Dec 2019 22:23:35 +0100
9994 tails (4.0) unstable; urgency=medium
9997 - Upgrade Tor Browser to 9.0-build2, based on Firefox ESR 68.2.
10000 - Upgrade IBus to 1.5.19-4+deb10u1.0tails1 (Closes: #17144)
10001 - Upgrade sudo to 1.8.27-1+deb10u1
10004 - Fix regressions brought by the integration of Tor Browser 9.0:
10005 · Fix non-English spellchecking (Closes: #17150)
10006 · Unsafe Browser: don't enable private browsing mode, don't display
10007 Tor Browser icons, hide the new "New identity" toolbar button
10009 · Hide all Tor connection-related settings in about:preferences
10011 - Fix Stealth Onion services in OnionShare (Closes: #17162)
10012 - Upgrade OpenSSL to 1.1.1d-0+deb10u2
10014 * Minor improvements and updates
10015 - Don't include the locales package (Closes: #17132)
10016 - Update htpdate's User-Agent to match Tor Browser 9.0's
10019 - Only partially fill memory for userspace processes (Closes: #17104)
10020 - Drop the "Unsafe Browser has no proxy configured" step, that's hard
10021 to update and adds little value
10022 - Various updates for Tor Browser 9.0 final
10023 - Make the "SSH is using the default SocksPort" scenario more robust
10026 -- Tails developers <tails@boum.org> Mon, 21 Oct 2019 10:24:56 +0000
10028 tails (4.0~rc1) unstable; urgency=medium
10031 - Update Tor Browser to 9.0a7, based on Firefox ESR 68 (#16356).
10032 - Include a working version of Electrum: 3.3.8-0.1 (Closes: #16421).
10034 · Remove the obsolete "coin_chooser: Privacy" option (Closes: #15483).
10035 · Disable the update check (Closes: #15483).
10036 - Curate the list of languages in Tails Greeter (Closes: #16095).
10037 Only include languages which meet one of these conditions:
10038 · Have a PO file in tails.git (i.e. have at least one translated
10039 and reviewed string)
10040 · Are on our list of tier-1 supported languages.
10041 - Update Linux to 5.3.2-1~exp1 from Debian experimental (Closes: #17117).
10042 - Bump APT snapshots of the 'debian' and 'torproject' archives
10043 to 2019100904. This includes the update to the Buster 10.1
10047 - Drop NoScript customization that makes our web fingerprint diverge
10048 from Tor Browser's (related to #5362).
10049 - Enable Buster security APT sources (Closes: #17119).
10050 - Upgrade CUPS to 2.2.10-6+deb10u1 (CVE-2019-8696, CVE-2019-8675,
10051 and more security fixes).
10052 - Update GnuPG to 2.2.12-1+deb10u1, which mitigates the certificates
10054 - Update e2fsprogs to 1.44.5-1+deb10u2 (DSA-4535-1).
10055 - Update ghostscript to 9.27~dfsg-2+deb10u2 (DSA-4518-1, DSA-4499-1).
10056 - Update WebKitGTK to 2.24.4-1~deb10u1 (DSA-4515-1).
10057 - Update Pango to 1.42.4-7~deb10u1 (DSA-4496-1).
10058 - Update ffmpeg to 7:4.1.4-1~deb10u1 (DSA-4502-1).
10059 - Update expat to 2.2.6-2+deb10u1 (DSA-4530-1).
10060 - Update GLib to 2.58.3-2+deb10u1 (CVE-2019-13012).
10061 - Update libmariadb3 to 1:10.3.17-0+deb10u1 (various vulnerabilities).
10062 - Update NSS to 2:3.42.1-1+deb10u1 (CVE-2019-11719, CVE-2019-11727,
10064 - Update LibreOffice to 1:6.1.5-3+deb10u4 (DSA-4519-1, DSA-4501-1,
10065 DSA-4483-1, and CVE-2019-9848).
10066 - Update Samba to 2:4.9.5+dfsg-5+deb10u1 (DSA-4513-1).
10067 - Update OpenSSL to 1.1.1d-0+deb10u1 (DSA-4539-1).
10068 - Update libxslt to 1.1.32-2.1~deb10u1 (CVE-2019-11068, CVE-2019-13117,
10070 - Update zeromq3 to 4.3.1-4+deb10u1 (DSA-4477-1).
10071 - Update patch to 2.7.6-3+deb10u1 (DSA-4489-1).
10072 - Update Thunderbird to 1:60.9.0-1~deb10u1 (DSA-4523-1, DSA-4482-1).
10073 - Update wpasupplicant to 2:2.7+git20190128+0c1e29f-6+deb10u1 (DSA-4538-1).
10076 - Ensure that tor-has-bootstrapped systemd units are stopped
10077 if tor@default.service stops; replace the tor-has-bootstrapped
10078 script with a tor_has_bootstrapped() function that checks the status
10079 of tails-tor-has-bootstrapped.target (Closes: #16664).
10080 - Fix MIME info data build reproducibility (Closes: #17023).
10081 - Fix missing GNOME bookmarks, by adding them earlier in the session
10082 login process (Closes: #17030).
10083 - Increase left dock width in GIMP's sessionrc (Closes: #16807).
10084 - Use hardware defaults for the touchpad click method (Closes: #17045).
10085 - Fix image thumbnails in GNOME Files (Closes: #17062).
10086 - Use the "intel" X.Org driver for Intel Iris Plus Graphics 640
10088 - Fix sdhci-pci support.
10089 - Honor the "Formats" settings chosen in the Greeter (Closes: #16806).
10090 - Fix administration password not being applied in some cases
10092 - Fix Greeter settings being applied when clicking "Cancel"
10094 - Fix bridge information not always shown when the user selects
10095 bridge mode in the Greeter.
10096 - Fix path in whisperback's debugging info (Closes: #17109).
10097 - Fix Tor Browser functionality that was broken when it was started
10098 by clicking a link in Thunderbird (Closes: #17105).
10099 - Fix WhisperBack that was broken due to an expired X.509 certificate:
10100 stop using TLS (we already have end-to-end encryption via OpenPGP,
10101 plus end-to-end encryption and remote peer authentication via
10102 Tor hidden services). Also, switch to a v3 Onion service (Closes #17110).
10103 - Install Stretch's po4a (0.47-2) from our custom APT repository:
10104 the upgrade to Buster's version will need more work and coordination
10106 - Fix hiding of the Add-ons manager in the Unsafe Browser hamburger menu.
10107 Regression introduced when we upgraded to Tor Browser based on Firefox
10109 - Mention USB images as a valid installation technique when trying
10110 to create a persistent volume on a device that can't have one
10113 * Minor improvements and updates
10114 - Add iPhone USB tethering support (Closes: #16180).
10115 - Install Enigmail from Buster (Closes: #16978).
10116 - Disable GDM debug logs (Closes: #17011).
10117 - Hide less common keyboard layouts in the Greeter (Closes: #17084).
10118 - Major refactoring and cleanup of Tails Greeter (Closes: #17098).
10119 - Use a localized page for the Greeter help window, if available
10121 - Separate Chinese into simplified and traditional scripts
10122 in the Greeter (Closes: #16094).
10123 - Allow the user to show the passphrase they're typing when creating
10124 a new persistent volume (Closes: #15102).
10125 - When saving persistence.conf or its backup, also run sync(1)
10126 on its parent directory (might help fix #10976).
10127 - Improve Tails Installer wording (Closes: #15564).
10128 - Update tor to 0.4.1.6-1~d10.buster+1.
10129 - Update VirtualBox guest drivers and tools to 6.0.12-dfsg-1.
10132 - SquashFS sort file: remove more noise.
10133 - Improve lint_po's UX (refs: #16864).
10134 - Import our pythonlib, previously included as a submodule (Closes: #16935).
10135 - Use a consistent, standard Python packages directory (Closes: #17082).
10138 - Make various steps more robust:
10139 · "all notifications are disappeared" (Closes: #17012)
10140 · "Additional Software is correctly configured for package"
10141 · "I unlock and mount this VeraCrypt file container
10142 with Unlock VeraCrypt Volumes"
10143 · "I open the Unsafe Browser proxy settings dialog"
10144 · starting apps via the GNOME Activities Overview (Closes: #13469)
10145 · "I start the Tor Browser in offline mode"
10146 - Handle Guestfs::Error exceptions.
10147 - Provide guidance to fix problematic situation.
10148 - Update various reference images for Buster.
10149 - Don't attempt to find fuzzy matches with Sikuli unless fuzzy image
10150 matching is enabled (Closes: #17029).
10151 - Dogtail'ify all interactions with gedit (Closes: #17028).
10152 - New test: ensure that no experimental APT suite is enabled
10153 for deb.torproject.org (Closes: #16931).
10154 - Remove dead IRC-related code and dependencies.
10155 - Take into account that Evince and Tor Browser's print-to-file dialogs
10156 are rendered in a subtly different manner.
10157 - Drop fragile tag for actual Tails bugs (#17007).
10158 - Drop compatibility code for Cucumber < 2.4.0 (Closes: #17083).
10159 - Fix regression in the Persistent browser bookmarks scenario
10162 -- Tails developers <tails@boum.org> Thu, 10 Oct 2019 11:23:53 +0000
10164 tails (4.0~beta2) unstable; urgency=medium
10166 * All changes included in Tails 3.16, see the corresponding changelog entry.
10169 - Upgrade tor to 0.4.1.5 (Closes: #16986).
10172 - Upgrade the Linux kernel to 5.2.0-2 (Closes: #16942).
10173 This mitigates the Spectre v1 swapgs vulnerability (CVE-2019-1125).
10174 Accordingly, aufs to aufs5.2 20190805.
10175 - Install enigmail from Bullseye (Closes: #16738).
10176 This fixes CVE-2019-12269.
10179 - tails-unblock-network: only sleep until all-net-blacklist.conf is gone,
10180 instead of unconditionally delaying the login process for 5 seconds
10182 - Terminate GDM's GNOME session after the amnesia user logs in,
10183 to free 200-300 MiB of memory (Closes: #12092).
10184 Temporarily enable GDM debug logs so we get enough information to fix
10185 any issue this might cause.
10186 - Make our KeePassXC wrapper translatable (Closes: #16952).
10187 - Adjust boot-time backports APT pinning for Buster.
10188 - Ensure we don't install unwanted packages even if they become
10189 "Priority: standard" again (Closes: #16949).
10190 - Move some GNOME apps to different menu categories (Closes: #16981).
10191 - Update HTP pools: replace boum.org (invalid certificate) with puscii.nl,
10192 replace www.myspace.com with myspace.com (the former redirects to
10194 - AppArmor: allow OnionShare to open URLs with Tor Browser (Closes: #16914).
10195 - Make file transfers with Spice reliable.
10197 * Minor improvements and updates
10198 - Greeter: improve formatting of printed exceptions.
10199 - Use the same icon for Tails Documentation in the Applications menu
10200 as on te Desktop (Closes: #16800).
10201 - Drop migration path from GnuPG persistent configuration created
10202 in the Tails 2.x era.
10203 - Remove various hacks that we don't need on Buster anymore.
10204 - Stop installing libcaribou-gtk3-module (Closes: #16757).
10205 - Stop installing python-cairo: mat2 does not use it anymore.
10206 - tails-unblock-network: have udev reload the databases it uses.
10207 This should avoid our fix for #16805 introducing regressions.
10210 - Bump APT snapshot of the 'debian' and 'torproject' archives
10212 - Import the Greeter codebase into tails.git (Closes: #16912).
10213 - Explicitly install gnome-shell to make the set of installed packages
10214 more deterministic (related to #16947).
10215 - Don't try to follow symlinks when normalizing timestamps on source files.
10216 - Add missing "set -u" to build-time hook.
10217 - Use consistent method to extract translatable strings from Glade files.
10218 - Create gdm-tails related files from the original GNOME files
10220 - Stop installing libimage-exiftool-perl explicitly: mat2 depends on it
10222 - Rakefile: disable compression when retrieving artifacts via scp.
10223 This makes this build step faster on systems that have SSH compression
10224 enabled by default.
10225 - import-translations: use tails-misc_release for tails.git's PO files
10226 (i.e. the Tails part of #16774).
10227 - Use squashfs-tools from sid (Closes: #16637).
10228 - Lower VM_MEMORY_BASE to 1536M.
10229 - Remove unneeded package cleanup (Closes: #16950).
10232 - New scenario: installing with GNOME Disks from a USB image
10234 - New scenarios: VeraCrypt PIM support (Closes: #15946).
10235 - Revert timeout bump that's not needed anymore.
10236 - Add a showing method on Dogtail objects.
10237 - VeraCrypt: ensure the temporary keyfile file is not garbage collected
10238 while we still need it.
10239 - Remote shell: print traceback to stderr so we can see it.
10240 - Install Dogtail from Bullseye and run it with Python 3 (Closes: #16976).
10241 This gives us UTF-8 support. Accordingly, drop anonym's "showingOnly"
10242 patch that was merged upstream, and port some test suite code to Dogtail,
10243 which we could not do before it got UTF-8 support.
10244 - Dogtail'ify some steps.
10245 - Make "^the Tor Browser shows the "([^"]+)" error$" step more robust
10247 - Make the "the support documentation page opens in Tor Browser" step more
10248 robust (Closes: #15321)
10249 - Remove a bunch of obsolete @fragile tags, update the reasons why
10250 the remaining ones are fragile, and add some missing @fragile tags.
10251 - Drop useless code based on wrong assumptions (refs: #13470).
10252 - Make the "I set an administration password" step more robust.
10254 -- Tails developers <tails@boum.org> Mon, 02 Sep 2019 19:55:24 +0000
10256 tails (4.0~beta1) unstable; urgency=medium
10259 - Upgrade to a snapshot of Debian 10 (Buster) from 2018-08-06.
10262 - Remove scribus completely (refs: 16290).
10263 - Remove LibreOffice Math (#16911).
10266 - Fix Electrum wrapper's persistence check (Closes: #16821).
10267 - Remove pre-generated Pidgin accounts (Closes: #16744).
10268 - Hide the security level button in the unsafe browser (Closes:
10270 - Only hide unlocked TailsData partitions from the boot device
10273 * Minor improvements and updates
10274 - Remove KeePassX and replace it with KeePassXC (Closes:
10275 #15297). As KeePassX was used around for a longer time, we don't
10276 need automatic upgrading cappability from old KeePass file
10277 format (Tails 2 times). The user can still import those old
10278 files, if they want to access it.
10279 - Ship a pre-compiled AppArmor policy to make boot faster (Closes:
10281 - Change the splash screen for Tails 4.0 (#16837). Add SVG source
10283 - Remove our predefined bookmarks and ship default upstream Tor
10284 Browser bookmarks instead (Closes: #15895).
10285 - Install bolt for improved Thunderbolt support (Closes: #5463).
10286 - Don't display the Home launcher on the desktop (Closes: #16799).
10287 Since the switch to the desktop-icons GNOME Shell extension, the
10288 nicer XDG-blah name ("Home" in English, translated in many
10289 languages) is not used to label this launcher anymore: instead,
10290 the name of the directory is displayed, in this case: "amnesia",
10291 which makes no sense to our users. Our other options to fix that
10292 are more costly and we've decided a while ago, when I proposed
10293 to remove the desktop icons, to keep them until they were too
10294 expensive to support. So this one goes: we have the Places menu
10296 - Add Files to favorite apps (Closes: #16799). This gives another
10297 entry point to the home folder, which partially mitigates any UX
10298 regression that might be caused by the previous changelog entry.
10299 - Explicitly install imagemagick. We ship it on purpose (see
10300 [[contribute/meetings/201707]]).
10302 * Drop obsolete optional MAT dependencies it isn't using any
10304 * Stop explicitly installing MAT dependencies. The package
10305 depends on those so we don't need to pull them ourselves.
10306 - Move translations from root-terminal.desktop.in into own PO
10307 files (Closes: #15335).
10308 - Drop obsolete live-boot patch: the bug it workarounds only
10309 happens with CONFIG_AUFS_DEBUG enabled. We disable
10310 CONFIG_AUFS_DEBUG in config/chroot_local-hooks/13-aufs and the
10311 Debian package did it as well (Refs: Debian#886329).
10312 - Rename /usr/share/amnesia to /usr/share/tails.
10313 - Drop APT pinning for non-existing live.debian.net, that we
10314 haven't used since 2010.
10315 - Don't install the cryptsetup initramfs integration and startup
10316 scripts (Closes: #16264). We probably only need the binaries.
10317 Not installing the initramfs integration will get rid of some
10319 - Don't install full-blown cryptsetup, take 2 (refs: #15690). We've
10320 stopped installing it (#16264) but this branch independently
10322 - Disable live-tools.service (Closes: #16324). This service is only
10323 useful to display the "Please remove the live-medium, close the
10324 tray (if any) and press ENTER to continue:" prompt on shutdown,
10325 that we don't want to display in Tails: shutdown and memory
10326 erasure should not require a confirmation once the user has
10327 triggered it. In Stretch this code was broken and we were
10328 relying on this. But the Buster upgrade of this code has
10329 repaired it, so I sometimes see that prompt. This might also
10330 explain some issues such as #16312.
10331 - AppArmor: allow cups-brf, driverless, and gutenprint53+usb
10332 printer backends (Closes: #15030). Technically, cups-brf and
10333 driverless are not third-party and should be confined more
10334 strictly with "ixr", under the cupsd profile. But I don't know
10335 how to to test these backends and confining them more strictly
10336 may break them. Anyway, that's an upstream matter: the purpose
10337 of our Tails-specific patch is to replace the third party
10338 backends /usr/lib/cups/backend/* catch all rule, that doesn't
10339 work for us, and not to keep the list of backends which come
10340 with CUPS up-to-date.
10341 - Make export_gnome_env() exit early if gnome-shell isn't running.
10342 Without this e.g. the automated test suite, which will call
10343 export_gnome_env() before gnome-shell is running, will have its
10344 journal polluted with errors about this. This is not the first
10345 time I see this and get worried and waste minutes investigating,
10346 so let's just fix it.
10349 - Bump VM_MEMORY_BASE to 2048M. With the previous 1024M setting,
10350 the squashfs preparation gets OOM-killed.
10351 - Limit the memory used by mksquashfs to 512M (Closes: #16177). By
10352 default mksquashfs will use 25% of the physical memory. So when
10353 we use the "ram" build option, build in a VM with 13GB of RAM,
10354 of which up to 12G is supposed to be used by the build tmpfs,
10355 mksquashfs will try using 13/4 = 3.25G of memory. And then it
10356 will get reaped by the OOM killer more or less occasionally
10357 depending on how much space is really used in the build tmpfs
10358 and how much memory the rest of the system is using. So let's
10359 limit the memory used by mksquashfs to 50% of the memory we
10360 allocate to the build VM, excluding the part of it that we
10361 expect tmpfs data to fill. In passing, the fact mksquashfs does
10362 not get killed every time suggests that our current
10363 BUILD_SPACE_REQUIREMENT value exceeds the real needs of a build:
10364 a value around 10 or 11G should be enough. But that will be for
10366 - Use xz with default settings to compress non-release SquashFS
10367 (refs: #16177). squashfs-tools 1:4.3-11, used to build
10368 feature/buster, does not consistently honor the value passed to
10369 -mem: the xz compressor does but at least the gzip and lzo ones
10370 don't. This makes the build often fail because mksquashfs gets
10371 reaped by the OOM-killer. Our only other option is currently to
10372 bump the build VM memory a lot, which is going to be painful on
10373 developers' systems and might not be an option on Jenkins. So
10374 let's fall back to xz with default settings (not the crazy slow
10375 but efficient we use at release time) when building non-release
10377 - Rename the "gzipcomp" build option to "fastcomp". What matters
10378 in the "user" interface is not the exact algorithm that's used,
10379 it's the fact it's supposed to be faster than the compression
10380 settings we use to build releases. We may have to changes these
10381 fast(er) settings occasionally, possibly to use a non-gzip
10382 algorithm. So let's keep supporting "gzipcomp" for backward
10383 compatibility but stop documenting it. Instead, support and
10384 document "fastcomp".
10385 - Add the vmproxy+extproxy build option. When enabled, use the
10386 vmproxy but configure it to in turn use the exproxy set via the
10387 http_proxy environment variable.
10388 - Support the case when we don't ship a custom AppArmor feature
10389 set. Let's keep this sanity check for the times when we do ship
10390 a custom feature set, but building an ISO without a custom one
10391 should remain supported. (Closes: #15149)
10392 - Don't remove packages whose deinstallation removes most of the
10393 system; don't explicitly remove packages that are taken care of
10394 by "apt-get autoremove" already. On Buster, removing dpkg-dev
10395 or make deinstalls python3, gnome-shell and more.
10396 - Install all "Priority: standard" packages via an explicit
10397 packages list instead of via --tasks (Closes: #15690). This will
10398 make it easier to remove some of these packages from the list of
10399 those that should be installed in the first place, as opposed to
10400 letting them be installed by tasksel only to uninstall them
10401 later. I've seeded tails-000-standard.list with the output of:
10402 tasksel --task-packages standard | sort … run on a clean Buster
10404 * live-build forcibly translates --packages-lists="standard"
10405 into "tasksel install standard", so to make this change
10406 effective we also need to switch to "--packages-lists
10407 minimal" or "--packages-lists none". The former has
10408 problematic side-effects so let's use the latter.
10409 * Add to tails-common.list some of the packages that were
10410 previously installed automatically, e.g. via live-build's
10411 lists/standard → lists/minimal.
10414 - Tons of tiny updates for the Stretch → Buster transition, mainly
10415 updated reference images, but also a few other trivial changes
10416 (e.g. close with Alt+F4 instead of menu, or vice versa) due to
10417 changes in applications.
10418 - Drop test case about migrating from a Jessie-area persistent
10419 volume. If our code happens to support Tails 2.x → 4.x upgrades
10420 without going through 3.x, fine. But let's not spend cycles in
10421 our CI to guarantee this.
10422 - Revert "Test suite: add backward compatibility with redir <
10423 3.0." We don't support running the test suite on Jessie anymore.
10424 - Adjust dhclient listening address for Buster.
10425 - Bump timeout for poweroff from 3 to 10 minutes (Refs: #16312).
10426 - Adjust dogtail patterns for gobby test (Closes: #16335). With the
10427 gobby upgrade from 0.5.0 to 0.6.0 pre-series, the case changed a
10428 little for a menu item and the window it leads to.
10429 - Update key shortcut to close seahorse's Preferences window
10430 (Closes: #16341). The “Close” button is gone from the
10431 Preferences window in the buster version of the seahorse
10432 package, making it impossible to close that window. Switch to
10433 sending ESC instead of Alt-C.
10434 - Update MAT test case for MAT2 (Closes: #16623).
10435 - Add debug logging for when we call Sikuli. When following a
10436 (debug) log live (through `--format debug`) I find this change
10437 useful to know what is going on *right now* since Sikuli only
10438 reports what it has done after it is done.
10439 - Be more careful when finding ASP notifications. For some reason
10440 both the label and button has a "weird" invisible (despite
10441 `showingOnly`) twin located just below the Applications
10442 menu. So let's make some extra effort to actually find the real
10443 notification, and then look for the label and button among its
10445 - Remove obsolete method. Display::take_screenshot() hasn't
10447 - Remove workaround "Desktop icons are sometimes not shown" (Refs:
10449 - Wait longer between search steps in the GNOME Overview. On
10450 jenkins.lizard — which was under high load at that time — I've
10451 seen failures while starting GNOME Terminal from the Overview,
10453 - The debug log claims we did type "c", waited 1 second, then
10454 typed "ommandline", then slept another 1 second, then pressed
10455 Enter. I.e. just as the code says.
10456 - The video shows that GNOME Shell did pick up "c", which
10457 selected the first search result ("Configure Persistent
10458 Volume"), but then there's no trace of typing "ommandline".
10459 So I suspect that "ommandline" was lost because GNOME Shell
10460 was still busy, somehow. Let's sleep a bit longer before
10461 these steps, to give GNOME Shell a better chance to recover
10462 and notice keyboard input.
10463 - Log exceptions thrown in generated (i.e. snapshot) steps (Refs:
10464 #16747). Hopefully this will help us track down these elusive
10466 - Extend waiting time for additional software to be installed.
10467 - Sometimes we need more more time to load a page over tor.
10468 - Remove useless TailsUpgraderApplyingUpgrade.png. The "progress
10469 prompt" it was used for just flashes by and can easily be
10470 missed. There is no reason at all to wait for it since the only
10471 two final outcomes are success or failure, which we already look
10473 - debug_log() when we save/restore snapshots. These actions can
10474 take a long time (especially saving snapshots on a system under
10475 load) and can make it appear like if the test suite has gotten
10476 stuck for those following the debug log.
10477 - Don't rely on mtimes from Debian packages we download, to
10478 indicate which one has the biggest version (Closes: #16819).
10479 These mtimes are copied from the HTTP server where APT downloads
10480 packages from, which contradicts our assumption that the newest
10481 file must be the one with the biggest version. Instead we use ls
10482 to sort by version number, to pick the biggest version.
10483 - Only send TAB every second to get the syslinux kernel
10484 command-line (Closes: #16820). Our syslinux has a timeout of 5s so
10485 sending TAB every second should be enough to guarantee we do
10486 open the kernel command line. As anonym reported, "the spammer
10487 makes the splash show for significantly longer: I've seen >10x,
10488 so the boot splash never managed to appear, which is worrying".
10489 - Drop workaround to make the TAB spammer compatible with the UEFI
10490 firmware (Closes: #16820). As reported by anonym on #16820, and
10491 confirmed by my testing, pressing TAB doesn't seem to open the
10492 UEFI configuration, so the very reason why we had this
10493 workaround is gone.
10495 * Adjustments for Debian 10 (Buster) with no or very little user-visible impact
10496 - Adjust APT sources and pinning for Buster.
10497 - Refresh and unfuzzy patches for Buster.
10498 - Pass --ellipsize to zenity (refs: #16286). This fixes dialog
10499 width and height on Buster.
10500 - Update expected /etc/passwd and /etc/group for Buster.
10501 - Display TopIcons systray on the left of the system menu (Refs:
10503 - Remove apparmor-adjust-freedesktop-abstraction.diff patch,
10504 merged upstream in apparmor. The
10505 9d8b6f4dbd8a04470490ae2bfd52044906abd7f6 commit (first appeared
10506 upstream in apparmor v2.13.1) implements this change in a
10508 - Adjust hook to the fact the Dovecot AppArmor profiles are not
10509 shipped in /etc anymore.
10510 - Import iuk.git's feature/buster branch at commit 919335e
10512 - Enable desktop-icons gnome-shell extension (Closes: #16283).
10513 - Add autostart script to have gnome-shell trust desktop icons
10514 (Closes: #16283). Various conditions must be met for gnome-shell
10515 to make desktop icons launchable, including file
10516 permissions. But the GIO metadata::trusted setting is also
10517 needed, and can apparently only be set from an opened session,
10518 so let's set the right things with an autostart script.
10519 - Drop code that sets the cursor to "WATCH" (hourglass) after
10520 logging in (Closes: #16305) This fixes "GDM's GNOME Shell floods
10521 the Journal with XFIXES/cursor issues on Buster" by importing
10522 the relevant bits of greeter:feature/buster's commit abad17b6.
10523 - Remove 8 development packages that are not part of Tails 3.11 so
10524 we probably don't need to ship them in Tails 4.0 either (Closes:
10526 - Completely get rid of Qt4 (Closes: #15182).
10527 - SSH client: remove obsolete CompressionLevel setting (Closes:
10529 - Removing /usr/share/live/config/xserver-xorg/intel.ids (Closes:
10530 #14991). Let's hope the graphics hardware issues we fixed via
10531 that file is fixed no.
10532 - Adjust Onion Grater and AppArmor configuration for OnionShare
10533 1.3 (Closes: #16306).
10534 - Have OnionShare 1.3 connect to the system Tor via Onion Grater
10535 for the control port (Closes: #16306). By default, OnionShare
10536 1.3 will start its own tor process, which can't possibly work on
10538 - Don't install binutils-* (Closes: #16272). It wasn't in Tails 3.x
10539 and we have no reason to ship it in 4.0.
10540 - Install mat2 instead of the transitional mat package.
10541 - Don't suspend automatically (Closes: #16624)
10542 - tails-additional-software: Adjust arguments to
10543 tails-persistence-setup (Closes: #16622). It seems like the perl
10544 library which previously nicely handled the tps command-line
10545 arguments now doesn't support taking dashes instead of
10546 underscores anymore.
10547 - Start tails-unblock-network in a blocking way (Closes: #16620)
10548 This reverts commit 59e99c51f15ab9e756e287acb03b4d3a91ca1dd2 in
10549 greeter.git. NetworkManager starting at the same time as GNOME
10550 Shell makes things racy: the Wi-Fi password prompt is sometimes
10551 not displayed (unreproduce on Debian Buster Live).
10552 - Patch ibus to fix an issue that prevented the on-screen keyboard
10553 from displaying in Tails Greeter (Closes: #16291).
10554 - oniongrater: give onioncircuits empty STATUS_SERVER events.
10555 Connection to STATUS_SERVER events is required by stem 1.7
10556 connect() function, but we actually don't need them, so let's
10557 suppress them (Closes: #16626).
10558 - Fix GNOME bookmarks file for Buster (Closes: #16629).
10559 - Build VeraCrypt packages with our patches applied for Buster
10561 - Avoid new "render" group stealing a GID we have already
10562 statically allocated to another group (Closes: #16649) With the
10563 systemd 241-1~bpo9+1 → 241-3~bpo9+1 upgrade, udev.postinst now
10564 creates a "render" system group, which shifts GIDs and makes our
10565 devel branch FTBFS.
10566 - update-acng-config: add support for 4.x and 5.x, drop 2.x. We
10567 won't build 2.x releases anymore but we'll start building 4.x
10568 from this branch soon.
10569 - Restore Plymouth theme to "text" (Closes: #16743). The default
10570 theme in Buster ("futureprototype") is Debian-branded and thus
10571 unsuitable for Tails. Let's revert to the one we use in Tails
10573 - Stop installing caribou and libcaribou*: they're not used by
10574 GNOME Shell in Buster anymore (Closes: #16628)
10575 - Allow read access to /etc/machine-id in the AppArmor profile for
10576 Thunderbird (Closes: #16756). It breaks access to the D-Bus
10577 service where the GNOME on-screen keyboard listens on Buster.
10578 - Fix screen locker not working in Buster (Closes: #16763).
10579 - Hide lstopo in the Applications menu (Closes: #16797). It's
10580 pulled as a dependency by aircrack-ng but is probably not useful
10581 to the vast majority of Tails users.
10582 - Hide nm-connection-editor in the Applications menu (Closes:
10583 #16798). We still need the network-manager-gnome package that
10584 installs this .desktop file (for details, see
10585 commit:40290be3651eaa6f08346231aef80eddd8b33c64), but there's no
10586 reason to expose it directly to users.
10587 - TorStatus: call our custom destructor to avoid a use-after-free
10588 crashing GNOME Shell (Closes: #16791). It was ported to an ES6
10589 class in the process.
10590 - Copy dmidecode to initramfs (Closes: #16857). On Buster,
10591 partprobe complains if dmidecode is missing. It's not clear what
10592 the consequences are, at least it doesn't cause partprobe to
10593 exit with an error status code - but it's cheap to just copy
10594 dmidecode to the initramfs.
10595 - Adjust path for webext-ublock-origin 1.19.0+dfsg-2 (Closes:
10597 - Update Tor Browser AppArmor profile to take into account new
10598 uBlock installation path (Closes: #16858).
10599 - Disable the uBlock logger sidebar. This brings back
10600 the hack we had before we removed it in #16206. Without this,
10601 the uBlock logger sidebar is displayed.
10602 - Reintroduce the same APT pinning as we use in 3.x for uBlock.
10603 Granted, the version from Buster should probably be sufficient
10604 right now, but it probably won't be once Tor Browser gets
10605 updated to a future major Firefox ESR. And in the meantime,
10606 this pinning discrepancy between devel and feature/buster makes
10607 it harder to maintain our patch against
10608 /usr/share/webext/ublock-origin/js/background.js.
10609 - Drop obsolete libdesktop-notify-perl patches: they were merged
10611 - Use X.Org in amnesia's GNOME session (Closes: #12213). Since a
10612 few months gdm3 defaults to Wayland in Debian testing/sid, just
10613 like upstream. But we're not ready yet.
10614 - Adjust Greeter's gdm-tails.session for Buster (Closes:
10615 #12551). This should ultimately be applied in greeter.git, but
10616 let's deal with it as a patch for now to avoid having to
10617 maintain two parallel branches of the Greeter.
10618 - Patch udisks2 and libblockdev and fix Tails Installer to repair
10619 USB boot on Buster (Closes: #14809).
10620 - Install gnome-user-docs directly instead of the gnome-user-guide
10621 transitional package.
10622 - Install the "crypto" libblockdev plugin (Closes: #14816). It's
10623 needed by recent udisks to do crypto operations.
10624 - Use ConditionUser=1000 instead of manually testing the output of
10625 `id -u' in some of our systemd services.
10626 - Have debootstrap install gnupg when setting up the chroot.
10627 Otherwise the build fails after debootstrap has done its job and
10628 live-build tries to use apt-key.
10629 - Don't try to install the obsolete gnome-search-tool package.
10630 It's been removed from testing/sid by its maintainers:
10631 https://bugs.debian.org/885975
10632 - Don't try to retrieve syslinux.exe from the syslinux source
10633 package. Since syslinux 3:6.03+dfsg1-1 this file is (rightfully)
10634 not included anymore in the Debian source package. This commit
10635 is meant to fix the feature/buster ISO build. We of course need
10636 to find a proper solution, which is what #15178 is about.
10637 - Drop our pinned AppArmor feature set (Closes: #15149). On current
10638 Buster the AppArmor package pins to the Linux 4.14.13-1 feature
10639 set and I expect it'll keep pinning something that should work
10640 with the policy shipped in Buster.
10641 - Drop Stretch-specific workaround. This essentially workarounds
10642 4f8b50afb10a1ce1faf7645971bc020d2eb5d7dd,
10643 3e2d8a6a025b86f8191d125783ad507c57171bad and
10644 d56633a3089e5b177e07c2888442745557772f42.
10645 - Disable the usr.bin.man AppArmor profile. On Buster it breaks
10646 apparmor.service due to "profile has merged rule with
10647 conflicting x modifiers" that's most likely caused by the "/**
10648 mrixwlk" rule vs. our tweaks for aufs support.
10649 - Import files (from gksu 2.0.2-9+b1) needed for the Root Terminal
10650 into Git instead of fetching the package and extracting them at
10652 - Use orca's current package name instead of pre-Buster
10654 - Stop explicitly installing gstreamer1.0-pulseaudio. This was
10655 needed on Jessie due to Debian#852870 which was fixed in
10657 - Drop adwaita-qt4: it was removed from Debian sid and won't be in
10659 - Disable man-db.timer on Buster (Closes: #16631)
10660 - Fix invalid seq range in update-acng-config so we geberate proper
10661 rules for Tails 4.x and 5.x.
10663 -- Tails developers <tails@boum.org> Wed, 07 Aug 2019 20:30:15 +0200
10665 tails (3.16) unstable; urgency=medium
10668 - Upgrade Tor Browser to 8.5.5 (Closes: #16692).
10671 - Install Linux kernel from the Buster security repository (Closes: #16970).
10672 The new Spectre v1 swapgs variant (CVE-2019-1125), which was fixed
10673 in sid via 5.2.x, which is a too big change for the Tails 3.16 bugfix
10674 release. Let's instead track Buster (+ security) for the time being.
10675 - Upgrade LibreOffice to 1:5.2.7-1+deb9u10 (DSA-4483-1, DSA-4501-1).
10676 - Upgrade Thunderbird to 60.8 (DSA-4482-1).
10677 - Upgrade Ghostscript to 9.26a~dfsg-0+deb9u4 (DSA-4499-1).
10678 - Upgrade Patch to 2.7.5-1+deb9u2 (DSA-4489-1).
10679 - Upgrade nghttp2 library to 1.18.1-1+deb9u1 (DSA-4511-1).
10682 - Additional software: Improve/fix support for translations (Closes: #16601).
10683 - Rework the implementation for hiding TailsData partitions (Closes: #16789).
10684 - Adjust how tordate determines whether the clock is in a valid range,
10685 fixing issues with obfs4 (Closes: #16972).
10687 * Minor improvements and updates
10688 - Ship default upstream Tor Browser bookmarks, and remove our predefined
10689 bookmarks (Closes: #15895).
10690 - Hide the security level button in the unsafe browser (Closes: #16735).
10691 - Remove pre-generated Pidgin accounts (Closes: #16744).
10692 - Remove LibreOffice Math (Closes: #16911).
10693 - Website: Make sandbox page translatable (Closes: #16873).
10694 - Website: Only scrub HTML on blueprints (Closes: #16901).
10695 - Website: Point history & diff URLs to Salsa.
10698 - Bump APT snapshot of the torproject archive to 2019073103, and drop
10699 tor-experimental-0.4.0.x-stretch reference (Closes: #16883).
10700 - Bump APT snapshot of the Debian archive to 2019080801 to get fixed
10701 firmware packages from sid instead of sticking to those from
10702 stretch-backports (Closes: #16728).
10703 - Enable the buster APT repository and install some packages from there:
10704 hunspell-id, hunspell-tr, and fonts-noto-* (See: #16728).
10705 - Refresh patch for webext-ublock-origin 1.19.0+dfsg-2, and adjust Tor
10706 Browser AppArmor profile accordingly (Closes: #16858).
10707 - Refresh Tor Browser AppArmor profile patch for torbrowser-launcher
10708 0.3.2-1 (Closes: #16941).
10711 - Ignore RARP packets, since PacketFu cannot parse them (Closes: #16825).
10712 - Adjust both locale handling and reference pictures for the Unsafe
10713 Browser homepage (Closes: #17004).
10714 - Fix "Watching a WebM video over HTTPS" scenario on Jenkins
10716 - Tag "Watching a WebM video" as fragile.
10717 - Make @check_tor_leaks more verbose (See: #10442).
10718 - Remove broken Electrum scenario since Electrum support is currently
10719 missing (Closes: #16421).
10721 -- Tails developers <tails@boum.org> Tue, 03 Sep 2019 20:30:14 +0200
10723 tails (3.15) unstable; urgency=medium
10726 - Upgrade Tor Browser to 8.5.4 (Closes: #16691).
10727 - Upgrade Thunderbird to 60.7.2 (Closes: #16834).
10730 - Upgrade Expat to 2.2.0-2+deb9u2 (DSA-4472-1).
10731 - Upgrade OpenSSL 1.0 to 1.0.2s-1~deb9u1 (DSA-4475-1).
10732 - Upgrade OpenSSL to 1.1.0k-1~deb9u1 (DSA-4475-1).
10733 - Upgrade Vim to 2:8.0.0197-4+deb9u3 (DSA-4467-1).
10736 - Recompute CHS values for the hybrid MBR after first-boot
10737 repartitioning (Closes: #16389). Some legacy BIOS systems won't boot
10739 - Strip debug symbols from the aufs kernel module smaller (refs: #16818).
10740 The primary target was getting the initramfs down under 32MB, hoping
10741 to repair boot of feature/buster on MacBookPro 8,1. In any cases,
10742 the user experience should be improved due to a faster boot for
10743 every user, and a shortened “black screen” duration (between the
10744 bootloader and the Plymouth splash screen).
10746 * Minor improvements and updates
10747 - Make “Unlock VeraCrypt Volumes” show an error message if locking
10748 fails (Closes: #15794).
10749 - Add support for booting Tails from a read only sdcard (fromiso),
10750 through Heads, allowing for measured boot on some tamper-evident
10751 hardware (https://github.com/osresearch/heads/issues/581).
10754 - Patch Thunderbird packages from Debian when building Tails images
10756 - Improve tooling to maintain and update PO files (Closes: #15403),
10757 rewriting some tools and moving code to the jenkins-tools submodule.
10758 - Implement preliminary steps needed to make the ikiwiki PO plugin
10759 able to update PO files for languages that are disabled on the
10760 website (refs: #15355).
10762 -- Tails developers <tails@boum.org> Tue, 09 Jul 2019 02:50:09 +0200
10764 tails (3.14.2) unstable; urgency=medium
10767 - Upgrade Tor Browser to 8.5.3 (Closes: #16835).
10770 - tails-screen-locker: Don't use dim-label style class
10773 -- Tails developers <tails@boum.org> Sun, 23 Jun 2019 11:52:49 +0200
10775 tails (3.14.1) unstable; urgency=medium
10778 - Upgrade Tor Browser to 8.5.2-build1 (Closes: #16824).
10779 - Upgrade Thunderbird to 60.7.0 (Closes: #16742).
10780 - Upgraded Linux to 4.19.37-4 (Closes: #16823).
10783 - Only probe for partitions on the boot device when setting up
10784 TailsData. Without arguments partprobe will scan all devices,
10785 and if it encounters a device it doesn't support (e.g. fake
10786 raid-0 arrays) it will return non-zero, thus aborting Tails'
10787 partitioning script, resulting in an unbootable install
10790 * Minor improvements and updates
10791 - Upgrade tor to 0.4.0.5-1~d90.stretch+1, the first stable
10792 candidate in the 0.4.0.x series (Closes: #16687).
10793 - Completely disable IPv6 except for the loopback interface. We
10794 attempt to completely block it on the netfilter level but we
10795 have seen ICMPv6 "leaks" any way (related to Router
10796 Solicitation, see: #16148) so let's just disable it. We keep
10797 enabled on the loopback interface since some services depends on
10799 - create-usb-image-from-iso: Use syslinux from chroot. We used the
10800 syslinux from the vagrant box before, which caused issues with
10801 when building Tails/Buster with a Stretch vagrant box and then
10802 cloning the image via Tails Installer with syslinux from Buster
10804 - Set Tor Browser's homepage to https://tails.boum.org/home/testing/
10805 if building anything but a stable release. This page explains the
10806 dangers of using a non-stable release. (Closes: #12003)
10809 - auto/{build,config}:
10810 * consistently use fatal() to error out, and prefix its message
10811 with "E: " to help distinguish them from the noise produced by
10813 * Similarly, also prefix informational message with "I: ".
10814 * drop support for GnuPG 1.x.
10815 * clone more build output to the log file.
10816 * Drop obsolete check for syslinux version. This version
10817 requirement is satisfied by Jessie and it is doubtful Tails
10818 would build in anything older.
10819 * auto/build: drop a few checks for conditions that are already
10820 satisfied in the supported build environments.
10821 - Revert "Build system: try to be smart again by fetching only the
10822 refs we need." This optimization overrides the trick we have on
10823 Jenkins (set_origin_base_branch_head in
10824 jenkins-jobs:macros/builders.yaml),
10825 that ensures that a reproducibly_build_Tails_ISO_* job builds
10826 from the commit used by the first build. (Closes: #16730)
10829 - Fix mistake with execute() vs spawn() when starting the upgrader.
10830 - Don't filter during pcap capture, instead let's just apply the
10831 same filtering when we are inspecting the pcap files. This way
10832 any pcap file saved on failure will include the full capture,
10833 and not just the packets sent by the system under testing, which
10834 sometimes makes it hard to understand what is going on.
10835 - Also include the content of /var/log/tor/log in $scenario.tor
10836 when tor failed to bootstrap (refs: #16793)
10837 - Don't flood the debug logger with tor@default's journal
10839 - Power off system under testing after scenario. Until now we have
10840 relied on either one of the generated "snapshot restore" steps
10841 or the "[Given] a computer" step to implicitly stop the old VM
10842 when we move on to a new scenario. That meant the old VM was
10843 still running during the new scenarios @Before@ hooks. If the
10844 new scenario is tagged @check_tor_leaks that means we start its
10845 sniffer while the old VM is still running, possibly sending
10846 packets that then affect the new scenario. That would explain
10847 some myserious "Unexpected connections were made" failures we
10848 have seen (Closes: #11521).
10849 - Only accept IP(v6)/ARP during DHCP check.
10851 -- Tails developers <tails@boum.org> Wed, 19 Jun 2019 15:29:07 +0200
10853 tails (3.14) unstable; urgency=medium
10856 - Upgrade Linux to 4.19.0-5 from sid (Closes: #16708).
10857 - Enable all available mitigations for the Microarchitectural Data
10858 Sampling (MDS) attacks and disable SMT on vulnerable CPUs
10860 - Upgrade Tor Browser to 8.5 (Closes: #16337, #16706).
10863 - Install Electrum 3.2.3-1 from our custom APT repository (Closes: #16708).
10864 The version in sid now displays a warning and exits, while 3.2.3-1 is
10865 still usable, in the rare cases when it manages to connect to the
10866 network, despite being affected by problematic phishing attacks which
10867 will only be solved once the package in Debian is updated to a newer
10871 - Bump APT snapshot of the 'debian' archive to 2019051601, needed for
10872 the MDS mitigations.
10873 - Don't install the firmware-linux and firmware-linux-nonfree
10874 metapackages, as packages they pulled are already listed explicitly
10875 and one might run into version-related issues (Closes: #16708).
10877 * Minor improvements and updates
10878 - Remove some packages from the Tails image as their use is not
10879 widespread while consuming space for everyone. They can still be
10880 installed and upgraded through Additional Software (Closes: #15291).
10881 This includes: monkeysphere and msva-perl, gobby, hopenpgp-tools,
10882 keyringer, libgfshare-bin, monkeysign, paperkey, pitivi,
10883 pdf-redact-tools, pwgen, traverso, and ssss.
10884 - Fix missing translations in the Greeter (Closes: #13438).
10885 - Fix missing newline in unlock-veracrypt-volumes (Closes: #16696).
10886 - Port fillram to Python 3 (Closes: #15845).
10887 - Enable localization for new locales introduced in Tor Browser 8.5
10889 - Re-introduce TopIcons GNOME Shell extension (Closes: #16709).
10890 - Improve internationalization of the Unlock VeraCrypt Volumes
10891 component (Closes: #16602).
10894 - Make tails-security-check's SOCKS port test work when there's a live
10895 security advisory (Closes: #16701).
10896 - Make terminology more consistent.
10898 -- Tails developers <tails@boum.org> Mon, 20 May 2019 18:52:04 +0200
10900 tails (3.13.2) unstable; urgency=medium
10903 - Replace all locale-specific fonts and standard X.Org fonts with
10904 the Noto fonts collection (Closes: #9956).
10905 - Install localization support packages for all tier-1 supported languages,
10906 and only those (Closes: #15807). Current tier-1 supported languages are:
10907 Arabic, German, English, Spanish, Farsi, French, Italian, Portuguese
10908 (Brazil), Russian, Turkish, Simplified Chinese, Hindi, Indonesian.
10909 - Disable the TopIcons GNOME Shell extension (Closes: #16608).
10910 This extension causes crashes (#11188), does not work on Wayland
10911 (#8309, #12213) so long-term, we need to remove it anyway.
10912 In order to learn how much our users rely on this extension and
10913 on OpenPGP Applet, let's disable this extension for one Tails release.
10914 While TopIcons is disabled (by default):
10915 · Users can still use OpenPGP Applet via the system tray in the bottom
10916 left corner of the desktop.
10917 · Users who do need TopIcons for other reasons can enable it again
10918 with 1 command line.
10921 - Upgrade Tor Browser to 8.0.9 (Closes: #16694).
10922 - Upgrade to Debian Stretch 9.9 (Closes: #16670).
10923 - Upgrade Thunderbird to 60.6.1 (Closes: #16641).
10926 - Fix Thunderbird account setup wizard (Closes: #16573).
10927 - Display poweroff and reboot buttons even when locked (Closes: #15640).
10928 - Disable emergency shutdown during suspend (Closes: #11729).
10929 - Provide feedback while starting Onion Circuits (Closes: #16350).
10930 - Associate .key files with Seahorse (Closes: #15213).
10931 This partially fixes importing OpenPGP keys from GNOME Files.
10932 - Don't show spurious notification about "TailsData" while setting
10933 up a persistent volume (Closes: #16632).
10935 * Minor improvements and updates
10936 - Add a suspend button to status-menu-helper (Closes: #14556).
10937 - status-menu-helper: clean up and refactor.
10938 - Drop CSS hacks for the uBlock log window (Closes: #16206).
10939 - Polish 04-change-gids-and-uids code style (Closes: #16322).
10940 - Create persistence.conf backup in a more robust manner (Closes: #16568).
10941 - Make the WhisperBack .desktop file translatable in Transifex
10945 - Don't fail the build if Tor Browser supports new locales that we don't ship
10946 a spellchecking dictionary for (#15807).
10947 - Fix apt-cacher-ng cache shrinking (Closes: #16020).
10948 - Remove obsolete usr.bin.onioncircuits AppArmor profile (Closes: #12170).
10949 All Tails current branches now install onioncircuits 0.6-0.0tails1,
10950 which ships a more current AppArmor profile than the one we
10951 have in our own Git tree.
10952 - Install Electrum from sid (Closes: #16642).
10953 - Avoid new "render" group stealing a GID we have already statically
10954 allocated to another group (Closes: #16649).
10957 - Disable tests about notifications in case of MAC spoofing failure:
10958 we have a well-known bug here and these tests do nothing but confirm
10959 it again and again, which brings no value and has a cost (#10774).
10960 - Clarify what WebM scenarios are fragile (#10442).
10961 - Avoid zombies by waiting for killed child processes to exit (#14948).
10963 -- Tails developers <tails@boum.org> Sun, 05 May 2019 19:32:22 +0000
10965 tails (3.13.1) unstable; urgency=medium
10968 - Upgrade Tor Browser to 8.0.8 (Closes: #16606, MFSA-2019-10).
10969 - Upgrade NTFS-3G to 1:2016.2.22AR.1+dfsg-1+deb9u1 (DSA-4413-1).
10971 -- Tails developers <tails@boum.org> Fri, 22 Mar 2019 20:54:03 +0000
10973 tails (3.13) unstable; urgency=medium
10976 - Upgrade Linux to 4.19.28-1 (Closes: #16390, #16469, #16552).
10977 - Upgrade Tor Browser to 8.0.7 (Closes: #16559).
10978 - Upgrade Thunderbird to 65.1.0 (Closes: #16422).
10981 - Upgrade LDB to 2:1.1.27-1+deb9u1 (DSA-4397-1).
10982 - Upgrade OpenJPEG to 2.1.2-1.1+deb9u3 (DSA-4405-1).
10983 - Upgrade OpenSSL 1.0 to 1.0.2r-1~deb9u1 (DSA-4400-1).
10984 - Upgrade OpenSSH to 1:7.4p1-10+deb9u6 (DSA-4387-2).
10987 - Upgrade tor to 0.3.5.8-1~d90.stretch+1 (Closes: #16348).
10988 - Ensure Additional Software doesn't try to download packages that are
10989 in persistent cache (Closes: #15957).
10990 - Improve chances of recovering a lost persistence configuration
10992 - Tor Launcher: add langpacks to enable localization again
10994 - Migrate away from buggy Chinese input method: switch from ibus-pinyin
10995 to ibus-libpinyin + ibus-chewing (Closes: #11292).
10996 - Fix crash in Whisperback when additional persistent APT repositories
10997 are configured (Closes: #16563).
10998 - Give visual feedback while starting Whisperback (Closes: #16333).
11000 * Minor improvements and updates
11001 - Add feedback when opening VeraCrypt Mounter (Closes: #16334).
11002 - Improve consistency in Additional Software's accessibility
11004 - Fix missing accessibility support when opening a browser from a
11005 notification (Closes: #16475).
11006 - Refresh ublock-origin patch to apply cleanly on top of 1.18.4+dfsg-1
11008 - Upgrade intel-microcode to 3.20180807a.2~deb9u1.
11009 Fixes CVE-2018-3615, CVE-2018-3620, CVE-2018-3646, CVE-2018-3639,
11010 CVE-2018-3640, CVE-2017-5753, CVE-2017-5754.
11013 - Lower memory requirements when building Tails by limiting the memory
11014 used by mksquashfs to 512M (Closes: #16177).
11015 - Remove obsolete check on Thunderbird addons (Closes: #16045).
11016 - Update Tails' APT GnuPG key expiration (Closes: #16420).
11017 - Optimize Git operations (share resources, fetch only the needed
11019 - Clone submodules from the host's local repositories (Closes: #16476).
11020 - Drop useless manual initramfs update (Closes: #16452).
11021 - Add a sanity check on the size of the initramfs (Closes: #16452).
11024 - Add automated tests for Additional Software GUI (Closes: #14576,
11026 - Add automated tests on the backup persistence configuration
11028 - Adjust test for Thunderbird 60.5.1 (Closes: #16555).
11030 -- Tails developers <tails@boum.org> Mon, 18 Mar 2019 23:40:50 +0100
11032 tails (3.12.1) unstable; urgency=medium
11035 - Upgrade Tor Browser to 8.0.6 (MFSA-2019-05; Closes: #16437).
11036 - Upgrade LibreOffice to 1:5.2.7-1+deb9u5 (DSA-4381).
11037 - Upgrade cURL to 7.52.1-5+deb9u9 (DSA-4386).
11038 - Upgrade Qt 5 to 5.7.1+dfsg-3+deb9u1 (DSA-4374).
11039 - Upgrade OpenSSH to 1:7.4p1-10+deb9u5 (DSA-4387).
11041 -- Tails developers <tails@boum.org> Tue, 12 Feb 2019 21:25:14 +0100
11043 tails (3.12) unstable; urgency=medium
11046 - Make the USB image the main supported way to install Tails (refs: #15292).
11047 On first boot, grow the system partition to a size that's a factor
11048 of the size of the boot medium and randomize GUIDs (Closes: #15319).
11049 - Upgrade Linux to 4.19, version 4.19.13-1 (Closes: #16073, #16224).
11050 Fixes CVE-2018-19985, CVE-2018-19406, CVE-2018-16862, CVE-2018-18397,
11051 CVE-2018-18397, CVE-2018-18397, CVE-2018-18397, CVE-2018-19824,
11053 - Remove Liferea (Closes: #11082, #15776).
11054 - Upgrade to the Debian Stretch 9.6 point-release.
11057 - Upgrade Tor Browser to 8.0.5 (MFSA-2019-02; Closes: #16388).
11058 - Upgrade Thunderbird to 60.4.0 (DSA-4362-1; Closes: #16261).
11059 - Upgrade OpenSSL to 1.0.2q-1~deb9u1 (DSA-4355-1).
11060 - Upgrade libarchive to 3.2.2-2+deb9u1 (DSA-4360-1).
11061 - Upgrade GnuTLS to 3.5.8-5+deb9u4 (CVE-2018-10844, CVE-2018-10845).
11062 - Upgrade libgd3 to 2.2.4-2+deb9u3 (CVE-2018-1000222, CVE-2018-5711).
11063 - Upgrade libmspack to 0.5-1+deb9u3 (CVE-2018-18584, CVE-2018-18585).
11064 - Upgrade libopenmpt to 0.2.7386~beta20.3-3+deb9u3 (CVE-2018-10017).
11065 - Upgrade libx11 to 2:1.6.4-3+deb9u1 (CVE-2018-14598, CVE-2018-14599,
11067 - Upgrade libxcursor to 1:1.1.14-1+deb9u2 (CVE-2015-9262).
11068 - Upgrade NetworkManager to 1.6.2-3+deb9u2+0.tails1 (CVE-2018-15688).
11069 - Upgrade wpa to 2:2.4-1+deb9u2 (CVE-2018-14526).
11070 - Upgrade zeromq3 to 4.2.1-4+deb9u1 (CVE-2019-6250).
11071 - Upgrade APT to 1.4.9 (DSA-4371-1).
11072 - Upgrade GhostScript to 9.26a~dfsg-0+deb9u1 (DSA-4372-1).
11075 - Fix Totem's access to the Internet when it's started from the Applications
11077 - Rename HTP pools to avoid confusion (Closes: #15428).
11078 - Fix memory erasure on shutdown with systemd v239+, by mounting
11079 a dedicated tmpfs on /run/initramfs instead of trying to remount /run
11080 with the "exec" option (Closes: #16097).
11081 - Make the KeePassX wrapper dialog translatable.
11082 - Fix detection of first Thunderbird run.
11084 * Minor improvements and updates
11085 - Upgrade tor to 0.3.4.9-1~d90.stretch+1.
11086 - Upgrade Mesa to 18.2.6-1~bpo9+1, libdrm to 2.4.95-1~bpo9+1,
11087 and libglvnd to 1.1.0-1~bpo9+1.
11088 - Upgrade firmware-linux and firmware-nonfree to 20190114-1.
11089 - Upgrade amd64-microcode to 3.20181128.1.
11090 - Upgrade intel-microcode to 3.20180807a.2~bpo9+1.
11091 - Remove the boot readahead feature (Closes: #15915).
11092 In most supported use cases, it did not improve boot time anymore,
11093 or even increases it.
11094 - Require TLS 1.2 in our Upgrader and tails-security-check (Closes: 11815).
11095 - Enable O_CREAT restriction in /tmp directories for FIFOs and regular
11096 files (Closes: #16072).
11097 - Upgrade systemd to 240-4~bpo9+0tails1 (Closes: #16352).
11098 Fixes CVE-2018-16864, CVE-2018-16865, and CVE-2018-16866.
11099 - Upgrade Enigmail to 2.0.8-5~deb9u1 (Closes: #15657).
11100 - Upgrade Torbirdy to 0.2.6-1~bpo9+1 (Closes: #15661).
11101 - Modify Torbirdy configuration in a way that's easier to maintain.
11102 - Tell the user they need to use sudo when they attempt to use su
11106 - Make the build of the USB image reproducible (Closes: #15985).
11107 - Allow specifying which set of APT snapshots shall be used during
11108 the build, with the APT_SNAPSHOTS_SERIALS build option (Closes: #15107).
11109 - Fix more GIDs and display more information when changing UIDs or GIDs
11110 fails (Closes: #16036).
11111 - Remove obsolete patches, refresh remaining ones to apply on top
11112 of currently installed packages version.
11113 - Disable irrelevant recurring jobs in Vagrant build box (refs: #16177)
11114 that increase the chance of FTBFS due to mksquashfs being reaped
11116 - Adjust for recent GnuPG error'ing out when it has no controlling terminal.
11119 - Adjust test suite for USB image:
11120 - Add tests that exercise behavior on first boot from a device
11121 installed using the USB image (Closes: #16003).
11122 - Drop tests for use cases we don't support anymore with the introduction
11123 of the USB image (refs: #16004).
11124 - Adjust remaining tests to focus on main supported use cases,
11125 i.e. Tails installed from a USB image (refs: #16004.
11126 - In scenarios where we simulate MAC spoofing failure, test safety-critical
11127 properties even if the desktop notification is buggy (refs: #10774).
11128 - Update expected title for our Redmine (Closes: #16237).
11129 - Update expected image for OpenPGP key search.
11131 -- Tails developers <tails@boum.org> Mon, 28 Jan 2019 13:26:26 +0100
11133 tails (3.11) unstable; urgency=medium
11136 - Upgrade Tor Browser to 8.0.4-build2 (Closes: #16193).
11137 - Upgrade Thunderbird to 60.3.0-1~deb9u1.0tails1 (Closes: #16118).
11138 - Thunderbird: unconditionally disable Autocrypt, as it is not safe in
11139 its current state (See: #15923, Closes: #16186).
11140 - Upgrade Linux to 4.18.20 and aufs to 4.18.11+-20181119
11142 - Upgrade cURL to 7.52.1-5+deb9u8 (DSA-4331).
11143 - Upgrade Ghostscript to 9.26~dfsg-0+deb9u1 (DSA-4336, DSA-4346).
11144 - Upgrade Perl to 5.24.1-3+deb9u5 (DSA-4347).
11145 - Upgrade Policykit to 0.105-18+deb9u1 (DSA-4350).
11146 - Upgrade Samba to 2:4.5.12+dfsg-2+deb9u4 (DSA-4345).
11147 - Upgrade OpenSSL to 1.1.0j-1~deb9u1 (DSA-4348).
11148 - Upgrade libtiff to 4.0.8-2+deb9u4 (DSA-4349).
11152 · Improve support for incremental upgrades to avoid issues with
11153 partially applied upgrades (Closes: #14754).
11154 · Add a prompt after the IUK has been downloaded so the user can
11155 control when the network will be disabled; previously this was
11156 done without users having a say, possibly leading to confusion and
11157 lost work (Closes: #15282).
11158 - Thunderbird: always set locale according to environment (Closes: #16113).
11160 * Minor improvements and updates
11161 - Remove packages which were needed for getTorBrowserUserAgent
11163 - Fix persistence configuration window opening on full screen
11165 - Time sync: don't temporarily increase tor's log level when using
11166 bridges/PTs (Closes: #15743).
11167 - Warn about non-free software depending on the host operating system
11168 and/or virtualization stack (Closes: #16195).
11171 - Create USB image after building the ISO, and include it in build
11172 artifacts (Closes: #15984, #15985, #15990).
11173 - Release process: adapt to IDF v2 (Closes: #16171).
11176 - Add new Using "VeraCrypt encrypted volumes" feature, with scenarios
11177 split into two parts: "Unlock VeraCrypt Volumes" and "GNOME Disks"
11178 (Closes: #14469, #14471, #15238, #15239).
11179 - Reintroduce "Clock is one day in the future in bridge mode" test
11181 - Make starting apps via GNOME Activities Overview more robust
11183 - Check for "Upgrading the system" and adjust to "Upgrade successfully
11184 downloaded" new UI (See: #14754, #15282).
11186 -- Tails developers <tails@boum.org> Mon, 10 Dec 2018 20:37:06 +0100
11188 tails (3.10.1) unstable; urgency=medium
11190 * Declare that Enigmail is compatible with Thunderbird 60.*.
11192 -- Tails developers <tails@boum.org> Tue, 23 Oct 2018 01:30:00 +0200
11194 tails (3.10) unstable; urgency=medium
11197 - Harden sudo config to avoid potential future privilege escalation
11199 - Upgrade Linux to 4.18 and aufs to 4.18-20181008 (Closes: #15936).
11200 - Upgrade the snapshot of the Debian archive to 2018100901 accordingly.
11201 - Upgrade Tor Browser to 8.0.3-build1 (Closes: #16067).
11202 - Upgrade Thunderbird to 60.2.1 (Closes: #16037).
11205 - Fix installation of mesa/stretch-backports by installing libwayland*
11206 from stretch-backports (Closes: #15846).
11207 - Tor Browser AppArmor profile patch: update to apply cleanly on top
11208 of torbrowser-launcher 0.2.9-5.
11209 - Additional Software: fix issues spotted during the code review
11211 - Additional Software: make sure to offer persistence only for newly
11212 installed packages, avoiding inconsistency (Closes: #15983).
11213 - Improve button labels in confirmation dialogs of the Tails installer
11215 - Hardcode User Agent in htpdate.user-agent (Closes: #15912), as the
11216 Tor Browser doesn't expose it anymore.
11217 - Fix encoding-related crashes in Tails Installer (Closes: #15166).
11218 - Set the Firefox preferences to spoof English, to avoid leaking
11219 information about locale settings (Closes: #16029).
11220 - VeraCrypt: Hide PIM entries in GNOME Shell and Disks, since a newer
11221 cryptsetup would be needed (Closes: #16031).
11222 - VeraCrypt: Fix support for multiple encryption, by iterating over
11223 all children in the device-mapper tree (Closes: #15967).
11224 - Update translations.
11226 * Minor improvements and updates
11227 - Add dmsetup and losetup output in WhisperBack reports to help debug
11228 VeraCrypt-related issues (Closes: #15966).
11229 - Let AppArmor allow access to /usr/local/share/mime, reducing noise
11230 in logs due to many DENIED entries (Closes: #15965).
11231 - Use proper stem.connection module in onion-grater instead of trying
11232 to read the auth cookie manually: that's fragile and breaks some use
11233 cases (e.g. custom auth cookie).
11234 - Unlock VeraCrypt Volumes: Improve internationalization support.
11237 - Ensure the test suite doesn't break when changing the headline of
11238 /home (Closes: #12156).
11239 - Update test suite for updated button labels in confirmation dialogs
11240 of the Tails installer (Closes: #11501).
11242 -- Tails developers <tails@boum.org> Tue, 23 Oct 2018 01:30:00 +0200
11244 tails (3.9.1) unstable; urgency=medium
11247 - Upgrade Tor Browser to 8.0.2, based on Firefox 60.2.1 (Closes: #16017).
11248 - Upgrade Thunderbird to 60.0-3~deb9u1.0tails2 (Closes: #15959). Also
11249 imported the same security fixes that caused Tor Browser 8.0.2.
11250 - Upgrade curl to 7.52.1-5+deb9u7 (DSA-4286).
11251 - Upgrade Ghostscript to 9.20~dfsg-3.2+deb9u5 (DSA-4294).
11252 - Upgrade libarchive-zip-perl to 1.59-1+deb9u1 (DSA-4300).
11253 - Upgrade libkpathsea6 to 2016.20160513.41080.dfsg-2+deb9u1 (DSA-4299).
11254 - Upgrade LittleCMS 2, aka. liblcms2-2, to 2.8-4+deb9u1 (DSA-4284).
11255 - Upgrade Python 2.7 to 2.7.13-2+deb9u3 (DSA-4306).
11256 - Upgrade Python 3.5 to 3.5.3-1+deb9u1 (DSA-4307).
11259 - Make Thunderbird translated in non-English locales via
11260 intl.locale.requested, which works correctly since 60.0-3
11262 - Totem: backport AppArmor profile fix to allow opening the help
11264 - Remove mutt, that was accidentally installed in 3.9 (Closes: #15904).
11265 - Fix VeraCrypt volumes not being opened in GNOME Files (Closes: #15954).
11266 - Fix displaying the "General" section in the Tor Browser preferences
11268 - Fix APT pinning at Tails runtime for our custom APT repository
11269 and for Debian backports (Closes: #15837, #15973).
11271 * Minor improvements and updates
11272 - Upgrade tor to 0.3.4.8-1~d90.stretch+1 (Closes: #15889).
11274 -- Tails developers <tails@boum.org> Wed, 03 Oct 2018 12:12:33 +0200
11276 tails (3.9) unstable; urgency=medium
11279 - Upgrade Tor Browser to 8.0 (Closes: #15803, #15907).
11280 Notable user-visible changes and relevant details:
11281 · Adjust to the fact Tor Browser 8.0a10 replaces firefox with a wrapper.
11282 · Don't use the bundled copy of libstdc++.so.6, ours is recent enough.
11283 · Drop obsolete Torbutton prefs (Closes: #15706).
11284 · Switch back to 128px icons (Closes: #15081).
11285 · AppArmor profile: take into account new Firefox binary path.
11286 - Upgrade Thunderbird to 60.0 (Closes: #15792).
11287 Notable user-visible changes and relevant details:
11288 · AppArmor profile: patch to avoid conflicting x modifiers for ps(1).
11289 - Upgrade tor to 0.3.4.7-rc (Closes: #15772).
11292 - Upgrade Linux to 4.17.17-1 and intel-microcode to 3.20180807a.1
11293 This fixes CVE-2018-3620 aka. Foreshadow aka. L1 Terminal Fault
11295 - Upgrade OpenSSH to 1:7.4p1-10+deb9u4 (DSA-4280).
11298 - Fix Totem on Intel graphics cards by inlining the backported mesa
11299 and dri-enumerate abstractions into its AppArmor profile: they are needed
11300 with recent Mesa and libdrm (Closes: #15821). Regression introduced
11302 - Fix unlocking "hidden" TrueCrypt/VeraCrypt volumes via GNOME Shell
11304 - Fix confusing error message when unlocking TrueCrypt/VeraCrypt volumes
11306 - Revert to Stretch's X.Org nouveau video driver (Closes: #15833).
11307 It seems that the regression brought by the upgraded one
11308 is worse than the improvements reported after our call for testing.
11309 Regression introduced in 3.9~rc1.
11310 - Use the intel X.Org driver for Intel Corporation UHD Graphics 620.
11311 - Fix regressions introduced in 3.9~rc1 in/by Additional Software Packages:
11312 · Don't break new empty persistence configuration files creation when
11313 permissions are incorrect (Closes: #15802).
11314 · Fix UX when the user has specified a distribution or version
11315 for a given package in their live-additional-software.conf
11317 · Don't show installation notifications on upgrade (Closes: #15879).
11318 - Make more Additional Software Packages strings translatable in the
11319 configuration dialog and PolicyKit messages.
11321 * Minor improvements and updates
11322 - Upgrade firmware-nonfree to 20180825-1.
11323 - Update the deb.torproject.org APT repository signing key.
11324 - Unlock VeraCrypt Volumes: add disclaimer (Closes: #15849).
11327 - Update Thunderbird test suite for 60.0 (Closes: #15791).
11328 - Fix various robustness issues.
11329 - Make the Chutney nodes use a higher V3AuthVotingInterval to make client
11330 bootstrap more robust (Closes: #15799).
11331 - Update the Tor Launcher binary path.
11332 - Adjust to the fact "New Circuit for this Site" is now in the site
11333 information and not under the Torbutton anymore.
11334 - Delete unused images.
11336 -- Tails developers <tails@boum.org> Tue, 04 Sep 2018 12:15:43 +0000
11338 tails (3.9~rc1) unstable; urgency=medium
11341 - Integrate the Additional Software Packages feature into the desktop
11342 and revamp the interface of "Configure Persistent Volume".
11343 - Support TrueCrypt/VeraCrypt encrypted volumes on the desktop.
11344 - Upgrade Tor Browser to 8.0a9, based on Firefox 60 ESR (Closes: #15023).
11345 Notable user-visible changes and relevant details:
11346 · Drop search engine customization and stick to Tor Browser's defaults.
11347 · Upgrade uBlock Origin to its WebExtension version and now rely
11348 on the filter lists shipped in the Debian package.
11349 · Tweak the number of web content processes to work better with 2 GiB
11350 of RAM (Closes: #15716).
11351 · Revamp how we're handling our custom prefs, drop obsolete ones,
11352 reduce our delta with pristine Tor Browser.
11353 - Upgrade Thunderbird to 60.0b10 (Closes: #15091). Notable details:
11354 · Install Torbirdy 0.2.5 from stretch-backports and drop our patches
11355 that were merged upstream.
11356 · Enable the optional part of the fixes for EFAIL (Closes: #15602).
11357 - Upgrade Linux to 4.17 (Closes: #15763).
11358 - Upgrade tor to 0.3.4.6-rc (Closes: #15770).
11359 - Upgrade to Debian Stretch 9.5.
11362 - Upgrade CUPS to 2.2.1-8+deb9u2 (DSA-4243).
11363 - Upgrade Exiv2 to 0.25-3.1+deb9u1 (DSA-4238).
11364 - Upgrade FUSE to 2.9.7-1+deb9u1 (DSA-4257).
11365 - Upgrade GDM to 3.22.3-3+deb9u2 (DSA-4270).
11366 - Upgrade libsoup to 2.56.0-2+deb9u2 (DSA-4241).
11367 - Upgrade Imagemagick to 8:6.9.7.4+dfsg-11+deb9u5 (DSA-4245).
11368 - Upgrade ffmpeg to 7:3.2.12-1~deb9u1 (DSA-4258, DSA-4249).
11369 - Upgrade libmspack to 0.5-1+deb9u2 (DSA-4260).
11370 - Upgrade Samba to 2:4.5.12+dfsg-2+deb9u3 (DSA-4271).
11371 - Upgrade the Apache XML Security for C++ library to 1.7.3-4+deb9u1
11375 - Don't display the Enigmail configuration wizard in every Tails session
11376 (Closes: #15693, #15746). Fix against Tails 3.8.
11377 - Make the torstatus GNOME Shell extension actually translatable
11378 (Closes: #15715). Fix against the first Tails release that included
11380 - Drop Icedove → Thunderbird migration code which started causing trouble.
11382 · Link to upgrade documentation when upgrading (Closes: #7904).
11383 · Show the reinstall option only when the device is big enough to make
11384 a full reinstallation (Closes: #14810).
11385 · Make the main window fit in a 600px-high screen (Closes: #14849).
11386 · Show the correct device size in the reinstall confirmation dialog
11388 - Tails Greeter: don't display file:/// URLs to users (Closes: #15582).
11390 * Minor improvements and updates
11391 - Install Mesa and libdrm* from stretch-backports and upgrade the Nouveau
11392 X.Org video driver to 1.0.15. This improves support for some graphics
11393 cards such as NVIDIA Pascal series (Closes: #14910)
11394 - htpdate: improve diagnostics output when the date header can't be fetched.
11395 - Onion Grater: support named AppArmor profiles.
11396 - Update Onion Grater's config for new Tor Browser AppArmor profile name.
11397 - Enable e10s in the Unsafe Browser.
11398 - Delete all search plugins for the Unsafe Browser (Closes: #15708).
11399 - Display a deprecation warning when starting Liferea (#11082).
11400 - Upgrade VirtualBox guest modules to 5.2.16-dfsg-3~bpo9+2.
11401 - Use Tor Browser for browsing the documentation even when offline
11403 - Provide feedback while Tor Browser, "Tails documentation"
11404 or "Report an error" are starting (Closes: #15101).
11405 - WhisperBack: remove the right pane (Closes: #7180).
11406 - tails-debugging-info: return machine-readable, structured data.
11407 Adjust WhisperBack accordingly (Closes: #8514). This paves the way
11408 towards more usable bug reports (#8722).
11409 - Port lots of our Perl code to more lightweight libraries.
11410 This decreases the amount of memory used by the persistence
11411 configuration interface.
11412 - Do not hide applications that require an admin password (Closes: #11013).
11413 - Try unlocking every persistent volume when multiple ones are
11414 available (Closes: #15653).
11415 - Upgrade Electrum to 3.1.3-1~bpo9+1.
11416 - Upgrade most firmware to 20180518-1.
11417 - Upgrade Intel microcode to 3.20180703.2~bpo9+1.
11418 - Upgrade AMD microcode to 3.20180524.1.
11421 - Drop AppArmor feature set pinning: this is now done in Debian Stretch
11423 - Remove the now unused deb.torproject.org sid APT source (Closes: #15638).
11424 - Install OnionShare from our custom APT repo instead of from sid.
11425 We've mistakenly tracked sid for a while and it has become a problem,
11426 so stick to the version that works for us until Tails 4.0.
11427 - Fix building the ISO on zfs by dropping the cache=none setting for
11428 vmproxy's storage (Closes: #14404).
11429 - Update the Vagrant basebox for any change under vagrant/.
11430 Previously, some relevant changes were not effective until something under
11431 vagrant/definitions/tails-builder/ was changed.
11432 - Make intltool ignore .py files: `intltool-update --maintain` seems to be
11433 buggy with .py files.
11434 - Refresh our CUPS AppArmor profile patch to apply on 2.2.1-8+deb9u2.
11435 - Make it more obvious that the .orig file check is fatal (Closes: #15727).
11436 - Delete baseboxes once they're 6 months old instead of 4.
11437 This is more in line with the delay between our major releases these days.
11438 - Rename /usr/share/amnesia to /usr/share/tails. It was about time.
11439 - Abort the build if /etc/{passwd,group} has changed (Closes: #15419).
11440 Such changes can break Tails after an automatic upgrade was applied
11441 so let's detect it ASAP. Consequently, ensure a few GIDs — that wanted
11442 to play musical chairs — are the same as in Tails 3.8 (Closes: #15695).
11443 - Don't fail the build if the APT lists don't include any package
11444 whose name matches ^geoclue.
11447 - Adjust to the new tails-persistence-setup API.
11448 - Update the Tor Browser's AppArmor profile name.
11449 - Re-enable the "I can print the current page […]" test.
11450 - Update tests wrt. the fact tails-upgrade-frontend-wrapper was ported
11451 to Python (Closes: #15379).
11452 - Make a test more robust by waiting for the page to have loaded.
11453 - Adjust to the fact the WhisperBack debugging info is now configured
11454 in a machine-readable file.
11455 - Remove test for tails-debugging-info, that has been a no-op for a while.
11456 - Adjust for Tor Browser 8.
11457 - Make the "I open the address" step more robust and accordingly
11458 stop marking the tests that use it in the Unsafe Browser
11459 as fragile (refs: #14771).
11460 - De-duplicate a number of images of standard GTK+ 3 widgets.
11461 - Make the audio and WebM tests more robust.
11462 - Make the "I start the Tor Browser in offline mode" step more robust.
11463 - Make the "AppArmor has (not )? denied" step more robust.
11464 - Don't try and use XVFB_PID if it's not set (Closes: #15730).
11465 - Adjust Pidgin test to use a certificate that's still in Debian
11467 - Use a hopefully more reliable public GnuPG key and make tests
11468 more robust against new subkeys being added (Closes: #15771).
11469 - Stop hard-coding the list of RTL Tor Browser locales.
11470 - Fix the "Unsafe Browser can be used in all languages supported in Tails"
11471 test for locales that have a translated homepage (Closes: #11711).
11472 - Take into account that apt(8) won't return when run in the remote shell
11473 with the ASP hooks enabled.
11475 -- Tails developers <tails@boum.org> Thu, 16 Aug 2018 18:37:47 +0000
11477 tails (3.8) unstable; urgency=medium
11480 - Upgrade Tor Browser to 7.5.6 (MFSA 2018-17; Closes: #15683).
11481 - Upgrade Enigmail to 2.0.7 (partly fixes #15602 aka. EFAIL).
11482 - Upgrade libgcrypt to 1.7.6-2+deb9u3 (DSA-4231-1).
11483 - Upgrade perl to 5.24.1-3+deb9u4 (DSA-4226-1).
11486 - Thunderbird: fix importing public OpenPGP keys from email attachments
11488 - Make the Unsafe Browser home page translatable again (Closes: #15461).
11490 * Minor improvements
11491 - Don't display the "Know your rights" message on Thunderbird first run.
11492 - Move Thunderbird's default userChrome.css to /etc/thunderbird, just like
11493 we do for Tor Browser, for easier upgrade handling.
11495 -- Tails developers <tails@boum.org> Mon, 25 Jun 2018 09:59:22 +0000
11497 tails (3.7.1) unstable; urgency=medium
11500 - Upgrade Tor Browser to 7.5.5 (MFSA 2018-14; closes: #15643).
11501 - Upgrade Thunderbird to 52.8.0 (DSA-4209-1; Closes: #15607).
11502 - Partially fixes EFAIL.
11503 - Fixes importing OpenPGP keys from keyservers with Enigmail.
11504 - Accordingly refresh our Thunderbird AppArmor profile patch.
11505 - Upgrade cURL to 7.52.1-5+deb9u6 (DSA-4202-1).
11506 - Upgrade GnuPG (modern) 2.1.18-8~deb9u2 (DSA-4222-1).
11507 - Upgrade GnuPG (legacy) to 1.4.21-4+deb9u1 (DSA-4223-1).
11508 - Upgrade Git to 1:2.11.0-3+deb9u3 (DSA-4212-1).
11509 - Upgrade PackageKit to 1.1.5-2+deb9u1 (DSA-4207-1).
11510 - Upgrade procps to 2:3.3.12-3+deb9u1 (DSA-4208-1).
11511 - Upgrade wavpack to 5.0.0-2+deb9u2 (DSA-4197-1).
11512 - Upgrade wget to 1.18-5+deb9u2 (DSA-4195-1).
11513 - Upgrade xdg-utils to 1.1.1-1+deb9u1 (DSA-4211-1).
11516 - Fix setting a screen locker password with non-ASCII characters
11519 - Rename the WhisperBack launcher to "WhisperBack Error Reporting"
11520 so that users have a better chance to understand what it does
11522 - Ensure debugging info in Whisperback reports don't contain email
11523 signature markers so that email clients forward it in full
11525 - Wrap text written by the user to 70 chars (Closes: #11689).
11527 * Minor improvements
11528 - The "Tails documentation" desktop launcher now opens /doc instead of
11529 the aging /getting_started that confused people during user testing
11533 - Update to match "Tails documentation" behaviour change.
11535 -- Tails developers <tails@boum.org> Sat, 09 Jun 2018 19:53:51 +0000
11537 tails (3.7) unstable; urgency=medium
11540 - Upgrade Tor Browser to 7.5.4 (MFSA 2018-12, Closes: #15588).
11541 - Upgrade OpenSSL to 1.1.0f-3+deb9u2 (DSA-4157).
11542 - Upgrade Perl to 5.24.1-3+deb9u3 (DSA-4172).
11543 - Upgrade Libre Office to 1:5.2.7-1+deb9u4 (DSA-4178).
11544 - Upgrade libmad to 0.15.1b-8+deb9u1 (DSA-4192).
11547 - Enable the removal of OpenPGP keyblock in Whisperback (closes: #7797).
11548 - Show the logo in Whisperback's About menu (closes: #13198).
11549 - Use the same font in all the Whisperback report (Closes: #11272).
11550 - Update tails-bugs@tails.boum OpenPGP key (Closes: #15534).
11552 * Minor improvements
11553 - Stop installing python-qt4 and python-trezor (Closes: #15391).
11554 - Make WhisperBack easier to find in the GNOME Overview (Closes: #13299).
11556 -- Tails developers <tails@boum.org> Tue, 08 May 2018 01:47:22 +0200
11558 tails (3.6.2) unstable; urgency=medium
11561 - Upgrade Tor Browser to 7.5.3 (MFSA 2018-10, Closes: #15459).
11562 - Upgrade Thunderbird to 1:52.7.0-1~deb9u1.0tails1 (DSA-4155,
11564 - Upgrade libicu to 57.1-6+deb9u2 (DSA-4150).
11565 - Upgrade intel-microcode to 3.20180312.1~bpo9+1. Implements
11566 IBRS/IBPB/STIPB support, Spectre-v2 mitigation for: Sandybridge,
11567 Ivy Bridge, Haswell, Broadwell, Skylake, Kaby Lake, Coffee Lake
11571 - Tor Browser AppArmor profile:
11572 * Grant the main Firefox process access to machine-id: needed for
11573 IBus support (Closes: #15437).
11574 * Allow access to extensions installed by the user such as Tails
11575 Verification (Closes: #15434).
11576 - Remove packages needed to support Video Acceleration API
11577 (VA-API) because they breaks opening GNOME Settings and Totem in
11578 Tails 3.6 on some computers (only NVIDIA for now but perhaps
11579 other hardware is affected). (Closes: #15433, #15449)
11580 - Upgrade Linux to 4.15.11-1 and bump the aufs submodule (Closes:
11582 - tails-documentation script:
11583 * open translated documentation page in Tor Browser when online
11585 * use documented syntax for os.execv (Refs: #15332)
11586 * re-add support for passing a HTML anchor as the second
11588 - Fix issue where the tails-persistence-setup user's guid would be
11589 changed when it was the uid that was intended (Closes: #15422).
11591 -- Tails developers <tails@boum.org> Thu, 29 Mar 2018 17:49:42 +0200
11593 tails (3.6.1) unstable; urgency=medium
11596 - Upgrade Tor Browser to 7.5.2 (MFSA 2018-08 i.e. CVE-2018-5146).
11597 - Upgrade libvorbis to 1.3.5-4+deb9u2 (DSA 4140-1 aka. CVE-2018-5146).
11598 - Upgrade curl to 7.52.1-5+deb9u5 (DSA 4136-1).
11599 - Upgrade samba to 2:4.5.12+dfsg-2+deb9u2 (DSA 4135-1).
11602 - Fix ISO build reproducibility (Closes: #15400)
11603 - Disable Selfrando: Tor Browser upstream currently enables it only
11604 in non-release builds
11605 (https://trac.torproject.org/projects/tor/ticket/24912#comment:8).
11607 -- Tails developers <tails@boum.org> Fri, 16 Mar 2018 22:42:00 +0000
11609 tails (3.6) unstable; urgency=medium
11612 - Upgrade Tor Browser to 7.5.1.
11613 - Upgrade Tor to 0.3.2.10. (Closes: #15158)
11614 - Add ability to lock the screen. (Closes: #5684)
11615 - Add initial support for Meek bridges. (Closes: #8243)
11616 - Upgrade to Thunderbird 52.6.0. (Closes: #15298)
11617 - Enable Thunderbird AppArmor profile. (Closes: 11973)
11618 - Upgrade Linux to 4.15.0-1. (Closes: #15309).
11619 - Upgrade systemd to 237.
11620 - Upgrade Electrum to 3.0.6. (Closes: #15022)
11621 - Upgrade the base system to the Debian Stretch 9.4 point-release
11623 - Port a few shell scripts to Python thanks to GoodCrypto. (Closes: #11198)
11626 - Upgrade Intel processor microcode firmware. (Closes: #15173).
11627 - Upgrade poppler to 0.48.0-2+deb9u1. (CVE-2017-14929, CVE-2017-1000456)
11628 - Upgrade tiff to 4.0.8-2+deb9u2 (CVE-2017-9935, CVE-2017-11335,
11629 CVE-2017-12944, CVE-2017-13726, CVE-2017-13727, CVE-2017-18013)
11630 - Upgrade ffmpeg to 7:3.2.10-1~deb9u1. (CVE-2017-17081)
11631 - Upgrade libtasn1-6 to 4.10-1.1+deb9u1. (CVE-2017-10790, CVE-2018-6003)
11632 - Upgrade Libre Office to 1:5.2.7-1+deb9u2. (CVE-2018-6871)
11633 - Upgrade libvorbis to 1.3.5-4+deb9u1. (CVE-2017-14632, CVE-2017-14633)
11634 - Upgrade gcc to 6.3.0-18+deb9u1.
11635 - Upgrade util-linux to 2.29.2-1+deb9u1. (CVE-2018-7738)
11636 - Upgrade isc-dhcp to 4.3.5-3+deb9u1 (CVE-2017-3144, CVE-2018-5732,
11639 * Minor improvements
11640 - Avoid noisy warning at boot time by creating tails-upgrade-frontend's
11641 trusted GnuPG homedir with stricter permissions, then making it looser.
11643 - Drop (broken) Thunderbird dedicated SocksPort. (Closes: #12460)
11644 - Drop customized update-ca-certificates.service. (Closes: #14756)
11645 - Update AppArmor cupsd profile. (Closes: #15029)
11646 - Improve UX when GDM does not start. (Closes: #14521)
11647 - Install packages needed to support Video Acceleration API.
11649 - Upgrade aufs-dkms for Linux 4.15. (Closes: #15132).
11650 - Ship pdf-redact-tools, thanks to dachary <loic@dachary.org>.
11652 - Additional Software Packages: convert to python3 and PEP-8.
11654 - Additional Software Packages: do not check for updates every time the
11655 network gets reconnected. (Closes: #9819)
11656 - Revert to xorg-xserver from Stretch. (Closes: #15232)
11657 - Open Tails documentation in Tor Browser when online. (Closes: #15332)
11658 - Disable Enigmail's Memory Hole feature. (Closes: #15201)
11659 - Persistence Setup: stop depending on Synaptic. (Closes: #15263)
11662 - Additional Software Packages: fix the "incomplete online upgrade
11663 process" bug in offline mode (Closes: #14570)
11664 - Additional Software Packages: do not block Desktop opening.
11666 - Install OpenPGP Applet 1.1. (Closes: #6398).
11667 - Repair rng-tools using a real start-stop-daemon program.
11669 - Tails installer: fix bug with unicode status messages. (Closes: #15254)
11672 - Abort if tails-custom-apt-sources failed.
11673 - Abort the ISO build when DKMS modules are not built. (Closes: #14789).
11674 - Improve how we track dependencies in build hooks. (Closes: #14818)
11675 - Fix (potential) rare race condition during build.
11676 - Ensure the SquashFS has /etc/hostname properly configured.
11678 - Bump builder VM's RAM. (Closes: #15310)
11681 - Log the list of systemd jobs when systemctl is-system-running fails.
11683 - Allow more time for 'systemctl is-system-running' to succeed.
11684 - Only support SikuliX, not Sikuli.
11685 - Disable SPICE clipboard sharing.
11686 - Don't flood the debug logger with the journal contents.
11687 - Rescue exception.
11688 - Enter a name into the Thunderbird account configuration.
11690 - Fix the "I do not see ..." step's case. (Closes: #14929)
11691 - Mark scenarios that use the "The Report an Error launcher will…" step
11692 as fragile (Closes: #15321)
11693 - Test that Tor Browser opens docs when online. (Closes: #15332)
11694 - Adapt test after warning moved to after Unsafe Browser verification
11695 dialog. (Closes: #8775)
11696 - Dogtailify electrum.feature.
11697 - Add additional software packages feature. (Closes: #14572)
11698 - Disable test that is broken due to a Tor Browser bug. (refs: #15336)
11700 -- Tails developers <tails@boum.org> Mon, 12 Mar 2018 21:28:29 +0100
11702 tails (3.5) unstable; urgency=medium
11705 - Upgrade amd64-microcode to 3.20171205.1, for the mitigation
11706 against Spectre (CVE-2017-5715) (Closes: #15148).
11707 - Upgrade Tor Browser to 7.5-build3 (Closes: #15197).
11708 - Upgrade Thunderbird to 1:52.5.2-2~deb9u1.0tails1 (Closes: #15033)
11709 - Upgrade gdk-pixbuf to 2.36.5-2+deb9u2.0tails1 (Closes: #15177).
11710 - Upgrade bind9 to 1:9.10.3.dfsg.P4-12.3+deb9u4.
11711 - Upgrade libxml2 to 2.9.4+dfsg1-2.2+deb9u2.
11713 * Minor improvements
11714 - Upgrade Linux to 4.14.13, which is the first kernel that has the
11715 "[x86] microcode/AMD: Add support for fam17h microcode loading"
11716 commit, that's needed to load the AMD fam17h microcode for
11717 mitigating the Spectre vulnerability (CVE-2017-5715).
11720 - Drop Claws Mail persistence setting migration. Whenever
11721 persistent Claws Mail setting is enabled, this creates an empty
11722 ~/.icedove/ directory, that prevents Thunderbird from starting
11724 - Don't prevent the GNOME Applications button from opening its menu if
11725 time syncing resulted in a shift back in time (Closes: #14250).
11726 - Tails Installer: when cloning Tails to another USB drive, check
11727 if the target device has enough space *before* any destructive
11728 actions are made (Closes: #14622).
11729 - Tor Browser: make "Print to file" work again, for all locales
11730 (Closes: #13403, #15024).
11733 - Fix option passed to cmp: -q is not supported but --quiet is.
11734 Spotted on feature/buster that's the first branch that exercises
11735 this code, but there's no reason to fix it only there.
11738 - Adapt tests for Tor Launcher 0.2.14.3, i.e. the one shipped with
11739 Tor Browser 7.5 in Tails 3.5 (Closes: #15064).
11740 - Add support for creating arbitrarily sized partitions.
11741 - Add a "Try cloning Tails to a too small partition" scenario
11742 (regression test for #14622).
11744 -- Tails developers <tails@boum.org> Tue, 23 Jan 2018 00:57:58 +0100
11746 tails (3.4) unstable; urgency=medium
11749 - Install Linux 4.14.0-3 from sid (Closes: #14976). This enables
11750 the kernel-side mitigations for Meltdown.
11751 - Upgrade curl to 7.52.1-5+deb9u3.
11752 - Upgrade enigmail to 2:1.9.9-1~deb9u1.
11753 - Upgrade gimp to 2.8.18-1+deb9u1.
11754 - Upgrade imagemagick to 8:6.9.7.4+dfsg-11+deb9u4.
11755 - Upgrade libav (ffmpeg) to 7:3.2.9-1~deb9u1.
11756 - Upgrade libxcursor to 1:1.1.14-1+deb9u1.
11757 - Upgrade libxml-libxml-perl to 2.0128+dfsg-1+deb9u1.
11758 - Upgrade poppler to 0.48.0-2+deb9u1.
11759 - Upgrade rsync to 3.1.2-1 3.1.2-1+deb9u1.
11760 - Upgrade samba to 2:4.5.12+dfsg-2+deb9u1.
11761 - Upgrade sensible-utils to 0.0.9+deb9u1.
11762 - Upgrade tor to 0.3.1.9-1~d90.stretch+1.
11764 * Minor improvements
11765 - Display TopIcons systray on the left of the system menu. This
11766 fixes #14796 (on Buster, it is displayed in the middle of the
11767 screen, on the left of the clock) and an annoying UX problem we
11768 have on Stretch: OpenPGP applet is in the middle of icons that
11769 share the exact same (modern, GNOME Shell-like) behaviour, which
11770 is disturbing when opening one of the modern menus and moving
11771 the mouse left/right to the others, because in the middle one
11772 icon won't react as expected, and the nice blue bottom border
11773 continuity is broken.
11774 - Use the "intel" X.Org driver for integrated graphics in Intel
11775 i5-7300HQ (Closes: #14990).
11776 - Enable HashKnownHosts in the OpenSSH client (Closes: #14995).
11777 Debian enables HashKnownHosts by default via /etc/ssh/ssh_config
11778 for good reasons, let's not revert to the upstream default.
11779 - Pin the AppArmor feature set to the Stretch's kernel one. Linux
11780 4.14 brings new AppArmor mediation features and the policy
11781 shipped in Stretch may not be ready for it. So let's disable
11782 these new features to avoid breaking stuff: it's too hard to
11783 check if all the policy for apps we ship (and that users install
11784 themselves) has the right rules to cope with these new mediation
11788 - Don't delete downloaded debs after install (Closes: #10958).
11789 - Install xul-ext-ublock-origin from sid to make the dashboard
11790 work again(Closes: #14993). Thanks to cacahuatl
11791 <cacahuatl@autistici.org> for the patch!
11792 - Additional software feature: use debconf priority critical to
11793 prevent failure when installing packages otherwise requiring
11794 manual configuration (Closes: #6038)
11795 - Don't include anything under /lib/live/mount/medium/ in the
11796 readahead list (Closes: #14964). This fixes the boot time
11797 regression introduced in Tails 3.3.
11800 - Display a more helpful error message when the 'origin' remote
11801 does not point to the official Tails Git repository. This task
11802 calls git_base_branch_head() which relies on the fact 'origin'
11803 points to our official repo.
11804 - Vagrant: never build the wiki early. This has caused several
11805 issues throughout the years, the lastest instance being the
11806 reopening of #14933. (Closes: #14933)
11807 - Install libelf-dev during the time we need it for building DKMS modules.
11808 - Make the DKMS build hook verbose, and display DKMS modules build
11809 logs on failure. This hook is a recurring cause of headaches,
11810 let's simplify debugging.
11811 - Remove obsolete duplicate build of the virtualbox-guest DKMS
11815 - Log the list of systemd jobs when systemctl is-system-running
11816 fails (Closes: #14772). Listing the units is not enough: in most
11817 cases I've seen, is-system-running returns "starting" which
11818 means the job queue is not empty, and to debug that we need the
11820 - Only support SikuliX; drop support for Sikuli.
11821 - Disable SPICE clipboard sharing in the guest. It could only mess
11822 things up, and in fact has confused me by suddenly setting my
11823 *host's* clipboard to "ATTACK AT DAWN"... :)
11824 - Decode Base64.decode64 return value appropriately; it returns
11825 strings encoded in ASCII-8bit.
11826 - Don't flood the debug logger with the journal contents.
11827 - Handle case where $vm is undefined during an extremely early
11829 - Allow more time for 'systemctl is-system-running' to
11830 succeed. (Refs: #14772)
11831 - Make Sikuli attempt to find replacements on FindFailed by
11832 employing fuzz, or "lowering the similarity factor". The
11833 replacements (if found) are saved among the artifacts, and
11834 serves as potential drop-in-replacements for outdated
11835 images. The main use case for this is when the font
11836 configuration in Tails changes, which normally invalidates a
11837 large part of our images given that our default high similarity
11838 factor. We also add the `--fuzzy-image-matching` where the
11839 replacements are used in case of FindFailed, so the tests can
11840 proceed beyond the first FindFailed. The idea is that a full
11841 test suite run will produce replacements for potentially *all*
11843 - Fix our findAny() vs findfailed_hook. For findAny() it might be
11844 expected that some images won't be found, so we shouldn't use
11845 our findfailed_hook, which is about dealing with the situation
11846 where images need to be updated.
11847 - Make sure Pidgin's D-Bus policy changes are applied (Closes:
11848 #15007). Without the HUP there's a race that we sometimes lose.
11849 - Nump the Unsafe Browser's start page image (Closes: #15006).
11850 - Hot-plug a 'pcnet' network device instead of 'virtio' on Sid,
11851 since the latter is not detected on Sid (Closes: #14819).
11853 -- Tails developers <tails@boum.org> Mon, 08 Jan 2018 16:57:07 +0100
11855 tails (3.3) unstable; urgency=medium
11858 - Upgrade the base system to the Debian Stretch 9.2 point-release
11859 which gives us tons of bugfixes (Closes: #14714).
11860 - Install Linux 4.13.0-1 (Closes: #14789).
11863 - Upgrade Thunderbird to 52.4.0 (Closes: #14963).
11864 - Upgrade Tor Browser to 7.0.10 (Closes: #14940).
11865 - Upgrade gdk-pixbuf to 2.36.5-2+deb9u1.0tails1 (Closes: #14729).
11867 * Minor improvements
11868 - Upgrade to Tor 0.3.1.8-2~d90.stretch+1, a new stable Tor series.
11869 - tails-documentation: rewrite in Python + use WebKit for display
11870 instead of the Tor Browser. Since Tor Browser 7.0.8 rendering of
11871 local pages (like our docs) fail (#14962) so this is probably a
11872 temporary workaround of that.
11873 - Replace the Unsafe Browser's warning pages with static,
11874 pure-HTML versions. This is truly a *temporary* workaround for
11876 - Update deb.tails.boum.org APT repo key (Closes: #14927)
11877 - Refresh Tor Browser AppArmor profile patch to apply on top of
11878 torbrowser-launcher 0.2.8-4's (Closes: #14923).
11879 - Drop obsolete manual enabling of AppArmor on the kernel
11880 command-line: it's now enabled by default, so the (Tails -
11881 Debian) delta gets smaller. :)
11884 - Install Tails Installer 5.0.2. Fixes:
11885 * Most notably, fix an issue preventing Tails Installer from
11886 installing to drives containing a non-Tails partition that
11887 (obviously) has affected a lot of users. (Closes: #14755).
11888 * Fix an issue that made the resulting installations unbootable
11889 if Tails Installer was using a too recent udisks2, e.g. the
11890 one currently in Debian Sid (Closes: #14809).
11891 * Code clean-ups (Closes: #14721, #14722, #14723).
11892 - Fix UEFI boot for USB sticks installed with Universal USB
11893 Installer (Closes: #8992).
11894 - Force Tor Browser and Thunderbird to enable accessibility
11895 support even if no a11y feature is enabled in GNOME yet (Closes:
11897 - Mark our custom Desktop launchers as trusted (Closes: #14793,
11899 - Add a systemd --user target for bits of GNOME
11900 EarlyInitialization managed by systemd, and make the keyboard
11901 layout configuration as part of it. This fixes an issue where
11902 the layout chosen in the Greeter sometimes wasn't applied in the
11903 GNOME session (Closes: #12543).
11906 - auto/{build,clean,config}: run with `set -eu`.
11907 - Add script to sanity check the website. Currently it ensures all
11908 blog posts and security advisories have valid Ikiwiki 'meta
11909 date' directives, since we depend on it for reproducibility.
11910 Also make passing this sanity check a pre-condition for building
11911 the website (Closes: #12726, #14767).
11912 - Abort the ISO build when DKMS modules were not built.
11913 - Take into account where DKMS modules get installed nowadays.
11914 - auto/build: normalize file timestamps in wiki/src before
11915 building. The copy of the website included in the ISO image has
11916 "Posted" timestamps that apparently match when we cloned the Git
11917 repository, which affects reproducibility. (Closes: #14933).
11918 - Fix reproducibility of builds of topic branches that lag behind
11919 their base branch with the mergebasebranch build option enabled.
11920 Two otherwise identical merge commits done at different times
11921 get different IDs, and we happen to embed in the ISO the ID of
11922 the commit we're building from. (Closes: #14946)
11925 - Bump timeout for "I can save the current page as", otherwise the
11926 "The Tor Browser directory is usable" scenario fails randomly
11927 when the system is under load.
11928 - New scenario: installing Tails to an eligible drive with an
11929 existing filesystem. This is a regression test for #14755.
11930 - New scenario: re-installing over an existing Tails installation.
11932 -- Tails developers <tails@boum.org> Tue, 14 Nov 2017 04:53:27 +0100
11934 tails (3.2) unstable; urgency=medium
11937 - Upgrade Linux packages to the Debian kernel 4.12.0-2, based on
11938 mainline Linux 4.12.12 (Closes: #11831, #12732, #14673).
11941 - Upgrade Tor Browser to 7.0.6-build3 (Closes: #14696).
11942 - Upgrade to Thunderbird 52.3.0 (Closes: #12639).
11943 - Deny access to Pidgin's D-Bus service (Closes: #14612). That D-Bus
11944 interface is dangerous because it allows _any_ application running
11945 as `amnesia' that has access to the session bus to extract
11946 basically any information from Pidgin and to reconfigure it:
11947 https://developer.pidgin.im/wiki/DbusHowto
11948 - Block loading of Bluetooth kernel modules (Closes: #14655) and
11949 block Bluetooth devices with rfkill (Closes: #14655).
11950 - Add localhost.localdomain to the hosts file to prevent loopback
11951 leaks to Tor circuits (Closes: #13574). Thanks to tailshark for
11954 * Minor improvements
11955 - Upgrade to Tails Installer 5.0.1 (Closes: #8859, #8860, #12707). This
11956 version gets rid of the splash screen, detects when Tails is already
11957 installed on the target device (and then proposes to upgrade),
11958 and generally improves the UX. It also increases the Tails partition
11959 size and refuses to install to devices smaller than 8 GB.
11960 - Deprecate Thunderbird's preferences/0000tails.js (Closes: #12680).
11961 - Install the BookletImposer PDF imposition toolkit (Closes: #12686).
11963 * Fallback to ~/Tor Browser for uploads (Closes: #8917).
11964 * Silence some common operations that always are denied and
11965 otherwise would spam the journal (Closes: #14606)
11966 - Shell library: remove now unused functions (Closes: #12685).
11967 - Add pppoe to the installed packages (Closes #13463). Thanks to geb
11969 - Replace syslinux:i386 with syslinux:amd64 in the ISO9660
11970 filesystem (Closes: #13513).
11971 - htpdate: fix date header regexp (Closes: #10495). It seems that
11972 some servers (sometimes) do not send their headers with first
11973 letter uppercased, hence a lot of failures to find the date in it.
11974 - Install aufs-dkms from Debian unstable (Closes: #12732).
11975 - Install vim-tiny instead of vim-nox (Closes: #12687). On Stretch,
11976 vim-nox started pulling ruby and rake in the ISO. I think vim-tiny
11977 would be good enough, and would save a few MiB in the ISO. Those
11978 who use vim more intensively and want another flavour of vim are
11979 likely to need persistence anyway, and can thus install a more
11980 featureful vim with the additional software packages feature.
11981 - Remove gksu and its and gconf's dependencies (Closes: #12738). We
11982 use pkexec instead of gksudo. gksu is unmaintained, buggy
11983 (e.g. #12000), and it is the only reason we ship GConf, which we
11984 want to remove. The other removals are:
11985 * libgnomevfs2-extra, which was previously used for SSH/FTP support in
11986 Nautilus, but isn't needed for that any more.
11987 * libgnome2-bin which provides gnome-open, which isn't required by
11988 any application in Tails (as far as we know).
11989 * Configurations and scripts that become obsolete because of these
11991 - Refresh torbrowser-AppArmor-profile.patch to apply cleanly on top
11992 of torbrowser-launcher 0.2.8-1 (Closes: #14602).
11993 - Switch from Florence to GNOME's on-screen keyboard (Closes: #8281)
11994 and incidentally improve accessibility in GTK+ 2.0 and Qt
11995 applications. This drops Florence and the corresponding GNOME
11997 - Make ./HACKING.mdwn a symlink again (Closes: #13600).
11998 - Implement refresh-translations --force .
11999 - Rework how we handle the individual POT files of our applications.
12000 Comparing the new temporary POT files we generate with the
12001 temporary POT files we generated last time (if ever, and if we
12002 did, for which branch?) is not relevant; these POT files are only
12003 used for merging into a new tails.pot and *that* one is relevant
12004 to diff against the old tails.pot.
12005 - Update the Tails signing key. (Closes: #11747)
12007 * Ensure reproducible permissions for /etc/hostname (Closes:
12009 * Patch desktop-file-utils to make its mimeinfo.cache reproducible
12011 * Patch glib2.0 to make its giomodule.cache reproducible (Closes:
12013 * Patch gdk-pixbuf to make its loaders.cache reproducible (Closes:
12015 * Patch gtk2.0 and gtk3.0 to make their immodules.cache
12016 reproducible (Closes: #13440).
12017 * Remove GCconf: it is a source of non-determinism in the
12018 filesystem (element order in /var/lib/gconf/defaults/%gconf-tree-*.xml)
12019 which made Tails unreproducible.
12020 * Ignore comment updates in POT files, which was a source of
12021 non-determinism and therefore prevented Tails from being
12022 reproducible (Closes: #12641).
12023 - Kernel hardening:
12024 * Increase mmap randomization to the maximum supported value
12025 (Closes: #11840). This improves ASLR effectiveness, and makes
12026 address-space fragmentation a bit worse.
12027 * Stop explicitly enabling kaslr: it's enabled by default in
12028 Debian, and this kernel parameter is not supported anymore.
12029 * Disable kexec, to make our attack surface a bit smaller.
12032 - Start Nautilus silently in the background when run as root
12033 (Closes: #12034). Otherwise, after closing Nautilus one gets the
12034 prompt back only after 5-15 seconds, which confuses users and makes
12035 our doc more complicated than it should.
12036 - Ensure pinentry-gtk2 run by Seahorse has the correct $DISPLAY set
12040 - build-manifest-extra-packages.yml: remove squashfs-tools version
12041 we don't use anymore (Closes: #12684). Apparently our
12042 apt-get/debootstrap wrapper tricks are enough to detect the
12043 version of squashfs-tools we actually install and use.
12044 - Merge base branch earlier, i.e. in auto/config instead of
12045 auto/build (Closes: #14459). Previously, a given build from a topic
12046 branch would mix inconsistent versions of things.
12047 - Fail builds started before SOURCE_DATE_EPOCH (Closes:
12048 #12352). Such builds would not be reproducible, and this is an
12049 assumption (a reasonable one!) that we do all over the place, so
12050 let's fail early. While we're at it, let's fail if
12051 SOURCE_DATE_EPOCH is not set as well. Actually we would fail any
12052 way if that was the case when reaching our
12053 99-zzzzzz_reproducible-builds-post-processing build hook, but
12057 - Test the GNOME Root Terminal.
12058 - Take into account that Tails Installer 5.0.1 refuses to install
12059 Tails to devices smaller than 8 GiB. It'll still allow *upgrading*
12060 such sticks though.
12061 - Use 7200 MiB virtual USB drives when we really mean 8 GiB. In the
12062 real world, USB sticks labeled "8 GB" can be much smaller, so
12063 Tails Installer will accept anything that's at least 7200 MiB.
12064 This commit makes us exercise something closer to what happens in
12065 the real world, and incidentally it'll save storage space on our
12066 isotesters and improve test suite performance a bit. :)
12067 - Have unclutter poll every 0.1s instead of continuously. On current
12068 sid, virt-viewer eats a full CPU and doesn't do its job when
12069 "unclutter -idle 0" is running.
12070 - Adapt tests for Tails Installer 5.0.1.
12071 - Workaround Pidgin's DBus interface being blocked since we actually
12072 depend on it for some tests.
12073 - Test that Pidgin's DBus interface is blocked.
12074 - Save more data on test suite failures (Refs: #13541):
12075 * When Tor fails to bootstrap, save Tor logs and chutney nodes
12077 * When Htpdate fails to synchronize the clock, save its logs.
12078 * Always save the systemd journal on failure.
12079 - When testing emergency shutdown, wait longer for Tails to tell
12080 us it has finished wiping the memory. The goal here is to help
12081 us understand whether (Refs: #13462) is a bug in the emergency
12082 shutdown feature or in our test suite.
12083 - Restart nautilus-desktop if Desktop icons are not visible
12085 - Test suite: fix assert_raise() when using ruby-test-unit >=
12086 3.2.5 (Closes: #14654). ruby-test-unit 3.2.5 added native Java
12087 exception support for JRuby. The fact we defined the :Java
12088 constant was enough to trigger that JRuby-specific code, which
12090 - Test suite: take into account that click-to-play is not required
12091 anymore for WebM videos in Tor Browser (Closes: #14586).
12093 -- Tails developers <tails@boum.org> Mon, 25 Sep 2017 22:23:01 +0200
12095 tails (3.1) unstable; urgency=medium
12098 - Upgrade Tor Browser to 7.0.4-build1 (Closes: #13577).
12099 - Upgrade Linux to 4.9.30-2+deb9u3.
12100 - Upgrade libtiff to 4.0.8-2+deb9u1.
12101 - Upgrade bind9 to 1:9.10.3.dfsg.P4-12.3+deb9u2.
12102 - Upgrate evince to 3.22.1-3+deb9u1.
12103 - Upgrade imagemagick 8:6.9.7.4+dfsg-11+deb9u1.
12104 - Ensure Thunderbird cleans its temporary directory. (Closes: #13340).
12106 * Minor improvements
12107 - Patch gconf to produce reproducible XML output (refs: #12738). This is
12108 the temporary solution for #12738 in Tails 3.1 which will be reverted
12109 (and fixed permanently by removing gconf) in Tails 3.2.
12110 - Apply Debian bts patch to cracklib to produce reproducible dictionnaries
12112 - Upgrade to Debian 9.1 (Closes: #13178).
12115 - Replace faulty URL in htpdate neutral pool (Closes: #13472).
12116 - Keep installing a version of Enigmail compatible with Thunderbird 45.x
12118 - Fix the time syncing and Tor notifications translations (Closes: #13437).
12121 - Upgrade the Vagrant basebox for building ISO images to Stretch
12123 - Fix on-disk build by bumping Vagrant build VM memory to 768M
12125 - Fix rescue build option by exporting TAILS_BUILD_FAILURE_RESCUE
12129 - mark gnome screenshot scenario as fragile (refs: #13458)
12130 - mark UEFI scenario as fragile (refs: #13459).
12132 -- Tails developers <tails@boum.org> Sat, 05 Aug 2017 15:25:51 +0200
12134 tails (3.0.1) unstable; urgency=medium
12137 - Upgrade tor to 0.3.0.9-1~d90.stretch+1 (Closes: #13253).
12138 - Upgrade Linux to 4.9.30-2+deb9u2.
12139 - Upgrade libc to 2.24-11+deb9u1.
12140 - Upgrade libexpat1 to 2.2.0-2+deb9u1.
12141 - Upgrade libgcrypt20 to 1.7.6-2+deb9u1.
12142 - Upgrade libgnutls30 to 3.5.8-5+deb9u1.
12143 - Enable Debian security APT sources (Closes: #12309).
12145 * Minor improvements
12146 - Use a higher resolution image in Tails persistence setup
12150 - Forcibly set $SSH_AUTH_SOCK before starting GNOME
12151 Shell. Apparently, due to a race condition, GNOME keyring
12152 sometimes fails to tell the session manager about the correct
12153 SSH_AUTH_SOCK, and thus GNOME Terminal hasn't this variable set
12154 and any ssh process started in there won't use the (perfectly
12155 working) SSH agent (Closes: #12481).
12156 - Fix issue that made Tails Installer rejects working USB drives,
12157 pretending they're not "removable" (Closes: #12696).
12158 - Make behavior of the power button and lid close actions in the Greeter
12159 consistent with the regular GNOME session (Closes: #13000).
12162 - Track the latest debian-security archive for the corresponding
12163 APT sources, and not for the unrelated jessie-updates (Closes:
12165 - Print APT sources used in the build VM, to help debugging issues
12168 -- Tails developers <tails@boum.org> Tue, 04 Jul 2017 15:59:18 +0200
12170 tails (3.0) unstable; urgency=medium
12173 - Upgrade Tor Browser to 7.0.1 (Closes: #12635, #12657).
12174 - Upgrade to a new snapshot of the Debian and Torproject
12175 APT repositories: respectively 2017060904 and 2017060903
12178 * Minor improvements
12179 - Tor Browser: enable Electrolysis (e10s), i.e. render content in a separate
12180 child process, which will allow to improve performance and security
12181 further along the road. This required us to drop our branding add-on
12182 and re-implement its functionality in our Tor Browser wrapper
12184 - Clean obsolete cached packages when using the Additional Software Packages
12185 feature (Closes: #12400).
12186 - Improve KeePassX database migration handling (Closes: #12375).
12187 - Upgrade OnionShare to 0.9.2, from Debian sid as it has been removed
12188 from Stretch (Closes: #12610).
12189 - Upgrade Tor to 0.3.0.8 (Closes: #12656).
12190 - Drop obsolete bilibop patch, that was applied in 0.5.2.1.
12191 - Include disk space usage information in the WhisperBack bug reports.
12192 - Reorder technical details in WhisperBack bug reports in way that makes
12193 more sense when reading them.
12194 - Convert lc.py to Python 3.
12195 - Simplify some Python code thanks to subprocess.check_ouput.
12196 - Set the initial keyboard focus on the "Start Tails" button
12197 in Tails Greeter (Closes: #12509).
12198 - Convert Tails Greeter's Debian packaging to current best practices.
12201 - Fix persistent Thunderbird configuration migration when there is
12202 a mimeTypes.rdf, that doesn't contain any associations to "icedove"
12203 or "/usr/bin/iceweasel" (Closes: #12580).
12204 - Fix persistent browser bookmarks, by generating them from an sqlite dump
12206 - Use the "intel" X.Org driver for Intel Atom/Celeron/Pentium Processor
12207 x5-E8000/J3xxx/N3xxx Integrated Graphics Controller.
12208 - `exec' from our Thunderbird wrapper so it doesn't remain running.
12209 - Tails Installer: don't allow installing on non-removable drives
12211 - Fetch the torbrowser-launcher sources from Debian sid:
12212 it's been removed from Debian testing.
12213 Refresh torbrowser-AppArmor-profile.patch accordingly.
12214 - Unsafe Browser: remove the search bar, that's currently buggy
12215 and its presence only encourages unsupported usage (Closes: #12573).
12216 - Unsafe Browser: disable searching in the address bar. It can result
12217 in leaking hostnames and credentials to the default search
12218 engine operator (Closes: #12540).
12219 - Make our omni.ja modifications reproducible (Closes: #12620).
12220 - Generate the fontconfig cache in a reproducible manner (Closes: #12567).
12221 - Don't include torrents/rss.html in the ISO. It's not generated
12222 in a deterministic manner and is worthless in the ISO (Closes: #12619).
12223 - Improve the language → default keyboard layout mapping
12224 in Tails Greeter (Closes: #12547).
12225 - Don't close Tails Greeter's main window when Alt-F4 is pressed
12229 - Run emergency_shutdown.feature after usb_*.feature, to reduce disk
12230 space requirements (Closes: #12565).
12231 - Deal with server messages in Pidgin.
12232 - Improve Pidgin connectivity check robustness.
12233 - Flag the Synaptic test as fragile (i.e. #12586).
12234 - Optimization: only test once that Tails, booted on DVD, eventually
12235 shuts down after wiping memory.
12236 - Move tests about the shutdown applet to a dedicated feature,
12237 as they have nothing to do with Tails' "emergency" shutdown feature.
12238 - Adapt the network connectivity check to Stretch, and improve it to check
12239 both link and IP connectivity (Closes: #12602).
12240 - Apply a fix from upstream Git to mutter, to fix some of its interactions
12241 with dogtail (Closes: #11718).
12242 - Mark "Scenario: Watching a WebM video" as fragile (i.e. #10442).
12245 - Set create_box -e, to make the vagrant box generation a bit more robust.
12247 - Install kernel from backports and Tails build deps before performing
12248 APT upgrade, to avoid useless bandwidth usage (Closes: #12529).
12249 - Update submodules after merging the base branch (Closes: #12556).
12250 - Rakefile: fix date comparison in basebox:clean_old (Closes: #12575).
12251 - Rakefile: have basebox:clean_old delete baseboxes more than 4 months old
12253 - Also check for fuzzy patches' .orig files at the end of our build hooks,
12254 so we detect any fuzzy patches applied by hooks (Closes: #12617).
12255 - Remove .orig files for patches we allow to be fuzzy.
12256 - Don't pre-build the wiki when mergebasebranch is enabled.
12257 When pre-building the wiki, we modify the PO files which results in a
12258 conflict from the base branch merge in case it modifies the same
12259 files, which breaks the build (Closes: #12611).
12260 - Rakefile: add a task that removes all tails-builder-* libvirt volumes
12263 -- Tails developers <tails@boum.org> Sat, 10 Jun 2017 14:39:10 +0000
12265 tails (3.0~rc1) unstable; urgency=medium
12268 - Install Thunderbird 1:45.8.0-3+tails2 and handle the Icedove → Thunderbird
12269 migration, including wrt. persistent data (Closes: #11712, #12242).
12270 This package also has the patch from
12271 https://bugzilla.mozilla.org/show_bug.cgi?id=1281959 applied,
12272 to ease future integration of the Thunderbird AppArmor profile.
12273 Also, drop the Claws → Icedove migration path.
12274 - Upgrade to a new snapshot of the Debian and Torproject
12275 APT repositories: 2017051803 (Closes: #12554).
12276 - Upgrade Linux packages to the Debian kernel 4.9.0-3, based on
12277 mainline Linux 4.9.25.
12278 - Replace the kexec-based memory erasure feature with the Linux kernel's
12279 memory poisoning (Closes: #12354, #12428). The kexec-based implementation
12280 was not reliable enough and provided a poor UX. Instead, we now return
12281 to the initramfs on shutdown and unmount all filesystems there, so their
12282 content and corresponding caches are erased.
12283 - Upgrade Tor Browser to 7.0a4 based on Firefox 52.1.1esr (Closes:
12285 * Unfortunately e10s (multi-process Firefox) is disabled (#12569).
12286 * Unfortunately persistent bookmarks created for the first time
12287 in Tails 3.0~rc1 is broken (#12568).
12288 * Adds exceptions for the extensions Tails installs on top of
12289 the vanilla Tor Browser (Closes: #11419).
12290 - Upgrade tor to 0.3.0.7-1 (Closes: #12485) and log both to the
12291 usual file and the journal (Closes: #12412).
12292 - Merge the code that makes Tails almost build reproducibly (Refs:
12293 #5630); we still have issues with the fontconfig cache (Refs:
12296 * Minor improvements
12297 - Add a HACKING document for new code contributors (Closes:
12299 - Rename tor-controlport-filter to onion-grater (Closes: #12394)
12300 and import patches killing the delta against Whonix version
12302 - Improve onion-grater; thanks to Joy SN <joysn1980@yahoo.com>
12303 for the original patches (Closes: #12173):
12304 · add --listen-interface
12305 · make stdout/stderr unbuffered to ensure Python exceptions are logged
12306 · use yaml.safe_load()
12307 - Improve KeePassX database migration handling (refs: #12375).
12308 - Electrum: set coin selection strategy to 'Privacy' (Closes: #12177).
12309 - Allow Onion Circuits to access /proc/pid/status.
12310 - Make gdm-shell-tails.desktop more similar to the one shipped
12311 in gnome-shell 3.22.3-3 (refs: #12364).
12312 - Greeter: have the help window point to updated documentation,
12313 use WebKit2 instead of the deprecated WebKit, and hide the sidebar
12315 - Use exec to start KeePassX, i.e. avoid leaving the wrapper running.
12318 - Install xserver-xorg-legacy, to fix support for various graphics
12319 adapters that still don't work with rootless X.Org (Closes: #12542).
12320 - Use the "intel" X.Org driver for Intel Q35 and Intel Atom
12321 D4xx/D5xx/N4xx/N5xx graphics controllers (refs: #12219).
12322 - Give UEFI bootloaders upper-case filenames (Closes: #12511).
12323 Some UEFI firmware, such as the one in the ThinkPad X220, only recognize
12324 them if they have an upper-case name.
12325 - KeePassX: enable "Automatically save after each change" again,
12326 like we did in Tails 2.x (fixes a regression introduced
12328 - Install packages needed by the "Test speakers" functionality
12330 - Fix automatic upgrades when one is already applied (Closed:
12332 - When generating the network device blacklist, also blacklist
12333 network drivers from the staging directory (Closes: #12362).
12334 - htpdate pool: replace www.sarava.org with leap.se. The former
12335 has been down for a while and it's not clear when it's going to
12336 be stable again. The latter should be reliable.
12339 - Check that dirmngr used the configured keyserver (Closes: #12371).
12340 - Sanity check that Chutney starts all nodes in the network.
12341 - Disable the Sandbox option for all nodes, until Tor#21943
12342 is fixed (Closes: #12512).
12343 - Wait for the desktop icons to be displayed in the "Tails desktop is ready"
12344 step. Let's not try interacting with the desktop earlier.
12345 - Add tests for memory erasure on "normal" shutdown (refs: #12428).
12346 - Add tests for memory erasure on "emergency" shutdown, and run some
12347 with network enabled (refs: #12354).
12348 - Have eject_cdrom run eject(1) like it used to do in the past.
12349 Otherwise the machine is immediately halted and we cannot test
12350 whether memory has been erased.
12351 - Pass mount_USB_drive structured data instead of free-form text.
12352 - Test that MAC spoofing and "Disable network" works for
12353 hotplugged networking devices (Refs: #12362).
12356 - Generate the Vagrant base box locally as part of the build process,
12357 instead of downloading it: one less binary blob as input in the build
12358 process (refs: #12409).
12359 - Use Vagrant for builds on Jenkins too (Closes: #11972).
12360 - Tell build script to be more verbose.
12361 - Respect the 'ARTIFACTS' environment variable if set.
12362 - Add a second disk to handle the apt-cacher-ng cache, and store
12363 the corresponding logs in there (Closes: #11979).
12364 - Use APT snapshots in Vagrant build VMs, create/use a basebox that matches
12365 the branch/tag/commit being tested, and provision a new VM for each build
12366 (Closes: #11980, #11981).
12367 - Ship all build dependencies in the Vagrant basebox, to save some
12368 time when building ISOs.
12369 - Make basebox generation compatible with both GnuPG 1.x and 2.x.
12370 - Set LC_ALL=C, mostly to suppress some warnings.
12371 - Support forcing VM cleanup before/after build.
12372 - Add tasks for cleaning up old or all base boxes (refs: #12409).
12373 - Add build option useful for debugging build failures.
12374 - Remove obsolete build options.
12375 - Make auto/scripts/utils.sh more reusable, use it in Rakefile,
12376 auto/build and setup-tails-builder.
12377 - Add an option controlling whether to merge the base branch.
12378 - Add "rake test" target and import logics from puppet-tails'
12379 wrap_test_suite script.
12380 - Build Tails as a release simply when HEAD is tagged, i.e. we do not
12381 require building from a detached head any more.
12382 - Sanity check compression choice when building a release.
12383 - Use the host's resolv.conf when building the Vagrant base box.
12384 Since systemd-networkd is used to manage resolv.conf inside the base box,
12385 and it hasn't been initialized yet (we are not booting it, just chrooting
12386 into it) DNS is broken otherwise.
12387 - Release process: "release" a new base box when freezing.
12388 - Chown/scp artifacts with a single command to limit overhead and warnings
12389 noise caused by repeated SSH calls.
12390 - Add a build options to use a custom CPU model, and custom
12391 machine type, for reproducibility testing (refs: #12345).
12392 - Add support for installing Tor Browser nightly builds.
12394 -- Tails developers <tails@boum.org> Sat, 20 May 2017 16:48:45 +0200
12396 tails (3.0~beta4) unstable; urgency=medium
12399 - All changes brought by Tails 2.12.
12400 - Upgrade to a new snapshot of the Debian and Torproject
12401 APT repositories (2017041704).
12403 * Security improvements
12404 - Enable the buddy page allocator free poisoning (Closes: #12089).
12405 - Enable slub/slab allocator free poisoning (Closes: #12090).
12406 - Create IUKs (automatic upgrades) in a reproducible manner
12409 * Minor improvements
12410 - Firewall: forbid the _apt user to talk to DNS ports. APT works very well
12411 without DNS access since we only have Onion APT sources, so let's silence
12413 - Replace Pidgin's "systray" icon with the guifications plugin
12414 (Closes: #11741). We're trying to remove as much as we can from
12415 the set of icons managed by TopIcons extension flavours, in the hope
12416 it's enough to cancel the problems we've seen with them (#10576, #11737).
12417 - Disable apt-daily.timer, that can only cause problems in our context
12419 - Do not let pppd-dns manage /etc/resolv.conf (Closes: #12401).
12420 - Ensure rootless X.Org can access /dev/fb0 when started by GDM.
12421 - Include the amdgpu module in the initramfs (refs: #12218).
12422 - Tails Greeter: don't mention 'firewall' anymore (#12382).
12423 - Tails Greeter: avoid the popover menu for Formats being cut,
12424 in most cases (Closes: #12249).
12425 - Tails Greeter: disable the screensaver (Closes: #12370).
12426 - Tails Greeter: fix behavior when pressing Enter in the language selection
12427 menu (Closes: #12359).
12430 - Install speech-dispatcher-espeak-ng to fix the Orca screen reader
12432 - Install xserver-xorg-video-intel and use it on a few graphics adapters
12433 that are not supported correctly by the modesetting driver (refs: #12219).
12434 More PCI IDs will be added as new affected hardware is reported.
12437 - Run on a Q35 2.8 machine (Closes: #11605).
12438 - Deprecate xtightvncviewer in favor of tigervnc-viewer.
12439 - Test the Unsafe Browser in 3 random supported languages, not all.
12440 This should be enough to identify most future regressions in this area,
12441 and will be much faster than testing them all.
12442 - Pidgin tests: switch to an image that doesn't depend on the
12443 topic of tails@conference.riseup.net.
12444 - Fix a problematic use of try_for.
12445 - Fix VM.select_virtual_desktop() and VM.do_focus().
12446 - Random Gherkin improvements.
12447 - Fix a focus issue for GNOME Terminal vs. Tails Installer.
12448 - Adjust to kernel memory poisoning being enabled, which breaks the way
12449 we used to test memory erasure (refs: #12354):
12450 · Drop "no memory erasure" and "memory erasure" tests, that can't work
12452 · Test erasure of memory freed by a killed userspace process.
12453 · Test that memory poisoning applies to unmounted tmpfs.
12454 · Test that memory poisoning applies to read and write cache
12455 for unmounted vfat and LUKS-encrypted ext4.
12456 · Run erase_memory a bit later, it requires less disk space nowadays.
12458 -- Tails developers <tails@boum.org> Tue, 18 Apr 2017 13:01:25 +0000
12460 tails (2.12) unstable; urgency=medium
12463 - Completely remove I2P. :( We have decided to remove I2P (see
12464 #11276) due to our failure of finding someone interested in
12465 maintaining it in Tails (Closes: #12263).
12466 - Upgrade the Linux kernel to 4.9.13-1~bpo8+1 (Closes: #12122).
12469 - Upgrade Tor Browser to 6.5.2 based on Firefox 45.9. (Closes:
12471 - Mount a dedicated filesystem on /var/tmp, to mitigate the
12472 hardlinks permissions open by the user-tmp abstraction. See
12473 https://labs.riseup.net/code/issues/9949#note-23 for details
12475 - Protect against CVE-2017-2636 by disabling the n-hdlc kernel
12476 module (Closes: #12315).
12477 - Ensure /etc/resolv.conf is owned by root:root in the SquashFS.
12478 lb_chroot_resolv will "cp -a" it from the source tree, so it
12479 inherits its ownership from the whoever cloned the Git
12480 repository. This has two problems. First, this results in unsafe
12481 permissions on this file (e.g. a Vagrant build results in the
12482 'amnesia' user having write access to it).
12483 - Upgrade libjasper1 to 1.900.1-debian1-2.4+deb8u3
12484 - Upgrade gstreamer and its plugins to 1.4.4-2+deb8u1.
12485 - Upgrade eject to 2.1.5+deb1+cvs20081104-13.1+deb8u1.
12486 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u8.
12487 - Upgrade pidgin to 2.11.0-0+deb8u2.
12488 - Upgrade samba to 2:4.2.14+dfsg-0+deb8u5.
12491 * Minor improvements
12492 - Don't add the live user to the "audio" group. This should not be
12493 needed on a modern Linux desktop system anymore (Closes:
12495 - Install virtualbox-* 5.1.14-dfsg-3~bpo8+1 from our custom APT
12496 repository (Closes: #12307).
12497 - Install virtualbox-guest-* from sid. The version currently in
12498 jessie-backports is not compatible with Linux 4.9, and there's
12499 basically no chance that it gets updated (the maintainer asked
12500 for them to be *removed* from jessie-backports) (Closes:
12502 - Pull ttdnsd from our custom APT repository. It's gone from the
12503 TorProject one. We removed ttdnsd on feature/stretch already, so
12504 we'll need to pull it from our custom APT repository only for
12506 - Clean up libdvd-pkg build files, again. This cleanup operation
12507 was mistakenly removed in commit c4e8744 (Closes: #11273).
12508 - Install gnome-sound-recorder (Closes #10950). Thanks to Austin
12509 English <austinenglish@gmail.com> for the patch!
12510 - Stop restarting tor if bootstrapping stalls. It seems tor might
12511 have fixed the issues we used (see: #10238, #9516) to experience
12512 with the bootstrap process stalling and requiring a restart to
12513 kickstart it (Closes: #12411).
12514 - tor.sh: communicate via the UNIX socket instead of TCP port.
12515 This makes the library usable when run inside systemd units that
12516 have `PrivateNetwork=yes` set.
12517 - Get tor's bootstrap progress via GETINFO instead of log
12519 - Upgrade tor to 0.2.9.10-1~d80.jessie+1
12522 - mirror-pool-dispatcher: bump maximum expected mirrors.json size
12523 to 32 KiB. This fixes an error where Tails Upgrader would
12524 complain with "cannot choose a download server" (Closes:
12528 - Retry curl and APT operations up to 20 times to make the ISO
12529 build more robust wrt. unreliable Internet connectivity. Thanks
12530 to Arnaud <arnaud@preev.io> for the patch!
12531 - Install ikiwiki from jessie-backports, instead of our patched
12532 one. Our changes were merged in 3.20161219, and jessie-backports
12533 now has 3.20170111~bpo8+1 (Closes: #12051).
12534 - Fix FTBFS when installing a .deb via config/chroot_local-packages
12535 by being more flexible when matching local packages in the apt
12536 list file (Closes: #12374). Thanks to Arnaud <arnaud@preev.io>
12538 - auto/build: support Stretch's GnuPG v2 keyring filename.
12541 - Try possible fix for #11508. IPv6Packet:s' source is accessed by
12542 `.ipv6_saddr`, not `ip_saddr` (that's for IPv4Packet). So, let's
12543 just try and see which one of the two each packet has, because
12544 one of them must be there! Also, given that UDPPacket can be
12545 either IPv4 or IPv6 it seems safest to try to parse each packet
12546 as IPv6Packet first -- that way we keep looking at transport
12547 layer protocols for IPv4 only, and treat everything IPv6 as the
12548 same, which makes sense, since we should block all IPv6, so
12549 everything should be treated the same at all times.
12550 - Changes due to #12411:
12551 * Raise special exception for Tor bootstrap failures.
12552 * Remove obsolete debug logging now that we don't log anything
12553 interesting for `restart-tor` any more.
12555 -- Tails developers <tails@boum.org> Tue, 18 Apr 2017 17:41:46 +0200
12557 tails (3.0~beta3) unstable; urgency=medium
12559 * Major new features and changes
12560 - Make the "Formats" settings in Tails Greeter take effect (Closes: #12079,
12561 new feature that was broken since it was introduced in 3.0~alpha1).
12562 - Upgrade to a new snapshot of the Debian and Torproject
12563 APT repositories (2017031702).
12566 - Stop including I2P: we decided (#11276) to remove I2P, due to our failure
12567 at finding someone to maintain it in Tails (Closes: #12263).
12570 - Upgrade MAT to 0.6.1-4: fixes silent failure of the Nautilus
12571 contextual menu extension.
12572 - Ensure /etc/resolv.conf is owned by root:root in the SquashFS
12574 - Protect against CVE-2017-2636 by disabling the n-hdlc kernel module
12577 * Minor improvements
12578 - Reintroduce the X11 guest utilities for VirtualBox (regression
12579 introduced in 3.0~beta2).
12580 - Upgrade X.Org server and the modesetting driver (hopefully helps
12582 - Automate the migration from KeePassX databases generated on Tails 2.x
12583 to the format required by KeePassX 2.0.x (Closes: #10956, #12369).
12584 - Add keyboard shortcuts in Tails Greeter (Closes: #12186, #12063).
12585 - Install dbus-user-session (regression introduced in 3.0~beta2).
12586 - Manage temporary directories in a declarative way (tmpfiles.d).
12587 - Replace references to the /var/run compatibility symlink
12588 with the canonical /run.
12589 - Update our Torbirdy patchset to the latest one sent upstream.
12590 - Install mesa-utils, so that Qt 5 can detect whether software based
12591 rendering is needed.
12592 - Have Tails Greeter honor the "debug" kernel command-line option,
12593 for easier debugging (Closes: #12373).
12594 - Refactor Tails Greeter to reduce code duplication (Closes: #12247).
12597 - Fix sizing of zenity dialogs (Closes: #12313, regression introduced
12599 - Fix confusing, spurious error messages in command-line applications
12600 wrapped with torsocks:
12601 · Ship a /etc/mailname file with content "localhost".
12602 Otherwise something (Git? libc6?) tries to resolve the "amnesia" host
12603 name, which fails, and a confusing error message is displayed
12604 (Closes: #12205, regression introduced in 3.0~alpha1).
12605 · Have torsocks allow UDP connections to the loopback interface,
12606 with AllowOutboundLocalhost 2 (Closes: #11736).
12609 - Improve debugging info logging for PacketFu parsing issues,
12610 and implement a plausible fix (refs: #11508).
12611 - Try to make "double-click on desktop launcher" more reliable.
12612 - Fix selection of ISO in Tails Installer.
12613 - Re-enable the GnuPG tests that require a keyserver, pointing them
12614 to an Onion service we run on Chutney, that redirects all TCP traffic
12615 to a real, clearnet keyserver (Closes: #12211).
12616 - Implement a workaround for checking the configured keyserver in GnuPG,
12617 until a better fix is implemented (refs: #12371).
12618 - Fix the "Report an Error launcher" scenario in German.
12621 - Retry curl and APT operations up to 20 times to make the ISO build
12622 more robust wrt. unreliable Internet connectivity.
12623 Thanks to Arnaud <arnaud@preev.io> for the patch!
12624 - Install ikiwiki from jessie-backports, instead of our patched one
12626 - Clean up libdvd-pkg build files, again (Closes: #11273).
12627 - Rakefile: fix TAILS_OFFLINE_BUILD exported variable name.
12628 - Adjust apt-mirror to support branches based on feature/stretch
12629 that don't use frozen APT snapshots.
12631 -- Tails developers <tails@boum.org> Sun, 19 Mar 2017 15:10:28 +0100
12633 tails (3.0~beta2) unstable; urgency=medium
12635 * All changes brought by Tails 2.11, except:
12636 - the test suite changes, that are not all compatible with this branch;
12637 - the "Tails 3.0 will require a 64-bit processor" notification:
12638 this advance warning is not useful on a release series
12639 that's 64-bit only.
12641 * Major new features and changes
12642 - Upgrade to a new snapshot of the Debian APT repositories (2017030802),
12643 and of the Torproject ones (2017030801).
12644 - Upgrade Linux to 4.9.0-2 (version 4.9.13-1).
12646 * Minor improvements
12647 - Improve GNOME Shell Window List styling. (Closes: #12233)
12650 - Make it possible to start graphical applications in the Root Terminal.
12654 - Improve robustness when dealing with notifications. (Closes: #11464)
12655 - Bump timeout when waiting for 'Tor is ready' notification.
12656 - Fix the incremental upgrade test.
12657 - Drop a few obsolete test cases, update a number of images.
12658 - Adapt firewall leak test to new DHCP source IP address.
12659 - Adjust Seahorse and Enigmail tests to the keyserver that is now used.
12661 -- Tails developers <tails@boum.org> Wed, 08 Mar 2017 16:29:44 +0000
12663 tails (2.11) unstable; urgency=medium
12666 - Upgrade Tor Browser to 6.5.1 based on Firefox 45.8. (Closes:
12668 - Fix CVE-2017-6074 (local root privilege escalation) by disabling
12669 the 'dccp' module. (Closes: #12280)
12670 - Disable kernel modules for some uncommon network protocol. These
12671 are the ones recommended by CIS. (Part of: #6457)
12672 - Disable modules we blacklist for security reasons. Blacklisted
12673 (via `blacklist MODULENAME`) modules are only blocked from being
12674 loaded during the boot process, but are still loadable with an
12675 explicit `modprobe MODULENAME`, and (worse!) via kernel module
12677 - Upgrade linux-image-4.8.0-0.bpo.2-686-unsigned to 4.8.15-2~bpo8+2.
12678 - Upgrade bind9 to 1:9.9.5.dfsg-9+deb8u10.
12679 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u7.
12680 - Upgrade libevent-2.0-5 to 2.0.21-stable-2+deb8u1.
12681 - Upgrade libgd3 to 2.1.0-5+deb8u9.
12682 - Upgrade libjasper1 to 1.900.1-debian1-2.4+deb8u2.
12683 - Upgrade liblcms2-2 to 2.6-3+deb8u1.
12684 - Upgrade libxpm4 to 1:3.5.12-0+deb8u1.
12685 - Upgrade login to 1:4.2-3+deb8u3.
12686 - Upgrade ntfs-3g to 1:2014.2.15AR.2-1+deb8u3.
12687 - Upgrade openjdk-7-jre to 7u121-2.6.8-2~deb8u1.
12688 - Upgrade openssl to 1.0.1t-1+deb8u6.
12689 - Upgrade tcpdump to 4.9.0-1~deb8u1.
12690 - Upgrade vim to 2:7.4.488-7+deb8u2.
12691 - Upgrade libreoffice to 1:4.3.3-2+deb8u6.
12693 * Minor improvements
12694 - import-translations: also import PO files for French from
12695 Transifex. The translation team for French switched to Transifex
12696 even for our custom programs:
12697 https://mailman.boum.org/pipermail/tails-l10n/2016-November/004312.html
12698 - Notify the user, if running on a 32-bit processor, that it won't
12699 be supported in Tails 3.0 anymore. (Closes: #12193)
12700 - Notify I2P users that I2P will be removed in Tails
12701 2.12. (Closes: #12271)
12704 - Disable -proposed-updates at boot time. If a Debian point
12705 release happens right after a freeze but we have decided to
12706 enable it before the freeze to get (at least most of) it, then
12707 we get in the situation where -proposed-updates is enabled in
12708 the final release, which we don't want. We only want it enabled
12709 at build time. (Closes: #12169)
12710 - Ferm: Use the variable when referring to the Live user. The
12711 firewall will fail to start during early boot otherwise since
12712 the "amnesia" user hasn't been created yet. (Closes: #12208)
12713 - Tor Browser: Don't show offline warning when opening local
12714 documentation. (Closes: #12269)
12715 - tails-virt-notify-user: use the tails-documentation helper to
12716 improve UX when one is not connected to Tor yet, and display
12717 localized doc when available.
12718 - Fix rare issue causing automatic upgrades to not apply properly
12719 (Closes: #8449, and hopefully #11839 as well):
12720 * Allow the tails-install-iuk user to run "/usr/bin/nocache
12721 /bin/cp *" as root.
12722 * Install tails-iuk 2.8, which will use nocache for various file
12723 operations, and sync writes to the installation medium.
12724 - Install Linux 4.8.15 to prevent GNOME from freezing with Intel
12725 GM965/GL960 Integrated Graphics. (Closes: #12217, but fixes tons
12726 of other small bugs)
12729 - Add 'offline' option, making it possible to build Tails offline
12730 (if all needed resources are present in your cache). (Closes:
12734 - Encapsulate exec_helper's class to not "pollute" the global
12735 namespace with all our helpers. This is an example of how we can
12736 work towards #9030.
12737 - Extend remote shell with *safe* file operations. Now we can
12738 read/write/append *any* characters without worrying that it will
12739 do crazy things by being passed through the shell, as was the
12740 case before. This commit also:
12741 * adds some better reporting of errors happening on the server
12742 side by communicating back the exception thrown.
12743 * removes the `user` parameter from the VM.file_* methods. They
12744 were not used, any way, and simply do not feel like they
12745 fit. I think the only reason we had it initially was because
12746 it was implemented via the command interface, where a user
12747 concept makes a lot of sense.
12748 - debug_log() Dogtail script content on failure.
12749 - Add a very precise timestamp to each debug_log().
12750 - Make robust_notification_wait() ensure the applet is closed. In
12751 robust_notification_wait() when we close the notification
12752 applet, other windows may change position, creating a racy
12753 situation for any immediately following action aimed at one such
12754 window. (Closes: #10381)
12755 - Fix I2P's Pidgin test. The initial conversation (that determines
12756 the title of the conversation window) is now made by a different
12757 IRC service than before.
12758 - Use lossless compression for the VNC viewer with --view.
12759 Otherwise the VNC viewer is not a good place to extract test
12760 suite images from, at least with xtigervncviewer.
12761 - Add optional pause() notification feature to the test suite. It
12762 will run a user-configurable arbitrary shell command when
12763 pause() is called, e.g. on failure when --interactive-debugging
12764 is used. This is pretty useful when multitasking with long test
12765 suite runs, so you immediately are notified when a test fails
12766 (or when you reached a temporary pause() breakpoint). (Closes:
12768 - Add the possibility to run Python code in a persistent session
12769 in the remote shell and use this for Dogtail to significantly
12770 improve its performance by saving state and reusing it between
12771 commands. This changes the semantics of the creation of Dogtail
12772 objects. Previously they just created the code that then would
12773 be run once an actionable method was called (.wait, .click etc),
12774 but now it works like in Python, that Dogtail will try to find
12775 the graphical element upon object creation. (Closes: #12059)
12776 - Test that we don't ship any -proposed-updates APT sources.
12778 - Make force_new_tor_circuit() respect NEWNYM rate limiting.
12779 - Add retry magic for lost click when opening Tails' documentation
12780 from the desktop launcher. (Closes: #12131)
12782 -- Tails developers <tails@boum.org> Mon, 06 Mar 2017 17:14:52 +0100
12784 tails (3.0~beta1) experimental; urgency=medium
12786 * All changes brought by Tails 2.7.1, 2.9.1 and 2.10.
12788 * Major new features and changes
12789 - Redesigned Tails Greeter.
12790 - Upgrade to a new snapshot (2017013002) of the Debian and Torproject
12792 - Upgrade Linux to 4.9.0-1.
12795 - Reject packets sent on the LAN to the NetBIOS name service
12797 - Seahorse: use the Tor OnionBalance hidden service pool,
12798 which provides transport encryption and authentication of the keyserver.
12800 * Minor improvements
12801 - Include adwaita-qt* and enable it by default, so that Qt applications
12802 integrate nicely into a GNOME environment (Closes: #11790).
12803 - Add support for the TREZOR hardware wallet in Electrum (Closes: #10964).
12804 - AppArmor: allow all programs to read /etc/tor/torsocks.conf via
12805 abstractions/base, to ease maintenance.
12806 - Don't (try to) bind the Power button to the shutdown action
12808 - Enable natural scrolling (Closes: #11969).
12809 - Update uBlock Origin patterns + settings file.
12810 - live-persist: remove Squeeze → Wheezy migration code.
12811 - Update pre-existing persistent GnuPG configuration on login
12813 - Upgrader: use the alpha channel when the next version will be an
12814 alpha, beta, or RC. This will allow users of 3.0~betaN to upgrade to
12815 the next beta or RC, without having to type any command-line
12819 - Fix "upgrade from ISO" when run from a 32-bit system,
12820 such as Tails 2.x (Closes: #11873).
12821 - Fix ability to read videos over HTTPS with Totem (Closes: #11963).
12822 - Re-introduce default directories in $HOME, which fixes
12823 Spice file transfers (Closes: #11968).
12824 - Re-enable tap-to-click (Closes: #11993).
12825 - Lower systemd's DefaultTimeoutStopSec, to get rid of a long delay
12826 before memory wiping starts. This also prevents shutdown from ever
12827 being blocked by any buggy service that takes a while to stop
12829 - Drop Jessie APT sources.
12830 - Re-add VirtualBox DKMS modules.
12831 - Fix GnuPG communication with keyservers, by using the Tor OnionBalance
12832 hidden service pool (Closes: #12202).
12833 - Fix Enigmail communication with keyservers, by teaching Torbirdy
12834 not to break it (Closes: #11948):
12835 · Patch Torbirdy to allow not breaking keyserver communication when
12836 using GnuPG v2.1+, and to use a better default keyserver.
12837 · Torbirdy: enable the new behaviour made possible by the aforementioned
12838 patch (extensions.enigmail.already_torified).
12839 · Torbirdy: drop our custom keyserver configuration, since the
12840 aforementioned patch makes it the default.
12843 - Don't install gnome-system-log anymore (Closes: #12133).
12844 It's deprecated in GNOME, and mostly useless anyway as it's not
12845 Journal-aware. It's replacement (gnome-logs) is not usable
12846 enough in the context of Tails, and most users who can read logs
12847 should manage to do it with journalctl, so don't install it either.
12848 - Drop multiarch handling: Tails 3.0 will be amd64-only (Closes: #11961).
12851 - Disable eatmydata usage and caching: in current Stretch, debootstrap fails
12852 if we use eatmydata + the operation mode picked by live-build when caching
12853 is enabled (Closes: #12052).
12854 - Bump disk space (and memory for in-RAM builds) requirements.
12855 - Follow replacement of python-reportbug with python3-reportbug.
12856 - Don't try to deinstall packages that are unknown on Stretch.
12857 - Move AppArmor aliases to a dedicated file, and include it.
12858 This will avoid maintaining these settings as a patch.
12859 - Don't attempt to remove the usr.bin.chromium-browser AppArmor profile:
12860 it's not shipped in Debian anymore.
12863 - Add optional pause() notification (Closes: #12175).
12864 - Make the remote shell's file operations robust (Closes: #11887).
12865 - Update a number of test cases for Stretch, sometimes by converting
12867 - Drop usage and tests of read-only persistence.
12868 We won't have this option anymore, and it's not even sure we'll
12869 reintroduce it (Refs: #12093, Closes: #12055).
12870 - Adjust CONFIGURED_KEYSERVER_HOSTNAME to match current settings.
12871 - Test suite: clean up disks between features.
12873 * Adjustments for Debian 9 (Stretch) with no or very little user-visible impact
12874 - Adjust dpkg-divert path: it has moved.
12875 - Replace xfonts-wqy with fonts-wqy-microhei + fonts-wqy-zenhei.
12876 The former was removed from Debian testing, and the latter are recommended
12877 by task-chinese-s-desktop and task-chinese-t-desktop.
12878 - Install virtualbox* from sid.
12879 It was removed from testing due to https://bugs.debian.org/794466.
12880 - Drop deprecated settings from org/gnome/settings-daemon/plugins/power.
12881 - Update settings name in org/gnome/desktop/peripherals/touchpad, and drop
12883 - Adjust to changed Liferea's .desktop filename.
12884 - Also torify Liferea when started via its (new) D-Bus service.
12885 - Install hunspell-pt-br instead of hunspell-pt-pt.
12886 Tor Browser 6.5 moved from pt-PT to pt-BR, which is fine vs
12887 spellcheckers in Jessie since its hunspell-pt provides both -pt and
12888 -br, but in Stretch they are separate packages.
12889 - AppArmor: adjust usr.sbin.cupsd profile so it loads successfully
12891 - Migrate from netstat to ss.
12892 - Update extensions.enigmail.configuredVersion.
12893 - Remove the jessie-proposed-updates APT sources.
12895 -- Tails developers <tails@boum.org> Wed, 01 Feb 2017 19:23:03 +0000
12897 tails (2.10) unstable; urgency=medium
12899 * Major new features and changes
12900 - Upgrade the Linux kernel to 4.8.0-0.bpo.2 (Closes: #11886).
12901 - Install OnionShare from jessie-backports. Also install
12902 python3-stem from jessie-backports to allow the use of ephemeral
12903 onion services (Closes: #7870).
12904 - Completely rewrite tor-controlport-filter. Now we can safely
12905 support OnionShare, Tor Browser's per-tab circuit view and
12908 * Handle multiple sessions simultaneously.
12909 * Separate data (filters) from code.
12910 * Use python3-stem to allow our filter to be a lot more
12911 oblivious of the control language (Closes: #6788).
12912 * Allow restricting STREAM events to only those generated by the
12913 subscribed client application.
12914 * Allow rewriting commands and responses arbitrarily.
12915 * Make tor-controlport-filter reusable for others by e.g. making
12916 it possible to pass the listen port, and Tor control
12917 cookie/socket paths as arguments (Closes: #6742). We hear
12918 Whonix plan to use it! :)
12919 - Upgrade Tor to 0.2.9.9-1~d80.jessie+1, the new stable series
12923 - Upgrade Tor Browser to 6.5 based on Firefox 45.7 (Closes: #12159)
12924 - Upgrade Icedove to 1:45.6.0-1~deb8u1+tail1s.
12925 - Upgrade bind9-packages to 1:9.9.5.dfsg-9+deb8u9.
12926 - Upgrade pcscd to 1.8.13-1+deb8u1.
12927 - Upgrade libgd3 to 2.1.0-5+deb8u8.
12928 - Upgrade libxml2 to 2.9.1+dfsg1-5+deb8u4.
12929 - Upgrade tor to 0.2.9.9-1~d80.jessie+1.
12930 - Upgrade samba-libs to 2:4.2.14+dfsg-0+deb8u2.
12932 * Minor improvements
12933 - Enable and use the Debian Jessie proposed-updates APT
12934 repository, anticipating on the Jessie 8.7 point-release
12936 - Enable the per-tab circuit view in Tor Browser (Closes: #9365).
12937 - Change syslinux menu entries from "Live" to "Tails" (Closes:
12938 #11975). Also replace the confusing "failsafe" wording with
12939 "Troubleshooting Mode" (Closes: #11365).
12940 - Make OnionCircuits use the filtered control port (Closes:
12942 - Make tor-launcher use the filtered control port.
12943 - Run OnionCircuits directly as the Live user, instead of a
12944 separate user. This will make it compatible with the Orca screen
12945 reader (Closes: #11197).
12946 - Run tor-controlport-filter on port 9051, and the unfiltered one
12947 on 9052. This simplifies client configurations and assumptions
12948 made in many applications that use Tor's ControlPort. It's the
12949 exception that we connect to the unfiltered version, so this
12950 seems like the more sane approach.
12951 - Remove tor-arm (Nyx) (Closes: #9811).
12952 - Remove AddTrust_External_Root.pem from our website CA bundle. We
12953 now only use Let's Encrypt (Closes: #11811).
12954 - Configure APT to use Debian's Onion services instead of the
12955 clearnet ones (Closes: #11556).
12956 - Replaced AdBlock Plus with uBlock Origin (Closes: #9833). This
12957 incidentally also makes our filter lists lighter by
12958 de-duplicating common patterns among the EasyList filters
12959 (Closes: #6908). Thanks to spriver for this first major code
12961 - Install OpenPGP Applet 1.0 (and libgtk3-simplelist-perl) from
12962 Jessie backports (Closes: #11899).
12963 - Add support for exFAT (Closes: #9659).
12964 - Disable unprivileged BPF. Since upgrading to kernel 4.6,
12965 unprivileged users can use the bpf() syscall, which is a
12966 security concern, even with JIT disabled. So we disable that.
12967 This feature wasn't available before Linux 4.6, so disabling it
12968 should not cause any regressions (Closes: #11827).
12969 - Add and enable AppArmor profiles for OnionCircuits and OnoinShare.
12970 - Raise the maximum number of loop devices to 32 (Closes: #12065).
12971 - Drop kernel.dmesg_restrict customization: it's enabled by
12972 default since 4.8.4-1~exp1 (Closes: #11886).
12973 - Upgrade Electrum to 2.7.9-1.
12974 - Make the Electrum proxy configuration apply after upgrading to
12975 2.7.9-1. These changes incidentally makes Electrum behave nicer:
12976 users will now not be presented the network configuration part
12977 of the setup wizard -- a server will be picked randomly, and
12978 Electrum will auto-connect. The automated test suite is adjusted
12979 accordingly (Closes: #12140).
12980 - Remove unused Browser profile seed file localstore.rdf which was
12981 made obsolete in Firefox 34.
12982 - Tor Browser: switch from pt-PT to pt-BR langpack. The upstream
12983 Tor Browser did this in version 6.5 (Refs: #12159).
12987 * use gdm-password instead of gdm-autologin, to fix switching to
12988 the VT where the desktop session lives on Stretch (Closes:
12990 * Fix more options scrolledwindow size in Stretch (Closes:
12992 - Tails Installer: remove unused code warning about missing
12993 extlinux in Tails Installer (Closes: #11196).
12994 - Update APT pinning to cover all binary packages built from
12995 src:mesa so we ensure installing mesa from jessie-backports
12997 - Install xserver-xorg-video-amdgpu. This should help supporting
12998 newer AMD graphics adapters. (Closes #11850)
12999 - Fix firewall startup during early boot, by referring to the
13000 "amnesia" user via its UID (Closes: #7018).
13001 - Include all amd64-microcodes.
13002 - refresh-translations: ignore
13003 config/chroot_local-includes/usr/share/doc/tails/website/.
13004 Otherwise, if the website has been built already, PO tools
13005 complain that there are files with translatable strings in
13006 there, which are not listed in POTFILES.in.
13007 - Make uBlock Origin's button appear on first run. Otherwise it
13008 will only appear on browser runs after the first one. This bug
13009 also affected Adblock Plus (Closes: #12145).
13012 - Be more careful when unmounting the tmpfs used as workspace
13013 during builds, fixing an issue that made Jenkins' ISO builders
13014 prone to failures (Closes: #12009).
13015 - Upgrade the Vagrant basebox to 20170105. The only big change is
13016 that we now install the backported kernel in the builder VM, to
13017 make building possible on Debian Sid (Closes: #12081).
13018 - Ensure the VirtualBox guest DKMS modules are built for the
13019 kernel we want them for. In some situations, depending on the
13020 version of the running kernel, the modules would not be built
13021 for the 686 kernel, which is the one that needs the VirtualBox
13022 guest modules. This commit ensures the VirtualBox guest modules
13023 are built and installed regardless of the how the build
13024 environment looks like (Closes: #12139).
13027 - Replace the filesystem shares support with a helper for easily
13028 sharing files from the host to the guest using virtual disks
13030 - Do not test sending email when testing POP3. We cannot clean
13031 that email up (easily) since when we use POP3 deletions won't
13032 affect the remote inbox, only our local one, resulting in the
13033 quota being reached eventually (Closes: #12006).
13034 - Have APT tests configure APT to use non-onion sources. Our test
13035 suite uses Chutney to create a virtual, private Tor network, and
13036 thus doesn't support connections to Onion services running in
13037 the real Tor network (Refs: #11556).
13038 - Allow connections to Tor's control port during stream isolation
13039 tests, but only for those applications where we expect that.
13040 - Fix Electrum tests after upgrading to 2.7.9-1.
13041 - Make encryption.feature pass for Tails 2.10~rc1.
13042 - Adapt tests after the Donation campaign was disabled (Refs:
13044 - Fix 'The "Tails documentation" link on the Desktop works'
13045 scenario. The TailsOfflineDocHomepage.png image doesn't match
13046 what we see any more (I have no clue why), so let's use Dogtail
13047 and solve this once and for all, hopefully.
13048 - Work around Tails freezing during memory wiping. These
13049 workarounds should be reverted once #11786 is fixed
13050 properly. (Refs: #10776, #11786)
13051 - Support both xtigervncviewer and xtightvncviewer for --view.
13052 xtightvncviewer is a transitional package in Sid, which depends
13053 on tigervnc-viewer (which ships xtigervncviewer), so by keeping
13054 the dep and supporting both binaries, --view will work on both
13055 Sid and Jessie (Closes: #12129).
13056 - Test suite: bump image after upgrading to Tor Browser 6.5 (Refs:
13058 - Add debugging info for when PacketFu misbehaves, and be more
13059 careful when to save pcap artifacts (Refs: #11508).
13061 -- Tails developers <tails@boum.org> Mon, 23 Jan 2017 11:38:37 +0100
13063 tails (2.9.1) unstable; urgency=medium
13066 - Upgrade Tor Browser to 6.0.8 based on Firefox 45.6. If you pay
13067 close attention you'll see that we import -build1 but there was
13068 a -build2. The only change is Tor Button 1.9.5.13 which makes
13069 some changes to the donation campaign banner in `about:tor`,
13070 which we safely can skip. (Closes: #12028)
13071 - Upgrade Icedove to 45.5.1-1~deb8u1+tails1. (Closes: #12029)
13072 - Upgrade APT-related packages to 1.0.9.8.4.
13074 * Minor improvements
13075 - Switch to DuckDuckGo as the default search engine in the tor
13076 Browser. This is what Tor Browser has, and Disconnect.me (the
13077 previous default) has been re-directing to DDG for some time,
13078 which has been confusing users. In addition, we localize the DDG
13079 user interface for the locales with availablelangpacks. (Closes:
13081 - Improve the display name for the Wikipedia search plugin.
13082 - Enable contrib and non-free for our own APT repos.
13083 - Upgrade Tor to 0.2.8.10. (Closes: #12015)
13084 - Upgrade obfs4proxy to 0.0.7-1~tpo1.
13087 - AppArmor Totem profile: add permissions needed to avoid warning
13088 on startup. (Closes: #11984)
13089 - Upgrade the VirtualBox Guest additions and modules to version
13090 5.1.8. This should prevent Xorg from crashing unless the video
13091 memory for the VMs are significantly bumped. (Closes: #11965)
13092 Users will still have to enable I/O APIC due to a bug in Linux.
13093 - Drop unwanted search plugins from the Tor Browser langpacks.
13094 Otherwise they are only removed from English locales. Note that
13095 the langpacks contain copies of the English plugins, not
13096 localized versions, so we actually lose nothing.
13099 - Add support for SikuliX, which recently hit Debian Unstable,
13100 while still supporting Sikuli for Jessie users. (Closes: #11991)
13101 - Fix some instances where we were trying to use the mouse outside
13102 of the Sikuli screen.
13103 - Use "TorBirdy" instead of "amnesia branding" as the "anchor"
13104 addon. I.e. the addon that we use to find the other ones. The
13105 "amnesia branding" addon has been removed, so we must use
13106 something else. (Fixup: #11906)
13107 - Dogtailify "the support documentation page opens in Tor Browser"
13108 step. We previously relied on Sikuli, and the image was made
13109 outdated thanks to our donation campaign. No more! (Closes:
13111 - Resolve dl.amnesia.boum.org instead of picking a static address.
13112 Just hours after updating the dustri.org IP address, its web
13113 server went down => test suite failures. Let's make this test as
13114 robust as actually downloading the Tails ISO image -- if that
13115 fails, we probably have more serious problems on our hands than
13116 a failing test suite. (Closes: #11960)
13117 - Switch MAT scenario from testing PDFs to PNGs. Also add
13118 anti-test and test using using a tool *different* from MAT, the
13119 tool being tested here. (Closes: #11901)
13121 -- Tails Developers <tails@boum.org> Wed, 14 Dec 2016 13:19:16 +0100
13123 tails (2.7.1) unstable; urgency=medium
13126 - Upgrade Tor Browser to 6.0.7 (build3) based on Firefox 45.5.1.
13127 - Upgrade gstreamer0.10-based packages to 0.10.31-3+nmu4+deb8u2.
13128 - Upgrade imagemagick-based packages to 8:6.8.9.9-5+deb8u6.
13129 - Upgrade libicu52 to 52.1-8+deb8u4.
13130 - Upgrade vim-based packages to 2:7.4.488-7+deb8u1.
13132 * Minor improvements
13133 - Reserve 64 MiB for the kernel and 128 MiB for privileged
13134 processes before the memory is wiped. We hope that this might
13135 help (but not solve, sadly) some crashes experienced while
13139 - Make the wiki shipped inside Tails build deterministically
13141 * Enable ikiwiki's "deterministic" option, and require it when
13143 * Use our custom backport of discount (2.2.1-1~bpo8+1~0.tails1),
13144 to fix reproducibility issues (Debian#782315). This can be
13145 dropped once our ISO builders use Stretch.
13146 * Install ikiwiki from our builder-jessie APT suite, to make the
13147 pagestats plugin output deterministic.
13148 - refresh-translations: don't update PO files unless something
13149 other than POT-Creation-Date was changed. (Closes: #11967)
13150 - Fix Vagrant's is_release? check. Per auto/build, we consider it
13151 a release when we build from detached head, and HEAD is tagged.
13152 - Enforce `cleanall` when building a release. I.e. don't allow the
13153 user supplied options to override this behaviour. This is
13154 important since Vagrant caches wiki builds, and we do not want
13155 leftovers from a previous builds ending up in a release. Also,
13156 this is required for making Tails images build reproducibly.
13157 - Make the build system's `cleanall` option really clean
13158 everything. At the moment it doesn't clean the cached wiki
13159 build (which basically was its only job).
13160 - import-package: support contrib and non-free sections.
13163 - Wait a bit between opening the shutdown applet menu, and
13164 clicking one of its widgets. (Closes: #11616).
13165 - Adapt Icedove test after removing the amnesia branding add-on.
13167 - Replace --pause-on-fail with --interactive-debugging. It does
13168 the same thing, but also offers an interactive Ruby shell, via
13169 pry, with the Cucumber world context.
13171 -- Tails developers <tails@boum.org> Wed, 30 Nov 2016 17:27:37 +0100
13173 tails (3.0~alpha1) experimental; urgency=medium
13175 * Major new features and changes
13176 - Upgrade to a snapshot of Debian 9 (Stretch) from 2016-11-15.
13177 - Switch userpace from 32-bit to 64-bit (Closes: #8183), and accordingly:
13178 · Memory erasure: drop the "one instance of sdmem per 2 GiB of RAM" tweak,
13179 that is not needed on x86-64.
13180 · Display a "sorry!" message when trying to boot on a 32-bit BIOS system
13182 - Switch GNOME Shell to its default black theme (Closes: #11789).
13184 * Minor improvements
13185 - Install the cirrus and modesetting X.Org drivers (Closes: #10962).
13186 - Install the 'amdgpu' driver for the AMD Radeon cards (refs: #11850).
13187 - Stop disabling kernel modesetting for QXL (refs: #11518).
13188 - Replace TopIcons with gnome-shell-extension-top-icons-plus.
13189 The former causes plenty of trouble and is apparently abandoned
13190 upstream. The latter is actively maintained upstream, and packaged
13191 in Debian. (refs: #10576)
13192 - Use torsocks to torify Git, and drop tsocks entirely. tsocks has been
13193 unmaintained for years in Debian, and was removed from testing
13194 for a while (Closes: #10955).
13195 - Replace Florence's "systray" icon with the Florence Indicator GNOME Shell
13196 extension (refs: #8312). And then, don't automatically start Florence:
13197 the Florence Indicator GNOME Shell extension will start it the first time
13198 one tries to display it. This should save a tiny bit of RAM.
13199 - Harden AppArmor Totem profiles.
13200 - Switch to the Debian-packaged aufs kernel module (Closes: #11829).
13201 - Configure the firewall to not allow root to connect to Tor at all,
13202 which is possible now that APT uses a dedicated user for network
13204 - Fix firewall startup during early boot, by referring to the "amnesia"
13205 user via its UID (refs: #7018).
13206 - Install hunspell dictionaries instead of myspell ones, for a few more
13207 languages: Spanish, Italian, Portuguese and Russian. Only Farsi keeps
13208 using a myspell dictionary for now.
13211 - Stop installing BookletImposer PDF imposition toolkit.
13212 It's unmaintained upstream and thus won't be part of Debian Stretch.
13213 - Stop installing ekeyd: it's unmaintained, very rarely used, poorly
13214 designed (dedicated daemon), and security sensitive (Closes: #7687).
13215 - Stop shipping ttdnsd. It was only useful for developers and power-users
13216 who can install it themselves as needed. It's been unmaintained upstream
13217 for many years. It's very buggy so we had to remove it from the DNS
13218 resolution loop years ago. It's not in Debian. And it's one of the only
13219 two bits of Tails that still relied on tsocks, that is RC-buggy,
13220 unmaintained in Debian, and not in Stretch at the moment. So it has
13221 become clear that the cost of keeping ttdnsd now outweighs the benefits
13222 it brought (refs: #10959).
13225 - Bump disk space (and memory for in-RAM builds) requirements.
13226 - Support new live-config configuration directory naming, again and again.
13227 - Use the lowest compression level for the SquashFS when compressing it
13228 with gzip. This makes our development builds faster, and the resulting
13229 ISO image only a little bit bigger (Closes: #9788).
13230 - Configure initramfs compression later, to make the build faster.
13233 - Various refactoring while we were at it.
13234 - Port tests to Dogtail: installation, upgrade, notification detection,
13235 Synaptic, Gobby, and some of Tor Browser.
13236 - Workaround GNOME Shell being buggy for Dogtail (refs: #11718).
13237 - Update a bunch of test suite images for Stretch.
13238 - Mark created disk as temporary when we don't need to keep it around.
13239 - Simplify adding NetworkManager connections, and rely more on the defaults.
13240 Not providing the complete configuration file makes us test something
13241 closer to what happens when a user adds a Wi-Fi connection themselves.
13242 - Adjust the minimum allowed memory pattern coverage before wiping.
13243 - Always sync the time from the host when restoring from a snapshot.
13244 Previously we wouldn't do it when the network was plugged but Tor wasn't
13245 running, which can cause issues if we *then* start Tor since the time
13247 - Adjust to the fact that we now support running as a 64-bit guest
13248 in VirtualBox, and simplify code since we now include a 64-bit userland.
13249 - Improve how we restart Tor/I2P after restoring from a snapshot.
13250 - Adjust PolicyKit tests for Stretch.
13251 - Work around Tails stopping on shut down due to #11730.
13252 This should be reverted once #11730 is fixed properly.
13253 - Update the screenshot scenario.
13254 - Fix pcap file saving on MAC spoofing failure (Closes: #11698).
13255 - Test that notifications are actually shown.
13256 - Drop obsolete workaround for Florence sometimes not being hidden
13257 on startup (#11398).
13258 - Avoid remote shell deadlock.
13259 - Install at-spi2-core from Debian Sid.
13260 With the current version in Stretch, at-spi-bus-launcher crashes on
13261 start, breaking parts of GNOME's accessibility, and Dogtail.
13262 For details, see https://bugs.debian.org/840618.
13263 - Check that the MAC address is spoofed for manually added persistent
13264 NetworkManager connections created on Jessie and Stretch (refs: #11931).
13265 - Use nc.traditional in tests that rely on its behaviour.
13266 - Adjust expected notification text to cope with #11941.
13268 * Adjustments for Debian 9 (Stretch) with no or very little user-visible impact
13269 - Adjust APT sources and pinning for Stretch.
13270 - Don't install gnome-media, which is not part of testing/sid anymore.
13271 We already install the only bits it was providing or depending on.
13272 - Don't install gnome-themes: it's gone in Stretch.
13273 - Stop installing GStreamer 0.10 explicitly: it won't be in Stretch,
13274 and some bits are gone already.
13275 - Refresh and unfuzzy patches for Stretch. Replace some of them with
13276 programmatic patching, as patches break the build whenever
13278 - Drop start_AppArmor_earlier.diff: on Stretch, AppArmor starts much earlier
13280 - Accept iceweasel-l10n-* that don't provide any search engine:
13281 on Stretch, at least iceweasel-l10n-ar_1%3a43.0.4-1_all.deb doesn't.
13282 - Stop deleting 75-persistent-net-generator.rules: obsolete in Stretch.
13283 It was removed in systemd (220-7).
13284 - Tell live-boot we're still using aufs: recent live-boot defaults
13285 to overlayfs, which we don't use yet.
13286 - Don't remove imagemagick in 11-localize_browser: cups-filters depends on it
13288 - Explicitly install bc: needed by our 2010-pidgin live-config hook.
13289 - Remove gcc-4.9-base and gcc-5 via a chroot hook, taking into account
13290 that GCC 5 is the default on Stretch.
13291 - Switch to openjdk-8-jre: openjdk-7-jre is not in Stretch anymore.
13292 - gcalctool was renamed to gnome-calculator.
13293 - Don't try to delete non-existing AppArmor profile for ntpd: it was moved
13294 to the ntp package in Stretch.
13295 - Build DKMS modules with GCC 5: Stretch hasn't 4.8 anymore.
13296 - Don't try to reload or disable an initscript that we don't patch,
13297 and that doesn't exist anymore.
13298 - Support the case when /usr/src/libdvd-pkg does not exist.
13299 Apparently this can happen on Stretch.
13300 - Adjust to the move of /etc/gnome/defaults.list in Stretch
13302 - Stop installing xserver-xorg-input-vmmouse. It's obsolete and conflicts
13303 with recent kernels: https://bugs.debian.org/831420
13304 - Install open-vm-tools from sid: it's been removed from testing.
13305 - Install the gobby package, instead of the (now gone) transitional
13307 - apparmor-adjust-tor-profile.diff: drop bits that are useless, and
13308 prevent Tor from starting, on Stretch.
13309 - Tor Daemon Status: declare compatibility with GNOME Shell 3.20.
13310 - Shutdown helper: declare compatibility with GNOME Shell 3.20.
13311 - Drop 43-adjust_path_to_ibus-unikey_binaries hook: it was a workaround
13312 for a bug (Debian#714932) that was fixed.
13313 - Use netcat-openbsd instead of connect-proxy for torifying SSH.
13314 connect-proxy seems barely maintained in Debian and was removed from
13315 testing due to https://bugs.debian.org/830423.
13316 - Don't disable gdomap service: we don't include it anymore.
13317 unar in Jessie depended on gnustep-base-runtime (that ships gdomap),
13318 but this is not the case in Stretch anymore.
13319 - Install system-config-printer-common instead of system-config-printer,
13320 and drop customization that were needed only for the latter:
13321 system-config-printer (1.5.7-2) extracts into a new -common package
13322 the bits needed by gnome-control-center (Closes: #11505).
13323 - Adjust haveged AppArmor profile to work with Linux 4.x on Stretch.
13324 - cupsd AppArmor profile: update list of backends, and add aufs-specific
13325 tweak that Stretch needs (refs: #11699).
13326 - Revert to GNOME's default font antialiasing/hinting.
13327 We fixed on rgba/slight when converting some manual fontconfig stuff
13328 to GNOME's layer on top of it, but at least from a fresh Stretch
13329 install (2016-08-24) we got grayscale/slight. It could be that some
13330 auto-detection is involved, so the values would be different depending
13331 on the actual hardware. Any way, let's try to decrease our delta here.
13332 - Adjust haveged arguments customization for Stretch (Closes: 11522).
13333 - Display the date in the desktop top bar, as we did in Jessie and older.
13335 - Drop patch to keep haveged, saned, spice-vdagent and laptop-mode running
13336 on shutdown. These patches are no-ops on Stretch, where these services
13337 have native systemd unit files. It's not worth porting these patches:
13338 saned is socket-activated so in most cases it does not have to be shut
13339 down, and we expect that the other ones can be stopped pretty quickly.
13340 Let's bring back this kind of optimization if, and only if, we identify
13341 an actual problem to fix in this area :)
13342 - Don't delete downloaded debs after install: apt(8) >= 1.2~exp1 deletes
13343 them by default, which is not nice for users who use it to preseed
13344 their persistent APT cache. (Closes: #10958)
13345 - Hide "OpenJDK Java 8 Policy Tool" from the Applications menu.
13346 - Don't ship GCC 6: we don't ship compilers in Tails usually.
13347 - Don't ship gcc-5-base: on Stretch we ship gcc-6-base instead.
13348 - Don't start shipping libdvdcss2-dbgsym nor paxctld.
13349 - Adjust default web browser customization: GNOME in Debian now defaults
13350 to Firefox ESR (refs: #11440).
13351 - Install libreoffice-gtk3: on Stretch this is needed to have Gtk+ 3 widgets
13352 and a Gtk/GNOMEish print dialog.
13353 - Explicitly install gtk2-engines-pixbuf, as it's not pulled automatically
13354 on Stretch, and it's needed to theme GTK+ 2 applications in a nice way
13356 - AppArmor gnome abstraction: allow reading /etc/xdg/*-mimeapps.list
13358 - Drop obsolete disabling of GNOME Keyring's GnuPG agent feature.
13359 That feature was removed upstream.
13360 - Explicitly select pinentry-gtk2 as our preferred pinentry program.
13361 On Stretch, gnome-keyring depends on pinentry-gnome3, and then that one
13362 is selected by default. It does not feel worth it to introduce a hackish
13363 solution such as a fake pinentry-gnome3 package, so let's ignore it and
13364 just make sure we are using the pinentry program we prefer
13366 - Drop keep_memlockd_on_shutdown.diff: it's been a no-op since Tails 2.0
13368 - Drop custom NetworkManager plugin configuration: these tweaks are not
13369 needed on Stretch anymore.
13370 - Disable new style network interface naming scheme.
13371 It has little value for a live system, so let's stick to what we are
13372 used to, and avoid having to adjust code/config/test suite
13374 - Drop obsolete NM configuration wrt. sending hostname in DHCP requests
13376 - Update APT pinning to cover all binary packages built from src:mesa
13378 - Don't try to install gnupg-curl: it doesn't exist anymore in Stretch.
13379 - Install seahorse-nautilus from sid. It's been removed from testing.
13380 - Drop workaround for Debian bug #645466, that was fixed in 2014
13382 - Allow the "_apt" user to use Tor: in Stretch, APT network operations
13383 are performed with the "_apt" user and not root.
13384 - Make sure that 'localhost' points to the IPv4 loopback address.
13385 - Make desktop launchers executable (Closes: #11927).
13386 - Disable Wayland usage in GDM (Closes: #11923).
13387 - Fix AppArmor profile for gst-plugin-scanner (Closes: #11928).
13388 - Change Nautilus' default zoom level to 'small' (Closes: #11716).
13389 The icons in GNOME Files and on the desktop are too huge otherwise. With
13390 this new setting, they are similar in size to what we had in Jessie.
13391 - Fix broken symlink preventing Enigmail from being enabled.
13392 - Configure NetworkManager to not touch MAC addresses (refs: #11931).
13393 Its default behaviour on Debian Stretch is to reset the MAC address to the
13394 permanent one, and we did not make up our mind yet wrt. replacing
13395 our custom MAC spoofing system with NM's own one (refs: #11293).
13396 - Patch NetworkManager so that it does not leak the hostname in DHCP
13397 requests (Closes: #11720).
13398 - Deal with the fact that the NetworkManager dispatcher scripts are now
13399 sometimes called with an empty first argument (Closes: #11938).
13400 - Upgrade to GnuPG 2.1.15-9, and accordingly:
13401 · Remove the CA certificate for sks-keyservers.net, that we installed
13402 in the system-wide CAs directory: it is now included in the dirmngr
13403 package. Stop trusting it for non-GnuPG operations.
13404 · Make dirmngr use the sks-keyservers.net CA certificate from Debian.
13405 · Move keyserver proxy configuration to dirmngr.conf, and drop the
13406 keyserver-options that are obsolete or now the default.
13408 -- intrigeri <intrigeri@boum.org> Thu, 17 Nov 2016 16:19:21 +0000
13410 tails (2.7) unstable; urgency=medium
13413 - Upgrade to Linux 4.7. (Closes: #11885, #11818)
13414 - Upgrade to Tor 0.2.8.9. (Closes: #11832, #11891)
13415 - Upgrade Tor Browser to 6.0.6 based on Firefox 45.5. (Closes: #11910)
13416 - Upgrade Icedove to 1:45.4.0-1~deb8u1+tails1. (Closes: #11854,
13418 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u5.
13419 - Upgrade openssl to 1.0.1t-1+deb8u5.
13420 - Upgrade libarchive to 3.1.2-11+deb8u3.
13421 - Upgrade bind9 to 1:9.9.5.dfsg-9+deb8u8.
13422 - Upgrade libav to 6:11.8-1~deb8u1.
13423 - Upgrade ghostscript to 9.06~dfsg-2+deb8u3.
13424 - Upgrade c-ares to 1.10.0-2+deb8u1.
13425 - Upgrade nspr to 2:4.12-1+debu8u1.
13426 - Upgrade nss to 2:3.26-1+debu8u1.
13427 - Upgrade tar to 1.27.1-2+deb8u1.
13428 - Upgrade curl to 7.38.0-4+deb8u5.
13429 - Upgrade libgd3 to 2.1.0-5+deb8u7.
13430 - Upgrade opendjk-7 to 7u111-2.6.7-2~deb8u1.
13431 - Upgrade mat to 0.5.2-3+deb8u1.
13432 - Upgrade libxslt to 1.1.28-2+deb8u2.
13433 - Upgrade pillow to 2.6.1-2+deb8u3.
13435 * Minor improvements
13436 - Ship Let's encrypt intermediate certificate to prepare the
13437 the next certificate renewal of our website. Also unify the
13438 way our upgrades and security checkers verify this SSL
13439 certificate using our dedicated perl lib code. (Closes: #11810)
13442 - Fix multiarch support in Synaptic. (Closes: #11820)
13443 - Set default spelling language to en_US in Icedove. (Closes: #11037)
13446 - Disable debootstrap merged-usr option. (Closes: #11903)
13449 - Add test for incremental upgrades. (Closes: #6309)
13450 - Add tests for Icedove. (Closes: #6304)
13451 - Decrease timeout to Tails Greeter to speed up testing of branches
13452 where it is broken. (Closes: #11449)
13453 - Add a ID field to the remote shell responses to filter out
13454 unrelated ones. (Closes: #11846)
13455 - Reliabily wait for the Greeter PostLogin script. (Closes: #5666)
13456 - Reliabily type the kernel command line in the prompt at the boot
13457 menu to ensure the remote shell is started. (Closes: #10777)
13458 - Remove DVDROM device when not used, to workaround QEMU/Libvirt
13459 compatibility issue. (Closes: #11874)
13461 -- Tails developers <tails@boum.org> Sun, 13 Nov 2016 14:46:04 +0100
13463 tails (2.6) unstable; urgency=medium
13465 * Major new features and changes
13466 - Install Tor 0.2.8.7. (Closes: #11351)
13467 - Enable kASLR in the Linux kernel. (Closes: #11281)
13468 - Upgrade Icedove to 1:45.2.0-1~deb8u1+tails1: (Closes: #11714)
13469 · Drop auto-fetched configurations using Oauth2. They do not
13470 work together with Torbirdy since it disables needed
13471 functionality (like JavaScript and cookies) in the embedded
13472 browser. This should make auto-configuration work for GMail
13473 again, for instance. (Closes: ##11536)
13474 · Pin Icedove to be installed from our APT repo. Debian's
13475 Icedove packages still do not have our secure Icedove
13476 autoconfig wizard patches applied, so installing them would be
13477 a serious security regression. (Closes: #11613)
13478 · Add missing icedove-l10n-* packages to our custom APT
13479 repository (Closes: #11550)
13480 - Upgrade to Linux 4.6: (Closes: #10298)
13481 · Install the 686 kernel flavour instead of the obsolete 586
13483 · APT, dpkg: add amd64 architecture. The amd64 kernel flavour is
13484 not built anymore for the i386 architecture, so we need to use
13486 · Build and install the out-of-tree aufs4 module. (Closes: #10298)
13487 · Disable kernel modesetting for QXL: it's not compatible with
13488 Jessie's QXL X.Org driver.
13491 - Hopefully fixed an issue which would sometimes make the Greeter
13492 ignore the "disable networking" or "bridge mode"
13493 options. (Closes: #11593)
13495 * Minor improvements
13496 - Install firmware-intel-sound and firmware-ti-connectivity. This
13497 adds support for some sound cards and Wi-Fi adapters. (Closes:
13499 - Install OpenPGP Applet from Debian. (Closes: #10190)
13500 - Port the "About Tails" dialog to python3.
13501 - Run our initramfs memory erasure hook earlier (Closes:
13502 #10733). The goal here is to:
13503 · save a few seconds on shutdown (it might matter especially for
13504 the emergency one);
13505 · work in a less heavily multitasking / event-driven
13506 environment, for more robust operation.
13507 - Install rngd, and make rng-tools initscript return success when
13508 it can't find any hardware RNG device. Most Tails systems around
13509 probably have no such device, and we don't want systemd to
13510 believe they failed to boot properly. (Closes: #5650)
13511 - Don't force using the vboxvideo X.Org driver. According to our
13512 tests, this forced setting is:
13513 · harmful: it breaks X startup when the vboxvideo *kernel*
13515 · useless: X.Org now autodetects the vboxvideo X.Org driver and
13516 uses it when running in VirtualBox and the vboxvideo kernel
13518 - Port boot-profile to python3 (Closes: #10083). Thanks to
13519 heartsucker <heartsucker@autistici.org> for the patch!
13520 - Include /proc/cmdline and the content of persistent APT sources
13521 in WhisperBack bug reports. (Closes: #11675, #11635)
13522 - Disable non-free APT sources at boot time. (Closes: #10130)
13523 - Have a dedicated page for the homepage of Tor Browser in
13524 Tails. (Closes: # 11725)
13525 - Only build the VirtualBox kernel modules for the 32-bit kernel.
13526 It's both hard and useless to build it for 64-bit in the current
13527 state of things, as long as we're shipping a 32-bit userspace.
13528 Also, install virtualbox-* from jessie-backports, since the
13529 version in Jessie is not compatible with Linux 4.x.
13532 - Don't install+remove dpatch during the build. It's not been
13533 needed in this hook for ages.
13534 - Bump BUILD_SPACE_REQUIREMENT: at least one of us needed that to
13535 build feature/10298-linux-4.x-aufs with the gzipcomp option.
13538 - Send Tails Installer's debug log to the Cucumber debug log on
13539 failure. This is meant to debug #10720 since I can't
13540 reproduce it locally.
13541 - Give the system under testing 2 vCPUs. (Closes: #6729)
13542 - Split scenarios from checks.feature. (Closes: #5707)
13543 - Add retry-logic to the Synaptic tests. (Closes: #10412, #10441,
13545 - Run usb_upgrade.feature earlier, when there is enough free disk
13546 space left. (Closes: #11582)
13547 - Use more recent virtual hardware in the system under test,
13548 i.e. USB 3.0 (nec-xhci) on a pc-i440fx-2.5 machine. Switching
13549 USB controllers has helped with problems we see on Jenkins when
13550 booting from USB (#11588). Also, there are chances that more
13551 recent virtual hardware sees more testing these days, so it
13552 sounds potentially useful to "upgrade".
13553 - Add support for Cucumber 2.4. (Closes: #11690)
13554 - Always write {pretty,debug} logs and JSON output to the artifact
13556 - Disable info level logging on Chutney nodes to save disk
13557 space. For our network all these add up to > 1 GiB and we didn't
13558 take this into account when budgeting RAM to the isotesters on
13561 -- Tails developers <tails@boum.org> Tue, 20 Sep 2016 04:16:33 +0200
13563 tails (2.5) unstable; urgency=medium
13565 * Major new features and changes
13566 - Upgrade Icedove to 1:45.1.0-1~deb8u1+tails2. (Closes: #11530)
13567 · Fix long delay causing bad UX in the autoconfig wizard,
13568 when it does not manage to guess proper settings on some domains.
13570 · Better support sending email through some ISPs, such as Riseup.
13572 · Fix spurious error message when creating an account and providing
13573 its password. (Closes: #11550)
13576 - Upgrade Tor Browser to 6.0.3 based on Firefox 45.3. (Closes: #11611)
13577 - Upgrade GIMP to 2.8.14-1+deb8u1.
13578 - Upgrade libav to 6:11.7-1~deb8u1.
13579 - Upgrade expat to 2.1.0-6+deb8u3.
13580 - Upgrade libgd3 to 2.1.0-5+deb8u6.
13581 - Upgrade libmodule-build-perl to 0.421000-2+deb8u1.
13582 - Upgrade perl to 5.20.2-3+deb8u6.
13583 - Upgrade Pidgin to 2.11.0-0+deb8u1.
13584 - Upgrade LibreOffice to 1:4.3.3-2+deb8u5.
13585 - Upgrade libxslt1.1 to 1.1.28-2+deb8u1.
13586 - Upgrade Linux to 3.16.7-ckt25-2+deb8u3.
13587 - Upgrade OpenSSH to 1:6.7p1-5+deb8u3.
13588 - Upgrade p7zip to 9.20.1~dfsg.1-4.1+deb8u2.
13590 * Minor improvements
13591 - htpdate: replace obsolete and unreliable URIs in HTP pools, and decrease
13592 timeout for HTTP operations for more robust time synchronization.
13594 - Hide settings panel for the Online Accounts component of GNOME,
13595 that we don't support. (Closes: #11545)
13596 - Vastly improve graphics performance in KVM guest with QXL driver.
13598 - Fix graphics artifacts in Tor Browser in KVM guest with QXL driver.
13602 - Wrap Pidgin in a more maintainable way. (Closes: #11567)
13605 - Add a test scenario for the persistence "dotfiles" feature.
13607 - Improve robustness of most APT, Git, SFTP and SSH scenarios,
13608 enough to enable them on Jenkins. (Closes: #10444, #10496, #10498)
13609 - Improve robustness of checking for persistence partition. (Closes: #11558)
13610 - Treat Tails booting from /dev/sda as OK, to support all cases
13611 including a weird one caused by hybrid ISO images. (Closes: #10504)
13612 - Bump a bunch of timeouts to cope with the occasional slowness on Jenkins.
13613 - Only query A records when exercising DNS lookups, to improve robustness.
13615 -- Tails developers <tails@boum.org> Sun, 31 Jul 2016 16:50:35 +0000
13617 tails (2.4) unstable; urgency=medium
13619 * Major new features and changes
13620 - Upgrade Tor Browser to 6.0.1 based on Firefox 45.2. (Closes:
13622 - Enable Icedove's automatic configuration wizard. We patch the
13623 wizard to only use secure protocols when probing, and only
13624 accept secure protocols, while keeping the improvements done by
13625 TorBirdy in its own non-automatic configuration wizard. (Closes:
13629 - Upgrade bsdtar and libarchive13 to 3.1.2-11+deb8u1.
13630 - Upgrade icedove to 38.8.0-1~deb8u1+tails3.
13631 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u3.
13632 - Upgrade libexpat1 to 2.1.0-6+deb8u2.
13633 - Upgrade libgd3 to 2.1.0-5+deb8u3.
13634 - Upgrade gdk-pixbuf-based packages to 2.31.1-2+deb8u5.
13635 - Upgrade libidn11 to 1.29-1+deb8u1.
13636 - Upgrade libndp0 to 1.4-2+deb8u1.
13637 - Upgrade poppler-based packages to 0.26.5-2+deb8u1.
13638 - Upgrade librsvg2-2 to 2.40.5-1+deb8u2.
13639 - Upgrade libsmbclient to 2:4.2.10+dfsg-0+deb8u3.
13640 - Upgrade OpenSSL to 1.0.1k-3+deb8u5.
13641 - Upgrade libtasn1-6 to 4.2-3+deb8u2.
13642 - Upgrade libxml2 to 2.9.1+dfsg1-5+deb8u2.
13643 - Upgrade openjdk-7-jre to 7u101-2.6.6-1~deb8u1.
13646 - Enable Packetization Layer Path MTU Discovery for IPv4. If any
13647 system on the path to the remote host has a MTU smaller than the
13648 standard Ethernet one, then Tails will receive an ICMP packet
13649 asking it to send smaller packets. Our firewall will drop such
13650 ICMP packets to the floor, and then the TCP connection won't
13651 work properly. This can happen to any TCP connection, but so far
13652 it's been reported as breaking obfs4 for actual users. Thanks to
13653 Yawning for the help! (Closes: #9268)
13654 - Make Tails Upgrader ship other locales than English. (Closes:
13656 - Make it possible to add local USB printers again. Bugfix on
13657 Tails 2.0. (Closes #10965).
13659 * Minor improvements
13660 - Remove custom SSH ciphers and MACs settings. (Closes: #7315)
13661 - Bring back "minimize" and "maximize" buttons in titlebars by
13662 default. (Closes: #11270)
13663 - Icedove improvements:
13664 * Stop patching in our default into Torbirdy. We've upstreamed
13665 some parts, and the rest we set with pref branch overrides in
13666 /etc/xul-ext/torbirdy.js. (Closes: #10905)
13667 * Use hkps keyserver in Enigmail. (Closes: #10906)
13668 * Default to POP if persistence is enabled, IMAP is
13669 not. (Closes: #10574)
13670 * Disable remote email account creation in Icedove. (Closes:
13672 - Firewall hardening (Closes: #11391):
13673 * Don't accept RELATED packets. This enables quite a lot of code
13674 in the kernel that we don't need. Let's reduce the attack
13676 * Restrict debian-tor user to NEW TCP syn packets. It doesn't
13677 need to do more, so let's do a little bit of security in
13679 * Disable netfilter's nf_conntrack_helper.
13680 * Fix disabling of automatic conntrack helper assignment.
13681 - Kernel hardening:
13682 * Set various kernel boot options: slab_nomerge slub_debug=FZ
13683 mce=0 vsyscall=none. (Closes: #11143)
13684 * Remove the kernel .map files. These are only useful for kernel
13685 debugging and slightly make things easier for malware, perhaps
13686 and otherwise just occupy disk space. Also stop exposing
13687 kernel memory addresses through /proc etc. (Closes: #10951)
13688 - Drop zenity hacks to "focus" the negative answer. Jessie's
13689 zenity introduced the --default-cancel option, finally!
13691 - Drop useless APT pinning for Linux.
13692 - Remove gnome-tweak-tool. (Closes: #11237)
13693 - Install python-dogtail, to enable accessibility technologies in
13694 our automated test suite (see below). (Part of: #10721)
13695 - Install libdrm and mesa from jessie-backports. (Closes: #11303)
13696 - Remove hledger. (Closes: #11346)
13697 - Don't pre-configure the #tails chan on the default OFTC account.
13699 - Install onioncircuits from jessie-backports. (Closes: #11443)
13700 - Remove nmh. (Closes: #10477)
13701 - Drop Debian experimental APT source: we don't use it.
13702 - Use APT codenames (e.g. "stretch") instead of suites, to be
13703 compatible with our tagged APT snapshots.
13704 - Drop module-assistant hook and its cleanup. We've not been using
13706 - Remove 'Reboot' and 'Power Off' entries from Applications →
13707 System Tools. (Closes: #11075)
13708 - Pin our custom APT repo to the same level as Debian ones, and
13709 explicitly pin higher the packages we want to pull from our custom
13710 APT repo, when needed.
13711 - config/chroot_local-hooks/59-libdvd-pkg: verify libdvdcss
13712 package installation. (Closes: #11420)
13713 - Make Tails Upgrader use our new mirror pool design. (Closes:
13715 - Drop custom OpenSSH client ciphers and MACs settings. We did a
13716 pretty bad job at maintaining them compared to the Debian
13717 upstream. (Closes: #7315)
13718 - Install jessie-backports version of all binary packages built
13719 from src:hplip. This adds support for quite a few new
13721 - Install printer-driver-postscript-hp, which adds support for
13722 some more printers.
13725 - Use a freezable APT repo when building Tails. This is a first
13726 step towards reproducible builds, and improves our QA and
13727 development processes by making our builds more predictable. For
13728 details, see: https://tails.boum.org/contribute/APT_repository/
13729 - There has been a massive amount of improvements to the
13730 Vagrant-based build system, and now it could be considered the
13731 de-facto build system for Tails! Improvements and fixes include:
13732 * Migrate Vagrant to use libvirt/KVM instead of
13733 Virtualbox. (Closes: #6354)
13734 * Make apt-get stuff non-interactive while provisioning.
13735 Because there is no interaction, so that will results in
13737 * Bump disk space (=> RAM for RAM builds) needed to build with
13738 Vagrant. Since the Jessie migration it seems impossible to
13739 keep this low enough to fit in 8 GiB or RAM. For this reason
13740 we also drop the space optimization where we build inside a
13741 crazy aufs stack; now we just build in a tmpfs.
13742 * Clean up apt-cacher-ng cache on vm:provision to save disk
13743 space on the builder.
13744 * Add convenient Rake task for SSH:ing into the builder VM:
13746 * Add rake task for generating a new Vagrant base box.
13747 * Automatically provision the VM on build to keep things up-to-date.
13748 * Don't enable extproxy unless explicitly given as an
13749 option. Previously it would automatically be enabled when
13750 `http_proxy` is set in the environment, unlike what is
13751 documented. This will hopefully lead to fewer surprises for users
13752 who e.g. point http_proxy to a torified polipo, or similar.
13753 * Re-fetch tags when running build-tails with Vagrant. That
13754 should fix an annoyance related to #7182 that I frequently
13755 encounter: when I, as the RM, rebuild the release image the
13756 second time from the force-updated tag, the build system would
13757 not have the force-updated tag. (Closes: #7182)
13758 * Make sure we use the intended locale in the Tails builder VM.
13759 Since we communicate via SSH, and e.g. Debian forward the
13760 locale env vars by default, we have to take some steps
13761 ensuring we do not do that.
13762 - Pull monkeysphere from stretch to avoid failing to install under
13763 eatmydata. Patch submitted by Cyril Brulebois <cyril@debamax.com>.
13766 - Add wrapper around dogtail (inside Tails) for "remote" usage in
13767 the automated test suite. This provides a simple interface for
13768 generating dogtail python code, sending it to the guest, and
13769 executing it, and should allow us to write more robust tests
13770 leveraging assistive technologies. (Closes: #10721)
13771 - A few previously sikuli-based tests has been migrated to use
13772 dogtail instead, e.g. GNOME Applications menu interaction.
13773 - Add a test for re-configuring an existing persistent volume.
13774 This is a regression test for #10809. (Closes: #10834)
13775 - Use a simulated Tor network provided by Chutney in the automated
13776 test suite. The main motivation here is improved robustness --
13777 since the "Tor network" we now use will exit from the host
13778 running the automated test suite, we won't have to deal with Tor
13779 network blocking, or unreliable circuits. Performance should
13780 also be improved. (Closes: #9521)
13781 - Drop the usage of Tor Check in our tests. It doesn't make sense
13782 now when we use Chutney since that always means it will report
13783 that Tor is not being used.
13784 - Stop testing obsolete pluggable transports.
13785 - Completely rewrite the firewall leak detector to something more
13786 flexible and expressive.
13787 - Run tcpdump with --immediate-mode for the network sniffer. With
13788 this option, "packets are delivered to tcpdump as soon as they
13789 arrive, rather than being buffered for efficiency" which is
13790 required to make the sniffing work reliable the way we use it.
13791 - Remove most scenarios testing "tordate". It just isn't working
13792 well in Tails, so we shouldn't expect the tests to actually work
13793 all of the time. (Closes: #10440)
13794 - Close Pidgin before we inspect or persist its accounts.xml.
13795 I've seen a case when that file is _not_ saved (and thus, not
13796 persisted) if we shut down the system while Pidgin is still
13797 running. (Closes: #11413)
13798 - Close the GNOME Notification bar by pressing ESC, instead of
13799 opening the Applications menu. The Applications menu often
13800 covers other elements that we're looking for on the
13801 screen. (Closes #11401)
13802 - Hide Florence keyboard window when it doesn't vanish by itself
13803 (Closes: #11398) and wait a bit less for Florence to disappear
13806 -- Tails developers <tails@boum.org> Mon, 06 Jun 2016 20:10:56 +0200
13808 tails (2.3) unstable; urgency=medium
13811 - Upgrade Tor Browser to 5.5.5. (Fixes: #11362)
13812 - Upgrade icedove to 38.7.0-1~deb8u1
13813 - Upgrade git to 1:2.1.4-2.1+deb8u2
13814 - Upgrade libgd3 to 2.1.0-5+deb8u1
13815 - Upgrade pidgin-otr to 4.0.1-1+deb8u1
13816 - Upgrade srtp to 1.4.5~20130609~dfsg-1.1+deb8u1
13817 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u1
13818 - Upgrade samba to 2:4.2.10+dfsg-0+deb8u2
13819 - Upgrade openssh to 1:6.7p1-5+deb8u2
13822 - Refresh Tor Browser's AppArmor profile patch against the one from
13823 torbrowser-launcher 0.2.4-1. (Fixes: #11264)
13824 - Pull monkeysphere from stretch to avoid failing to install under
13825 eatmydata. (Fixes: #11170)
13826 - Start gpg-agent with no-grab option due to issues with pinentry and
13827 GNOME's top bar. (Fixes: #11038)
13828 - Tails Installer: Update error message to match new name of 'Clone
13829 & Install'. (Fixes: #11238)
13831 * Cope with a missing geoipdb. (Fixes: #11203)
13832 * Make both panes of the window scrollable. (Fixes #11192)
13833 - WhisperBack: Workaround socks bug. When the Tor fails to connect to
13834 the host, WisperBack used to display a ValueError. This is caused by
13835 a socks bug that is solved in upstream's master but not in Tails.
13836 This commit workarounds this bug Unclear error message in WhisperBack
13837 when failing to connect to the server. (Fixes: #11136)
13839 * Minor improvements
13840 - Upgrade to Debian 8.4, a Debian point release with many minor upgrades
13841 and fixes to various packages . (Fixes: #11232)
13842 - Upgrade I2P to 0.9.25. (Fixes: #11363)
13843 - Pin pinentry-gtk2 to jessie-backports. The new version allows pasting
13844 passwords from the clipboard. (Fixes: #11239)
13845 - config/chroot_local-hooks/59-libdvd-pkg: cleanup /usr/src/libdvd-pkg.
13847 - Make the Tor Status "disconnected" icon more contrasted with the
13848 "connected" one. (Fixes: #11199)
13851 - Add UTF-8 support to OTR Bot. (Fixes: #10866)
13852 - Don't explicitly depend on openjdk-7-jre or any JRE for that
13853 matter. Sikuli will pull in a suitable one, so depending on one
13854 ourselves is only risks causing trouble. (Fixes: #11335)
13856 -- Tails developers <tails@boum.org> Mon, 25 Apr 2016 14:12:22 +0200
13858 tails (2.2.1) unstable; urgency=medium
13861 - Upgrade Tor Browser to 5.5.4. (Closes: #11254)
13862 - Upgrade bind9-related packages to 1:9.9.5.dfsg-9+deb8u6
13863 - Upgrade libotr to 4.1.0-2+deb8u1
13864 - Upgrade samba-related packages to 2:4.1.17+dfsg-2+deb8u2.
13865 - Upgrade libgraphite2 to 1.3.6-1~deb8u1.
13867 -- Tails developers <tails@boum.org> Thu, 17 Mar 2016 15:03:52 +0100
13869 tails (2.2) unstable; urgency=medium
13871 * Major new features and changes
13872 - Replace Vidalia (which has been unmaintained for years) with:
13874 * the Tor Status GNOME Shell extension, which adds a System Status
13875 icon indicating whether Tor is ready or not.
13876 * Onion Circuits, a simple Tor circuit monitoring tool.
13879 - Upgrade Tor Browser to 5.5.3 (Closes: #11189).
13880 - Upgrade Linux to 3.16.7-ckt20-1+deb8u4.
13881 - Upgrade cpio to 2.11+dfsg-4.1+deb8u1.
13882 - Upgrade glibc to 2.19-18+deb8u3.
13883 - Upgrade libav to 6:11.6-1~deb8u1.
13884 - Upgrade libgraphite2 to 1.3.5-1~deb8u1.
13885 - Upgrade libjasper1 to 1.900.1-debian1-2.4+deb8u1.
13886 - Upgrade libreoffice to 4.3.3-2+deb8u3.
13887 - Upgrade libssh2 to 1.4.3-4.1+deb8u1.
13888 - Upgrade openssl to 1.0.1k-3+deb8u4.
13889 - Upgrade perl to 5.20.2-3+deb8u4.
13890 - Upgrade python-imaging, python-pil to 2.6.1-2 2.6.1-2+deb8u2.
13893 - Hide "Laptop Mode Tools Configuration" menu entry. We don't
13894 support configuring l-m-t in Tails, and it doesn't work out of
13895 the box. (Closes: #11074)
13897 * Actually write a string when saving bug report to
13898 disk. (Closes: #11133)
13899 * Add missing argument to OpenPGP dialog so the optional OpenPGP
13900 key can be added again. (Closes: #11033)
13902 * Minor improvements
13903 - Upgrade I2P to 0.9.24-1~deb8u+1.
13904 - Add support for viewing DRM protected DVD videos using
13905 libdvdcss2. Patch series submitted by Austin English
13906 <austinenglish@gmail.com>. (Closes: #7674)
13907 - Automatically save KeePassX database after every change by default.
13909 - Implement Tor stream isolation for WhisperBack
13910 - Delete unused tor-tsocks-mua.conf previously used by Claws
13911 Mail. (Closes: #10904)
13912 - Add set -u to all gettext:ized shell scripts. In gettext-base <
13913 1.8.2, like the one we had in Wheezy, gettext.sh references the
13914 environment variable ZSH_VERSION, which we do not set. This has
13915 prevented us from doing `set -u` without various hacks. (Closes:
13917 - Also set -e in some shell scripts which lacked it for no good
13919 - Make Git verify the integrity of transferred objects. (Closes:
13921 - Remove LAlt+Shift and LShift+RShift keyboard layout toggling
13922 shortcuts. (Closes: #10913, #11042)
13925 - Reorder the execution of feature to decrease peak disk
13926 usage. (Closes: #10503)
13927 - Paste into the GTK file chooser, instead of typing. (Closes:
13929 - Pidgin: wait a bit for text to have stopped scrolling before we
13930 click on it. (Closes: #10783)
13931 - Fix step that runs commands in GNOME Terminal, that was broken
13932 on Jessie when a Terminal is running already. (Closes: #11176)
13933 - Let ruby-rjb guess JAVA_HOME instead fixing on one jvm
13934 version. (Closes: #11190)
13937 - Upgrade build system to Debian Jessie. This includes migrating to a
13938 new Vagrant basebox based on Debian Jessie.
13939 - Rakefile: print git status when there are uncommitted
13940 changes. Patch submitted by Austin English
13941 <austinenglish@gmail.com>. (Closes: #11108)
13942 - .gitignore: add .rake_tasks~. Patch submitted by Austin English
13943 <austinenglish@gmail.com>. (Closes: #11134)
13944 - config/amnesia: use --show-field over sed filtering. Patch
13945 submitted by Chris Lamb <lamby@debian.org>.
13946 - Umount and clean up leftover temporary directories from old
13947 builds. (Closes: #10772)
13949 -- Tails developers <tails@boum.org> Mon, 07 Mar 2016 18:09:50 +0100
13951 tails (2.0.1) unstable; urgency=medium
13953 * Major new features and changes
13954 - Enable the Tor Browser's font fingerprinting protection
13955 (Closes: #11000). We do it for all browsers (including
13956 the Unsafe Browser and I2P Browser mainly to avoid making our
13957 automated test suite overly complex. This implied to set an appropriate
13958 working directory when launching the Tor Browser, to accommodate for
13959 the assumptions it makes about this.
13962 - Upgrade Tor Browser to 5.5.2 (Closes: #11105).
13965 - Repair 32-bit UEFI support (Closes: #11007); bugfix on 2.0.
13966 - Add libgnome2-bin to installed packages list to provide gnome-open,
13967 which fixes URL handling at least in KeePassX, Electrum and Icedove
13968 (Closes: #11031); bugfix on 2.0. Thanks to segfault for the patch!
13970 * Minor improvements
13971 - Refactor and de-duplicate the chrooted browsers' configuration:
13972 prefs.js, userChrome.css (Closes: #9896).
13973 - Make the -profile Tor Launcher workaround simpler (Closes: #7943).
13974 - Move Torbutton environment configuration to the tor-browser script,
13975 instead of polluting the default system environment with it.
13976 - Refresh patch against the Tor Browser AppArmor profile
13978 - Propagate Tor Launcher options via the wrapper.
13979 - Move tor-launcher script to /usr/local/bin.
13980 - Move tor-launcher-standalone to /usr/local/lib.
13981 - Move Tor Launcher env configuration closer to the place where it is used,
13982 for simplicity's sake.
13985 - Mass update browser and Tor Launcher related images due to font change,
13986 caused by Tor Browser 5.5's font fingerprinting protection
13987 (Closes: #11097). And then, use separate PrintToFile.png for the browsers,
13988 and Evince, since it cannot be shared anymore.
13989 - Adjust to the refactored chrooted browsers configuration handling.
13990 - Test that Tor Launcher uses the correct Tor Browser libraries.
13991 - Allow more slack when verifying that the date that was set.
13992 - Bump a bit the timeout used when waiting for the remote shell.
13993 - Bump timeout for the process to disappear, when closing Evince.
13994 - Bump timeout when saving persistence configuration.
13995 - Bump timeout for bootstrapping I2P.
13998 - Remove no longer relevant places.sqlite cleanup procedure.
14000 -- Tails developers <tails@boum.org> Fri, 12 Feb 2016 13:00:15 +0000
14002 tails (2.0) unstable; urgency=medium
14004 * Major new features and changes
14005 - Upgrade to Debian 8 (Jessie).
14006 - Migrate to GNOME Shell in Classic mode.
14007 - Use systemd as PID 1, and convert all custom initscripts to systemd units.
14008 - Remove the Windows camouflage feature: our call for help to port
14009 it to GNOME Shell (issued in January, 2015) was unsuccessful.
14010 - Remove Claws Mail: Icedove is now the default email client
14012 - Upgrade Tor Browser to 5.5 (Closes: #10858, #10983).
14015 - Minimally sandbox many services with systemd's namespacing features.
14016 - Upgrade Linux to 3.16.7-ckt20-1+deb8u3.
14017 - Upgrade Git to 1:2.1.4-2.1+deb8u1.
14018 - Upgrade Perl to 5.20.2-3+deb8u3.
14019 - Upgrade bind9-related packages to 1:9.9.5.dfsg-9+deb8u5.
14020 - Upgrade FUSE to 2.9.3-15+deb8u2.
14021 - Upgrade isc-dhcp-client tot 4.3.1-6+deb8u2.
14022 - Upgrade libpng12-0 to 1.2.50-2+deb8u2.
14023 - Upgrade OpenSSH client to 1:6.7p1-5+deb8u1.
14026 - Restore the logo in the "About Tails" dialog.
14027 - Don't tell the user that "Tor is ready" before htpdate is done
14029 - Upgrader wrapper: make the check for free memory more accurate
14030 (Closes: #10540, #8263).
14031 - Allow the desktop user, when active, to configure printers;
14032 fixes regression introduced in Tails 1.1 (Closes: #8443).
14033 - Close Vidalia before we restart Tor. Otherwise Vidalia will be running
14034 and showing errors while we make sure that Tor bootstraps, which could
14036 - Allow Totem to read DVDs, by installing apparmor-profiles-extra
14037 from jessie-backports (Closes: #9990).
14038 - Make memory erasure on shutdown more robust (Closes: #9707, #10487):
14039 · don't forcefully overcommit memory
14040 · don't kill the allocating task
14041 · make sure the kernel doesn't starve from memory
14042 · make parallel sdmem handling faster and more robust
14043 - Don't offer the option, in Tor Browser, to open a downloaded file with
14044 an external application (Closes: #9285). Our AppArmor confinement was
14045 blocking most such actions anyway, resulting in poor UX; bugfix on 1.3.
14046 Accordingly, remove the now-obsolete exception we had in the Tor
14047 Browser AppArmor profile, that allowed executing seahorse-tool.
14048 - Fix performance issue in Tails Upgrader, that made it very slow to apply
14049 an automatic upgrade; bugfix on 1.7 (Closes: #10757).
14050 - Use our wrapper script to start Icedove from the GNOME menus.
14051 - Make it possible to localize our Icedove wrapper script.
14052 - List Icedove persistence option in the same position where Claws Mail
14053 used to be, in the persistent volume assistant (Closes: #10832).
14054 - Fix Electrum by installing the version from Debian Testing
14055 (Closes: #10754). We need version >=2.5.4-2, see #9713;
14056 bugfix on 2.0~beta1. And, explicitly install python-qt4 to enable
14057 Electrum's GUI: it's a Recommends, and we're not pulling it ourselves
14058 via other means anymore.
14059 - Restore default file associations (Closes: #10798);
14060 bugfix on 2.0~beta1.
14061 - Update 'nopersistent' boot parameter to 'nopersistence'; bugfix on 0.12
14062 (Closes: #10831). Thanks to live-media=removable, this had no security
14063 impact in practice.
14064 - Repair dotfiles persistence feature, by adding a symlink from
14065 /lib/live/mount/persistence to /live/persistence; bugfix on 2.0~beta1
14067 - Fix ability to re-configure an existing persistent volume using
14068 the GUI; bugfix on 2.0~beta1 (Closes: #10809).
14069 - Associate armored OpenPGP public keys named *.key with Seahorse,
14070 to workaround https://bugs.freedesktop.org/show_bug.cgi?id=93656;
14071 bugfix on 1.1 (Closes: #10889).
14072 - Update the list of enabled GNOME Shell extensions, which might fix
14073 the "GNOME Shell sometimes leaves Classic mode" bug seen in 2.0~beta1:
14074 · Remove obsolete "Alternative Status Menu", that is not shipped
14076 · Explicitly enable the GNOME Shell extensions that build
14078 - Make _get_tg_setting() compatible with set -u (Closes: #10785).
14079 - laptop-mode-tools: don't control autosuspend. Some USB input
14080 devices don't support autosuspend. This change might help fix
14081 #10850, but even if it doesn't, it makes sense to me that we
14082 don't let laptop-mode-tools fiddle with this on a Live system
14083 (Closes (for now): #10850).
14085 * Minor improvements
14086 - Remove obsolete code from various places.
14088 · hide all windows while logging in
14089 · resize and re-position the panel when the screen size grows
14090 · PostLogin: log into the Journal instead of a dedicated log file
14091 · use localectl to set the system locale and keyboard mapping
14092 · delete the Live user's password if no administration password is set
14094 · port to GDBus greeter interface, and adjust to other GDM
14097 · port to UDisks2, and from Qt4 to GTK3
14098 · adapt to work on other GNU/Linux operating systems than Tails
14099 · clean up enough upstream code and packaging bits to make it
14100 deserve being uploaded to Debian
14101 · rename everything from liveusb-creator to tails-installer
14102 - Port tails-perl5lib to GTK3 and UDisks2. In passing, do some minor
14103 refactoring and a GUI improvement.
14104 - Persistent Volume Assistant:
14105 · port to GTK3 and UDisks2
14106 · handle errors when deleting persistent volume (Closes: #8435)
14107 · remove obsolete workarounds
14108 - Don't install UDisks v1.
14109 - Adapt custom udev and polkit rules to UDisks v2 (Closes: #9054, #9270).
14110 - Adjust import-translations' post-import step for Tails Installer,
14111 to match how its i18n system works nowadays.
14112 - Use socket activation for CUPS, to save some boot time.
14113 - Set memlockd.service's OOMScoreAdjust to -1000.
14114 - Don't bother creating /var/lib/live in tails-detect-virtualization.
14115 If it does not exist at this point, we have bigger and more
14116 noticeable problems.
14117 - Simplify the virtualization detection & reporting system, and do it
14118 as a non-root user with systemd-detect-virt rather than virt-what.
14119 - Replace rsyslog with the systemd Journal (Closes: #8320), and adjust
14120 WhisperBack's logs handling accordingly.
14121 - Drop tails-save-im-environment.
14122 It's not been used since we stopped automatically starting the web browser.
14123 - Add a hook that aborts the build if any *.orig file is found. Such files
14124 appear mainly when a patch of ours is fuzzy. In most cases they are no big
14125 deal, but in some cases they end up being taken into account
14127 - Replace the tor+http shim with apt-transport-tor (Closes: #8198).
14128 - Install gnome-tweak-tool.
14129 - Don't bother testing if we're using dependency based boot.
14130 - Drop workaround to start spice-vdagent in GDM (Closes: #8025).
14131 This has been fixed in Jessie proper.
14132 - Don't install ipheth-utils anymore. It seems to be obsolete
14133 in current desktop environments.
14134 - Stop installing the buggy unrar-free, superseded in Jessie (Closes: #5838)
14135 - Drop all custom fontconfig configuration, and configure fonts rendering
14137 - Drop zenity patch (zenity-fix-whitespacing-box-sizes.diff),
14138 that was applied upstream.
14139 - Install libnet-dbus-perl (currently 1.1.0) from jessie-backports,
14140 it brings new features we need.
14141 - Have the security check and the upgrader wait for Tor having bootstrapped
14142 with systemd unit ordering.
14143 - Get rid of tails-security-check's wrapper.
14144 Its only purpose was to wait for Tor to have bootstrapped,
14145 which is now done via systemd.
14146 - Don't allow the amnesia and tails-upgrade-frontend users to run
14147 tor-has-bootstrapped as root with sudo. They don't need it anymore,
14148 thanks to using systemd for starting relevant units only once Tor
14150 - Install python-nautilus, that enables MAT's context menu item in Nautilus.
14152 - Configure GDM with a snippet file instead of patching its
14153 greeter.dconf-defaults.
14155 · port to Python 3 and GObject Introspection (Closes: #7755)
14156 · migrate from the gnutls module to the ssl one
14157 · use PGP/MIME for better attachments handling
14158 · migrate from the gnupginterface module to the gnupg one
14159 · natively support SOCKS ⇒ don't wrap with torsocks anymore
14161 · don't try to include the obsolete .xession-errors in bug reports
14163 - chroot-browser.sh: don't use static DISPLAY.
14164 - Simplify debugging:
14165 · don't hide the emergency shutdown's stdout
14166 · tails-unblock-network: trace commands so that they end up in the Journal
14167 - Configure the console codeset at ISO build time, instead of setting it
14168 to a constant via the Greeter's PostLogin.default.
14169 - Order the AppArmor policy compiling in a way that is less of a blocker
14171 - Include the major KMS modules in the initramfs. This helps seamless
14172 transition to X.Org when booting, and back to text mode on shutdown,
14173 can help for proper graphics hardware reinitialization post-kexec,
14174 and should improve GNOME Shell support in some virtual machines.
14175 - Always show the Universal Access menu icon in the GNOME panel.
14176 - Drop notification for not-migrated-yet persistence configuration,
14177 and persistence settings disabled due to wrong access rights.
14178 That migration happened more two years ago.
14179 - Remove the restricted network detector, that has been broken for too long;
14180 see #10560 for next steps (Closes: #8328).
14181 - Remove unsupported, never completed kiosk mode support.
14182 - clock_gettime_monotonic: use Perl's own function to get the integer part,
14183 instead of forking out to sed.
14184 - Don't (try to) disable lvm2 initscripts anymore. Both the original reason
14185 and the implementation are obsolete on Jessie.
14186 - Lower potential for confusion (#8443), by removing system-config-printer.
14187 One GUI to configure printers is enough (Closes: #8505).
14188 - Add "set -u" to tails-unblock-network.
14189 - Add a systemd target whose completion indicates that Tor has bootstrapped,
14190 and use it everywhere sensible (Closes: #9393).
14191 - Disable udev's 75-persistent-net-generator.rules, to preventing races
14192 between MAC spoofing and interface naming.
14193 - Replace patch against NetworkManager.conf with drop-in files.
14194 - Replace resolvconf with simpler NetworkManager and dhclient configuration.
14196 - Replace patching of the gdomap, i2p, hdparm, tor and ttdnsd initscripts
14197 with 'systemctl disable' (Closes: #9881).
14198 - Replace patches that wrapped apps with torsocks with dynamic patching with
14199 a hook, to ease maintenance. Also, patch D-Bus services as needed
14201 - Notify the user if running Tails inside non-free virtualization software
14202 that does not try to hide its nature (Closes: #5315).
14203 Thanks to Austin English <austinenglish@gmail.com> for the patch.
14204 - Declare htpdate.service as being needed for time-sync.target, to ensure
14205 that "services where correct time is essential should be ordered after
14207 - Convert some of the X session startup programs to `systemd --user' units.
14208 - Let the Pidgin wrapper pass through additional command-line arguments
14210 - Move out of the $PATH a bunch of programs that users should generally
14211 not run directly: connect-socks, end-profile, getTorBrowserUserAgent,
14212 generate-tor-browser-profile, kill-boot-profile, tails-spoof-mac,
14213 tails-set-wireless-devices-state, tails-configure-keyboard,
14214 do_not_ever_run_me, boot-profile, tails-unblock-network,
14215 tor-controlport-filter, tails-virt-notify-user, tails-htp-notify-user,
14216 udev-watchdog-wrapper (Closes: #10658)
14217 - Upgrade I2P to 0.9.23-2~deb8u+1.
14218 - Disable I2P's time syncing support.
14219 - Install Torbirdy from official Jessie backports, instead of from
14220 our own APT repository (Closes: #10804).
14221 - Make GNOME Disks' passphrase strength checking new feature work,
14222 by installing cracklib-runtime (Closes: #10862).
14223 - Add support for Japanese in Tor Browser.
14224 - Install xserver-xorg-video-intel from Jessie Backports (currently:
14225 2.99.917-2~bpo8+1). This adds support for recent chips such as
14226 Intel Broadwell's HD Graphics (Closes: #10841).
14227 - Improve a little bit post-Greeter network unblocking:
14228 · Sleep a bit longer between deleting the blacklist, and triggering udev;
14229 this might help cure #9012.
14230 · Increase logging, so that we get more information next time someone
14232 · Touch /etc/modprobe.d/ after deleting the blacklist; this might help,
14233 in case all this is caused by some aufs bug.
14234 - Enable and use the Debian jessie-proposed-updates APT repository,
14235 anticipating on the Jessie 8.3 point-release (Closes: #10897).
14236 - Upgrade most firmware packages to 20160110-1.
14237 - Upgrade Intel CPU microcodes to 3.20151106.1~deb8u1.
14238 - Disable IPv6 for the default wired connection, so that
14239 NetworkManager does not spam the logs with IPv6 router
14240 solicitation failure. Note that this does not fix the problem
14241 for other connections (Partially closes: #10939).
14244 - Adapt to the new desktop environment and applications' look.
14245 - Adapt new changed nmcli syntax and output.
14246 - New NetworkManager connection files must be manually loaded in Jessie.
14247 - Adapt to new pkexec behavior.
14248 - Adapt to how we now disable networking.
14249 - Use sysctl instead of echo:ing into /proc/sys.
14250 - Use oom_score_adj instead of the older oom_adj.
14251 - Adapt everything depending on logs to the use of the Journal.
14252 - Port to UDisks v2.
14253 - Check that the system partition is an EFI System Partition.
14254 - Add ldlinux.c32 to the list of bootloader files that are expected
14255 to be modified when we run syslinux (Closes: #9053).
14256 - Use apt(8) instead of apt-get(8).
14257 - Don't hide the cursor after opening the GNOME apps menu.
14258 - Convert the remote shell to into a systemd native service and a Python 3,
14259 script that uses the sd_notify facility (Closes: #9057). Also, set its
14260 OOM score adjustment value via its unit file, and not from the test suite.
14261 - Adjust to match where screenshots are saved nowadays.
14262 - Check that all system units have started (Closes: #8262)
14263 - Simplify the "too small device" test.
14264 - Spawn `poweroff' and `halt' in the background, and don't wait for them
14265 to return: anything else would be racy vs. the remote shell's stopping.
14266 - Bump video memory allocated to the system under test, to fix out of video
14268 - When configuring the CPU to lack PAE support, use a qemu32 CPU instead
14269 of a Pentium one: the latter makes GNOME Shell crash.
14270 See #8778 for details about how Mesa's CPU features detection has
14271 room for improvement.
14272 - Adjust free(1) output parsing for Jessie.
14273 - vm-execute: rename --type option to --spawn.
14274 - Add method to set the X.Org clipboard, and install its dependency
14276 - Paste URLs in one go, to work around issue with lost key presses
14277 in the browser (Closes: #10467).
14278 - Reliably wait for Synaptic's search button to fade in.
14279 - Take into account that the sticky bit is not set on block devices
14281 - Ensure that we can use a NetworkManager connection stored in persistence
14283 - Use a stricter regexp when extracting logs for dropped packets.
14284 - Clone the host CPU for the test suite guests (Closes: #8778).
14285 - Run ping as root (aufs does not support file capabilities so we don't
14286 get cap_net_raw+ep, and if built on a filesystem that does support
14287 file capabilities, then /bin/ping is not setupd root).
14288 - Escape regexp special characters when constructing the firewall log
14289 parsing regexp, and pass -P to grep, since Ruby uses PCRE.
14290 - Adjust is_persistent?() helper to findmnt changes in Jessie.
14291 - Rework in depth how we measure pattern coverage in memory, with more
14292 reliable Linux OOM and VM settings, fundamental improvements
14293 in what exactly we measure, and custom OOM adjutments for fillram
14294 processes (Closes: #9705).
14295 - Use blkid instead of parted to determine the filesystem type.
14296 - Use --kiosk mode instead of --fullscreen in virt-viewer, to remove
14297 the tiny border of the in-viewer menu.
14298 - Remove now redundant desktop screenshot directory scenario.
14299 - Adapt GNOME notification handling for Debian Jessie (Closes: #8782)
14300 - Disable screen blanking in the automated test suite, which occasionally
14301 breaks some test cases (Closes: #10403).
14302 - Move upgrade scenarios to the feature dedicated to them.
14303 - Don't make libvirt storage volumes executable.
14304 - Refactor the PAUSE_ON_FAIL functionality, so that we can use `pause()`
14305 as a breakpoint when debugging.
14306 - Drop non-essential Totem test that is mostly a duplicate, and too painful
14307 to be worth automating on Jessie.
14308 - Retry Totem HTTPS test with a new Tor circuit on failure.
14309 - Replace iptables status regexp-based parser with a new XML-based
14310 status analyzer: the previous implementation could not be adjusted
14311 to the new ip6tables' output (Closes: #9704).
14312 - Don't reboot in one instance when it is not needed.
14313 - Optimize memory erasure anti-test: block the boot to save CPU on the host.
14314 - Update I2P tests for Jessie, and generally make them more robust.
14315 - Update Electrum tests for 2.5.4-2 (Closes: #10758).
14316 - Add workaround for libvirt vs. guestfs permissions issue, to allow
14317 running the test suite on current Debian sid.
14318 - Fix buggy code, that happened to work by mistake, in the Seahorse
14319 test cases; bugfix on 1.8.
14320 - Update test suite images due to CSS change on Tails' website.
14321 - Adapt Tor Browser tests to work with the 5.5 series.
14322 - Automatically test downloading files in Tor Browser.
14323 - Remove obsolete scenario, that tested opening a downloaded file with
14324 an external application, which we do not support anymore.
14325 - Improve robustness of the "Tails OpenPGP keys" scenario (Closes: #10378).
14326 - Automatically test the "Diable all networking" feature (Closes: #10430).
14327 - Automatically test that SSH works over LAN (Closes: #9087).
14328 - Bump some statuc sleeps to fix a few race conditions (Closes: #5330).
14329 - Automatically test that an emergency shutdown triggers on boot
14330 medium removal (Closes: #5472).
14331 - Make the AppArmor checks actually detect errors (Closes: #10926).
14334 - Bump amount of disk space needed to build Tails with Vagrant.
14335 The addition of the Japanese Tor Browser tarball made us reach
14336 the limit of the previous value.
14338 * Adjustments for Debian 8 (Jessie) with no or very little user-visible impact
14339 - Free the fixed UIDs/GIDs we need before creating the corresponding users.
14340 - Replace the real gnome-backgrounds with a fake, equivs generated one
14341 (Closes: #8055). Jessie's gnome-shell depends on gnome-backgrounds,
14342 which is too fat to ship considering we're not using it.
14343 - AppArmor: adjust CUPS profile to support our Live system environment
14345 · Mangle lib/live/mount/overlay/... as usual for aufs.
14346 · Pass the the attach_disconnected flag, that's needed for compatibility
14348 - Make sure we don't ship geoclue* (Closes: #7949).
14349 - Drop deprecated GDM configuration file.
14350 - Don't add the Live user to the deprecated 'fuse' group.
14351 - Drop hidepid mount option for /proc (Closes: #8256). In its current,
14352 simplistic form it cannot be supported by systemd.
14353 - Don't manually load acpi-cpufreq at boot time. It fails to load
14354 whenever no device it supports is present, which makes the
14355 systemd-modules-load.service fail. These days, the kernel
14356 should just automatically load such modules when they are needed.
14357 - Drop sysvinit-specific (sensigs.omit.d) tweaks for memlockd.
14358 - Disable the GDM unit file's Restart=always, that breaks our "emergency
14359 shutdown on boot medium removal" feature.
14360 - Update the implementation of the memory erasure on shutdown feature:
14361 · check for rebooting state using systemctl, instead of the obsolete
14362 $RUNLEVEL (Closes: #8306)
14363 · the kexec-load initscript normally silently exits unless systemd is
14364 currently running a reboot job. This is not the case when the emergency
14365 shutdown has been triggered, so we removed this check
14366 · migrate tails-kexec to the /lib/systemd/system-shutdown/ facility
14367 · don't (try to) switch to tty1 on emergency shutdown: it apparently
14368 requires data that we haven't locked into memory, and then it blocks
14369 the whole emergency shutdown process
14370 - Display a slightly darker version of the desktop wallpaper on the screen
14371 saver, instead of the default flashy "Debian 8" branding (Closes: #9038).
14372 - Disable software autorun from external media.
14373 - Disable a few unneeded D-Bus services. Some of these services are
14374 automatically started (via D-Bus activation) when GNOME Shell tries
14375 to use them. The only "use" I've seen for them, except eating
14376 precious RAM, is to display "No appointment today" in the calendar pop-up.
14378 - Prevent NetworkManager services from starting at boot time
14379 (Closes: #8313). We start them ourselves after changing the MAC address.
14380 - Unfuzzy all patches (Closes: #8268) and drop a few obsolete ones.
14381 - Adapt IBus configuration for Jessie (Closes: #8270), i.e. merge the two
14382 places where we configure keyboard layout and input methods: both are now
14383 configured in the same place in Jessie's GNOME.
14384 - Migrate panel launchers to the favorite apps list (Closes: #7992).
14385 - Drop pre-GNOME Shell menu tweaks.
14386 - Hide "Log out" button in the GNOME Shell menu (Closes: #8364).
14387 - Add a custom shutdown-helper GNOME Shell extension (Closes: #8302, #5684
14388 and #5878) that removes the press-Alt-to-turn-shutdown-button-into-Suspend
14389 functionality from the GNOME user menu, and makes Restart and Shutdown
14390 immediate, without further user interaction. Accordingly remove our custom
14391 Shutdown Helper panel applet (#8302).
14392 - Drop GNOME Panel configuration, now deprecated.
14393 - Disable GNOME Shell's screen lock feature.
14394 We're not there yet (see #5684).
14395 - Disable GNOME Shell screen locker's user switch feature.
14396 - Explicitly install libany-moose-perl (Closes: #8051).
14397 It's needed by our OpenPGP applet. On Wheezy, this package was pulled
14398 by some other dependency. This is not the case anymore on Jessie.
14399 - Don't install notification-daemon nor gnome-mag: GNOME Shell has taken
14400 over this functionality (Closes: #7481).
14401 - Don't install ntfsprogs: superseded on Jessie.
14402 - Don't install barry-util: not part of Jessie.
14403 - Link udev-watchdog dynamically, and lock it plus its dependencies
14405 - Migrate from gdm-simple-greeter to a custom gdm-tails session
14407 - Update Plymouth installation and configuration:
14408 · install the plymouth packages via chroot_local-hooks: lb 2.x's "standard"
14409 packages list pulls console-common in, which plymouth now conflicts with
14410 · don't patch the plymouth initscript anymore, that was superseded
14411 by native systemd unit files
14412 · mask the plymouth-{halt,kexec,poweroff,reboot,shutdown} services,
14413 to prevent them from occupying the active TTY with an (empty) splash
14414 screen on shutdown/reboot, that would hide the messages we want to show
14415 to the user via tails-kexec (Closes: #9032)
14416 - Migrate GNOME keyboard layout settings from libgnomekbd to input-sources
14418 - Explicitly install syslinux-efi, that we need and is not automatically
14419 pulled by anything else anymore.
14420 - Workaround #7248 for GDM: use a solid blue background picture,
14421 instead of a solid color fill, in the Greeter session.
14422 - De-install gcc-4.8-base and gcc-4.9 at the end of the ISO build process.
14423 - Revert the "Wrap syndaemon to always use -t" Wheezy-specific workaround.
14424 - htpdate: run date(1) in a Jessie-compatible (and nicer) way.
14425 - Remove obsolete dconf screenshot settings and the corresponding test.
14426 - Drop our patched python-dbus{,-dev} package (Closes: #9177).
14427 - live-persist: stop overriding live-boot's functions, we now have
14428 a recent enough blkid.
14429 - Adjust sdmem initramfs bits for Jessie:
14430 · Directly call poweroff instead of halt -p.
14431 · Don't pass -n to poweroff and reboot, it's not supported anymore.
14432 - Wrap text in the Unsafe Browser startup warning dialog
14433 (Jessie's zenity does not wrap it itself).
14434 - Associate application/pgp-keys with Seahorse's "Import Key" application
14436 - Install topIcons GNOME Shell extension (v28), to work around the fact
14437 that a few of the applets we use hijack the notification area.
14438 - "cd /" to fix permissions issue at tails-persistence-setup startup
14440 - Install gstreamer1.0-libav, so that Totem can play H264-encoded videos.
14441 - Adjust APT sources configuration:
14442 · remove explicit jessie and jessie-updates sources:
14443 automatically added by live-build
14444 · add Debian testing
14445 · add jessie-backports
14446 - Firewall: white-list access to the accessibility daemon (Closes: #8075).
14447 - Adjust to changed desktop notification behavior and supported feature set
14449 · pass the DBUS_SESSION_BUS_ADDRESS used by the GNOME session
14451 · update waiting for a notification handler: gnome-panel and nm-applet
14452 are obsolete, GNOME Shell is now providing this facility, so instead
14453 wait for a process that starts once GNOME Shell is ready, namely
14454 ibus-daemon (Closes: #8685)
14455 · port tails-warn-about-disabled-persistence and tails-virt-notify-user
14456 to notification actions (instead of hyperlinks), and make the latter
14457 transient; to this end, add support to Desktop::Notify for "hints"
14458 and notification actions
14459 · tails-security-check: use a dialog box instead of desktop notifications
14460 · MAC spoofing failure notification: remove the link to the documentation;
14461 it was broken on Tails/Wheezy already, see #10559 for next steps
14462 - Don't explicitly install gnome-panel nor gnome-menus, so that they go away
14463 whenever the Greeter does not pull them in anymore.
14464 - Install gkbd-capplet, that provides gkbd-keyboard-display (Closes: #8363).
14465 - Install Tor 0.2.7 from deb.torproject.org: we don't need to rebuild it
14466 ourselves for seccomp support anymore.
14467 - Wrap Seahorse with torsocks when it is started as a D-Bus service too
14469 - Rename the AppArmor profile for Tor, so it applies to the system-wide
14470 Tor service we run (Closes: #10528).
14471 - Essentially revert ALSA state handling to how it was pre-Jessie, so that
14472 mixer levels are unmuted and sanitized at boot time (Closes: #7591).
14473 - Pass --yes to apt-get when installing imagemagick.
14474 - Make removable devices, that we support installing Tails to, user writable:
14475 Tails Installer requires raw block device access to such devices
14476 (Closes: #8273). Similarly, allow the amnesia user, when active, to open
14477 non-system devices for writing with udisks2. This is roughly udisks2's
14478 equivalent of having direct write access to raw block storage devices.
14479 Here too, Tails Installer uses this functionality.
14480 - Disable networkd to prevent any risk of DNS leaks it might cause; and
14481 disable timesyncd, as we have our own time synchronization mechanism.
14482 They are not enabled by default in Jessie, but may be in Stretch,
14483 so let's be explicit about it.
14484 - Mask hwclock-save.service, to avoid sync'ing the system clock
14485 to the hardware clock on shutdown (Closes: #9363).
14486 - apparmor-adjust-cupsd-profile.diff: adjust to parse fine on Jessie
14488 - Explicitly use tor@default.service when it's the one we mean.
14489 - Refactor GNOME/X env exporting to Tails' shell library, and grab
14490 more of useful bits of the desktop session environment.
14491 Then, use the result in the test suite's remote shell.
14492 - Stop tweaking /etc/modules. It's 2015, the kernel should load these things
14493 automatically (Closes: #10609).
14494 - Have systemd hardening let Tor modify its configuration (needed by Tor
14495 Launcher), and start obfs4proy (Closes: #10696, #10724).
14496 - Bump extensions.adblockplus.currentVersion and
14497 extensions.enigmail.configuredVersion to match what we currently get
14499 - I2P: switch from 'service' to 'systemctl' where possible.
14501 -- Tails developers <tails@boum.org> Mon, 25 Jan 2016 18:06:33 +0100
14503 tails (1.8.2) unstable; urgency=medium
14506 - Upgrade Tor Browser to 5.0.7.
14507 - Upgrade Linux to 3.16.7-ckt20-1+deb8u2.
14508 - Upgrade foomatic-filters to 4.0.17-1+deb7u1.
14509 - Upgrade git to 1:1.7.10.4-1+wheezy2.
14510 - Upgrade Icedove to 38.5.0-1~deb7u1.
14511 - Upgrade libxml2-related packages to 2.8.0+dfsg1-7+wheezy5.
14512 - Upgrade OpenSSL-related packages to 1.0.1e-2+deb7u19.
14513 - Upgrade libsmbclient to 2:3.6.6-6+deb7u6.
14515 -- Tails developers <tails@boum.org> Sat, 09 Jan 2016 16:27:27 +0100
14517 tails (1.8.1) unstable; urgency=medium
14520 - Upgrade Tor Browser to 5.0.6.
14521 - Upgrade Linux to 3.16.7-ckt20-1+deb8u1
14522 - Upgrade gdkpixbuf to 2.26.1-1+deb7u3
14523 - Upgrade bind9 tools to 1:9.8.4.dfsg.P1-6+nmu2+deb7u8
14526 - Fix time synchronization in bridge mode by refreshing our patch
14527 against Tor's AppArmor profile.
14529 -- Tails developers <tails@boum.org> Fri, 18 Dec 2015 19:05:18 +0000
14531 tails (1.8) unstable; urgency=medium
14534 - Upgrade Tor to 0.2.7.6-1~d70.wheezy+1+tails1.
14535 - Upgrade Tor Browser to 5.0.5. (Closes: #10751)
14536 - Upgrade LibreOffice to 1:3.5.4+dfsg2-0+deb7u5.
14537 - Upgrade krb5-based packages to 1.10.1+dfsg-5+deb7u6.
14538 - Upgrade Linux to 3.16.7-ckt11-1+deb8u6.
14539 - Upgrade wpasupplicant to 1.0-3+deb7u3.
14540 - Upgrade libpng12-0 to 1.2.49-1+deb7u1.
14541 - Upgrade openjdk-7 to 7u91-2.6.3-1~deb7u1.
14542 - Upgrade libnspr4 to 2:4.9.2-1+deb7u3
14543 - Upgrade dpkg to 1.16.17.
14544 - Upgrade gnutls26 to 2.12.20-8+deb7u4.
14545 - Upgrade Icedove to 1:38.0.1-1~deb7u1.
14546 - Upgrade OpenSSL to 1.0.1e-2+deb7u18.
14549 - Upgrade to Electrum 2.5.4-2~d70.wheezy+1+tails1. Now Electrum
14550 should work again. Note that the documentation has not been
14551 adapted to the slight changes in the Electrum account setup
14554 * Minor improvements
14555 - Upgrade I2P to 0.9.23-2~deb7u+1.
14556 - Rebase our patch against the Tor Browser AppArmor profile on top
14557 of the one shipped in torbrowser-launcher 0.2.1-2.
14558 - Warn if the claws-mail persistence is enabled and contains a
14559 Claws Mail configuration when starting icedove. (Closes: #10458)
14560 - Replace the Claws Mail GNOME launcher with Icedove. (Closes:
14562 - Remove the Claws Mail persistence feature from the Persistence
14563 Assistant. (Closes: #10742)
14566 - Simplify ISO image naming rules by using the base rule we use
14567 for Jenkins all the time, except when building from a tag
14568 (i.e. building a release). (Closes: #10349)
14571 - Lower the waiting time for USB installation in the test suite.
14572 So far we were waiting up to one hour, which is just the same as
14573 our Jenkins inactivity timeout, so in practice when Tails
14574 Installer fails and displays an error message, instead of
14575 reporting that the job failed (which is the point of the
14576 exercise) we abort the job due to this timeout which
14577 communicates less clearly that there's probably a bug. (Closes:
14579 - Remove the check for the sound icon in the systray in the
14580 Windows Camouflage tests. (Closes: #10493)
14581 - Retry running whois when "LIMIT EXCEEDED" is in its output for
14582 increased robustness. (Closes: #10523)
14583 - Make Seahorse tests more robust. (Closes: #9095, #10501)
14584 - Make the handling of Pidgin's account manager more robust.
14587 -- Tails developers <tails@boum.org> Mon, 14 Dec 2015 23:07:19 +0100
14589 tails (1.7) unstable; urgency=medium
14591 * Major new features and changes
14592 - Upgrade Tor Browser to 5.0.4. (Closes: #10456)
14593 - Add a technology preview of the Icedove Email client (a
14594 rebranded version of Mozilla Thunderbird), including OpenPGP
14595 support via the Enigmail add-on, general security and anonymity
14596 improvements via the Torbirdy add-on, and complete persistence
14597 support (which will be enabled automatically if you already have
14598 Claws Mail persistence enabled). Icedove will replace Claws Mail
14599 as the supported email client in Tails in a future
14600 release. (Closes: #6151, #9498, #10285)
14601 - Upgrade Tor to 0.2.7.4-rc-1~d70.wheezy+1+tails1. Among the many
14602 improvement of this new Tor major release, the new
14603 KeepAliveIsolateSOCKSAuth option allows us to drop the
14604 bug15482.patch patch (taken from the Tor Browse bundle) that
14605 enabled similar (but inferior) functionality for *all*
14606 SocksPort:s -- now the same circuit is only kept alive for
14607 extended periods for the SocksPort used by the Tor
14608 Browser. (Closes: #10194, #10308)
14609 - Add an option to Tails Greeter which disables networking
14610 completely. This is useful when intending to use Tails for
14611 offline work only. (Closes: #6811)
14614 - Fix CVE-2015-7665, which could lead to a network interface's IP
14615 address being exposed through wget. (Closes: #10364)
14616 - Prevent a symlink attack on ~/.xsession-errors via
14617 tails-debugging-info which could be used by the amnesia user to
14618 read the contents of any file, no matter the
14619 permissions. (Closes: #10333)
14620 - Upgrade libfreetype6 to 2.4.9-1.1+deb7u2.
14621 - Upgrade gdk-pixbuf packages to 2.26.1-1+deb7u2.
14622 - Upgrade Linux to 3.16.7-ckt11-1+deb8u5.
14623 - Upgrade openjdk-7 packages to 7u85-2.6.1-6~deb7u1.
14624 - Upgrade unzip to 6.0-8+deb7u4.
14627 - Add a temporary workaround for an issue in our code which checks
14628 whether i2p has bootstrapped, which (due to some recent change
14629 in either I2P or Java) could make it appear it had finished
14630 prematurely. (Closes: #10185)
14631 - Fix a logical bug in the persistence preset migration code while
14632 real-only persistence is enabled. (Closes: #10431)
14634 * Minor improvements
14635 - Rework the wordings of the various installation and upgrade
14636 options available in Tails installer in Wheezy. (Closes: #9672)
14637 - Restart Tor if bootstrapping stalls for too long when not using
14638 pluggable transports. (Closes: #9516)
14639 - Install firmware-amd-graphics, and firmware-misc-nonfree instead
14640 of firmware-ralink-nonfree, both from Debian Sid.
14641 - Update the Tails signing key. (Closes: #10012)
14642 - Update the Tails APT repo signing key. (Closes: #10419)
14643 - Install the nmh package. (Closes: #10457)
14644 - Explicitly run "sync" at the end of the Tails Upgrader's upgrade
14645 process, and pass the "sync" option when remounting the system
14646 partition as read-write. This might help with some issues we've
14647 seen, such as #10239, and possibly for #8449 as well.
14650 - Add initial automated tests for Icedove. (Closes: #10332)
14651 - Add automated tests of the MAC spoofing feature. (Closes: #6302)
14652 - Drop the concept of "background snapshots" and introduce a general
14653 system for generating snapshots that can be shared between
14654 features. This removes all silly hacks we previously used to
14655 "skip" steps, and greatly improves performance and reliability
14656 of the whole test suite. (Closes: #6094, #8008)
14657 - Flush to the log file in debug_log() so the debugging info can
14658 be viewed in real time when monitoring the debug log
14659 file. (Closes: #10323)
14660 - Force UTF-8 locale in automated test suite. Ruby will default to
14661 the system locale, and if it is non-UTF-8, some String-methods
14662 will fail when operating on non-ASCII strings. (Closes: #10359)
14663 - Escape regexp used to match nick in CTCP replies. Our Pidgin
14664 nick's have a 10% chance to include a ^, which will break that
14665 regexp. We need to escape all characters in the nick. (Closes:
14667 - Extract TBB languages from the Tails source code. This will
14668 ensure that valid locales are tested. As an added bonus, the
14669 code is greatly simplified. (Closes: #9897)
14670 - Automatically test that tails-debugging-info is not susceptible
14671 to the type of symlink attacks fixed by #10333.
14672 - Save all test suite artifacts in a dedicated directory with more
14673 useful infromation encoded in the path. This makes it easier to
14674 see which artifacts belongs to which failed scenario and which
14675 run. (Closes: #10151)
14676 - Log all useful information via Cucumber's formatters instead of
14677 printing to stderr, which is not included when logging to file
14678 via `--out`. (Closes: #10342)
14679 - Continue running the automated test suite's vnc server even if
14680 the client disconnects. (Closes: #10345)
14681 - Add more automatic tests for I2P. (Closes: #6406)
14682 - Bump the Tor circuit retry count to 10. (Closes: #10375)
14683 - Clean up dependencies: (Closes: #10208)
14688 -- Tails developers <tails@boum.org> Tue, 03 Nov 2015 01:09:41 +0100
14690 tails (1.6) unstable; urgency=medium
14693 - Upgrade Tor Browser to 5.0.3. (Closes: #10223)
14694 - Upgrade bind9-based packages to 1:9.8.4.dfsg.P1-6+nmu2+deb7u7.
14695 - Upgrade liblcms1 to 1.19.dfsg2-1.2+deb7u1.
14696 - Upgrade libldap-2.4-2 to 2.4.31-2+deb7u1.
14697 - Upgrade libslp1 to 1.2.1-9+deb7u1.
14698 - Upgrade ssl-cert to 1.0.32+deb7u1.
14701 - Fix a corner case for the MAC spoofing panic mode. If panic mode
14702 failed to disable the specific device that couldn't be spoofed
14703 (by unloading the module) we disable networking. Previously we
14704 only stopped NetworkManager. The problem is that NM isn't even
14705 started at this time, but will specifically be started when
14706 we're done with MAC spoofing. Therefore, let's completely
14707 disable NetworkManager so it cannot possibly be
14708 started. (Closes: #10160)
14709 - Avoid use of uninitialized value in restricted-network-detector.
14710 If NetworkManager decides that a wireless connection has timed
14711 out before "supplicant connection state" has occued, our idea of
14712 the state is `undef`, so it cannot be used in a string
14713 comparison. Hence, let's initialize the state to the empty
14714 string instead of `undef`. Also fix the state
14715 recording. Apparently NetworkManager can say a few different
14716 things when it logs the device state transitions. (Closes:
14719 * Minor improvements
14720 - Remove workaround for localizing search engine plugins. The
14721 workaround has recently become unnecessary, possibly due to the
14722 changes made for the seach bar after the Tor Browser was rebased
14723 on Firefox 38esr. (Closes: #9146)
14724 - Refer to the I2P Browser in the I2P notifications. Instead of
14725 some obscure links that won't work in the Tor Browser, where
14726 users likely will try them, and which I believe will open them
14727 by default. (Closes: #10182)
14728 - Upgrade I2P to 0.9.22. Also set the I2P apparmor profile to
14729 enforce mode. (Closes: #9830)
14732 - Test that udev-watchdog is monitoring the correct device when
14733 booted from USB. (Closes: #9890)
14734 - Remove unused 'gksu' step. This causes a false-positive to be
14735 found for #5330. (Closes: #9877)
14736 - Make --capture capture individual videos for failed scenarios
14737 only, and --capture-all to capture videos for all scenarios.
14739 - Use the more efficient x264 encoding when capturing videos using
14740 the --capture* options. (Closes: #10001)
14741 - Make --old-iso default to --iso if omitted. Using the same ISO
14742 for the USB upgrade tests most often still does what we want,
14743 e.g. test that the current version of Tails being tested has a
14744 working Tails installer. Hence this seems like a reasonable
14745 default. (Closes: #10147)
14746 - Avoid nested FindFailed exceptions in waitAny()/findAny(), and
14747 throw a new dedicated FindAnyFailed exception if these fail
14748 instead. Rjb::throw doesn't block Ruby's execution until the
14749 Java exception has been received by Ruby, so strange things can
14750 happen and we must avoid it. (Closes: #9633)
14751 - Fix the Download Management page in our browsers. Without the
14752 browser.download.panel.shown pref set, the progress being made
14753 will not update until after the browser has been restarted.
14755 - Add a 'pretty_debug' (with an alias: 'debug') Cucumber formatter
14756 that deals with debugging instead of printing it to STDERR via
14757 the `--debug` option (which now has been removed). This gives us
14758 the full flexibility of Cucumber's formatter system, e.g. one
14759 easy-to-read formatter can print to the terminal, while we get
14760 the full debug log printed to a file. (Closes: #9491)
14761 - Import logging module in otr-bot.py. Our otr-bot.py does not use
14762 logging but the jabberbot library makes logging calls, causing a
14763 one-off message “No handlers could be found for logger
14764 "jabberbot"” to be printed to the console. This commit
14765 effectively prevents logging/outputting anything to the terminal
14766 which is at a level lower than CRITICAL. (Closes: 9375)
14767 - Force new Tor circuit and reload web site on browser
14768 timeouts. (Closes: #10116)
14769 - Focus Pidgin's buddy list before trying to access the tools
14770 menu. (Closes: #10217)
14771 - Optimize IRC test using waitAny. If connecting to IRC fails,
14772 such as when OFTC is blocking Tor, waiting 60 seconds to connect
14773 while a a Reconnect button is visible is sub-optimal. It would
14774 be better to try forcing a new Tor circuit and clicking the
14775 reconnect button. (Closes: #9653)
14776 - Wait for (and focus if necessary) Pidgin's Certificate windows.
14779 -- Tails developers <tails@boum.org> Sun, 20 Sep 2015 17:47:26 +0000
14781 tails (1.5.1) unstable; urgency=medium
14784 - Upgrade Tor Browser to 5.0.2. (Closes: #10112)
14785 - Upgrade gdk-pixbuf packages to 2.26.1-1+deb7u1.
14786 - Upgrade libnss3 to 2:3.14.5-1+deb7u5.
14789 - Refresh Tor Browser AppArmor profile patch. The old one doesn't
14790 apply on top of testing's torbrowser-launcher anymore.
14793 - Make sure Jenkins creates new jobs to build the testing branch
14794 after freezes. (Closes: #9925)
14796 -- Tails developers <tails@boum.org> Fri, 28 Aug 2015 01:52:14 +0200
14798 tails (1.5) unstable; urgency=medium
14800 * Major new features and changes
14801 - Move LAN web browsing from Tor Browser to the Unsafe Browser,
14802 and forbid access to the LAN from the former. (Closes: #7976)
14803 - Install a 32-bit GRUB EFI boot loader. This at least works
14804 on some Intel Baytrail systems. (Closes: #8471)
14807 - Upgrade Tor Browser to 5.0, and integrate it:
14808 · Disable Tiles in all browsers' new tab page.
14809 · Don't use geo-specific search engine prefs in our browsers.
14810 · Hide Tools -> Set Up Sync, Tools -> Apps (that links to the Firefox
14811 Marketplace), and the "Share this page" button in the Tool bar.
14812 · Generate localized Wikipedia search engine plugin icons so the
14813 English and localized versions can be distinguished in the new
14814 search bar. (Closes: #9955)
14815 - Fix panic mode on MAC spoofing failure. (Closes: #9531)
14816 - Deny Tor Browser access to global tmp directories with AppArmor,
14817 and give it its own $TMPDIR. (Closes: #9558)
14818 - Tails Installer: don't use a predictable file name for the subprocess
14819 error log. (Closes: #9349)
14820 - Pidgin AppArmor profile: disable the launchpad-integration abstraction,
14821 which is too wide-open.
14822 - Use aliases so that our AppArmor policy applies to
14823 /lib/live/mount/overlay/ and /lib/live/mount/rootfs/*.squashfs/ as well as
14824 it applies to /. And accordingly:
14825 · Upgrade AppArmor packages to 2.9.0-3~bpo70+1.
14826 · Install rsyslog from wheezy-backports, since the version from Wheezy
14827 conflicts with AppArmor 2.9.
14828 · Stop installing systemd for now: the migration work is being done in
14829 the feature/jessie branch, and it conflicts with rsyslog from
14831 · Drop apparmor-adjust-user-tmp-abstraction.diff: obsoleted.
14832 · apparmor-adjust-tor-profile.diff: simplify and de-duplicate rules.
14833 · Take into account aufs whiteouts in the system_tor profile.
14834 · Adjust the Vidalia profile to take into account Live-specific paths.
14835 - Upgrade Linux to 3.16.7-ckt11-1+deb8u3.
14836 - Upgrade bind9-host, dnsutils and friends to 1:9.8.4.dfsg.P1-6+nmu2+deb7u6.
14837 - Upgrade cups-filters to 1.0.18-2.1+deb7u2.
14838 - Upgrade ghostscript to 9.05~dfsg-6.3+deb7u2.
14839 - Upgrade libexpat1 to 2.1.0-1+deb7u2.
14840 - Upgrade libicu48 to 4.8.1.1-12+deb7u3.
14841 - Upgrade libwmf0.2-7 to 0.2.8.4-10.3+deb7u1.
14842 - Upgrade openjdk-7 to 7u79-2.5.6-1~deb7u1.
14845 - Upgrade Tor to 0.2.6.10-1~d70.wheezy+1+tails1.
14847 * Minor improvements
14848 - Tails Installer: let the user know when it has rejected a candidate
14849 destination device because it is too small. (Closes: #9130)
14850 - Tails Installer: prevent users from trying to "upgrade" a device
14851 that contains no Tails, or that was not installed with Tails Installer.
14853 - Install libotr5 and pidgin-otr 4.x from wheezy-backports. This adds
14854 support for the OTRv3 protocol and for multiple concurrent connections
14855 to the same account. (Closes: #9513)
14856 - Skip warning dialog when starting Tor Browser while being offline,
14857 in case it is already running. Thanks to Austin English for the patch!
14859 - Install the apparmor-profiles package (Closes: #9539), but don't ship
14860 a bunch of AppArmor profiles we don't use, to avoid increasing
14861 boot time. (Closes: #9757)
14862 - Ship a /etc/apparmor.d/tunables/home.d/tails snippet, instead
14863 of patching /etc/apparmor.d/tunables/home.
14864 - live-boot: don't mount tmpfs twice on /live/overlay, so that the one which
14865 is actually used as the read-write branch of the root filesystem's union
14866 mount, is visible. As a consequence:
14867 · One can now inspect how much space is used, at a given time, in the
14868 read-write branch of the root filesystem's union mount.
14869 · We can make sure our AppArmor policy works fine when that filesystem
14870 is visible, which is safer in case e.g. live-boot's behavior changes
14871 under our feet in the future... or in case these "hidden" files are
14872 actually accessible somehow already.
14875 - Add our jenkins-tools repository as a Git submodule, and replace
14876 check_po.sh with a symlink pointing to the same script in that submodule.
14877 Adjust the automated test suite accordingly. (Closes: #9567)
14878 - Bump amount of RAM needed for Vagrant RAM builds to 7.5 GiB. In
14879 particular the inclusion of the Tor Browser 5.0 series has recently
14880 increased the amount of space needed to build Tails. (Closes: #9901)
14883 - Test that the Tor Browser cannot access LAN resources.
14884 - Test that the Unsafe Browser can access the LAN.
14885 - Installer: test new behavior when trying to upgrade an empty device, and
14886 when attempting to upgrade a non-Tails FAT partition on GPT; also, take
14887 into account that all unsupported upgrade scenarios now trigger
14889 - Request a new Tor circuit and re-run the Seahorse and GnuPG CLI tests
14890 on failure. (Closes: #9518, #9709)
14891 - run_test_suite: remove control chars from log file even when cucumber
14892 exits with non-zero. (Closes: #9376)
14893 - Add compatibility with cucumber 2.0 and Debian Stretch. (Closes: #9667)
14894 - Use custom exception when 'execute_successfully' fails.
14895 - Retry looking up whois info on transient failure. (Closes: #9668)
14896 - Retry wget on transient failure. (Closes: #9715)
14897 - Test that Tor Browser cannot access files in /tmp.
14898 - Allow running the test suite without ntp installed. There are other means
14899 to have an accurate host system clock, e.g. systemd-timesyncd and tlsdate.
14901 - Bump timeout in the Totem feature.
14902 - Grep memory dump using the --text option. This is necessary with recent
14903 versions of grep, such as the one in current Debian sid, otherwise it
14904 will count only one occurrence of the pattern we're looking for.
14906 - Include execute_successfully's error in the exception, instead
14907 of writing it to stdout via puts. (Closes: #9795)
14908 - Test that udev-watchdog is actually monitoring the correct device.
14910 - IUK: workaround weird Archive::Tar behaviour on current sid.
14911 - Test the SocksPort:s given in torrc in the Unsafe Browser.
14912 This way we don't get any sneaky errors in case we change them and
14913 forget to update this test.
14914 - Directly verify AppArmor blocking of the Tor Browser by looking in
14915 the audit log: Firefox 38 does no longer provide any graphical feedback
14916 when the kernel blocks its access to files the user wants to access.
14917 - Update browser-related automated test suite images, and workaround
14918 weirdness introduced by the new Tor Browser fonts.
14919 - Test that Pidgin, Tor Browser, Totem and Evince cannot access ~/.gnupg
14920 via alternate, live-boot generated paths.
14921 - Adjust tests to cope with our new AppArmor aliases.
14922 - Bump memory allocated to the system under test to 2 GB. (Closes: #9883)
14924 -- Tails developers <tails@boum.org> Mon, 10 Aug 2015 19:12:58 +0200
14926 tails (1.4.1) unstable; urgency=medium
14929 - Upgrade Tor Browser to 4.5.3, based on Firefox 31.8.0 ESR. (Closes: #9649)
14930 - Upgrade Tor to 0.2.6.9-1~d70.wheezy+1+tails2, which includes a circuit
14931 isolation bugfix. (Closes: #9560)
14932 - AppArmor: deny Tor Browser access to the list of recently used files.
14934 - Upgrade OpenSSL to 1.0.1e-2+deb7u17.
14935 - Upgrade Linux to 3.16.7-ckt11-1.
14936 - Upgrade CUPS to 1.5.3-5+deb7u6.
14937 - Upgrade FUSE to 2.9.0-2+deb7u2.
14938 - Upgrade libsqlite3-0 to 3.7.13-1+deb7u2.
14939 - Upgrade ntfs-3g and ntfsprogs to 1:2012.1.15AR.5-2.1+deb7u2.
14940 - Upgrade p7zip-full to 9.20.1~dfsg.1-4+deb7u1.
14943 - Fix automatic upgrades in Windows Camouflage mode. (Closes: #9413)
14944 - Don't ship the snakeoil SSL key pair generated by ssl-cert in the ISO.
14946 - Partially fix the truncated notifications issue. (#7249)
14948 * Minor improvements
14949 - Disable the hwclock.sh initscript at reboot/shutdown time.
14950 This is an additional safety measure to ensure that the hardware clock
14951 is not modified. (Closes: #9364)
14952 - Stop shipping /var/cache/man/*, to make ISOs and IUKs smaller.
14954 - Update torbrowser-AppArmor-profile.patch to apply cleanly on top of the
14955 profile shipped with torbrowser-launcher 0.2.0-1.
14956 - Add the jessie/updates APT repo and set appropriate pinning.
14957 - Upgrade Electrum to 1.9.8-4~bpo70+1.
14958 - Upgrade kernel firmware packages to 0.44.
14961 - Install the Linux kernel from Debian Jessie. (Closes: #9341)
14962 - Remove files that are not under version control when building in Jenkins.
14964 - Don't modify files in the source tree before having possibly merged
14965 the base branch into it. (Closes: #9406)
14966 - Make it so eatmydata is actually used during a greater part of the build
14967 process. This includes using eatmydata from wheezy-backports.
14968 (Closes: #9419, #9523)
14969 - release script: adjust to support current Debian sid.
14972 - Test the system clock sanity check we do at boot. (Closes: #9377)
14973 - Remove the impossible "Clock way in the past" scenarios.
14974 Thanks to config/chroot_local-includes/lib/live/config/0001-sane-clock,
14975 these scenarios cannot happen, and since we test that it works they
14976 can be safely removed.
14977 - Test that the hardware clock is not modified at shutdown. (Closes: #9557)
14978 - Pidgin: retry looking for the roadmap URL in the topic.
14979 - Avoid showing Pidgin's tooltips during test, potentially confusing Sikuli.
14981 - Test all OpenPGP keys shipped with Tails. (Closes: #9402)
14982 - Check that notification-daemon is running when looking for notifications
14983 fails. (Closes: #9332)
14984 - Allow using the cucumber formatters however we want. (Closes: #9424)
14985 - Enable Spice in the guest, and blacklist the psmouse kernel module,
14986 to help with lost mouse events. (Closes: #9425)
14987 - Automate testing Torbutton's 'New Identity' feature. (Closes: #9286)
14988 - Test that Seahorse is configured to use the correct keyserver.
14990 - Always export TMPDIR back to the test suite's shell environment.
14992 - Make OpenPGP tests more reliable:
14993 · Retry accessing the OpenPGP applet menus on failure. (Closes: #9355)
14994 · Retry accessing menus in Seahorse on failure. (Closes: #9344)
14995 - Focus the Pidgin conversation window before any attempt to interact
14996 with it. (Closes: #9317)
14997 - Use convertkey from the (backported to Jessie) Debian package,
14998 instead of our own copy of that script. (Closes: #9066)
14999 - Make the memory erasure tests more robust (Closes: #9329):
15000 · Bump /proc/sys/vm/min_free_kbytes when running fillram.
15001 · Actually set oom_adj for the remote shell when running fillram.
15002 · Try to be more sure that we OOM kill fillram.
15003 · Run fillram as non-root.
15004 - Only try to build the storage pool if TailsToasterStorage isn't found.
15007 -- Tails developers <tails@boum.org> Sun, 28 Jun 2015 19:46:25 +0200
15009 tails (1.4) unstable; urgency=medium
15011 * Major new features
15012 - Upgrade Tor Browser to 4.5.1, based on Firefox 31.7.0 ESR, which
15013 introduces many major new features for usability, security and
15014 privacy. Unfortunately its per-tab circuit view did not make it
15015 into Tails yet since it requires exposing more Tor state to the
15016 user running the Tor Browser than we are currently comfortable
15017 with. (Closes: #9031, #9369)
15018 - Upgrade Tor to 0.2.6.7-1~d70.wheezy+1+tails2. Like in the Tor
15019 bundled with the Tor Browser, we patch it so that circuits used
15020 for SOCKSAuth streams have their lifetime increased indefinitely
15021 while in active use. This currently only affects the Tor Browser
15022 in Tails, and should improve the experience on certain web sites
15023 that otherwise would switch language or log you out every ten
15024 minutes or so when Tor switches circuit. (Closes: #7934)
15027 - tor-browser wrapper script: avoid offering avenues to arbitrary
15028 code execution to e.g. an exploited Pidgin. AppArmor Ux rules
15029 don't sanitize $PATH, which can lead to an exploited application
15030 (that's allowed to run this script unconfined, e.g. Pidgin)
15031 having this script run arbitrary code, violating that
15032 application's confinement. Let's prevent that by setting PATH to
15033 a list of directories where only root can write. (Closes: #9370)
15034 - Upgrade Linux to 3.16.7-ckt9-3.
15035 - Upgrade curl to 7.26.0-1+wheezy13.
15036 - Upgrade dpkg to 1.16.16.
15037 - Upgrade gstreamer0.10-plugins-bad to 0.10.23-7.1+deb7u2.
15038 - Upgrade libgd2-xpm to 2.0.36~rc1~dfsg-6.1+deb7u1.
15039 - Upgrade openldap to 2.4.31-2.
15040 - Upgrade LibreOffice to 1:3.5.4+dfsg2-0+deb7u4.
15041 - Upgrade libruby1.9.1 to 1.9.3.194-8.1+deb7u5.
15042 - Upgrade libtasn1-3 to 2.13-2+deb7u2.
15043 - Upgrade libx11 to 2:1.5.0-1+deb7u2.
15044 - Upgrade libxml-libxml-perl to 2.0001+dfsg-1+deb7u1.
15045 - Upgrade libxml2 to 2.8.0+dfsg1-7+wheezy4.
15046 - Upgrade OpenJDK to 7u79-2.5.5-1~deb7u1.
15047 - Upgrade ppp to 2.4.5-5.1+deb7u2.
15050 - Disable security warnings when connecting to POP3 and IMAP ports.
15052 - Make the Windows 8 browser theme compatible with the Unsafe and I2P
15053 browsers. (Closes: #9138)
15054 - Hide Torbutton's "Tor Network Settings..." context menu entry.
15056 - Upgrade the syslinux packages to support booting Tails on
15057 Chromebook C720-2800. (Closes: #9044)
15058 - Enable localization in Tails Upgrader. (Closes: #9190)
15059 - Make sure the system clock isn't before the build date during
15060 early boot. Our live-config hook that imports our signing keys
15061 depend on that the system clock isn't before the date when the
15062 keys where created. (Closes: #9149)
15063 - Set GNOME's OpenPGP keys via desktop.gnome.crypto.pgp to prevent
15064 us from getting GNOME's default keyserver in addition to our
15065 own. (Closes: #9233)
15066 - Prevent Firefox from crashing when Orca is enabled: grant
15067 it access to assistive technologies in its Apparmor
15068 profile. (Closes: #9261)
15069 - Add Jessie APT source. (Closes: #9278)
15070 - Fix set_simple_config_key(). If the key already existed in the
15071 config file before the call, all other lines would be removed
15072 due to the sed option -n and p combo. (Closes: #9122)
15073 - Remove illegal instance of local outside of function definition.
15074 Together with `set -e` that error has prevented this script from
15075 restarting Vidalia, like it should. (Closes: #9328)
15077 * Minor improvements
15078 - Upgrade I2P to 0.9.19-3~deb7u+1.
15079 - Install Tor Browser's bundled Torbutton instead of custom .deb.
15080 As of Torbutton 1.9.1.0 everything we need has been upstreamed.
15081 - Install Tor Browser's bundled Tor Launcher instead of our
15082 in-tree version. With Tor 0.2.6.x our custom patches for the
15083 ClientTransportPlugin hacks are not needed any more. (Closes:
15085 - Don't install msmtp and mutt. (Closes: #8727)
15086 - Install fonts-linuxlibertine for improved Vietnamese support in
15087 LibreOffice. (Closes: #8996)
15088 - Remove obsoletete #i2p-help IRC channel from the Pidgin
15089 configuration (Closes: #9137)
15090 - Add Gedit shortcut to gpgApplet's context menu. Thanks to Ivan
15091 Bliminse for the patch. (Closes: #9069).
15092 - Install printer-driver-gutenprint to support more printer
15093 models. (Closes: #8994).
15094 - Install paperkey for off-line OpenPGP key backup. (Closes: #8957)
15095 - Hide the Tor logo in Tor Launcher. (Closes: #8696)
15096 - Remove useless log() instance in tails-unblock-network. (Closes:
15098 - Install cdrdao: this enables Brasero to burn combined data/audio
15099 CDs and to do byte-to-byte disc copy.
15100 - Hide access to the Add-ons manager in the Unsafe Browser. It's
15101 currently broken (#9307) but we any way do not want users to
15102 install add-ons in the Unsafe Browser. (Closes: #9305)
15103 - Disable warnings on StartTLS for POP3 and IMAP (Will-fix: #9327)
15104 The default value of this option activates warnings on ports
15105 23,109,110,143. This commit disables the warnings for POP3 and
15106 IMAP as these could be equally used in encrypted StartTLS
15107 connections. (Closes: #9327)
15108 - Completely rework how we localize our browser by generating our
15109 branding add-on, and search plugins programatically. This
15110 improves the localization for the ar, es, fa, ko, nl, pl, ru,
15111 tr, vi and zh_CN locales by localizing the Startpage and
15112 Disconnect.me search plugins. Following Tor Browser 4.5's recent
15113 switch, we now use Disconnect.me as the default search
15114 engine. (Closes: #9309)
15115 * Actively set Google as the Unsafe Browser's default search
15119 - Encode in Git which APT suites to include when building Tails.
15121 - Clean up the list of packages we install. (Closes: #6073)
15122 - Run auto/{build,clean,config} under `set -x' for improved
15124 - Zero-pad our ISO images so their size is divisible by 2048.
15125 The data part of an ISO image's sectors is 2048 bytes, which
15126 implies that ISO images should always have a size divisible
15127 by 2048. Some applications, e.g. VirtualBox, use this as a sanity
15128 check, treating ISO images for which this isn't true as garbage.
15129 Our isohybrid post-processing does not ensure this,
15130 however. Also Output ISO size before/after isohybrid'ing and
15131 truncate'ing it. This will help detect if/when truncate is
15132 needed at all, so that we can report back to syslinux
15133 maintainers more useful information. (Closes: #8891)
15134 - Vagrant: raise apt-cacher-ng's ExTreshold preference to 50. The
15135 goal here is to avoid Tor Browser tarballs being deleted by
15136 apt-cacher-ng's daily expiration cronjob: they're not listed in
15137 any APT repo's index file, so acng will be quite eager to clean
15141 - Bring dependency checks up-to-date (Closes: #8988).
15142 - Adapt test suite to be run on Debian Jessie, which includes
15143 removing various Wheezy-specific workarounds, adding a few
15144 specific to Jessie, migrating from ffmpeg to libav, and
15145 more. (Closes: #8165)
15146 - Test that MAT can see that a PDF is dirty (Closes: #9136).
15147 - Allow throwing Timeout::Error in try_for() blocks, as well as
15148 nested try_for() (Closes: #9189, #9290).
15149 - Read test suite configuration files from the features/config/local.d
15150 directory. (Closes: #9220)
15151 - Kill virt-viewer with SIGTERM, not SIGINT, to prevent hordes of
15152 zombie processes from appearing. (Closes: #9139)
15153 - Kill Xvfb with SIGTERM, not SIGKILL, on test suite exit to allow
15154 it to properly clean up. (Closes: #8707)
15155 - Split SSH & SFTP configs in the test suite. (Closes: #9257)
15156 - Improve how we start subprocesses in the test suite, mostly by
15157 bypassing the shell for greater security and robustness (Closes:
15159 - Add Electrum test feature. (Closes #8963)
15160 - Test that Tails Installer detects when USB devices are
15161 removed. (Closes: #9131)
15162 - Test Tails Installer with devices which are too small. (Closes:
15164 - Test that the Report an Error launcher works in German. (Closes:
15166 - Verify that no extensions are installed in the Unsafe Browser
15167 using about:support instead of about:addons, which is broken
15168 (#9307). (Closes: #9306)
15169 - Retry GNOME application menu actions when they glitch. The
15170 GNOME application menus seem to have issues with clicks or
15171 hovering actions not registering, and hence sometimes submenus
15172 are not opened when they should, and sometimes clicks on the
15173 final application shortcut are lost. There seems to be a
15174 correlation between this and CPU load on the host running the
15175 test suite. We workaround this by simply re-trying the last
15176 action when it seems to fail. (Closes: #8928)
15177 - Work around Seahorse GUI glitchiness (Closes: #9343):
15178 * When Seahorse appears to be frozen--apparently due to network
15179 issues--it can often be worked around by refreshing the screen
15180 or activating a new window.
15181 * Open Seahorse's preferences dialog using the mouse.
15182 * Access menu entries with the mouse.
15183 - Wait for systray icons to finish loading before interacting with
15184 the systray. (Closes: #9258)
15185 - Test suite configuration: generalize local.d support to *.d. We
15186 now load features/config/*.d/*.yml.
15187 - Use code blocks in "After Scenario" hooks. This is much simpler
15188 to use (and more readable!) compared to hooking functions and
15189 arguments like we used to do.
15190 - Create filesystem share sources in the temporary directory and
15191 make them world-readable. (Closes: #8950)
15193 -- Tails developers <tails@boum.org> Mon, 11 May 2015 16:45:04 +0200
15195 tails (1.3.2) unstable; urgency=medium
15198 - Upgrade Tor Browser to 4.0.6, based on Firefox 31.6.0 ESR.
15199 - Upgrade OpenSSL to 1.0.1e-2+deb7u16.
15202 - Make Florence usable with touchpads by forcing syndaemon to
15203 always use the `-t` option, which only disables tapping and
15204 scrolling and not mouse movements (Closes: #9011).
15205 - Make tails-spoof-mac log the correct macchanger exit code on
15206 failure (Closes: #8687).
15208 · Ignore devices with less than 3.5 GB of storage since they
15209 do not fit a Tails installation (Closes: #6538).
15210 · Remove devices from the device list as they are unplugged
15213 * Minor improvements
15214 - Install obfs4proxy 0.0.4-1~tpo1, which adds support for
15215 client-mode ScrambleSuit.
15216 - Don't start Vidalia if Windows Camouflage is enabled. (Closes:
15219 · Remove "Add-ons" from the Tools menu, and hide "Keyboard
15220 Shortcuts" and "Take a Tour" since they point to resources on
15221 the open Internet (Closes: #7970).
15222 · Hide TorButton button from the customize toolbar options, and
15223 remove configs whose only purpose was to make Torbutton "green"
15228 · Test non-LAN SSH, and SFTP via GNOME's "Connect to Server"
15230 · Verify that Tails' Tor binary has the expected Tor authorities
15231 hard coded (Closes: #8960).
15233 · Programmatically determine the supported languages when testing
15234 the Unsafe Browser (Closes: #8918).
15235 · Rename --temp-dir to --tmpdir and make it behave more like
15236 mktemp, and honour TMPDIR if set in the environment. (Closes:
15239 · Make --temp-dir (now --tmpdir) actually work.
15241 -- Tails developers <tails@boum.org> Mon, 30 Mar 2015 16:54:20 +0200
15243 tails (1.3.1) unstable; urgency=medium
15246 - Upgrade Tor Browser to 4.0.5, based on Firefox 31.5.3 ESR. This addresses:
15247 · https://www.mozilla.org/en-US/security/advisories/mfsa2015-28/
15248 · https://www.mozilla.org/en-US/security/advisories/mfsa2015-29/
15249 - Upgrade Linux to 3.16.7-ckt7-1.
15250 - Upgrade libxfont to 1:1.4.5-5.
15251 - Upgrade OpenSSL to 1.0.1e-2+deb7u15.
15252 - Upgrade tcpdump to 4.3.0-1+deb7u2.
15253 - Upgrade bsdtar to 3.0.4-3+wheezy1.
15254 - Upgrade CUPS to 1.5.3-5+deb7u5.
15255 - Upgrade file and libmagic to 5.11-2+deb7u8.
15256 - Upgrade GnuPG to 1.4.12-7+deb7u7.
15257 - Upgrade libarchive to 3.0.4-3+wheezy1.
15258 - Upgrade libav to 6:0.8.17-1.
15259 - Upgrade FreeType 2 to 2.4.9-1.1+deb7u1.
15260 - Upgrade libgcrypt11 1.5.0-5+deb7u3.
15261 - Upgrade libgnutls26 to 2.12.20-8+deb7u3.
15262 - Upgrade libgtk2-perl to 2:1.244-1+deb7u1.
15263 - Upgrade ICU to 4.8.1.1-12+deb7u2.
15264 - Upgrade NSS to 2:3.14.5-1+deb7u4.
15265 - Upgrade libssh2 to 1.4.2-1.1+deb7u1.
15268 - Upgrade Tor to 0.2.5.11-1~d70.wheezy+1+tails1. Changes include:
15269 · Directory authority changes.
15270 · Fix assertion errors that may trigger under high DNS load.
15271 · No longer break on HUP with seccomp2 enabled.
15272 · and more - please consult the upstream changelog.
15273 - Upgrade Tor Launcher to 0.2.7.2, and update the test suite accordingly
15274 (Closes: #8964, #6985). Changes include:
15275 · Ask about bridges before proxy in wizard.
15276 · Hide logo if TOR_HIDE_BROWSER_LOGO set.
15277 · Remove firewall prompt from wizard.
15278 · Feedback when “Copy Tor Log” is clicked.
15279 · Improve behavior if tor exits.
15280 · Add option to hide TBB's logo
15281 · Change "Tor Browser Bundle" to "Tor Browser"
15282 · Update translations from Transifex.
15283 - Fix the Tor Launcher killer. (Closes: #9067)
15284 - Allow Seahorse to communicate with keyservers when run from Tails
15285 OpenPGP Applet. (Closes: #6394)
15286 - SSH client: don't proxy connections to 172.17.* to 172.31.*.
15288 - Repair config/chroot_local-packages feature, that was broken in Tails 1.3
15289 by 19-install-tor-browser-AppArmor-profile. (Closes: #8910)
15290 - language_statistics.sh: count original words instead of translated words.
15291 Otherwise we get >100% translation if translated strings are longer than
15292 original strings. (Closes: #9016)
15294 * Minor improvements
15295 - Only ship the new Tails signing key, and have Tails Upgrader stop trusting
15296 the old one. Update the documentation and test suite accordingly.
15297 (Closes: #8735, #8736, #8882, #8769, #8951)
15298 - Polish and harden a bit the WhisperBack configuration (Closes: #8991):
15299 · Only allow the `amnesia' user to run tails-debugging info as root
15301 · Fix spelling and grammar mistakes, improve phrasing a bit.
15302 · Quote variables consistently.
15306 · Chatting over XMPP in Pidgin, both peer-to-peer and in a multi-user
15307 chatroom. (Closes: #8002)
15308 · Chatting with OTR enabled over XMPP in Pidgin. (Closes: #8001)
15309 · Check that Pidgin only responds to the expected CTCP requests.
15311 · Fetching keys using Seahorse started via the OpenPGP Applet.
15312 · Sync'ing keys using Seahorse.
15314 · Fix a race condition between the remote shell's and Tails Greeter's
15315 startup, by making sure the remote shell is ready before we start
15316 GDM. (Closes: #8941)
15317 · Kill virt-viewer properly. (Closes: #9070)
15318 · Make sure the display is stopped on destroy_and_undefine().
15319 Where we had it earlier, it could be skipped if anything else in the
15320 block threw an exception.
15321 · Fix wrong use of "$@". (Closes: #9071)
15322 · Enable the pipefail option in run_test_suite.
15323 · Improve the GNOME screenshot test's robustness. (Closes: #8952)
15325 · turn the focus_pidgin_window() helper into a more generic
15326 VM.focus_xorg_window() one.
15327 · Reorganize the Display class.
15328 · Use clearer method to check process status in the Display class.
15329 - New developer-oriented features:
15330 · Add a --log-to-file option to run_test_suite. (Closes: #8894)
15331 · Add helpers for generating random strings.
15332 · Make it possible to hook arbitrary calls on scenario end. This is useful
15333 for dynamically adding cleanup functions, instead of having
15334 to explicitly deal with them in some After hook.
15336 -- Tails developers <tails@boum.org> Mon, 23 Mar 2015 12:34:56 +0000
15338 tails (1.3) unstable; urgency=medium
15340 * Major new features
15341 - Produce the Tails image in hybrid mode (again) so that the same
15342 image can be installed both on DVD *and* "hard disks" like USB
15343 storage and similar. (Closes: #8510)
15344 - Confine the Tor Browser using AppArmor. (Closes: #5525)
15345 - Install the Electrum bitcoin client from wheezy-backports, and
15346 add a persistence preset for the Live user's bitcoin wallet. If
15347 electrum is started without the persistence preset enabled, a
15348 warning is shown. (Closes: #6739)
15351 - Upgrade Tor Browser to 4.0.4 (based on Firefox 31.5.0esr)
15355 - Have tor_bootstrap_progress echo 0 if no matching log line is
15356 found. (Closes: #8257)
15357 - Always pass arguments through wrappers (connect-socks, totem,
15358 wget, whois) with "$@". $* doesn't handle arguments with
15359 e.g. embedded spaces correctly. (Closes: #8603, #8830)
15360 - Upgrade Linux to 3.16.7-ckt4-3.
15362 * Minor improvements
15363 - Install a custom-built Tor package with Seccomp enabled;
15364 enable the Seccomp sandbox when no pluggable transport is used.
15366 - Install obfs4proxy instead of obfsproxy, which adds support for
15367 the obfs4 Tor pluggable transport. (Closes: #7980)
15368 - Install GnuPG v2 and associated tools from wheezy-backports,
15369 primarily for its improved support for OpenPGP smartcards. It
15370 lives side-by-side with GnuPG v1, which still is the
15371 default. (Closes: #6241)
15372 - Install ibus-unikey, a Vietnamese input method for IBus. (Closes:
15374 - Install torsocks (2.x) from wheezy-backports. (Closes: #8220)
15375 - Install keyringer from Debian Jessie. (Closes: #7752)
15376 - Install pulseaudio-utils.
15377 - Remove all traces of Polipo: we don't use it anymore. This
15378 closes #5379 and #6115 because:
15379 * Have APT directly use the Tor SOCKS proxy. (Closes: #8194)
15380 * Wrap wget with torsocks. (Closes: #6623)
15381 * Wrap Totem to torify it with torsocks. (Closes: #8219)
15382 * Torify Git with tsocks, instead of setting GIT_PROXY_COMMAND.
15384 - Use torsocks for whois and Gobby, instead of torify.
15385 - Upgrade I2P to 0.9.18-1~deb7u+1.
15386 - Refactor the Unsafe and I2P browser code into a common shell
15387 library. A lot of duplicated code is now shared, and the code
15388 has been cleaned up and made more reliable. Several
15389 optimizations of memory usage and startup time were also
15390 implemented. (Closes: #7951)
15391 - Invert Exit and About in gpgApplet context menu. This is a
15392 short-term workaround for making it harder to exit the
15393 application by mistake (e.g. a double right-click). (Closes:
15395 - Implement new touchpad settings. This enables tap-to-click,
15396 2-fingers scrolling, and disable while typing. We don't enable
15397 reverse scrolling nor horizontal scrolling. (Closes: #7779)
15398 - Include the mount(8) output and live-additional-software.conf in
15399 WhisperBack bug reports (Closes: #8719, #8491).
15400 - Reduce brightness and saturation of background color. (Closes:
15402 - Have ALSA output sound via PulseAudio by default. This gives us
15403 centralized sound volume controls, and... allows to easily, and
15404 automatically, test that audio output works from Tor Browser,
15405 thanks to the PulseAudio integration into the GNOME sound
15407 - Import the new Tails signing key, which we will use for Tails
15408 1.3.1, and have Tails Upgrader trust both it and the "old"
15409 (current) Tails signing key. (Closes: #8732)
15410 - tails-security-check: error out when passed an invalid CA file.
15411 Unfortunately, the underlying HTTPS stack we use here fails open
15412 in those case, so we have to check it ourselves. Currently, we
15413 check that the file exists, is readable, is a plain file and is
15414 not empty. Also support specifying the CA file via an
15415 environment variable. This will ease development and bug-fixing
15417 - Fix racy code in Tails Installer that sometimes made the
15418 automated test suite stall for scenarios installing Tails
15419 to USB disks. (Closes: #6092)
15420 - Make it possible to use Tails Upgrader to upgrade a Tails
15421 installation that has cruft files on the system partition.
15425 - Install syslinux-utils from our builder-wheezy APT repository in
15426 Vagrant. We need version 6.03~pre20 to make the Tails ISO image
15428 - Update deb.tails.boum.org apt repo signing key. (Closes: #8747)
15429 - Revert "Workaround build failure in lb_source, after creating
15430 the ISO." This is not needed anymore given the move to the Tor
15431 SOCKS proxy. (Closes: #5307)
15432 - Remove the bootstrap stage usage option and disable all
15433 live-build caching in Vagrant. It introduces complexity and
15434 potential for strange build inconsistencies for a meager
15435 reduction in build time. (Closes: #8725)
15436 - Hardcode the mirrors used at build and boot time in auto/config.
15437 Our stuff will be more consistent, easier to reproduce, and our
15438 QA process will be more reliable if we all use the same mirrors
15439 at build time as the ones we configure in the ISO. E.g. we won't
15440 have issues such as #8715 again. (Closes: #8726)
15441 - Don't attempt to retrieve source packages from local-packages so
15442 local packages can be installed via
15443 config/chroot_local-packages. (Closes: #8756)
15444 - Use our own Tor Browser archive when building an ISO. (Closes:
15448 - Use libguestfs instead of parted when creating partitions and
15449 filsystems, and to check that only the expected files
15450 persist. We also switch to qcow2 as the default disk image
15451 format everywhere to reduce disk usage, enable us to use
15452 snapshots that includes the disks (in the future), and to use
15453 the same steps for creating disks in all tests. (Closes: #8673)
15454 - Automatically test that Tails ignores persistence volumes stored
15455 on non-removable media, and doesn't enable swaps. (Closes:
15457 - Actually make sure that Tails can boot from live systems stored
15458 on a hard drive. Running the 'I start Tails from DVD ...' step
15459 will override the earlier 'the computer is set to boot from ide
15460 drive "live_hd"' step, so let's make the "from DVD" part
15461 optional; it will be the default any way.
15462 - Make it possible to use an old iso with different persistence
15463 presets. (Closes: #8091)
15464 - Hide the cursor between steps when navigating the GNOME
15465 applications menu. This makes it a bit more robust, again:
15466 sometimes the cursor is partially hiding the menu entry we're
15467 looking for, hence preventing Sikuli from finding it (in
15468 particular when it's "Accessories", since we've just clicked on
15469 "Applications" which is nearby). (Closes: #8875)
15470 - Ensure that the test will fail if "apt-get X" commands fail.
15471 - Test 'Tor is ready' notification in a separate scenario. (Closes:
15473 - Add automated tests for torified wget and whois. This should
15474 help us identify future regressions such as #8603 in their
15475 torifying wrappers.
15476 - Add automated test for opening an URL from Pidgin.
15477 - And add automated tests for the Tor Browser's AppArmor
15479 - Test that "Report an Error Launcher" opens the support
15481 - Test that the Unsafe Browser:
15482 * starts in various locales.
15483 * complains when DNS isn't configured.
15484 * tears down its chroot on shutdown.
15485 * runs as the correct user.
15486 * has no plugins or add-ons installed.
15487 * has no unexpected bookmarks.
15488 * has no proxy configured.
15489 - Bump the "I2P router console is ready" timeout in its test to
15490 deal with slow Internet connections.
15491 - Make the automatic tests of gpgApplet more robust by relying
15492 more on graphical elements instead of keyboard shortcuts and
15493 static sleep():s. (Closes: #5632)
15494 - Make sure that enough disk space is available when creating
15495 virtual storage media. (Closes: #8907)
15496 - Test that the Unsafe Browser doesn't generate any non-user
15497 initiated traffic, and in particular that it doesn't check for
15498 upgrades, which is a regression test for #8694. (Closes: #8702)
15499 - Various robustness improvements to the Synaptic tests. (Closes:
15501 - Automatically test Git. (Closes: #6307)
15502 - Automatically test GNOME Screenshot, which is a regression test
15503 for #8087. (Closes: #8688)
15504 - Fix a quoting issue with `tails_persistence_enabled?`. (Closes:
15506 - Introduce an improved configuration system that also can store
15507 local secrets, like user credentials needed for some
15508 tests. (Closes: #6301, #8188)
15509 - Actually verify that we successfully set the time in our time
15510 syncing tests. (Closes: #5836)
15511 - Automatically test Tor. This includes normal functionality and
15512 the use pluggable transports, that our Tor enforcement is
15513 effective (e.g. only the Tor network or configured bridges are
15514 contacted) and that our stream isolation configuration is
15515 working. (Closes: #5644, #6305, #7821)
15517 -- Tails developers <tails@boum.org> Mon, 23 Feb 2015 17:14:00 +0100
15519 tails (1.2.3) unstable; urgency=medium
15522 - Upgrade Linux to 3.16.7-ckt2-1.
15523 - Upgrade Tor Browser to 4.0.3 (based on Firefox 31.4.0esr)
15525 - Fail safe by entering panic mode if macchanger exits with an
15526 error, since in this situation we have to treat the
15527 driver/device state as undefined. Also, we previously just
15528 exited the script in this case, not triggering the panic mode
15529 and potentially leaking the real MAC address (Closes: #8571).
15530 - Disable upgrade checking in the Unsafe Browser. Until now the
15531 Unsafe Browser has checked for upgrades of the Tor Browser in
15532 the clear (Closes: #8694).
15535 - Fix startup of the Unsafe Browser in some locales (Closes: #8693).
15536 - Wait for notification-daemon to run before showing the MAC
15537 spoofing panic mode notifications. Without this, the "Network
15538 card disabled" notification is sometimes lost when MAC spoofing
15539 fails. Unfortunately this only improves the situation, but
15540 doesn't fix it completely (see #8685).
15541 - Log that we're going to stop NetworkManager before trying to do
15542 it in the MAC spoofing scripts. Without this we wouldn't get the
15543 log message in case stopping NetworkManager fails (thanks to
15545 - Set GNOME Screenshot preferences to save the screenshots in
15546 /home/amnesia (Closes: #8087).
15547 - Do not suspend to RAM when closing the lid on battery power
15549 - Properly update the Tails Installer's status when plugging in a
15550 USB drive after it has started (Closes: #8353).
15551 - Make rsync compare file contents by using --checksum for more
15552 reliable generation of the squashfs filesystem in
15553 IUKs. Previously it used the default, which is checking
15554 timestamps and file size, but that doesn't play well with the
15555 Tor browser files, that have a fixed mtime, which could result
15556 in updated files not ending up in the IUK.
15558 * Minor improvements
15559 - Finish migrating tails-security-check's and tails-iuk's pinning
15560 to our website's new X.509 certificate authority (Closes: #8404).
15563 - Update to Vagrant build box tails-builder-20141201. The only
15564 change is the removal of a reference to an ISO image which
15565 doesn't exist (except on the system that generated the build
15566 box) which causes an error for some users (Closes: #7644).
15567 - Generate the list of packages used during build, after building
15568 with Jenkins (Closes: #8518). This allows tracking their status
15569 on the Debian reproducible build front:
15570 https://reproducible.debian.net/index_pkg_sets.html#tails
15572 * Automated test suite
15573 - Check PO files with i18nspector (Closes: #8359).
15574 - Fix the expected image of a check.tp.o failure. Previously we
15575 looked for the "Sorry. You are not using Tor." text, but it
15576 seems it recently changed enough for Sikuli to not find it. To
15577 prevent future errors of the same kind we'll look for the
15578 crossed-over onion icon instead (Closes: #8533).
15579 - Bump timeout when waiting for Tor to re-bootstrap. We have a
15580 dreaded issue with timeouts that are multiple of 2 minutes, and
15581 then Tor succeeds soon after, so in order to allow for this
15582 timeout to be reached twice, and then possibly succeed, let's
15583 use N*2 minutes + 30 seconds, with N=2.
15585 -- Tails developers <tails@boum.org> Wed, 14 Jan 2015 16:12:26 +0100
15587 tails (1.2.2) unstable; urgency=medium
15590 - Create a CA bundle for Tails Upgrader at ISO build time, and
15591 patch Tails Upgrader to use it. Specifically this will make it
15592 possible to check for Tails upgrades after our website changes
15593 certificate around the 2014 to 2015 transition (Partially fixes
15596 -- Tails developers <tails@boum.org> Mon, 15 Dec 2014 10:05:17 +0100
15598 tails (1.2.1) unstable; urgency=low
15601 - Upgrade Linux to 3.16.0-4, i.e. 3.16.7-1.
15602 - Install Tor Browser 4.0.2 (based on Firefox 31.3.0esr).
15605 - Install syslinux-utils, to get isohybrid back (Closes: #8155).
15606 - Update xserver-xorg-input-evdev to 1:2.7.0-1+tails1 which
15607 includes a patch that restores mouse scrolling in KVM/Spice
15609 - Set Torbutton logging preferences to the defaults (Closes:
15610 #8160). With the default settings, no site-specific information is
15612 - Use the correct stack of rootfs:s for the chroot browsers (Closes:
15613 #8152, #8158). After installing incremental upgrades Tails' root
15614 filesystem consists of a stack squashfs:s, not only
15615 filesystem.squashfs. When not stacking them correct we may end up
15616 using the Tor Browser (Firefox) from an older version of Tails, or
15617 with no Tor Browser at all, as in the upgrade from Tails 1.1.2 to
15618 1.2, when we migrated from Iceweasel to the Tor Browser. Based on
15619 a patch contributed by sanic.
15620 - Use the Tor Browser for MIME type that GNOME associates with
15621 Iceweasel (Closes: #8153). Open URLs from Claws Mail, KeePassX
15622 etc. should be possible again.
15623 - Update patch to include all Intel CPU microcodes (Closes: #8189).
15624 - AppArmor: allow Pidgin to run Tor Browser unconfined, with
15625 scrubbed environment (Closes: #8186). Links opened in Pidgin are
15626 now handled by the Tor Browser.
15627 - Install all localized Iceweasel search plugins (Closes: #8139).
15628 - When generating the boot profile, ignore directories in
15629 process_IN_ACCESS as well (Closes: #7925). This allows ut to
15630 update the squashfs-ordering again in Tails 1.2.1.
15631 - gpgApplet: Don't pass already encoded data to GTK2 (Closes:
15632 #7968). It's now possible to clearsign text including non-ASCII
15634 - Do not run the PulseAudio initscript, neither at startup nor
15635 shutdown (Closes: #8082).
15637 * Minor improvements
15638 - Upgrade I2P to 0.9.17-1~deb7u+1.
15639 - Make GnuPG configuration closer to the best practices one
15641 - Have GnuPG directly use the Tor SOCKS port (Closes: #7416).
15642 - Remove TrueCrypt support and documentat how to open TrueCrypt
15643 volumes using cryptsetup (Closes: #5373).
15644 - Install hopenpgp-tools from Debian Jessie.
15647 - Add gettext >= 0.18.3 as a Tails build dependency. We need it for
15648 xgettext JavaScript support in feature/jessie.
15650 * Automated test suite
15651 - Don't click to open a sub-menu in the GNOME applications menu
15653 - When testing the Windows camouflage, look for individual systray
15654 applets, to avoid relying on their ordering (Closes: #8059).
15655 - Focus the Pidgin Buddy List before looking for something
15656 happening in it (Closes: #8161).
15657 - Remove workaround for showing the TBB's menu bar (Closes #8028).
15659 -- Tails developers <tails@boum.org> Tue, 02 Dec 2014 11:34:03 +0100
15661 tails (1.2) unstable; urgency=medium
15663 * Major new features
15664 - Migrate from Iceweasel to the Tor Browser from the Tor Browser
15665 Bundle 4.0 (based on Firefox 31.2.0esr). This fixes the POODLE
15667 The installation in Tails is made global (multi-profile), uses
15668 the system-wide Tor instance, disables the Tor Browser updater,
15669 and keeps the desired deviations previously present in Iceweasel,
15670 e.g. we install the AdBlock Plus add-on, but not Tor Launcher (since
15671 we run it as a standalone XUL application), among other things.
15672 - Install AppArmor's userspace tools and apparmor-profiles-extra
15673 from Wheezy Backports, and enable the AppArmor Linux Security
15674 Module. This adds Mandatory Access Control for several critical
15675 applications in Tails, including Tor, Vidalia, Pidgin, Evince
15677 - Isolate I2P traffic from the Tor Browser by adding a dedicated
15678 I2P Browser. It is set up similarly to the Unsafe Browser,
15679 but further disables features that are irrelevant for I2P, like
15680 search plugins and the AdBlock Plus addon, while keeping Tor Browser
15681 security features like the NoScript and Torbutton addons.
15682 - Upgrade Tor to 0.2.5.8-rc-1~d70.wheezy+1.
15685 - Disable TCP timestamps (Closes: #6579).
15688 - Remove expired Pidgin certificates (Closes: #7730).
15689 - Use sudo instead of gksudo for running tails-upgrade-frontend to
15690 make stderr more easily accessible (Closes: #7431).
15691 - Run tails-persistence-setup with sudo instead of gksudo to make
15692 stderr more easily accessible, and allow the desktop user to
15693 pass the --verbose parameter (Closes: #7623).
15694 - Disable CUPS in the Unsafe Browser. This will prevent the
15695 browser from hanging for several minutes when accidentally
15696 pressing CTRL+P or trying to go to File -> Print (Closes: #7771).
15698 * Minor improvements
15699 - Install Linux 3.16-3 (version 3.16.5-1) from Debian
15700 unstable (Closes: #7886, #8100).
15701 - Transition away from TrueCrypt: install cryptsetup and friends
15702 from wheezy-backports (Closes: #5932), and make it clear that
15703 TrueCrypt will be removed in Tails 1.2.1 (Closes: #7739).
15704 - Install Monkeysign dependencies for qrcodes scanning.
15705 - Upgrade syslinux to 3:6.03~pre20+dfsg-2~bpo70+1, and install
15706 the new syslinux-efi package.
15707 - Upgrade I2P to 0.9.15-1~deb7u+1
15708 - Enable Wheezy proposed-updates APT repository and setup APT
15709 pinnings to install packages from it.
15710 - Enable Tor's syscall sandbox. This feature (new in 0.2.5.x)
15711 should make Tor a bit harder to exploit. It is only be enabled
15712 when when no special Tor configuration is requested in Tails
15713 Greeter due to incompatibility with pluggable transports.
15714 - Start I2P automatically when the network connects via a
15715 NetworkManager hook, and "i2p" is present on the kernel command
15716 line. The router console is no longer opened automatically, but
15717 can be accessed through the I2P Browser (Closes: #7732).
15718 - Simplify the IPv6 ferm rules (Closes: #7668).
15719 - Include persistence.conf in WhisperBack reports (Closes: #7461)
15720 - Pin packages from testing to 500, so that they can be upgraded.
15721 - Don't set Torbutton environment vars globally (Closes: #5648).
15722 - Enable VirtualBox guest additions by default (Closes: #5730). In
15723 particular this enables VirtualBox's display management service.
15724 - In the Unsafe Browser, hide option for "Tor Browser Health
15725 report", and the "Get Addons" section in the Addon manager
15727 - Show Pidgin's formatting toolbar (Closes: #7356). Having the
15728 formatting toolbar displayed in Pidgin makes the OTR status more
15729 explicit by displaying it with words.
15731 * Automated test suite
15732 - Add --pause-on-fail to ease VM state debugging when tests
15734 - Add execute_successfully() and assert_vmcommand_success() for
15735 added robustness when executing some command in the testing VM.
15736 - Use Test::Unit::Assertions instead of our home-made assert().
15737 - Add test for persistent browser bookmarks.
15738 - Add basic tests for Pidgin, Totem and Evince, including their
15739 AppArmor enforcement.
15740 - Factorize some common step pattern into single steps.
15741 - Factorize running a command in GNOME Terminal.
15742 - Add common steps to copy a file and test for its existence.
15743 - Add a wait_and_double_click Sikuli helper method.
15744 - Add a VM.file_content method, to avoid repeating ourselves, and
15745 use it whenever easily doable.
15746 - Drop test that diffs syslinux' exithelp.cfg: we don't ship this
15748 - In the Unsafe Browser tests, rely on subtle timing less (Closes:
15750 - Use the same logic to determine when Tor is working in the test
15751 suite as in Tails itself. The idea is to avoid spamming the Tor
15752 control port during bootstrap, since we've seen problems with
15755 -- Tails developers <tails@boum.org> Wed, 15 Oct 2014 18:34:50 +0200
15757 tails (1.1.2) unstable; urgency=medium
15760 - Upgrade the web browser to 24.8.0esr-0+tails3~bpo70+1
15761 (fixes Mozilla#1064636).
15762 - Install Linux 3.16-1 from sid (Closes: #7886).
15763 - Upgrade file to 5.11-2+deb7u5 (fixes CVE-2014-0207,
15764 CVE-2014-0237, CVE-2014-0238, CVE-2014-3478, CVE-2014-3479,
15765 CVE-2014-3480, CVE-2014-3487, CVE-2014-3538 and CVE-2014-3587).
15766 - Upgrade curl to 7.26.0-1+wheezy10 (fixes CVE-2014-3613 and
15768 - Upgrade bind9-based packages to 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
15769 (fixes CVE-2014-0591).
15770 - Upgrade gnupg to 1.4.12-7+deb7u6 (fixes CVE-2014-5270).
15771 - Upgrade apt to 0.9.7.9+deb7u5 (fixes CVE-2014-0487,
15772 CVE-2014-0488, CVE-2014-0489, CVE-2014-0490, and
15774 - Upgrade dbus to 1.6.8-1+deb7u4 (fixes CVE-2014-3635,
15775 CVE-2014-3636, CVE-2014-3637, CVE-2014-3638 and CVE-2014-3639).
15776 - Upgrade libav-based pacakges to 6:0.8.16-1 (fixes
15778 - Upgrade bash to 4.2+dfsg-0.1+deb7u1 (fixes CVE-2014-6271).
15780 -- Tails developers <tails@boum.org> Tue, 23 Sep 2014 23:01:40 -0700
15782 tails (1.1.1) unstable; urgency=medium
15785 - Upgrade the web browser to 24.8.0esr-0+tails1~bpo70+1
15786 (Firefox 24.8.0esr + Iceweasel patches + Torbrowser patches).
15787 Also import the Tor Browser profile at commit
15788 271b64b889e5c549196c3ee91c888de88148560f from
15789 ttp/tor-browser-24.8.0esr-3.x-1.
15790 - Upgrade Tor to 0.2.4.23-2~d70.wheezy+1 (fixes CVE-2014-5117).
15791 - Upgrade I2P to 0.9.14.1-1~deb7u+1.
15792 - Upgrade Linux to 3.14.15-2 (fixes CVE-2014-3534, CVE-2014-4667
15793 and CVE-2014-4943).
15794 - Upgrade CUPS-based packages to 1.5.3-5+deb7u4 (fixes
15795 CVE-2014-3537, CVE-2014-5029, CVE-2014-5030 and CVE-2014-5031).
15796 - Upgrade libnss3 to 2:3.14.5-1+deb7u1 (fixes CVE-2013-1741,
15797 CVE-2013-5606, CVE-2014-1491 and CVE-2014-1492).
15798 - Upgrade openssl to 1.0.1e-2+deb7u12 (fixes CVE-2014-3505,
15799 CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509,
15800 CVE-2014-3510, CVE-2014-3511, CVE-2014-3512 and CVE-2014-5139).
15801 - Upgrade krb5-based packages to 1.10.1+dfsg-5+deb7u2 (fixes
15802 CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-4344 and
15804 - Upgrade libav-based packages to 6:0.8.15-1 (fixes CVE-2011-3934,
15805 CVE-2011-3935, CVE-2011-3946, CVE-2013-0848, CVE-2013-0851,
15806 CVE-2013-0852, CVE-2013-0860, CVE-2013-0868, CVE-2013-3672,
15807 CVE-2013-3674 and CVE-2014-2263.
15808 - Upgrade libgpgme11 to 1.2.0-1.4+deb7u1 (fixes CVE-2014-5117).
15809 - Upgrade python-imaging to 1.1.7-4+deb7u1 (fixes CVE-2014-3589).
15810 - Prevent dhclient from sending the hostname over the network
15812 - Override the hostname provided by the DHCP server (Closes: #7769).
15813 - Add an I2P boot parameter. Without adding "i2p" to the kernel
15814 command line, I2P will not be accessible for the Live user.
15815 - Stricter I2P firewall rules:
15816 * deny I2P from accessing the LAN
15817 * deny I2P from accessing the loopback device, except for select
15818 whitelisted services
15819 * allow I2P access to the Internet
15820 The ACCEPT rules will only be enabled when the string 'i2p' is
15821 passed at the boot prompt. The rules which DENY or REJECT
15822 access for the 'i2psvc' user will always be applied.
15823 - Disable I2P plugins, since it doesn't make much sense without
15824 persistence, and should eliminate some attack vectors.
15825 - Disable I2P's BOB port. No maintained I2P application uses it.
15828 - Fix condition clause in tails-security-check (Closes: #7657).
15829 - Don't ship OpenJDK 6: I2P prefers v7, and we don't need both.
15830 - Prevent Tails Installer from updating the system partition
15831 properties on MBR partitions (Closes: #7716).
15833 * Minor improvements
15834 - Upgrade to Torbutton 1.6.12.1.
15835 - Install gnome-user-guide (Closes: #7618).
15836 - Install cups-pk-helper (Closes: #7636).
15837 - Update the SquashFS sort file.
15838 - Compress the SquashFS more aggressively (Closes: #7706).
15839 - I2P: Keep POP3 email on server. The default in the I2P webmail
15840 app was to keep mail on the server, but that setting was changed
15841 recently. This configuration setting (susimail.config) will only
15842 be copied over in I2P 0.9.14 and newer.
15843 - Add a Close button to the Tails Installer launcher window.
15846 - Migrate Vagrant basebox to Debian Wheezy (Closes #7133, #6736).
15847 - Consistently use the same Debian mirror.
15848 - Disable runtime APT proxy configuration when using APT in
15849 binary_local-hooks (Closes: #7691).
15851 * Automated test suite
15852 - Automatically test hostname leaks (Closes: #7712).
15853 - Move autotest live-config hook to be run last. This way we'll
15854 notice if some earlier live-config hook cancels all hooks by
15855 running the automated test suite since the remote shell won't be
15856 running in that case.
15857 - Test that the I2P boot parameter does what it's supposed to do
15859 - Start applications by using the GNOME Applications menu instead
15860 of the GNOME Run Dialog (Closes: #5550, #7060).
15862 -- Tails developers <tails@boum.org> Sun, 31 Aug 2014 20:49:28 +0000
15864 tails (1.1) unstable; urgency=medium
15866 * Rebase on Debian Wheezy
15867 - Upgrade literally thousands of packages.
15868 - Migrate to GNOME3 fallback mode.
15869 - Install LibreOffice instead of OpenOffice.
15870 - Remove custom LSB logging: Wheezy has fancy colored init
15873 * Major new features
15874 - UEFI boot support.
15875 - Replace the Windows XP camouflage with an experimental Windows 8
15877 - Install Linux 3.14.12-1 from Debian unstable.
15878 - Bring back VirtualBox guest modules, installed from Wheezy
15879 backports. Full functionality is only available when using the
15883 - Fix write access to boot medium via udisks (#6172).
15884 - Don't allow the desktop user to pass arguments to
15885 tails-upgrade-frontend (Closes: #7410).
15886 - Make persistent file permissions safer (Closes #7443):
15887 * Make the content of /etc/skel non-world-readable. Otherwise,
15888 such files may be copied to /home/amnesia, and in turn to the
15889 persistent volume, with unsafe permissions. That's no big deal
15890 in /home/amnesia (that is itself not world-readable), *but*
15891 the root of the persistent volume has to be world-readable.
15892 * Have activate_custom_mounts create new directories with safe
15894 * Set strict permissions on /home/amnesia (Closes: #7463).
15895 * Fix permissions on persistent directories that were created
15896 with unsafe permissions (Closes: #7458).
15897 * Fix files ownership while copying persistence (Closes: #7216).
15898 The previous instructions to copy the persistent data were
15899 creating personal files that belong to root. I don't think
15900 there is a way of preserving the original ownership using
15901 Nautilus (unless doing a "move" instead of a "copy" but that's
15902 not what we are trying to do here).
15903 - Disable FoxyProxy's proxy:// protocol handler (Closes: #7479).
15904 FoxyProxy adds the proxy:// protocol handler, which can be used
15905 to configure the proxy via an URI. A malicious web page can
15906 include (or a malicious exit node can inject) some JavaScript
15907 code to visit such an URI and disable or otherwise change
15908 Iceweasel's proxy settings. While using this to disable
15909 proxying will be dealt with safely by our firewall, this could
15910 be used to defeat stream isolation, although the user must be
15911 tricked into accepting the new proxy settings.
15912 - Upgrade the web browser to 24.7.0esr-0+tails1~bpo70+1
15913 (Firefox 24.7.0esr + Iceweasel patches + Torbrowser patches).
15914 - Upgrade to Linux 3.14.12-1 (fixes CVE-2014-4699).
15915 - Upgrade libav-based packages to 0.8.13-1 (fixes CVE-2014-4609).
15916 - Upgrade to libxml2 2.8.0+dfsg1-7+wheezy1 (fixes CVE-2014-0191).
15917 - Upgrade to dbus 1.6.8-1+deb7u3 (fixes CVE-2014-3477,
15918 CVE-2014-3532 and CVE-2014-3533).
15921 - Disable GNOME keyring's GnuPG functionality. (Closes: #7330) In
15922 feature/regular-gnupg-agent, we installed the regular GnuPG
15923 agent so that it is used instead of GNOME keyring's one. This is
15924 not enough on Wheezy, so let's disable the starting of the "gpg"
15925 component of GNOME keyring.
15926 - Make sure /etc/default/locale exists, with a sensible default
15927 value (Closes: #7333). Before Tails Greeter's PostLogin script
15928 are run, /etc/default/locale does not exist on Wheezy. Our
15929 tails-kexec initscript (and quite a few other scripts we run)
15930 depends on this file to exist. So, let's make sure it exists,
15931 with a sensible default value.
15932 - Create the tails-persistence-setup user with the same UID/GID it
15933 had on Tails/Squeeze. (Closes: #7343) Else, our various checks
15934 for safe access rights on persistence.conf fail.
15935 - Revert back to browsing the offline documentation using Iceweasel
15936 instead of Yelp (Closes: #7390, #7285).
15937 - Make the new NetworkManager configuration directory persistent,
15938 when the old one was, but disable the old one (Closes: #7338).
15939 - Before running tails-upgrade-frontend, chdir to a world-readable
15940 place (Closes: #7641). In particular, Archive::Tar::Wrapper,
15941 when called by tails-install-iuk, wants to chdir back to the
15942 original cwd after it has chdir'd elsewhere to do its job.
15944 * Minor improvements
15945 - Install seahorse-nautilus, replacing seahorse-plugins (Closes #5516).
15946 - Install hledger (custom backport, for now): our accountants need this.
15947 - Install stable Scribus instead of scribus-ng.
15948 - Install the printer driver for Epson Inkjet that use ESC/P-R.
15949 - Install the BookletImposer PDF imposition toolkit. It's tiny,
15950 and really helpful e.g. when producing booklets.
15951 - Install gtkhash and nautilus-gtkhash (Closes #6763).
15952 - Import new version of Tor Launcher:
15953 · Now based on upstream Tor Launcher 0.2.5.4.
15954 · Tor bug #11772: Proxy Type menu not set correctly
15955 · Tor bug #11699: Change &#160 to   in network-settings.dtd
15956 · Correctly handle startup paths that contain dot.
15957 - Upgrade to Torbutton 1.6.9.0.
15958 - Avoid shipping python2.6 in addition to python2.7.
15959 - Don't install Gobby 0.4 anymore. Gobby 0.5 has been available in
15960 Debian since Squeeze, now is a good time to drop the obsolete
15961 0.4 implementation.
15962 - Require a bit less free memory before checking for upgrades with
15963 Tails Upgrader. The general goal is to avoid displaying "Not
15964 enough memory available to check for upgrades" too often due to
15965 over-cautious memory requirements checked in the wrapper.
15966 - Make Tails Greeter's help window resolution-aware. Previously it
15967 used a static 800x600 which was problematic on lower resolutions,
15968 and sub-optimal on higher resolutions. Now it adapts itself
15969 according to the screen resolution.
15970 - Whisperback now sanitizes attached logs better with respect to
15971 DMI data, IPv6 addresses, and serial numbers (Closes #6797,
15973 - Integrate the new logo in Tails Installer (Closes #7095)
15974 - Also install linux-base and linux-compiler-gcc-4.8-x86 from
15975 sid. This way, we can get rid of our linux-compiler-gcc-4.8-x86
15976 3.12, and it makes things a bit more consistent.
15977 - Include the syslinux binary, and its MBR, in the ISO filesystem.
15978 This in turn allows Tails Installer to use this binary and MBR,
15979 which is critical for avoiding problems (such as #7345) on
15980 "Upgrade from ISO".
15981 - Include syslinux.exe for win32 in utils/win32/ on the ISO
15982 filesystem (Closes: #7425).
15984 * Add consistent margins in GUI.
15985 * Always reset the target drive's MBR, without asking for
15986 confirmation, after installing or upgrading.
15987 * Install the bootloader using the syslinux binary found on the
15988 target device, once the Live OS has been extracted/copied
15990 - Enable double-clicking to pick entries in the language or
15991 keyboard layout lists in Tails Greeter.
15992 - Install backport of shared-mime-info 1.3 (Closes: #7079).
15993 - Make sanity-check prompts closable in Tails Persistence Setup
15995 - Fix quick search in Tails Greeter's Other languages window
15997 - Install systemd. It is not enabled by default, but having it
15998 around will help doing the migration work.
15999 - Enable AppArmor on the kernel command-line. This is a no-op
16000 without the userspace tools and with no profile shipped, but it
16001 will make it easier to fix this part of the situation.
16004 - Bump Vagrant builder's memory for RAM builds. Wheezy requires
16005 more space to build, and the resulting image is larger.
16006 - Fix Vagrant compatibility issue. Some classes' methods/fields
16007 have been renamed between Vagrant versions, so we need a simple
16008 compatibility layer to support all versions. Without this, it's
16009 not possible to issue e.g. a `build` command to an already
16010 running (i.e. `vm:up`:ed) Vagrant instance.
16011 - Move cpu and mem checks to the `build` task. Previously, when
16012 they were checked in `vm:up` *only* when issued while the VM
16013 already is up, so these checks weren't run if one issues a
16014 `build` when the VM is off. Now we'll fail earlier with a more
16015 informative error message, and it looks like a more logical home
16017 - Fix buggy memory checks for RAM building. We have to take into
16018 account which state the Vagrant VM is in for determining *where*
16019 we check if enough memory is available for a RAM build. If it's
16020 off, we check the host; if it's on we check the VM. Previously
16021 we always checked the host, which doesn't make sense when the VM
16022 is already started.
16024 * Automated test suite
16025 - Bump the tester VM's RAM by 256 MiB. There is not enough free
16026 RAM to run Tails Upgrader with just 1 GiB of RAM after the
16027 migration to Wheezy.
16028 - Always adjust OOM and memory overcommit settings. The kernel
16029 freezes seem to also happen for the amd64 kernel when filling
16031 - Add option to make Sikuli rety on FindFailed. This makes it
16032 possible to update manu images for Sikuli in just *one* test
16033 suite run, by continuously updating outdated pictures as we go.
16034 - Actually run "Upgrade from ISO" from a USB drive running the old
16035 version. That's what users do, and is buggy.
16036 - Automatically test persistent directories permissions (Closes: #7560).
16037 - Use read-write persistence when testing upgraded USB
16038 installations. Otherwise e.g. the permission fixes won't get
16039 applied, and the subsequent steps testing the permissions will
16041 - Actually check that the ISO's Tails is installed. The step
16042 "Tails is installed on USB drive $TARGET" only checks that the
16043 *running* Tails is installed on $TARGET, which obviously fails
16044 when doing an upgrade from ISO running an old Tails. That it
16045 worked for the same scenario running the current Tails is just
16047 - Use OpenJDK 7 to run our test suite (Closes #7175).
16048 - Use qemu-system-x86_64 directly, instead of kvm, for running the
16049 automated test suite (Closes: #7605).
16051 -- Tails developers <tails@boum.org> Sun, 20 Jul 2014 23:16:13 +0200
16053 tails (1.0.1) unstable; urgency=medium
16056 - Upgrade the web browser to 24.6.0esr-0+tails1~bpo60+1
16057 (Firefox 24.6.0esr + Iceweasel patches + Torbrowser patches).
16058 Also import the Tor Browser profile at commit
16059 90ba8fbaf6f23494f1a0e38d63153b3b7e65d3d3 from
16060 ttp/tor-browser-24.6.0esr-3.x-1.
16061 - Install Linux 3.14 from Debian unstable (fixes CVE-2014-3153 and
16063 - Install openssl from Squeeze LTS (fixes CVE-2014-0076,
16064 CVE-2014-0195, CVE-2014-0221, CVE-2014-3470 and CVE-2014-0224).
16065 - Install GnuTLS from Squeeze LTS (fixes CVE-2014-3466.).
16067 * Minor improvements
16068 - Add Squeeze LTS APT sources. It has been given a low pinning
16069 priority so explicit pinning must be used to actually install
16071 - Upgrade Tor to 0.2.4.22-1~d60.squeeze+1.
16072 - Upgrade I2P to 0.9.13-1~deb6u+1.
16074 -- Tails developers <tails@boum.org> Sun, 08 Jun 2014 19:14:00 +0200
16076 tails (1.0) unstable; urgency=medium
16079 - Upgrade the web browser to 24.5.0esr-0+tails1~bpo60+1
16080 (Firefox 24.5.0esr + Iceweasel patches + Torbrowser patches).
16081 - Upgrade Tor to 0.2.4.21-1+tails1~d60.squeeze+1:
16082 * Based on 0.2.4.21-1~d60.squeeze+1.
16083 * Backport the fix for Tor bug #11464. It adds client-side blacklists for
16084 all Tor directory authority keys that was vulnerable to Heartbleed.
16085 This protects clients in case attackers were able to compromise a
16086 majority of the authority signing and identity keys.
16089 - Disable inbound I2P connections. Tails already restricts incoming
16090 connections, but this change tells I2P about it.
16091 - Fix link to the system requirements documentation page in the Tails
16092 Upgrader error shown when too little RAM is available.
16094 * Minor improvements
16095 - Upgrade I2P to 0.9.12-2~deb6u+1.
16096 - Import TorBrowser profile. This was forgotten in Tails 0.23 and even
16097 though we didn't explicitly set those preferences in that release
16098 they defaulted to the same values. This future-proofs us in case the
16099 defaults would ever change.
16100 - Import new custom version of tor-launcher:
16101 * Based on upstream Tor Launcher 0.2.5.3.
16102 * Improve how Tor Launcher handles incomplete translation.
16103 (Tor bug #11483; more future-proof fix for Tails bug #6885)
16104 * Remove the bridge settings prompt. (Tor bug #11482; closes Tails
16106 * Always show bridge help button. (Tor bug #11484)
16107 - Integrate the new Tails logo into various places:
16110 * The "About Tails" dialog
16113 - Use the stable APT suite when building from the stable Git branch
16117 - Add test for the #7022 fix.
16119 -- Tails developers <tails@boum.org> Sun, 27 Apr 2014 19:34:01 +0200
16121 tails (0.23) unstable; urgency=medium
16124 - Upgrade the web browser to 24.4.0esr-0+tails1~bpo60+1
16125 (Firefox 24.4.0esr + Iceweasel patches + Torbrowser patches).
16127 * Major new features
16128 - Spoof the network interfaces' MAC address by default (Closes: #5421),
16129 as designed on https://tails.boum.org/contribute/design/MAC_address/.
16130 - Rework the way to configure how Tor connects to the network
16131 (bridges, proxy, fascist firewall): add an option to Tails Greeter,
16132 start Tor Launcher when needed (Closes: #5920, #5343).
16135 - Additional software: do not crash when persistence is disabled
16137 - Upgrade Pidgin to 2.10.9, that fixes some regressions introduced
16138 in the 2.10.8 security update (Closes: #6661).
16139 - Wait for Tor to have fully bootstrapped, plus a bit more time,
16140 before checking for upgrades (Closes: #6728) and unfixed known
16142 - Disable the Intel Management Engine Interface driver (Closes: #6460).
16143 We don't need it in Tails, it might be dangerous, and it causes bugs
16144 on various hardware such as systems that reboot when asked to shut down
16145 - Add a launcher for the Tails documentation. This makes it available
16146 in Windows Camouflage mode (Closes: #5374, #6767).
16147 - Remove the obsolete wikileaks.de account from Pidgin (Closes: #6807).
16149 * Minor improvements
16150 - Upgrade Tor to 0.2.4.21-1~d60.squeeze+1.
16151 - Upgrade obfsproxy to 0.2.6-2~~squeeze+1.
16152 - Upgrade I2P to 0.9.11-1deb6u1.
16153 - Install 64-bit kernel instead of the 686-pae one (Closes: #5456).
16154 This is a necessary first step towards UEFI boot support.
16155 - Install Monkeysign (in a not-so-functional shape yet).
16156 - Disable the autologin text consoles (Closes: #5588). This was one of
16157 the blockers before a screen saver can be installed
16158 in a meaningful way (#5684).
16159 - Don't localize the text consoles anymore: it is broken on Wheezy,
16160 the intended users can as well use loadkeys, and we now do not have
16161 to trust setupcon to be safe for being run as root by the desktop user.
16162 - Make it possible to manually start IBus.
16163 - Reintroduce the possibility to switch identities in the Tor Browser,
16164 using a filtering proxy in front of the Tor ControlPort to avoid giving
16165 full control over Tor to the desktop user (Closes: #6383).
16166 - Incremental upgrades improvements:
16167 · Drop the Tails Upgrader launcher, to limit users' confusion
16169 · Lock down sudo credentials a bit.
16170 · Hide debugging information (Closes: #6505).
16171 · Include ~/.xsession-errors in WhisperBack bug reports.
16172 This captures the Tails Upgrader errors and debugging information.
16173 · Report more precisely why an incremental upgrade cannot be done
16175 · Various user interface and phrasing improvements.
16176 - Don't install the Cookie Monster browser extension (Closes: #6790).
16177 - Add a browser bookmark pointing to Tor's Stack Exchange (Closes: #6632).
16178 - Remove the preconfigured #tor channel from the Pidgin: apparently,
16179 too many Tails users go ask Tails questions there, without making
16180 it clear that they are running Tails, hence creating a user-support
16181 nightmare (Closes: #6679).
16182 - Use (most of) Tor Browser's mozconfig (Closes: #6474).
16183 - Rebase the browser on top of iceweasel 24.3.0esr-1, to get
16184 the certificate authorities added by Debian back (Closes: #6704).
16185 - Give access to the relevant documentation pages from Tails Greeter.
16186 - Hide Tails Greeter's password mismatch warning when entry is changed.
16187 - Persistent Volume Assistant:
16188 · Take into account our installer is now called Tails Installer.
16189 · Optimize window height (Closes: #5458).
16190 · Display device paths in a more user-friendly way (Closes: #5311).
16193 - Ease updating POT and PO files at release time, and importing translations
16194 from Transifex (Closes: #6288, #6207).
16195 - Drop custom poedit backport, install it from squeeze-backports-sloppy.
16196 - Make ISO and IUK smaller (Closes: #6390, #6425):
16197 · Exclude more files from being included in the ISO.
16198 · Remove *.pyc later so that they are not recreated.
16199 · Truncate log files later so that they are not filled again.
16200 · At ISO build time, set mtime to the epoch for large files whose content
16201 generally does not change between releases. This forces rsync
16202 to compare the actual content of these files, when preparing an IUK,
16203 instead of blindly adding it to the IUK merely because the mtime
16204 has changed, while the content is the same.
16205 - Make local hooks logging consistent.
16208 - Migrate from JRuby to native Ruby + rjb.
16209 - The test suite can now be run on Debian Wheezy + backports.
16210 - Fix buggy "persistence is not enabled" step (Closes: #5465).
16211 - Use IPv6 private address as of RFC 4193 for the test suite's virtual
16212 network. Otherwise dnsmasq from Wheezy complains, as it is not capable
16213 of handling public IPv6 addresses.
16214 - Delete volumes after each scenario unless tagged @keep_volumes.
16215 - Add an anti-test to make sure the memory erasure test works fine.
16216 - A *lot* of bugfixes, simplifications and robustness improvements.
16218 -- Tails developers <tails@boum.org> Tue, 18 Mar 2014 00:58:50 +0100
16220 tails (0.22.1) unstable; urgency=medium
16223 - Upgrade the web browser to 24.3.0esr-0+tails1~bpo60+2
16224 (Firefox 24.3.0esr + Iceweasel patches + Torbrowser patches).
16225 - Upgrade NSS to 3.14.5-1~bpo60+1.
16226 - Upgrade Pidgin to 2.10.8.
16227 - Workaround browser size fingerprinting issue by using small icons
16228 in the web browser's navigation toolbar (Closes: #6377).
16229 We're actually hit by Tor#9268, and this is the best workaround gk
16230 and I were able to find when discussing this on Tor#10095.
16232 * Major new features
16233 - Check for upgrades availability using Tails Upgrader, and propose
16234 to apply an incremental upgrade whenever possible (Closes: #6014).
16235 · Run tails-update-frontend at session login time.
16236 · Have tails-security-check only report unfixed security issues.
16237 · Greatly improve the Tails Upgrader UI and strings phrasing.
16238 · Enable startup notification for Tails Upgrader.
16239 - Install Linux 3.12 (3.12.6-2) from Debian testing. Unfortunately,
16240 this breaks the memory wipe feature on some hardware (#6460), but
16241 it fixes quite a few security issues, and improves hardware support.
16242 - Update the build system to be compatible with Vagrant 1.2 and 1.3,
16243 in addition to the already supported versions (Closes: #6221).
16244 Thanks to David Isaac Wolinsky <isaac.wolinsky@gmail.com>.
16247 - Do not start IBus for languages that don't need it. This fixes
16248 the keybindings problems introduced in 0.22 (Closes: #6478).
16249 Thanks to WinterFairy.
16250 - Disable network.proxy.socks_remote_dns in the Unsafe Browser.
16251 Bugfix against 0.22 (Closes: #6479).
16252 - Fetch Tor Browser User-Agent from its own prefs, rather than from
16253 the obsolete Torbutton ones. Bugfix against 0.22 (Closes: #6477).
16254 - Upgrade Vagrant basebox to include up-to-date Debian archive keys
16255 (Closes: #6515, #6527).
16256 - Do not use a non-working proxy for downloading the Vagrant basebox
16258 - Use IE's icon in Windows camouflage mode.
16259 Bugfix against 0.22 (Closes: #6536).
16260 - Support "upgrading" a partial Tails installation (Closes: #6438)
16261 and fix missing confirmation dialog in Tails Installer (Closes: #6437).
16262 Thanks to Andres Gomez Ramirez <andres.gomez@cern.ch>.
16263 - Fix browser homepage in Spanish locales (Closes: #6612).
16265 * Minor improvements
16266 - Tor 0.2.4 is stable! Adapt APT sources accordingly.
16267 - Update Tor Browser to 24.2.0esr-1+tails1, that uses its own NSS
16268 library instead of the system one.
16269 - Update Torbutton to 1.6.5.3.
16270 - Do not start Tor Browser automatically, but notify when Tor is ready.
16271 Warn the user when they attempt to start Tor Browser before Tor is ready.
16272 - Import Tor Browser profile at
16273 3ed5d9511e783deb86835803a6f40e7d5a182a12 from ttp/tor-browser-24.2.0esr-1.
16274 - Use http.debian.net for Vagrant builds, instead of the mostly broken
16275 (and soon obsolete) cdn.debian.net.
16276 - Phrasing and UI improvements in tails-upgrade-frontend.
16277 - Style and robustness improvements in tails-security-check.
16278 - Make room for upcoming UEFI support in Tails Installer.
16280 -- Tails developers <tails@boum.org> Wed, 29 Jan 2014 15:08:13 +0100
16282 tails (0.22) unstable; urgency=medium
16286 - Upgrade to Iceweasel 24.2.0esr that fixes a few serious security issues.
16287 - Stop migrating persistence configuration and access rights. Instead,
16288 disable all persistence configuration files if the mountpoint has wrong
16289 access rights (Closes: #6413).
16290 - Upgrade to NSS 3.15.3 that fixes a few serious security issues affecting
16291 the browser, such as CVE-2013-1741, CVE-2013-5605 and CVE-2013-5606.
16293 * Major improvements
16294 - Switch to Iceweasel 24 (Closes: #6370).
16295 · Resync' (most) Iceweasel prefs with TBB 3.0-beta-1 and get rid
16296 of many obsolete or default settings.
16297 · Disable WebRTC (Closes: #6468).
16298 · Import TorBrowser profile at commit
16299 51bf06502c46ee6c1f587459e8370aef11a3422d from the tor-browser-24.2.0esr-1
16300 branch at https://git.torproject.org/tor-browser.git.
16301 - Switch to Torbutton 1.6.5 (Closes: #6371).
16302 · Prevent Torbutton from asking users to "upgrade TBB".
16303 · Use the same Tor SOCKS port as the TBB (9151) for our web browser.
16304 This should be enough to avoid being affected by Tor#8511.
16305 · Disable Torbutton 1.6's check for Tor.
16306 Unfortunately, the new check.torproject.org breaks the remote Tor
16307 check. We cannot use the local Tor check with the control port. So,
16308 the shortest and sanest path to fixing the check issue, because the
16309 remote Tor check is broken" seems to simply disable this check.
16310 Patch submitted upstream as Tor#10216.
16311 - Prepare incremental upgrades to be the next default way to upgrade Tails,
16312 on point-releases at least.
16315 - Deny X authentication only after Vidalia exits (Closes: #6389).
16316 - Disable DPMS screen blanking (Closes: #5617).
16317 - Fix checking of the persistent volume's ACL.
16318 - Sanitize more IP and MAC addresses in bug reports (Closes: #6391).
16319 - Do not fail USB upgrade when the "tmp" directory exists on the
16320 destination device.
16321 - Tails Installer: list devices with isohybrid Tails installed
16324 * Minor improvements
16325 - Create a configuration file for additional software if needed
16327 - Translations all over the place.
16328 - Enable favicons in Iceweasel.
16329 - Do not propose to make permanent NoScript exceptions.
16330 In Tails, every such thing is temporary, so better only display the menu
16331 entry that's about temporarily allowing something.
16332 - Clearer warning when deleting persistent volume (thanks to Andres Gomez
16333 Ramirez <andres.gomez@cern.ch> for the patch).
16334 - Make wording in Tails Installer more consistent.
16337 * Use IBus instead of SCIM (Closes: #5624, #6206).
16338 It makes it possible to input passwords in pinentry for at least Japanese,
16339 Chinese and Korean languages.
16340 * Add an import-translation script.
16341 This automates the importation process of completed translations
16343 * Always list optimal keyboard layout in the greeter (Closes: #5741).
16344 * Fix on-the-fly translation of the greeter in various languages
16348 * Update I2P to 0.9.8.1 (Closes: #6080, #5889).
16349 * Improve I2P configuration:
16350 - Disable IPv6 support in a nicer way.
16351 - Disable i2cp (allows java clients to communicate from outside the JVM). If
16352 this is unset an exception for port 7654 would need to be added to ferm.
16353 - Disable "in-network" updates (this is also done in the regular I2P
16355 - Disable the outproxies. Access to the Internet is already routed through
16356 Tor so these are unnecessary. If end-users have a good reason to go
16357 through one of the I2P outproxies they can turn them back on.
16358 * Add a couple of default I2P IRC channels to Pidgin.
16359 * Allow access to the local 'eepsite' through FoxyProxy.
16360 * Add firewall exceptions for the standard I2P ports.
16362 -- Tails developers <tails@boum.org> Sat, 30 Nov 2013 16:47:18 +0100
16364 tails (0.21) unstable; urgency=low
16367 - Don't grant access to the Tor control port for the desktop user
16368 (amnesia). Else, an attacker able to run arbitrary code as this user
16369 could obtain the public IP with a get_info command.
16370 · Vidalia is now run as a dedicated user.
16371 · Remove the amnesia user from the debian-tor group.
16372 · Remove the Vidalia launcher in the Applications menu.
16373 The Vidalia instance it starts is useless, since it can't connect
16374 to the Tor control port.
16375 - Don't allow the desktop user to directly change persistence settings.
16376 Else, an attacker able to run arbitrary code as this user could
16377 leverage this feature to gain persistent root access, as long as
16378 persistence is enabled.
16379 · Fully rework the persistent filesystem and files ownership
16381 · Run the Persistent Volume Assistant as a dedicated user, that is
16382 granted the relevant udisks and filesystem -level credentials.
16383 · At persistence activation time, don't trust existing persistence
16384 configuration files, migrate to the new ownership and permissions,
16385 migrate every known-safe existing settings and backup what's left.
16386 Warn the user when not all persistence settings could be migrated.
16387 · Persistent Volume Assistant uses the new ownership and permissions
16388 scheme when initializing a new persistent volume, and refuses to
16389 read persistence.conf if it, or the parent directory, hasn't the
16390 expected permissions.
16391 · Make boot medium 'system internal' for udisks with bilibop.
16392 Once Tails is based on Wheezy, this will further complete the
16393 protection (see #6172 for details).
16394 - Update Iceweasel to 17.0.10esr-0+tails2~bpo60+1.
16395 - Update Torbutton to 1.5.2-2, including a patch cherry-picked from
16396 upstream to make window resizing closer to what the design says.
16398 * Major new features
16399 - Add a persistence preset for printing settings (Closes: #5686).
16400 Reload CUPS configuration after persistence activation.
16401 - Support SD card connected through a SDIO host adapter (Closes: #6324).
16402 · Rebrand Tails USB installer to Tails installer.
16403 · Display devices brand, model and size in the Installer
16405 · Ask for confirmation before installing Tails onto a device
16407 · Add support for SDIO and MMC block devices to the Tails Installer
16408 (Closes: #5744) and the Persistent Volume Assistant (Closes: #6325).
16409 · Arm the udev watchdog when booted from SD (plugged in SDIO) too
16412 * Minor improvements
16413 - Provide a consistent path to the persistent volume mountpoint
16415 - Add a KeePassX launcher to the top GNOME panel (Closes: #6290).
16416 - Rework bug reporting workflow: point the desktop launcher to
16417 the troubleshooting page.
16418 - Make /home world-readable at build time, regardless of the Git
16419 working copy permissions. This makes the build process more robust
16420 against strict umasks.
16421 - Add signing capabilities to the tails-build script (Closes: #6267).
16422 This is in turn used to sign ISO images built by our Jenkins setup
16424 - Simplify the ikiwiki setup and make more pages translatable.
16425 - Exclude the version string in GnuPG's ASCII armored output.
16426 - Prefer stronger ciphers (AES256,AES192,AES,CAST5) when encrypting
16428 - Use the same custom Startpage search URL than the TBB.
16429 This apparently disables the new broken "family" filter.
16430 - Update AdBlock Plus patterns.
16431 - Install Linux from Debian testing.
16432 (That is, the same version that was shipped in 0.20.1.)
16435 - Look for "/tmp/.X11-unix/X${1#:}" too when detecting displays in use.
16436 - Adapt tests to match the Control Port access security fix:
16437 · Take into account that the amnesia user isn't part of the debian-tor
16439 · Run as root the checks to see if a process is running: this
16440 is required to see other users' processes.
16442 -- Tails developers <tails@boum.org> Sat, 26 Oct 2013 23:42:46 +0200
16444 tails (0.20.1) unstable; urgency=low
16446 * Major new features
16447 - Install Tor 0.2.4.17-rc-1~d60.squeeze+1 from the Tor project's repository.
16448 - Install Iceweasel 17.0.9esr with Torbrowser patches.
16449 - Install Linux kernel 3.10-3 (version 3.10.11-1) from sid.
16452 - Remount persistence devices read-only at shutdown/reboot time
16454 - Greeter: display a warning icon on admin password mismatch and on
16455 persistence unlocking failure. Thanks to Andres Gomez Ramirez
16456 <andres.gomez@cern.ch> for the fix!
16457 - Don't torsocksify Pidgin.
16458 Instead we disable Pidgin's GNOME integration to get the "Global proxy
16459 configuration", which we set to use Tor. This fixes the I2P IRC account.
16460 - Additional software: fix typo in notification.
16461 - Allow installing "Priority: standard" packages that we do not install
16462 by default: remove them late in the build process instead of assigning
16463 them a -1 APT pinning level.
16465 * Minor improvements
16466 - Update AdBlock Plus patterns.
16467 - Use more unique ISO file name when building from Jenkins.
16468 - Additional software: point to the system log on upgrade failure.
16469 - Set SOCKS5_USER and SOCKS5_PASSWORD in the connect-socks wrapper (used
16470 by Git). Else, Tor 0.2.4's IsolateSOCKSAuth and connect-proxy
16471 sometimes play together in some way that makes connect-proxy ask for
16472 a password to connect to the SocksPort. SOCKS5_USER and
16473 SOCKS5_PASSWORD are passed through unchanged if they were manually set
16474 by the user already.
16475 - Use our custom connect-socks wrapper for SSH. Else, Tor 0.2.4's
16476 IsolateSOCKSAuth and connect-proxy sometimes play together in some way
16477 that makes connect-proxy ask for a password to connect to the
16478 SocksPort. Note that connect-socks uses the default SocksPort too, so
16479 no change here wrt. our connection isolation design.
16482 - Import new translations from Transifex.
16485 - Fix old ISO checking for consistent error reporting.
16486 - Remove custom persistence test from manual test suite.
16487 It was removed for the GUI in t-p-s 0.33.
16489 -- Tails developers <tails@boum.org> Sun, 15 Sep 2013 15:49:36 +0200
16491 tails (0.20) unstable; urgency=low
16493 * Major new features
16494 - Install Linux kernel 3.10.3-1 from Debian unstable.
16495 - Iceweasel 17.0.8esr + Torbrowser patches.
16498 - Prevent Iceweasel from displaying a warning when leaving HTTPS web sites.
16499 - Make Iceweasel use the correct, localized search engine.
16500 - Fix Git access to https:// repositories.
16502 * Minor improvements
16503 - Install Dasher, a predictive text entry tool.
16504 - Add a wrapper around TrueCrypt which displays a warning about it soon
16505 being deprecated in Tails.
16506 - Remove Pidgin libraries for all protocols but IRC and Jabber/XMPP.
16507 Many of the other protocols Pidgin support are broken in Tails and
16508 haven't got any security auditting.
16509 - Disable the pre-defined Pidgin accounts so they do not auto-connect
16511 - Include information about Alsa in WhisperBack reports.
16512 - Explicitly restrict access to ptrace. While this setting was enabled
16513 by default in Debian's Linux 3.9.6-1, it will later disabled in 3.9.7-1.
16514 It's unclear what will happen next, so let's explicitly enable it ourselves.
16515 - Do not display dialog when a message is sent in Claws Mail.
16516 - Sync iceweasel preferences with the Torbrowser's.
16519 - Many translation updates all over the place.
16520 - Merge all Tails-related POT files into one, and make use of intltoolize
16521 for better integration with Transifex.
16523 -- Tails developers <tails@boum.org> Tue, 30 Jul 2013 14:19:57 +0200
16525 tails (0.19) unstable; urgency=low
16527 * Major new features
16528 - Install Linux kernel 3.9.5-1 from Debian unstable.
16529 Features of particular interest for Tails are the Yama LSM
16530 (ptrace scope restrictions) and improved hardware support.
16531 As a corollary, install initramfs-tools from there too.
16532 - Iceweasel 17.0.7esr + Torbrowser patches.
16533 - Unblock Bluetooth, Wi-Fi, WWAN and WiMAX; block every other type of
16534 wireless device. Next steps are described on the
16535 todo/protect_against_external_bus_memory_forensics ticket.
16538 - Fix write access to boot medium at the block device level,
16539 by installing bilibop-udev. Thanks to quidame for his support.
16540 - tails-greeter l10n-related fixes, thanks to winterfairy:
16541 · Fix so translations is applied on password mismatch messages.
16542 · Separate forward and login buttons and make them translatable.
16543 - Fix link to documentation when no sudo password is set.
16544 - gpgApplet: partial fix for clipboard emptying after a wrong passphrase
16546 - Workaround aufs bug in Unsafe Browser script.
16548 * Minor improvements
16549 - Drop GNOME proxy settings: we did not find any use of it we were keen
16550 to support, other than two programs (Seahorse, Pidgin) that are now run
16552 - Format newly created persistent volumes as ext4.
16553 - GnuPG: don't connect to the keyserver specified by the key owner.
16554 This feature opens the door to a variety of subtle attacks.
16555 - GnuPG: locate keys only from local keyrings.
16556 This is probably the default, but better safe than sorry.
16557 - Install virt-what from Wheezy.
16558 The version from Squeeze does not detect at least Parallels for Mac v.8.
16559 - Upgrade live-boot and live-config to the 3.0.x final version from Wheezy.
16560 · Remove /live and /lib/live/image compatibility symlinks.
16561 · Add /live/overlay -> /lib/live/mount/overlay symlink.
16562 The live-boot changes (commit d2b2a461) brought to fix Debian bug
16563 #696495 revert some of our previous changes (commit 77dab1cb), and as
16564 a result, at the time live-persist runs, no tmpfs is mounted on
16565 /live/overlay, which breaks the aufs mount. So, let's just ensure
16566 /live/overlay points to a tmpfs.
16567 · Really disable policykit and sudo live-config hooks.
16568 ... by making it believe they've already been run.
16569 This workarounds new live-config's default behavior.
16572 - Many translation updates all over the place.
16575 - Re-enable previously disabled boot device permissions test.
16577 -- Tails developers <tails@boum.org> Wed, 26 Jun 2013 12:36:20 +0200
16579 tails (0.18) unstable; urgency=low
16582 - Support obfs3 bridges.
16583 - Automatically install a custom list of additional packages chosen by
16584 the user at the beginning of every working session, and upgrade them
16585 once a network connection is established (technology preview).
16588 - Upgrade to Iceweasel 17.0.6esr-0+tails1~bpo60+1.
16589 - Update Torbrowser patches to current maint-2.4 branch (567682b).
16590 - Isolate DOM storage to first party URI, and enable DOM storage:
16591 don't set dom.storage.enabled anymore, and set Torbutton's
16592 disable_domstorage to false.
16593 - Isolate the image cache per url bar domain.
16594 - Torbutton 1.5.2, and various prefs hacks to fix breakage:
16595 · Add .saved version of the Torbutton preferences the TBB also sets.
16596 · Set TOR_SOCKS_HOST and TOR_SOCKS_PORT.
16597 · Move some prefs (network.proxy.*, extensions.autoDisableScopes,
16598 extensions.foxyproxy.last-version) to user.js.
16599 Else, with Torbutton 1.5.x, these ones are not taken into account.
16600 · Set network.proxy.socks_version.
16601 Else we get the meaningless user_pref("network.proxy.socks_version", 9063);
16602 in prefs.js after the initial startup.
16603 · Set extensions.foxyproxy.socks_remote_dns to true.
16604 Else, it overrides the various ways we set network.proxy.socks_remote_dns,
16605 which in turn makes Torbutton think it should start in non-Tor mode.
16606 · Also pass the TOR_SOCKS_* environment variables to iceweasel when
16607 generating the profile: Torbutton behaves differently depending on
16608 these variables, so we don't want the initial profile generation to be
16609 done without them. In practice, this has no implication that we could
16610 see right now, but better safe than sorry.
16611 · Import all version overrides from the TBB prefs.
16612 Else, the User-Agent sent in the HTTP headers is fine, but real
16613 values leak with JavaScript, as demonstrated by ip-check's "Browser
16615 · Move a bunch of settings to user_pref(), that are not applied otherwise.
16616 For some, this fixes a regression in 0.18~rc1.
16617 For other, the bug was already present in Tails 0.17.2.
16618 - HTTPS Everywhere 3.2.
16619 - Update prefs to match the TBB's, fix bugs, and take advantage of the latest
16620 Torbrowser patches:
16621 · Increase pipeline randomization.
16622 · Fix @font-face handling of local() fonts.
16623 Also disable fallback font rendering.
16624 · Explicitly disable SPDY v2 and v3.
16625 · Update http pipelining prefs.
16626 - Make prefs organization closer to the TBB's:
16627 · Remove Torbutton prefs that we set at their default value.
16628 · Import Torbutton preferences from the TBB.
16629 · Organize iceweasel config files in sections the same way as the TBB.
16631 · Don't set extensions.torbutton.clear_cookies nor
16632 extensions.torbutton.saved.share_proxy_settings:
16633 we don't care about toggling anymore.
16634 · Don't set extensions.torbutton.saved.download_retention nor
16635 extensions.torbutton.saved.search_suggest:
16636 these settings are not used in Torbutton anymore.
16637 - Update unsafe browser prefs mangling accordingly.
16638 - Move network.protocol-handler.warn-external.* to user_pref().
16639 Else they're not applied.
16640 These prefs are actually ignored by Firefox these days -- the TBB
16641 design doc reads "They are set still anyway out of respect for the
16642 dead". Let's go on doing the same.
16643 - Update extensions.adblockplus.currentVersion.
16644 - Fetch xul-ext-https-everywhere (3.2-2) and xul-ext-noscript (2.6.6.1-1)
16645 from Debian unstable. They were uploaded there, and accordingly removed
16649 - Linux 3.2.41-2+deb7u2.
16650 - Fixed swapped filenames of tails-{reboot,shutdown}.desktop.
16651 Thanks to Mikko Harhanen for the patch.
16652 - Only add ClientTransportPlugin to torrc when bridge mode is enabled.
16653 This should bring back support for proxies of type other than obfsproxy.
16655 * Minor improvements
16656 - Set kernel.dmesg_restrict=1, and make /proc/<pid>/ invisible
16657 and restricted for other users. It makes it slightly harder for an attacker
16658 to gather information that may allow them to escalate privileges.
16659 - Install gnome-screenshot.
16660 - Don't disable IPv6 on all network interfaces anymore.
16661 It turns out the IPv6 leaks we wanted to fix actually don't exist.
16662 - Add a "About Tails" launcher in the System menu.
16663 - Install GNOME accessibility themes.
16664 - Use 'Getting started...' as the homepage for Tails documentation button.
16665 - Stop relying on the obsolete /live/image compatibility symlink.
16666 - Disable audio preview in Nautilus.
16667 - Wheezy was released => Squeeze is now oldstable.
16668 - Pick Tor from deb.torproject.org regardless of the release name they
16669 advertise. At some point we needed it, their APT repository still thought
16670 that stable == Squeeze.
16671 - Add Wheezy APT sources.
16672 - Install Linux and related packages from Wheezy.
16673 Debian sid just got Linux 3.8, and we don't want to switch to a new kernel
16675 - Fetch laptop-mode-tools from Wheezy.
16676 Wheezy has the version we've been installing in 0.18~rc1,
16677 while a newer one was uploaded to sid in the meantime.
16678 - Fetch a few packages from Wheezy instead of unstable.
16679 Namely: spice-vdagent, libregexp-common-perl, macchanger, service-wrapper,
16680 libservice-wrapper-java and libservice-wrapper-jni.
16681 Wheezy has the versions we've been installing for a while, so let's
16682 avoid having unstable push a newer one to us uselessly at some point.
16683 Note that at the time of this writing, the versions in sid and in Wheezy
16684 are the same, so this commit is effectively a no-op as of today: it is
16685 merely a safeguard for the future.
16688 - Many translation updates all over the place.
16691 - Make Vagrant's build-tails script support Jenkins too.
16694 - Fix Unsafe Browser test broken by hidepid.
16696 -- Tails developers <tails@boum.org> Mon, 13 May 2013 22:17:38 +0200
16698 tails (0.17.2) unstable; urgency=low
16701 - Upgrade to Iceweasel 17.0.5esr-0+tails2~bpo60+1.
16702 - Stop displaying obsolete context menu entries ("Open Tor URL" and friends).
16705 - Update Linux to 3.2.41-2
16708 - Use more reliable OpenPGP keyservers:
16709 · use the hkps pool in GnuPG (and import their SSL CA)
16710 · use hkp://pool.sks-keyservers.net in Seahorse (as it does not support
16712 - Keep udisks users (GNOME Disk Utility, tails-persistence-setup, etc.)
16713 from resetting the system partition's attributes when manipulating the
16714 partition table. To this end, backport the relevant bugfix from Wheezy
16715 into parted 2.3-5+tails1. This allowed to remove the sgdisk-based
16716 workaround in tais-persistence-setup, and to stop installing
16717 python-parted. All this is a first needed step to fix
16718 todo/make_system_disk_read-only in a future release.
16720 * Minor improvements
16721 - Disable NoScript's HTML5 media click-to-play for better user experience.
16724 - Tails USB installer: update translations for French, German, Spanish,
16725 Finnish, Greek, Italian, Latvian, Dutch, Polish and Chinese.
16726 - Tails Greeter: update translations for Farsi, Chinese, French;
16727 new translations: Finnish, Norwegian Bokmål, Galician.
16728 - tails-persistence-setup: update Farsi and Chinese translations;
16729 import new translations for Finnish and Swedish.
16730 - WhisperBack: update translations for Arabic, French, German, Greek,
16731 Spanish, Korean, Polish, Russian. New translations: Finnish, Chinese.
16734 - Add automated testing framework (Sikuli, Cucumber, libvirt -based)
16735 with a bunch of tests.
16737 -- Tails developers <amnesia@boum.org> Sun, 07 Apr 2013 12:17:26 +0200
16739 tails (0.17.1) unstable; urgency=low
16742 - Upgrade to Iceweasel 17.0.4esr-0+tails1~bpo60+1.
16745 - Update Linux to 3.2.39-2.
16746 It includes the drm and agp subsystems from Linux 3.4.29.
16747 - Don't install xserver-xorg-video-rendition backport.
16748 xserver-xorg-video-rendition has been removed from squeeze-backports
16749 due to an upstream tarball mismatch discover when merging backports
16750 into the main Debian archive, and xserver-xorg-video-all still depends
16751 on it, so we explicitly install all drivers from -all but -rendition
16752 as a (hopefully temporary) workaround.
16754 * Minor improvements
16755 - Remove Indymedia IRC account, until we ship a version of Pidgin
16756 with SASL support, that is when Tails is based on Wheezy.
16759 - Don't ship the wiki's todo and bugs on ISO images.
16761 -- Tails developers <amnesia@boum.org> Thu, 21 Mar 2013 18:54:11 +0100
16763 tails (0.17) unstable; urgency=low
16766 - Install the KeePassX password manager, with a configuration and
16767 documentation that makes it easy to persist the password database.
16770 - Upgrade to Iceweasel 17.0.3esr-1+tails1~bpo60+1.
16771 - Install xul-ext-adblock-plus from squeeze-backports.
16772 - Do not allow listing all available fonts.
16773 Set browser.display.max_font_attempts and browser.display.max_font_count
16774 to enable the Torbrowser Limit-the-number-of-fonts-per-document patch.
16775 - Set default spellchecker dictionary to English (USA),
16776 and localize it according to locale with our custom branding extension.
16777 - Disable the add-ons automatic update feature.
16778 - Make the generated profile world-readable.
16779 - Remove NoScript click-to-play confirmation.
16780 - Sync some prefs set by Torbutton, to be ready when it stops setting these.
16781 - Disable navigation timing.
16782 - Disable SPDY. It stores state and may have keepalive issues.
16783 - More aggressive iceweasel HTTP pipelining settings.
16784 - Enable WebGL (as click-to-play only).
16785 - Disable network.http.connection-retry-timeout.
16786 - Disable full path information for plugins.
16787 - Remove NoScript blocks of WebFonts.
16788 - Disable DOM storage in Torbutton.
16789 Since we don't apply the 0026-Isolate-DOM-storage-to-first-party-URI.patch
16790 Torbrowser patch yet, and still disable DOM storage, we need to tell
16791 Torbutton not to use it.
16792 - Synchronize iceweasel's general.useragent.override with TBB based on FF17.
16793 The User-Agent settings are not kept up-to-date anymore in Torbutton, so
16794 we have to keep in sync manually with TBB's settings.
16795 - Remove obsolete APT pining for Torbutton.
16796 It's not maintained in Debian anymore, so we now fetch it from our own
16798 - Fetch FoxyProxy from Debian experimental and libnspr4-0d from
16799 squeeze-backports, for compatibility with Iceweasel 17.
16800 - Rebase bookmarks file on top of the default iceweasel 17 one.
16801 - Explicitly disable AdBlock Plus "correct typos" feature.
16802 This feature connects to http://urlfixer.org/.
16803 It is disabled by default in 2.2-1, but let's be careful.
16805 * Minor improvements
16806 - Upgrade to live-boot 3.0~b11-1 and live-config 3.0.12-1.
16807 Accordingly update the 9980-permissions hook, live-persist,
16808 unsafe-browser and boot-profile.
16809 Add compatibility symlinks from /live to /lib/live, and from /live/image
16810 to /lib/live/mount/medium, to ease the transition.
16811 - Check for errors when sourcing live-boot files, e.g. to detect when
16812 they have been renamed upstream.
16813 - Don't add "quiet" to the kernel command-line ourselves.
16814 Else, it appears twice as live-build's lb_binary_syslinux adds it too.
16815 Historically, we've been adding it ourselves on top of that because
16816 lb_binary_yaboot does not add it, but since we gave up the PowerPC support
16817 attempt, we're now only interested in syslinux, so let's make it easier
16818 for the general case, e.g. when one wants to remove the "quiet" parameter
16819 as suggested by our "Tails does not start" debugging documentation.
16820 - Upgrade I2P to 0.9.4.
16823 - Many bugfixes brought by the Debian Squeeze 6.0.7 point-release.
16824 - Use the regular GnuPG agent + pinentry-gtk2 instead of Seahorse
16825 as a GnuPG agent. This fixes usage of OpenPGP in Claws Mail,
16826 and brings support for OpenPGP smartcards.
16827 - Enable I2P hidden mode.
16828 Else, killing I2P ungracefully is bad for the I2P network.
16829 - live-persist: move error() function before the first potential usecase.
16830 - Add missing executable bit on restart-tor and restart-vidalia.
16831 - Add shutdown and reboot launchers to the menu.
16832 This workarounds the lack of a shutdown helper applet in camouflage mode.
16833 - Remove Pidgin's MXit and Sametime support.
16834 ... at least until CVE-2013-0273, CVE-2013-0272 and CVE-2013-0271 are
16835 fixed in Debian stable. While we're at it, don't force file removal in
16836 these "set -e" build scripts: fail hard, instead of silently ignoring
16837 the fact that files may have moved or disappeared.
16840 - Install recent Intel and AMD microcode from squeeze-backports,
16841 explicitly excluding the iucode-tool package that's not a good idea
16843 - Install firmware loader for Qualcomm Gobi USB chipsets.
16844 This is needed to have various mobile broadband chipsets work.
16845 - Upgrade barry to 0.18.3-5~bpo60+1.
16846 This much improved new version supports more hardware & ISP,
16847 and does not display dozens of spurious error messages at boot time.
16850 - Remove APT local cache (/Var/cache/apt/{,src}pkgcache.bin).
16852 -- Tails developers <amnesia@boum.org> Sat, 23 Feb 2013 10:37:57 +0100
16854 tails (0.16) unstable; urgency=low
16856 * Minor improvements
16857 - Replace the too-easy-to-misclick shutdown button with a better
16858 "Shutdown Helper" Gnome applet.
16859 - Display ~/Persistent in GNOME Places and GtkFileChooser if it is mounted.
16860 - Set Unsafe Browser's window title to "Unsafe Browser".
16861 - Install ekeyd to support the EntropyKey.
16862 - Install font for Sinhala.
16863 - Update Poedit to 1.5.4.
16864 - Kill Vidalia when restarting Tor.
16865 Doing this as early as possible exposes Vidalia's "broken onion" icon
16867 - Hide the persistence setup launchers in kiosk mode.
16868 - Add a shell library for Tor functions.
16869 These are shared among multiple of our scripts.
16870 - Install dictionaries for supported languages.
16871 Install hunspell dictionaries when possible,
16872 fall back on myspell ones else.
16875 - Disable IPv6 on all network interfaces.
16876 This is a workaround for the IPv6 link-local multicast leak that was recently
16877 discovered. Tails has no local service that listens on IPv6, so there should be
16878 no regression, hopefully, unless one wants to play with OnionCat and VoIP,
16879 but those of us should know how to workaround this anyway.
16880 - live-persist: Fix variable mismatch, fixing probe white-list.
16881 Tails may previously have been able to list GPT partitions labelled
16882 "TailsData" on hard drives (!) as valid persistence volumes...
16883 - live-persist: Fix --media option when no devices are attached.
16884 Earlier, if it was set to e.g. 'removable-usb' and no USB storage was
16885 connected, $whitelistdev would be empty, which is interpreted like
16886 all devices are ok by the rest of the code.
16887 - Fix SCIM in the autostarted web browser: save IM environment variables
16888 to a file during Desktop session startup, and export them into the
16889 autostarted browser's environment.
16890 - Talk of DVD, not of CD, in the shutdown messages.
16891 - Make tordate work in bridge mode with an incorrect clock.
16892 When using a bridge Tor reports TLS cert lifetime errors (e.g. when
16893 the system clock is way off) with severity "info", but when no bridge
16894 is used the severity is "warn". tordate/20-time.sh depends on grepping
16895 these error messages, so we termporarily increase Tor's logging
16896 severity when using bridge mode. If we don't do this tordate will
16897 sleep forever, leaving Tor in a non-working state.
16898 · White-list root to use Tor's ControlPort.
16899 · Add logging for is_clock_way_off().
16900 · Remove Tor's log before time syncing.
16901 We depend on grepping stuff from the Tor log (especially for
16902 tordate/20-time.sh), so deleting it seems like a Good Thing(TM).
16903 · Stop Tor before messing with its log or data dir.
16904 - live-persist: limit searched devices the same way as live-boot.
16905 If no --media argument is specified, use live-boot's
16906 "(live-media|bootfrom)=removable(|-usb)" argument to limit devices
16907 searched for a persistent volume.
16908 - tails-greeter: do not pass media=removable to live-persist.
16909 Now that we have autodetection with kernel command-line,
16910 it should not be needed anymore.
16911 - Start memlockd after configuring it,
16912 instead of starting it before and restarting it after.
16913 This avoids running memlockd twice, and prevents other possibly
16914 surprising race-conditions.
16915 As a consequence, also have tails-sdmem-on-media-removal start after the
16916 memlockd service *and* tails-reconfigure-memlockd: to start the watchdog,
16917 we need memlockd to be properly configured *and* running.
16920 - Set iceweasel homepage to the news section on the Tails website.
16921 ... using the localized one when possible.
16922 - Hide the iceweasel add-on bar by default.
16923 Now that we don't want to ship the Monkeysphere addon anymore,
16924 that was the only one displayed in there, we can as well hide the whole bar.
16925 - Don't hide the AdBlock-Plus button in the add-on bar anymore. Now that
16926 we hide the whole addon bar, we can get rid of this old
16928 - Do not install a placeholder (fake) FireGPG iceweasel extension anymore.
16929 It was shipped from 0.10 (early 2012) to 0.15 (late November),
16930 so the migration period should be over now.
16931 - Don't install xul-ext-monkeysphere anymore.
16932 The implication of the current keyserver policy are not well
16933 understood, Monkeysphere is little used in Tails, and we're not sure
16934 anymore it would be our first bet for the web browser profile with no
16935 CA. Let's keep the various configuration bits (e.g. FoxyProxy,
16936 patching MSVA), though, so that advanced users who are used to have
16937 Monkeysphere in Tails just have to install the package.
16940 - Install the "standard" task with tasksel for better consistency in the
16941 Tails ISO images built in various environments.
16942 - Install p7zip-full. It's a dep by file-roller, but we explicily use it
16943 elsewhere, and it's better to be safe than sorry.
16944 - Remove pinning of libvpx0 to sid.
16945 This package is part of Squeeze, and not from testing/sid.
16946 We have been shipping the version from Squeeze for a while.
16947 - Remove config/chroot_local-packages/ from .gitignore.
16948 The documented way for "external" contributors to add custom packages
16949 is to put them in chroot_local-packages, and once we pull we import
16950 any such package into our APT repo and rewrite the
16951 history appropriately.
16952 Also, the ability to add packages in there and not see them in "git
16953 status" makes it very easy to build tainted ISO images with
16954 non-standard packages, which makes some of us fear can lead to hard to
16956 - Make it clearer what can and cannot be done in terms of local packages.
16958 -- Tails developers <amnesia@boum.org> Thu, 10 Jan 2013 12:47:42 +0100
16960 tails (0.15) unstable; urgency=low
16962 * Major new features
16963 - Persistence for browser bookmarks.
16964 - Support for obfsproxy bridges.
16966 * Minor improvements
16967 - Add the Hangul (Korean) Input Method Engine for SCIM.
16968 - Add vendor-specific dpkg origin information. This makes dpkg-vendor
16969 return correct information.
16970 - Install pcscd and libccid from squeeze-backports. This is needed to
16971 support, to some extent, some OpenPGP SmartCard readers.
16972 - Install HPIJS PPD files and the IJS driver (hpijs).
16973 This adds support for some printers, such as Xerox DocumentCenter400.
16974 - Optimize fonts display for LCD.
16975 - Update TrueCrypt to version 7.1a.
16978 - Do not use pdnsd anymore. It has been orphaned in Debian, has quite
16979 some bugs in there, and apparently Tor's DNSPort's own caching is
16981 - Remove useless iceweasel cookies exceptions. They are useless as
16982 per-session cookies are allowed.
16983 - Do not run setupcon on X. This call is only needed on the Linux
16984 console, no need to annoy the user with a weird "Press enter to
16985 activate this console" when the open a root shell in a GNOME
16987 - Allow the tails-iuk-get-target-file user to connect to the SOCKSPort
16988 dedicated for Tails-specific software.
16989 - Fix gpgApplet menu display in Windows camouflage mode.
16990 - Fix Tor reaching an inactive state if it's restarted in "bridge mode",
16991 e.g. during the time sync' process.
16994 - Update iceweasel to 10.0.11esr-1+tails1.
16995 - User profile is now generated at build time in order to support persistent
16997 - Update HTTPS Everywhere to version 3.0.4.
16998 - Update NoScript to version 2.6.
16999 - Fix bookmark to I2P router console.
17000 - Re-enable Monkeysphere extension to connect to the validation agent.
17003 - The Tails USB installer, tails-persistence-setup and tails-greeter
17004 are now translated into Bulgarian.
17005 - Update Chinese translation for tails-greeter.
17006 - Update Euskadi translation for WhisperBack.
17009 - Custom packages are now retrieved from Tails APT repository instead
17010 of bloating the Git repository.
17011 - Allow '~' in wiki filenames. This makes it possible to ship
17012 update-description files for release candidates.
17013 - Document how to create incremental update kit.
17014 - Handle release candidates when generating custom APT sources.
17015 - Remove pinning for xul-ext-adblock-plus.
17016 It is obsolete since we've added this package to our APT repository.
17018 -- Tails developers <amnesia@boum.org> Sun, 25 Nov 2012 12:59:17 +0100
17020 tails (0.14) unstable; urgency=low
17022 * Major new features
17023 - Enable Tor stream isolation; several new SocksPorts with
17024 appropriate Isolate* options have been added for different use
17025 cases (i.e. applications). All application's have been
17026 reconfigured to use these new SocksPorts, which should increase
17027 anonymity by making it more difficulte to correlate traffic from
17028 different applications or "online identities".
17029 - The web browser now has the anonymity enhancing patches from the
17030 TorBrowser applied.
17031 - gpgApplet can now handle public-key cryptography.
17032 - Install an additional, PAE-enabled kernel with NX-bit
17033 support. This kernel is auto-selected when the hardware supports
17035 * provide executable space protection, preventing certain types of
17036 buffer overflows from being exploitable.
17037 * enable more than 4 GiB of system memory.
17038 * make all processors/cores available, including their
17039 power-saving functionality.
17040 - Add a persistence preset for NetworkManager connections.
17042 * Minor improvements
17043 - On kexec reboot, make the boot quiet only if debug=wipemem was not
17045 - Update torproject.org's APT repo key.
17046 - Update the embedded Tails signing key.
17047 - Use symlinks instead of duplicating localized searchplugins.
17048 - Rewrite Tails firewall using ferm. Tails firewall was written in
17049 very unsophisticated iptables-save/restore format. As more feature
17050 creeped in, it started to be quite unreadable.
17051 - Optimize VirtualBox modules build at runtime to avoid installing the
17052 userspace utils N times.
17053 - Drop most of Vidalia's configuration. Our custom lines just caused
17054 trouble (with multiple SocksPorts) and the default works well.
17055 - Blacklist PC speaker module. On some computers, having the pcspkr
17056 module loaded means loud beeps at bootup, shutdown and when using
17057 the console. As it draws useless attention to Tails users, it is
17058 better to prevent Linux from loading it by default.
17059 - Remove all addons from the Unsafe Browser. No addons are essential
17060 for the Unsafe Browser's intent. If anything they will modify the
17061 network fingerprint compared to a normal Iceweasel install, which
17063 - Prevent some unwanted packages to be installed at all, rather than
17064 uninstalling them later. This should speed up the build a bit.
17065 - Add a symlink from /etc/live/config to /etc/live/config.d. This
17066 makes the system compatible with live-config 3.0.4-1, without
17067 breaking backward compatibility with various parts of the system
17068 that use the old path.
17069 - Do not run unecessary scripts during shutdown sequence, to make
17071 - Make live-persist deal with persistent ~/.gconf subdirs so that
17072 any options saved therein actually get persistent.
17073 - Prevent memlockd unload on shutdown, to make sure that all
17074 necessary tools for memory wiping are available when the new
17075 kernel has kexec'd.
17076 - Patch initscripts headers instead of fiddling with update-rc.d. We
17077 now let insserv figure out the correct ordering for the services
17078 during startup and shutdown, i.e. use dependency-based boot
17080 - Remove the last absolute path in our isolinux config, which makes
17081 it easier to migrate from isolinux to syslinux (just rename the
17082 directory), and hence might make it easier for 3rd party USB
17083 installers (like the Universal USB Installer) to support Tails.
17086 - Include `seq` in the ramdisk environment: it is used to wipe more
17087 memory. This fixes the long-standing bug about Tails not cleaning
17088 all memory on shutdown.
17089 - Fix Yelp crashing on internal links
17090 - Allow amnesia user to use Tor's TransPort. This firewall exception
17091 is necessary for applications that doesn't have in-built SOCKS
17092 support and cannot use torsocks. One such example is Claws Mail,
17093 which uses tsocks since torsocks makes it leak the hostname. This
17094 exception, together with Tor's automatic .onion mapping makes
17095 Claws Mail able to use hidden service mail providers again.
17096 - Force threads locking support in Python DBus binding. Without this
17097 liveusb-creator doesn't work with a PAE-enabled kernel.
17098 - Fix localized search plugins for 'es' and 'pt'
17099 - Fix live-boot's readahead, which caused an unnecessary pause
17101 - Factorize GCC wanted / available version numbers in VirtualBox
17102 modules building hook. This, incidentally, fixes a bug caused by
17103 duplication and not updating all instances.
17104 - Fix tordate vs. Tor 0.2.3.x. Since 0.2.3.x Tor doesn't download a
17105 consensus for clocks that are more than 30 days in the past or 2
17106 days in the future (see commits f4c1fa2 and 87622e4 in Tor's git
17107 repo). For such clock skews we set the time to the Tor authority's
17108 cert's valid-after date to ensure that a consensus can be
17112 - Update to version 0.2.3.24-rc-1~~squeeze+1, a new major
17113 version. It's not a stable release, but we have been assured by
17114 the Tor developers that this is the right move.
17115 - Stop setting custom value for the Tor LongLivedPorts
17116 setting. Gobby's port was upstreamed in Tor 0.2.3.x.
17119 - Update to 10.0.10esr-1+tails1, which has all the anonymity enhancing
17120 patches from the TorBrowser applied.
17121 - Install iceweasel from our own repo, http://deb.tails.boum.org.
17122 - Fix Iceweasel's file associations. No more should you be suggested
17123 to open a PDF in the GIMP.
17126 - Use curl instead of wget, and add a --proxy option passed through
17128 - Remove the --fullrequest option, we don't need it anymore.
17129 - Remove --dns-timeout option, we don't need it anymore.
17130 - Change --proxy handling to support Debian Squeeze's curl.
17131 - Clarify what happens if --proxy is not used.
17132 - Compute the median of the diffs more correctly.
17135 - Update Linux to 3.2.32-1.
17138 - Update vidalia to 0.2.20-1+tails1.
17139 - Update bundled WhisperBack package to 1.6.2:
17140 * Raise the socket library timeout to 120 seconds
17141 * Use smtplib's timeout parameter
17142 * Fix error output when calling send a 2nd time
17143 - Update liveusb-creator to 3.11.6-3.
17144 - Update i2p to 0.9.2.
17145 - Update tails-persistence-setup to 0.20-1, which should make it
17146 possible to install Tails on large (>= 32 GiB) USB drives.
17147 - Install console-setup and keyboard-configuration from unstable
17148 (required by new initramfs-tools).
17149 - Update tails-greeter to 0.7.3:
17150 * Import pt_BR translation.
17151 * Let langpanel usable during option selection stage
17152 * Print less debugging messages by default
17153 (below are changes in tails-greeter 0.7.2:)
17154 * Use correct test operators.
17155 * Generate language codes of available locales at package build
17157 * Read list of language codes from where we have saved it at
17158 package build time.
17159 * Drop tails-lang-helper, not used anymore.
17160 * Do not compile locales at login time anymore. Tails now ships
17162 - Import live-config{,-sysvinit} 3.0.8-1. live-config >= 3.0.9-1
17163 has basically nothing useful for us, and it migrates to new paths
17164 brought by live-boot 3.0~b7, which we're not ready for yet (see:
17165 todo/newer_live-boot).
17168 - Fix Tails specific Iceweasel localization for pt-BR
17169 - Add Japanese input system: scim-anthy.
17170 - whisperback is now also translated into German, Hebrew, Hungarian,
17171 Italian and Korean.
17172 - tails-persistence-setup is now also translated into Arabic.
17173 - tails-greeter is now also translated into Arabic, Hebrew, Basque,
17174 Hungarian, Italian and Chinese.
17177 - Catch more errors in during build time:
17178 - Ensure that all local hooks start with 'set -e'.
17179 - Fail hard if adduser fails in local hooks.
17180 - Fail hard if 'rm' fails in local hooks.
17181 - vagrant: Ensure we have the set of Perl packages needed by our
17183 - vagrant: Configure live-build to ship with ftp.us.debian.org.
17184 Using cdn.debian.net leads to bad interactions with Tor.
17185 - vagrant: Don't use gzip compression when building from a tag, i.e.
17187 - vagrant: Optionally use bootstrap stage cache for faster builds
17188 via the 'cache' build option.
17189 - vagrant: Make sure release builds are clean, i.e. they don't use
17190 any potentially dangerous build options.
17191 - vagrant: Disable live-build package caching. This build system is
17192 meant to use an external caching proxy, so live-build's cache just
17193 wastes RAM (for in-memory builds) or disk space.
17194 - vagrant: use aufs magic instead of copying source into tmpfs.
17195 This reduces the amount of RAM required for building Tails in.
17196 - vagrant: Allow in-memory builds when a VM with enough memory is
17199 -- Tails developers <amnesia@boum.org> Sat, 10 Nov 2012 12:34:56 +0000
17201 tails (0.13) unstable; urgency=low
17203 * Major new features
17204 - Use white-list/principle of least privelege approach for local services.
17205 Only users that need a certain local (i.e. hosted on loopback) service
17206 (according to our use cases) are granted access to it by our firewall;
17207 all other users are denied access.
17208 - Ship a first version of the incremental update system. Updates are not
17209 currently triggered automatically, but this will allow tests to be done
17212 * Minor improvements
17213 - Enable four workspaces in the Windows XP camouflage. This allows
17214 users to quickly switch to a more innocent looking workspace in case
17215 they are working on sensitive data and attract unwanted attention.
17216 The workspace switcher applet isn't there, though, since there's no
17217 such thing in Windows XP, so switching is only possible via keyboard
17219 - Ship with precompiled locales instead of generating them upon login.
17220 - Add support for wireless regulation.
17221 - Use color for Git output, not intended for machine consumption,
17222 written to the terminal.
17223 - Have ttdnsd use OpenDNS. Using Google's DNS servers was very
17224 glitchy, and rarely succeeded when it should. It can probably be
17225 attributed to Google's DNS, which is known to take issue with Tor
17227 - Upgrade WhisperBack to 1.6, with many UI improvements and new translations.
17228 - Include GDM logs and dmidecode informations in the reports.
17229 - Allow to modify language and layout in the "Advanced options" screen
17231 - GnuPG: bump cert-digest-algo to SHA512.
17232 - Update torproject.org's APT repo key.
17235 - Make Claws Mail save local/POP emails in its dot-directory. The
17236 default is to save them at ~/Mail, which isn't included in our
17237 current Claws Mail persistence preset.
17238 - Fix the System Monitor applet.
17239 - Remove broken ttdnsd from the default DNS resolution loop.
17240 - Hide the 'TailsData' partition in desktop applications.
17241 - Ship unrar-free again, so that the GNOME archive manager knows about
17243 - Ship with an empty whitelist for Noscript.
17244 - Disable FoxyProxy's advertisement on proxy error page.
17245 - Fix slow browsing experience for offline documentation.
17246 - Raise the socket timeout to 120 seconds in WhisperBack.
17247 - Enable the ikiwiki trail plugin for the locally built wiki too.
17250 - Upgrade iceweasel to 10.0.6esr-1 (Extended Support Release) and install it
17251 and its dependencies from squeeze-backports.
17254 - Upgrade Linux to 3.2.23-1.
17257 - Update tor to version 0.2.2.39.
17258 - Update Iceweasel to version 10.0.7esr-2.
17259 - Update i2p to version 0.9.1.
17262 - vagrant: Install Ikiwiki from Debian unstable. The 'mirrorlist'
17263 patches have finally been merged in upstream Ikiwiki. So instead of
17264 building Ikiwiki by hand, we can now install the package directly
17265 from Debian unstable.
17266 - Do not build the ikiwiki forum on the bundled static website copy.
17268 -- Tails developers <amnesia@boum.org> Mon, 17 Sep 2012 15:19:25 +0200
17270 tails (0.12.1) unstable; urgency=low
17272 This is a brown paper bag release to fix two major problems introduced in
17276 - Upgrade Torbutton to 1.4.6.
17277 - Upgrade AdBlock Plus to 2.1.
17278 - Update AdBlock Plus patterns.
17281 - Upgrade Linux to 3.2.21-3 (linux-image-3.2.0-3-486).
17284 - Install MAT from Debian backports, drop custom package.
17285 - Install python-pdfrw to re-add PDF support to the MAT.
17286 - Upgrade tails-greeter to 0.7.1, which fixes the race condition that
17287 broke administration password and locale settings on some systems.
17290 - Remove the Tails specific plymouth theme. The theme interfers heavily with
17291 the boot process on some hardware.
17293 -- Tails developers <amnesia@boum.org> Mon, 17 Sep 2012 13:06:03 +0200
17295 tails (0.12) unstable; urgency=low
17297 * Major new features
17298 - Add the Unsafe Web Browser, which has direct access to the Internet and
17299 can be used to login to captive portals.
17300 - The (previously experimental, now deemed stable) Windows camouflage can now
17301 be enabled via a check box in Tails greeter.
17304 - Upgrade to 0.2.2.37-1~~squeeze+1.
17307 - Upgrade iceweasel to 10.0.5esr-1 (Extended Support Release) and install it
17308 and its dependencies from squeeze-backports.
17309 - Add a bookmark for the offline Tails documentation.
17310 - Update AdBlock patterns.
17313 - Allow using larger USB drives by increasing the mkfs timeout to 10 minutes.
17314 - Tell the user what's going on when the Tails boot device cannot be found.
17317 - Upgrade Linux to 3.2.20-1 (linux-image-3.2.0-2-amd64).
17321 - Install torsocks. Note that this makes `torify' use `torsocks' instead of
17322 `tsocks'. The `tsocks' binary is dropped to avoid problems, but remaining
17323 files (the library) are kept since ttdnsd depends on them.
17324 - Fetch live-config-sysvinit from sid so that it matches live-config version.
17325 - Update virtualbox backports to 4.1.10-dfsg-1~bpo60+1.
17326 - Install pciutils (needed by virtualbox-guest-utils).
17327 - Install mousetweaks. This is needed to use the mouse accessibility settings
17328 in System -> Preferences -> Mouse -> Accessibility.
17329 - Install the "hardlink" files deduplicator.
17330 - Do not install cryptkeeper anymore. See todo/remove_cryptkeeper for reason.
17331 Users of cryptkeeper are encouraged to install cryptkeeper via `apt-get
17332 update; apt-get install --yes cryptkeeper`, open their volume and move
17333 their to Tails' built-in persistence instead, as a one-time migration.
17334 - Upgrade I2P to version 0.9.
17335 - Don't install GParted. GNOME Disk Utility has been on par with GParted
17336 since Squeeze was released.
17337 - Upgrade live-boot to 3.0~a27-1+tails2~1.gbp319fe6.
17338 - Upgrade live-config to 3.0~a39-1 and install it from Debian experimental.
17339 - Upgrade tails-greeter to 0.7.
17340 - Upgrade tails-persistence-setup to 0.17-1.
17341 - Install libyaml-libyaml-perl.
17342 - Upgrade MAT, the metadata anonymisation toolkit, 0.3.2-1~bpo60+1.
17343 - Fetch python-pdfrw from backports, drop custom package.
17345 * Internationalization
17346 - The Tails website and documentation now has a (partial) Portuguese
17350 - Tails can now be built without using a HTTP proxy.
17351 - Tails can now easily be built by using Vagrant. See the updated
17352 contribute/build page for instructions.
17355 - Remove obsolete noswap boot parameter. live-boot now handles swap on an
17357 - The squashfs.sort files generated with boot-profile should now be ok which
17358 makes the generate images boot noticeably faster on optical media. See
17359 bugs/weird_squashfs.sort_entries for more information.
17360 - Set Tails specific syslinux and plymouth themes.
17361 - Add NVidia KMS video drivers to the initrd in order to show our shiny new
17362 plymouth theme on more systems.
17364 -- Tails developers <amnesia@boum.org> Mon, 11 Jun 2012 13:37:00 +0200
17366 tails (0.11) unstable; urgency=low
17368 * Major new features
17369 - Do not grant the desktop user root credentials by default.
17370 - A graphical boot menu (tails-greeter 0.6.3) allows choosing among
17371 many languages, and setting an optional sudoer password.
17372 - Support opt-in targeted persistence
17373 · tails-persistence-setup 0.14-1
17374 · live-boot 3.0~a25-1+tails1~5.gbp48d06c
17375 · live-config 3.0~a35-1
17376 - USB installer: liveusb-creator 3.11.6-1
17379 - Install iceweasel 10.0.4esr-1 (Extended Support Release).
17380 Let's stop tracking a too fast moving target.
17381 Debian Wheezy will ship ESR versions.
17382 - Install needed dependencies from squeeze-backports.
17385 bing appeared due to our upgrading iceweasel.
17386 Removing it makes things consistent with the way they have been
17387 until now, that is: let's keep only the general search engines
17388 we've been asked to add, plus Google, and a few specialized ones.
17389 · Replace Debian-provided DuckDuckGo search plugin with the "HTML SSL"
17390 one, version 20110219. This is the non-JavaScript, SSL, POST flavour.
17392 · Install localized search engines in the correct place.
17393 No need to copy them around at boot time anymore.
17394 · Remove Scroogle. RIP.
17395 - Enable TLS false start, like the TBB does since December.
17396 - Adblock Plus: don't count and save filter hits, supress first run dialog.
17397 - Install neither the GreaseMonkey add-on, nor any GreaseMonkey script.
17398 YouTube's HTML5 opt-in program is over.
17399 HTML5 video support is now autodetected and used.
17402 - Upgrade to 0.2.17-1+tails1: drop Do-not-warn-about-Tor-version.patch,
17404 - Set SkipVersionCheck=true.
17405 Thanks to chiiph for implementing this upstream (needs Vidalia 0.2.16+).
17407 * Internationalization
17408 - Install all available iceweasel l10n packages.
17409 - Remove syslinux language choosing menu.
17410 tails-greeter allows choosing a non-English language.
17411 - Add fonts for Hebrew, Thai, Khmer, Lao and Korean languages.
17412 - Add bidi support.
17413 - Setup text console at profile time.
17414 Context: Tails runs with text console autologin on.
17415 These consoles now wait, using a "Press enter to activate this console"
17416 message, for the user. When they press enter in there, they should have chosen
17417 their preferred keyboard layout in tails-greeter by now. Then, we run setupcon.
17418 As a result, the resulting shell is properly localized, and setupcon
17419 sets the correct keyboard layout, both according to the preferences expressed by
17420 the user in tails-greeter.
17421 - Don't use localepurge, don't remove any Scribus translations anymore,
17422 don't localize environment at live-config time:
17423 tails-greeter allows us to support many, many more languages.
17426 - Linux 3.2.15-1 (linux-image-3.2.0-2-amd64).
17427 - Fix low sound level on MacBook5,2.
17428 - Disable laptop-mode-tools automatic modules. This modules set often
17429 needs some amount of hardware-specific tweaking to work properly.
17430 This makes them rather not well suited for a Live system.
17433 - Install GNOME keyring.
17434 This is needed so that NetworkManager remembers the WEP/WPA secrets
17435 for the time of a Tails session. Initialize GNOME keyring at user
17437 - Install usbutils to have the lsusb command.
17438 - Install the Traverso multitrack audio recorder and editor.
17441 - GNOME Terminal: keep 8192 scrollback lines instead of the smallish
17443 - Replaced tails-wifi initscript with laptop-mode-tools matching feature.
17444 - Disable gdomap service.
17445 - Fetch klibc-utils and libklibc from sid.
17446 The last initramfs-tools depends on these.
17447 - Set root password to "root" if debug=root is passed on the
17448 kernel cmdline. Allow setting root password on kernel cmdline via
17449 rootpw=. Looks like we implemented this feature twice.
17450 - Append a space on the kernel command line. This eases manually adding
17452 - Rename sudoers.d snippets to match naming scheme.
17453 Sudo credentials that shall be unconditionally granted to the Tails
17454 default user are named zzz_*, to make sure they are applied.
17455 - WhisperBack: also include /var/log/live-persist and
17456 /var/lib/gdm3/tails.persistence.
17457 - Add a wrapper to torify whois.
17458 - Rework the VirtualBox guest modules building hook to support
17460 - Consistently wait for nm-applet when waiting for user session to come up.
17461 Waiting for gnome-panel or notification-daemon worked worse.
17462 - Don't start the NetworkManager system service via init.
17463 Some Tails NM hooks need the user to be logged in to run properly.
17464 That's why tails-greeter starts NetworkManager at PostLogin time.
17465 - Also lock /bin/echo into memory. For some reason, kexec-load needs it.
17466 - Pidgin: don't use the OFTC hidden service anymore.
17467 It proved to be quite unreliable, being sometimes down for days.
17468 - Do not display storage volumes on Desktop, by disabling
17469 /apps/nautilus/desktop/volumes_visible GConf entry. Enabling that
17470 GConf setting avoids displaying the bind-mounted persistent
17471 directories on the Desktop, and reduces user confusion. It also is
17472 a first step towards a bigger UI change: GNOME3 does not manage the
17473 Desktop anymore, so volume icons and other Desktop icons are meant to
17474 disappear anyway. It implies we'll have to move all Desktop icons
17475 elsewhere. Let's start this move now: this will smooth the UI change
17476 Wheezy will carry for our users, by applying some of it progressively.
17479 - Don't build hybrid ISO images anymore. They boot less reliably on
17480 a variety of hardware, and are made less useful by us shipping
17481 a USB installer from now on.
17482 - Append .conf to live-config configuration filenames:
17483 live-config >3.0~a36-1 only takes into account files named *.conf
17484 in there. Accordingly update scripts that source these files.
17485 - Remove long-obsolete home-refresh script and its configuration.
17487 * Virtualization support
17488 - Support Spice and QXL: install the Spice agent from Debian sid,
17489 install xserver-xorg-video-qxl from squeeze-backports.
17491 -- Tails developers <amnesia@boum.org> Tue, 17 Apr 2012 14:54:00 +0200
17493 tails (0.10.2) unstable; urgency=low
17496 - Update to 10.0.2-1.
17497 - Disable HTTPS-Everywhere's SSL Observatory (plus first-run pop-up).
17498 - Revert "FoxyProxy: don't enclose regexps between ^ and $."
17499 Currently "http://www.i2p2.de" (and everything similar) is captured by
17500 the I2P filter, which is incorrect. It seems isMultiLine="false" does
17501 *not* make RE into ^RE$ any longer.
17502 - Remove file:// from NoScript's exception lists.
17503 This will fix the JavaScript toggles in the local copy of the documentation.
17504 - Update AdBlock patterns.
17507 - Upgrade I2P to 0.8.13.
17508 - Install libvpx0 from sid.
17509 - Fetch klibc-utils and libklibc from sid.
17510 The last initramfs-tools depends on these.
17513 - Upgrade Linux kernel to 3.2.7-1.
17514 - Install firmware-libertas.
17515 This adds support for wireless network cards with Marvell Libertas
17516 8xxx chips supported by the libertas_cs, libertas_sdio, libertas_spi,
17517 libertas_tf_usb, mwl8k and usb8xxx drivers.
17520 - Revert "Set time to middle of [valid-after, fresh-until] from consensus."
17521 This reverts commit 18d23a500b9412b4b0fbe4e38a9398eb1a3eadef.
17522 With this vmid clocks that are E minutes back in time may cause issues
17523 (temporary Tor outages) after consensus updates that happen at the
17524 (60-E):th minute or later during any hour. Full analysis:
17525 https://mailman.boum.org/pipermail/tails-dev/2012-January/000873.html
17526 - Add the default user to the vboxsf group.
17527 This will allow the user to get full access to automounted VirtualBox
17528 shared folders as they are mounted with guid vboxsf and rwx group
17531 -- Tails developers <amnesia@boum.org> Thu, 01 Mar 2012 20:26:21 +0100
17533 tails (0.10.1) unstable; urgency=low
17536 - Make Startpage the default web search engine. Scroogle does not look
17537 reliable enough these days.
17540 - Upgrade WhisperBack to 1.5.1 (update link to bug reporting documentation).
17541 - Update MAT to 0.2.2-2~bpo60+1 (fixes a critical bug in the GUI).
17544 - Upgrade Linux kernel to 3.2.1-2
17546 * Time synchronization
17547 Serious rework that should fix most, if not all, of the infamous
17548 time-sync' related bugs some Tails users have experienced recently.
17549 - Make htpdate more resilient by using three server pools, and
17550 allowing some failure ratio.
17551 - Set time from Tor's unverified-consensus if needed.
17552 - Set time to middle of [valid-after, fresh-until] from consensus.
17553 - Many robustness, performance and fingerprinting-resistance improvements.
17554 - Display time-sync' notification much earlier.
17557 - Fix access to "dumb" git:// protocol by using a connect-socks wrapper
17558 as GIT_PROXY_COMMAND.
17559 - SSH client: fix access to SSH servers on the Internet by correcting
17560 Host / ProxyCommand usage.
17561 - Pidgin: use OFTC hidden service to workaround Tor blocking.
17562 - Claws Mail: disable draft autosaving.
17563 When composing PGP encrypted email, drafts are saved back to
17564 the server in plaintext. This includes both autosaved and manually
17566 - tails-security-check-wrapper: avoid eating all memory when offline.
17568 -- Tails developers <amnesia@boum.org> Sat, 28 Jan 2012 10:00:31 +0100
17570 tails (0.10) unstable; urgency=low
17572 * Tor: upgrade to 0.2.2.35-1.
17575 - Install Iceweasel 9.0 from the Debian Mozilla team's APT repository.
17576 - Update Torbutton to 1.4.5.1-1.
17577 - Support viewing any YouTube video that is available in HTML5 format:
17578 install xul-ext-greasemonkey and the "Permanently Enable HTML5 on
17579 YouTube" GreaseMonkey script.
17580 - Stop using Polipo in Iceweasel. Its SOCKS support was fixed.
17581 - Install from Debian sid the iceweasel extensions we ship,
17582 for compatibility with FF9.
17583 - Use Scroogle (any languages) instead of Scroogle (English only) when
17584 booted in English. Many users choose English because their own
17585 language is not supported yet; let's not hide them search results in
17586 their own language.
17587 - Install Iceweasel language packs from Debian unstable:
17588 unfortunately they are not shipped on the mozilla.debian.net repository.
17589 - Install the NoScript Firefox extension; configure it the same way as
17591 - Disable third-party cookies.
17592 They can be used to track users, which is bad. Besides, this is what
17593 TBB has been doing for years.
17594 - FoxyProxy: allow direct connections to RFC1918 IPs.
17596 * Do not transparent proxy outgoing Internet connections through Tor.
17597 - Torify the SSH client using connect-proxy to all IPs but RFC1918 ones.
17598 - Torify APT using Polipo HTTP.
17599 - Torify wget in wgetrc.
17600 - Torify gobby clients using torsocks. It does not support proxies yet.
17601 - Torify tails-security-check using LWP::UserAgent's SOCKS proxy support.
17602 - Fix enabling of GNOME's HTTP proxy.
17605 - Upgrade Vidalia to 0.2.15-1+tails1.
17606 · New upstream release.
17607 · Do not warn about Tor version.
17608 - Upgrade MAT to 0.2.2-1~bpo60+1.
17609 - Upgrade VirtualBox guest software to 4.1.6-dfsg-2~bpo60+1,
17610 built against the ABI of X.Org backports.
17611 - Upgrade I2P to 0.8.11 using KillYourTV's Squeeze packages;
17612 additionally, fix its start script that was broken by the tordate merge.
17613 - Install unar (The Unarchiver) instead of the non-free unrar.
17614 - Install Nautilus Wipe instead of custom Nautilus scripts.
17617 - Upgrade Linux kernel to 3.1.6-1.
17618 - Upgrade to X.Org from squeeze-backports.
17619 - Install more, and more recent b43 firmwares.
17620 - Upgrade barry to 0.15-1.2~bpo60+1.
17622 * Internationalization
17623 - Add basic language support for Russian, Farsi and Vietnamese.
17624 - Install some Indic fonts.
17625 - Install some Russian fonts.
17626 - Add Alt+Shift shortcut to switch keyboard layout.
17629 - Support booting in "Windows XP -like camouflage mode":
17630 · Install homebrewn local .debs for a Windows XP look-alike Gnome theme.
17631 · Add the "Windows XP Bliss" desktop wallpaper.
17632 · Added a script that's sets up Gnome to look like Microsoft Windows XP.
17633 · Add Windows XP "camouflage" icons for some programs.
17634 · Make Iceweasel use the IE icon when Windows XP camouflage is enabled.
17635 · Add special launcher icons for the Windows XP theme so that they're
17637 - Decrease Florence focus zoom to 1.2.
17638 - Do not fetch APT translation files. Running apt-get update is heavy enough.
17639 - Add MSN support thanks to msn-pecan.
17640 - Add custom SSH client configuration:
17641 · Prefer strong ciphers and MACs.
17642 · Enable maximum compression level.
17643 · Explicitly disable X11 forwarding.
17644 · Connect as root by default, to prevent fingerprinting when username
17646 - Replace flawed FireGPG with a home-made GnuPG encryption applet;
17647 install a feature-stripped FireGPG that redirects users to
17648 the documentation, and don't run Seahorse applet anymore.
17649 - Enable Seahorse's GnuPG agent.
17650 - Blank screen when lid is closed, rather than shutting down the system.
17651 The shutdown "feature" has caused data losses for too many people, it seems.
17652 There are many other ways a Tails system can be shut down in a hurry
17654 - Import Tails signing key into the keyring.
17655 - Fix bug in the Pidgin nick generation that resulted in the nick
17656 "XXX_NICK_XXX" once out of twenty.
17657 - Pre-configure the #tor IRC discussion channel in Pidgin.
17658 - Fix "technology preview" of bridge support: it was broken by tordate merge.
17659 - Install dependencies of our USB installer to ease its development.
17660 - Make vidalia NM hook sleep only if Vidalia is already running.
17661 - Reintroduce the htpdate notification, telling users when it's safe
17662 to use Tor Hidden Services.
17663 - htpdate: omit -f argument to not download full pages.
17664 - htpdate: write success file even when not within {min,max}adjust.
17665 Otherwise htpdate will not "succeed" when the time diff is 0 (i.e.
17666 the clock was already correct) so the success file cannot be used
17667 as an indicator that the system time now is correct, which arguably
17668 is its most important purpose.
17671 - Name built images according to git tag.
17673 -- Tails developers <tails@boum.org> Wed, 04 Jan 2012 09:56:38 +0100
17675 tails (0.9) unstable; urgency=low
17678 - Upgrade to 0.2.2.34 (fixes CVE-2011-2768, CVE-2011-2769).
17681 - Upgrade to 3.5.16-11 (fixes CVE-2011-3647, CVE-2011-3648, CVE-2011-3650).
17682 - Upgrade FireGPG to 0.8-1+tails2: notify users that the FireGPG Text
17683 Editor is the only safe place for performing cryptographic operations,
17684 and make it impossible to do otherwise. Other ways open up several
17685 severe attacks through JavaScript (e.g. leaking plaintext when
17686 decrypting, signing messages written by the attacker).
17687 - Install Cookie Monster extension instead of CS Lite.
17688 - Always ask where to save files.
17689 - Upgrade Torbutton to 1.4.4.1-1, which includes support for the in-browser
17690 "New identity" feature.
17693 - Install MAT, the metadata anonymisation toolkit.
17694 - Upgrade TrueCrypt to 7.1.
17695 - Upgrade WhisperBack to 1.5~rc1 (leads the user by the hand if an error
17696 occurs while sending the bugreport, proposes to save it after 2 faild
17697 attempts, numerous bugfixes).
17698 - Linux: upgrade to linux-image-3.0.0-2-486 (version 3.0.0-6); fixes
17699 a great number of bugs and security issues.
17702 - Fully rework date and time setting system.
17703 - Remove the htp user firewall exception.
17704 - Saner keyboard layouts for Arabic and Russian.
17705 - Use Plymouth text-only splash screen at boot time.
17706 - Color the init scripts output.
17707 - Suppress Tor's warning about applications doing their own DNS lookups.
17708 This is totally safe due to our Tor enforcement.
17709 - Disable hdparm boot-time service.
17710 We only want hdparm so that laptop-mode-tools can use it.
17711 - Run Claws Mail using torify.
17712 It's not as good as if Claws Mail supported SOCKS proxies itself,
17713 but still better than relying on the transparent netfilter torification.
17714 - Install HPLIP and hpcups for better printing support.
17716 * Erase memory at shutdown
17717 - Run many sdmem instances at once.
17718 In hope of erasing more memory until we come up with a proper fix for
17719 [[bugs/sdmem_does_not_clear_all_memory]].
17720 - Kill gdm3 instead of using its initscript on brutal shutdown.
17721 - Use absolute path to eject for more robust memory wipe on boot medium removal.
17724 - Exclude kernel and initramfs from being put into the SquashFS.
17725 Those files are already shipped where they are needed, that is in the ISO
17726 filesystem. Adapt kexec and memlockd bits.
17727 - Do not ship the GNOME icon theme cache.
17728 - Do not ship .pyc files.
17729 - Do not ship NEWS.Debian.gz files.
17732 - Re-implement hook that modifies syslinux config to make future
17733 development easier.
17735 -- Tails developers <amnesia@boum.org> Tue, 01 Nov 2011 13:26:38 +0100
17737 tails (0.8.1) unstable; urgency=low
17740 - Update to 3.5.16-10 (fixes DSA-2313-1).
17741 - FireGPG: force crypto action results to appear in a new window, otherwise
17742 JavaScript can steal decrypted plaintext. Advice: always use FireGPG's
17743 text editor when writing text you want to encrypt. If you write it in a
17744 textbox the plaintext can be stolen through JavaScript before it is
17745 encrypted in the same way.
17746 - Update HTTPS Everywhere extension to 1.0.3-1.
17747 - Stop using the small version of the Tor check page. The small version
17748 incorrectly tells Tails users to upgrade their Torbrowser, which has
17749 confused some users.
17752 - Update Linux to 3.0.0-2 (fixes DSA-2310-1, CVE-2011-2905, CVE-2011-2909,
17753 CVE-2011-2723, CVE-2011-2699, CVE-2011-1162, CVE-2011-1161).
17754 - Update usb-modeswitch to 1.1.9-2~bpo60+1 and usb-modeswitch-data to
17755 20110805-1~bpo60+1 from Debian backports. This adds support for a few
17756 devices such as Pantech UMW190 CDMA modem.
17757 - Install libregexp-common-perl 2011041701-3 from Debian unstable. This
17758 fixes the bug: [[bugs/msva_does_not_use_configured_keyserver]].
17759 - Install hdparm so the hard drives can be spinned down in order to save
17761 - Install barry-util for better BlackBerry integration.
17762 - Debian security upgrades: OpenOffice.org (DSA-2315-1), openjdk-6
17763 (DSA-2311-1), policykit-1 (DSA-2319-1)
17765 * Protecting against memory recovery
17766 - Set more appropriate Linux VM config before wiping memory. These
17767 parameters should make the wipe process more robust and efficient.
17769 -- Tails developers <amnesia@boum.org> Sun, 16 Oct 2011 11:31:18 +0200
17771 tails (0.8) unstable; urgency=low
17773 * Rebase on the Debian Squeeze 6.0.2.1 point-release.
17776 - Update to 0.2.2.33-1.
17777 - Disabled ControlPort in favour of ControlSocket.
17778 - Add port 6523 (Gobby) to Tor's LongLivedPorts list.
17782 - Start script now depends on HTP since I2P breaks if the clock jumps or is
17783 too skewed during bootstrap.
17786 - Update to 3.5.16-9 (fixes CVE-2011-2374, CVE-2011-2376, CVE-2011-2365,
17787 CVE-2011-2373, CVE-2011-2371, CVE-2011-0083, CVE-2011-2363, CVE-2011-0085,
17788 CVE-2011-2362, CVE-2011-2982, CVE-2011-2981, CVE-2011-2378, CVE-2011-2984,
17790 - Enable HTTP pipelining (like TBB).
17791 - Update HTTPS Everywhere extension to 1.0.1-1 from Debian unstable.
17792 - Suppress FoxyProxy update prompts.
17793 - Prevent FoxyProxy from "phoning home" after a detected upgrade.
17794 - Fixed a bunch of buggy regular expressions in FoxyProxy's configuration.
17795 See [[bugs/exploitable_typo_in_url_regex?]] for details. Note that none of
17796 these issues are critical due to the transparent proxy.
17797 - Add DuckDuckGo SSL search engine.
17800 - Update to torbutton 1.4.3-1 from Debian unstable.
17801 - Don't show Torbutton status in the status bar as it's now displayed in the
17805 - More random looking nicks in pidgin.
17806 - Add IRC account on chat.wikileaks.de:9999.
17809 - Upgrade htpdate script (taken from Git 7797fe9) that allows setting wget's
17810 --dns-timeout option.
17813 - Update Linux to 3.0.0-1. -686 is now deprecated in favour of -486 and
17814 -686-pae; the world is not ready for -pae yet, so we now ship -486.
17815 - Update OpenSSL to 0.9.8o-4squeeze2 (fixes CVE-2011-1945 (revoke
17816 compromised DigiNotar certificates), CVE-2011-1945).
17817 - Update Vidalia to 0.2.14-1+tails1 custom package.
17818 - Install accessibility tools:
17819 - gnome-mag: screen magnifier
17820 - gnome-orca: text-to-speech
17821 - Replace the onBoard virtual keyboard with Florence.
17822 - Install the PiTIVi non-linear audio/video editor.
17827 * Arbitrary DNS queries
17828 - Tor can not handle all types of DNS queries, so if the Tor resolver fails
17829 we fallback to ttdnsd. This is now possible with Tor 0.2.2.x, since we
17830 fixed Tor bug #3369.
17833 - Install ipheth-utils for iPhone tethering.
17834 - Install xserver-xorg-input-vmmouse (for mouse integration with the host OS
17835 in VMWare and KVM).
17836 - Install virtualbox-ose 4.x guest packages from Debian backports.
17839 - Switch gpg to use keys.indymedia.org's hidden service, without SSL.
17840 The keys.indymedia.org SSL certificate is now self-signed. The hidden
17841 service gives a good enough way to authenticate the server and encrypts
17842 the connection, and just removes the certificates management issue.
17843 - The squashfs is now compressed using XZ which reduces the image size quite
17845 - Remove Windows autorun.bat and autorun.inf. These files did open a static
17846 copy of our website, which is not accessible any longer.
17849 - Use the Git branch instead of the Debian version into the built image's
17851 - Allow replacing efficient XZ compression with quicker gzip.
17852 - Build and install documentation into the chroot (-> filesystem.squashfs).
17853 Rationale: our static website cannot be copied to a FAT32 filesystem due
17854 to filenames being too long. This means the documentation cannot be
17855 browsed offline from outside Tails. However, our installer creates GPT
17856 hidden partitions, so the doc would not be browseable from outside Tails
17857 anyway. The only usecase we really break by doing so is browsing the
17858 documentation while running a non-Tails system, from a Tails CD.
17860 -- Tails developers <amnesia@boum.org> Thu, 09 Sep 2011 11:31:18 +0200
17862 tails (0.7.2) unstable; urgency=high
17865 - Disable Torbutton's external application launch warning.
17866 ... which advises using Tails. Tails *is* running Tails.
17867 - FoxyProxy: install from Debian instead of the older one we previously
17871 - haveged: install an official Debian backport instead of a custom backport.
17872 - unrar: install the version from Debian's non-free repository.
17873 Users report unrar-free does not work well enough.
17875 -- Tails developers <amnesia@boum.org> Sun, 12 Jun 2011 15:34:56 +0200
17877 tails (0.7.1) unstable; urgency=high
17879 * Vidalia: new 0.2.12-2+tails1 custom package.
17882 - Don't show Foxyproxy's status / icon in FF statusbar to prevent users
17883 from accidentaly / unconsciously put their anonymity at risk.
17884 - "amnesia branding" extension: bump Iceweasel compatibility to 4.0 to ease
17885 development of future releases.
17888 - Upgrade Linux kernel to Debian's 2.6.32-33: fixes tons of bugs,
17889 including the infamous missing mouse cursor one. Oh, and it closes
17890 a few security holes at well.
17891 - Install unrar-free.
17892 - Do not install pppoeconf (superseeded by NetworkManager).
17893 - Upgrade macchanger to Debian testing package to ease development of
17894 future Tails releases.
17895 - Debian security upgrades: x11-xserver-utils (DSA-2213-1), isc-dhcp
17896 (DSA-2216-1), libmodplug (DSA-2226-1), openjdk-6 (DSA-2224-1).
17898 * Protecting against memory recovery
17899 - Add Italian translation for tails-kexec. Thanks to Marco A. Calamari.
17900 - Make it clear what it may mean if the system does not power off
17902 - Use kexec's --reset-vga option that might fix display corruption issues
17905 * WhisperBack (encrypted bug reporting software)
17906 - Upgrade WhisperBack to 1.4.1:
17907 localizes the documentation wiki's URL,
17908 uses WebKit to display the bug reporting help page,
17909 now is usable on really small screens.
17910 - Extract wiki's supported languages at build time, save this
17911 information to /etc/amnesia/environment, source this file into the
17912 Live user's environment so that WhisperBack 1.4+ can make good use
17916 - Fix boot in Chinese.
17917 - Install mobile-broadband-provider-info for better 3G support.
17918 - Add back GNOME system icons to menus.
17919 - tails-security-check: avoid generating double-slashes in the Atom
17921 - Remove "vga=788" boot parameter which breaks the boot on some hardware.
17922 - Remove now useless "splash" boot parameter.
17923 - Fix a bunch of i386-isms.
17924 - Pass the noswap option to the kernel. This does not change actual Tails
17925 behaviour but prevents users from unnecessarily worrying because of
17926 the "Activating swap" boot message.
17927 - Make use of check.torproject.org's Arabic version.
17930 - Enable squeeze-backports. It is now ready and will be used soon.
17931 - Install eatmydata in the chroot.
17932 - Convert ikiwiki setup files to YAML.
17934 -- Tails developers <amnesia@boum.org> Fri, 29 Apr 2011 17:14:53 +0200
17936 tails (0.7) unstable; urgency=low
17939 - Install foomatic-filters-ppds to support more printers.
17940 - Give the default user the right to manage printers.
17943 - Deinstall unwanted packages newly pulled by recent live-build.
17945 -- Tails developers <amnesia@boum.org> Wed, 06 Apr 2011 22:58:51 +0200
17947 tails (0.7~rc2) unstable; urgency=low
17949 ** SNAPSHOT build @824f39248a08f9e190146980fb1eb0e55d483d71 **
17951 * Rebase on Debian Squeeze 6.0.1 point-release.
17953 * Vidalia: new 0.2.10-3+tails5 custom package..
17956 - Install usb-modeswitch and modemmanager to support mobile broadband
17957 devices such as 3G USB dongles. Thanks to Marco A. Calamari for the
17961 - Website relocated to https://tails.boum.org/ => adapt various places.
17962 - Configure keyboard layout accordingly to the chosen language for
17963 Italian and Portuguese.
17965 -- Tails developers <amnesia@boum.org> Fri, 25 Mar 2011 15:44:25 +0100
17967 tails (0.7~rc1) UNRELEASED; urgency=low
17969 ** SNAPSHOT build @98987f111fc097a699b526eeaef46bc75be5290a **
17971 * Rebase on Debian Squeeze.
17973 * T(A)ILS has been renamed to Tails.
17975 * Protecting against memory recovery
17976 New, safer way to wipe memory on shutdown which is now also used when
17977 the boot media is physically removed.
17980 - Update to 0.2.1.30-1.
17983 - Add HTTPS Everywhere 0.9.4 extension.
17984 - Better preserve Anonymity Set: spoof US English Browser and timezone
17985 the same way as the Tor Browser Bundle, disable favicons and picture
17987 - Install AdBlock Plus extension from Debian.
17988 - Add Tor-related bookmarks.
17989 - Support FTP, thanks to FoxyProxy.
17990 - Update AdBlock patterns.
17991 - Disable geolocation and the offline cache.
17994 - Update Vidalia to 0.2.10-3+tails4.
17995 - Install gnome-disk-utility (Palimpsest) and Seahorse plugins.
17996 - Add opt-in i2p support with Iceweasel integration through FoxyProxy.
17997 - onBoard: fix "really quits when clicking the close window icon" bug.
17998 - Optionally install TrueCrypt at boot time.
17999 - Install laptop-mode-tools for better use of battery-powered hardware.
18000 - Replace xsane with simple-scan which is part of GNOME and way easier
18002 - Upgrade WhisperBack to 1.3.1 (bugfixes, French translation).
18003 - Install scribus-ng instead of scribus. It is far less buggy in Squeeze.
18006 - Drop incoming packets by default.
18007 - Forbid queries to DNS resolvers on the LAN.
18008 - Set output policy to drop (defense-in-depth).
18011 - Install Atheros and Broadcom wireless firmwares.
18012 - Install libsane-hpaio and sane-utils, respectively needed for
18013 multi-function peripherals and some SCSI scanners.
18015 * live-boot 2.0.15-1+tails1.35f1a14
18016 - Cherry-pick our fromiso= bugfixes from upstream 3.x branch.
18019 - Many tiny user interface improvements.
18020 - More robust HTP time synchronization wrt. network failures.
18021 Also, display the logs when the clock synchronization fails.
18022 - Disable GNOME automatic media mounting and opening to protect against
18023 a class of attacks that was recently put under the spotlights.
18024 Also, this feature was breaking the "no trace is left on local
18025 storage devices unless explicitly asked" part of Tails specification.
18026 - Make configuration more similar to the Tor Browser Bundle's one.
18027 - GnuPG: default to stronger digest algorithms.
18028 - Many more or less proper hacks to get the built image size under 700MB.
18029 - Compress the initramfs using LZMA for faster boot.
18032 - Run lb build inside eatmydata fsync-less environment to greatly improve
18035 -- Tails developers <amnesia@boum.org> Fri, 11 Mar 2011 15:52:19 +0100
18037 tails (0.6.2) unstable; urgency=high
18039 * Tor: upgrade to 0.2.1.29 (fixes CVE-2011-0427).
18041 - Upgrade Linux kernel, dpkg, libc6, NSS, OpenSSL, libxml2 (fixes various
18043 - Upgrade Claws Mail to 3.7.6 (new backport).
18044 - Install Liferea, tcpdump and tcpflow.
18045 * Seahorse: use hkp:// transport as it does not support hkps://.
18046 * FireGPG: use hkps:// to connect to the configured keyserver.
18047 * Build system: take note of the Debian Live tools versions being used
18048 to make next point-release process faster.
18049 * APT: don't ship package indices.
18051 -- T(A)ILS developers <amnesia@boum.org> Wed, 19 Jan 2011 16:59:43 +0100
18053 tails (0.6.1) unstable; urgency=low
18055 * Tor: upgrade to 0.1.28 (fixes CVE-2010-1676)
18056 * Software: upgrade NSS, Xulrunner, glibc (fixes various security issues)
18057 * FireGPG: use the same keyserver as the one configured in gpg.conf.
18058 * Seahorse: use same keyserver as in gpg.conf.
18059 * HTP: display the logs when the clock synchronization fails.
18060 * Update HTP configuration: www.google.com now redirects to
18061 encrypted.google.com.
18062 * Use the light version of the "Are you using Tor?" webpage.
18063 * Update AdBlock patterns.
18065 -- T(A)ILS developers <amnesia@boum.org> Fri, 24 Dec 2010 13:28:29 +0100
18067 tails (0.6) unstable; urgency=low
18071 * New OpenPGP signing-only key. Details are on the website:
18072 https://amnesia.boum.org/GnuPG_key/
18075 - Fixed torbutton has migrated to testing, remove custom package.
18078 - Query ssl.scroogle.org instead of lists.debian.org.
18079 - Don't run when the interface that has gone up is the loopback one.
18082 - Add shortcut to securely erase free space in a partition.
18083 - The nautilus-wipe shortcut user interface is now translatable.
18086 - Really fix virtualization warning display.
18087 - More accurate APT pinning.
18088 - Disable Debian sid APT source again since a fixed live-config has
18089 migrated to Squeeze since then.
18091 * live-boot: upgrade to 2.0.8-1+tails1.13926a
18092 - Sometimes fixes the smem at shutdown bug.
18093 - Now possible to create a second partition on the USB stick T(A)ILS is
18097 - Support RT2860 wireless chipsets by installing firmware-ralink from
18099 - Install firmware-linux-nonfree from backports.
18100 - Fix b43 wireless chipsets by having b43-fwcutter extract firmwares at
18104 - Install live-build and live-helper from Squeeze.
18105 - Update SquashFS sort file.
18107 -- T(A)ILS developers <amnesia@boum.org> Wed, 20 Oct 2010 19:53:17 +0200
18109 tails (0.6~rc3) UNRELEASED; urgency=low
18111 ** SNAPSHOT build @a3ebb6c775d83d1a1448bc917a9f0995df93e44d **
18114 - Autostart Iceweasel with the GNOME session. This workarounds the
18115 "Iceweasel first page is not loaded" bug.
18118 - Upgrade htpdate script (taken from Git 7797fe9).
18121 - Disable ssh-agent auto-starting with X session: gnome-keyring is
18122 more user-friendly.
18123 - Fix virtualization warning display.
18124 - Boot profile hook: write desktop file to /etc/skel.
18127 - Convert build system to live-build 2.0.1.
18128 - APT: fetch live-build and live-helper from Debian Live snapshots.
18129 - Remove dependency on live-build functions in chroot_local-hooks.
18130 This makes the build environment more robust and less dependent on
18131 live-build internals.
18132 - Remove hand-made rcS.d/S41tails-wifi: a hook now does this.
18133 - Measure time used by the lh build command.
18134 - Fix boot profile hook.
18135 - Boot profiling: wait a bit more: the current list does not include
18138 -- T(A)ILS developers <amnesia@boum.org> Sat, 02 Oct 2010 23:06:46 +0200
18140 tails (0.6~rc2) UNRELEASED; urgency=low
18142 ** SNAPSHOT build @c0ca0760ff577a1e797cdddf0e95c5d62a986ec8 **
18145 - Refreshed AdBlock patterns (20100926).
18146 - Set network.dns.disableIPv6 to true (untested yet)
18147 - Torbutton: install patched 1.2.5-1+tails1 to fix the User-Agent bug,
18148 disable extensions.torbutton.spoof_english again.
18151 - WhisperBack: upgrade to 1.3~beta3 (main change: let the user provide
18152 optional email address and OpenPGP key).
18154 - Update haveged backport to 0.9-3~amnesia+lenny1.
18155 - Update live-boot custom packages (2.0.6-1+tails1.6797e8): fixes bugs
18156 in persistency and smem-on-shutdown.
18157 - Update custom htpdate script. Taken from commit d778a6094cb3 in our
18158 custom Git repository: fixes setting of date/time.
18161 - Bugfix: failed builds are now (hopefully) detected.
18162 - Fix permissions on files in /etc/apt/ that are preserved in the image.
18163 - Install version 2.0~a21-1 of live-build and live-helper in the image.
18164 We are too late in the release process to upgrade to current Squeeze
18165 version (2.0~a29-1).
18168 - Pidgin/OTR: disable the automatic OTR initiation and OTR requirement.
18170 -- T(A)ILS developers <amnesia@boum.org> Wed, 29 Sep 2010 19:23:17 +0200
18172 tails (0.6~1.gbpef2878) UNRELEASED; urgency=low
18174 ** SNAPSHOT build @ef28782a0bf58004397b5fd303f938cc7d11ddaa **
18177 - Use a 2.6.32 kernel: linux-image-2.6.32-bpo.5-686 (2.6.32-23~bpo50+1)
18178 from backports.org. This should support far more hardware and
18179 especially a lot of wireless adapters.
18180 - Add firmware for RTL8192 wireless adapters.
18181 - Enable power management on all wireless interfaces on boot.
18184 - Install inkscape.
18186 - Install gfshare and ssss: two complementary implementations
18187 of Shamir's Secret Sharing.
18188 - Install tor-geoipdb.
18189 - Remove dialog, mc and xterm.
18192 - Set extensions.torbutton.spoof_english to its default true value
18193 in order to workaround a security issue:
18194 https://amnesia.boum.org/security/Iceweasel_exposes_a_rare_User-Agent/
18197 - Install the Iceweasel extension.
18198 - Use a hkps:// keyserver.
18201 - Install gnupg from backports.org so that hkps:// is supported.
18202 - Use a hkps:// keyserver.
18203 - Proxy traffic via polipo.
18204 - Prefer up-to-date digests and ciphers.
18206 * Vidalia: rebased our custom package against 0.2.10.
18209 - Built images are now named like this:
18210 tails-i386-lenny-0.5-20100925.iso
18211 - Use live-helper support for isohybrid options instead of doing the
18212 conversion ourselves. The default binary image type we build is now
18214 - Remove .deb built by m-a after they have been installed.
18215 - Setup custom GConf settings at build time rather than at boot time.
18216 - Move $HOME files to /etc/skel and let adduser deal with permissions.
18217 - Convert to live-boot / live-config / live-build 2.x branches.
18218 - Replaced our custom live-initramfs with a custom live-boot package;
18219 included version is 2.0.5-1+tails2.6797e8 from our Git repository:
18220 git clone git://git.immerda.ch/tails_live-boot.git
18221 - Install live-config* from the live-snapshots Lenny repository.
18222 Rationale: live-config binary packages differ depending on the target
18223 distribution, so that using Squeeze's live-config does not produce
18224 fully-working Lenny images.
18225 - Rename custom scripts, packages lists and syslinux menu entries from
18226 the amnesia-* namespace to the tails-* one.
18229 - Use (authenticated) HTP instead of NTP.
18230 - The htpdate script that is used comes from commit 43f5f83c0 in our
18231 custom repository: git://git.immerda.ch/tails_htp.git
18232 - Start Tor and Vidalia only once HTP is done.
18235 - Fix IPv6 firewall restore file. It was previously not used at all.
18236 - Use ftp.us.debian.org instead of the buggy GeoIP-powered
18238 - Gedit: don't autocreate backup copies.
18239 - Build images with syslinux>=4.01 that has better isohybrid support.
18240 - amnesia-security-check: got rid of the dependency on File::Slurp.
18241 - Take into account the migration of backports.org to backports.debian.org.
18242 - Make GnuPG key import errors fatal on boot.
18243 - Warn the user when T(A)ILS is running inside a virtual machine.
18244 - DNS cache: forget automapped .onion:s on Tor restart.
18246 * Documentation: imported Incognito's walkthrough, converted to
18247 Markdown, started the needed adaptation work.
18249 -- T(A)ILS developers <amnesia@boum.org> Sun, 26 Sep 2010 11:06:50 +0200
18251 tails (0.5) unstable; urgency=low
18253 * The project has merged efforts with Incognito.
18254 It is now to be called "The (Amnesic) Incognito Live System".
18258 - Created the amnesia-news mailing-list.
18259 - Added a forum to the website.
18260 - Created a chatroom on IRC: #tails on irc.oftc.net
18263 - Workaround nasty NetworkManager vs. Tor bug that often
18264 prevented the system to connect to the Tor network: restart Tor and Vidalia
18265 when a network interface goes up.
18266 - onBoard now autodetects the keyboard layout... at least once some
18267 keys have been pressed.
18268 - New windows don't open in background anymore, thanks to
18269 a patched Metacity.
18270 - Memory wiping at shutdown is now lightning fast, and does not prevent
18271 the computer to halt anymore.
18272 - GNOME panel icons are right-aligned again.
18273 - Fixed permissions on APT config files.
18274 - Repaired mouse integration when running inside VirtualBox.
18277 - Torbutton: redirect to Scroogle when presented a Google captcha.
18278 - Revamped bookmarks
18279 . moved T(A)ILS own website to the personal toolbar
18280 . moved webmail links (that are expected to be more than 3 soon)
18281 to a dedicated folder.
18282 - Don't show AdBlock Plus icon in the toolbar.
18283 - Adblock Plus: updated patterns, configured to only update subscriptions
18284 once a year. Which means never, hopefully, as users do update their
18285 Live system on a regular basis, don't they?
18287 * Vidalia: rebased our custom package against 0.2.8.
18290 - Install Claws Mail from backports.org to use the X.509 CA
18291 certificates provided by Debian.
18292 - Enable PGP modules with basic configuration:
18293 . Automatically check signatures.
18294 . Use gpg-agent to manage passwords.
18295 . Display warning on start-up if GnuPG doesn't work.
18296 - Set the IO timeout to 120s (i.e. the double of the default 60s).
18299 - Automatically connect to irc.oftc.net with a randomized nickname,
18300 so as not to advertize the use of T(A)ILS; this nickname is made of:
18301 . a random firstname picked from the 2000 most registered by the U.S.
18302 social security administration in the 70s;
18303 . two random digits.
18304 Good old irc.indymedia.org is still configured - with same nickname -
18305 but is not enabled by default anymore.
18306 - Disabled MSN support, that is far too often affected by security flaws.
18308 * Build $HOME programmatically
18309 - Migrated all GConf settings, including the GNOME panel configuration,
18310 to XML files that are loaded at boot time.
18311 - Configure iceweasel profile skeleton in /etc/iceweasel.
18312 A brand new profile is setup from this skeleton once iceweasel is
18313 started after boot.
18314 . build sqlite files at build time from plain SQL.
18315 . FireGPG: hard-code current firegpg version at build time to prevent
18316 the extension to think it was just updated.
18317 . stop shipping binary NSS files. These were here only to
18318 install CaCert's certificate, that is actually shipped by Debian's
18322 - Updated Debian Live snapshots APT repository URL.
18323 - Purge all devel packages at the end of the chroot configuration.
18324 - Make sure the hook that fixes permissions runs last.
18325 - Remove unwanted Iceweasel search plugins at build time.
18328 - Added a progress bar for boot time file readahead.
18329 - Readahead more (~37MB) stuff in foreground at boot time.
18330 - Make the APT pinning persist in the Live image.
18331 - localepurge: keep locales for all supported languages,
18332 don't bother when installing new packages.
18333 - Removed syslinux help menu: these help pages are either buggy or
18334 not understandable by non-geeks.
18335 - Fixed Windows autorun.
18336 - Disable a few live-initramfs scripts to improve boot time.
18337 - Firewall: forbid any IPv6 communication with the outside.
18338 - Virtualization support: install open-vm-tools.
18339 - WhisperBack: updated to 1.2.1, add a random bug ID to the sent
18341 - Prompt for CD removal on shutdown, not for USB device.
18343 * live-initramfs: new package built from our Git (e2890a04ff) repository.
18344 - Merged upstream changes up to 1.177.2-1.
18345 - New noprompt=usb feature.
18346 - Fix buggy memory wiping and shutdown.
18347 - Really reboot when asked, rather than shutting down the system.
18350 - Upgraded to a new custom, patched package (0.93.0-0ubuntu4~amnesia1).
18351 - Added an entry in the Applications menu.
18354 - Install vim-nox with basic configuration
18356 - Install monkeysphere and msva-perl
18357 - Replaced randomsound with haveged as an additional source of entropy.
18360 - Build ralink rt2570 wifi modules.
18361 - Build rt2860 wifi modules from Squeeze. This supports the RT2860
18362 wireless adapter, found particularly in the ASUS EeePC model 901
18364 - Build broadcom-sta-source wifi modules.
18365 - Bugfix: cpufreq modules were not properly added to /etc/modules.
18366 - Use 800x600 mode on boot rather than 1024x768 for compatibility
18367 with smaller displays.
18369 -- amnesia <amnesia@boum.org> Fri, 30 Apr 2010 16:14:13 +0200
18371 amnesia (0.4.2) unstable; urgency=low
18373 New release, mainly aimed at fixing live-initramfs security issue
18374 (Debian bug #568750), with an additional set of small enhancements as
18377 * live-initramfs: new custom package built from our own live-initramfs
18378 Git repository (commit 8b96e5a6cf8abc)
18379 - based on new 1.173.1-1 upstream release
18380 - fixed live-media=removable behaviour so that filesystem images found
18381 on non-removable storage are really never used (Debian bug #568750)
18383 * Vidalia: bring back our UI customizations (0.2.7-1~lenny+amnesia1)
18385 * APT: consistently use the GeoIP-powered cdn.debian.net
18387 * Software: make room so that {alpha, future} Squeeze images fit on
18389 - only install OpenOffice.org's calc, draw, impress, math and writer
18391 - removed OpenOffice.org's English hyphenation and thesaurus
18392 - removed hunspell, wonder why it was ever added
18395 - explicitly disable persistence, better safe than sorry
18396 - removed compulsory 15s timeout, live-initramfs knows how to wait for
18397 the Live media to be ready
18399 * Build system: don't cache rootfs anymore
18401 -- amnesia <amnesia@boum.org> Sun, 07 Feb 2010 18:28:16 +0100
18403 amnesia (0.4.1) unstable; urgency=low
18405 * Brown paper bag bugfix release: have amnesia-security-check use
18406 entries publication time, rather than update time... else tagging
18407 a security issue as fixed, after releasing a new version, make this
18408 issue be announced to every user of this new, fixed version.
18410 -- amnesia <amnesia@boum.org> Sat, 06 Feb 2010 03:58:41 +0100
18412 amnesia (0.4) unstable; urgency=low
18414 * We now only build and ship "Hybrid" ISO images, which can be either
18415 burnt on CD-ROM or dd'd to a USB stick or hard disk.
18417 * l10n: we now build and ship multilingual images; initially supported
18418 (or rather wanna-be-supported) languages are: ar, zh, de, en, fr, it,
18420 - install Iceweasel's and OpenOffice.org's l10n packages for every
18422 - stop installing localized help for OpenOffice.org, we can't afford it
18423 for enough languages
18424 - when possible, Iceweasel's homepage and default search engine are localized
18425 - added Iceweasel's "any language" Scroogle SSL search engine
18426 - when the documentation icon is clicked, display the local wiki in
18427 currently used language, if available
18428 - the Nautilus wipe script is now translatable
18429 - added gnome-keyboard-applet to the Gnome panel
18432 - replaced Icedove with claws mail, in a bit rough way; see
18433 https://amnesia.boum.org/todo/replace_icedove_with_claws/ for best
18434 practices and configuration advices
18435 - virtual keyboard: install onBoard instead of kvkbd
18436 - Tor controller: install Vidalia instead of TorK
18437 - install only chosen parts of Gnome, rather than gnome-desktop-environment
18438 - do not install xdialog, which is unused and not in Squeeze
18439 - stop installing grub as it breaks Squeeze builds (see Debian bug #467620)
18440 - install live-helper from snapshots repository into the Live image
18443 - do not install the NoScript extension anymore: it is not strictly
18444 necessary but bloodily annoying
18446 * Provide WhisperBack 1.2 for anonymous, GnuPG-encrypted bug reporting.
18447 - added dependency on python-gnutls
18448 - install the SMTP hidden relay's certificate
18450 * amnesia-security-check: new program that tells users that the amnesia
18451 version they are running is affected by security flaws, and which ones
18452 they are; this program is run at Gnome session startup, after sleeping
18453 2 minutes to let Tor a chance to initialize.
18456 - uses the Desktop Notifications framework
18457 - fetches the security atom feed from the wiki
18458 - verifies the server certificate against its known CA
18459 - tries fetching the localized feed; if it fails, fetch the default
18462 * live-initramfs: new custom package built from our own live-initramfs
18463 Git repository (commit 40e957c4b89099e06421)
18464 - at shutdown time, ask the user to unplug the CD / USB stick, then run
18465 smem, wait for it to finish, then attempt to immediately halt
18468 - bumped dependency on live-helper to >= 2.0a6 and adapted our config
18469 - generate hybrid ISO images by default, when installed syslinux is
18471 - stop trying to support building several images in a row, it is still
18472 broken and less needed now that we ship hybrid ISO images
18473 - scripts/config: specify distribution when initializing defaults
18474 - updated Debian Live APT repository's signing key
18477 - disable virtualbox packages installing and module building on !i386
18478 && !amd64, as PowerPC is not a supported guest architecture
18479 - built and imported tor_0.2.1.20-1~~lenny+1_powerpc.deb
18482 - rough beginnings of a scratch Squeeze branch, currently unsupported
18483 - install gobby-infinote
18486 - updated GnuPG key with up-to-date signatures
18487 - more improvements on boot time from CD
18488 - enhanced the wipe in Nautilus UI (now asks for confirmation and
18489 reports success or failure)
18490 - removed the "restart Tor" launcher from the Gnome panel
18492 -- amnesia <amnesia@boum.org> Fri, 05 Feb 2010 22:28:04 +0100
18494 amnesia (0.3) unstable; urgency=low
18496 * software: removed openvpn, added
18502 - lvm2 (with disabled initscript as it slows-down too much the boot in certain
18504 - NetworkManager 0.7 (from backports.org) to support non-DHCP networking
18506 - randomsound to enhance the kernel's random pool
18508 - install the latest stable release from deb.torproject.org
18509 - ifupdown script now uses SIGHUP signal rather than a whole tor
18510 restart, so that in the middle of it vidalia won't start it's own
18512 - configure Gnome proxy to use Tor
18514 - adblockplus: upgraded to 1.0.2
18515 - adblockplus: subscribe to US and DE EasyList extensions, updated patterns
18516 - firegpg is now installed from Debian Squeeze rather than manually; current
18517 version is then 0.7.10
18518 - firegpg: use better keyserver ... namely pool.sks-keyservers.net
18519 - added bookmark to Amnesia's own website
18520 - use a custom "amnesiabranding" extension to localize the default search
18521 engine and homepage depending on the current locale
18522 - updated noscript whitelist
18523 - disable overriden homepage redirect on iceweasel upgrade
18525 - nicer default configuration with verified irc.indymedia.org's SSL cert
18526 - do not parse incoming messages for formatting
18527 - hide formatting toolbar
18528 * hardware compatibility
18530 - beginning of support for the ppc architecture
18531 - load acpi-cpufreq, cpufreq_ondemand and cpufreq_powersave kernel
18533 * live-initramfs: custom, updated package based on upstream's 1.157.4-1, built
18534 from commit b0a4265f9f30bad945da of amnesia's custom live-initramfs Git
18536 - securely erases RAM on shutdown using smem
18537 - fixes the noprompt bug when running from USB
18538 - disables local swap partitions usage, wrongly enabled by upstream
18539 * fully support for running as a guest system in VirtualBox
18540 - install guest utils and X11 drivers
18541 - build virtualbox-ose kernel modules at image build time
18543 - new (translatable) wiki, using ikiwiki, with integrated bugs and todo
18544 tracking system a static version of the wiki is included in generated
18545 images and linked from the Desktop
18547 - adapt for live-helper 2.0, and depend on it
18548 - get amnesia version from debian/changelog
18549 - include the full version in ISO volume name
18550 - save .list, .packages and .buildlog
18551 - scripts/clean: cleanup any created dir in binary_local-includes
18552 - updated Debian Live snapshot packages repository URL and signing key
18553 - remove duplicated apt/preferences file, the live-helper bug has been
18555 * l10n: beginning of support for --language=en
18557 - improved boot time on CD by ordering files in the squashfs in the order they
18558 are used during boot
18559 - added a amnesia-version script to built images, that outputs the current
18561 - added a amnesia-debug script that prepares a tarball with information that
18562 could be useful for developpers
18563 - updated Amnesia GnuPG key to a new 4096R one
18564 - set time with NTP when a network interface is brought up
18565 - import amnesia's GnuPG pubkey into the live session user's keyring
18566 - do not ask DHCP for a specific hostname
18567 - install localepurge, only keep en, fr, de and es locales, which reduces the
18568 generated images' size by 100MB
18569 - added a hook to replace /sbin/swapon with a script that only runs
18571 - moved networking hooks responsibility from ifupdown to NetworkManager
18573 -- amnesia <amnesia@boum.org> Thu, 26 Nov 2009 11:17:08 +0100
18575 amnesia (0.2) unstable; urgency=low
18577 * imported /home/amnesia, then:
18578 - more user-friendly shell, umask 077
18579 - updated panel, added launcher to restart Tor
18580 - mv $HOME/bin/* /usr/local/bin/
18581 - removed metacity sessions
18582 - removed gstreamer's registry, better keep this dynamically updated
18583 - rm .qt/qt_plugins_3.3rc, better keep this dynamically updated
18584 - removed .gnome/gnome-vfs/.trash_entry_cache
18585 - removed kconf_update log
18586 - removed and excluded Epiphany configuration (not installed)
18589 - enable caching in RAM
18590 - explicitly disable ssl v2, and enable ssl v3 + tls
18591 - removed prefs for the non-installed webdeveloper
18592 - removed the SSL Blacklist extension (not so useful, licensing issues)
18593 - deep profile directory cleanup
18594 - extensions cleanup: prefer Debian-packaged ones, cleanly reinstalled
18595 AddBlock Plus and CS Lite to allow upgrading them
18596 - updated pluginreg.dat and localstore.rdf
18597 - moved some settings to user.js
18598 - made cookie/JavaScript whitelists more consistent
18599 - force httpS on whitelisted sites
18600 - NoScript: marked google and gmail as untrusted
18601 - some user interface tweaks, mainly for NoScript
18602 - FireGPG: disable the buggy auto-detection feature, the link to firegpg's
18603 homepage in generated pgp messages and the GMail interface (which won't
18604 work without JavaScript anyway)
18605 - updated blocklist.xml
18606 - removed and excluded a bunch of files in the profile directory
18607 * icedove: clean the profile directory up just like we did for iceweasel
18608 * software: install msmtp and mutt
18610 - use rsync rather than tar
18613 - reviewed pidgin-otr security (see TODO)
18615 - stop calling home-refresh in lh_build
18616 - include home-refresh in generated images
18618 - fix permissions on local includes at build time
18619 - updated scripts/{build,clean} wrt. new $HOME handling
18620 - scripts/{build,config}: stop guessing BASEDIR, we must be run from
18621 the root of the source directory anyway
18622 - stop storing /etc/amnesia/version in Git, delete it at clean time
18624 - converted Changelog to the Debian format and location, updated
18625 build scripts accordingly
18626 - added a README symlink at the root of the source directory
18627 - basic debian/ directory (not working for building packages yet,
18628 but at least we can now use git-dch)
18629 - added debian/gbp.conf with our custom options for git-dch
18630 - config/amnesia: introduce new $AMNESIA_DEV_* variables to be used
18631 by developpers' scripts
18632 - added ./release script: a wrapper around git-dch, git-commit and git-tag
18634 -- amnesia <amnesia@boum.org> Tue, 23 Jun 2009 14:42:03 +0200
18636 amnesia (0.1) UNRELEASED; urgency=low
18638 * Forked Privatix 9.03.15, by Markus Mandalka:
18639 http://mandalka.name/privatix/index.html.en
18640 Everything has since been rewritten or so heavily changed that nothing
18641 remains from the original code... apart of a bunch of Gnome settings.
18642 * hardware support:
18643 - install a bunch of non-free wifi firmwares
18644 - install xsane and add the live user to the scanner group
18645 - install aircrack-ng
18646 - install xserver-xorg-video-geode on i386 (eCafe support)
18647 - install xserver-xorg-video-all
18648 - install firmware-linux from backports.org
18649 - install system-config-printer
18650 - added instructions in README.eCAFE to support the Hercules eCAFE EC-800
18653 - configure pinning to support installing chosen packages from
18654 squeeze; the APT source for testing is hardcoded in chroot_sources/,
18655 since there is no way to use $LH_CHROOT_MIRROR in chroot_local-hooks
18656 - give backports.org priority 200, so that we track upgrades of packages
18657 installed from there
18658 * release: include the Changelog and TODO in the generated images,
18659 in the /usr/share/doc/amnesia/ directory
18660 * software: install gnomebaker when building Gnome-based live OS, to
18661 easily clone myself when running from CD
18663 - build i386 images when the build host is amd64
18664 - added a version file: /etc/amnesia/version
18665 - use snapshot live-* packages inside the images
18666 - setup timezone depending on the chosen build locale
18667 - rely on standard live-initramfs adduser to do our user setup
18668 (including sudo vs. Gnome/KDE, etc.)
18669 - stop "supporting" KDE
18670 - allow building several images at once
18671 - migrated most of lh_config invocations to scripts/config
18672 - append "noprompt" so that halting/rebooting work with splashy
18673 - moved our own variables to config/amnesia, using the namespace
18676 - default search engine is now Scroogle SSL, configured to search pages
18677 in French language; the English one is also installed
18678 - never ask to save passwords or forms content
18679 - configured the torbutton extension to use polipo
18680 - installed the CACert root certificate
18681 - installed the SSL Blacklist extension and the blacklist data
18682 - installed the FireGPG extension
18683 - installed the CS Lite extension
18684 - installed the NoScript extension
18685 - NoScript, CS Lite: replaced the default whitelists with a list of
18686 trusted, non-commercial Internet Service Providers
18687 - configure extensions (add to prefs.js):
18688 user_pref("extensions.torbutton.startup", true);
18689 user_pref("extensions.torbutton.startup_state", 1);
18690 user_pref("extensions.torbutton.tor_enabled", true);
18691 user_pref("noscript.notify.hide", true);
18692 user_pref("capability.policy.maonoscript.sites", "about:
18693 about:blank about:certerror about:config about:credits
18694 about:neterror about:plugins about:privatebrowsing
18695 about:sessionrestore chrome: resource:");
18696 user_pref("extensions.firegpg.no_updates", true);
18697 - install the NoScript plugin from Debian squeeze
18698 - delete urlclassifier3.sqlite on $HOME refresh: as we disabled
18699 "safebrowsing", this huge file is of no use
18700 - torbutton: install newer version from Squeeze
18701 * linux: removed non-686 kernel flavours when building i386 images
18702 * compatibility: append "live-media=removable live-media-timeout=15", to
18703 prevent blindly booting another debian-live installed on the hard disk
18705 - gnome-app-install
18707 - cryptkeeper: Gnome system tray applet to encrypt files with EncFS
18708 - kvkbd: virtual keyboard (installed from backports.org)
18709 - sshfs (and added live user to the fuse group)
18710 - less, secure-delete, wipe, seahorse, sshfs, ntfs-3g
18713 - enable the transparent proxy, the DNS resolver, and the control port
18714 - save authentication cookie to /tmp/control_auth_cookie, so that the
18715 live user can use Tork and co.
18716 - autostart Tork with Gnome
18717 - Tork: installed, disabled most notifications and startup tips
18718 - added a restart tor hook to if-up.d (used by Network Manager as well),
18719 so that Tor does work immediately even if the network cable was
18720 plugged late in/after the boot process
18722 - added a nautilus-script to wipe files and directories
18723 - bash with working completion for the live user
18724 * polipo: install and configure this HTTP proxy to forward requests
18726 * DNS: install and configure pdnsd to forward any DNS request through
18728 * firewall: force every outgoing TCP connection through the Tor
18729 transparent proxy, discard any outgoing UDP connection
18731 - set syslinux timeout to 4 seconds
18732 - use splashy for more user-friendly boot/halt sequences
18734 -- amnesia <amnesia@boum.org> Sat, 20 Jun 2009 21:09:15 +0200