1 tails (5.10) UNRELEASED; urgency=medium
3 * Dummy entry for next release.
5 -- boyska <boyska@riseup.net> Tue, 24 Jan 2023 12:31:16 +0100
7 tails (5.9) unstable; urgency=medium
9 * Update tor to 0.4.7.13 (tails/tails!1013)
12 - Upgrade to Tor 0.4.7.13 (tails/tails#19377)
15 - Update tor to 0.4.7.13
17 * Resolve "Upgrade to Tor Browser based on Firefox 102.7" (tails/tails!1012)
20 - Upgrade to Tor Browser based on Firefox 102.7 (tails/tails#19360)
23 - Fetch Tor Browser from our own archive
24 - Upgrade Tor Browser to 12.0.2-build1
26 * tps: Increase timeout of activate call (tails/tails!1006)
29 - tps logs passphrase in cleartext in debug mode (tails/tails#19350)
30 - Persistent Storage fails to activate: timeout (tails/tails#19347)
33 - tps: Don't print status of NetworkManager.service to stdout
34 - tps: Bump the activation timeout to 120 seconds
35 - tps: Add log messages
36 - tps: Log line which called executil helper functions
38 * Troubleshooting mode: stop passing options that can only break stuff
42 - Reconsider Troubleshooting Mode kernel command line wrt. Wayland
46 - Troubleshooting mode (syslinux): stop passing options that can only break stuff
47 - Troubleshooting mode (EFI): stop passing options that can only break stuff
49 * Upgrade to Linux 6.0 (tails/tails!996)
52 - Add randomize_kstack_offset=1 to boot parameters (tails/tails#19023)
53 - Enable BPF JIT hardening (tails/tails#19345)
54 - Upgrade to Linux 6.0 (tails/tails#18467)
57 - Test suite: allow the pattern to cover slightly less of the write cache
58 - Revert renaming of /etc/amnesia/version to /etc/tails/version
59 - Move "set -eu" to a better location
60 - Test suite: remove dead code
61 - Test suite: drop check about tails-version output
62 - Upgrade to Linux 6.0.12-1~bpo11+1
63 - early_patch: implement the initramfs-tools' "prereqs" interface
64 - initramfs: stop including SCSI drivers
65 - initramfs: bring back including all DRM modules
66 - Always log the size of the initramfs
67 - initramfs: remove support for AFS and CIFS
68 - initramfs: remove support for PCMCIA and parallel port
69 - initramfs: don't include firmware for drivers we removed
70 - initramfs: remove sunrpc support
71 - initramfs: remove a bunch more SCSI drivers
74 - Include fewer modules in the initramfs
75 - Compress the initramfs with the most space-efficient XZ compression level
76 - Simplify how we set initramfs compression algorithm
77 - Hardening: turn on BPF JIT hardening, if the JIT is enabled.
79 - Hardening: randomize kernel stack offset on syscall entry
80 - initrd: install privacy screen provider drivers
81 - Upgrade to Linux 6.0.3-1~bpo11+1 from bullseye-backports
82 - Enable bullseye-backports APT source
83 - Rename config/amnesia to config/variables
84 - Rename /etc/amnesia to /etc/tails
85 - Deprecate /usr/share/doc/amnesia/
86 - The thing is called Tails
87 - Drop support for config/amnesia.local
89 - Rename $AMNESIA_* variables
90 - Remove unused variables
92 * Tor Connection: Hide "Fix clock", "Proxy", and "Captive Portal" when time sync
93 was successful already (tails/tails!986)
96 - Add label to bridge line on the error screen (tails/tails#19332)
97 - Hide "Fix clock", "Proxy", and "Captive Portal" when time sync was successful
98 already (tails/tails#19171)
101 - Make it easier to reason about state transitions
102 - Tor Connection: simplify test
103 - Tor Connection: improve phrasing
104 - Tor Connection: make phrasing consistent
105 - Tor Connection: tell the user when we know their network is blocking access to
107 - Tor Connection: explain what bridges are on the error screen
108 - Tor Connection: rename "Bridge by email" section on the error screen
109 - Tor Connection: add label to bridge line on the error screen too
110 - Tor Connection: fix alignment of "Send an empty email" string
111 - Tor Connection: Hide "Fix clock", "Proxy", and "Captive Portal" when time sync
112 was successful already
113 - Name widgets so we can act on them
114 - Tor Connection: make log message somewhat clearer
115 - Tor Connection: remember the result of tails-get-network-time
117 * tps: Fix handling of symlink bindings (tails/tails!1009)
120 - Persistent Storage sometimes fails to activate Dotfiles (tails/tails#19346)
123 - tps behave-tests: Support passing flags to behave
124 - tps behave-tests: Test source directory with symlink
125 - tps behave-tests: Add README
126 - tps: Fix BEHAVE_DEBUG_ON_ERROR feature of the behave tests
127 - tps: Improve log messages
128 - tps-frontend: Improve log and error messages
129 - tps-frontend: Fix log level of message
130 - tps: Fix activation of symlink bindings failing
131 - tps: Fix log message
132 - tps: Improve error message
133 - tps: Fix Activate call failing with spurious error
134 - tps: More useful error message
136 * tps: Don't log parameters which can contain secrets (tails/tails!1005)
139 - tps logs passphrase in cleartext in debug mode (tails/tails#19350)
142 - tps: Don't log parameters which can contain secrets
144 * Do not hide the GTK3 “application menu” button in title bars (tails/tails!1004)
147 - Cannot access GTK3 application menus in Tails 5.8 / Wayland (tails/tails#19371)
150 - Do not hide the GTK3 “application menu” button in title bars
152 * Fix Tor Browser homepage localization when started from Tor Connection
156 - Tor Browser homepage is not localized when started from Tor Connection
162 - Fix Tor Browser homepage localization when started from Tor Connection
164 * Update tails@ key (tails/tails!1001)
167 - Test suite: ensure OpenPGP keys test is run when the only change on the branch
171 * Pull non-website PO files from Weblate (tails/tails!1000)
174 - Pull non-website PO files from Weblate (tails/tails#19322)
177 - import-translations: remove obsolete reference to Transifex
178 - import-translations: drop support for excluding languages
179 - generate-languages-list: workaround the fact we can't distinguish reviewed
180 translations from non-reviewed ones
181 - Pull non-website PO files from Weblate
183 * Make a few user-facing strings localizable (tails/tails!998)
186 - Not localized (internationalized) strings (tails/tails#19349)
189 - Integrate the Welcome Screen's main_window.py into our l10n framework
191 - Make a few user-facing strings localizable
193 * Autocorrect Rubocop violations (tails/tails!997)
197 - Test suite: run rubocop --autocorrect
199 * Improve wording of backup utility (tails/tails!995)
202 - Improve wording of backup utility (tails/tails#19348)
205 - Test suite: adjust to new UI wording
206 - Use more consistent wording
210 * Fix newly discovered shellcheck violations (tails/tails!994)
213 - Fix "lb build" exit code reporting
216 * Remove scrollbar in Favorites (tails/tails!992)
219 - Need to scroll to see all Favorites (tails/tails#19338)
222 - Apply 1 suggestion(s) to 1 file(s)
223 - Test suite: fix "the screen keyboard works in Tor Browser"
225 - Test suite: remove dead code
226 - Test suite: retry opening new tab
227 - Test suite: ensure Tor Browser has loaded the home page before we continue
228 - Test suite: spam Tor Browser less intensively
229 - Test suite: remove unused code
230 - Test suite: start Tor Browser and Thunderbird by typing their name
231 - Test suite: fix typo in comment
232 - Remove scrollbar in Favorites
234 * Remove dead code about TAILS_WIKI_SUPPORTED_LANGUAGES (tails/tails!991)
237 - WhisperBack: don't try to include non-existing tails-greeter.errors file
238 - WhisperBack: don't try to include non-existing xorg.conf
239 - Remove l10n plumbing for WhisperBack configuration file
240 - Remove obsolete .xsessionrc
242 - WhisperBack config: remove dead code
244 * Test suite: fix Unsafe Browser localization test in French (tails/tails!988)
247 - Test suite: fix Unsafe Browser localization test in French
249 * Revert "Run Qt applications as native Wayland by default" (tails/tails!987)
252 - Remove obsolete config/chroot_local-includes/usr/share/live/config/xserver-
253 xorg/*.ids (tails/tails#19330)
254 - Qt AppImages broken on Tails 5.8 (tails/tails#19326)
255 - Clipboard encryption/decryption with Kleopatra is broken on Wayland
257 - can't paste into unlock password field in KeepassXC in Tails 5.8
261 - Remove obsolete per-device X.Org driver override via live-config
262 - Revert "Don't run OnionShare as a native Wayland app"
263 - Revert "Run Qt applications as native Wayland by default"
265 * Remove the warning dialog when starting the Unsafe Browser (tails/tails!985)
268 - Explain better the Unsafe Browser from Tor Connection (tails/tails#19168)
271 - Test suite: adjust to removed warning dialog
272 - Remove the warning dialog when starting the Unsafe Browser
274 * Make the Upgrader use the mirror redirector (tails/tails!983)
277 - Upgrader: use dedicated SocksPort with no stream isolation
278 - Test suite: remove test whose cost/benefit has become very high
279 - Test suite: apply user-facing terminology
280 - Design doc: remove outdated details
281 - Remove now unused mirror-pool-dispatcher submodule
282 - Design doc: update what the fallback DNS pool is used for
283 - Drop dead code, obsolete dependencies, and obsolete tweaks
284 - Upgrader: Drop the "replace URL with a random one from the mirror pool JSON"
285 and "fallback to DNS pool" mechanisms
286 - Upgrader: bring back explanation when impossible to do an incremental upgrade
287 - IUK test suite: adjust to 888b78811bcd156284d01a063d448f6bd693db22
288 - Design doc: use new download URI in example UDFs
289 - Generate UDFs that point to the mirror redirector for ISO and IUK downloads
291 * Welcome Screen: restore ability to login with default settings by pressing
292 "Enter" (tails/tails!982)
295 - Login with default settings now requires pressing "Enter" twice in the Welcome
296 Screen (tails/tails#19323)
299 - Welcome Screen: restore ability to login with default settings by pressing
302 * switch Persistent Storage icon to SVG (tails/tails!980)
305 - Replace Persistent Storage icon with SVG version (tails/tails#19316)
308 - Also use the SVG icon in the Welcome Screen
309 - Switch Persistent Storage icon to SVG
311 -- Tails developers <tails@boum.org> Mon, 23 Jan 2023 11:53:31 +0100
313 tails (5.8) unstable; urgency=medium
315 * Upgrade Thunderbird to 102.6.0-1~deb11u1
317 * Fix FTBFS: refresh patch (tails/tails!965)
322 - Fix FTBFS: refresh patch
324 * Update tor browser to 12.0.1 (tails/tails!979)
329 - Fetch Tor Browser from our own archive
330 - Upgrade Tor Browser to 12.0.1-build1
332 * Enable bullseye-proposed-updates (to test Bullseye 11.6 before it's released),
333 upgrade to Linux 5.10.158 (tails/tails!975)
335 Closes #19301, #19293
338 - After disabling the Tor Configuration persistence feature, only start Tor
339 Connection if we're connected to a local network
340 - Also consider the Linux kernel from bullseye-updates
341 - Install the Linux kernel from bullseye-proposed-updates, if that suite is
343 - Test suite: remove unused image
344 - Upgrade to Linux 5.10.158-1
345 - Enable bullseye-proposed-updates, to test Bullseye 11.6 before it's released
346 - Bump snapshot of the Debian archive to 2022121302, so we can use proposed-
347 updates for Bullseye 11.6
349 * Test suite: make keyboard input more reliable (tails/tails!971)
352 - Test suite: increase sleep time at the end of Screen#type
353 - Test suite: correct comment
354 - Test suite: keep keys pressed for 40 ms
355 - Test suite: improve comment
356 - Test suite: keep keys pressed for 20 ms instead of 10 ms
357 - Test suite: update comment
359 * Fix Dotfiles access for non-root users (tails/tails!968)
364 - Fix dotfiles access for non-root users
366 * Adapt to Wayland our error reporting mechanism when GDM fails to start
372 - resorting to X.Org → crash → better UX!
373 - Adapt to Wayland our error reporting mechanism when GDM fails to start
375 * Switch from bullseye-proposed-updates to Bullseye 11.6 (tails/tails!978)
380 - Revert "Enable bullseye-proposed-updates, to test Bullseye 11.6 before it's
384 * Tor Connection UI improvements (tails/tails!977)
386 Closes #19238, #19256, #19169, #19172
389 - Tor Connection: fix window size
390 - Fix links from Tor Connection to the offline documentation
391 - Tor Connection: fix typo in string
392 - Tor Connection: display QR code scanning error below the scanning button
393 - Add label to bridge line
395 * Persistent Storage: use new icon (tails/tails!976)
398 - Use the new Persistent Storage icon on the Welcome Screen when the Persistent
399 Storage does not exist yet
400 - Persistent Storage: use new icon
402 * Allow persisting bridge scanned from QR code, take 1 (tails/tails!973)
407 - Allow persisting bridge scanned from QR code, take 1
409 * Update tor to 0.4.7.12 (tails/tails!972)
414 - Update tor to 0.4.7.12
416 * fix window centering (tails/tails!970)
421 - Ensure extension description matches what it actually does
422 - gdm-tails is a GDM session, with extension support
423 - more comments to clarify subtleties
424 - check which session we're in is more to the point
426 - Apply 1 suggestion(s) to 1 file(s)
427 - stop "when it's done" , not predefined time
428 - window-centering only runs in GDM
430 - rounding is needed to avoid false moves
431 - better comments and log messages
432 - Revert "avoid useless CPU work"
433 - avoid useless CPU work
434 - extensions are disabled in GDM: workaround
435 - window centering in Greeter
437 * Remove static suggestion of diceware passphrase (tails/tails!969)
442 - Remove static suggestion of diceware passphrase
444 * Allow disabling the Unsafe Browser (tails/tails!967)
449 - fix "I disable the Unsafe Browser" in corner cases
450 - adapt Greeter options persistence
451 - fix test suite for new wording
452 - Adjust to the Unsafe Browser being disabled by default
454 - Enable Unsafe Browser by default
455 - Revert "Welcome Screen: always enable the Unsafe Browser and make the setting
458 * Misc Persistent Storage fixes for 5.8 (tails/tails!966)
460 Closes #19220, #19279, #19280, #19148, #19294
463 - Don't run OnionShare as a native Wayland app
464 - Run Qt applications as native Wayland by default
465 - Allow running Qt applications as native Wayland
466 - Remove Dasher (broken on Wayland)
467 - Tell the user what's going on while deleting Persistent Storage
468 - When Persistent Storage is unlocked, instruct how to delete it
469 - Persistent Storage: add missing link to doc on the features screen
471 * FIX --disable-chutney (tails/tails!961)
474 - FIX --disable-chutney
476 * Tor Connection: select "Ask for a bridge by email" by default when "Hiding"
482 - Make it easier to scan a QR code
483 - Tor Connection: select "Ask for a bridge by email" by default when "Hiding"
485 * Tor Connection: display percentage on the connection progress bar
489 - Tor Connection: display percentage on the connection progress bar
491 * TPS explanation strings, and more (tails/tails!947)
496 - remove vague comment
499 - explanation strings for relevant TPS features
501 * Additional Software: ensure APT is not broken after being interrupted
507 - Additional Software: ensure APT is not broken after being interrupted
509 * Test suite: relax our expectations for coverage of the known pattern in memory
513 - Test suite: relax our expectations for coverage of the known pattern in memory
515 * create persistent storage from the greeter (tails/tails!922)
520 - change wording following the new style
521 - comment to explain flag files
523 - Apply 3 suggestion(s) to 3 file(s)
525 - greeter test suite code refactor
526 - checking early is useless and ineffective
527 - FIX look at the actual value
528 - big code refactoring
529 - actually handle button
530 - better size and margins for padlock
531 - make label the same in glade and python
532 - remove suggested-action
534 - Better real estate use
535 - draft: automated tests
536 - "don't create" is not a suggested-action
537 - Clearer state management in UI
538 - actually start persistent storage setup
539 - draft: create persistent storage from greeter
541 * Upgrade Tor Browser to 12.0 (tails/tails!921)
543 Closes #19135, #19085
546 - Test suite: bump timeout
547 - Make code more readable
548 - Fetch Tor Browser from our own archive
549 - Upgrade Tor Browser to 12.0
550 - Test suite: fix "Downloading files with the Tor Browser" scenario with Tor
551 Browser 12 on Wayland
552 - Test suite: improve comment phrasing
553 - Test suite: only compute keymap once in Screen#press
554 - Test suite (mouse_location): remove unused method parameters
555 - Fix buggy (invisible) conflict resolution from rebase
556 - Turn off shellcheck false positive
557 - Drop obsolete mentions of $TBB_EXT
558 - Drop import of library that's not needed anymore
559 - Update handling of Tor Browser locales
560 - Fix location for Burmese
561 - Declare newly added Tor Browser locales
562 - Don't try to install non-existing langpacks
563 - Tor Browser update process: there's no langpacks anymore
564 - Fetch Tor Browser from our own archive
565 - Upgrade Tor Browser to 12.0a5
566 - Upgrade Tor Browser to nightly.2022.11.22
567 - Thunderbird: avoid proxy bypass, same as Tor Browser
568 - Test suite: Unsafe Browser has no bookmarks at all anymore
569 - Unsafe Browser: delete default bookmarks
570 - Test suite: update expected images
571 - Test suite: update expected images
572 - Upgrade Tor Browser to 12.0a4
573 - Thunderbird: replace network.security.ports.banned pref with
574 network.proxy.allow_hijacking_localhost
575 - Tor Browser: remove network.security.ports.banned pref, which does more harm
577 - Update AppArmor policy for Tor Browser 12
578 - Test suite: update expected images for Tor Browser 12
579 - Test suite: update expected Unsafe Browser images for Tor Browser 12
581 - Remove unused variable
582 - Test suite: update expected images for Tor Browser 12
583 - Test suite: remove obsolete complexity
584 - Test suite: update for new "New Identity" UX in Tor Browser 12
585 - Test suite: spam Tor Browser less intensively
586 - Test suite: refactoring (DRY)
587 - Test suite: update expected image
588 - Test suite: spam Tor Browser less intensively
589 - Test suite: add support for Tor Browser nightly builds
592 - Drop unused flexibility
593 - Remove obsolete variable
594 - Adjust to multilingual Tor Browser tarball
595 - Adjust to script being renamed upstream
596 - Upgrade Tor Browser to nightly.2022.10.19
597 - Tor Browser upgrade doc: support nightly builds, assume multilingual tarball
598 - Upgrade Tor Browser to 12.0a3
599 - Unsafe Browser: also apply branding to brand.properties
600 - Fix grammar in comment
601 - Unsafe Browser: don't ask confirmation when quitting with CTRL+q
602 - Test suite: update Unsafe Browser images
603 - Test suite: add expected unused Tor Browser library
604 - Test suite: adjust to Tor Browser 12's (Firefox 102) new download flow
605 - Upgrade Tor Browser to 12.0a2
608 -- Tails developers <tails@boum.org> Mon, 19 Dec 2022 09:43:26 +0000
610 tails (5.8~beta1) unstable; urgency=medium
612 * Rewrite the Persistent Storage settings in Python (tails/tails!897)
614 Closes: #17803, #15142, #11529, #15827, #7002, #18008, #17331, #7503, #19130, #16061, #15313
617 - Change test case to reflect what we wanted
618 - Really disable broken Thunderbird test
619 - fix reload-connections hook during greeter
620 - clarify Mount.__str__ from persistence.conf format
622 - remove a (never used) systemd alias
623 - symlink_to ignores the second argument.
624 - sort hook execution
627 - Reset Tor configuration when deactivating the corresponding Persistent Storage
629 - Don't install/upgrade Additional Software unless the corresponding persistent
630 directories are mounted
631 - Don't try to create Persistent Storage when the system partition is not called
633 - Don't try to create Persistent Storage on non-GPT device
634 - Persistent Storage creation: use UI strings from the design
635 - Add ssh as a conflict app for the SSH client feature
636 - Move "Tor Browser Bookmarks" to Applications section of Persistent Storage
638 - Save with Glade 3.40.0
639 - Reload NetworkManager connections when activating/deactivating the
640 corresponding Persistent Storage feature
641 - tps-frontend: fix icons path
642 - Stop setting custom permissions on /var/lib/live/config
643 - WhisperBack: don't include obsolete file in the attached technical info
644 - CUPS: update configuration files as soon as possible
645 - Restart CUPS after enabling/disabling the Printers persistent storage feature
646 - Remove incorrect comment
647 - Remove function that's not used anymore
648 - tails-additional-software-config: adjust to new Persistent Storage
650 - Refactoring: move method to library
651 - Revert "Test suite: workaround regression in Additional Software"
652 - tails-additional-software: don't wait for tps-frontend to complete before
653 writing contents to live-additional-software.conf
655 - launch_x_application: drop feature we don't need anymore
656 - Add exceptions for Bandit false positives
657 - Use long option name
658 - Harden sudo configuration
659 - Revert "Test suite: add temporary workaround for tps buggy user story wrt.
661 - Fix the user story for Dotfiles
663 - tps: document behavior that can be surprising
664 - TCA: fix setup of persistent bridge switch widget
665 - Remove unused script and service
666 - Test suite: remove obsolete workaround
667 - TCA: drop useless code
668 - TCA: fix localization of window title
669 - Remove unused copied'n'pasted constant
670 - TCA: mediate reading/writing from/to tca.conf via tca-portal
671 - Update logger's name: "tor-launcher" does not mean anything in this context
673 - Remove unused import
674 - TCA: remove unused import
675 - TCA: fix type of argument
676 - Don't allow deleting an unlocked Persistent Storage
677 - Drop incomplete attempt to support unlocking Persistent Storage after login
678 - Unsafe Browser: adjust to the removal of persistence_is_enabled in tails-
681 - Remove useless customization
682 - Fix typo in docstring
683 - Add Synaptic, apt-get, and dpkg as conflicting apps for the Additional Software
684 persistent storage feature
685 - Remove "XXX" comment: this is about further improving a feature that was not
686 even planned in the design
687 - Remove "XXX" comment: already tracked on the issue
689 - Remove "XXX" comment: moved to the issue
691 - Fix variable type mismatch
692 - Remove "XXX" comment: moved to the issue
693 - Remove "XXX" comment
695 - Remove "XXX" comment: let's not translate stuff that the user has no chance to
697 - Remove "XXX" comment: moved to the issue
698 - Test suite: fix Gherkin When/Then semantics
699 - Test suite: fix backup scenario
700 - Remove unused import
701 - Test suite: refactoring (extract code to method)
702 - Revert "Test suite: adjust for increased TimeoutStopsec= (refs: #17278)"
703 - Test suite: check earlier that Additional Software is correctly configured
704 - Test suite: workaround regression in Additional Software
705 - Test suite: minor refactoring
706 - Additional Software: add more accurate wait loop
708 - Additional Software: don't run tps a second time
709 - Additional Software: drop unsupported and now useless options
710 - mypy: enable a few more checks
711 - mypy: ignore gi and gi.repository
712 - Help mypy discover our Python libraries
714 - Fix comment phrasing
715 - Fix activating Additional Software with an unlocked persistent storage
716 - Test suite: use shortcut
717 - Test suite: continue adapting to new UI
718 - Remove obsolete scripts
719 - Test suite: drop the Persistent Storage configuration file unit tests
721 - Ignore flake8 false positives
722 - tps test suite: make config_file_test support the case when udisks is not
724 - Fix typo in comment
725 - GitLab CI: drop test-persistent-storage-behave
726 - Fix tps behave tests when a dedicated filesystem is mounted on /tmp
727 - Add support for debug output without a debugger installed
731 - Test suite: finish adapting "I delete the persistent partition" to new UI
732 - Use string from the design
733 - Fix inverted boolean logic
734 - Fix typo in comment
735 - Make it possible to run config_file_test.py without a tails-persistent-storage
737 - Revert "tps: Change owner of persistence.conf to root"
738 - Move class docstring where it belongs
739 - Fix typo in comment
740 - Test suite: don't test for persistence.conf.bak existence
741 - Test suite: run the persistence storage behave and config file unit tests
742 - GitLab CI: add missing dependencies
743 - GitLab CI: run persistent storage tests in separate jobs
744 - tps test suite: use larger filesystem to that mke2fs can create a Journal
745 - Fix typo in comment
746 - Declare mount flags used by the tps test suite
747 - tps test suite: use the same mount flags as production
748 - Sort ExecStartPre before ExecStart, just like their execution order
749 - Maintain directories with systemd-tmpfiles
750 - Forbid usage as non-amnesia: this would break stuff
751 - Simplify code and make bookmark removal an atomic operation
752 - Do all GNOME bookmarks changes as the amnesia user
753 - Use canonical directory location
754 - Protect grep command against special regexp chars
755 - Revert incomplete split of the Welcome Screen persistence feature
756 - Welcome Screen: don't allow login until we're fully done activating the
758 - Remove unused import
759 - Welcome Screen: point to new issue that tracks a cleanup that's now possible
760 - Remove unused imports
762 - Remove unused import
763 - Don't let tempfile try to delete file that we just renamed
764 - Don't try (and fail) to refresh features' IsActive when unlocking
765 - Use different variables names when we're using them to store different data
767 - Fix comment grammar and clarify
768 - Test suite: add temporary workaround for tps buggy user story wrt. dotfiles
769 - Add shellcheck exception
770 - Test suite: actually enable all persistence presets.
771 - tps: Remove config file backup functionality
772 - tps: Make writes to the configuration file atomic
773 - tps: Fix "invalid boot device" message not shown
774 - tps: Fix state handling
775 - tps: Handle expected error that deletion fails because device is busy
776 - tps: Don't unmount with force
777 - Remove unused IncorrectOwnerException and IncorrectOwnerError
778 - Rename test directory
779 - tps: Remove the obsolete mount test
780 - GitLab CI: Run the tps config file test
781 - tps: Fix config file test
782 - tps: Change owner of persistence.conf to root
783 - tps: Deactivate features before deleting
784 - Test suite: start porting to new implementation of Persistent Storage
785 - Test suite: update referenced class name
786 - tps: Don't make the tps service exit when closing the app
787 - tps: Add button to open tails-additional-software-config
788 - tps: Add labelled-by property to list boxes in features_view.ui
790 - tps: Print debug log messages when running behave tests
791 - tps: Make features view accessible to screen readers
792 - tps: Format features_view.ui with glade
793 - tps: Use connect-drop
794 - connect-drop: Avoid opening an additional file descriptor
795 - actually authenticate to dbus
796 - Test suite: remove obsolete images
797 - Persistent Storage frontend: add accessibility relationships
798 - connect-drop: fix style
799 - connect-drop: --dbus has help line
800 - connect-drop: option groups
801 - connect-drop --env-keep
802 - connect-drop is now DBus-aware
803 - WIP: Update Persistent Storage design document
804 - Update Persistent Storage design document
805 - tps: Add basic support for custom features
806 - Clarify branded names
807 - tps: Add some accessibility information
808 - tps: Improve layout
809 - Set executable bit on unlock-veracrypt-volumes
810 - tps: Use tails-documentation to open doc links
811 - tps: Add a HACKING.md
812 - tps: Try again using get_block_for_dev
813 - tps: Add Tor Configuration feature
814 - tps: Remove Language and Region feature
815 - tps: Start implementing language and region feature
816 - Rewrite Persistent Storage settings in Python (refs: #17803)
818 * Tor bridges QR code scanning (tails/tails!874)
823 - match labels between code and tests
824 - do whatever dogtail wants
825 - fix labeling in tca
826 - Test suite: update to new string
827 - Apply GNOME style guide
828 - Implement sajolida's new design for bridges input on the error screen
829 - Polish new bridge input UI
830 - infobar works in error page, too
832 - MessageDialog → InfoBar
833 - scanning QR from error page is tested, too
834 - test suite refactoring
835 - adapt QR code automated test to new mockup
836 - using QR code sets state
837 - the new mockup now seems to behave
838 - scan qrcode: new mockup
839 - change wording for QR code errors
840 - Test suite: ensure we see the QR code on the screen
841 - run_test_suite: check recently added dependencies
842 - WIP: Test suite: add test for QR code scanning feature in Tor Connection
843 - Reference issue that has more details instead of a commit that lacks context
844 - Don't load library that we don't use anymore
845 - show no dialog if the user closes zbarcam
846 - Ignore zbarcam output if it arrives too late
847 - Add the v4l2loopback kernel module
848 - improve labels before UX does :)
849 - Tor Connection: disable the "Scan a QR code" button until "Enter a bridge that
850 you already know" is selected
852 - implement Scan QR code from error step, too
853 - better error handling
854 - QR code content is parsed/validated
855 - doctests for parse_qr_content
856 - Convert the contents of the QR code into bridge lines
857 - clicking on "Scan QR code" does something...
858 - glade: clicked callback + naming convention
859 - Tor Connection: add button to scan QR code
860 - scanning Tor bridges QR codes: building blocks
862 * Migrate from X.Org to Wayland (tails/tails!838)
864 Closes: #12213, #19042, #14623, #15635, #19008, #16795, #18020, #17284, #5422, #9767, #7502, #18339
867 - Test suite: don't expect the application title seen on the accessibility bus to
869 - Glade: AtkObject::accessible-role properties should not be translatable
870 - Test suite: fix clearing notifications
871 - FIX sandbox check for some parts of the test suite
872 - Test suite: simplify
873 - workaround an a11y bug preventing test suite
874 - one more test suite fix
875 - Test suite: migrate to input techniques that work on Wayland
876 - TPS is on Wayland, a11y, ibus...
877 - remove unused import
879 - more explicit block clearnet → internal services
880 - FIX proxy test for unsafebrowser
881 - Really disable broken Thunderbird test
882 - no incoming connections to UnsafeBrowser
883 - tails-add-session-firewall-rune work without --apply
885 - Test suite: make test work in non-English locales
886 - Test suite: rename step to match what it currently checks
887 - Fix typos in comment
888 - Test suite: remove workaround
889 - Test suite: fix race condition
890 - Test suite: add missing space between words in error message
891 - Extract Python code to an external script
893 - Drop unnecessary /g regexp modifiers
894 - Use extended regexps
895 - Don't install unneeded systemd-container
897 - Remove obsolete comment
898 - Fix typo in comment
900 - Improve user-facing string
901 - Use install(1) instead of mkdir + chown
902 - Make variable name correctly reflect its value
903 - Make variable name correctly reflect its value
904 - Add missing word in error message
905 - Test suite: drop unnecessary step
906 - Test suite: move and warn about xdotool using code
907 - Fix a bunch of issues identified by shellcheck
908 - Unsafe Browser: drop workarounds.
909 - Test suite: clarify/simplify code
910 - Test suite: fix recovery
911 - Test suite: fix robustness issue
912 - Test suite: verify that browser address bar images exist
913 - Test suite: adjust path
914 - Test suite: fix sanity check
915 - Test suite: drop comment
916 - Unsafe Browser: move code
917 - Unsafe Browser: drop unnecessary mount for container
918 - Test suite: adapt firewall sanity check to the clearnet network namespace
919 - Test suite: adapt test after dropping the greeter's Unsafe Browser setting
920 - Test suite: adapt regex to new command line
921 - Test suite: deal with Unsafe Browser permission error
922 - Test suite: export Unsafe Browser bookmarks into an accessible directory
923 - Unsafe Browser: allow access to /etc/hosts in AppArmor profile
924 - Test suite: use correct step
925 - Welcome Screen: really hide the "Add" button for obsolete settings
926 - Welcome Screen: always enable the Unsafe Browser and make the setting obsolete
927 - Revert "Unsafe Browser: prevent accidental/malicious operation under Xorg"
928 - Unsafe Browser: further isolate from the root filesystem
929 - Unsafe Browser: drop duplicated mount
930 - Fix incorrect merge conflict resolution.
931 - Unsafe Browser: expose the real /home
932 - Unsafe Browser: confine with AppArmor
933 - Unsafe Browser: prevent accidental/malicious operation under Xorg
934 - Unsafe Browser: work around issue with ibus/a11y proxy stopping
935 - Make necessary firewall rules in tails-create-netns persist throughout the
937 - Unsafe Browser: migrate to tails-create-netns
938 - Unsafe Browser: run as native Wayland application
939 - Unsafe Browser: start with tailslib.netnsdrop.run_in_netns()
940 - Add missing double quotes
941 - Use $() to get a command's output, not backticks
942 - Add missing double quotes
943 - Drop unused argument
944 - Disable shellcheck false positive
945 - Test suite: work around the Screen Keyboard not appearing as it should on
947 - Patch Thunderbird AppArmor profile so it works in Wayland.
948 - Thunderbird: enable Wayland support
949 - Test suite: fix a bunch of incorrect/buggy Dogtail click actions
950 - Tor Browser: enable Wayland support
951 - Test suite: fix a bunch of incorrect Dogtail "click" actions
952 - Test suite: make test more robust.
953 - Unsafe Browser: enable ibus and accessibility!
954 - Test suite: actually disable TOR_TRANSPROXY for the Unsafe Browser
955 - Test suite: optimization
956 - Test suite: fix chroot vs pmap mismatch.
957 - Test suite: fix Dogtail for non-amneisia users
958 - Test suite vs Wayland: fix another issue when clicking crashes accessibility
959 - Remote shell: get the GNOME environment from the python library instead
960 - Fix environment so accessibility is working with launch_x_application()
961 - Test suite vs Wayland: deal with several issues when installing packages in
963 - Test suite: deal with XWayland vs Dogtail issue for synaptic run as root
964 - Test suite: enable the accessibility toolkit for the root user
965 - Remote shell: set XAUTHORITY, which isn't set by export_gnome_env() any more
966 - Wayland vs export_gnome_env(): drop variables not dumped into /run/gnome-shell-
968 - Test suite: deal with Wayland vs Dogtail issue
969 - Test suite: deal with GNOME notification buttons being unclickable through
971 - Test suite: work around another instance where Dogtail breaks after clicking a
973 - Test suite: use correct activation for some particular push buttons.
974 - Test suite: deal with Wayland vs Dogtail issue.
975 - Test suite: some radio buttons want 'click', some want 'select'.
976 - Test suite: work around AT-SPI action bug
977 - Test suite: apparently some buttons want "click" while others want "press"
978 - Test suite: fix Electrum test vs Wayland migration.
979 - Test suite: use appropriate Dogtail actions for push/radio buttons.
980 - Test suite: use better image when waiting for snapshots to be restored fully.
981 - Unsafe Browser: hook zenity dialogs to at-spi bus.
982 - stop installing xorg packages
983 - Test suite: handle Unsafe Browser exiting with an error code after being
985 - Test suite: adapt Unsafe Browser tests since migrating to Wayland.
986 - Test suite: adapt to Wayland
987 - Test suite: adapt to Wayland
988 - Revert "Remove unused exec_unconfined_firefox()."
989 - Update GNOME Shell user service name for Wayland
990 - Test suite: migrate more tests to input techniques that work on Wayland
991 - Remote shell: ensure $DISPLAY is set
992 - Test suite: don't import dogtail.rawinput that can't work on Wayland
993 - Test suite: generate methods with meta-programming
994 - Test suite: migrate to input techniques that work on Wayland
995 - Test suite: remove X.Org-specific workaround
996 - Fix typo in comment
997 - Test suite: click in a way that works on Wayland
998 - Test suite: remove unused method that's broken on Wayland
999 - Unsafe Browser: set up networking via a new namespace.
1000 - Revert "Unsafe Browser: crappy attempt to sort of get networking up."
1001 - Unsafe Browser: crappy attempt to sort of get networking up.
1002 - Unsafe Browser: bind-mount resolv.conf as read-only.
1003 - Unsafe Browser: experiment for running as the amnesia user.
1004 - Stop disabling Wayland in GDM (refs: #12213).
1005 - Revert "Use X.Org in amnesia's GNOME session (refs: #12213)."
1007 -- Tails developers <tails@boum.org> Wed, 02 Nov 2022 09:47:35 +0000
1009 tails (5.7) unstable; urgency=medium
1011 * fix FTBFS: don't remove, just hold (tails/tails!960)
1014 - Tails FTBFS: grub-pc is not configured (tails/tails#19290)
1017 - don't remove, just hold
1019 * Resolve "Upgrade to Tor Browser 11.5.8" (tails/tails!962)
1022 - Upgrade to Tor Browser 11.5.8 (tails/tails#19295)
1025 - Fetch Tor Browser from our own archive
1026 - Upgrade Tor Browser to 11.5.8-build1
1028 * Add Metadata Cleaner (#18101) (tails/tails!959)
1031 - Mention MAT and metadata on /about (tails/tails#19206)
1032 - Add Metadata Cleaner (tails/tails#18101)
1035 - Mention Metadata Cleaner from /about (#19206)
1036 - Document Metadata Cleaner (#18101)
1037 - Add Metadata Cleaner (#18101)
1039 * WhisperBack debugging info: have df ignore filesystems of type fuse.portal
1043 - Can't start WhisperBack when /root/.cache/doc is mounted (tails/tails#19282)
1046 - WhisperBack debugging info: have df ignore filesystems of type fuse.portal
1048 * Update htpdate pool: secure.flickr.com → flickr.com (tails/tails!954)
1051 - Update htpdate pool: secure.flickr.com → flickr.com
1053 * Update tor to 0.4.7.11 (tails/tails!953)
1056 - Upgrade to tor 0.4.7.11 (tails/tails#19276)
1059 - Update tor to 0.4.7.11
1061 * Remove broken pdf-redact-tools (tails/tails!950)
1064 - pdf-redact-tools broken (tails/tails#19250)
1067 - Remove broken pdf-redact-tools
1069 * Resolve "Explain better the Unsafe Browser from Tor Connection"
1073 - Test suite: update wrt. new UI strings
1074 - Insist on signing in, then closing (#19168)
1075 - Be more clear (#19168)
1077 * Remove (easier) and (safer) label from consent question (#19166)
1081 - Remove (easier) and (safer) label from consent question (tails/tails#19166)
1084 - Test suite: update wrt. new UI strings
1085 - Remove (easier) and (safer) label from consent question (#19166)
1087 * fix snakeoil certificates in Thunderbird test suite (tails/tails!943)
1090 - Fix and re-enable "I can send emails, and receive emails over IMAP" automated
1091 test: Certificate handling on Jenkins needs updating for Thunderbird 102
1095 - add snakeoil to thunderbird using certutil
1096 - reneable test by default
1097 - Revert "Really disable broken Thunderbird test"
1099 * extend validity time check for OpenPGP keys (tails/tails!939)
1102 - Extend period for "The included OpenPGP keys are up-to-date"
1106 - extend validity time check for OpenPGP keys
1108 * Fetch Tor Browser from our own archive (tails/tails!938)
1111 - Fetch Tor Browser from our own archive
1113 -- Tails developers <tails@boum.org> Mon, 21 Nov 2022 11:13:06 +0100
1115 tails (5.6) unstable; urgency=medium
1117 * Upgrade Linux to 5.10.149 (tails/tails!935)
1120 - Fix beacown (tails/tails#19210)
1123 - Release process: bring back test that we can run locally, but not on Jenkins
1124 - Really disable broken Thunderbird test
1125 - Upgrade Linux to 5.10.149-1
1127 * Disable broken Thunderbird test (tails/tails!934)
1130 - Disable broken Thunderbird test
1132 * Upgrade Tor Browser to 11.5.5 (tails/tails!936)
1135 - Upgrade to Tor Browser 11.5.5 (ESR 91.13 + ESR 102.4 backports)
1139 - Upgrade Tor Browser to 11.5.5
1141 * post-release misc updates (tails/tails!932)
1144 - easier transmission-remote instructions
1145 - avoid re-downloading if restarting
1146 - better instructions for automated test suite
1148 * Thunderbird: remove obsolete oauth2 pref (tails/tails!929)
1151 - Thunderbird: remove obsolete oauth2 pref
1153 * Upgrader: when a manual upgrade is needed, point to the news & manual upgrade
1154 doc without specifying a (probably incorrect) version (tails/tails!915)
1157 - Tails Upgrader recommends manual upgrades to deprecated versions
1161 - Make /latest inline the translated version of the release notes
1162 - Rewrite in Markdown
1163 - Move latest release notes out of /news
1165 - Point to release notes of latest version only
1166 - Upgrader: when a manual upgrade is needed, point to the news & manual upgrade
1167 doc without specifying a version
1169 -- Tails developers <tails@boum.org> Mon, 24 Oct 2022 08:06:36 +0000
1171 tails (5.5) unstable; urgency=medium
1173 * Upgrade to Tor Browser 11.5.4 (ESR 91.13 + ESR 102.3 backports)
1177 - Upgrade to Tor Browser 11.5.4 (ESR 91.13 + ESR 102.3 backports)
1181 - Fetch Tor Browser from our own archive
1182 - Upgrade Tor Browser to 11.5.4-build2
1184 * Upgrade to Thunderbird 102 (tails/tails!928)
1187 - Upgrade to Thunderbird 102 (tails/tails#19156)
1190 - adapt test suite to new UI
1191 - JS hardening in Thunderbird
1193 - Update Thunderbird patches from
1194 tails/thunderbird@4efe2ce285c552c1808120d54a11f4be9e57527f
1195 - Update Thunderbird patches from
1196 tails/thunderbird@4efe2ce285c552c1808120d54a11f4be9e57527f
1197 - Thunderbird patches update doc: update examples
1198 - Thunderbird patches update doc: push upstream tags too
1199 - Thunderbird patches update doc: document how to verify
1200 - Thunderbird patches update doc: add missing commit and push steps
1201 - Thunderbird patches update doc: don't suggest we're still trying to upstream
1203 - Thunderbird patches update doc: adjust to Bullseye
1206 * import-translations: use new remote (tails/tails!927)
1209 - App translations supported by Tor Project moving from Transifex to weblate
1213 - import-translations: drop support for standalone WhisperBack project
1214 - import-translations: use new remote
1216 * GitLab CI: ensure all website core pages exist (tails/tails!926)
1219 - Make code more readable
1220 - GitLab CI: ensure all website core pages exist
1222 * GitLab CI: build our website on master and branches targeting master
1226 - GitLab CI: build our website on master and branches targeting master
1227 - build-website: remove check now done in GitLab CI
1229 * Test suite: remove Cucumber test scenarios and build website checks that are
1230 now covered by GitLab CI (tails/tails!923)
1233 - Remove Cucumber test scenarios that are now covered by GitLab CI
1237 - build-website: remove check now done in GitLab CI
1238 - Test suite: remove Cucumber test scenarios that are now covered by GitLab CI
1240 * Upgrade to Bullseye 11.5 and Linux 5.10.140 (tails/tails!920)
1243 - Upgrade Linux to 5.10.140 (tails/tails#19127)
1244 - Upgrade to Bullseye 11.5 (tails/tails#19082)
1247 - Test suite: relax timeouts
1248 - Test suite: bump timeout
1250 - Upgrade to Bullseye 11.5 and Linux 5.10.140
1252 * Test suite: fix virt-viewer active?() check to work with all versions
1256 - virt-viewer 11.0 breaks our test suite (tails/tails#19064)
1259 - Test suite: fix virt-viewer active?() check to work with all versions
1261 * Fix screen lock keyboard shortcut (tails/tails!918)
1264 - Super+L sometimes starts the screensaver when it should ask for a screen lock
1265 password (tails/tails#19090)
1268 - Fix screen lock keyboard shortcut
1270 * Test suite: make localized Unsafe Browser tests faster and easier to maintain
1274 - Localized Unsafe Browser tests are slow and hard to maintain
1278 - Test suite: add comment
1279 - Make Gherkin scenario outline placeholder more descriptive
1280 - Test suite: make localized Unsafe Browser tests faster and easier to maintain
1281 - Test suite: remove dead code
1283 * Add standard fields to /etc/os-release (tails/tails!914)
1286 - Add standard fields to /etc/os-release
1288 * Build system: make our website cache volume smaller (tails/tails!913)
1291 - Build system: make our website cache volume smaller
1293 * Use "torsocks --isolate" everywhere we use torsocks (tails/tails!912)
1296 - Use "torsocks --isolate" everywhere we use torsocks
1298 * Fix devel FTBFS with uBlock 1.44.0+dfsg-1 (tails/tails!910)
1303 * Post-release doc updates (tails/tails!907)
1306 - call for testers has meaningful date
1307 - warning: tb-build-05 not serving files over HTTP
1308 - cleanup script that waits for new TBB release
1310 * GitLab CI: run the Bandit security oriented static analyzer for Python
1314 - Check re.match's return value in a way that always returns a boolean
1315 - Add typing information
1316 - GitLab CI: also check shell and Python files that have no shebang
1317 - GitLab CI: run the Bandit security oriented static analyzer for Python
1318 - Lint comments format
1319 - Ignore Bandit false positives
1320 - Remove obsolete Emacs "coding: UTF-8" configuration
1321 - WhisperBack: only load global configuration file
1322 - Add configuration for the Bandit security oriented static analyzer for Python
1324 * Make it easy to re-run failed test suite scenarios (tails/tails!901)
1327 - run_test_suite wrapper that retries failed tests (tails/tails#19072)
1330 - RM tip: run all test scenarios
1331 - RM tip: multiple test suite runs overnight
1332 - set rerun file from ruby
1334 -- Tails developers <tails@boum.org> Thu, 13 Oct 2022 11:55:08 +0200
1336 tails (5.4) unstable; urgency=medium
1338 * Upgrade Tor Browser to 11.5.2 (tails/tails!908)
1341 - Upgrade to Tor Browser based on 91.13 (tails/tails#19073)
1344 - automatic redirect to HTTPS, here we meet again
1345 - Upgrade Tor Browser to UNVERIFIED 11.5.2-build1
1347 * Upgrade Linux packages to 5.10.0-17, currently at version 5.10.136
1351 - Handle CVE-2022-2585 (POSIX CPU timer UAF) (tails/tails#19081)
1354 - Upgrade Linux packages to 5.10.0-17, currnetly at version 5.10.136
1356 * Disable HTTPS-only mode in Unsafe Browser (tails/tails!906)
1359 - Disable HTTPS-only mode in Unsafe Browser (tails/tails#19095)
1362 - disable HTTPS-only mode for unsafe browser
1364 * Upgrade tor to 0.4.7.10 (tails/tails!903)
1367 - Upgrade to tor 0.4.7.10 (tails/tails#19083)
1370 - Don't mention irrelevant implementation detail
1371 - Avoid initially pushed branch failing its pipeline
1372 - Drop obsolete step
1373 - Upgrade tor to 0.4.7.10
1375 * Resolve "Some time sync related automated tests fail when run on a system whose
1376 system clock is not in UTC" (tails/tails!902)
1379 - Some time sync related automated tests fail when run on a system whose system
1380 clock is not in UTC (tails/tails#19070)
1383 - uses UTC time even on non-UTC systems
1385 * Misc kernel hardening (tails/tails!899)
1388 - Kernel hardening: restricts loading TTY line disciplines (tails/tails#18302)
1389 - Enable page allocator freelist randomization (tails/tails#18886)
1390 - Consider dropping slub_debug=P and page_poison=1 options and let init_on_free
1391 wipe slab and page allocations (tails/tails#18858)
1394 - Kernel hardening: restricts loading TTY line disciplines
1395 - Kernel: enable page allocator freelist randomization
1396 - Remove obsolete kernel command line options
1398 * Actually stop NetworkManager before applying an upgrade (tails/tails!896)
1401 - Remove obsolete comment
1402 - Use systemctl(1) instead of service(8)
1403 - Actually stop NetworkManager before applying an upgrade
1405 * Test suite: fix Unsafe Browser localization tests (tails/tails!867)
1408 - testing unsafebrowser is more deterministic
1409 - add spanish start page image for unsafe browser
1410 - add portuguese start page image for unsafe browser
1411 - debug unsafe browser errors
1413 -- Tails developers <tails@boum.org> Wed, 24 Aug 2022 13:18:27 +0200
1415 tails (5.3.1) unstable; urgency=medium
1417 * Upgrade Linux to 5.10.127-2 (DSA-5191)
1418 * Upgrade Thunderbird to 91.12.0 (DSA-5195)
1420 -- Tails developers <tails@boum.org> Mon, 01 Aug 2022 23:19:49 +0000
1422 tails (5.3) unstable; urgency=medium
1424 * Upgrade to Tor Browser 11.5.1, bring back uBlock, and fix the Unsafe Browser's
1425 window title (tails/tails!894)
1428 - uBlock is not enabled in Tor Browser (tails/tails#19059)
1429 - Upgrade to Tor Browser based on ESR 91.12 (tails/tails#19058)
1430 - Window title of Unsafe Browser reads "Tor Browser" (tails/tails#18603)
1433 - Tor Browser: use the system's libstdc++.so.6 like upstream would on a Bullseye
1435 - update-acng-config: get ready for 6.x
1436 - Remove hack that's not needed on Bullseye anymore
1438 - Make cp behavior deterministic
1439 - htpdate pool 2: replace fragile thepiratebay.org with www.gnome.org
1440 - Bring back code needed to install uBlock
1441 - Create directory before copying into it
1442 - Browsers: also pass --name to Firefox
1443 - Reformat code: make room for more options and nicer Git diffs
1444 - Unsafe Browser: also set brandProductName to "Unsafe Browser", for consistency
1445 - Unsafe Browser: set the branding in the file that's actually used in current
1447 - Fetch Tor Browser from our own archive
1448 - Upgrade Tor Browser to 11.5.1-build1
1450 * Test suite: misc. improvements (tails/tails!892)
1453 - Test suite sometimes fails to find a picture (e.g. TailsGreeterLoginButton.png)
1454 while it's present on screen (tails/tails#19044)
1457 - Test suite: also display stdout on vmcommand failure
1458 - Test suite: bump timeout
1459 - Test suite: fix typo in comment
1460 - Welcome Screen: remove unused import
1461 - Test suite: point to relevant issue
1462 - Test suite: wait more for some images
1463 - Test suite: have Screen#find wait longer
1464 - Test suite: add debug logging to investigate #19044
1465 - Test suite: fix variable name
1466 - Test suite: give some time to the persistence passphrase widget to get focus
1467 - Use named constants instead of magic numbers
1468 - Don't catch unrelated IndexError exceptions
1470 - Remove unused import
1471 - Test suite: fix, improve, and update comments
1472 - Test suite: set the time in the guest using timedatectl
1473 - Make host_to_guest_time_sync raise an exception on failure
1476 * Upgrade to Debian Bullseye 11.4, Linux 5.10.127, and Network Manager 1.30.6
1480 - Upgrade to Debian Bullseye 11.4 (tails/tails#19046)
1484 - Update Vagrant box to Debian Bullseye 11.4
1485 - Enable the 19046-bullseye-11.4-force-all-tests APT overlay (refs: #19046).
1486 - Upgrade to Linux 5.10.0-16 (currently at 5.10.127-1)
1487 - Upgrade to Debian Bullseye 11.4
1489 * Upgrade mat2 to 0.12.1-2+deb11u1
1491 -- Tails developers <tails@boum.org> Mon, 25 Jul 2022 13:45:07 +0200
1493 tails (5.2) unstable; urgency=medium
1495 * Upgrade Thunderbird to 91.11.0
1497 * Upgrade Tor Browser to 11.5 (tails/tails!889)
1500 - Upgrade to Tor Browser based on Firefox 91.11 (tails/tails#19029)
1503 - more bumping tor browser
1504 - bump torbrowser images
1506 - manual bump TorBrowserOverviewIcon.png
1507 - some more image bumping
1508 - l10n screenshot updated
1509 - bump duckduckgo prompt image
1510 - adapt tor browser screenshot
1511 - Fetch Tor Browser from our own archive
1512 - Upgrade Tor Browser to 11.5
1513 - Revert "NIGHTLY ONLY! REMOVE ME!"
1514 - clean nightly dirt
1515 - install langpacks for nightlies, too (if possible)
1516 - NIGHTLY ONLY! REMOVE ME!
1517 - Revert "disable OnionAliases for Unsafe Browser"
1518 - use new TBB setting to disable onionrewrites altogether
1519 - take tbb 11.5 from nightlies
1520 - disable OnionAliases for Unsafe Browser
1521 - Upgrade Tor Browser to 11.5a13-build2
1523 * Adapt release process to new Tor blog platform (tails/tails!887)
1526 - Change release process details for blog.torproject.org (tails/tails#18963)
1530 - Release process: suggest publishing a Tor blog even for bugfix releases
1531 - Release process: improve Tor blog post instructions
1532 - generate-Tor-blog-post: use actual template and also generate the Lektor header
1533 - generate-Tor-blog-post: refactor (extract code to function)
1534 - generate-Tor-blog-post: remove inline images too
1535 - Release process: adapt the Tor blog post process to Lektor
1536 - generate-Tor-blog-post: fix ikiwiki command
1538 * GitLab CI: clean up and refactor https-get-expired jobs (tails/tails!884)
1541 - GitLab CI: force running jobs when updating .gitlab-ci.yml
1542 - GitLab CI: factorize
1543 - GitLab CI: install golang in the same way we do during a Tails build
1544 - GitLab CI: remove duplicate call to "apt-get update"
1545 - GitLab CI: drop obsolete pinning to Buster
1547 * Git: ignore the early_patch= (aka. --early-patch) hook (tails/tails!882)
1550 - Git: ignore the early_patch= (aka. --early-patch) hook
1552 * Resolve "IUK test suite: features/frontend is broken (tails-transform-mirror-
1553 url fails)" (tails/tails!880)
1556 - IUK test suite: features/frontend is broken (tails-transform-mirror-url fails)
1560 - IUk test suite: Set Torsocks to allow outbound connections to the loopback
1562 - IUK test suite: Add test file
1563 - IUK test suite: disable certificate verification
1565 * Test suite: fix copying a new directory with late patch (tails/tails!877)
1568 - Test suite: fix copying a new directory with late patch
1570 * Resolve "Test "The included APT repository keys are up-to-date" does not check
1571 subkeys" (tails/tails!876)
1574 - Test "The included APT repository keys are up-to-date" does not check subkeys
1578 - check we have at least one *relevant* subkey
1579 - gpg checks deeper: both master keys and subkeys
1581 - Revert "Revert "check APT subkeys, too""
1583 * Test suite: misc bugfixes (tails/tails!872)
1586 - Test suite: also set the guest's time when connected to the LAN but not to Tor
1587 - Test suite: move sleep where it was supposed to be
1589 * workaround persistent Tor bridges bug (tails/tails!870)
1592 - Tor Bridges persistence sometimes fails to save bridges during initial setup on
1593 Bullseye, at least in our test suite (tails/tails#18926)
1596 - workaround for bug only present in test suite
1598 * check APT subkeys, too (tails/tails!869)
1601 - Test "The included APT repository keys are up-to-date" does not check subkeys
1605 - check APT subkeys, too
1607 * Set Samba workgroup used by GTK applications to "localhost" (tails/tails!865)
1610 - Several applications ask Tor to resolve the "workgroup" hostname
1614 - Set Samba workgroup used by GTK applications to "localhost"
1616 -- Tails developers <tails@boum.org> Mon, 11 Jul 2022 08:13:08 +0000
1618 tails (5.1.1) unstable; urgency=medium
1620 * Upgrade Linux to 5.10.120-1 and tor to 0.4.7.8 (tails/tails!863)
1623 - Upgrade to tor 0.4.7.8 (tails/tails#19035)
1624 - Upgrade Linux to 5.10.120-1 (tails/tails#19036)
1627 - Upgrade Linux kernel packages to 5.10.0-15 (currently at version 5.10.120-1)
1628 - Upgrade to tor 0.4.7.8
1630 * Upgrade to Thunderbird 91.10.0
1632 * Fix htpdate pool: https://www.mozilla.org returns incorrects Date header
1636 - Fix htpdate pool: https://www.mozilla.org returns incorrects Date header
1640 - Fix htpdate pool: https://www.mozilla.org returns incorrects Date header
1642 * Test suite: update the set of @fragile tags (tails/tails!862)
1645 - "Persistent browser bookmarks" is fragile (tails/tails#11585)
1646 - "The persistent Tor Browser directory is usable" test suite scenario is fragile
1648 - The "is properly stream isolated" test suite mechanism is fragile
1650 - Step "a screenshot is saved to the live user's Pictures directory" is fragile
1652 - "I can view and print a PDF file" scenarios are fragile (tails/tails#10994)
1653 - Memory erasure on boot medium removal is fragile (tails/tails#13462)
1654 - Test suite: update the set of @fragile tags (tails/tails#19007)
1657 - add @fragile tags when it's useful
1658 - Remove many @feature tags
1660 * follow up again on tca audit: clarify comments (tails/tails!860)
1663 - Audit tca-portal (tails/tails#18374)
1666 - acknowledge jvoisin's comments
1668 * Test suite: exercise the screen keyboard with a key that won't auto-complete
1672 - "the screen keyboard works in Tor Browser" fails in Arabic (tails/tails#19013)
1675 - Test suite: exercise the screen keyboard with a key that won't auto-complete
1677 * GitLab CI: improve jobs rules (tails/tails!856)
1680 - GitLab CI: don't run code tests on the master branch
1681 - GitLab CI: also run https-get-expired* jobs when we modify our htpdate
1683 - GitLab CI: only run https-get-expired when relevant
1685 * Inline strtobool function (tails/tails!855)
1688 - Inline strtobool function
1690 * Test suite: improve robustness (tails/tails!851)
1693 - Developers need to apply workaround in order to build Tails during the release
1694 process (tails/tails#18998)
1695 - Test scenario "htpdate is using the Tails-specific SocksPort" is broken
1699 - Test suite: avoid missed clicks retry when opening the calendar & notifications
1701 - Test suite: give the Upgrader time to fill the zenity dialog
1702 - Test suite: give the Greeter some time to re-enable the login button
1703 - Fix building from dev branches during the release process
1704 - Test suite: don't reset virtual X display between clients
1705 - Test suite: hopefully increase chances we catch the process we want
1707 - Test suite: ensure we write every line extracted from "ss -taupen" as soon as
1709 - Test suite: migrate from service(8) to directly using systemctl
1710 - Test suite: adapt to new HTTPS client used by htpdate
1711 - Test suite: make setting up a Pidgin account more robust
1712 - Test suite: make interaction with GNOME Disks title bar buttons more robust
1713 - Test suite: make copying'n'pasting into a Terminal more robust
1715 * Have a better footer (tails/tails!756)
1718 - Translate a couple strings to check sidebar2 vs. PO plugin
1721 - Link to accessibility from footer
1722 - Rescue translations
1725 - Use sidebar2 to replace translation hacks in templates
1726 - Integrate sidebar2 in the local build
1727 - Add missing ARIA label
1728 - Make the label bold
1729 - Improve the appeal to the newsletter (#16888)
1730 - Translate footer into Spanish
1732 - Move jobs from top navigation to footer
1733 - Use more consistent margin system
1734 - Have a better footer (#17699)
1735 - Create dedicated page for testimonials
1736 - Don't use all capitals (#16137)
1738 * early-patch: live-patch at initramfs's time (tails/tails!696)
1742 - Fix documentation wrt. the name of the option actually passed
1743 - Document --late-patch
1744 - more documentation
1745 - works even if hook fails
1746 - early_patch from test suite umounts immediately
1747 - pass 9p fs to TailsToaster: --early-patch works
1748 - live-patch → late-patch
1749 - early-live-patch → early-patch
1750 - Test suite: make EARLY_LIVE_PATCH a boolean
1751 - Disable obsolete shellcheck override
1752 - Don't enable live_patch by default
1753 - Make headings levels consistent with the rest of our website
1755 - Apply 4 suggestion(s) to 1 file(s)
1756 - run_test_suite --early-live-patch
1757 - developer documentation for live_patch
1758 - live_patch: early-patching system
1760 -- Tails developers <tails@boum.org> Wed, 22 Jun 2022 11:31:52 +0000
1762 tails (5.1) unstable; urgency=medium
1764 * Upgrade to Thunderbird 91.9.0
1766 * Upgrade to Tor Browser 11.0.14 based on Firefox 91.10 (tails/tails!852)
1769 - Upgrade to Tor Browser 11.0.14 based on Firefox 91.10 (tails/tails#18979)
1772 - htpdate: replace tachanka.org with www.autistici.org
1773 - Mark security advisory against 5.0 as fixed
1774 - Fetch Tor Browser from our own archive
1775 - Upgrade Tor Browser to 11.0.14-build1
1777 * Resolve "displayed_time_str fails in test suite" (tails/tails!839)
1780 - displayed_time_str fails in test suite (tails/tails#18991)
1783 - Ignore advisories when looking for displayed time
1786 * FIX Clock disappearing when the user sets UTC as their local timezone
1790 - Clock disappears from the GNOME top bar after "Fix the clock" and choosing UTC
1791 timezone (tails/tails#18993)
1794 - safety net for future problems
1795 - handle UTC special-case
1797 * Test suite: workaround lost and duplicate key presses by pasting long strings
1798 instead of typing them (tails/tails!821)
1801 - Test suite: merge step used only by another step into its caller
1802 - Test suite: paste long strings instead of typing them
1803 - Test suite: drop useless step
1804 - Test suite: refactor (extract code to method)
1806 * Test suite: Make opening GNOME menus more robust (tails/tails!816)
1809 - Opening GNOME menus in the test suite on Bullseye is very fragile
1813 - Test suite: try harder to open GNOME menus
1814 - Test suite: drop unnecessary delay
1815 - Test suite: use Dogtail to check presence of GNOME bookmarks
1816 - Test suite: use Dogtail to open the GNOME menus
1817 - Test suite: wait for the desktop to be visible before we interact with it after
1818 restoring a snapshot
1821 * Upgrade to Linux 5.10.113-1 (DSA 5127-1) (tails/tails!813)
1824 - Upgrade Linux to 5.10.113-1 (DSA 5127-1) (tails/tails#18962)
1827 - Upgrade to Linux 5.10.113-1 (DSA 5127-1)
1829 * Make console-setup.service startup non-racy (tails/tails!811)
1832 - console-setup.service fails sometimes, which breaks "Tor is ready" in test
1833 suite (tails/tails#18636)
1836 - Make console-setup.service startup non-racy
1838 * Test suite: support running on Ruby 3.0 (tails/tails!810)
1841 - Test suite misbehaves on Ruby 3.0, e.g. "the Tor Connection Assistant connects
1842 to Tor" step always incorrectly fails (tails/tails#18904)
1845 - Test suite: ensure we don't try to click the "Restore Disk Image" button before
1847 - Test suite: support Bookworm host system's improved UEFI graphics
1848 - Test suite: enable Ruby deprecation warnings
1849 - Test suite: adjust to separation of positional and keyword arguments in Ruby
1851 - Test suite: update button label for Bullseye
1852 - Remove duplicate word in comment
1853 - Test suite: drop workaround for Ruby < 2.7
1854 - Test suite: migrate from deprecated luks_open and luks_close to
1855 cryptsetup_{open,close}
1857 * test https-get-expired with sid's Go (tails/tails!849)
1860 - GitLab CI: only run https-get-expired-sid job when relevant
1861 - GitLab CI: factorize
1862 - GitLab CI: test https-get-expired with sid's Go on a sid image
1863 - also test https-get-expired with sid's golang
1865 * Vagrant: install ikiwiki that fixes #18992 (tails/tails!847)
1868 - ikiwiki generates buggy PO files with po4a 0.62 (tails/tails#18992)
1871 - Vagrant: stop using the obsolete builder-jessie APT suite
1872 - Vagrant: install ikiwiki that fixes #18992
1874 * tca-portal: stricter validation (tails/tails!846)
1877 - test: right length, valid for date(1), but invalid format
1878 - drop test case for "minutes" timespec
1879 - be more explicit about the format we want
1880 - seconds always included
1881 - stricter validation for SetTimeCommand
1883 * ignore advisories + better debug (tails/tails!845)
1889 * Test suite: fix regression when testing Tor Connection in non-English locale
1893 - Test suite: fix regression when testing Tor Connection in non-English locale
1895 * FIX sharing via onionshare from nautilus (tails/tails!840)
1898 - "Share via OnionShare" does nothing (tails/tails#18990)
1901 - FIX sharing via onionshare from nautilus
1903 * lint_po: ignore unknown-message-flag errors (tails/tails!836)
1906 - lint_po: ignore unknown-message-flag errors
1908 * Don't enable "configure a bridge" just because the user looked at the hide mode
1912 - “Configure a Bridge” is enabled when rolling back from hiding Tor
1916 - regression test for #18546
1917 - enable easymode-bridges only in easy mode
1919 * Vagrant build box: upgrade to po4a 0.62-1 (tails/tails!834)
1922 - Vagrant build box: drop APT configuration for Buster
1923 - Vagrant build box: upgrade to po4a 0.62-1
1925 * Installer: create system partition 2 MiB from the beginning of the drive
1929 - Installer: create system partition 2 MiB from the beginning of the drive
1931 * Various Tor Connection UX improvements (tails/tails!831)
1934 - Tor Connection: Give the same instructions on both bridge screens
1936 - Always tell whether bridges are used in the success screen (tails/tails#18547)
1940 - Test suite: update expected images
1941 - Make phrasing consistent
1943 - refactor: properties allow our code to be clearer
1944 - bridges: same instructions on both screens
1945 - Success message conditional to bridges
1947 * Rewrite the home pages of the Unsafe Browser + Have different homes for the
1948 Unsafe Browser depending on whether we're connected to Tor already
1952 - Have different homes for the Unsafe Browser depending on whether we're
1953 connected to Tor already (tails/tails#18601)
1954 - Rewrite the home pages of the Unsafe Browser (tails/tails#18602)
1963 - Add illustration by Andrés
1964 - Test suite: remove obsolete localized images
1965 - Test suite: update expected image
1966 - Test suite: add missing @doc tag
1967 - FIX wrong path was checked
1968 - Clarify that the image is an example
1969 - Clarify use of CSS (Take 2)
1970 - Unsafe browser: home page if non connected to Tor
1971 - Clarify use of CSS
1974 - Write a dedicated page for captive portals
1975 - Improve instructions
1976 - Give examples of websites to use
1977 - Use our own image and remove the login and password
1980 * Test suite: misc. robustness improvements (tails/tails!827)
1983 - Tests for backup are fragile (tails/tails#18727)
1986 - Test suite: add localized expected image for Unsafe Browser start page in pt_BR
1987 - Test suite: enable debug logging for Screen#wait
1988 - Test suite: Fix frequent "cannot find TailsGreeterLoginButton.png" failures
1989 - Test suite: update expected image for Bullseye
1990 - Test suite: give the XMPP server some time to create the room
1991 - Test suite: update expected Pidgin images
1992 - Test suite: fix error message
1993 - Test suite: Improve error reporting
1994 - Test suite: Fix clock upper bound calculation
1995 - Test suite: refactoring (save value to variable)
1996 - Test suite: Drop most debugging info for issue that does not happen anymore
1997 - Test suite: Drop spurious verb in debug log
1998 - Revert "Mark test scenario as fragile"
1999 - Test suite (backup): Wait for Zenity to have filled its widgets with the
2002 * Upgrade apt-cacher-ng to bullseye-backports - fixes issue #18931
2006 - rake build fails - apt-get works erratically ( 502 connection closed
2007 [IP:127.0.0.1:3142] ) - No build artifacts were found! (tails/tails#18931)
2010 - Upgrade apt-cacher-ng to bullseye-backports.
2012 * Disable search providers in the Activities Overview: Calculator, Nautilus,
2013 Terminal (tails/tails!824)
2016 - Disable some GNOME Overview search providers (tails/tails#18952)
2019 - Disable search providers in the Activities Overview: Calculator, Contacts,
2020 Documents, Nautilus, Terminal
2022 * Test suite: ignore failures to destroy a stopped domain (tails/tails!822)
2025 - Scenario: "Upgrading an old Tails USB installation from another Tails USB
2026 drive" after-hook is racy (tails/tails#18972)
2029 - Test suite: ignore failures to destroy a stopped domain
2031 * Associate OpenPGP-encrypted files with Kleopatra (tails/tails!820)
2034 - Tails 5 does not decrypt .gpg files when double-clicking them
2038 - Associate OpenPGP-encrypted files with Kleopatra
2040 * safely get gnome_env_vars (tails/tails!819)
2043 - clarify about which environment is being dumped
2045 - Fix typo in comment
2046 - comments clarify why we think we are safe
2048 - gnome_env_vars look at the gnome-shell env dump
2049 - gnome-shell dumps its conf in a root-owned file
2051 * Avoid user confusion wrt. name of the default KeePassXC database
2055 - KeePassXC offers to rename the default database on non-English locales
2059 - Silence false positive
2060 - Drop obsolete reason
2061 - Don't allow translating Passwords.kdbx
2063 * Use Bullseye debootstrap configuration (tails/tails!817)
2066 - Use Bullseye debootstrap configuration
2068 * FIX IUK verification when we have 2 series at the same time (tails/tails!815)
2071 - bin/copy-iuks-to-rsync-server-and-verify failing because of old releases
2075 - Apply 1 suggestion(s) to 1 file(s)
2076 - document how the RM should use this command
2077 - don't fail when 404s have been ignored
2078 - proper exit code on failure
2079 - refactor --ignore-404
2082 - 404s found -> non-zero exit code
2083 - --ignore-404 and --dry-run
2085 * Fix FTBFS with uBlock 1.42 (tails/tails!814)
2090 * Upgrade to tor 0.4.7.7 (tails/tails!812)
2093 - Upgrade to tor 0.4.7.x (tails/tails#18932)
2096 - Upgrade to tor 0.4.7.7
2098 * Add translation files for Qt5 (#18958) (tails/tails!808)
2101 - Translations of basic Qt5 strings are missing (tails/tails#18958)
2104 - Add translation files for Qt
2106 * Make news/version_3* non-translatable (#16758) (tails/tails!805)
2109 - Make news/version_3* non-translatable (#16758)
2111 * Add Kleopatra to the Favorites (tails/tails!802)
2114 - Test suite: make expected image a tiny bit smaller
2115 - Add Kleopatra to the Favorites submenu
2117 * Test suite: drop pre-Bullseye compatibility (tails/tails!789)
2120 - Test suite: drop workaround for Ruby < 2.7
2121 - Test suite: migrate from deprecated luks_open and luks_close to
2122 cryptsetup_{open,close}
2124 * Add to confirm before restarting (#18912) (tails/tails!782)
2127 - New dialog when Unsafe Browser is not enabled makes it too easy to lose work
2131 - Make code more readable
2132 - Make function's responsibility tighter to simplify its code
2133 - Handle new code branch that was forgotten
2134 - Fix local variables declaration
2135 - Use 'Cancel' as default button (#18912)
2136 - 'Cancel' is more standard
2137 - Add to confirm before restarting (#18912)
2139 * Display time in the timezone that the user has chosen in Tor Connection
2143 - Display time in the timezone that the user has chosen in Tor Connection
2147 - Design doc: Explain security trade-off
2148 - Test suite: Explain that Asia/Shanghai == +08:00
2149 - tails-get-date: use Python instead of date(1)
2150 - Fix typo in error message
2151 - Test suite: ensure the displayed clock is in the user's timezone
2152 - Test suite: remove workaround
2153 - Test suite: refactor (extract code do method)
2154 - Test suite: be more defensive to give better error output
2155 - Test suite: send debug info to the debug log
2156 - Test suite: make step name clearer
2157 - Design doc: mention timezone status and plans
2158 - Apply 1 suggestion(s) to 1 file(s)
2159 - Fix typo in comment
2162 - Remove unnecessary comma
2163 - try to fix the vertical misalignment
2165 - Link back to main page
2166 - https://www.merriam-webster.com/dictionary/time%20zone
2167 - Move FAQ to a dedicated page
2169 - Don't potentially overwrite TZ key in dict with environment's value.
2170 - Cleanup dead code, fix formatting.
2171 - Consistently display GMT instead of UTC.
2172 - Use the same time format as GNOME's clock.
2173 - use date to format the date
2174 - date@ extension does The Right Thing
2175 - DRAFT: display time in local timezone
2177 * Follow-up on "Audit tca-portal" (tails/tails!723)
2180 - useless shellcheck directive
2181 - Apply 2 suggestion(s) to 2 file(s)
2182 - Fix typo in comment
2183 - clarify how we believe pgrep --ns 1 will help us
2184 - PersistenceSetupCommand: gnome_env_vars not needed
2185 - export_gnome_env hardening
2186 - some more validation when setting system time
2187 - gnome.py executes later; required for testing
2188 - add some doctests to tca-portal
2189 - more tuples, less lists
2190 - clarify: we are fine with the TOCTOU
2191 - --systemd-socket is exclusive with --listen
2192 - be more explicit about stdout/stderr handling
2193 - clarify handle_* comments
2194 - clarify what is the role of handle_line
2195 - anchor SetTimeCommand regexp
2196 - clarify comment about validate_args
2197 - use full path to commands whenever possible
2199 * Automatic time sync before connecting to Tor in automatic mode
2203 - Mitigate attack by active network adversary on automated time sync + replayed
2204 Tor consensus (tails/tails#18830)
2205 - Automatic time sync before connecting to Tor in automatic mode
2209 - Test suite: rename step to make it closer to what a user would do
2210 - use the non-deprecated version of "Tor is ready"
2212 - Add missing word in comment
2213 - Update comment: this now build reproducibly
2215 - fix undefined local variable
2216 - tails-get-network-time better syslog
2217 - tails-get-network-time has timeout
2218 - refactor old test case based on new functions
2219 - new test: time sync times out
2220 - tor connection runs even if timesync fails
2222 - some info is shown during network time sync
2224 - wait for time to be retrieved before starting Tor
2225 - use APT preferences, not --target-release
2226 - gitlab tests run with the correct Go version
2227 - public key type check
2228 - Explain why these if statements don't apply to us
2230 - Design doc: 2 out of 3 is enough since we're using the median
2232 - test all urls in htpdate.pools
2233 - https-get-expired gets more testing
2234 - https-get-expired: explain how this compares to Go implementation
2235 - Test suite: explain why scenarios pass in a somewhat surprisingly manner
2238 - Design doc: explain why we accept a risk
2239 - Design doc: improve phrasing
2240 - Design doc: drop conditional
2241 - Design doc: explain why we're protected
2242 - Design doc: clarify phrasing
2243 - Update design doc: this is not a problem anymore
2244 - reproducibility: clean cache after compiling
2246 - htpdate performs the median
2247 - design doc: explain https-get-expired
2249 - Pick Go from buster-backports
2250 - try to make go build reproducible: -trimpath
2251 - Test suite: mark fragile scenario as such
2252 - https-get-expired: CI tests now
2253 - test https-get-expired building
2254 - https-get-expired gains -proxy option
2255 - port htpdate to https-get-expired
2256 - https-get-expired: more similar to htpdate's curl
2257 - https-get-expired output headers, not body
2258 - fix go compilation
2259 - add https-get-expired: will need for time sync
2260 - "date in past" check is more robust
2261 - sanity check: the new date cannot be in the past
2262 - unsafe browser is checked for tor leaks
2263 - UnsafeBrowser correctly detects if we're online
2264 - checking DisableNetowrk is #18293-aware
2265 - Merge the new scenario with the old one
2266 - FIX restore: some snapshot has network but no Tor
2267 - UnsafeBrowser tests don't need Tor; scenarios--
2268 - FIX we don't even need to check Tor
2269 - Test suite: clarify what we're actually testing
2273 - Update doc to automatic time sync (#18717)
2274 - Improve structure of design doc
2276 - Design doc: copy more detailed explanation from the blueprint
2277 - Design doc: improve structure
2278 - Design doc: document new automatic time sync mechanism
2279 - Remove very old explanation
2280 - wording: we're looking for unneeded *exceptions*
2281 - Apply 5 suggestion(s) to 2 file(s)
2282 - FIX test case: allow it to use time sync
2283 - "flow through" supports fake connectivity check
2284 - FIX globally setting allowed DNS queries
2285 - refactor check for leaks
2286 - debugging leaks is easier
2287 - fix DNS query for easy mode
2288 - test suite self-correction warning
2289 - dns queries are allowed only when needed
2290 - +debug "traffic has only flowed through"
2291 - break the "Tor is ready" step in two
2293 - easy-mode allowed_hosts are set in tca_configure
2294 - explicitly allow connectivity check in many tests
2295 - fix time sync error simulation
2296 - fix exception wording
2297 - use DNS inspection to check for leaks
2298 - the FirewallHelper is DNS-aware
2300 - test "traffic only flows through" supports timesync
2301 - Add tests for time sync before Tor connects
2302 - Improve TCA test suite code
2303 - add vm script to upload/download files
2304 - tails-get-network-time: don't assume anything about body encoding
2305 - Raise exception instance, not class
2307 - tails-get-network-time: emulate NetworkManager's behavior more closely
2308 - Move hard-coded string to constant
2310 - tails-get-network-time: refactor
2312 - tails-get-network-time: migrate to pycurl, to make our fingerprint closer to
2314 - Store the network time server in a configuration file
2315 - Move code to main() function
2316 - Test suite: adjust to new automatic time sync feature
2317 - Test suite: drop workaround
2318 - Tor Connection: in automatic mode, set the system time from the network
2319 - tca-portal: implement a new get-network-time command
2320 - tca-portal: include stdout in responses
2322 -- Tails developers <tails@boum.org> Sat, 04 Jun 2022 08:11:47 +0000
2324 tails (5.0) unstable; urgency=medium
2326 * Upgrade Thunderbird to 91.8
2328 * Upgrade Tor Browser to 11.0.11 (based on esr91.9) (tails/tails!804)
2331 - Test suite: update expected image
2332 - Test suite: update expected web page title
2333 - Fetch Tor Browser from our own archive
2334 - Upgrade Tor Browser to 11.0.11-build1
2336 * Fix Additional Software test suite on Bullseye (tails/tails!794)
2339 - Test suite: use popularity-contest as a test package instead of sslh
2341 * Fix devel branch FTBFS (tails/tails!773)
2344 - Preserve UIDs/GIDs stability
2345 - Refresh list of standard packages
2347 * Drop obsolete patch (tails/tails!690)
2350 - Drop obsolete patch
2352 * all languages are listed (tails/tails!683)
2355 - all formats are shown
2356 - translations appear again in Greeter
2357 - when native l10n is not available, use english
2358 - all languages are listed
2360 * Fix the Tails Installer in bullseye (tails/tails!679)
2363 - retry has shorter sleep times
2364 - FIX self.sleep never existed
2365 - retry getting udisks object upon failure
2366 - don't rescan devices: we already know!
2367 - partition_device returns a UDI
2368 - refactor detect_supported_drives
2369 - retrying getting system partition helps
2370 - race conditions? let's increase sleep time!
2372 * Document Kleopatra (tails/tails!803)
2381 - Mention Kleopatra in the Persistent Storage settings
2382 - Remove not-so-useful note
2383 - Document Kleopatra (Closes: #18933)
2384 - Remove Seahorse from the doc
2385 - Remove screenshots that need updating
2386 - Remove OpenPGP Applet from the doc
2387 - Patch screenshots for the removal of the OpenPGP Applet
2389 * Fix opening links and attachments from Thunderbird, disable LibreOffice tip of
2390 the day (tails/tails!793)
2393 - AppArmor Thunderbird profile: allow executing /bin/dash with inherited policy
2394 - Disable LibreOffice's tip of the day
2396 * fix whisperback sending error (tails/tails!787)
2399 - Thread.isAlive -> is_alive
2401 * Fix Scenario: Upgrading an old Tails USB installation from another Tails USB
2402 drive (tails/tails!765)
2405 - apparently fix tails/tails#18840
2406 - send tails installer log to syslog
2408 * Additional Software: synchronize APT data when needed directly from t-p-s
2412 - Test suite: restart Tails in the same way we expect the user to
2413 - Test suite: don't exit the persistence wizard once done, make saving settings
2415 - Test suite: refactoring (convert step to method)
2416 - Additional Software: synchronize APT data when needed directly from t-p-s
2417 - Remove XXX:Bullseye: this is not going to happen
2419 * Persistence: enable Additional Software by default (tails/tails!800)
2422 - Persistence Setup: adjust test suite to Additional Software being enabled by
2424 - Persistence: enable Additional Software by default
2426 * Let the user know they should wait while we are copying Additional Software to
2427 a new Persistent Storage (tails/tails!799)
2430 - Use phrasing proposed by sajolida
2431 - t-p-s: ensure the GUI is updated while we synchronize data to the new
2433 - Persistence setup: forbid clicking "Restart Now" twice in a row
2434 - Test suite: save a file listing of /var/cache/apt when a Additional Software
2436 - Let the user know they should wait while we are copying Additional Software
2437 data to a new Persistent Storage
2439 * htpdate.service is always started (tails/tails!796)
2442 - be more explicit about what we are testing
2443 - htpdate is started every time
2444 - some tests can be excluded from feature branches
2445 - add regression test for #18868
2446 - start htpdate.service earlier
2448 * Replace Seahorse and OpenPGP Applet with Kleopatra (tails/tails!792)
2451 - Ensure Seahorse icons are present when running the persistence-setup test suite
2452 - Persistent Storage: re-add custom icons for the GnuPG and SSH Client features
2453 - FT role definition: remove seahorse-nautilus
2454 - Contributors & design doc: drop OpenPGP Applet
2455 - Remove the topIcons GNOME Shell extension
2456 - Test suite: remove OpenPGP Applet tests, and the code & images they used
2457 - Re-add and update explanation for disabling ssh-agent
2458 - Remove broken patch
2459 - Remove Gettext stuff for Seahorse
2460 - Remove hooks about Seahorse and OpenPGP Applet
2461 - Replace our PGP tools with Kleopatra
2463 * Fix Bullseye-based Tails booting 20% slower than 4.x (tails/tails!791)
2466 - Freeze the AppArmor kernel feature set too
2468 * Stop trusting our old APT signing key (tails/tails!788)
2471 - Bump APT snapshots to versions signed with our new key
2472 - Test suite: stop ignoring our old APT key
2473 - Stop trusting our old APT signing key
2475 * Update live-build to include the local packages fix. (tails/tails!776)
2478 - Update live-build to include the local packages fix.
2480 * Tails Installer: retry getting partition table (tails/tails!767)
2483 - retry getting partition table
2485 * Update gdm-tails.json for Bullseye (tails/tails!689)
2488 - Add pointer accessibility support to gdm-tails.json
2489 - gdm-tails.json: remove panelStyle
2491 * Update VeraCrypt test suite for Bullseye (tails/tails!686)
2494 - Test suite: trim expected image to account for GNOME mounted volume
2496 - Give exchange USB drive more space
2497 - Test suite: update to new GNOME Disks UI
2498 - Test suite: update Nautilus application name
2499 - Test suite: update expected picture
2501 -- Tails developers <tails@boum.org> Mon, 02 May 2022 12:03:37 +0200
2503 tails (5.0~beta1) unstable; urgency=medium
2505 * Upgrade to Debian 11 (Bullseye).
2506 - Fixes opening a Veracrypt volume with a long passphrase (tails#17474)
2507 - NetworkManager now uses its internal DHCP client
2509 - Software upgrades:
2512 - bookletimposer 0.3
2516 - NetworkManager 1.30.0
2519 - Thunderbird 91.7.0-2~deb11u1
2522 * Upgrade Tor Browser to 11.0.10-build1 (tails#777)
2524 * Enable driverless printing and scanning (tails#18521)
2526 * Fix locales translation in the Welcome Screen (tails#18199, tails/tails!683)
2529 - all formats are shown
2530 - translations appear again in Greeter
2531 - when native l10n is not available, use english
2532 - all languages are listed
2534 * Drop hack to kill GDM on login, not necessary anymore on Bullseye (tails#17952)
2536 * Have tor log to the Journal (tails#18842)
2538 * Have NetworkManager and MAC spoofing ignore veth* network interfaces (tails#18443)
2540 * Drop deprecated printer-driver-hpijs (tails#18225)
2542 * Fix devel branch FTBFS (tails/tails!773)
2545 - Preserve UIDs/GIDs stability
2546 - Refresh list of standard packages
2548 * Drop obsolete patch (tails/tails!690)
2551 - Drop obsolete patch
2553 * Fix the Tails Installer in bullseye (tails/tails!679)
2556 - retry has shorter sleep times
2557 - FIX self.sleep never existed
2558 - retry getting udisks object upon failure
2559 - don't rescan devices: we already know!
2560 - partition_device returns a UDI
2561 - refactor detect_supported_drives
2562 - retrying getting system partition helps
2563 - race conditions? let's increase sleep time!
2565 * Fix Scenario: Upgrading an old Tails USB installation from another Tails USB
2566 drive (tails/tails!765)
2569 - apparently fix tails/tails#18840
2570 - send tails installer log to syslog
2572 * Additional Software: synchronize APT data when needed directly from t-p-s
2576 - Test suite: restart Tails in the same way we expect the user to
2577 - Test suite: don't exit the persistence wizard once done, make saving settings
2579 - Test suite: refactoring (convert step to method)
2580 - Additional Software: synchronize APT data when needed directly from t-p-s
2581 - Remove XXX:Bullseye: this is not going to happen
2583 * Update gdm-tails.json for Bullseye (tails/tails!689)
2586 - Add pointer accessibility support to gdm-tails.json
2587 - gdm-tails.json: remove panelStyle
2589 * Update VeraCrypt test suite for Bullseye (tails/tails!686)
2592 - Test suite: trim expected image to account for GNOME mounted volume
2594 - Give exchange USB drive more space
2595 - Test suite: update to new GNOME Disks UI
2596 - Test suite: update Nautilus application name
2597 - Test suite: update expected picture
2599 -- Tails developers <tails@boum.org> Mon, 04 Apr 2022 09:25:25 +0000
2601 tails (4.29) unstable; urgency=medium
2603 * Upgrade to Tor Browser 11.0.x based on Firefox 91.8 (tails/tails!777)
2606 - Upgrade to Tor Browser 11.0.x based on Firefox 91.8 (tails/tails#18874)
2609 - Fetch Tor Browser from our own archive
2610 - Upgrade Tor Browser to 11.0.10-build1
2612 * Upgrade Thunderbird to 91.7
2614 * Upgrade to obfs4proxy 0.0.12 (Elligator2 bug) (tails/tails!728)
2617 - Fix bug in obfs4proxy (Elligator2), upgrading to 0.0.12+ (tails/tails#18800)
2620 - Revert "Downgrade obfs4proxy to 0.0.12-dev from the Tor Browser 11.0.4 tarball"
2622 * htpdate: log to stdout even when a log file is specified (tails/tails!772)
2625 - htpdate: also log to the Journal (tails/tails#18895)
2628 - htpdate: log to stdout even when a log file is specified
2630 * Upgrade to Buster 10.12 and Linux 5.10.103-1 (tails/tails!771)
2633 - Upgrade to Buster 10.12 (tails/tails#18885)
2634 - Upgrade Linux to 5.10.103-1 (DSA-5095-1) (tails/tails#18877)
2637 - Drop unused KERNEL_SOURCE_VERSION variable
2638 - Upgrade to Buster 10.12 and Linux 5.10.106-1
2640 * Test suite: drop OTR tests (tails/tails!769)
2643 - "Pidgin automatically generates an OTR key" test suite step fails when host
2644 system is Bullseye (tails/tails#18866)
2647 - Test suite: rename otr-bot to xmpp-bot
2648 - Test suite: drop support for OTR
2649 - Test suite: drop OTR tests
2651 * Provide HTTPS link when JavaScript is disabled (#18559) (tails/tails!755)
2654 - Update release process
2656 - Provide HTTPS link when JavaScript is disabled (#18559)
2658 * Clarify purpose and timeline (tails/tails!744)
2661 - Add link to release notes on GitLab
2662 - Include technical writers in the procedure
2665 - Remember Technical Writers where to find the latest stable
2666 - Clarify purpose and timeline
2668 * Upgrade zlib1g to 1:1.2.11.dfsg-1+deb10u1 (DSA-5111-1)
2671 * doc updates after releasing 4.28 (tails/tails!742)
2674 - Use expected location of release notes
2675 - Easier technical-writers notification
2676 - clean RCs from rsync.lizard: command
2677 - twitter: less brain usage, more commands
2678 - clicking links is easier than thinking
2679 - RM: please communicate before clocking off
2680 - more parallelization: do tests while IUKs are building
2681 - lesson learned: read DSA mailing list
2682 - be sure you are on the right branch
2683 - importing PO often fails: let's explain why
2684 - check iuks/v2 exists: scripted
2686 -- Tails developers <tails@boum.org> Mon, 04 Apr 2022 13:21:09 +0200
2688 tails (4.28) unstable; urgency=medium
2690 * Upgrade to Tor Browser 11.0.7-build2 based on Firefox 91.7 (tails/tails!741)
2693 - Upgrade to Tor Browser 11.0.7 based on Firefox 91.7 (tails/tails#18853)
2696 - Fetch Tor Browser from our own archive
2697 - Upgrade Tor Browser to 11.0.7-build2
2699 * Upgrade to Thunderbird 91.6.1
2701 * Upgrade to tor 0.4.6.10 (tails/tails!737)
2704 - Upgrade to tor 0.4.6.10 (tails/tails#18835)
2707 - Upgrade to tor 0.4.6.10 (Closes #18835)
2709 * Enable obfs4proxy logging (tails/tails!734)
2712 - save obfs4proxy logs into artifacts
2713 - enable obfs4proxy debug logging
2714 - "obfs4proxy managed" is an option from the past
2716 * minor fixes to custom-apt-cruft-check (tails/tails!733)
2719 - custom-apt-cruft-check: output nicer Markdown
2720 - Give method a name closer to what it wraps
2722 - fix wrong variable name
2726 * Test suite: collect logs of tor & friends when we timed out waiting for TCA to
2727 connect (tails/tails!732)
2730 - Test suite does not save tor log on "Timed out while waiting for TCA to connect
2731 to Tor (Timeout::Error)" (tails/tails#18850)
2734 - Apply 2 suggestion(s) to 1 file(s)
2735 - Test suite: collect logs of tor & friends when we timed out waiting for TCA to
2738 * Test suite: ignore old APT repository signing key (tails/tails!731)
2741 - Test suite: ignore expiration date of 221F9A3C6FA3E09E182E060BC7988EA7A358D82E
2745 - Test suite: ignore old APT repository signing key
2747 * Test suite can test on the real Tor network (tails/tails!725)
2750 - Test behavior on the real Tor network (tails/tails#18847)
2753 - move Jenkins-only code in the appropriate section
2754 - better debug message
2755 - shell oneliner converted to ruby
2756 - Configure simulated Tor network: step -> function
2757 - rubocop is happier
2758 - Test suite: don't try to save chutney data when it does not exist
2759 - add at least one relevant scenario
2760 - if +real-Tor, select relevant scenarios
2761 - test suite runs with real Tor, if +real-Tor
2762 - "default bridges" honors --disable-chutney
2763 - Check adapted to --disable-chutney
2764 - run_test_suite --disable-chutney
2765 - chutney-specific conf moved into appropriate step
2767 -- Tails developers <tails@boum.org> Mon, 07 Mar 2022 18:16:01 +0100
2769 tails (4.27) unstable; urgency=medium
2771 * Upgrade Tor Browser to 11.0.6-build1, based on Firefox 91.6 (tails!724)
2773 Closes issues: tails#18799
2775 This upgrades obfs4proxy to the version shipped with Tor Browser 11.0.4
2776 (0.0.11 + a few commits).
2778 * Upgrade to Linux 5.10.92 (tails/tails!721)
2781 - devel branch FTBFS with webext-ublock-origin-firefox 1.39.0+dfsg-2
2783 - Upgrade Linux to 5.10.92+ (DSA 5050-1) (tails/tails#18805)
2786 - Refresh uBlock Origin patch
2787 - Dropping VirtualBox guest support for now
2788 - Bump APT snapshot of the Debian archive to 2022012801
2789 - Upgrade to Linux 5.10.0-11 (currently at version 5.10.92-1)
2791 * Upgrade to Thunderbird 91 (tails/tails!720)
2794 - Upgrade to Thunderbird 91 (tails/tails#18069)
2797 - Test suite: update expected images for Thunderbird 91
2798 - Test suite: adjust to Thunderbird 91 UI
2799 - Test suite: drop dead code
2800 - Test suite: lint (thanks Rubocop)
2801 - Test suite: refactor (extract code to method) to solve Rubocop error
2803 - Update path mangling in Thunderbird patches for v91
2804 - Update Thunderbird patches from
2805 tails/thunderbird@bef716a60762b743dce1f48c37a64a99a0707b21
2806 - Upgrade to Thunderbird 91
2808 * Insist on Tor Browser being offline (#18584) (tails/tails!711)
2811 - Change buttons to [Start Tor Browser Offline] [Open Tor Connection] when
2812 starting Tor Browser while not connected to tor (tails/tails#18584)
2815 - Insist on Tor Browser being offline (#18584)
2817 * Install obfs4proxy from the Tor Browser tarball (tails/tails!716)
2820 - Briefly document what config/equivs is for
2821 - Install our dummy obfs4proxy package
2822 - Enable the 18800-obfs4proxy-from-tor-browser-tarball APT overlay (refs:
2824 - Add equivs configuration for our new obfs4proxy dummy package
2825 - AppArmor: allow access that obfs4proxy 0.0.11 needs
2826 - Install obfs4proxy from the Tor Browser tarball
2829 * Test suite: update expected button label (tails/tails!718)
2832 - Test suite: update expected button label
2834 * Re-generate our test IUKs using gensquashfs (tails/tails!715)
2837 - Re-generate our test IUKs using gensquashfs (tails/tails#18654)
2840 - Test suite: use test IUKs generated with gensquashfs
2841 - Release process: never delete test IUKs generated with gensquashfs
2842 - Give new, unique names to test IUKs generated with gensquashfs
2844 * Add generated tails-backup.desktop to .gitignore (tails/tails!714)
2847 - Add generated tails-backup.desktop to .gitignore
2849 * simplify workflow when adding an APT overlay (tails/tails!708)
2852 - waiting now uses a proper tool
2853 - add-APT-overlay can wait for suite creation
2855 * Resolve "Tests for backup are fragile" (tails/tails!706)
2858 - Tests for backup are fragile (tails/tails#18727)
2861 - try to make backup tool test more resilient
2863 * fix wi-fi settings from Tor Connection (tails/tails!692)
2866 - Fix Wi-Fi settings when open from Tor Connection (tails/tails#18587)
2869 - Fix Wi-Fi settings from Tor Connection
2871 -- Tails developers <tails@boum.org> Mon, 07 Feb 2022 13:50:41 +0000
2873 tails (4.26) unstable; urgency=medium
2875 * Resolve "All branches FTBFS since Thunderbird 91 was uploaded"
2879 - All branches FTBFS since Thunderbird 91 was uploaded (tails/tails#18789)
2882 - pin thunderbird l10n packages, too
2883 - Add freeze exceptions for 4.26
2884 - Enable the 18789-fix-ftbfs-thunderbird-91 APT overlay (refs: #18789).
2886 * Upgrade Tor Browser to 11.0.4-build2 (tails/tails!710)
2889 - Upgrade to Tor Browser 11.0. … 4? (tails/tails#18795)
2892 - Fetch Tor Browser from our own archive
2893 - Upgrade Tor Browser to 11.0.4-build2
2895 * Resolve "Change buttons to [Start Tor Browser Offline] [Open Tor Connection]
2896 when starting Tor Browser while not connected to tor" (tails/tails!704)
2899 - Change buttons to [Start Tor Browser Offline] [Open Tor Connection] when
2900 starting Tor Browser while not connected to tor (tails/tails#18584)
2903 - open TorBrowser when offline →opens Tor Connection
2905 * Use DuckDuckGo for search queries on our website (tails/tails!498)
2908 - Don't search on staging.tails.boum.org
2910 - Translate searchbox placeholder
2911 - Factorize the CSS translation hack
2912 - Remove useless template
2913 - Improve search box
2914 - Align better the heart and the label
2915 - Use DuckDuckGo on news as well
2916 - Prevent Search and Donate from touching on small screen
2917 - Fix contrast to WCAG AA
2918 - Use DuckDuckGo for search queries (#17652)
2920 -- Tails developers <tails@boum.org> Mon, 10 Jan 2022 13:15:16 +0100
2922 tails (4.25) unstable; urgency=medium
2924 * Upgrade Tor Browser to 11.0.2-build3 (tails/tails!684)
2927 - Upgrade to Tor Browser 11.0.2 based on Firefox 91.4esr (tails/tails#18726)
2930 - Fetch Tor Browser from our own archive
2931 - FIX sha256sums for TorBrowser
2932 - Upgrade Tor Browser to 11.0.2-build3
2934 * Unsafe Browser: fix buggy GUI after upgrade to Tor Browser 11.0a10
2938 - Buggy GUI in Unsafe Browser after upgrade to Tor Browser 11.0a10
2942 - Unsafe Browser: fix buggy GUI after upgrade to Tor Browser 11.0a10.
2944 * IUK generation: stop using the "extreme" extra compression option
2948 - squashfs-tools-ng is slow (tails/tails#18675)
2951 - IUK generation: stop using the "extreme" extra compression option
2953 * Fix devel FTBFS by dropping VirtualBox guest support for now (tails/tails!652)
2956 - Test suite: the live user is no longer a member of vboxsf.
2957 - Fix FTBFS by dropping VirtualBox for now (Closes #18643)
2959 * APT: trust the new signing key for our APT repositories (tails/tails!682)
2962 - APT: trust the new signing key for our APT repositories (tails/sysadmin#17810)
2964 * Resolve ""I can listen to an Ogg audio track in Tor Browser" test suite step
2965 sometimes fails" (tails/tails!680)
2968 - "I can listen to an Ogg audio track in Tor Browser" test suite step sometimes
2969 fails (tails/tails#18716)
2972 - Test suite: make audio in browser test more robust
2973 - Test suite: simplify
2975 * Refresh uBlock origin patch to fix devel FTBFS (tails/tails!678)
2978 - Refresh uBlock Origin patch
2980 * Fix shellcheck CI job (tails/tails!677)
2983 - Replace unsupported braces expansion with list
2984 - Add missing quotes
2985 - Update shellcheck exclusion for newer shellcheck
2987 * Drop feature/tor-nightly-master branch (tails/tails!676)
2990 - APT time-based snapshots fail: tor-nightly-master-buster suite does not exist
2991 anymore (tails/tails#17877)
2994 - Drop feature/tor-nightly-master branch
2996 * Upgrade Tor Browser to 11.0.1-build1 (tails/tails!675)
2999 - Upgrade to Tor Browser 11.0.1 (based on Firefox 91.3esr) (tails/tails#18641)
3002 - Revert "Unsafe Browser: fix buggy GUI after upgrade to Tor Browser 11.0a10."
3003 - Upgrade Tor Browser to 11.0.1-build1
3005 * run_test_suite --live-patch (and more!) (tails/tails!674)
3008 - one-line if can be made more compact
3009 - enjoy some File module goodness
3010 - avoid using shell, let's Find.find with ruby
3011 - Apply 1 suggestion(s) to 1 file(s)
3012 - correctly handle invocations without --live-patch
3013 - refactoring: live_patch is a VM method
3014 - --live-patch is more powerful
3015 - --live-patch (draft)
3016 - run_test_suite --view-interact
3017 - test suite debug: easier to copy files in the VM
3019 * Test suite: remove unused step definition and the corresponding image
3023 - Test suite: remove unused step definition and the corresponding image
3025 * Test suite: fix reporting of hostname leaks via DHCP (tails/tails!671)
3028 - Test suite: fix reporting of hostname leaks via DHCP
3030 * Fix some GitLab CI tests (tails/tails!669)
3033 - Add missing dependencies
3034 - Add missing dependency
3035 - Maintain the list of Tor Connection dependencies in a single place
3037 * Resolve "Compute years range dynamically in Tor Connection's time setting
3038 dialog" (tails/tails!668)
3041 - Compute years range dynamically in Tor Connection's time setting dialog
3045 - Tor Connection year range derives from build time
3047 * add comments to connect-drop after security audit (tails/tails!666)
3050 - add comments to connect-drop after security audit
3052 * Add a "Tails (External Hard Disk)" boot menu option (tails/tails!665)
3055 - Add a "Tails (External Hard Disk)" option that removes live-media=removable
3057 * Vagrant build box: have hostname resolve to 127.0.0.1 (tails/tails!661)
3060 - Vagrant build box: have hostname resolve to 127.0.0.1
3062 * Test suite: give GNOME Overview more time to process our search
3066 - Test suite: give GNOME Overview more time to process our search
3068 * Upgrade Vagrant build box to Bullseye (tails/tails!653)
3071 - Upgrade Vagrant build box to Bullseye (tails/tails#18660)
3074 - Vagrant: add more debug output
3075 - build-tails: fix submodule initialization
3076 - Use long option name
3077 - Vagrant build box provisioning: don't assume the "debian" and "debian-security"
3078 snapshots have the same serial
3079 - Document when we can drop a workaround
3080 - Upgrade Vagrant build box to Bullseye
3081 - Vagrant build box: bump all APT snapshots
3083 * create-usb-image-from-iso: detect syslinux installation failure
3087 - Builds succeeds even if syslinux failed to install in create-usb-image-from-iso
3092 - create-usb-image-from-iso: remove obsolete comments
3093 - create-usb-image-from-iso: remove obsolete workaround
3094 - create-usb-image-from-iso: detect syslinux installation failure
3096 * Tor Connection: Add link to Troubleshooting doc (tails/tails!650)
3099 - Link to the Tor connection troubleshooting doc from the error screen
3103 - apply UX tip: move link to bottom
3104 - Tor Connection: Add link to Troubleshooting doc
3106 * Trim down SquashFS exclusions: remove obsolete ones, move as much as possible
3107 to chroot_local-hooks (tails/tails!649)
3110 - leading slashes are clearer
3111 - Trim down SquashFS exclusions: remove obsolete ones, move as much as possible
3112 to chroot_local-hooks
3114 * Upgrade to tor 0.4.6.8 (tails/tails!647)
3117 - Upgrade tor to 0.4.6 (tails/tails#18310)
3120 - Upgrade to tor 0.4.6.8, by bumping the snapshot of the torproject APT
3121 repository to 2021110301
3123 * Improve dialog when Unsafe Browser is not enabled (tails/tails!628)
3126 - Improve dialog when Unsafe Browser is not enabled (tails/tails#18598)
3131 - Apply 1 suggestion(s) to 1 file(s)
3132 - Make the link for the Unsafe Browser documentation translatable
3133 - Use a named anchor (refs: #18598)
3134 - Include link for the Unsafe Browser documentation
3135 - Associate text/html with tor-browser (refs: #18598)
3136 - Apply 1 suggestion(s) to 1 file(s)
3137 - Improve dialog when Unsafe Browser is not enabled
3139 * Basic GUI to backup a Persistent Storage to another one (tails/tails!596)
3142 - Retry updating the backup if only mounting the backup Tails is missing
3144 - Basic GUI to backup a Persistent Storage to another one (tails/tails#18504)
3147 - Test suite: improve readability
3148 - Test suite: test that the backup is identical to the source
3149 - Adjust to a04204cba2
3150 - Adjust to 6161e4f823
3151 - Adjust to a77c2425f3
3152 - Adjust to cb7b877fda
3153 - Test suite: use deprecated GuestFS luks_* functions
3156 - tails-backup: avoid issue in non-English locales
3157 - Shellcheck: disable excessive rule
3158 - Test suite: detect disks being plugged using udisks
3159 - Test suite: add elementary scenario for tails-backup.
3160 - tails-backup: implement pinentry retries and cancel
3161 - tails-backup: handle unlocked but unmounted TailsData
3162 - tails-backup: suppress bilibop's message
3163 - tails-backup: detect if rsync fails through pipefail
3164 - Expand rsync short options.
3165 - tails-backup-rsync: defensively check that we copy between mountpoints
3166 - tails-backup: make shellcheck happy
3167 - tails-backup: don't try to unlock and already unlocked and mounted volume
3168 - tails-backup: drop need for admin password
3169 - tails-backup: drop unused parameters
3170 - tails-backup: add back progress bar that doesn't hide rsync's output
3171 - tails-backup: fix up on "Always display the 1st screen"
3173 - Improve feedback (for now)
3175 - Always display the 1st screen if there's any error (#18720)
3176 - Use consistent quotes
3177 - Put the most meaningful word first
3178 - Move together with the other Persistent Storage utilities
3179 - tails-backup: drop unused variables
3180 - tails-backup: use consistent indentation
3181 - tails-backup: unlock and mount the drive automatically
3182 - tails-backup: show pulsating progress while copying
3183 - tails-backup: try to eject automatically
3184 - tails-backup: fix quoting.
3185 - Make tails-backup executable.
3187 - Advice to upgrade from the backup utility
3188 - Update doc to Persistent Storage Backup utility
3190 - Rework interactions and copy
3191 - fix typo in .desktop file
3192 - update to latest version of the script
3195 * Improve robustness of new TCA automated tests (tails/tails!525)
3198 - Test suite: drop unused step.
3199 - Test suite: correctly use "is None" in python script.
3200 - Remove usage of tor.sh's tor_is_working
3201 - Drop most of the tor shell library.
3202 - tor_is_working is stem-based, too
3203 - refactor bash+py stem wrapper into py script
3204 - python ♥ equality to None should use `is` keyword
3205 - python ♥ let's PEP8 everything
3206 - python ♥ remove useless imports
3207 - python ♥ proper argument parser
3208 - python ♥ main function
3210 - Drop unused variable.
3211 - Catch correct exception.
3213 - Rewrite tor_wait_until_bootstrapped() to be more robust.
3214 - Extreme Nitpicking™
3215 - Make tor_wait_until_bootstrapped() handle tor restarts.
3216 - Improve debugging.
3217 - Avoid spamming new python interpreters while waiting for Tor to bootstrap.
3218 - Allow multiline code blocks in tor_control_stem_wrapper().
3219 - Target the 4.22 code base
3220 - XXX debugging for test/18293-improve-tca-test-robustness
3221 - Test suite: adapt to removal of tor_control_send().
3222 - Test suite: test that tor's control port is open for real.
3223 - Tor shell library: improve error handling when the Tor control port is
3225 - Remove mention of unused import.
3226 - Tor shell library: re-implement control interaction with Python and stem.
3227 - Tor shell library: improve parsing and error handling of getinfo/getconf.
3228 - Add missing shell quoting.
3229 - Add forgotten local variables.
3230 - Add proper error handling to the shell library's control port interaction.
3231 - Test suite: wait for tor's ControlPort before using it (refs: #18293).
3233 -- Tails developers <tails@boum.org> Mon, 06 Dec 2021 16:03:22 +0100
3235 tails (4.24) unstable; urgency=medium
3237 * Upgrade to Tor Browser based on Firefox 91 ESR (tails/tails!639)
3240 - Upgrade to Tor Browser based on Firefox 91 ESR (tails/tails#18261)
3243 - Unsafe Browser: disable more "phone home" features
3244 - Unsafe Browser: disable services.settings.server
3245 - Test suite: search for element more widely.
3246 - Test suite: Firefox' Print dialog is now a panel (refs #18261)
3247 - Update the Tor Browser AppArmor policy for Tor Browser 11 (Firefox 91)
3249 - Test suite: make Gherkin test description more honest
3250 - Rubocop: disable a pattern we use all over the place
3251 - Test suite: update expected images and drop obsolete special-case for Chinese
3252 - Test suite: account for different separator used in German
3254 - Test suite: update comment
3255 - Fix typo in comment
3256 - Test suite: adjust to new Firefox print dialog
3257 - Test suite: update expected windows titles
3258 - Test suite: update expected images
3259 - Upgrade Tor Browser to 11.0a9
3261 * Test suite: make "Unsafe Browser has only Firefox's default bookmarks
3262 configured" step more robust (tails/tails!646)
3265 - Fragile test since the upgrade to Tor Browser 11: "Unsafe Browser has only
3266 Firefox's default bookmarks configured" (tails/tails#18658)
3269 - Test suite: wait for menu to really open before looking for menu entry
3270 - Test suite: update expected picture
3272 * APT sources: add Bullseye security (stable) (tails/tails!637)
3275 - APT sources: add Bullseye security (tails/tails#18492)
3278 - APT pinning: ensure we get security updates for the packages we pull from
3280 - APT sources: add Bullseye security repo
3282 * Move tca developer doc to more appropriate places (tails/tails!636)
3285 - Update "Tor network configuration" design doc (tails/tails#18360)
3288 - tips to develop Tor Connection are reachable
3289 - tca doc behavior.md moved to Gherkin
3290 - move tca/HACKING.md to website
3292 * APT sources: add Bullseye security (tails/tails!626)
3295 - APT pinning: ensure we get security updates for the packages we pull from
3297 - APT sources: add Bullseye security repo
3299 * Upgrade kernel to 5.10.46-5 in stable (tails/tails!625)
3302 - Upgrade Linux to 5.10.46-5 (DSA 4978-1) (tails/tails#18613)
3303 - Upgrade to Buster 10.11 (tails/tails#18608)
3306 - Pull libzstd1 from Bullseye: needed by updated squashfs-tools
3307 - Install squashfs-tools from bullseye.
3309 - to get a new kernel in stable, bump debian/serial
3310 - change pinning to get kernel from bullseye
3311 - bump kernel to 5.10.46-5
3313 * Upgrade kernel to 5.10.46-5 in devel (tails/tails!622)
3316 - Pull libzstd1 from Bullseye: needed by updated squashfs-tools
3317 - change pinning to get kernel from bullseye
3318 - bump kernel to 5.10.46-5
3320 * update Tor network configuration design doc (tails/tails!606)
3323 - TCA is not a Tor Launcher wrapper.
3324 - Apply intrigeri's proofreading suggestions.
3325 - explain why tca-portal runs as root
3326 - Document connect-drop security model
3327 - update Tor network configuration design doc
3329 * TCA: clean leftovers (tails/tails!604)
3332 - TCA clean leftovers (tails/tails#18273)
3335 - systemd-notify: move to better way
3336 - we considered this implementation good enough
3338 - move XXX to #18610
3339 - clarify comment after tails/tails!567
3340 - remove code that was never used and never tested
3341 - comment moved to #18609
3343 * Upgrade Tor Browser to 11.0a10-build1 (tails/tails!655)
3346 - Upgrade Tor Browser to 11.0a10-build1
3348 * Remove obsolete freeze exception (tails/tails!648)
3351 - Remove obsolete freeze exception
3353 * Port the iuk test suite from squashfs-tools to squashfs-tools-ng
3357 - Port the iuk test suite from squashfs-tools to squashfs-tools-ng
3361 - IUK test suite: support file names with spaces
3362 - IUK test suite: take into account gensquashfs behavior wrt. SOURCE_DATE_EPOCH
3363 - IUK test suite: add missing import
3364 - IUK test suite: port from squashfs-tools to squashfs-tools-ng
3365 - IUK generation: add assertion
3366 - Upgrader: use apparent size to compute space needed to install an IUK
3368 * Switch to zstd for SquashFS compression in development ISO/USB images
3372 - Switch to zstd for SquashFS compression in development ISO/USB images
3374 * Switch to squashfs-tools-ng to build IUKs (tails/tails!640)
3377 - Switch to squashfs-tools-ng to fix IUKs build reproducibly (tails/tails#18577)
3378 - Failure reproducing IUKs for 4.22~rc1 (tails/tails#18536)
3379 - Failure reproducing IUKs for 4.23 (tails/tails#18627)
3382 - GitLab CI: avoid confusing error message
3383 - Release process: use only the isobuilders that have squashfs-tools-ng
3384 - Switch to squashfs-tools-ng to generate our IUKs
3385 - Update release process requirements for building IUKs
3387 * Resolve "Tor Connection bridge tests fail" (tails/tails!621)
3390 - Tor Connection bridge tests fail (tails/tails#18634)
3393 - FIX tests for 84e047ebd39e too
3394 - fix tests after 68b0e77119e
3396 * Upgrader: avoid high cpu usage when getting download progress info
3400 - tails-upgrade-frontend causes very high CPU load when downloading upgrade
3404 - Upgrader: avoid high cpu usage when getting download progress info
3406 * Explain better how to type a bridge (#18597) (tails/tails!617)
3409 - Explain better "type in a bridge" (tails/tails#18597)
3413 - Use singular as much as possible
3414 - Use 'bridge' in singular as much as possible
3416 - Explain better how to type a bridge (#18597)
3417 - Style guide: not everybody types
3419 * Don't mention local network in Unsafe Browser confirmation (tails/tails!615)
3422 - Don't mention local network in Unsafe Browser confirmation (tails/tails#18600)
3427 * Rephrase intro of Fix Clock dialog (tails/tails!614)
3430 - Rephrase intro of Fix Clock dialog (tails/tails#18572)
3433 - Be consistent with /doc/about/warnings/identity
3435 - Remove duplicate text
3436 - Simplify and be more correct
3438 * Improve time zone selection UX (tails/tails!595)
3441 - Improve time zone selection UX (tails/tails#18514)
3444 - the test suite correctly handles UTC/GMT
3445 - UTC can be selected, too
3446 - test suite enjoys better UX, too
3447 - pressing enter selects topmost entry
3448 - tca gtk errors are logged immediately
3449 - test suite waits for filtering to be applied
3450 - Test suite: replace usage of non-existing Screen.pressKey with Screen.press
3451 - revamp the time selection dialog
3453 - test suite updated for new timezone selection
3454 - FIX matching (lets hope so)
3455 - better UX for timezone selection
3456 - proper logging in asyncutils
3458 * Installer: make the confirmation dialog more scary (tails/tails!593)
3461 - Make the confirmation more scary when reinstalling a USB stick that has a
3462 Persistent Storage (tails/tails#18301)
3465 - Test suite: adjust confirmation label when reinstalling over a usb with a
3467 - Test suite: adjust confirmation dialog label in Installer (refs #18301)
3468 - Installer: inform when there is no target available
3469 - Installer: enforce Persistent Storage detection
3470 - Installer: display if the target device has a Persistence Storage
3471 - Make the confirmation more scary when reinstalling a USB stick that has a
3472 Persistent Storage (refs: #18301)
3474 * TCA: Fix "AttributeError: no attribute persistence_config_failed"
3479 - make the diff smaller
3480 - TCA: Fix "AttributeError: no attribute persistence_config_failed"
3482 -- Tails developers <tails@boum.org> Thu, 04 Nov 2021 14:25:18 +0100
3484 tails (4.23) unstable; urgency=medium
3486 * Upgrade Tor Browser to 10.5.8-build2 (tails/tails!611)
3489 - Upgrade to Tor Browser 10.5.8 (based on Firefox 78.15.0esr) (tails/tails#18623)
3492 - Fetch Tor Browser from our own archive
3493 - Upgrade Tor Browser to 10.5.8-build2
3495 * FIX #18568: wait after killing TBB (tails/tails!607)
3498 - "Tails is localized for every tier-1 language" test fails on iguana
3502 - FIX #18568: wait after killing TBB
3504 * Fix devel FTBFS (tails/tails!601)
3507 - Install squashfs-tools from bullseye.
3508 - Refresh uBlock patch vs version 1.37.0+dfsg-1 (fixes: #18537)
3510 * copy-iuks-to-rsync-server-and-verify: handle arbitrary build agents
3514 - copy-iuks-to-rsync-server-and-verify: needs adjustment for changing isobuilder
3515 names (tails/tails#18574)
3518 - copy-iuks-to-rsync-server-and-verify: handle arbitrary build agents.
3520 -- Tails developers <tails@boum.org> Tue, 05 Oct 2021 08:20:24 +0200
3522 tails (4.22) unstable; urgency=medium
3524 * Upgrade Thunderbird to 78.13.0-1~deb10u1
3526 * Upgrade to Tor Browser 10.5.6 (78.14.0esr) (tails/tails!594)
3529 - Upgrade Tor Browser to 10.5.6-build2 (fixes: #18566)
3531 * Remove Prestera firmware, that's useless in the context of Tails
3535 - Stop setting up a kernel module build environment during the images build
3536 - Remove Prestera firmware, that's useless in the context of Tails
3538 * Only allow typing 1 bridge (tails/tails!587)
3541 - Only allow typing 1 bridge
3543 * Don't pretend tor has bootstrapped when tor@default.service failed to start
3547 - Don't pretend tor has bootstrapped when tor@default.service failed to start
3549 * Upgrade firmware-amd-graphics to 20210818-1 (tails/tails!582)
3552 - Install version 20210818-1 of packages built from src:firmware-nonfree
3553 - Enable the 18556-amd-gpu-firmware APT overlay (refs: #18556).
3555 * Ensure we use a working mirror to download automatic upgrades (tails/tails!581)
3558 - Update mirror-pool-dispatcher submodule
3559 - Allow the Upgrader to use tor, now needed by tails-transform-mirror-url for
3561 - many improvements to mirror-pool-dispatcher
3562 - FIX dependency for tails-transform-mirror-url
3563 - apply suggestion from mirror-pool-dispatcher!2
3564 - mirror-pool-dispatcher tests mirrors
3566 * Test suite: fix Pidgin scenarios with XMPP accounts on a server that requires
3567 going through the "Create New Room" UI (tails/tails!580)
3570 - Some Pidgin test suite scenarios fail when using XMPP accounts on a server that
3571 requires going through the "Create New Room" UI (tails/tails#18560)
3574 - Test suite: update expected Pidgin images
3576 * Test suite: fail if tor reports that DisableNetwork is an empty string
3580 - Test suite: log and fail if tor reports that DisableNetwork is an empty string
3582 * Persistent Bridges, iteration 4: integrate bridges persistence in Tor
3583 Connection (tails/tails!543)
3586 - Tor Connection: remove visible border around scrolled window
3587 - Drop unneeded grep option
3588 - Test suite: be more defensive when interacting with toggle buttons
3589 - Test suite: disable step that does not reflect the current implementation
3591 - Mention alternate implementation idea in comment
3592 - Fix typo in comment
3593 - Make checks closer to our needs
3594 - Move shell code from tca-portal to helper script
3595 - Make tca-portal helper script more generic
3596 - Tor Connection: when pre-filling bridges, adjust the verb from "Type in" to
3598 - Test suite: explain what labelee is
3599 - Test suite: adjust to current UI
3600 - TCA: fix display on low-height screen resolutions
3601 - Test suite: update expected UI text to match current implementation
3602 - TCA: correctly set the bridges persistence switch's initial state
3603 - TCA: adapt to new tca-portal API
3604 - TCA: remove unused imports
3605 - TCA: display error when enabling/disabling persistence failed
3606 - TCA: check success/failure of portal call when enabling/disabling persistence
3608 - Test suite: adjust strings to match current implementation
3609 - TCA: lock the UI and display a spinner while enabling/disabling persistence
3610 - TCA: add another keyboard accelerator
3611 - TCA: when toggling bridges persistence, wait the portal call to return a
3613 - TCA: remove unused import
3614 - Change usages of call_async to new API
3615 - TCA: remove incorrect signal handling
3616 - TCA: actually enable/disable Tor bridges persistence when the user asks us to
3617 - TCA: display vertical scrollbar when contents does not fit
3618 - TCA: hide Network Monitor launcher
3619 - Test suite: use the Tor Connection UI to enable bridges persistence
3620 - TCA: add skeleton implementation for toggling bridges persistence on/off
3621 - TCA: draft bridges Glade UI
3622 - TCA: improve keyboard navigation
3623 - TCA: add accessibility relationships between a bunch of widgets
3624 - TCA: add debug output
3625 - TCA: move persistence detection to the wrapper script
3626 - TCA: avoid throwing an (invisible) KeyError exception on first launch
3629 * Persistent Bridges, iteration 3: allow persisting bridges (tails/tails!539)
3632 - Test suite: lint, again
3633 - Test suite: adjust expected owner to actual implementation
3634 - TCA: check and save persistence status on startup
3635 - tca-portal: add commands to enable/disable persistence of Tor configuration
3636 - Test suite: mock functionality that's not implemented yet
3637 - Test suite: add step implementation
3638 - Test suite: disable incorrect step definition
3639 - Test suite: implement steps
3640 - Test suite: adjust to expected permissions of /var/lib/tca
3641 - Persistence setup: add support for disabling a preset non-interactively
3642 - Persistence setup: add a "Tor Bridges" feature
3643 - On shutdown, copy to Persistent Storage the Tor configuration that should now
3645 - Test suite: implement "I accept Tor Connection's offer to use my persistent
3647 - Test suite: implement "I choose to connect to Tor automatically" step.
3648 - Test suite: extend step to handle configuring persistent bridges.
3649 - TDD: add (unimplemented) steps for Tor bridges persistence
3650 - Test suite: simplify feature name
3652 * Persistent Bridges, iteration 2: use settings from tca.conf on first start
3656 - Revert "Test suite: cope with current actual behavior"
3657 - TCA: rename method to reflect what it now does
3658 - TCA: on first run, pre-seed bridges UI state from configuration
3659 - TCA: add debug logging to help understand what configuration we've loaded
3660 - TCA: add debug output to help figure out whether we loaded tca.conf
3661 - TCA: fix loading an empty or invalid configuration file
3662 - TCA: on first start, load Tor connection configuration from tca.conf
3664 * Persistent Bridges, iteration 1: split transient / potentially persistent state
3668 - Test suite: cope with current actual behavior
3669 - Test suite: adjust to actual implementation
3670 - TCA: don't save the default bridges to tca.conf
3671 - Test suite: fix buggy "tca.conf is empty" test
3672 - Make method name clearer and consistent with read_tca_state()
3673 - TCA: Rename method
3675 - TCA: Migrate transient state information to a dedicated file
3676 - TCA: Rename method
3677 - TCA: Refactoring (extract code to functions)
3678 - Test suite: Implement new steps
3680 - TDD: add (unimplemented) steps for the contents of tca.conf
3681 - TCA: Disable loading proxy settings from the configuration file
3682 - TCA: Set up, pass through, and inherit a new state file
3683 - TCA: Remove unused import
3684 - TCA: Drop unneeded call to expanduser()
3685 - TCA: Only save known-working Tor configuration to tca.conf
3686 - TCA: Minor refactoring (avoid having to reason about double-negations)
3687 - TCA: Make methods names more specific
3689 * Always start tor@default.service at boot, don't restart it after closing the
3690 Unsafe Browser (tails/tails!584)
3693 - Test suite: adjust to the fact tor@default.service is started during boot
3694 - Don't restart tor after exiting the Unsafe Browser
3695 - Always start tor@default.service at boot
3697 * Unsafe Browser: Only mention the Persistent Storage when there is one
3701 - Unsafe Browser: Only mention the Persistent Storage when there is one
3703 * Fix running the test suite on sid (tails/tails!579)
3706 - Drop another instance of the obsolete which(1)
3707 - Test suite: migrate away from obsolete which(1)
3708 - Test suite: switch to virtio graphics
3710 * FIX run_test_suite usage of tor --version for corner-cases (tails/tails!575)
3713 - FIX run_test_suite for corner-cases
3715 * Installer: fix combobox freezes (tails/tails!571)
3718 - Installer: fix combobox freezes (refs: #18531)
3720 * Update Tor Browser AppArmor policy (tails/tails!568)
3723 - Update Tor Browser AppArmor policy
3725 * Tor Connection: decrease "sign of life" timeout, increase bootstrap timeout
3729 - Test suite: DRY clicking "Connect to Tor"
3730 - Test suite: drop obsolete workaround
3732 - Tor Connection: allow the user to retry connecting to Tor from the error screen
3733 with the same settings
3734 - TCA hacking: use numbers that we have a chance to somewhat support
3735 - TCA hacking: drop buggy option
3736 - Add dummy entry for next release
3737 - Tor Connection: decrease "sign of life" timeout, increase bootstrap timeout
3739 * Test suite: use new XMPP chat rooms (tails/tails!566)
3742 - Deal with xmpp.riseup.net going away (tails/tails#17956)
3745 - Test suite: remove dead code
3746 - Test suite: rename argument to match its current usage
3747 - Test suite: use new XMPP chat rooms
3749 * Resolve "TCA does not connect with default bridges when it should"
3753 - Let's use user-centric (first person) phrasing whenever possible
3754 - Always set variables
3755 - better variable names
3756 - test suite: support using bridges w/o needing them
3757 - Gherkin for #18462
3758 - preserve user's choice of using default bridges
3760 * Stop trying to connect to Tor when we reach the Tor Connection error screen
3764 - TCA hacking: add missing sudo
3765 - TCA hacking: make test firewall rule not depend on already having connected to
3767 - TCA hacking: make test firewall rule more accurate
3768 - Test suite: adjust to the new, fixed situation
3769 - Revert "let's wait for the Fix Clock dialog to show up"
3770 - let's wait for the Fix Clock dialog to show up
3771 - state machine docstring
3772 - minor cleaning use of variables
3773 - FIX state machine wrt DisableNetwork
3774 - refactor _decide_right_step
3775 - remove hopefully-obsolete todo comments
3776 - stop trying to connect after timeout
3778 * Move wait_for_working_tor logic from NetworkManager to systemd
3782 - Update links in comment
3783 - Drop useless logging
3784 - Allow NM to start htpdate again if it failed last time
3785 - Clean up implementation of "Does not run htpdate again after success"
3787 - sw upgrade should only run when tor is ready
3788 - waiting for readiness sounds like a pre-command
3789 - Does not run htpdate again after success
3790 - let's use the flag file, instead of asking tor
3791 - systemd-controlled htpdate
3793 * Add Russian to the bundled offline documentation (tails/tails!552)
3796 - enable Russian on our website. will-fix:
3797 https://gitlab.tails.boum.org/tails/tails/-/issues/18454
3799 * vagrant/lib/tails_build_settings.rb: use --no-signature with git log
3803 - vagrant/lib/tails_build_settings.rb: use --no-signature with git log
3804 - .gitignore: ignore vmdb2.log
3806 * GJsonRpcClient.call_async can set a callback (tails/tails!544)
3809 - tca-portal: add missing sentence bits
3810 - Apply 3 suggestion(s) to 1 file(s)
3811 - GJsonRpcClient response handler fix
3812 - tca-portal is now fully asynchronous
3813 - change previous usages of call_async to new API
3814 - call_async can set callbacks
3816 * drop tordate (tails/tails!542)
3819 - ooops, that wasn't useless!
3820 - Tor Connection: make GtkSpinButton's UI consistent
3821 - Tor Connection: add keyboard accelerators
3822 - Tor Connection: use "Wrong clock" instead of "Wrong time" terminology
3823 - Tor Connection: use "Fix Clock" instead of "Set Time" terminology
3825 - Test suite: simplify
3826 - Test suite: use higher-level predicate
3827 - Test suite: remove obsolete exception
3828 - htpdate: increase timeout for working tor
3829 - drop useless stuff from 10-time.sh
3830 - 20-time imports: update comments, fix shellcheck
3831 - remove confusing log line
3832 - htpdate works successfully after manual time set
3833 - tca sends stderr to journal
3834 - no reason to delete the tor log anymore
3835 - testing for tordate in test suite is now useless
3836 - stop mentioning tordate in website
3837 - update time syncing design doc
3838 - remove unused code from 20-time.sh
3839 - be bold: let's drop @fragile from tor bridges!
3842 * Re-enable the tor sandbox when no PTs are used (tails/tails!535)
3845 - Use variable name more readable than $1
3846 - Add missing "set -eu"
3847 - Test suite: fix typo in not-enabled-yet code
3848 - Test suite: prepare sandbox test for when #18470 is fixed
3849 - Test suite: adjust to tor sandbox being disabled when falling back to default
3851 - Remove unused attribute
3852 - Revamp management of the Tor Sandbox configuration option
3854 - Use consistent and less confusing names for attribute and method
3855 - Adjust to new call_async API
3856 - Tor Connection: disable caching of information retrieved from tor by Stem
3857 - Wait for side-effects of async call to complete.
3858 - Improve encapsulation.
3859 - Rename tor-sandbox-helper → tor-pt-configuration-helper.
3860 - Be defensive about arguments.
3861 - Give base-class a better name.
3862 - Drop useless re-definition of method in subclass.
3864 - Apply 1 suggestion(s) to 1 file(s)
3865 - Test suite: re-enable tor sandbox sanity check (refs: #18237).
3866 - Drop unused, out-of-date main() used for testing a library.
3867 - Re-enable the tor sandbox when no PTs are used (refs: #18237)
3869 * TCA: Allow the user to manually set time (tails/tails!531)
3872 - time dialog: spacing + follow mockups better
3873 - reference to how a problem might be solved
3874 - Set time test scenario uses snapshots
3875 - stricter date validation
3877 - Test suite re-introduce linting lost by merge conflict resolution
3879 - more bringing back from devel
3880 - Tor Connection: translate 1 string to test l10n
3881 - Update POT and PO files
3882 - bring back lost changes to tor.rb
3883 - fix datestring validation
3884 - Test suite: revert indentation regression
3885 - Test suite: use user-facing terminology in Gherkin
3886 - fix test suite about time dialog
3887 - loggers are better than prints
3888 - tca remembers user timezone
3889 - bring back "unsuccessfully configure" step
3890 - reorder fixes in the error screen
3891 - set-system-time has early input validation
3892 - tca-portal can validate arguments
3893 - set-system-time errors are handled
3894 - less noisy logging
3895 - tails-set-date cleaned a bit
3896 - tails-set-date checks if the date is valid early
3897 - wait for set time window to be closed
3898 - rewrite Gherkin using more user-centric language
3899 - fix "Apply suggestion"
3900 - Apply 1 suggestion(s) to 1 file(s)
3901 - tca test: combo box faster and cleaner
3902 - Tooltip for combo box
3903 - tca-portal is a bit more verbose
3904 - when changing the time, tor must be restarted
3905 - Test "set the time in tca" does what it says
3907 - FIX: missing .ui file translation support
3908 - Connect to Tor can be clicked
3909 - TCA: adds a dialog to Set Time
3910 - tca-portal allows setting time
3911 - Separate the anti-test from the fix
3912 - reword: "I try to" actually check failure
3913 - 15548 implementation is "simulated"
3914 - test suite: hw clock can be set to relative time
3915 - test: cmd_helper modernized
3916 - DRAFT: Add a Scenario for #15548
3918 * Allow running our test suite on modern AMD CPUs (tails/tails!406)
3921 - document LIBVIRT_CPUMODEL
3922 - amd hack: convert to config file
3923 - modern AMD CPUs apparently benefit from this fix
3925 -- Tails developers <tails@boum.org> Mon, 06 Sep 2021 15:14:57 +0200
3927 tails (4.21) unstable; urgency=medium
3929 * Upgrade to Linux 5.10.46-3 (tails/tails!549)
3932 - Upgrade to Linux 5.10.46-2+ (CVE-2021-33909) (tails/tails#18489)
3935 - Update /etc/group's expected lines ordering
3936 - Ensure UIDs/GIDs don't change
3937 - Remove obsolete dkms logs cleanup
3938 - Don't (attempt to) build VirtualBox guest modules anymore
3939 - Upgrade snapshot of the Debian archive to 2021080201
3941 * Upgrade Thunderbird to 78.12.0-1~deb10u1
3943 * Don't (attempt to) build VirtualBox guest modules anymore (tails/tails!537)
3946 - Update /etc/group's expected lines ordering
3947 - Ensure UIDs/GIDs don't change
3948 - Remove obsolete dkms logs cleanup
3949 - Don't (attempt to) build VirtualBox guest modules anymore
3951 * Installer: allow choose Upgrade option when reinstall is cancelled
3955 - Choosing "Upgrade" option in Tails Installer can delete persistent volume
3959 - Installer: allow choose Upgrade option when reinstall is cancelled
3961 * Upgrade to Tor Browser 10.5.4 (based on Firefox 78.13esr) (tails/tails!555)
3964 - Upgrade to Tor Browser 10.5.4 (based on Firefox 78.13esr) (tails/tails#18479)
3967 - Fetch Tor Browser from our own archive
3968 - Upgrade Tor Browser to 10.5.4-build1
3970 * Clean up code and pre-TCA leftovers (tails/tails!541)
3973 - Clean up pre-TCA leftovers (tails/tails#18365)
3974 - Rename a11y-proxy-netns: it's now used for ibus as well (tails/tails#18366)
3977 - Give function the name we use
3978 - Rename a11y-proxy-netns → netns-bus-proxy.
3979 - Rename TCA's torlaunch network namespace from torlaunch to tca.
3981 - Test suite: drop obsolete workaround.
3982 - Drop already done TODO comment.
3983 - Fix outdated references to Tor Launcher.
3984 - Drop unneeded workaround.
3985 - Test suite: drop code used to support --old-iso for 4.20 release.
3986 - Remove unused exec_unconfined_firefox().
3988 * Refactor and consolidate how we explicitly check for Tor leaks in the automated
3989 test suite (tails/tails!540)
3992 - "all Internet traffic has only flowed through Tor" sometimes fails: does not
3993 allow for varying behavior (fallback to default bridges, or not)
3997 - Test suite: refactor and consolidate how we explicitly check for Tor leaks.
3998 - Revert "Test suite: temporarily disable failing step in scenario."
4000 * Post-RM: doc improvements (tails/tails!528)
4003 - clarify release types
4004 - after releasing: give more guidance
4006 - rm doc: give manual testers the signatures
4007 - some parts are not related to freeze
4008 - refresh-translations explains that it failed
4009 - rm doc: clarify what to do with the package diff
4010 - rm doc: clarify freezing
4012 * Fix usage of mutable default arguments in Python (tails/tails!527)
4015 - Fix usage of mutable default arguments in Python
4017 * More automated testing of TCA for Sponsor08/10 (tails/tails!435)
4023 - Test suite: wait longer for the TCA to report errors.
4024 - Test suite: test that TCA reports an error when reconnecting to a network where
4026 - Test suite: drop unnecessary step.
4027 - Test suite: make blocking Tor survive reconnections.
4028 - Test suite: monitor Tor leaks.
4029 - Fix erroneous camel casing in translation.
4030 - Test suite: test explicitly selecting default bridges in TCA.
4031 - Test suite: test that the same Tor config is applied if TCA reconnects.
4032 - Test suite: test that TCA disallows normal bridges in hide mode.
4034 -- Tails developers <tails@boum.org> Mon, 09 Aug 2021 07:55:57 +0000
4036 tails (4.20) unstable; urgency=medium
4038 * Upgrade Thunderbird to 78.11.0-1~deb10u1
4040 * Upgrade KeePassXC to 2.6.2+dfsg.1-1~bpo10+1
4042 * 20-time.sh: actually abort if Tor has failed to bootstrap (tails/tails!514)
4045 - 20-time.sh: temporarily workaround buggy check
4046 - 20-time.sh: fix success and error handling
4047 - 20-time.sh: simplify control flow
4049 - 20-time.sh: actually abort if Tor has failed to bootstrap
4051 * Resolve "TCA sometimes fails to start: "bwrap: Can't find source path
4052 /tmp/netns-specific/torlaunch: No such file or directory"" (tails/tails!489)
4055 - tails-ibus-proxy-netns@.service: remove now unneeded NotifyAccess=all
4056 - a11y: systemd-notify -> import systemd.daemon
4057 - silence useless information to syslog
4058 - avoid errors when started directly
4059 - clean systemd unit
4060 - more timeout on a11y-proxy-netns
4061 - FIX gnome.sh search for exact name gnome-shell
4064 - wait for user systemd session to be ready
4065 - FIX systemctl path
4066 - remove testing leftover
4067 - a11y/ibus proxy wait socket to signal readiness
4068 - tca-related proxies only active when unneeded
4069 - tails-tor-launcher not needed anymore
4070 - a11y/ibus proxies for TCA only started with TCA
4071 - FIX: call systemctl --user
4072 - tentatively setting TCA as a systemd service
4074 * Resolve "TCA asks consent question when changing network" (tails/tails!460)
4077 - FIX: switching to progress, not success, on connection
4078 - small code cleaning
4080 - tca: FIX success-error-retry
4081 - tca reacts to DisableNetwork changes
4082 - reduce stem logging noise
4083 - tca application monitors DisableNetwork
4085 * tca-portal service (tails/tails!422)
4088 - start tca-portal at boot
4089 - restrict access to tca-portal.socket!
4090 - tca-portal: add open-documentation + refactoring
4091 - FIX FTBFS on tca-portal.service
4092 - gnome-system-monitor opens at network tab
4093 - ooops: enable tca-portal unit
4094 - tca-portal opens onioncircuits
4095 - tca-portal (sic!) has systemd socket-activation
4096 - tca can talk to its portal
4097 - tca-connection-helper based on tinyrpc
4098 - draft of a tor-connection-helper service
4100 * Resolve "TCA: buggy window detection logic on app startup" (tails/tails!457)
4103 - TCA sends startup notification to DE
4105 * Resolve "The amnesia user might have too much power over TCA's configuration
4106 directory" (tails/tails!442)
4109 - change documentation wrt to tca.conf
4110 - tca.conf path changed to /var/lib/tca/
4112 * Install Linux 5.10.46 and upgrade shim (tails/tails!521)
4115 - Update shim* to the version from sid
4116 - Update Linux to 5.10.46
4118 * Don't run a useless IBus proxy for OnionCircuits (tails/tails!510)
4121 - Don't run a useless IBus proxy for OnionCircuits
4123 * Rakefile: actually build with the base branch merged (tails/tails!504)
4126 - Merging the base branch is not effective ⇒ different Git state between
4127 isobuilders and isotesters (tails/tails#18441)
4130 - Rakefile: actually build with the base branch merged
4132 * Rewrite notification when closing TCA on progress bar (tails/tails!496)
4135 - Rewrite notification when closing TCA on progress bar (#18362)
4137 * Implement "Connect to Tor" button in error screen (tails/tails!494)
4140 - Revert "avoid errors when started directly"
4141 - step error correctly indicates that bridges are on
4142 - better textarea alignment
4143 - put the current bridges in the textarea
4144 - keeps more state about bridge configuration
4145 - avoid errors when started directly
4146 - error: step proxy now goes back to error screen
4147 - connect to tor actually does something
4148 - bridges + "connect to tor" on error
4149 - DRAFT of better error screen
4151 * Tor Connection Assistant (tails/tails!375)
4154 - open unsafe-browser (if configured)
4155 - Test suite: properly tear down after cloding TCA.
4156 - Test suite: add some extra error handling.
4157 - Test suite: pass showingOnly even though it should not be needed.
4158 - Test suite: add error message.
4159 - Test suite: fix bad syntax.
4160 - Test suite: add delay between tries in override_child().
4161 - Test suite: add optional delay between retry_action() tries.
4162 - Make is_tor_working() more accurate.
4163 - Test suite: only set default bridges when relevant.
4164 - design change: Tor Launcher is just removed.
4165 - document tca behaviour
4166 - bootstrap/phase may include WARN, too
4167 - Test suite: work around closing TCA too fast.
4168 - more logging to debug test suite
4169 - remove leftover commit
4170 - proper place for hacking tips
4171 - Add icon for the Tor Connection assistant
4172 - Generate the list of default bridges at build time.
4173 - Test suite: drop workaround.
4174 - success indication and fallback to default bridges
4175 - more hacking tips to test tca
4176 - cover corner cases better
4177 - NetworkManager state: signal instead of polling
4178 - tca calls NM immediately
4179 - tca reacts to nm state changes
4180 - Test suite: save Tor journal if TCA fails to start.
4181 - Test suite: bump image.
4182 - Test suite: TCA has a new internal name.
4183 - Test suite: attempt to make try_for() more robust.
4184 - Test suite: adapt to TCA UI change.
4185 - Test suite: fix retring for child() with regexp matching.
4186 - TCA: move to Gtk.Application style
4187 - progress bar get data from bootstrap-phase
4188 - TCA: drop debugging.
4189 - Test suite: convert potentially endless loop to try_for() with timeout.
4190 - Persistent Welcome Screen settings: migrate obsolete network setting to new
4191 offline mode setting.
4192 - Test suite: optimize upgrade check.
4193 - smoother progress bar
4194 - connect-drop: clean unnecessary hacks
4195 - s/amnesia/LIVE_USERNAME/
4196 - drop tor-sandbox-helper: not used right now
4197 - FIX proxy not working
4198 - document tca wrappers
4199 - some css rule to style TCA a bit
4200 - refactoring: utils -> torutils
4201 - more user freedom: consent question can be changed
4202 - current Tor state is observed when filling bridges
4204 - resize window on every change_box
4205 - FIX GAsyncSpawn 100% CPU
4206 - no internet probe anymore: also fix 100% CPU bug
4207 - Welcome Screen: use "airplane mode" icon for Offline mode.
4208 - Test suite: add scenario testing that TCA can connect after an initial
4210 - Test suite: make function usable in more contexts.
4211 - Test suite: also make it possible to block default bridges.
4212 - Test suite: detect TCA errors and fail early.
4213 - Test suite: add scenario testing that TCA falls back to default bridges if Tor
4215 - Test suite: run a dedicated default bridge.
4216 - Test suite: refactor.
4217 - Test suite: adapt to another changed label.
4218 - FIX doc about how to check for non-working Tor
4219 - improve display size detection
4221 - Test suite: refer to the correct variable.
4222 - Test suite: adapt to changed label.
4223 - Test suite: fix syntax error.
4225 - Improve user-visible strings
4226 - Test suite: improve names.
4227 - Test suite: use TCA's "hide Tor usage" path when testing PTs.
4228 - Disable launcher buttons: broken because of netns
4229 - use the 3 images + better layout
4230 - normal bridges are not accepted in Hide Mode
4231 - Bridge validation + better handle IPv6
4232 - Always obfs4 + bridge documentation link
4233 - GitLab CI: tails-documentation
4234 - tails-documentation gains --force-local
4235 - document tips&tricks for tca
4236 - don't kill TCA on network reconnection
4237 - syslog logging really has identity set
4238 - lots of logging to understand bridge bug
4239 - put doctests in gitlab in shape again
4240 - FIX IBus connection for onion-circuits
4241 - more debug about bridge-connection part
4242 - Port TCA to onion-grater-over-netns magic
4243 - TCA will honor debug flag
4245 - a bit less noise for translatable mixin
4246 - TCA logs to syslog/stderr automagically
4247 - gitlab-ci: TCA doctest dependency
4248 - FIX .gitlab-ci.yml (syntax error)
4249 - normal bridges were to be stripped, not expanded
4250 - default bridges imported
4251 - FIX: bridges have ip-port, not only IP!
4252 - put TCA testing in gitlab-ci
4255 - Revert "Test suite: add workaround for TCA not sanitizing bridge input
4257 - Decent validation for bridge lines
4258 - rewrite tca wrapper in python
4259 - Test suite: reorder steps to avoid TCA blocking the desktop.
4260 - Revert "Test suite: wait for TCA's GUI to be available before using it."
4261 - Test suite: work around lost click around TCA start.
4262 - Test suite: refactor.
4263 - Test suite: add workaround for TCA not sanitizing bridge input properly.
4264 - Test suite: wait for TCA's GUI to be available before using it.
4265 - Test suite: add timeout.
4266 - Test suite: work around Ruby <2.7 args vs keywords handling.
4267 - Test suite: fix exception message.
4268 - Test suite: adapt scenario for new "Offline Mode" Greeter setting.
4269 - Welcome Screen: obsolete "Network Connection" and add new "Offline Mode"
4271 - Test suite: rewrite Tor Launcher tests for Tor Connection Assistant.
4272 - Test suite: allow regexp matching in Dogtail's child() method.
4273 - Test suite: drop unnecessary methods from subclass.
4275 - tca: state saved, still to little use
4276 - tca: don't run two times
4278 - tca: side icon will be added from Python
4279 - Temporarily add pluggable transport config to torrc.
4280 - Convert Tor Launcher .desktop file to one for TCA.
4281 - Remove Tor Launcher, for real!
4282 - tca: small text improvement
4283 - connect-drop works fine without environment
4284 - Revert "Remove Tor Launcher"
4285 - tails-tor-launcher actually runs tca
4286 - Remove Tor Launcher
4287 - another workaround for #18123
4288 - onion-grater: quoting matters
4289 - Move very context-specific script out of root's PATH.
4290 - onion-grater: options are case insensitive
4291 - adapt profile to onion-grater's case-sensitiveness
4292 - Temporarily workaround tor bug by always disabling the seccomp sandbox.
4293 - FIX onion-grater tca profile
4294 - run `tca` and it will auto-sudo
4295 - tca can connect to onion-grater
4296 - translations refreshed for TCA
4298 - add tca .ui file to POTFILES.in for l10n
4299 - Test suite: delete obsolete scenario.
4301 - Test suite: use correct bridge/PT terminology.
4302 - Test suite: fix tor seccomp check in the normal bridge case.
4304 - Fix assertion failure message.
4305 - Let's settle for 'normal' bridge when no PT is used.
4306 - Add Tor Launcher to GNOME favorite applications.
4307 - Tor Launcher: allow amnesia to start and add suitable .desktop file.
4308 - Tor Launcher: kill old instances when starting.
4309 - Remove the "Tor is ready" notification.
4311 - small TorConnectionProxy fixes
4313 - tca: --debug-statefile for better simulation
4314 - error page + early proxy config
4316 - main workflows work!
4317 - Step forwards for bridge configuration
4318 - bridge selection: beginning
4319 - easy Tor configuration works!
4320 - sudo tca will do; start Tor integration
4321 - more steps in Tor launcher UI
4322 - GUI: first step implemented (more or less)
4323 - a first attempt at a GUI
4324 - Test suite: always verify that Tor's Sandbox setting.
4325 - Handle multiline GETCONF responses.
4326 - Welcome Screen: add note about the missing bridge mode option.
4327 - Test suite: fix tor Seccomp verification.
4328 - Tor Launcher: enable tor's Seccomp sandbox when not using pluggable transports.
4329 - tor-launcher: repair the --force-net-config feature.
4330 - Drop now unused restart-tor script.
4331 - Unsafe Browser: don't restart tor with restart-tor.
4332 - Drop ugly hook killing Tor Launcher.
4333 - onion-grater: transparently recover lost tor controller connections.
4334 - Work around event handling bug in stem?
4335 - Make dynamic configuration we always do static.
4336 - Test suite: another attempt to deal with lost key press.
4337 - Test suite: deal with lost key press.
4338 - Test suite: adapt to Tor Launcher always starting (refs: #17330)
4340 - tor launcher: set *every* option
4341 - tor-launcher supports proxy authentication
4342 - detect Tor bootstrapping status
4343 - Tor Launcher some more implementation
4344 - WIP: a first attempt at rewriting Tor Launcher
4345 - onion-grater: fix error handling.
4346 - onion-grater: workaround tor bug by switch from control socket to control port.
4347 - Always start Tor Launcher (refs: #17330).
4348 - onion-grater: connect to control socket without control port fallback.
4349 - Improve check by verifying at least one "nameserver" line.
4350 - Drop unused imports.
4352 * Upgrade Tor Browser to 10.5.2 (tails/tails!524)
4355 - Fetch Tor Browser from our own archive
4356 - Tor Browser upgrade process: adjust branch name
4357 - Upgrade Tor Browser to 10.5.2-build1
4358 - Tor Browser upgrade process: adjust instructions to new file names
4359 - Factorize export of TOR_USE_LEGACY_LAUNCHER (fixes: #18459)
4361 * Fix feature branch commit encoded into the artifacts' names (fixes: #18468)
4365 - Built images encode incorrect topic branch commit (tails/tails#18468)
4368 - Fix feature branch commit encoded into the artifacts' names (fixes: #18468)
4370 * Update the jenkins-tools submodule, to fix po.feature (tails/tails!520)
4373 - Update the jenkins-tools submodule, to fix po.feature
4375 * Upgrader: more robust upgrade download and verification failure detection
4379 - Upgrader: confusing download failure but upgrade still applied
4383 - tails-iuk-cancel-download: return exit code as-is if it's neither 0 nor 1
4384 - tails-iuk-cancel-download: fix shell syntax errors
4385 - Avoid that the Upgrader breaks if pgrep won't match any process
4386 - Upgrader: cancell the IUK download if an error appears
4387 - Upgrader: more defensive programming
4388 - Upgrader: ensure we fail closed on download and verification errors
4390 * Test suite: consistently save artifacts for various Tor connection failures
4394 - Test suite: handle case where the htpdate logs do not exist.
4395 - Test suite: add headings to output in Tor failure artifacts.
4396 - Test suite: make save_tor_journal() possible to run without Tor logs.
4397 - Revert "Revert "Test suite: consistently save artifacts for various Tor
4398 connection failures.""
4400 * Upgrade to OnionShare 2.2 (tails/tails!515)
4403 - OnionShare: use ~/Downloads/ as the upload directory in "Receive Files" mode
4404 - AppArmor: allow a few more things that OnionShare v2 needs
4405 - OnionShare config: use the same indentation as what the app saves
4406 - OnionShare config: import new settings
4407 - onion-grater: update rules for OnionShare v2
4408 - OnionShare: hide Tor settings
4409 - Install OnionShare from Bullseye
4411 * Upgrade Tor Browser to 10.5a17 (tails/tails!513)
4414 - Test suite: update expected image
4415 - Unsafe Browser: Disable Tor Browser's tor bootstrapping mechanism
4416 - Test suite: add support for testing Tor Browser alpha versions
4417 - Fetch Tor Browser from our own archive.
4418 - Disable Tor Browser's tor bootstrapping UI
4419 - Upgrade Tor Browser to 10.5a17.
4421 * WhisperBack: set lower expectations for handling of error reports
4425 - Temporarily set low expectations for handling of error reports, via our website
4426 and/or in WhisperBack (tails/tails#18427)
4429 - WhisperBack: set lower expectations
4431 * Fix issues in testing's test suite (tails/tails!509)
4434 - Revert "Test suite: consistently save artifacts for various Tor connection
4436 - Test suite: consistently save artifacts for various Tor connection failures.
4437 - Test suite: work around the desktop icons being obscured by TCA.
4439 - Test suite: correctly identify supported Tor Browser locales (fixes #18319)
4440 - Test suite: drop unknown keyword parameters from translate().
4441 - Test suite: rework translate() to not always use the tails domain (fixes:
4444 * onion-grater: fix support for restrict-stream-events for namespace matched
4445 profiles (tails/tails!508)
4449 - Move hard-coded network address to constant
4450 - onion-grater: fix remote connection check.
4451 - Untangle if-statements a bit.
4452 - onion-grater: fix support for restrict-stream-events for namespace matched
4453 profiles (closes: #18417).
4455 * Upgrade Linux to 5.10.40 (tails/tails!507)
4458 - Upgrade Linux to 5.10.40 (5.10.0-0.bpo.7)
4460 * Upgrade to Debian Buster 10.10 (tails/tails!506)
4463 - Upgrade to Debian Buster 10.10 by bumping APT snapshot of the Debian archive to
4465 - Test suite: don't break if there are multiple Firefox processes
4466 - lint_po: ignore torbrowser-launcher's PO files
4467 - generate-build-manifest: support builds that used no source package
4468 - Switch to a simpler way to maintain our Tor Browser AppArmor profile delta
4469 - Rebase AppArmor profile for Tor Browser on top of torbrowser-launcher 0.3.3-5
4471 * Upgrade Tor to 0.4.5.9 (tails/tails!505)
4474 - Upgrade tor to 0.4.5.9 (tails/tails#18309)
4477 - Upgrade Tor to 0.4.5.9
4479 * build-tails: fix bugs that prevent local submodules from being used
4483 - build-tails: fix resetting the submodules' origin
4484 - build-tails: fix syntax error
4486 * Installer: Make "Reinstall" option not disappear when coming back from
4487 confirmation dialog (tails/tails!502)
4490 - "Reinstall" option disappears when coming back from Upgrade confirmation
4492 - Disable Tails Installer options when there is no target USB stick available
4496 - Installer: disable widgets when there is no target available
4497 - Make "Reinstall" option not disappear when coming back from confirmation dialog
4499 * always start tor (except offline mode) (tails/tails!497)
4502 - FIX comment explaining how we user tor@ units
4503 - always start tor (except offline mode)
4505 * Fix build vmdb2 without http proxy (tails/tails!490)
4508 - variables are better than hardcoded names!
4509 - logs are preserved in case of error
4510 - cleaner temporary files handling
4511 - FIX building without a http_proxy
4513 * Resolve "Run tails-*-proxy-netns@.service only for the amnesia user"
4517 - a11y/ibus: description includes netns name
4518 - a11y/ibus proxy are only enabled for amnesia user
4520 * Jenkins lib: support extracting issue number at the beginning of the branch
4521 name (tails/tails!482)
4524 - adds doctests to ActiveBranches
4525 - Jenkins lib: support extracting issue number at the beginning of the branch
4528 * Resolve "TCA: Implement screen when not connected to a local network"
4532 - open the _real_ wifi settings page
4533 - wording follows wireframe design
4534 - gnome env: add XDG_CURRENT_DESKTOP
4535 - tca can open wi-fi config window
4537 * Test suite: drop low-value tests, add Cucumber tags, improve wording a little
4541 - Test suite: try harder not to click a button before it's active
4542 - Test suite: remove a few low-value USB installation, upgrade, and boot tests
4543 - Test suite: remove wget plaintext http:// test
4544 - fixup! Test suite: remove whois(1) tests
4545 - Test suite: give generic method a more generic name
4546 - Test suite: remove whois(1) tests
4547 - Test suite: merge closely related scenarios to improve performance
4548 - Test suite: use an existing snapshot instead of booting a fresh Tails
4549 - Test suite: improve wording of scenarios and steps
4550 - Test suite: remove Pidgin custom certificates tests
4551 - Test suite: remove basic AppArmor test
4552 - Test suite: remove GnuPG keyserver test
4553 - Test suite: remove browser plugins tests
4554 - Test suite: add @slow and @not_release_blockers Cucumber tags
4555 - Test suite: remove definition for unused step
4556 - Test suite: remove VirtualBox test
4558 * Generate the Vagrant base boxes using vmdb2 instead of vmdebootstrap
4562 - Add shellcheck exception.
4563 - Drop insane backticks.
4564 - Re-introduce some comments that were lost when migrating to vmdb2.
4565 - Build doc: remove obsolete instructions
4566 - vmdb2: remove no-op duplicated mirror parameters
4567 - Fix copy-paste mistakes.
4568 - Use grub.d instead of fighting with sed/perl escaping.
4569 - vmdb2: disable caching
4570 - Drop duplicated work.
4571 - Update docs and instructions for migration from vmdebootstrap to vmdb2.
4572 - Let's stop claiming Tails can be built from Stretch.
4573 - Escape \ in here doc.
4574 - Vagrant: work around Debian#951257.
4575 - Vagrant: abort when the proxy is invalid.
4576 - Vagrant: use IP address for internal proxy.
4577 - Drop leftovers from when we used vmdeboostrap to generate Vagrant boxes.
4578 - Apply policy-rc.d trick to workaround Debian bug when installing udisks2 in a
4580 - tails-builder: install missing udisks2 deps.
4581 - Workaround the fact subshells don't inherit set -e
4583 - Include the .qcow2, not raw image, in the Vagrant box.
4584 - Bump tails-builder image back to 20G.
4586 - Switch to vmdb2-based Vagrant box creation (refs: #15349)
4587 - Split long command over multiple lines.
4588 - Generate .box file.
4589 - Add back --rootfs-tarball argument to vmdb2.
4590 - Use correct sed syntax in replacement to refer to matched groups.
4591 - Use variables in place of hard-coded strings.
4593 - Drop unnecessary `touch`.
4594 - Clean up before and after calling vmdb2.
4595 - Generate image name dynamically.
4596 - Set APT serials dynamically.
4597 - Use mktemp for temporary file.
4598 - Drop unused stuff for generating container images.
4599 - Do `set -u` in script.
4600 - vmdb2: append newline at the end of authorized_keys entry
4601 - vmdb2: add HTTP proxy support
4602 - WIP: Vagrant: script for generating tails-builder images using vmdb2 instead of
4603 vmdebootstrap (refs: #15349)
4605 * Drop obsolete workaround for Jenkins passing mergebasebranch (tails/tails!475)
4608 - Revert "Rakefile: handle jenkins passing the now obsolete mergebasebranch."
4610 * custom-apt-cruft-check: indentify used binary packages where we lack the source
4614 - custom-apt-cruft-check: add support for the testing suite
4615 - custom-apt-cruft-check: indentify used binary packages where we lack the
4618 * GitLab CI (test-tca): add missing python3-dbus dependency (tails/tails!472)
4621 - GitLab CI (test-tca): add missing python3-dbus dependency
4623 * Disable shellcheck false positive (tails/tails!471)
4626 - Disable shellcheck false positive
4628 * Fix the dependencies of tca-portal.service and tca-portal.socket
4632 - Fix tca-portl.{socket,service} dependencies
4633 - Let tca-portal.service be started via systemd socket activation
4635 * Resolve "No spinner when starting Tor Browser from TCA" (tails/tails!459)
4638 - offline step now follows wording from our design
4639 - FIX: going offline should not display error step
4640 - tca-portal open applications using gtk stuff
4642 * Drop monkeysphere configuration (tails/tails!454)
4645 - Drop monkeysphere configuration
4647 * Use v3 Onion Service for the deb.torproject.org APT repository
4651 - Use v3 Onion Service for the deb.torproject.org APT repository
4653 * Test suite: drop Seahorse tests (tails/tails!451)
4656 - Test suite: drop now useless background
4657 - Test suite: update rationale for workaround
4658 - Test suite: drop support for running v2 Onion services in Chutney
4659 - Test suite: drop Seahorse tests
4661 * Maintain our Tor Browser AppArmor profile delta in a simpler way
4665 - Test suite: don't break if there are multiple Firefox processes
4666 - lint_po: ignore torbrowser-launcher's PO files
4667 - generate-build-manifest: support builds that used no source package
4668 - Switch to a simpler way to maintain our Tor Browser AppArmor profile delta
4669 - Rebase AppArmor profile for Tor Browser on top of torbrowser-launcher 0.3.3-5
4671 * Recover TCA fix + test suite work from now defunct !431 (tails/tails!447)
4674 - Test suite: fix racy test.
4675 - Test suite: avoid using regex matching since we can.
4676 - Test suite: drop escaping we already deal with.
4677 - Test suite: implement proper dropping of markup.
4678 - Test suite: escape single-quotes in generated Python strings.
4679 - Test suite: drop markup from translated strings.
4680 - Test suite: make Dogtail automatically translate strings.
4681 - TCA: fix tor crashing when falling back to default bridges.
4683 * TCA asks for confirmation if you close it during progress (tails/tails!446)
4686 - Apply 1 suggestion(s) to 1 file(s)
4687 - asks confirmation on quit during progress
4689 * TCA: explain the autoconfig better and implement designed behavior for
4690 displaying help (tails/tails!445)
4693 - TCA: hide bridge help by default
4694 - TCA: use the designed toggle instead of a link near "Configure a Tor bridge" in
4696 - TCA: Explain more about the implications of the autoconfig of Tor
4698 * Resolve "TCA connects with default bridges when it shouldn't" (tails/tails!444)
4701 - TCA always saves configuration
4703 * Resolve "TCA status does not reflect the current status of the connection to
4704 Tor" (tails/tails!443)
4707 - tca reacts to /run/tor-has-bootstrapped/done
4708 - tca monitors /run/tor-has-bootstrapped/done
4710 * Improve Tor Connection GUI (tails/tails!438)
4713 - Test suite: adapt to UI changes in TCA.
4714 - Fix shellcheck regressions
4715 - TCA: add title to proxy configuration window
4716 - TCA: add link to doc in consent question
4717 - TCA: make status messages consistently include "to Tor"
4718 - TCA: define margin in 1 single place
4719 - TCA: make the bridges config screen breathe
4720 - TCA: implement designed link to the bridges doc
4721 - TCA: remove icons on proxy port & pasword entries
4722 - TCA: make the "Connecting" progress screen breathe
4723 - TCA: make proxy configuration visual layout linear
4724 - TCA: basic visual layout for the "Error connecting to Tor" screen
4725 - TCA: reorganize container/child structure to fix vertical text alignment
4726 - TCA: Fix vertical text alignment
4727 - TCA: Fix vertical text alignment
4728 - TCA: make "Connected to Tor successfully" a progress-box-heading
4729 - TCA: add standard spacing between label and progress bar
4730 - TCA: make "Connecting to Tor…" a progress-box-heading
4731 - TCA: move progress-box-heading styling to CSS
4732 - TCA: make it breathe
4733 - TCA: drop duplicate margin
4734 - TCA: improve vertical alignment of success icon
4735 - TCA: hide percentage
4736 - fixup! TCA: use Unicode ellipsis char
4737 - TCA: use correct Unicode char
4738 - TCA: hide non-functional "Reset Tor Connection" button
4739 - TCA: explicitly declare translation domain in Glade UI file
4740 - TCA: style step titles via CSS, make them larger
4741 - TCA: make layout more GNOME HIG compliant
4742 - TCA: use non-deprecated margin properties, make them multiples of 6px
4743 - TCA: make the "Start Tor Browser button" fill the dialog width as designed
4744 - TCA: drop custom font size
4745 - TCA: use standard GNOME HIG spacing
4746 - TCA: improve visual layout
4747 - TCA: fix alignment
4748 - TCA: improve visual layout
4750 - TCA: port CSS to pixels and start making it a bit more GNOME HIG compliant
4751 - TCA: give widget a name so it can be styled with CSS
4752 - WIP: save with glade/sid
4753 - Git, please ignore Glade backup files for TCA
4754 - TCA Glade UI: require the GTK version we're shipping in Tails 4.x
4756 * Resolve "Confusing behavior of Tor Connection in offline mode"
4760 - better function naming
4761 - offline mode error strings changed
4762 - FIX ci dependencies for tca
4763 - update gettext strings
4764 - tca offline mode errors are translatable
4765 - TCA give clear error message in Offline Mode
4766 - tailslib has doctests
4767 - tailslib: can check greeter variables
4769 * Resolve "Ensure WhisperBack still tells us how successful connections to Tor
4770 were made" (tails/tails!434)
4773 - whisperback includes tca details
4775 * TCA UI improvements (tails/tails!428)
4778 - Test suite: don't throw TCAConnectionFailure on try_for() timeout.
4779 - Test suite: adapt for recent UI changes in TCA.
4780 - explain bridge requirements in hide mode
4781 - smaller image in TCA
4782 - Improvements to TCA GUI
4783 - doc: how to tweak tca GUI
4784 - corner case about bridge validation
4785 - FIX resize problems through GtkStack
4786 - tca UI improvements
4787 - changing to default bridges is honored
4788 - tca ui more consistent
4790 * TCA reports an error in case of slow connection (tails/tails!426)
4793 - progress bar was very slow; + more testing
4794 - tca timeout understands "sign-of-life" UX concept
4795 - quick & dirty: increase timeout
4797 * Display an error message when upgrader fails to check for available upgrades
4801 - Display an error message when the Upgrader fails to check for available
4802 upgrades (tails/tails#18238)
4805 - Display a dialog if an error happens when getting the UDF
4806 - Make debugging_info parameter optional
4807 - Display an error dialog when the Upgrader fails to check for available upgrades
4809 * Rename "MAC address spoofing" as "MAC address anonymization" (tails/tails!411)
4813 - Avoid in-page link
4815 - Rename "MAC address spoofing" as "MAC address anonymization" (#18286)
4817 * Upgrade Linux to 5.10.24 (tails/tails!409)
4820 - Upgrade Linux to 5.10.24
4821 - Revert "Install linux-compiler-* linux-kbuild-* from our custom APT repository"
4823 * Fix shellcheck error (tails/tails!394)
4826 - Fix shellcheck error
4828 * Establish a coding standards baseline on our shell code base (tails/tails!190)
4831 - GitLab CI: install "file" for the shellcheck test
4834 - GitLab CI: use Unit test reports for shellcheck
4835 - shellcheck-tree: drop unused import
4836 - shellcheck-tree: drop obsolete comment
4837 - GitLab CI: check shell scripts
4838 - ShellCheck: fix remaining offenses
4839 - ShellCheck: fix remaining SC2086 offenses
4840 - shellcheck-tree: skip built website
4841 - Drop unused variables
4842 - ShellCheck: make exceptions where warranted
4843 - Misc. linting suggested by ShellCheck
4844 - shellcheck-tree: new script, that runs shellcheck on all shell scripts
4845 - Misc. linting suggested by ShellCheck
4846 - ShellCheck: make exceptions where warranted
4847 - Drop $ in arithmetic variables
4848 - Drop useless calls to cat
4849 - ShellCheck: fix offenses
4850 - ShellCheck: fix SC2155 offenses
4851 - ShellCheck: backticks → $()
4852 - auto/config: fix stderr redirection
4854 - ShellCheck: make exceptions where warranted
4855 - ShellCheck: add missing quoting
4856 - branch_name_to_suite: fix bug in tr call
4857 - ShellCheck: disable false positive
4858 - unsafe-browser: use $* when our intent is to concatenate
4859 - keepassxc wrapper: fix behavior in case 2+ arguments are passed
4860 - live-persist: fix usage message
4861 - ShellCheck: fix SC2162 offense
4862 - ShellCheck: make exceptions where warranted
4863 - ShellCheck: add missing quoting
4864 - ShellCheck: fix SC2006 offenses
4865 - ShellCheck: fix SC2155 offenses
4866 - Drop useless "echo"
4867 - ShellCheck: make exceptions where warranted
4868 - ShellCheck: fix SC2006 offenses
4869 - ShellCheck: replace deprecated tempfile with mktemp (SC2186)
4870 - ShellCheck: add missing quoting
4871 - Replace antiquated use of expr
4872 - Drop unused variables
4873 - ShellCheck: fix SC2155 offenses
4874 - ShellCheck: disable check that generates mostly false positives
4876 - Drop unused variables
4877 - ShellCheck: add missing quoting
4878 - Drop unused variable
4879 - ShellCheck: fix SC2059 offense
4880 - Ensure here-doc text is not subject to parameter expansion, command
4881 substitution, and arithmetic expansion, unless we do need it
4882 - ShellCheck: fix SC2162 offenses
4883 - chroot_local-hooks: consistently set the executable bit
4885 - Make for loop more robust
4886 - Ensure filenames that start with '-' are not interpreted as switches
4887 - Ensure glob is not expanded by the shell interpreter
4888 - 10-tbb: fix typo in variable name
4890 - ShellCheck: make exceptions where warranted
4891 - ShellCheck: disable false positive
4892 - ShellCheck: disable following included source files
4894 -- Tails developers <tails@boum.org> Mon, 12 Jul 2021 13:50:41 +0200
4896 tails (4.19) unstable; urgency=medium
4898 * Upgrade Tor Browser to 10.0.17-build1 (tails/tails!468)
4901 - Upgrade to Tor Browser based on Firefox 78.11 (tails/tails#18284)
4904 - Fetch Tor Browser from our own archive.
4905 - Upgrade Tor Browser to 10.0.17-build1.
4907 * Upgrade Thunderbird to 1:78.10.0-1~deb10u1
4909 * run_test_suite: fix tor version check with recent tor (tails/tails!450)
4912 - Chutney: fix tor version check with recent tor
4913 - run_test_suite: fix tor version check with recent tor
4915 * Upgrader, tails-security-check: drop CA pinning (tails/tails!448)
4918 - TLS certificate issue prevents tails-upgrade-frontend to check for updates :
4919 Error while downloading the signing key (tails/tails#18324)
4922 - Design doc: update tense
4923 - Remove unused Let's Encrypt certificates
4924 - Upgrader, tails-security-check: drop CA pinning
4925 - Design doc: drop overly optimistic future improvement idea
4926 - Design doc: mirrors used by the Upgrader are all HTTPS nowadays
4928 * gitlab-triage: migrate from Docker to podman (tails/tails!440)
4931 - gitlab-triage: migrate from Docker to podman
4933 * Add password feedback for sudo (refs: #18355) (tails/tails!439)
4936 - Add password feedback for sudo (refs: #18355)
4938 * Remove ikiwiki-cgi.setup (tails/tails!405)
4941 - Document how to test changes to the banner locally
4942 - Deduplicate content
4943 - Don't disable plugins that are not enabled by default
4944 - Remove ikiwiki-cgi.setup and references to it
4946 -- Tails developers <tails@boum.org> Mon, 31 May 2021 09:19:03 +0000
4948 tails (4.18) unstable; urgency=medium
4950 * Upgrade Thunderbird to 78.9.0-1~deb10u1
4952 * Upgrade Tor Browser to 10.0.16 (tails/tails!400)
4955 - Upgrade to Tor Browser based on Firefox 78.10 (tails/tails#18252)
4958 - Fetch Tor Browser from our own archive.
4959 - Upgrade Tor Browser to 10.0.15.
4961 * Upgrade Intel microcodes to 3.20210216.1~deb10u1
4963 * Upgrade firmware-linux-nonfree to 20210315-2
4965 * Remove Poedit (#18236) (tails/tails!395)
4968 - Remove Poedit (#18236)
4970 * Display an error message when the Upgrader fails to download the signing key
4974 - Display an error message when the Upgrader fails to check for available
4975 upgrades (tails/tails#18238)
4978 - Display an error message when the Upgrader fails to download the signing key
4980 * Remove clock sync notification (tails/tails!389)
4983 - Remove the "clock synchronization" notification (tails/tails#7439)
4986 - tails-htp-notify-user only notifies if $problems
4988 * Bump snapshots of the Debian APT archive to 2021033101 (tails/tails!388)
4991 - Bump snapshots of the Debian APT archive to 2021033101
4993 * APT: use non-onion HTTPS sources for Debian repositories (tails/tails!383)
4996 - Fix failures with Debian's APT repository onion service (tails/tails#17993)
4999 - APT: use non-onion HTTPS sources for Debian repositories
5001 * Merge base branch earlier (tails/tails!381)
5004 - The mergebasebranch option merges the base branch too late (tails/tails#12557)
5007 - Document that faketime is needed on the host to build Tails.
5008 - Vagrant: don't install faketime any more.
5009 - Drop useless version part from development build filenames.
5010 - Build system: only add base branch info to image names when relevant.
5011 - Build system: make development images' names more consistent.
5012 - Build system: move around logic to reduce ENV state.
5013 - Build system: re-run rake after merging base branch (#12557)
5014 - Rakefile: handle jenkins passing the now obsolete mergebasebranch.
5015 - Build system: by default, merge the base branch early when building (#12557)
5017 -- Tails developers <tails@boum.org> Mon, 19 Apr 2021 14:19:38 +0000
5019 tails (4.17) unstable; urgency=medium
5021 * Upgrade Thunderbird to 78.8.0-1~deb10u1
5023 * Upgrade Tor Browser to 10.0.14-build1 (tails/tails!382)
5026 - Upgrade Tor Browser to 10.0.14-build1.
5028 * Upgrade tor to 0.4.5.7 (tails/tails!380)
5031 - Upgrade tor to 0.4.5.7 (tails/tails#18244)
5034 - Upgrade tor to 0.4.5.7
5036 * Retry failed upgrade downloads, reusing the previously downloaded data, and
5037 fallback to the DNS mirror pool (tails/tails!379)
5040 - Make it possible to resume an automatic upgrade download (tails/tails#15875)
5041 - Make Tails Upgrader resilient to broken mirrors (tails/tails#17615)
5044 - Tails::IUK::TargetFile::Download: always disable exponential backoff when
5046 - Tails::IUK::LWP::UserAgent::WithProgress: display correct progress status when
5047 resuming a previously failed download
5048 - Give Tails::IUK::LWP::UserAgent::WithProgress information that it'll need
5049 - Refactoring: make temp_file an attribute
5050 - Refactoring: use more meaningful variable name and document what value it holds
5051 - GitLab CI: disable test that now requires systemd
5052 - Retry failed upgrade downloads, reusing the previously downloaded data, and
5053 fallback to the DNS mirror pool
5054 - Upgrader hardening: comment out sudo env_keep settings that are not needed in
5056 - Tails::Download::HTTPS hardening: drop support for SSL_NO_VERIFY
5057 - Upgrader test suite: remove useless Win32 support code
5059 * Repair the filesystem on the system partition and avoid breaking it in the
5060 first place (tails/tails!374)
5063 - Deleted obsolete automatic upgrades still occupy disk space ⇒ no automatic
5064 upgrade possible after a while (tails/tails#17902)
5067 - On boot, repair the filesystem on the system partition
5068 - Refactoring: move repartitioning code to a function
5069 - Unmount the system partition on shutdown
5071 * Upgrade GRUB2 to 2.04-16+ (tails/tails!372)
5074 - Upgrade GRUB2 to 2.04-16+ (tails/tails#18227)
5075 - devel branch FTBFS with uBlock 1.33.0+dfsg-1 (tails/tails#18191)
5078 - Bump snapshots of the Debian APT archive to 2021030401
5080 * Upgrade non-free Linux firmware to 20210208-3 (tails/tails!371)
5083 - Upgrade non-free Linux firmware to 20210208-3+ (tails/tails#18226)
5084 - devel branch FTBFS with uBlock 1.33.0+dfsg-1 (tails/tails#18191)
5087 - Revert "Temporarily install the kernel from Bullseye"
5088 - Refresh uBlock patch
5089 - Bump snapshots of the Debian APT archive to 2021030101
5091 * Test suite: relax delay for OpenPGP future expiration date (tails/tails!370)
5094 - Test suite: relax delay for OpenPGP future expiration date
5096 * Improve security advisory since they don't list vulnerabilities anymore
5100 - Help people find the information on their own (#18221)
5101 - Remove not-so-helpful TOC
5102 - Simplify and reuse the same wording
5103 - Don't make people click for nothing (#18221)
5105 * Clarify error message when starting the Unsafe Browser while offline
5109 - Clarify error message when the Unsafe Browser was launched without network
5110 connection (tails/tails#12251)
5113 - Test suite: update to match UI change
5114 - Clarify error message when starting offline (#12251)
5116 * Release process: add po4a version sanity checks (tails/tails!364)
5119 - Release process: ensure the RM has the correct version of po4a
5121 * Upgrade our production and test-only tor configuration (tails/tails!363)
5124 - Upgrade our production and test-only tor configuration (tails/tails#18216)
5127 - Test suite: bump PathsNeededToBuildCircuits to 0.67, like Chutney
5128 - Test suite: drop "TestingBridgeDownloadInitialDelay" customization
5129 - Test suite: drop "DownloadInitialDelay" testing options that we set to their
5131 - Test suite: drop unused second argument for the "DownloadInitialDelay" tor
5133 - Test suite: use the new "DownloadInitialDelay" names for the "DownloadSchedule"
5135 - torrc: drop obsolete WarnUnsafeSocks setting
5136 - torrc: migrate from deprecated {Control,Trans}ListenAddress to
5137 {Control,Trans}Port address syntax
5139 * Upgrade tor to 0.4.5.6 (tails/tails!361)
5142 - run_test_suite: abort if the host system's tor is too old
5143 - Test suite setup doc: ensure we have a recent enough tor
5144 - Test suite setup doc: update APT pinning to support current QEMU backport
5145 - Upgrade tor to 0.4.5.6 final
5147 * Update uBlock Origin patch (tails/tails!354)
5150 - Refresh uBlock patch
5152 * Resolve "onion-grater race condition" (tails/tails!345)
5155 - onion-grater race condition (tails/tails#18123)
5159 - onioncircuits: longer options are more readable
5160 - tails-create-netns: more consistent style
5161 - tails-create-netns: avoid bashisms
5162 - a11y-proxy-netns: explain behavior with comments
5163 - review tips: is_veth_nic is more readable
5164 - review tips: clearer behaviour
5165 - Remove another remain from the reverted TBB experiment.
5166 - veth exclusion: log to debug
5167 - don't spoof veth interfaces
5168 - a11y proxy now can be passed to the right netns
5169 - onioncircuits is accessible!
5170 - small cleanup to tailslib.gnome
5171 - really: let's forget about TBB and its netns
5172 - Let's forget about TBB in its netns
5173 - get_all_ethernet_nics behave even if no real eth
5174 - update design doc for netns improvements
5175 - test: tor can bind a non-127.0.0.1 port
5176 - FIX helper lib to recognize veth appropriately
5178 - tails-documentation: fixed when Tor is not ready
5179 - sudo tor-browser allowed
5180 - FIX service: run before network.target
5181 - we need veth: don't blacklist it, it's harmless
5182 - /stop tails-create-netns service can stop
5183 - FIX tails-create-netns.service
5184 - TBB: changed onion-grater
5185 - TBB works + port 9150 drop
5186 - netns: firewall configuration moved to ferm
5187 - configure tor and ferm for TBB netns address
5188 - tails-create-netns is a systemd.service
5189 - onion-grater whitelisted in sane_defaults
5190 - onioncircuits profile adapted to netns
5191 - onioncircuits wrapper to use netns
5192 - still a draft, but at least tidier
5193 - DRAFT of network namespace support
5195 * Test suite: disable sound forwarding to host (tails/tails!333)
5198 - Test suite: consider disabling SPICE audio (tails/tails#18122)
5201 - Test suite: disable sound forwarding to host (Closes: #18122)
5203 -- Tails developers <tails@boum.org> Mon, 22 Mar 2021 08:11:53 +0000
5205 tails (4.15.1) unstable; urgency=medium
5207 * Upgrade sudo to 1.8.27-1+deb10u3 due to CVE-2021-3156 ("Baron
5210 -- Tails developers <tails@boum.org> Wed, 27 Jan 2021 19:33:08 +0100
5212 tails (4.15) unstable; urgency=medium
5214 * Upgrade Thunderbird to 1:78.6.0-1~deb10u1
5216 * Upgrade Tor Browser to 10.0.9, based on Firefox 78.7 (tails/tails!331)
5219 - Upgrade Tor Browser to 10.0.9, based on Firefox 78.7 (tails/tails#18100)
5222 - Fetch Tor Browser from our own archive.
5223 - Upgrade Tor Browser to 10.0.9-build2.
5225 * Test suite: support path of tcpdump in current sid (tails/tails!328)
5228 - Test suite broken on current sid: "No such file or directory -
5229 /usr/sbin/tcpdump" (tails/tails#18126)
5232 - Test suite: support path of tcpdump in current sid
5234 * Update CAs trusted to connect to our website (tails/tails!327)
5237 - Upgrader fails to check upgrades: CA changed for our website
5239 - Remove AddTrust_External_Root.pem from our website CA bundle
5244 - Reference issue and add another related XXX
5245 - Don't ship individual Let's Encrypt intermediate certificates files in the
5247 - Move Let's Encrypt intermediate certificates outside of the system-wide CA
5249 - Upgrader: trust current and upcoming Let's Encrypt intermediate certificates
5250 - Add current and upcoming Let's Encrypt intermediate certificates
5251 - Remove AddTrust_External_Root.pem from our website CA bundle (refs: #11811).
5253 * Upgrade Linux to 5.9.15-1~bpo10+1 (stable branch) (tails/tails!325)
5256 - Upgrade to Linux 5.9.15 (tails/tails#18104)
5257 - Install Intel SOF Firmware and Topology binaries from Debian
5259 - USB tethering is broken with iOS 14 => Need kernel upgrade (tails/tails#18097)
5262 - Refresh uBlock patch
5263 - Install Intel SOF Firmware and Topology binaries from Debian
5264 - Upgrade Linux to 5.9.15-1~bpo10+1
5265 - Update APT snapshot for the "debian" archive to 2021011501
5267 * Upgrade firmware-linux to 20201218-1
5269 * Migrate blueprints to GitLab wiki (tails/tails!323)
5271 * Fix stream isolation test suite after !306 (tails/tails!319)
5274 - Test suite: update wrt. recent htpdate changes (tails/tails#18095)
5277 - fix stream isolation test suite after !306
5279 * Refresh uBlock patch to fix devel branch FTBFS (tails/tails!318)
5282 - Refresh uBlock patch
5284 * Test suite: improve error reporting for GuestFS problems and user mistakes
5288 - Test suite: error out early if images to be tested are directories
5289 - Test suite: log all guestfs events, not only "trace" level messages
5291 * Make 'Upgrading the system' dialog appear faster (tails/tails!316)
5294 - Make "Upgrading the system" dialog appear faster (tails/tails#18051)
5297 - Upgrader test suite: adjust to match UI changes
5298 - Warn in advance about the network connection being disabled (#18051)
5299 - Avoid ambiguous future tense
5301 - Upgrader: don't declare variable in conditional statement
5302 - Upgrader: adjust test suite to user interaction changes
5304 - Make 'Upgrading the system' dialog appear faster
5306 * Make writing Tails.module more robust (tails/tails!315)
5309 - Make writing Tails.module more robust (tails/tails#17906)
5312 - Make writing Tails.module more robust
5314 * Fix support for Ledger hardware wallet, by upgrading python3-btchip
5318 - "No hardware device detected" with Ledger Nano S wallet in Electrum
5322 - Fix support for Ledger hardware wallet, by upgrading python3-btchip
5324 * Test expiration date for all keys trusted by APT (tails/tails!310)
5327 - Test expiration date for all keys trusted by APT (tails/tails#18094)
5330 - Test suite: improve Gherkin phrasing
5331 - Test suite: check expiration date for all trusted APT keys
5333 * Log more info upon curl failure in htpdate (tails/tails!306)
5336 - htpdate: make output more useful on name resolution errors
5337 - htpdate: include stdout and stderr of curl(1) upon failure
5338 - htpdate: remove misleading comment
5340 * Clarify that this message is about the size of the USB stick (#18073)
5344 - Improve error message when the USB stick is too small (tails/tails#18073)
5347 - Add comment to explain the unit being used
5348 - Display too small boot device size in GB, not GiB
5349 - Display too small boot device size with 1 digit of precision after the decimal
5351 - Make displayed number and unit match
5352 - Only use variable after we've assigned it a value
5353 - Clarify that this message is about the size of the USB stick (#18073)
5355 * Thunderbird: drop obsolete patch. (tails/tails!304)
5358 - Thunderbird: drop obsolete patch.
5360 * Make build reproducibility verification easier (tails/tails!303)
5363 - Don't trust any random key that has a UID which contains "deb.tails.boum.org"
5364 - Make formatting consistent with other command lines
5367 - Use numbered list: order matters
5368 - Reorder instructions to avoid a step essentially depend on the next one
5369 - contribute/build.mdwn: add instruction for importing deb.tails.boum.org key
5370 - release_process/test/reproducibility.mdwn: add -p to mkdir
5371 - Rakefile: add option to scp to disable agent
5373 * Test suite: differentiate between tordate and htpdate errors (tails/tails!295)
5376 - Test suite: split exception.
5377 - Test suite: use more specific exception.
5378 - We can have TimeSyncingError due to tordate, so no htpdate log exists.
5379 - Rename variable and rearrange code to fix scoping issues.
5380 - Test suite: differentiate between tordate and htpdate errors.
5382 * Add "Don't Show Again" button to the notification when starting Tails in a VM
5386 - Add "Don't Show Again" button to notifications where appropriate
5390 - swap buttons in tails-virt-notify-user
5391 - Refresh translations.
5392 - tails-documentation: drop yelp dependency.
5393 - Revert "Patch libdesktop-notify-perl to accept an array ref for actions."
5394 - tails-documentation: let Gnome start Tor Browser so it can quit.
5395 - tails-virt-notify-user: port form Perl to Python.
5397 - Improve button labels
5398 - Apply 1 suggestion(s) to 1 file(s)
5399 - Apply 1 suggestion(s) to 1 file(s)
5400 - tails-virt-notify-user: make action IDs globally unique again.
5402 - tails-virt-notify-user: make action buttons ordering deterministic.
5403 - Patch libdesktop-notify-perl to accept an array ref for actions.
5404 - live-persist: always enable support for "Don't ask again" (refs: #10553).
5405 - tails-virt-notify-user: only show "Don't ask again" if feature is available
5407 - tails-virt-notify-user: add "Don't ask again" button PoC (refs: #10553).
5408 - Add tooling for "Don't ask me again" feature for notifications etc.
5410 -- Tails developers <tails@boum.org> Mon, 25 Jan 2021 08:23:10 +0000
5412 tails (4.14) unstable; urgency=medium
5414 * Grant the user read access to external Persistent Storage (tails/tails!300)
5417 - Nautilus cannot open a plugged Tails Persistent Storage anymore
5421 - Make *external* TailsData's root user-readable when mounted (closes: #18050)
5423 * Upgrade Tor Browser to 10.0.7 (tails/tails!297)
5426 - Upgrade Tor Browser to 10.0.7 (tails/tails#18058)
5429 - Fetch Tor Browser from our own archive.
5430 - Upgrade Tor Browser to 10.0.7-build1.
5432 * Add a script to help updating our UX debt spreadsheet (tails/tails!292)
5435 - ux-debt-changes: list issues that had the UX:debt label removed
5436 - ux-debt-changes: list issues that had the UX:debt label added
5437 - ux-debt-changes: allow running only some of the supported reports
5438 - ux-debt-changes: cache GitLab API responses
5439 - ux-debt-changes initial version: lists solved or rejected UX:debt issues since
5442 * Upgrade to Linux 5.9 and to Buster 10.7 (tails/tails!288)
5445 - Upgrade Linux to 5.9 (tails/tails#17973)
5446 - Upgrade to Buster 10.7 (tails/tails#17995)
5449 - Upgrade Linux to 5.9.0-0.bpo.2, currently at version 5.9.6-1~bpo10+1
5450 - Install the kernel from buster-backports
5451 - Upgrade Tails and the Vagrant build box to Debian Buster 10.7
5453 * Test suite: make evince "Print to File" test more robust (tails/tails!287)
5456 - Test suite: update and fix comment
5457 - Test suite: make evince "Print to File" test more robust
5459 * Upgrade Linux to 5.9 (devel branch) (tails/tails!285)
5462 - Upgrade Linux to 5.9.0-0.bpo.2, currently at version 5.9.6-1~bpo10+1
5464 * Don't include URLs pointing to our live website in translatable strings
5468 - Upgrader: don't use non-existent debug method
5469 - GitLab CI: ensure we don't re-add translatable URLs to our live website
5470 - Update POT and PO files
5471 - Don't include URLs pointing to our live website in translatable strings
5474 * Test suite: bump timeout for the Greeter's GUI to update after language change.
5478 - Revert "Test suite: switch from sleep() to more robust approach."
5479 - Test suite: switch from sleep() to more robust approach.
5480 - Test suite: bump timeout for the Greeter's GUI to update after language change.
5482 * Port otr-bot to Python 3 and migrate to slixmpp (tails/tails!278)
5485 - Test suite's otr-bot.py has obsolete dependencies (tails/tails#17031)
5488 - Test suite doc: update dependencies
5489 - Make otr-bot quiet.
5491 - Improve variable names.
5492 - otr-bot: port to python3 and migrate from jabberbot to slixmpp.
5494 * Detect corrupt GnuPG public keyring and restore its backup (tails/tails!275)
5497 - Automate fix for "GnuPG keys missing" problem (tails/tails#17807)
5500 - Try to detect corrupt GnuPG pubring.kbx and restore any backup (refs: #17807)
5502 * Drop superfluous block.events_dfl_poll_msecs=1000 kernel parameter
5506 - Drop superfluous block.events_dfl_poll_msecs=1000 kernel parameter
5508 * Install the kernel from buster-backports (tails/tails!273)
5511 - Install the kernel from buster-backports
5513 * Enable Electrum's Ledger hardware wallet support (tails/tails!272)
5516 - Ledger Nano S hardware wallet is not recognized due to wrong udev rules
5520 - Enable Electrum's Ledger hardware wallet support
5522 * Test suite: update expected title of the GitLab page we use (tails/tails!271)
5525 - Test suite: update expected title of the GitLab page we use
5527 * Port Tails Installer to Python 3 (tails/tails!270)
5530 - Port Tails Installer to Python 3 (tails/tails#10085)
5531 - Installer: get rid of workaround for udisks bug#418 in SetFlags()
5535 - Update POT and PO files
5536 - Also undo mistaken changes to Tails 3.0 release note PO files.
5537 - Installer: get rid of workaround for udisks#418 in SetFlags()
5538 - Installer: update URL (Redmine → GitLab)
5539 - Installer: drop obsolete comment
5540 - Installer: don't make user-facing URLs translatable
5541 - Undo mistaken change to Tails 3.0 release notes.
5542 - Tails Installer: fix incorrect function/variable names.
5543 - Update installer's deps after porting to Python 3 (refs: #10085)
5544 - Apply 1 suggestion(s) to 1 file(s)
5545 - Tails Installer: don't show install/cancel buttons on warning prompts.
5546 - Tails Installer: delay deletion of parents until all drives have been examined.
5547 - Tails Installer: update PO/POT files after migration to Python 3.
5548 - Tails Installer: move into Python 3's dist-packages.
5549 - Tails Installer: revive _set_liberal_perms_recursive().
5550 - Tails Installer: pass argument list to subprocess.Popen().
5551 - Tails Installer: port to Python 3 based on saschamarkus's patches (refs:
5554 * Update deb.torproject.org's APT key (tails/tails!269)
5557 - Outdated APT key for deb.torproject.org (tails/tails#18042)
5560 - Stop installing deb.torproject.org-keyring
5561 - Update deb.torproject.org's APT key
5563 * Release process: drop dependency on parallel_collect_IUKs (tails/tails!267)
5567 - Release process: don't pass --debug to copy-iuks-to-rsync-server-and-verify
5568 - Release process: drop dependency on parallel_collect_IUKs
5571 * Allow users to change persisted admin password option (tails/tails!266)
5574 - Allow users to change persisted admin password option (tails/tails#18018)
5577 - Fix not being able to delete a once persisted admin password
5579 * Upgrade Thunderbird to 1:78.5.1-1~deb10u1, and accordingly update
5580 its patch series (tails/tails!264)
5583 - All branches FTBFS since Thunderbird 78.5.0 upload (tails/tails#18034)
5586 - Drop Thunderbird patch: applied in 78.5.0 upstream
5587 - Drop Thunderbird patch: applied in 78.5.0 upstream
5588 - patch-thunderbird: log which patch we're currently trying to apply
5591 * Stop installing the Unifont fonts (tails/tails!263)
5594 - Stop installing the Unifont fonts
5596 * Upgrade tor to 0.4.4.6 (tails/tails!259)
5599 - Upgrade tor to 0.4.4.6
5601 * Document python-gitlab setup needed for generate-changelog and generate-report
5605 - Don't track testing forever
5606 - Make instructions work on sid
5607 - python3-gitlab from Buster doesn't work
5608 - Document torsocks for GitLab scripts
5609 - Improve readibility
5610 - generate-changelog, generate-report: point to documentation
5611 - Document how to configure python-gitlab
5613 * Test suite: use the qemu-xhci USB controller (tails/tails!255)
5616 - Use qemu-xhci for TailsToaster (tails/tails#15831)
5619 - Test suite: use the qemu-xhci USB controller
5621 * Require Buster or newer for running our test suite (tails/tails!254)
5624 - Require Buster or newer for running our test suite (tails/tails#17842)
5627 - Test suite: run a Q35 5.0 machine
5628 - Test suite: drop workarounds for running on Stretch
5629 - run_test_suite: drop support for Stretch
5630 - Test suite doc: drop support for Stretch
5632 -- Tails developers <tails@boum.org> Mon, 14 Dec 2020 08:56:31 +0000
5634 tails (4.13) unstable; urgency=medium
5636 * Tor Browser 10.0.5 (tails/tails!253)
5639 - Upgrade to Tor Browser 10.0.5 (tails/tails#18017)
5640 - Most Tor Browser scenarios fail (tails/tails#18016)
5641 - Only ship locale definitions that the user can select in the Welcome Screen
5645 - Mark security issue as fixed
5646 - Test suite: avoid wait_any() in error-prone situation.
5647 - Test suite: adapt image so it works for RTL locales too.
5648 - Upgrade Tor Browser to 10.0.5-build1.
5651 * Browsers: drop el-GR from browser localization (tails/tails!252)
5654 - "The Unsafe Browser can be used in all languages supported in Tails" scenario
5655 fails in Greek (tails/tails#18015)
5658 - Browsers: drop el-GR from browser localization.
5660 * Test suite: wait for GNOME Overview launchers to be ready before interacting
5661 with them (tails/tails!251)
5664 - Most Tor Browser scenarios fail (tails/tails#18016)
5667 - Test suite: wait for GNOME Overview launchers to be ready before interacting
5668 with them (fixes: #18016).
5670 * Garbage collect website cache more aggressively (tails/tails!248)
5673 - Some builds fail on Jenkins due to lack of disk space to store cached built
5674 website (tails/tails#18010)
5677 - website-cache: don't delete lost+found directory
5679 - website-cache: garbage collect cache directories older than 20 days
5681 * generate-report: Buster compatibility, help the user install dependencies
5685 - generate-report: add helpful message on missing Python modules
5686 - generate-changelog, generate-report: support Python 3.7
5688 * custom-apt-cruft-check: fix output when there's nothing to remove
5692 - custom-apt-cruft-check: fix output when there's nothing to remove
5694 * Release process: streamline configuration and environment management
5698 - Release process: rename variable to avoid confusion
5699 - Apply 1 suggestion(s) to 1 file(s)
5700 - Fix typo in suggestion
5701 - Apply 3 suggestion(s) to 3 file(s)
5702 - rm-config: workaround pylint false positives
5703 - remove-unused-udfs: lint
5704 - remove-unused-udfs: actually use passed before_version
5705 - rm-config: add mypy exceptions
5706 - rm-config: add docstrings
5708 - rm-config: drop unused import
5709 - rm-config: import generation of IUK_SOURCE_VERSIONS
5711 - rm-config: import more configuration generation
5712 - rm-config: validate configuration
5713 - RM config template: quote "FIXME" as it should be in the manually-filled
5715 - rm-config: fix generate-environment for non-string values
5716 - rm-config: log config before validating
5717 - rm-config: pass stage to Config()
5718 - rm-config: add validate-configuration action
5719 - Release process: consistently provide editor command-line
5720 - rm-config: ensure generated shell snippet has a trailing newline
5721 - Release process: move generation of derived values to rm-config
5723 - Release process: fully phrase the rm-config usage bits
5724 - Release process: bring all notes together
5725 - Release process: document how to get your own local.yml
5726 - Release process: convert example local.yml to YAML, move generated variable out
5730 - rm-config: generate boilerplate config, read config & export it as shell
5732 - Release process: ensure the configuration does not taint the next release
5734 - Document config format
5735 - Ensure RM config snippets produce 1 single YAML document when concatenated
5736 - Release process: specify interface for new RM config management.
5738 * WhisperBack: include the output of lsusb in reports (tails/tails!244)
5741 - WhisperBack: include the output of lsusb in reports
5743 * Automate Tor Browser WebRTC tests (tails/tails!243)
5746 - Automate Tor Browser WebRTC tests (tails/tails#10264)
5749 - Test suite: automatically test that WebRTC is disabled in Tor Browser
5750 - Test suite: refactoring (extract code to function)
5752 * GitLab CI: only run the apt-snapshots-expiry job when relevant
5756 - GitLab CI: only run the apt-snapshots-expiry job when relevant
5757 - GitLab CI: switch to "Pipelines for Merge Requests" mode
5759 * GitLab CI: check PO files that we did not import from Transifex yet, only run
5760 PO checks when relevant (tails/tails!241)
5765 - GitLab CI: only run check-po-msgfmt and lint-po when relevant
5766 - GitLab CI: check PO files that we did not import from Transifex yet
5768 * Add script that checks which packages in our custom APT repo are unused
5772 - Remove cruft from our custom APT repository (2020Q4 edition)
5776 - custom-apt-cruft-check: look for custom package on the suite we're working on
5777 - custom-apt-cruft-check: update script description to match current usage
5778 - custom-apt-cruft-check: fix generated reprepro command
5779 - custom-apt-cruft-check: make output command line easier to copy'n'paste
5780 - custom-apt-cruft-check: use a command line argument to specify which suite to
5782 - Revert overzealous linting
5783 - custom-apt-cruft-check: fix branch check
5785 - custom-apt-cruft-check: add helpful comment to error message
5786 - custom-apt-cruft-check: output require reprepro clean up command
5787 - custom-apt-cruft-check: fetch .build-manifest from Jenkins
5788 - custom-apt-cruft-check: change quoting so \n becomes an actual newline
5789 - custom-apt-cruft-check: also support the devel branch/APT suite
5791 - custom-apt-cruft-check: add support for Onion service
5792 - Add script that checks which packages in our custom APT repo that are unused.
5794 * Release process: automate removing unused UDFs (tails/tails!239)
5797 - Remove UDFs for versions we'll never release
5798 - remove-unused-udfs: avoid computing the list of tags multiple times
5799 - remove-unused-udfs: avoid using global variable.
5800 - Release process: automate removing unused UDFs
5801 - Release process: remove now-irrelevant case
5802 - Release process: move cleaning up Changelog to a smarter place
5803 - Release process: remove duplicate operation
5804 - Release process: bundle together actions on the devel branch
5806 * GitLab CI: check that no APT snapshot will expire within 1 month
5810 - GitLab CI: give job a name that better reflects its, well, job
5812 - GitLab CI: check that no APT snapshot will expire within 1 month.
5813 - apt-snapshot-expiry: exit with error if any snapshot will expire within 1
5815 - Get rid of subshell.
5817 * Release process: automate generation of email to manual testers
5821 - Release process: make the shell complain if setting PAD was forgotten.
5822 - Release process: de-duplicate
5823 - Release process: automate generating the call for manual testing
5825 * Release process: streamline APT repository operations (tails/tails!236)
5828 - Release process: only context switch to freeze exception management if needed
5829 - Release process: streamline thawing time-based APT snapshots
5830 - Release process: streamline bumping time-based APT snapshots expiration date
5831 - Fix Vagrant build box APT snapshots updating info
5832 - Release process: streamline freezing time-based APT snapshots
5833 - Release process: automate
5834 - Release process: streamline post-release operations
5835 - Release process: streamline initializing the versioned custom APT suite
5836 - Replace link to obsolete reprepro homepage with link to Tracker
5837 - Release process: automate
5838 - Release process: streamline merging base branches
5839 - Custom APT repo doc: move to a script merging a main branch
5840 - Release process: streamline resetting custom APT suites
5842 - Custom APT repo doc: move to a script resetting a suite
5843 - Release process: streamline merging APT overlays
5844 - Release process: be extra explicit about what "freeze time" means
5845 - Revert "Release process: be explicit about the required setting when merging"
5847 * Ensure that we install the required custom packages from our custom APT repo
5851 - Release process: drop VeraCrypt reminder.
5852 - Build system: ensure we install the required custom packages from our custom
5855 * Release process: move big code snippets to scripts (tails/tails!234)
5859 - Release process: move to a script preparing the included website
5860 - Release process: move to a script cleaning SquashFS sort file
5862 - Release process: move to a script generating images signatures and Torrents
5864 - Release process: move to a script publishing test UDFs
5866 - Release process: move to a script signing UDFs
5867 - Release process: move to a script updating the trace file
5869 - Release process: move to a script publishing IUKs
5871 - Release process: move to a script announcing and seeding the Torrents
5873 - Release process: move to a script copying release files to the website
5874 - Release process: move Tor blog post generation to a script
5876 * check-po-msgstr: Add option to sanitize .po files (tails#17661)
5880 - check-po-msgstr: Add option to sanitize .po files (tails#17661)
5882 * GitLab CI: run the perl5lib, persistence-setup, and a subset of the upgrader
5883 test suites (tails/tails!228)
5886 - Upgrader test suite: drop noisy output
5887 - Add missing strictures
5888 - GitLab CI: run the subset of the iuk test suite that works in a Docker
5890 - GitLab CI: run the persistence-setup test suite
5891 - GitLab CI: run the perl5lib test suite
5892 - Skip chattr when running in a test environment
5893 - Perl program test suite doc: run tests in a UTF-8 locale
5894 - Perl program test suite doc: use command-line --all flag instead of environment
5896 - Perl program test suite doc: add missing dependency
5898 * GitLab CI: run unit tests for tails-gdm-error-message (tails/tails!224)
5901 - GitLab CI: run unit tests for tails-gdm-error-message
5903 * GitLab CI: run WhisperBack unit tests (tails/tails!222)
5906 - GitLab CI: run WhisperBack unit tests
5908 * GitLab CI: check PO files with lint_po, that calls i18nspector
5912 - GitLab CI: use Debian testing for lint-po stage
5913 - GitLab CI: check PO files with lint_po, that calls i18nspector
5915 * Fix test suite robustness regression introduced by the upgrade of lizard
5916 isotesters to Buster (tails/tails!218)
5919 - Test suite robustness regressed since the lizard isotesters were upgraded to
5920 Buster (tails/tails#17985)
5923 - Test suite: don't let Screen#find mess with Screen#wait_vanish's timeout
5925 - Test suite: make @screen.find() @screen.wait() for 5 seconds
5927 * Fix Tails Installer in Turkish and in languages that have a translation for the
5928 "Clone the current Tails" string (tails/tails!217)
5931 - Tails Installer does not allow upgrade in languages that have a translation for
5932 the "Clone the current Tails" string (tails/tails#17982)
5933 - tails-installer fails to operate in Turkish (tails/tails#17576)
5936 - Fix Tails Installer in Turkish
5937 - Update POT and PO files
5938 - Installer: s/Live.?OS/Tails/
5939 - Installer: use translations for strings defined in Glade
5941 * Move wrap_test_suite cucumber args logic into run_test_suite (tails/tails!216)
5944 - run_test_suite: use variable consistently.
5945 - run_test_suite: don't use current Git state, but the one described by Jenkin's
5946 environment variables.
5948 - Test suite: print which Cucumber tags are used on start.
5949 - Remove unused Rake 'test' task.
5950 - run_test_suite: make @doc tag handling independent of ~@fragile.
5952 - run_test_suite: move cucumber logic from wrap_test_suite in here (refs:
5953 tails/sysadmin#17772).
5955 * Test suite: automate a few manual tests (tails/tails!213)
5958 - Automatically test that we cannot login as root (tails/tails#10274)
5959 - Automate APT manual tests (tails/tails#17017)
5960 - Test that the correct keyboard layout is set (tails/tails#10261)
5961 - Test that DuckDuckGo is the default search engine in Tor Browser
5963 - Test that the on-screen keyboard works and its layout is correctly set
5967 - Test suite: fix regexp
5968 - Test suite: login using the button, not accelerators.
5969 - Test suite: implement find_any() with real_find().
5971 - Test suite: enable localization tests in Spanish and Turkish
5972 - Test suite: have #(exists|find|wait)_any return a hash instead of an array
5973 - run_test_suite: pass --expand to Cucumber
5974 - Test suite: handle the fact that the browser address bar is initialized lazily
5976 - Test suite: make new tests not run by default
5977 - Test suite: automate the screen keyboard manual tests
5978 - Test suite: enable keyboard layout and browser search engine tests for Arabic
5979 - Test suite: automate testing that DuckDuckGo is the default search engine in
5980 all tier-1 languages
5981 - Test suite: automate testing that the correct keyboard layout is set
5982 - Test suite: automate manual /bin/su tests
5983 - Test suite: automate manual APT tests
5984 - Test suite: fix steps semantics
5985 - Test suite: don't bother logging in when not needed
5987 * Drop dead code for read-only persistence (tails/tails!211)
5990 - Drop dead code for read-only persistence (tails/tails#17972)
5993 - Drop dead code for read-only persistence
5995 * Make the root directory of the persistence non-world-readable (tails/tails!210)
5998 - Make the root directory of the persistence non-world-readable
6002 - Put first what matters most to the user
6004 - Add period at the end of (imperative) sentences
6005 - Fix Markdown formatting
6006 - Add, and take benefit from, a GTK bookmark for the persistent Dotfiles source
6008 - Make the root directory of the persistence non-world-readable
6010 * Make udisks less verbose about "errors" to determine whether unused loop
6011 devices are encrypted (tails/tails!209)
6014 - Revert "Raise the maximum number of loop devices to 32 (refs: #12065)."
6016 * Allow raising sound volume above 100% (tails/tails!207)
6019 - Allow raising sound volume above 100% (tails/tails#17322)
6020 - Re-enable TCP timestamps (tails/tails#17491)
6023 - Allow raising sound volume above 100%
6025 * Re-enable TCP timestamps (tails/tails!206)
6028 - Re-enable TCP timestamps (tails/tails#17491)
6031 - Re-enable TCP timestamps
6033 * Add a button to restart Tails at the end of creating the Persistent Storage
6037 - Drop unneeded sentence
6038 - Add a button to restart Tails at the end of creating the Persistent Storage
6040 * Only install usable locales and Tor Browser langpacks (tails/tails!204)
6043 - Only ship locale definitions that the user can select in the Welcome Screen
6045 - Test suite often fails on Jenkins due to lack of "disk" space in
6046 /tmp/TailsToaster/TailsToasterStorage (tails/tails#17984)
6049 - Test suite: calculate supported locales outside of loop.
6050 - Test suite: add expected image for the Unsafe Browser in Spanish
6051 - Test suite: don't use English as a way of testing localization of the Unsafe
6053 - Test suite: adjust for the removal of locales-all
6054 - Avoid localepurge deleting ll_RR.utf8 locale variants
6055 - Build system: drop browser localization descriptions for languages not
6056 available in the Welcome Screen
6057 - Bring back localepurge, to delete unneeded localizations
6058 - Only ship Tor Browser langpacks for locales that the user can select in the
6060 - Only ship locale definitions that the user can select in the Welcome Screen
6062 * Thunderbird 78 and Enigmail obsoletion (tails/tails!203)
6065 - Upgrade to Thunderbird 78 ESR (tails/tails#17148)
6066 - Migrate from Enigmail to Thunderbird 78's built-in OpenPGP support
6070 - Test suite: adjust tests for Thunderbird 78.
6071 - Test suite: make local.yml load before *.d dirs, as intended.
6072 - Apply 1 suggestion(s) to 1 file(s)
6073 - Apply 1 suggestion(s) to 1 file(s)
6074 - Add missing 'set -u' to build-time hook.
6075 - Apply 1 suggestion(s) to 1 file(s)
6078 - I'm not sure whether it's still the case
6079 - Update more references
6080 - Instruct to disable the GnuPG feature of the Persistent Storage
6081 - Document 'Require Encryption' by default
6082 - Rewrite anonym's draft
6086 - Remove outdated screenshot
6087 - Explain better the protection of the Master Password
6088 - Thunderbird: drop part of patch.
6089 - Thunderbird: don't automatically attach public key to signed messages.
6090 - Thunderbird: backport patch introducing pref for whether to automatically
6091 attach the public key.
6092 - Thunderbird: backport fix for OpenPGP dialog when sending to a recipient
6094 - Create libresolv.so → libresolv-${version}.so symlink.
6095 - Thunderbird: use the "Require encryption by default" policy.
6096 - Thunderbird: apply patch fixing issue with default encryption policy.
6097 - Revert "Thunderbird: patch to disable protectHeaders AKA MemoryHole."
6098 - Revert "Thunderbird: set allow_external_gnupg = true."
6099 - Improve migration prompt
6100 - Help user know how old Tails 4.13 is
6101 - Update Persistent Storage UI and doc
6102 - Remove fuzzy duplicates in PO files.
6103 - Remove section that's too generic
6104 - Remove deprecated migration instructions
6105 - Add section to import private keys
6106 - Move shorter and more generic sections first
6107 - Use automatic TOC anchors
6108 - Merge inline with its only page
6109 - Add headings and make the instructions linear
6110 - Thunderbird: patch to disable protectHeaders AKA MemoryHole.
6111 - Apply 1 suggestion(s) to 1 file(s)
6112 - Apply 1 suggestion(s) to 1 file(s)
6113 - Apply 1 suggestion(s) to 1 file(s)
6114 - Apply 1 suggestion(s) to 1 file(s)
6115 - Apply 1 suggestion(s) to 1 file(s)
6116 - Apply 1 suggestion(s) to 1 file(s)
6117 - Apply 1 suggestion(s) to 1 file(s)
6118 - Hook thunderbird wrapper script into our translation infrastructure.
6119 - Thunderbird: notify user about Enigmail migration.
6120 - Update Thunderbird OpenPGP docs for version 78.
6121 - Drop everything related to Enigmail.
6122 - Thunderbird: set allow_external_gnupg = true.
6123 - Thunderbird: update renamed prefs from upstreamed patches.
6124 - Don't install Enigmail (refs: #17147).
6125 - Update Thunderbird patches from icedove.git at commit
6126 90184f927783370a65bfde271a67613d21372c9f
6128 - Revert "Install Thunderbird 68 until we're ready for 78"
6130 -- Tails developers <tails@boum.org> Mon, 16 Nov 2020 12:23:11 +0100
6132 tails (4.12) unstable; urgency=medium
6135 - Upgrade libx11 to 2:1.6.7-1+deb10u1
6138 - Upgrade firmware-linux-nonfree to 20200918-1
6140 * Upgrade to Tor Browser 10.0.2 (based on Firefox 78.4) (tails/tails!208)
6143 - Upgrade to Tor Browser 10.0.2 (based on Firefox 78.4) (tails/tails#17971)
6146 - Revert "Tor Browser: patch in prefs changes introduced in 10.0-build3."
6147 - Fetch Tor Browser from our own archive.
6148 - Upgrade Tor Browser to 10.0.2-build2.
6150 * Use v3 Onion service to connect to our custom APT repository (tails/tails!201)
6153 - Migrate deb.tails.boum.org APT source to v3 onion (tails/tails#17937)
6156 - Use v3 Onion service to connect to our custom APT repository
6158 * onion-grater: fix rate limiting of how often we try to connect to tor
6162 - onion-grater: fix rate limiting of how often we try to connect to tor
6164 * Electrum & Upgrader wrappers: fix i18n support and use canonical URL for manual
6165 upgrade doc (tails/tails!198)
6168 - tails-upgrade-frontend-wrapper points users to a 404 URL for manual upgrades in
6169 French (tails/tails#17958)
6170 - Some Python scripts fail to set the gettext text domain correctly
6175 - Electrum & Upgrader wrappers: fix internationalization support, by setting the
6176 text domain correctly
6177 - Unfuzzy 2 translation strings
6178 - Update POT and PO files
6179 - tails-upgrade-frontend-wrapper: remove spurious double quotes surrounding error
6181 - Update POT and PO files
6182 - tails-upgrade-frontend-wrapper: use canonical URLs for manual upgrade doc
6184 * Keep installing Thunderbird 68 until we're ready for 78 (tails/tails!197)
6187 - All branches FTBFS since Thunderbird 78 reached the Buster security repo
6191 - Install Thunderbird 68 until we're ready for 78
6193 * WhisperBack: sanitize HTTP(s) URLs (tails/tails!196)
6196 - Unscrubbed URL in WhisperBack reports (tails/tails#10695)
6199 - WhisperBack: sanitize HTTP(s) URLs
6201 * Avoid mirrors and rsync.lizard running out of disk space during the release
6202 process when upgrades to a beta/RC are present (tails/tails!195)
6205 - Avoid mirrors and rsync.lizard running out of disk space during the release
6206 process when upgrades to a beta/RC are present (tails/tails#17944)
6209 - Release process: delete beta/RC IUKs before uploading the IUKs for the final
6211 - Call for testing: set a deadline for providing feedback (2 days before the
6213 - Release process: automate generation of call for testing
6215 * Installer: fix various internationalization bugs (tails/tails!194)
6218 - Various internationalization bugs in the Installer (tails/tails#17961)
6221 - Update POT and PO files, to match translatable strings changes
6222 - Installer: allow translators to reorder string arguments in translations
6223 - Installer: fix translations being unused due to translatable string being
6226 * Upgrade Linux to 5.8 and Debian to 10.6 (tails/tails!188)
6229 - Upgrade Linux to 5.8 (tails/tails#17896)
6230 - Upgrade to Buster 10.6 (tails/tails#17930)
6231 - Regression with Intel Corporation [8086:22b0] and [8086:22b1] GPU since 4.9
6235 - Tor Browser AppArmor profile: allow access to DRI nodes
6236 - Tor Browser AppArmor profile: update patch to apply on top of 0.3.2-14
6237 - Update GNOME Shell to 3.30.2-11~deb10u2.0tails1
6238 - Update systemd to 241-7~deb10u4.0tails1
6239 - Refresh uBlock patch to apply cleanly on top of webext-ublock-origin-firefox
6241 - Adjust for webext-ublock-origin package split
6242 - Adjust fake linux-compiler-gcc-N-x86 hack to Linux 5.8's needs
6243 - Kernel command line: drop init_on_alloc=1, now set by default in Debian
6244 - Upgrade Linux to 5.8.0-2 (currently at version 5.8.10-1)
6245 - Bump snapshot of the Debian archive to 2020101002
6247 * Upgrade to tor 0.4.4.5 (tails/tails!187)
6250 - Upgrade to tor 0.4.4 (tails/tails#17932)
6253 - Bump APT snapshot of the "torproject" archive to 2020091901, that has tor
6256 * Port Perl code to translatable strings format supported by GNU gettext
6260 - Port Perl code to translatable strings format supported by GNU gettext
6264 - refresh-translations: check PO files while converting them to MO
6265 - Upgrader, Persistence wizard: set the UTF-8 flag on all strings returned by
6267 - Re-add loading POSIX: we use it for more than setlocale
6268 - Upgrader, Persistence wizard: assume UTF-8 locale
6269 - Drop unneeded call to setlocale
6270 - Drop meaningless attempt at localization
6271 - Persistence setup: encode output when displaying errors on stdout
6272 - IUK creation: make saveas method benchmarking info honor its $outfile_name
6274 - Port Perl code to translatable strings format supported by GNU gettext
6276 * Import WhisperBack into our main Git repository (tails/tails!179)
6279 - Move WhisperBack source to our main Git repository (tails/tails#16936)
6282 - generate-changelog: don't consider obsolete tails/whisperback project
6283 - Integrate WhisperBack into our l10n setup
6284 - Import WhisperBack
6286 * Import Tails Installer into our main Git repository and delete its dead code
6290 - Move Tails Installer to our main Git repository (tails/tails#17917)
6293 - generate-changelog: don't consider obsolete tails/installer project
6294 - Adjust tails-installer.desktop to l10n setup
6295 - Installer: adjust gettext files lookup
6296 - Installer: adjust data directory lookup
6297 - Update Transifex script & doc: most of our Transifex projects are obsolete
6298 - Adjust code and doc to the fact Tails Installer now lives in tails.git
6299 - Import Tails Installer
6301 * Add a button to cancel the upgrade while downloading (tails/tails!12)
6304 - Add a button to cancel the upgrade while it's downloading (tails/tails#17310)
6307 - Fix regression introduced by 26b9b1b83f3857232474dd2291889867e80a3b45
6308 - Upgrader: port code added in !12 to the l10n setup we switched to in !181
6310 - Convert tails-iuk-get-target-file | zenity pipeline to start / pump / finish
6312 - Update design doc wrt. new tails-iuk-get-target-file permissions
6313 - Remove unnecessary exit code handling
6315 - Allow tails-upgrade-frontend to kill the download process
6316 - Set a signal handler to cancel the download when the zenity dialog is closed
6317 - Add a button to cancel the upgrade while it is downloading
6319 -- Tails developers <tails@boum.org> Mon, 19 Oct 2020 08:35:44 +0000
6321 tails (4.11) unstable; urgency=medium
6324 - Upgrade Linux kernel to 5.7.0-3 at 5.7.17-1 (#17895).
6325 - Upgrade Tor Browser to 10.0 (#17933).
6326 - Upgrade Thunderbird to 68.12.0-1~deb10u1.
6327 - Upgrade xorg-server to 1.20.4-1+deb10u1.
6328 - Upgrade openexr to 2.2.1-4.1+deb10u1.
6329 - Upgrade bind9 to 9.11.5.P4+dfsg-5.1+deb10u2.
6330 - Upgrade ghostscript to 9.27~dfsg-2+deb10u4.
6331 - Upgrade libzmq5 to 4.3.1-4+deb10u2.
6333 * Minor improvements and updates
6334 - Upgrade Electrum to 4.0.2-2.
6336 * Tor Browser 10.0 (tails/tails!189)
6339 - Tor Browser: patch in prefs changes introduced in 10.0-build3.
6340 - Test suite: make scenario titles consistently not end with period
6341 - Unsafe Browser: adjust disabling add-ons to Tor Browser 10
6342 - Unsafe Browser: add missing escaping
6343 - Upgrade Tor Browser to 10.0-build2 (refs: #17933).
6344 - Rename, refactor, reorganize.
6345 - Tor Browser: use new trick to avoid mandatory extension signing.
6346 - Upgrade Tor Browser to 10.0a7.
6348 * Test suite: use versioned python2 interpreter for otr-bot.py (tails/tails!186)
6351 - Test suite: use versioned python2 interpreter for otr-bot.py
6353 * Test suite: switch to virtio transport for the remote shell (tails/tails!185)
6356 - Improve the remote shell's performance by switching to a virtio channel
6360 - Test suite: make SocketReadTimeout inherit from RuntimeError
6362 - Test suite: use factorized way to get and update the domain's XML definition
6363 - Fix Layout/EmptyLineAfterGuardClause Rubocop regression
6364 - Fix Style/StringLiterals Rubocop regression
6365 - Fix Naming/HeredocDelimiterNaming Rubocop regression
6366 - Rubocop: fix a Security/JSONLoad regression
6367 - tails-autotest-remote-shell: lint
6368 - tails-autotest-remote-shell: remove unused import
6369 - Remote shell: improve warning.
6370 - Test suite: log whenever remote_shell_is_up?() returns false.
6371 - Remote shell: use timed read() for virtio channel.
6372 - Remote shell: switch from serial to virtio transport (refs: #11888).
6374 * Release process: generate UDFs to non-final releases from any supported
6375 previous version (tails/tails!178)
6378 - UDF generation is broken for release candidates (tails/tails#17921)
6381 - Don't generate UDFs on the stable channel to point to a release candidate
6382 - Release process: generate UDFs to non-final releases from any supported
6385 * Don't override Debian's system-wide Thunderbird configuration (tails/tails!177)
6388 - Adding comment explaining extensions.update.enabled Thunderbird pref (Refs:
6390 - Removing network.protocol-handler.app.http[s] Thunderbird preferences (Refs:
6392 - Removing intl.locale.requested Thunderbird preference (Refs: #16021)
6393 - Changing header in Thunderbird's prefs file indicating they are Tails' prefs
6395 - aa_tails.js: Removing repeated thunderbird preferences
6396 - Moving local included thunderbird config to not overwrite debian default (Will-
6399 * Clarify phrasing of KeePassXC database renaming dialog (tails/tails!175)
6403 - Explain that the change came from KeePassXC (#17286)
6405 * Test Thunderbird with local email server on Jenkins (tails/tails!172)
6408 - Checking credentials in Thunderbird autoconfig wizard sometimes fails in the
6409 test suite (tails/tails#11890)
6410 - Run our own email (IMAP/POP3/SMTP) server for automated tests run on lizard
6414 - Test suite: fix Rubocop offenses
6416 - Test suite: add debug logging so we can tell whether we're installing the
6417 hosts' email server's snakeoil certificate
6418 - Test suite: add missing newline.
6419 - Test suite: set promiscuous trust for the certificate we import.
6420 - Test suite: import isotesters' snakoil SSL cert into Thunderbird.
6421 - Test suite: complete the switch from Icedove to Thunderbird namespace in
6422 configuration (refs: #12277)
6424 * Chutney docs and logging (tails/tails!167)
6427 - Test suite: improve logging message for initial Chutney cleanup.
6428 - Test suite: also log when Chutney is up and running.
6429 - Test suite: make Chutney logging visible without debug formatter.
6430 - Test suite: document our usage of Chutney (refs: #17801).
6432 * Install python3-trezor from buster-backports (tails/tails!165)
6435 - Install trezor packages from buster-backports
6437 * Fix “return to Greeter when clicking the Start Tails button” on Intel+AMD dual-
6438 GPU systems (tails/tails!163)
6441 - tails-unblock-network: skip most graphics-related devices when triggering udev
6443 * Round the download size in "Upgrade available" dialog (tails/tails!162)
6446 - Rounds the size of numbers displayed in stderr if is not possible to do an
6447 incremental upgrade because there is no free memory or disk space available
6448 - Round the download size in Upgrade available IUK dialog
6450 * Save KeePassXC database in persistent directory (tails/tails!161)
6453 - Adjust end-user documentation for new default KeePassXC database filename
6454 - Open Passwords.kdbx by default (#17286)
6455 - Install KeePassXC 2.5.4 from buster-backports (#17286)
6457 * Support audio on recent Intel platforms: Comet Lake, Whiskey Lake, etc.
6461 - auto/build: enable the pipefail option
6462 - Add Intel SOF Firmware and Topology binaries as a submodule and install them
6463 - build-tails: give our build scripts access to submodules' refs
6464 - Make code fail hard if it becomes obsolete
6466 * "Synchronizing the system's clock" notification: hidden → onion services
6470 - update hidden to onion services
6471 (https://gitlab.tails.boum.org/tails/tails/-/issues/15354)
6473 * Drop obsolete workaround for python3-qdarkstyle, fixing devel FTBFS
6477 - Drop now unneeded APT pinning on helpdev and python3-qdarkstyle
6478 - Revert "Avoid installing python3-qdarkstyle by default"
6480 * Build the changelog from GitLab MRs rather than from Git commits
6484 - generate-changelog: only list merged MRs
6485 - Changelog generation: support preparing a non-final (alpha, beta, RC) release
6487 - Release process: update obsolete reference to Stretch
6488 - Release process: use HTTPS URIs
6489 - Remove obsolete "release" script
6490 - RM doc: drop obsolete process hack around painful changelog generation
6491 - Release process and release notes checklist: switch to automated changelog
6493 - changelog.jinja2: add newlines for nicer formatting if rendered as Markdown
6494 - generate-changelog: skip merge commits
6495 - Add PoC script that generates a changelog from GitLab MRs
6497 * Include "initially installed Tails version" info in WhisperBack reports
6501 - Include "initially installed Tails version" in WhisperBack reports
6502 - Reorder debugging info: keep persistence-related info together
6504 * try_for() timeout is not honored (tails/tails!151)
6507 - Test suite: try_for timeout is not honored (tails/tails#17822)
6510 - Revert "Revert "Test suite: revert exception handling change in try_for""
6512 * Enable persistence for all Greeter settings (tails/tails!149)
6515 - Test suite: make sure Greeter settings are default when they should.
6516 - Test suite: add scenario testing persistent Greeter options (refs: #17136).
6517 - Test suite: support entering sudo/persistent password in German.
6518 - Test suite: simplify.
6519 - Test suite: refactor.
6520 - Test suite: restore $language after reboot during the same scenario.
6521 - Test suite: consistently wait for notifications after logging in.
6522 - Greeter: Explain in a comment why we need this ugly workaround
6523 - Greeter: expand persistence support to all settings.
6525 * Tor browser 10.0.x based on ESR78 (tails/tails!148)
6528 - Automate Tor Browser import branch name generation.
6529 - Tor Browser: disable update checks via Enterprise Policy mechanism.
6530 - Revert "Tor Browser: disable the update check with a hack."
6531 - Upgrade Tor Browser to 10.0a6.
6532 - Tor Browser: disable the update check with a hack.
6533 - Test Suite: bump image.
6534 - Test Suite: bump UnsafeBrowserStartPage.fa.png.
6535 - Unsafe Browser: enable userChrome.css.
6536 - Unsafe Browser: Fix pref → user_pref error.
6537 - Tor Browser: drop userChrome.css.
6538 - Unsafe Browsesr: make DNS resolution work.
6539 - Revert "Tor Browser: remove leftover .orig."
6540 - Revert "Tor Browser: delete all Namecoin stuff."
6541 - Revert "Tor Browser: temporarily disable all non-en_US locales."
6542 - Tor Browser: refresh extension hacks patches.
6543 - Upgrade Tor Browser to 10.0a5-build2.
6545 - Don't ignore grep failure.
6546 - Tor Browser: delete all Namecoin stuff.
6547 - Tor Browser: use the bundled libstdc++.so.6.
6548 - Tor Browser: remove leftover .orig.
6549 - Tor Browser: temporarily disable all non-en_US locales.
6550 - Upgrade Tor Browser to 10.x nightly build as of 2020-08-13.
6551 - Tor Browser: naming scheme for nightly builds has changed.
6553 * Hide broken "Turn on Wi-Fi Hotspot" feature in GNOME Wi-Fi settings
6557 - Hide broken "Turn on Wi-Fi Hotspot" feature in GNOME Wi-Fi settings (#17887)
6559 * Upgrade Linux to 5.7.17-1, adjust for updated Electrum dependencies, support
6560 older TREZOR firmware (tails/tails!142)
6563 - Avoid installing python3-qdarkstyle by default
6564 - Install python3-hid, to support the HID version of TREZOR
6565 - Install python3-qdarkstyle from Bullseye: Electrum now depends on it (#17904)
6566 - Upgrade Linux to 5.7.0-3, currently at version 5.7.17-1 (#17895)
6567 - Revert "Install python3-cryptography, otherwise Electrum 4.0.2-0.1 won't start"
6568 - Install python3-construct from buster-backports: python3-trezor needs it
6571 * Fix sorting Intel GPUs last in the "Error starting GDM" message
6575 - Multiple GPUs are not sorted in the intended order in the "Error starting GDM"
6576 message (tails/tails#17903)
6579 - Fix sorting Intel GPUs last in the "Error starting GDM" message (#17903)
6581 * Include information about the contents of the system partition in WhisperBack
6582 reports (tails/tails!140)
6585 - tails-debugging-info: include information about the contents of the system
6587 - tails-debugging-info: add support for commands that need to go through a shell
6589 -- Tails developers <tails@boum.org> Mon, 21 Sep 2020 12:03:51 +0200
6591 tails (4.10) unstable; urgency=medium
6594 - Upgrade Tor Browser to 9.5.4-build1 (Closes: #17885).
6595 - Upgrade Linux kernel to 5.7.0-2 at 5.7.10-1 (Closes: #17841,
6599 - Make iPhone Tethering work by adding udev rule to disable MAC
6600 spoofing for it (Closes: #17820).
6601 - Remove broken Thunderbird protocol selection. This code has been
6602 a no-op in practice since at least Tails 4.0. We've decided to
6603 reject #17276 and investigate what the biggest problems are for
6604 email in Tails with slow/shitty Internet connections:
6605 default'ing to IMAP may, or may not, be part of these
6606 problems (Closes #17276).
6608 * Minor improvements and updates
6609 - Upgrade to Tor 0.4.3.6 (Closes: #17835).
6610 - Upgrade to Electrum 4.0.2 (Closes: #17828).
6611 - Hide Thunderbird welcome message: it is not relevant in the
6612 context of Tails. For example, it feels weird that we would
6613 encourage users to donate to Thunderbird about as loudly as we
6614 encourage them to donate to Tails. Besides, the default message
6615 is retrieved from the web when Thunderbird starts. We don't
6616 need this extra network activity.
6617 - import-translations: use *_release branches instead of
6618 *_completed branches. The new *_release branches contain exactly
6619 what we want, i.e. all reviewed translations from
6620 Transifex. While the *_completed branches only contain PO files
6621 for languages that are fully translated (Closes: #16774).
6624 - Upgrade snapshot of the Debian archive to 2020081601, including
6625 the 10.5 point release of Debian Buster (Closes: #17790).
6626 - On Bullseye and newer: use custom, fake, unversioned python
6627 packages. The unversioned python packages are not shipped in
6628 Bullseye/sid anymore, and even old versions are not installable
6629 anymore (Closes: #17858).
6630 - Import vagrant-libvirt's create_box.sh script. It's not included
6631 in vagrant-libvirt 0.1.2-1 anymore (Closes: #17872).
6634 - Improve robustness for scenario "The Additional Software dpkg
6635 hook notices when persistence is locked down while installing a
6637 - Improve robustness for scenario "Use GNOME Disks to unlock a USB
6638 drive that has a basic VeraCrypt volume with a keyfile".
6639 - Improve robustness of cloning a Git repository.
6640 - Don't hammer resources of the system under test while
6641 installing/removing packages. I see every such dpkg|grep call
6642 takes about 0.3 seconds on lizard, i.e. 30% of the 1 second
6643 default delay between checks, which I suspect is enough to slow
6644 down the package installation/removal we're exercising.
6645 - Update expected title of the GitLab page we use
6646 - Rubocop: target Ruby 2.5 (Buster).
6648 -- Tails developers <tails@boum.org> Mon, 24 Aug 2020 13:28:43 +0200
6650 tails (4.9) unstable; urgency=medium
6653 - Upgrade Tor Browser to 9.5.3-build1 (Closes: #17827).
6654 - Upgrade Thunderbird to 1:68.10.0-1~deb10u1 (DSA-4718).
6655 - Upgrade Linux to 5.7.0-1 at 5.7.6-1 (Closes: #17786).
6656 - Upgrade Evolution Data Server to 3.30.5-1+deb10u1 (DSA-4725).
6657 - Upgrade FFmpeg to 7:4.1.6-1~deb10u1 (DSA-4722).
6658 - Upgrade ImageMagick to 8:6.9.10.23+dfsg-2.1+deb10u1 (DSA-4712).
6659 - Upgrade NSS to 2:3.42.1-1+deb10u3 (DSA-4726).
6660 - Upgrade OpenMPT to 2:3.42.1-1+deb10u3 (DSA-4729).
6661 - Upgrade WebKitGTK to 2.28.3-2~deb10u1 (DSA-4724).
6664 - Fix quoting issue triggering problems with some administration
6665 passwords (Closes: #17792).
6666 - Fix toram boot option by not starting the tails-shutdown-on-media-removal
6667 service unit in that case (Closes: #17800).
6668 - Fix keyboard setting handling in the greeter (Closes: #17794).
6669 - Make sure log messages can be displayed by Plymouth, which has strict
6670 limits, and improve parsing in tails-gdm-error-message (Closes: #17533).
6671 - Upgrade firmware-linux and firmware-nonfree to 20200421-1.
6673 * Minor improvements and updates
6674 - Ensure MAC spoofing messages are translated (Closes: #17783).
6675 - Improve failure handling for MAC spoofing (Closes: #17784).
6676 - Trigger MAC spoofing "panic" mode when the debug=test_mac_spoof_panic boot
6678 - Upgrade VirtualBox guest modules to 6.1.12-dfsg-5.
6681 - Automate post-release GitLab updates, using gitlab-triage (Closes: #17589).
6682 - Fix a lot of possible problems spotted by ShellCheck, thanks to Paul Wise.
6683 - Stop installing custom firmware: firmware-realtek 20200421-1 includes it
6684 (See: #17786, #17323).
6685 - Update Thunderbird patches (Closes: #6156, #17808).
6686 - Bump snapshot of the Debian archive to 2020071801 (Closes: #17786).
6689 - Add shell-special chars to passwords (See: #17792).
6690 - Always test the Unsafe Browser in Farsi.
6691 - Fix support for symlinks (Closes: #17547).
6692 - Update persistence-setup test suite for a new preset in Welcome Screen
6694 - Drop Thunderbird POP3 test.
6695 - Make the "the Tor Browser has started" step stricter.
6696 - Improve error output when the Unsafe Browser fails to start in some locale.
6698 -- Tails developers <tails@boum.org> Mon, 27 Jul 2020 09:03:10 +0200
6700 tails (4.8) unstable; urgency=medium
6703 - Welcome Screen: after a large refactoring we now can persist
6704 settings (See: #17136)! Currently it is limited to the newly
6705 added option that controls whether the Unsafe Browser is allowed
6706 to start (#17085). In the next major release we'll support all
6710 - Allow to disable the Unsafe Browser in the Welcome Screen
6711 (Closes: #17085). The Unsafe Browser can be used by exploits to
6712 deanonymize the Tails user (for details, see: #15635).
6713 - Upgrade Tor Browser to 9.5.1-build2 (Closes: 17782).
6715 * Upgrade to Thunderbird 68.9.0 (DSA-4702).
6716 * Disable unsafe MX automatic configuration method (Closes:
6718 * Disable unsafe MS Exchange automatic configuration method
6720 - Upgrade Linux kernel to linux-image-5.6.0-2 at 5.6.14-2 (Closes:
6722 - Upgrade gnutls28-based packages to 3.6.7-4+deb10u4 (DSA-4697).
6723 - Upgrade intel-microcode to 3.20200609.2~deb10u1 (DSA-4701).
6726 - Trigger emergency shutdown on resume when the boot device was
6727 removed while suspended (Closes: #16787).
6728 - Thunderbird: make searching in messages (Find bar and Find in
6729 This Message) work again (Closes: #17328).
6730 - Ensure Mac Spoofing Panic messages will be correctly displayed
6731 (Closes: #17779). udev may close child processes when a process
6732 associated with a rule (/etc/udev/rules) terminates so we wait
6733 for those processes before exiting.
6734 - Wrap `seahorse-tool --import` so it is handled by `gpg --import`
6735 (Closes: #17183). This makes importing binary keys via GNOME
6736 Files integration possible again.
6738 * Minor improvements and updates
6739 - Upgrade to tor 0.4.3.5-1 (Closes: #17741).
6740 - Upgrade LibreOffice to 1:6.1.5-3+deb10u6.
6741 - Upgrade VirtualBox guest modules to 6.1.10-dfsg-1.
6742 - Append Unsafe Browser setting to WhisperBack debug info.
6745 - Upgrade snapshot of the Debian archive to 2020061003, including
6746 the 10.4 point release of Debian Buster (Closes: #17620).
6747 - Tor Browser AppArmor profile: update patch to apply on top of
6748 0.3.2-11 (Closes: #17612)
6749 - Thunderbird AppArmor profile: update patch to apply on top of
6750 68.9.0 (Closes: #17769).
6753 - Establish a coding standards baseline on our Ruby code base
6754 using Rubocop (Closes: #17646). This *MASSIVE* change includes
6755 mainly stylistic fixes and linting but also a few bug fixes,
6756 some dead code removal and code simplifications/refactorings,
6757 spelling fixes, improved gherkin and even removal the of
6758 a few duplicated tests and merging of very similar tests.
6759 - Improve robustness of navigating the GRUB menu in UEFI mode, and
6760 consequently drop the @fragile tag on the UEFI boot scenario
6762 - Allow configuring the number of vCPUs given to TailsToaster.
6763 Based on work done by kytv (♥) on #6729. On powerful hardware
6764 with many CPUs, Tails boots much faster with >2 vCPUs given to
6766 - Disable desktop size and clipboard interference between the host
6767 system and the system under test when using --view.
6768 - Ensure we run post_snapshot_restore_hook every time it's needed.
6769 - Fix running with XDG_SESSION_TYPE unset (Closes: #17596).
6770 - Always test the localized start up page of the Unsafe Browser.
6771 - Add --keep-chutney option to keep Chutney data, but no
6772 snapshots, between runs.
6773 - Revert "Test suite: disable tests about notifications in case of
6774 MAC spoofing failure (refs: #10774)"
6775 - Verify that the Unsafe Browser is disabled by default.
6776 - Test suite: fix --image-bumping-mode.
6778 -- Tails developers <tails@boum.org> Mon, 29 Jun 2020 16:02:18 +0200
6780 tails (4.7) unstable; urgency=medium
6783 - Upgrade Tor Browser to 9.5-build2 (Closes: #17710).
6784 - Upgrade APT to 1.8.2.1 (DSA-4685).
6785 - Upgrade BIND to 1:9.11.5.P4+dfsg-5.1+deb10u1 (DSA-4689).
6786 - Upgrade WebKitGTK to 2.28.2-2~deb10u1 (DSA-4681).
6787 - Upgrade Thunderbird to 1:68.8.0-1~deb10u1 (DSA-4683).
6790 - Improve Additional Software reliability (Closes: #17278): disable
6791 periodic APT operations entirely, adjust timeouts, force data
6792 synchronization, preserve file ownership.
6793 - Make memory erasure feature compatible with overlayfs (Closes: #15146).
6794 - Adjust various documentation for the new GitLab-based hosting.
6796 * Minor improvements and updates
6797 - Fix title of unlock-veracrypt-volume error dialog in case of incorrect
6798 password (Closes: #17668).
6799 - Clean up confusing torrc (Closes: #17706).
6802 - IUK creation: don't use extreme compression options for the outer
6803 SquashFS container refs.
6804 - IUK creation: add support for building several IUKs in parallel locally
6806 - IUK verification: add support for fetching IUKs built in parallel on
6807 Jenkins (Closes: #17658).
6808 - Release process: generate UDFs on the alpha channel for previous
6809 non-final releases (Closes: #17614).
6810 - Remove aufs-based IUK generation code and doc (Closes: #17489).
6813 - Adjust for augmented timeouts in Additional Software.
6814 - Adjust locale lookup to check several directories.
6815 - Speed up 'I fill a ... MiB file' step by 1000%.
6816 - Keep latest test suite screenshot (Closes: #17621).
6817 - Fix test suite breaking when the user connects to the VM via virt-viewer
6819 - Adjust reference images and titles following the migration to GitLab
6820 (Closes: #17718, 17719).
6822 -- Tails developers <tails@boum.org> Mon, 01 Jun 2020 18:31:41 +0200
6824 tails (4.6) unstable; urgency=medium
6827 - Upgrade Tor Browser to 9.0.10-build2 (Closes: #17660).
6828 - Upgrade Thunderbird to 1:68.7.0-1~deb10u1 (MFSA-2020-14, DSA-4656).
6829 - Upgrade Git to 1:2.11.0-3+deb9u3 (DSA-4657, DSA-4659).
6830 - Upgrade Node.js to 10.19.0~dfsg1-1 (DSA-4669).
6831 - Upgrade OpenLDAP to 2.4.47+dfsg-3+deb10u2 (DSA-4666).
6832 - Upgrade OpenSSL to 1.1.1d-0+deb10u3 (DSA-4661).
6833 - Upgrade ReportLab to 3.5.13-1+deb10u1 (DSA-4663).
6834 - Upgrade WebKitGTK to 2.26.4-1~deb10u3 (DSA-4658).
6837 - Switch Japanese input method from Anthy to Mozc (Closes: #16719).
6838 - Install the libu2f-udev package, for U2F device support.
6839 - Update our list of 'Favorites' applications (Closes: #16990).
6842 - lint_po: support locales with "@" in their name, such as ru@petr1708
6844 - perl5lib: declare missing test dependencies (Closes: #17591).
6845 - iuk: declare missing test dependencies (Closes: #17592).
6846 - Upgrade to po4a 0.55 for Tails images and Vagrant box (Closes: #17005).
6849 - Print disk usage information when the test suite fails with “No
6851 - Ensure no zombie processes are left around, by cleaning subprocesses
6852 correctly (Closes: #17551).
6853 - Prevent webrick from becoming a zombie process.
6854 - Avoid test suite getting stuck due to a zero timeout.
6855 - Fix obsoletion warnings (Closes: #17552).
6856 - Add root check and --allow-non-root option (Closes: #17613). Let's
6857 make it clear running the test suite requires root privileges in
6860 -- Tails developers <tails@boum.org> Mon, 04 May 2020 18:43:38 +0200
6862 tails (4.5) unstable; urgency=medium
6865 - Upgrade Tor Browser to 9.0.9-build1 (Closes: #17594).
6866 - Upgrade BlueZ to 5.50-1.2~deb10u1 (DSA-4647).
6867 - Upgrade GnuTLS to 3.6.7-4+deb10u3 (DSA-4652).
6869 -- Tails developers <tails@boum.org> Mon, 06 Apr 2020 21:51:05 +0200
6871 tails (4.5~rc1) unstable; urgency=medium
6874 - Migrate from aufs to overlayfs (Closes: #8415). This change touches
6875 many components which won't all be listed individually, but some
6876 highlights are listed below:
6877 ⋅ Adjust the build system to stop building the aufs kernel module.
6878 ⋅ Switch the kernel command line from union=aufs to union=overlayfs.
6879 ⋅ Adjust AppArmor profiles (Closes: #9045, #12112).
6880 . Adapt chroot-browsers (Closes: #12105).
6881 ⋅ Drop the aufs Git submodule.
6882 ⋅ Make memory erasure feature compatible with overlayfs
6884 ⋅ Make Upgrader support and also generate overlayfs-based IUKs by
6885 default (Closes: #9373).
6886 - Use GRUB with Secure Boot support for x86_64 (Closes: #6560, #15806).
6887 This is also a large change, touching many components:
6888 ⋅ Install grub from bullseye.
6889 ⋅ Introduce a custom grub configuration file.
6890 ⋅ Use a custom background image.
6891 ⋅ Mimick Debian Installer's efi-image build script to handle all
6892 details in binary local hooks.
6893 ⋅ Add SYSLINUX in the syslinux bootloader menu, to make it easier to
6894 troubleshoot GRUB vs. syslinux issues (Closes: #17538).
6895 ⋅ Upgrader: Adjust to also handle files in EFI/debian when dealing
6897 ⋅ Adjust test suite.
6898 - Migrate test suite from Sikuli to a combination of OpenCV (image
6899 matching), xdotool (mouse interaction), plus libvirt's send-key
6900 (keyboard interaction) (Closes: #15460). This is another major
6901 changes, allowing the test suite to run on Buster-based systems,
6902 touching various areas of the test suite, among which:
6903 ⋅ Add workaround for the Greeter when restoring snapshot.
6904 ⋅ Fix dependencies for Buster.
6905 ⋅ Replace some Sikuli-based options with some OpenCV-based ones
6906 (e.g. --retry-find → --image-bumping-mode).
6907 ⋅ Handle non-English keyboards.
6908 ⋅ Fix --capture on Buster and above.
6909 ⋅ Deal with Buster having migrated from avconv to ffmpeg.
6912 - Upgrade ICU to 63.1-6+deb10u1 (DSA-4646).
6914 * Minor improvements and updates
6915 - Refactor tails-documentation (Closes: #16903).
6918 - Freeze APT snapshots for 4.5~rc1.
6919 - Rakefile: always disable website caching when building from a tag
6921 - Rakefile: fix recommended permissions (libvirt needs +r to share the
6922 source tree with the Vagrant box).
6923 - Import persistence-setup.git from its own repository into tails.git
6924 (Closes: #17526, #6487).
6925 - IUK: ensure rsync runtime dependency is installed.
6928 - Adjust for the aufs → overlayfs migration (Closes: #12106, #17440,
6930 - run_test_suite: don't print usage on error.
6931 - run_test_suite: --view/--vnc-server-only are only supported on x11.
6932 - Optimize checking if file is empty.
6933 - Speed up some test failures to avoid resource starvation.
6934 - Check for tcplay dependency.
6935 - Increase chances chutney starts after unclean shutdown.
6936 - Make chutney log what it is doing.
6937 - Make opening Thunderbird's Extensions tab more robust.
6939 -- Tails developers <tails@boum.org> Thu, 26 Mar 2020 22:51:35 +0100
6941 tails (4.4.1) unstable; urgency=medium
6944 - Upgrade Tor Browser to 9.0.7-build1 (Closes: #17539).
6945 - Upgrade tor to 0.4.2.7 (Closes: #17531).
6946 - Upgrade Thunderbird to 1:68.6.0-1~deb10u1 (MFSA-2020-10, DSA-4642).
6947 - Upgrade WebKitGTK to 2.26.4-1~deb10u2 (DSA-4641).
6950 - lint_po: avoid race conditions when checking PO files (Closes: #17359).
6952 -- Tails developers <tails@boum.org> Sun, 22 Mar 2020 20:27:47 +0100
6954 tails (4.4) unstable; urgency=medium
6957 - Upgrade Tor Browser to 9.0.6-build2 (MFSA-2020-09).
6958 - Upgrade Linux kernel to linux-image-5.4.0-4, currently at 5.4.19-1
6960 - Upgrade Thunderbird to 68.5.0-1~deb10u1 (MFSA-2020-07, Closes: #17481).
6961 - Upgrade cURL to 7.64.0-4+deb10u1 (DSA-4633).
6962 - Upgrade evince to 3.30.2-3+deb10u1 (DSA-4624).
6963 - Upgrade Pillow to 5.4.1-2+deb10u1 (DSA-4631).
6964 - Upgrade ppp to 2.4.7-2+4.1+deb10u1 (DSA-4632).
6965 - Upgrade WebKitGTK to 2.26.4-1~deb10u1 (DSA-4627).
6968 - Fix missing firmware for RTL8822BE/RTL8822CE (See: #17323). Use the
6969 tails-workarounds provided firmwares until the firmware-realtek
6970 package is updated with the patch by Sjoerd Simons (Debian#935969).
6971 Note: This might not be sufficient to support those cards.
6973 * Minor improvements and updates
6974 - Upgrade dogtail to 0.9.11-6.
6975 - Upgrade virtualbox to 6.1.4-dfsg-1.
6978 - Vagrant build box: disable mitigation features for CPU
6979 vulnerabilities (Closes: #17386). Given the kind of things we do in
6980 our Vagrant build box, it seems very unlikely that vulnerabilities
6981 such as Spectre and Meltdown can be exploited in there. Let's
6982 reclaim some of the performance cost of the corresponding mitigation
6984 - Enable website caching by default, with a way option to disable it
6986 - Key the website cache on debian/changelog too (Closes: #17511).
6987 - Update APT snapshot of the Debian archive to 2020030101.
6988 - Add support for the tails-workarounds submodule.
6990 -- Tails developers <tails@boum.org> Wed, 11 Mar 2020 10:59:10 +0100
6992 tails (4.3) unstable; urgency=medium
6995 - Upgrade Tor Browser to 9.0.5-build2 (Closes: #17469).
6996 - Update Linux kernel to linux-image-5.4.0-3-amd64, currently at
6997 5.4.13-1 (Closes: #17443).
6998 - Upgrade Thunderbird to 1:68.4.1-1~deb10u1
6999 - Upgrade WebKitGTK to 2.26.3-1~deb10u1 (DSA-4610).
7002 - live-persist: don't backup empty configuration files (Closes:
7003 #17112). In some cases, the previous code would overwrite a
7004 non-empty backup file with an empty one, making it harder to
7005 recover from the already painful #10976.
7006 - create-usb-image-from-iso: Run syslinux within proper chroot
7007 (Closes: #17179). Previously we ran syslinux from the host,
7008 which can lead to bugs if its versions differs from the one
7009 inside the chroot (which is what Tails will use later). Thanks
7010 to Johan Blåbäck for the patch!
7011 - Tails Upgrader: Fix progress bar not pulsating and hide useless
7012 OK button (Closes: #16603).
7014 * Minor improvements and updates
7015 - Upgrade tor to 0.4.2.6 (Closes: #17059).
7016 - Install the trezor package, which adds a command-line (only)
7017 tool for managing Trezor devices (Closes: #17463). Thanks to
7018 Pavol Rusnak for the patch!
7019 - As a consequence of the Linux kernel upgrade we also:
7020 * Upgrade aufs to 5.4.3 20200127.
7021 * Install VirtualBox guest tools and kernel modules from sid.
7024 - Upgrade snapshot of the Debian archive to 2020020302, including
7025 the 10.3 point release of Debian Buster (Closes: #17458).
7026 - Add opt-in caching of the wiki (Closes: #15342).
7027 - Use mksquashfs' -no-exports option even when the fastcomp build
7028 option is set. "fastcomp" is supposed to only tweak SquashFS
7029 compression settings, but so far it was also disabling the
7030 -no-exports option that we set for our release builds.
7031 - Drop a bunch of packages installed for ikiwiki for various
7033 * libfile-chdir-perl, libyaml-perl and libxml-simple-perl which
7034 was needed back when we built our own ikiwiki from Git… a
7036 * libtext-multimarkdown-perl used multimarkdown ikiwiki which
7037 its doubtful we ever will use.
7038 * libhtml-scrubber-perl, libhtml-template-perl,
7039 libhtml-parser-perl, libyaml-libyaml-perl and liburi-perl
7040 which are already installed as ikiwiki dependencies.
7041 - Install libimage-magick-perl instead of the perlmagick
7042 transitional package.
7043 - Don't install obsolete dependencies whois and eatmydata.
7044 - Consistently validate individual build options as we parse them.
7045 This is consistent with how we handled "fastcomp" already. Only
7046 compatibility checks between multiple build options really need
7047 to happen later, once we've parsed all build options.
7048 - Remove 5 years old transition code
7049 - Fully provision the Vagrant box every time it starts, and
7050 partially re-provision it for every build.
7051 - Behave correctly when disabling a previously set "offline" or
7052 "vmproxy+extproxy" build option. Previously, setting one of
7053 these build options *once* would taint the Vagrant box forever
7054 with the resulting apt-cacher-ng configuration.
7055 - Shrink the apt-cacher-ng cache after a successful build too
7057 - Set up infrastructure to retrieve log file from the VM even on
7058 build failure (Closes: #7749).
7059 - Always build from a fresh Git clone.
7060 - Set the permissions that Vagrant needs inside the source tree
7061 (Closes: #11411, #16607, #17289).
7064 - Remove Seahorse key synchronization scenarios. These 2 scenarios
7065 never pass due to #17169, so currently:
7066 * They don't teach us anything new → no benefit.
7067 * Every time a developer looks at test suite results,
7068 they need to filter out this known problem, which takes time
7069 and trains us to ignore problems.
7071 -- Tails developers <tails@boum.org> Mon, 10 Feb 2020 14:08:59 +0100
7073 tails (4.2.2) unstable; urgency=medium
7076 - Upgrade Tor Browser to 9.0.4-build1 (MFSA-2020-03)
7079 - Avoid the Upgrader proposing to upgrade to the version
7080 that's already running (Closes: #17425)
7081 - Avoid 2 minutes delay while rebooting after applying an automatic
7082 upgrade (Closes: #17026)
7083 - Make Thunderbird support TLS 1.3 (Closes: #17333)
7086 - IUK generation: don't make all files in the SquashFS diff
7087 owned by root, otherwise an upgraded system cannot start
7090 -- Tails developers <tails@boum.org> Mon, 13 Jan 2020 09:21:51 +0000
7092 tails (4.2) unstable; urgency=medium
7095 - Switch to a redesigned upgrade system (Closes: #15281), which:
7096 - removes the need for manual upgrades caused by lack of disk space
7099 - Bump snapshot of the Debian archive to 2019122802
7102 - Upgrade Tor Browser to 9.0.3 (Closes: #17402)
7103 - Upgrade Linux to 5.3.15-1 (Closes: #17332)
7104 and upgrade the aufs module to 5.3-20191223
7105 - Upgrade Thunderbird to 1:68.3.0-2~deb10u1
7106 - Upgrade libsasl2 to 2.1.27+dfsg-1+deb10u1
7107 - Upgrade python3-ecdsa to 0.13-3+deb10u1
7111 - Open ~/Persistent/keepassx.kdbx by default again (Closes: #17212)
7112 - Open the database specified by the user on the command-line, if any
7113 - Fix database renaming prompt
7115 - Ensure debugging info lands in the Journal before we refer to it
7116 - Catch more download errors
7117 - Upgrade amd64-microcode to 3.20191218.1, which removes firmware
7118 updates that cause issues
7120 * Minor improvements and updates
7121 - Add metadata analysis tools used by SecureDrop (Closes: #17178)
7122 - Refresh the signing key before checking for available upgrades
7124 - Port the Upgrader and perl5lib to a set of dependencies that are
7125 faster and have a lower memory footprint (Closes: #17152)
7126 - Ensure IUKs don't include files of our website if their content
7127 has not changed (refs: #15290)
7128 - Zero heap memory at allocation time and at free time (Closes: #17236)
7131 - Import the Upgrader and perl5lib codebases into tails.git
7133 - lint_po: ignore pre-existing rply cache file that can cause
7134 trouble if it's corrupted (Closes: #17359)
7135 - Move generate-languages-list to auto/scripts
7136 - import-translations: work around the lack of usable branches
7137 in Tor's translation.git (Closes: #17279)
7138 - Build released IUKs on Jenkins and verify that they match
7139 those built locally by the Release Manager (Closes: #15287)
7140 - Don't download every localized Tor Browser tarball: instead,
7141 use the new tarball that includes every langpacks (Closes: #17400)
7144 - Adapt for the "one single SquashFS diff" upgrade scheme
7145 - Chutney: update to upstream 33cbff7fc73aa51a785197c5f4afa5a91d81de9c
7147 - Fix tagging of Chutney exit relays and bridge authorities
7148 - Tag Chutney clients as such
7149 - Wait for all Chutney nodes to have bootstrapped before assuming
7150 the simulated Tor network is ready
7151 - Don't try to save tor control sockets as artifacts
7152 - Add a crude script to generate IUKs for our test suite
7154 -- Tails developers <tails@boum.org> Mon, 06 Jan 2020 16:25:22 +0000
7156 tails (4.1.1) unstable; urgency=medium
7159 - Drop all network drivers from the initramfs to shrink its size
7160 drastically. Going over the 32 MiB mark might be the reason why so
7161 many Apple machines can't boot 4.1 while they could boot 4.0
7163 - Only allow up to (but excluding) 32 MiB for initramfs accordingly.
7165 * Minor improvements and updates
7166 - Fix escape sequence in tails-gdm-failed-to-start.service, to avoid a
7167 warning message (Closes: #17166).
7169 -- Tails developers <tails@boum.org> Sun, 15 Dec 2019 23:51:25 +0100
7171 tails (4.1) unstable; urgency=medium
7174 - Upgrade Tor Browser to 9.0.2-build2, based on Firefox ESR 68.3
7176 - Upgrade Thunderbird to 68.2.2 (Closes: #16771, #17220, #17222, #17267).
7177 - Upgrade Enigmail to 2:2.1.3+ds1-4~deb10u2 accordingly.
7180 - Upgrade Linux to 5.3.9-2 from sid (Closes: #17124).
7181 - Disable unprivileged userfaultfd syscall (Closes: #17196).
7182 - Upgrade file to 1:5.35-4+deb10u1 (DSA-4550-1).
7183 - Upgrade FriBidi to 1.0.5-3.1+deb10u1 (DSA-4561-1).
7184 - Upgrade Ghostscript to 9.27~dfsg-2+deb10u3 (DSA-4569-1)
7185 - Upgrade Intel microcode to 3.20191112.1~deb10u1 (DSA-4565-1,
7187 - Upgrade libarchive to 3.3.3-4+deb10u1 (DSA-4557-1).
7188 - Upgrade libvpx to 1.7.0-3+deb10u1 (DSA-4578-1).
7189 - Upgrade libxslt to 1.1.32-2.2~deb10u1 (CVE-2019-18197).
7190 - Upgrade ncurses to 6.1+20181013-2+deb10u2 (CVE-2019-17594,
7192 - Upgrade Python 2.7 to 2.7.16-2+deb10u1 (CVE-2018-20852,
7193 CVE-2019-10160, CVE-2019-16056, CVE-2019-16935, CVE-2019-9740,
7195 - Upgrade Qt to 5.11.3+dfsg1-1+deb10u1 (DSA-4556-1).
7196 - Upgrade tcpdump to 4.9.3-1~deb10u1 (DSA-4547-1).
7197 - Upgrade WebKitGTK to 2.26.2-1~deb10+1 (DSA-4558-1, DSA-4563-1).
7200 - Remove TorBirdy (Closes: #17219, #17269).
7201 - Use keys.openpgp.org's Onion service as the default keyserver
7202 (Closes: #12689, #14770).
7203 - Fix ordering of GTK bookmarks setup vs. Tor Browser directories
7204 creation (Closes: #17206).
7205 - Bring back the "Show Passphrase" button in the Greeter
7207 - Bring back "Open in Terminal" entry in the GNOME Files context menu
7209 - Revert "Browsers: disable the Quantum Bar." (Closes: #17143).
7210 - Revert "Hide all Tor connection-related settings in
7211 about:preferences in all browsers" (Closes: #17214).
7212 - Wait until Tor has bootstrapped before we try to upgrade Additional
7213 Software (Closes: #17203).
7214 - Fix the "GDM failed to start" splash screen functionality
7217 * Minor improvements and updates
7218 - htpdate: stop sending User-Agent that fakes Tor Browser
7220 - HTP: replace encrypted.google.com with www.google.com.
7221 - Remove signal handler from Greeter UI file (Closes: #17240).
7222 - Upgrade AMD microcode to 3.20191021.1.
7223 - Upgrade fonts-noto-cjk to 1:20170601+repack1-3+deb10u1
7227 - Update Vagrant box to Buster (Closes: #16868).
7228 - Adjust to timedatectl's output on Buster.
7229 - Adjust to Buster's debootstrap.
7230 - Vagrant: ensure the chroot has a /proc filesystem while running
7232 - Vagrant: install po4a from Stretch in the basebox.
7233 - build-tails: wait for NTP to be disabled before setting the desired
7235 - Bump APT snapshot of the Debian archive to 2019111801, including the
7236 10.2 point release of Buster (Closes: #17124, #17021).
7237 - Install virtualbox 6.0.12-dfsg-1 from our custom APT repository
7241 - Ensure we don't break tests by opening the Applications menu in
7242 post_vm_start_hook (Closes: #17164).
7243 - Improve GnuPG testing (Closes: #12689):
7244 · Switch to using sajolida's key.
7245 · Start adjusting for keys.openpgp.org.
7246 · Make the "GnuPG's dirmngr uses the configured keyserver" step
7247 actually test what it is meant to.
7248 · Make error strings better reflect what failure they are about.
7249 · Ensure dirmngr uses IPv4 since our CI runs on an IPv4-only
7251 - Ensure dirmngr picks up the changes we make to its configuration.
7252 - Switch backend keyservers (Closes: #14770).
7253 - Don't leave redir(1) processes behind (Closes: #14948).
7254 - Update image for Buster (Closes: #14770).
7255 - Update fragility status of Seahorse scenarios.
7256 - Avoid multiple instances of tcpdump writing to the same file,
7257 resulting in an unparsable network capture (Closes: #17102).
7258 - Update for Thunderbird 68 (Closes: #17269).
7261 - Remove or adapt mentions to Tails Installer as only installation
7262 method (Closes: #17204).
7263 - Add a warning about which Tails to run rsync from (Closes: #17197).
7265 -- Tails developers <tails@boum.org> Mon, 02 Dec 2019 22:23:35 +0100
7267 tails (4.0) unstable; urgency=medium
7270 - Upgrade Tor Browser to 9.0-build2, based on Firefox ESR 68.2.
7273 - Upgrade IBus to 1.5.19-4+deb10u1.0tails1 (Closes: #17144)
7274 - Upgrade sudo to 1.8.27-1+deb10u1
7277 - Fix regressions brought by the integration of Tor Browser 9.0:
7278 · Fix non-English spellchecking (Closes: #17150)
7279 · Unsafe Browser: don't enable private browsing mode, don't display
7280 Tor Browser icons, hide the new "New identity" toolbar button
7282 · Hide all Tor connection-related settings in about:preferences
7284 - Fix Stealth Onion services in OnionShare (Closes: #17162)
7285 - Upgrade OpenSSL to 1.1.1d-0+deb10u2
7287 * Minor improvements and updates
7288 - Don't include the locales package (Closes: #17132)
7289 - Update htpdate's User-Agent to match Tor Browser 9.0's
7292 - Only partially fill memory for userspace processes (Closes: #17104)
7293 - Drop the "Unsafe Browser has no proxy configured" step, that's hard
7294 to update and adds little value
7295 - Various updates for Tor Browser 9.0 final
7296 - Make the "SSH is using the default SocksPort" scenario more robust
7299 -- Tails developers <tails@boum.org> Mon, 21 Oct 2019 10:24:56 +0000
7301 tails (4.0~rc1) unstable; urgency=medium
7304 - Update Tor Browser to 9.0a7, based on Firefox ESR 68 (#16356).
7305 - Include a working version of Electrum: 3.3.8-0.1 (Closes: #16421).
7307 · Remove the obsolete "coin_chooser: Privacy" option (Closes: #15483).
7308 · Disable the update check (Closes: #15483).
7309 - Curate the list of languages in Tails Greeter (Closes: #16095).
7310 Only include languages which meet one of these conditions:
7311 · Have a PO file in tails.git (i.e. have at least one translated
7312 and reviewed string)
7313 · Are on our list of tier-1 supported languages.
7314 - Update Linux to 5.3.2-1~exp1 from Debian experimental (Closes: #17117).
7315 - Bump APT snapshots of the 'debian' and 'torproject' archives
7316 to 2019100904. This includes the update to the Buster 10.1
7320 - Drop NoScript customization that makes our web fingerprint diverge
7321 from Tor Browser's (related to #5362).
7322 - Enable Buster security APT sources (Closes: #17119).
7323 - Upgrade CUPS to 2.2.10-6+deb10u1 (CVE-2019-8696, CVE-2019-8675,
7324 and more security fixes).
7325 - Update GnuPG to 2.2.12-1+deb10u1, which mitigates the certificates
7327 - Update e2fsprogs to 1.44.5-1+deb10u2 (DSA-4535-1).
7328 - Update ghostscript to 9.27~dfsg-2+deb10u2 (DSA-4518-1, DSA-4499-1).
7329 - Update WebKitGTK to 2.24.4-1~deb10u1 (DSA-4515-1).
7330 - Update Pango to 1.42.4-7~deb10u1 (DSA-4496-1).
7331 - Update ffmpeg to 7:4.1.4-1~deb10u1 (DSA-4502-1).
7332 - Update expat to 2.2.6-2+deb10u1 (DSA-4530-1).
7333 - Update GLib to 2.58.3-2+deb10u1 (CVE-2019-13012).
7334 - Update libmariadb3 to 1:10.3.17-0+deb10u1 (various vulnerabilities).
7335 - Update NSS to 2:3.42.1-1+deb10u1 (CVE-2019-11719, CVE-2019-11727,
7337 - Update LibreOffice to 1:6.1.5-3+deb10u4 (DSA-4519-1, DSA-4501-1,
7338 DSA-4483-1, and CVE-2019-9848).
7339 - Update Samba to 2:4.9.5+dfsg-5+deb10u1 (DSA-4513-1).
7340 - Update OpenSSL to 1.1.1d-0+deb10u1 (DSA-4539-1).
7341 - Update libxslt to 1.1.32-2.1~deb10u1 (CVE-2019-11068, CVE-2019-13117,
7343 - Update zeromq3 to 4.3.1-4+deb10u1 (DSA-4477-1).
7344 - Update patch to 2.7.6-3+deb10u1 (DSA-4489-1).
7345 - Update Thunderbird to 1:60.9.0-1~deb10u1 (DSA-4523-1, DSA-4482-1).
7346 - Update wpasupplicant to 2:2.7+git20190128+0c1e29f-6+deb10u1 (DSA-4538-1).
7349 - Ensure that tor-has-bootstrapped systemd units are stopped
7350 if tor@default.service stops; replace the tor-has-bootstrapped
7351 script with a tor_has_bootstrapped() function that checks the status
7352 of tails-tor-has-bootstrapped.target (Closes: #16664).
7353 - Fix MIME info data build reproducibility (Closes: #17023).
7354 - Fix missing GNOME bookmarks, by adding them earlier in the session
7355 login process (Closes: #17030).
7356 - Increase left dock width in GIMP's sessionrc (Closes: #16807).
7357 - Use hardware defaults for the touchpad click method (Closes: #17045).
7358 - Fix image thumbnails in GNOME Files (Closes: #17062).
7359 - Use the "intel" X.Org driver for Intel Iris Plus Graphics 640
7361 - Fix sdhci-pci support.
7362 - Honor the "Formats" settings chosen in the Greeter (Closes: #16806).
7363 - Fix administration password not being applied in some cases
7365 - Fix Greeter settings being applied when clicking "Cancel"
7367 - Fix bridge information not always shown when the user selects
7368 bridge mode in the Greeter.
7369 - Fix path in whisperback's debugging info (Closes: #17109).
7370 - Fix Tor Browser functionality that was broken when it was started
7371 by clicking a link in Thunderbird (Closes: #17105).
7372 - Fix WhisperBack that was broken due to an expired X.509 certificate:
7373 stop using TLS (we already have end-to-end encryption via OpenPGP,
7374 plus end-to-end encryption and remote peer authentication via
7375 Tor hidden services). Also, switch to a v3 Onion service (Closes #17110).
7376 - Install Stretch's po4a (0.47-2) from our custom APT repository:
7377 the upgrade to Buster's version will need more work and coordination
7379 - Fix hiding of the Add-ons manager in the Unsafe Browser hamburger menu.
7380 Regression introduced when we upgraded to Tor Browser based on Firefox
7382 - Mention USB images as a valid installation technique when trying
7383 to create a persistent volume on a device that can't have one
7386 * Minor improvements and updates
7387 - Add iPhone USB tethering support (Closes: #16180).
7388 - Install Enigmail from Buster (Closes: #16978).
7389 - Disable GDM debug logs (Closes: #17011).
7390 - Hide less common keyboard layouts in the Greeter (Closes: #17084).
7391 - Major refactoring and cleanup of Tails Greeter (Closes: #17098).
7392 - Use a localized page for the Greeter help window, if available
7394 - Separate Chinese into simplified and traditional scripts
7395 in the Greeter (Closes: #16094).
7396 - Allow the user to show the passphrase they're typing when creating
7397 a new persistent volume (Closes: #15102).
7398 - When saving persistence.conf or its backup, also run sync(1)
7399 on its parent directory (might help fix #10976).
7400 - Improve Tails Installer wording (Closes: #15564).
7401 - Update tor to 0.4.1.6-1~d10.buster+1.
7402 - Update VirtualBox guest drivers and tools to 6.0.12-dfsg-1.
7405 - SquashFS sort file: remove more noise.
7406 - Improve lint_po's UX (refs: #16864).
7407 - Import our pythonlib, previously included as a submodule (Closes: #16935).
7408 - Use a consistent, standard Python packages directory (Closes: #17082).
7411 - Make various steps more robust:
7412 · "all notifications are disappeared" (Closes: #17012)
7413 · "Additional Software is correctly configured for package"
7414 · "I unlock and mount this VeraCrypt file container
7415 with Unlock VeraCrypt Volumes"
7416 · "I open the Unsafe Browser proxy settings dialog"
7417 · starting apps via the GNOME Activities Overview (Closes: #13469)
7418 · "I start the Tor Browser in offline mode"
7419 - Handle Guestfs::Error exceptions.
7420 - Provide guidance to fix problematic situation.
7421 - Update various reference images for Buster.
7422 - Don't attempt to find fuzzy matches with Sikuli unless fuzzy image
7423 matching is enabled (Closes: #17029).
7424 - Dogtail'ify all interactions with gedit (Closes: #17028).
7425 - New test: ensure that no experimental APT suite is enabled
7426 for deb.torproject.org (Closes: #16931).
7427 - Remove dead IRC-related code and dependencies.
7428 - Take into account that Evince and Tor Browser's print-to-file dialogs
7429 are rendered in a subtly different manner.
7430 - Drop fragile tag for actual Tails bugs (#17007).
7431 - Drop compatibility code for Cucumber < 2.4.0 (Closes: #17083).
7432 - Fix regression in the Persistent browser bookmarks scenario
7435 -- Tails developers <tails@boum.org> Thu, 10 Oct 2019 11:23:53 +0000
7437 tails (4.0~beta2) unstable; urgency=medium
7439 * All changes included in Tails 3.16, see the corresponding changelog entry.
7442 - Upgrade tor to 0.4.1.5 (Closes: #16986).
7445 - Upgrade the Linux kernel to 5.2.0-2 (Closes: #16942).
7446 This mitigates the Spectre v1 swapgs vulnerability (CVE-2019-1125).
7447 Accordingly, aufs to aufs5.2 20190805.
7448 - Install enigmail from Bullseye (Closes: #16738).
7449 This fixes CVE-2019-12269.
7452 - tails-unblock-network: only sleep until all-net-blacklist.conf is gone,
7453 instead of unconditionally delaying the login process for 5 seconds
7455 - Terminate GDM's GNOME session after the amnesia user logs in,
7456 to free 200-300 MiB of memory (Closes: #12092).
7457 Temporarily enable GDM debug logs so we get enough information to fix
7458 any issue this might cause.
7459 - Make our KeePassXC wrapper translatable (Closes: #16952).
7460 - Adjust boot-time backports APT pinning for Buster.
7461 - Ensure we don't install unwanted packages even if they become
7462 "Priority: standard" again (Closes: #16949).
7463 - Move some GNOME apps to different menu categories (Closes: #16981).
7464 - Update HTP pools: replace boum.org (invalid certificate) with puscii.nl,
7465 replace www.myspace.com with myspace.com (the former redirects to
7467 - AppArmor: allow OnionShare to open URLs with Tor Browser (Closes: #16914).
7468 - Make file transfers with Spice reliable.
7470 * Minor improvements and updates
7471 - Greeter: improve formatting of printed exceptions.
7472 - Use the same icon for Tails Documentation in the Applications menu
7473 as on te Desktop (Closes: #16800).
7474 - Drop migration path from GnuPG persistent configuration created
7475 in the Tails 2.x era.
7476 - Remove various hacks that we don't need on Buster anymore.
7477 - Stop installing libcaribou-gtk3-module (Closes: #16757).
7478 - Stop installing python-cairo: mat2 does not use it anymore.
7479 - tails-unblock-network: have udev reload the databases it uses.
7480 This should avoid our fix for #16805 introducing regressions.
7483 - Bump APT snapshot of the 'debian' and 'torproject' archives
7485 - Import the Greeter codebase into tails.git (Closes: #16912).
7486 - Explicitly install gnome-shell to make the set of installed packages
7487 more deterministic (related to #16947).
7488 - Don't try to follow symlinks when normalizing timestamps on source files.
7489 - Add missing "set -u" to build-time hook.
7490 - Use consistent method to extract translatable strings from Glade files.
7491 - Create gdm-tails related files from the original GNOME files
7493 - Stop installing libimage-exiftool-perl explicitly: mat2 depends on it
7495 - Rakefile: disable compression when retrieving artifacts via scp.
7496 This makes this build step faster on systems that have SSH compression
7498 - import-translations: use tails-misc_release for tails.git's PO files
7499 (i.e. the Tails part of #16774).
7500 - Use squashfs-tools from sid (Closes: #16637).
7501 - Lower VM_MEMORY_BASE to 1536M.
7502 - Remove unneeded package cleanup (Closes: #16950).
7505 - New scenario: installing with GNOME Disks from a USB image
7507 - New scenarios: VeraCrypt PIM support (Closes: #15946).
7508 - Revert timeout bump that's not needed anymore.
7509 - Add a showing method on Dogtail objects.
7510 - VeraCrypt: ensure the temporary keyfile file is not garbage collected
7511 while we still need it.
7512 - Remote shell: print traceback to stderr so we can see it.
7513 - Install Dogtail from Bullseye and run it with Python 3 (Closes: #16976).
7514 This gives us UTF-8 support. Accordingly, drop anonym's "showingOnly"
7515 patch that was merged upstream, and port some test suite code to Dogtail,
7516 which we could not do before it got UTF-8 support.
7517 - Dogtail'ify some steps.
7518 - Make "^the Tor Browser shows the "([^"]+)" error$" step more robust
7520 - Make the "the support documentation page opens in Tor Browser" step more
7521 robust (Closes: #15321)
7522 - Remove a bunch of obsolete @fragile tags, update the reasons why
7523 the remaining ones are fragile, and add some missing @fragile tags.
7524 - Drop useless code based on wrong assumptions (refs: #13470).
7525 - Make the "I set an administration password" step more robust.
7527 -- Tails developers <tails@boum.org> Mon, 02 Sep 2019 19:55:24 +0000
7529 tails (4.0~beta1) unstable; urgency=medium
7532 - Upgrade to a snapshot of Debian 10 (Buster) from 2018-08-06.
7535 - Remove scribus completely (refs: 16290).
7536 - Remove LibreOffice Math (#16911).
7539 - Fix Electrum wrapper's persistence check (Closes: #16821).
7540 - Remove pre-generated Pidgin accounts (Closes: #16744).
7541 - Hide the security level button in the unsafe browser (Closes:
7543 - Only hide unlocked TailsData partitions from the boot device
7546 * Minor improvements and updates
7547 - Remove KeePassX and replace it with KeePassXC (Closes:
7548 #15297). As KeePassX was used around for a longer time, we don't
7549 need automatic upgrading cappability from old KeePass file
7550 format (Tails 2 times). The user can still import those old
7551 files, if they want to access it.
7552 - Ship a pre-compiled AppArmor policy to make boot faster (Closes:
7554 - Change the splash screen for Tails 4.0 (#16837). Add SVG source
7556 - Remove our predefined bookmarks and ship default upstream Tor
7557 Browser bookmarks instead (Closes: #15895).
7558 - Install bolt for improved Thunderbolt support (Closes: #5463).
7559 - Don't display the Home launcher on the desktop (Closes: #16799).
7560 Since the switch to the desktop-icons GNOME Shell extension, the
7561 nicer XDG-blah name ("Home" in English, translated in many
7562 languages) is not used to label this launcher anymore: instead,
7563 the name of the directory is displayed, in this case: "amnesia",
7564 which makes no sense to our users. Our other options to fix that
7565 are more costly and we've decided a while ago, when I proposed
7566 to remove the desktop icons, to keep them until they were too
7567 expensive to support. So this one goes: we have the Places menu
7569 - Add Files to favorite apps (Closes: #16799). This gives another
7570 entry point to the home folder, which partially mitigates any UX
7571 regression that might be caused by the previous changelog entry.
7572 - Explicitly install imagemagick. We ship it on purpose (see
7573 [[contribute/meetings/201707]]).
7575 * Drop obsolete optional MAT dependencies it isn't using any
7577 * Stop explicitly installing MAT dependencies. The package
7578 depends on those so we don't need to pull them ourselves.
7579 - Move translations from root-terminal.desktop.in into own PO
7580 files (Closes: #15335).
7581 - Drop obsolete live-boot patch: the bug it workarounds only
7582 happens with CONFIG_AUFS_DEBUG enabled. We disable
7583 CONFIG_AUFS_DEBUG in config/chroot_local-hooks/13-aufs and the
7584 Debian package did it as well (Refs: Debian#886329).
7585 - Rename /usr/share/amnesia to /usr/share/tails.
7586 - Drop APT pinning for non-existing live.debian.net, that we
7587 haven't used since 2010.
7588 - Don't install the cryptsetup initramfs integration and startup
7589 scripts (Closes: #16264). We probably only need the binaries.
7590 Not installing the initramfs integration will get rid of some
7592 - Don't install full-blown cryptsetup, take 2 (refs: #15690). We've
7593 stopped installing it (#16264) but this branch independently
7595 - Disable live-tools.service (Closes: #16324). This service is only
7596 useful to display the "Please remove the live-medium, close the
7597 tray (if any) and press ENTER to continue:" prompt on shutdown,
7598 that we don't want to display in Tails: shutdown and memory
7599 erasure should not require a confirmation once the user has
7600 triggered it. In Stretch this code was broken and we were
7601 relying on this. But the Buster upgrade of this code has
7602 repaired it, so I sometimes see that prompt. This might also
7603 explain some issues such as #16312.
7604 - AppArmor: allow cups-brf, driverless, and gutenprint53+usb
7605 printer backends (Closes: #15030). Technically, cups-brf and
7606 driverless are not third-party and should be confined more
7607 strictly with "ixr", under the cupsd profile. But I don't know
7608 how to to test these backends and confining them more strictly
7609 may break them. Anyway, that's an upstream matter: the purpose
7610 of our Tails-specific patch is to replace the third party
7611 backends /usr/lib/cups/backend/* catch all rule, that doesn't
7612 work for us, and not to keep the list of backends which come
7613 with CUPS up-to-date.
7614 - Make export_gnome_env() exit early if gnome-shell isn't running.
7615 Without this e.g. the automated test suite, which will call
7616 export_gnome_env() before gnome-shell is running, will have its
7617 journal polluted with errors about this. This is not the first
7618 time I see this and get worried and waste minutes investigating,
7619 so let's just fix it.
7622 - Bump VM_MEMORY_BASE to 2048M. With the previous 1024M setting,
7623 the squashfs preparation gets OOM-killed.
7624 - Limit the memory used by mksquashfs to 512M (Closes: #16177). By
7625 default mksquashfs will use 25% of the physical memory. So when
7626 we use the "ram" build option, build in a VM with 13GB of RAM,
7627 of which up to 12G is supposed to be used by the build tmpfs,
7628 mksquashfs will try using 13/4 = 3.25G of memory. And then it
7629 will get reaped by the OOM killer more or less occasionally
7630 depending on how much space is really used in the build tmpfs
7631 and how much memory the rest of the system is using. So let's
7632 limit the memory used by mksquashfs to 50% of the memory we
7633 allocate to the build VM, excluding the part of it that we
7634 expect tmpfs data to fill. In passing, the fact mksquashfs does
7635 not get killed every time suggests that our current
7636 BUILD_SPACE_REQUIREMENT value exceeds the real needs of a build:
7637 a value around 10 or 11G should be enough. But that will be for
7639 - Use xz with default settings to compress non-release SquashFS
7640 (refs: #16177). squashfs-tools 1:4.3-11, used to build
7641 feature/buster, does not consistently honor the value passed to
7642 -mem: the xz compressor does but at least the gzip and lzo ones
7643 don't. This makes the build often fail because mksquashfs gets
7644 reaped by the OOM-killer. Our only other option is currently to
7645 bump the build VM memory a lot, which is going to be painful on
7646 developers' systems and might not be an option on Jenkins. So
7647 let's fall back to xz with default settings (not the crazy slow
7648 but efficient we use at release time) when building non-release
7650 - Rename the "gzipcomp" build option to "fastcomp". What matters
7651 in the "user" interface is not the exact algorithm that's used,
7652 it's the fact it's supposed to be faster than the compression
7653 settings we use to build releases. We may have to changes these
7654 fast(er) settings occasionally, possibly to use a non-gzip
7655 algorithm. So let's keep supporting "gzipcomp" for backward
7656 compatibility but stop documenting it. Instead, support and
7657 document "fastcomp".
7658 - Add the vmproxy+extproxy build option. When enabled, use the
7659 vmproxy but configure it to in turn use the exproxy set via the
7660 http_proxy environment variable.
7661 - Support the case when we don't ship a custom AppArmor feature
7662 set. Let's keep this sanity check for the times when we do ship
7663 a custom feature set, but building an ISO without a custom one
7664 should remain supported. (Closes: #15149)
7665 - Don't remove packages whose deinstallation removes most of the
7666 system; don't explicitly remove packages that are taken care of
7667 by "apt-get autoremove" already. On Buster, removing dpkg-dev
7668 or make deinstalls python3, gnome-shell and more.
7669 - Install all "Priority: standard" packages via an explicit
7670 packages list instead of via --tasks (Closes: #15690). This will
7671 make it easier to remove some of these packages from the list of
7672 those that should be installed in the first place, as opposed to
7673 letting them be installed by tasksel only to uninstall them
7674 later. I've seeded tails-000-standard.list with the output of:
7675 tasksel --task-packages standard | sort … run on a clean Buster
7677 * live-build forcibly translates --packages-lists="standard"
7678 into "tasksel install standard", so to make this change
7679 effective we also need to switch to "--packages-lists
7680 minimal" or "--packages-lists none". The former has
7681 problematic side-effects so let's use the latter.
7682 * Add to tails-common.list some of the packages that were
7683 previously installed automatically, e.g. via live-build's
7684 lists/standard → lists/minimal.
7687 - Tons of tiny updates for the Stretch → Buster transition, mainly
7688 updated reference images, but also a few other trivial changes
7689 (e.g. close with Alt+F4 instead of menu, or vice versa) due to
7690 changes in applications.
7691 - Drop test case about migrating from a Jessie-area persistent
7692 volume. If our code happens to support Tails 2.x → 4.x upgrades
7693 without going through 3.x, fine. But let's not spend cycles in
7694 our CI to guarantee this.
7695 - Revert "Test suite: add backward compatibility with redir <
7696 3.0." We don't support running the test suite on Jessie anymore.
7697 - Adjust dhclient listening address for Buster.
7698 - Bump timeout for poweroff from 3 to 10 minutes (Refs: #16312).
7699 - Adjust dogtail patterns for gobby test (Closes: #16335). With the
7700 gobby upgrade from 0.5.0 to 0.6.0 pre-series, the case changed a
7701 little for a menu item and the window it leads to.
7702 - Update key shortcut to close seahorse's Preferences window
7703 (Closes: #16341). The “Close” button is gone from the
7704 Preferences window in the buster version of the seahorse
7705 package, making it impossible to close that window. Switch to
7706 sending ESC instead of Alt-C.
7707 - Update MAT test case for MAT2 (Closes: #16623).
7708 - Add debug logging for when we call Sikuli. When following a
7709 (debug) log live (through `--format debug`) I find this change
7710 useful to know what is going on *right now* since Sikuli only
7711 reports what it has done after it is done.
7712 - Be more careful when finding ASP notifications. For some reason
7713 both the label and button has a "weird" invisible (despite
7714 `showingOnly`) twin located just below the Applications
7715 menu. So let's make some extra effort to actually find the real
7716 notification, and then look for the label and button among its
7718 - Remove obsolete method. Display::take_screenshot() hasn't
7720 - Remove workaround "Desktop icons are sometimes not shown" (Refs:
7722 - Wait longer between search steps in the GNOME Overview. On
7723 jenkins.lizard — which was under high load at that time — I've
7724 seen failures while starting GNOME Terminal from the Overview,
7726 - The debug log claims we did type "c", waited 1 second, then
7727 typed "ommandline", then slept another 1 second, then pressed
7728 Enter. I.e. just as the code says.
7729 - The video shows that GNOME Shell did pick up "c", which
7730 selected the first search result ("Configure Persistent
7731 Volume"), but then there's no trace of typing "ommandline".
7732 So I suspect that "ommandline" was lost because GNOME Shell
7733 was still busy, somehow. Let's sleep a bit longer before
7734 these steps, to give GNOME Shell a better chance to recover
7735 and notice keyboard input.
7736 - Log exceptions thrown in generated (i.e. snapshot) steps (Refs:
7737 #16747). Hopefully this will help us track down these elusive
7739 - Extend waiting time for additional software to be installed.
7740 - Sometimes we need more more time to load a page over tor.
7741 - Remove useless TailsUpgraderApplyingUpgrade.png. The "progress
7742 prompt" it was used for just flashes by and can easily be
7743 missed. There is no reason at all to wait for it since the only
7744 two final outcomes are success or failure, which we already look
7746 - debug_log() when we save/restore snapshots. These actions can
7747 take a long time (especially saving snapshots on a system under
7748 load) and can make it appear like if the test suite has gotten
7749 stuck for those following the debug log.
7750 - Don't rely on mtimes from Debian packages we download, to
7751 indicate which one has the biggest version (Closes: #16819).
7752 These mtimes are copied from the HTTP server where APT downloads
7753 packages from, which contradicts our assumption that the newest
7754 file must be the one with the biggest version. Instead we use ls
7755 to sort by version number, to pick the biggest version.
7756 - Only send TAB every second to get the syslinux kernel
7757 command-line (Closes: #16820). Our syslinux has a timeout of 5s so
7758 sending TAB every second should be enough to guarantee we do
7759 open the kernel command line. As anonym reported, "the spammer
7760 makes the splash show for significantly longer: I've seen >10x,
7761 so the boot splash never managed to appear, which is worrying".
7762 - Drop workaround to make the TAB spammer compatible with the UEFI
7763 firmware (Closes: #16820). As reported by anonym on #16820, and
7764 confirmed by my testing, pressing TAB doesn't seem to open the
7765 UEFI configuration, so the very reason why we had this
7768 * Adjustments for Debian 10 (Buster) with no or very little user-visible impact
7769 - Adjust APT sources and pinning for Buster.
7770 - Refresh and unfuzzy patches for Buster.
7771 - Pass --ellipsize to zenity (refs: #16286). This fixes dialog
7772 width and height on Buster.
7773 - Update expected /etc/passwd and /etc/group for Buster.
7774 - Display TopIcons systray on the left of the system menu (Refs:
7776 - Remove apparmor-adjust-freedesktop-abstraction.diff patch,
7777 merged upstream in apparmor. The
7778 9d8b6f4dbd8a04470490ae2bfd52044906abd7f6 commit (first appeared
7779 upstream in apparmor v2.13.1) implements this change in a
7781 - Adjust hook to the fact the Dovecot AppArmor profiles are not
7782 shipped in /etc anymore.
7783 - Import iuk.git's feature/buster branch at commit 919335e
7785 - Enable desktop-icons gnome-shell extension (Closes: #16283).
7786 - Add autostart script to have gnome-shell trust desktop icons
7787 (Closes: #16283). Various conditions must be met for gnome-shell
7788 to make desktop icons launchable, including file
7789 permissions. But the GIO metadata::trusted setting is also
7790 needed, and can apparently only be set from an opened session,
7791 so let's set the right things with an autostart script.
7792 - Drop code that sets the cursor to "WATCH" (hourglass) after
7793 logging in (Closes: #16305) This fixes "GDM's GNOME Shell floods
7794 the Journal with XFIXES/cursor issues on Buster" by importing
7795 the relevant bits of greeter:feature/buster's commit abad17b6.
7796 - Remove 8 development packages that are not part of Tails 3.11 so
7797 we probably don't need to ship them in Tails 4.0 either (Closes:
7799 - Completely get rid of Qt4 (Closes: #15182).
7800 - SSH client: remove obsolete CompressionLevel setting (Closes:
7802 - Removing /usr/share/live/config/xserver-xorg/intel.ids (Closes:
7803 #14991). Let's hope the graphics hardware issues we fixed via
7804 that file is fixed no.
7805 - Adjust Onion Grater and AppArmor configuration for OnionShare
7806 1.3 (Closes: #16306).
7807 - Have OnionShare 1.3 connect to the system Tor via Onion Grater
7808 for the control port (Closes: #16306). By default, OnionShare
7809 1.3 will start its own tor process, which can't possibly work on
7811 - Don't install binutils-* (Closes: #16272). It wasn't in Tails 3.x
7812 and we have no reason to ship it in 4.0.
7813 - Install mat2 instead of the transitional mat package.
7814 - Don't suspend automatically (Closes: #16624)
7815 - tails-additional-software: Adjust arguments to
7816 tails-persistence-setup (Closes: #16622). It seems like the perl
7817 library which previously nicely handled the tps command-line
7818 arguments now doesn't support taking dashes instead of
7819 underscores anymore.
7820 - Start tails-unblock-network in a blocking way (Closes: #16620)
7821 This reverts commit 59e99c51f15ab9e756e287acb03b4d3a91ca1dd2 in
7822 greeter.git. NetworkManager starting at the same time as GNOME
7823 Shell makes things racy: the Wi-Fi password prompt is sometimes
7824 not displayed (unreproduce on Debian Buster Live).
7825 - Patch ibus to fix an issue that prevented the on-screen keyboard
7826 from displaying in Tails Greeter (Closes: #16291).
7827 - oniongrater: give onioncircuits empty STATUS_SERVER events.
7828 Connection to STATUS_SERVER events is required by stem 1.7
7829 connect() function, but we actually don't need them, so let's
7830 suppress them (Closes: #16626).
7831 - Fix GNOME bookmarks file for Buster (Closes: #16629).
7832 - Build VeraCrypt packages with our patches applied for Buster
7834 - Avoid new "render" group stealing a GID we have already
7835 statically allocated to another group (Closes: #16649) With the
7836 systemd 241-1~bpo9+1 → 241-3~bpo9+1 upgrade, udev.postinst now
7837 creates a "render" system group, which shifts GIDs and makes our
7839 - update-acng-config: add support for 4.x and 5.x, drop 2.x. We
7840 won't build 2.x releases anymore but we'll start building 4.x
7841 from this branch soon.
7842 - Restore Plymouth theme to "text" (Closes: #16743). The default
7843 theme in Buster ("futureprototype") is Debian-branded and thus
7844 unsuitable for Tails. Let's revert to the one we use in Tails
7846 - Stop installing caribou and libcaribou*: they're not used by
7847 GNOME Shell in Buster anymore (Closes: #16628)
7848 - Allow read access to /etc/machine-id in the AppArmor profile for
7849 Thunderbird (Closes: #16756). It breaks access to the D-Bus
7850 service where the GNOME on-screen keyboard listens on Buster.
7851 - Fix screen locker not working in Buster (Closes: #16763).
7852 - Hide lstopo in the Applications menu (Closes: #16797). It's
7853 pulled as a dependency by aircrack-ng but is probably not useful
7854 to the vast majority of Tails users.
7855 - Hide nm-connection-editor in the Applications menu (Closes:
7856 #16798). We still need the network-manager-gnome package that
7857 installs this .desktop file (for details, see
7858 commit:40290be3651eaa6f08346231aef80eddd8b33c64), but there's no
7859 reason to expose it directly to users.
7860 - TorStatus: call our custom destructor to avoid a use-after-free
7861 crashing GNOME Shell (Closes: #16791). It was ported to an ES6
7862 class in the process.
7863 - Copy dmidecode to initramfs (Closes: #16857). On Buster,
7864 partprobe complains if dmidecode is missing. It's not clear what
7865 the consequences are, at least it doesn't cause partprobe to
7866 exit with an error status code - but it's cheap to just copy
7867 dmidecode to the initramfs.
7868 - Adjust path for webext-ublock-origin 1.19.0+dfsg-2 (Closes:
7870 - Update Tor Browser AppArmor profile to take into account new
7871 uBlock installation path (Closes: #16858).
7872 - Disable the uBlock logger sidebar. This brings back
7873 the hack we had before we removed it in #16206. Without this,
7874 the uBlock logger sidebar is displayed.
7875 - Reintroduce the same APT pinning as we use in 3.x for uBlock.
7876 Granted, the version from Buster should probably be sufficient
7877 right now, but it probably won't be once Tor Browser gets
7878 updated to a future major Firefox ESR. And in the meantime,
7879 this pinning discrepancy between devel and feature/buster makes
7880 it harder to maintain our patch against
7881 /usr/share/webext/ublock-origin/js/background.js.
7882 - Drop obsolete libdesktop-notify-perl patches: they were merged
7884 - Use X.Org in amnesia's GNOME session (Closes: #12213). Since a
7885 few months gdm3 defaults to Wayland in Debian testing/sid, just
7886 like upstream. But we're not ready yet.
7887 - Adjust Greeter's gdm-tails.session for Buster (Closes:
7888 #12551). This should ultimately be applied in greeter.git, but
7889 let's deal with it as a patch for now to avoid having to
7890 maintain two parallel branches of the Greeter.
7891 - Patch udisks2 and libblockdev and fix Tails Installer to repair
7892 USB boot on Buster (Closes: #14809).
7893 - Install gnome-user-docs directly instead of the gnome-user-guide
7894 transitional package.
7895 - Install the "crypto" libblockdev plugin (Closes: #14816). It's
7896 needed by recent udisks to do crypto operations.
7897 - Use ConditionUser=1000 instead of manually testing the output of
7898 `id -u' in some of our systemd services.
7899 - Have debootstrap install gnupg when setting up the chroot.
7900 Otherwise the build fails after debootstrap has done its job and
7901 live-build tries to use apt-key.
7902 - Don't try to install the obsolete gnome-search-tool package.
7903 It's been removed from testing/sid by its maintainers:
7904 https://bugs.debian.org/885975
7905 - Don't try to retrieve syslinux.exe from the syslinux source
7906 package. Since syslinux 3:6.03+dfsg1-1 this file is (rightfully)
7907 not included anymore in the Debian source package. This commit
7908 is meant to fix the feature/buster ISO build. We of course need
7909 to find a proper solution, which is what #15178 is about.
7910 - Drop our pinned AppArmor feature set (Closes: #15149). On current
7911 Buster the AppArmor package pins to the Linux 4.14.13-1 feature
7912 set and I expect it'll keep pinning something that should work
7913 with the policy shipped in Buster.
7914 - Drop Stretch-specific workaround. This essentially workarounds
7915 4f8b50afb10a1ce1faf7645971bc020d2eb5d7dd,
7916 3e2d8a6a025b86f8191d125783ad507c57171bad and
7917 d56633a3089e5b177e07c2888442745557772f42.
7918 - Disable the usr.bin.man AppArmor profile. On Buster it breaks
7919 apparmor.service due to "profile has merged rule with
7920 conflicting x modifiers" that's most likely caused by the "/**
7921 mrixwlk" rule vs. our tweaks for aufs support.
7922 - Import files (from gksu 2.0.2-9+b1) needed for the Root Terminal
7923 into Git instead of fetching the package and extracting them at
7925 - Use orca's current package name instead of pre-Buster
7927 - Stop explicitly installing gstreamer1.0-pulseaudio. This was
7928 needed on Jessie due to Debian#852870 which was fixed in
7930 - Drop adwaita-qt4: it was removed from Debian sid and won't be in
7932 - Disable man-db.timer on Buster (Closes: #16631)
7933 - Fix invalid seq range in update-acng-config so we geberate proper
7934 rules for Tails 4.x and 5.x.
7936 -- Tails developers <tails@boum.org> Wed, 07 Aug 2019 20:30:15 +0200
7938 tails (3.16) unstable; urgency=medium
7941 - Upgrade Tor Browser to 8.5.5 (Closes: #16692).
7944 - Install Linux kernel from the Buster security repository (Closes: #16970).
7945 The new Spectre v1 swapgs variant (CVE-2019-1125), which was fixed
7946 in sid via 5.2.x, which is a too big change for the Tails 3.16 bugfix
7947 release. Let's instead track Buster (+ security) for the time being.
7948 - Upgrade LibreOffice to 1:5.2.7-1+deb9u10 (DSA-4483-1, DSA-4501-1).
7949 - Upgrade Thunderbird to 60.8 (DSA-4482-1).
7950 - Upgrade Ghostscript to 9.26a~dfsg-0+deb9u4 (DSA-4499-1).
7951 - Upgrade Patch to 2.7.5-1+deb9u2 (DSA-4489-1).
7952 - Upgrade nghttp2 library to 1.18.1-1+deb9u1 (DSA-4511-1).
7955 - Additional software: Improve/fix support for translations (Closes: #16601).
7956 - Rework the implementation for hiding TailsData partitions (Closes: #16789).
7957 - Adjust how tordate determines whether the clock is in a valid range,
7958 fixing issues with obfs4 (Closes: #16972).
7960 * Minor improvements and updates
7961 - Ship default upstream Tor Browser bookmarks, and remove our predefined
7962 bookmarks (Closes: #15895).
7963 - Hide the security level button in the unsafe browser (Closes: #16735).
7964 - Remove pre-generated Pidgin accounts (Closes: #16744).
7965 - Remove LibreOffice Math (Closes: #16911).
7966 - Website: Make sandbox page translatable (Closes: #16873).
7967 - Website: Only scrub HTML on blueprints (Closes: #16901).
7968 - Website: Point history & diff URLs to Salsa.
7971 - Bump APT snapshot of the torproject archive to 2019073103, and drop
7972 tor-experimental-0.4.0.x-stretch reference (Closes: #16883).
7973 - Bump APT snapshot of the Debian archive to 2019080801 to get fixed
7974 firmware packages from sid instead of sticking to those from
7975 stretch-backports (Closes: #16728).
7976 - Enable the buster APT repository and install some packages from there:
7977 hunspell-id, hunspell-tr, and fonts-noto-* (See: #16728).
7978 - Refresh patch for webext-ublock-origin 1.19.0+dfsg-2, and adjust Tor
7979 Browser AppArmor profile accordingly (Closes: #16858).
7980 - Refresh Tor Browser AppArmor profile patch for torbrowser-launcher
7981 0.3.2-1 (Closes: #16941).
7984 - Ignore RARP packets, since PacketFu cannot parse them (Closes: #16825).
7985 - Adjust both locale handling and reference pictures for the Unsafe
7986 Browser homepage (Closes: #17004).
7987 - Fix "Watching a WebM video over HTTPS" scenario on Jenkins
7989 - Tag "Watching a WebM video" as fragile.
7990 - Make @check_tor_leaks more verbose (See: #10442).
7991 - Remove broken Electrum scenario since Electrum support is currently
7992 missing (Closes: #16421).
7994 -- Tails developers <tails@boum.org> Tue, 03 Sep 2019 20:30:14 +0200
7996 tails (3.15) unstable; urgency=medium
7999 - Upgrade Tor Browser to 8.5.4 (Closes: #16691).
8000 - Upgrade Thunderbird to 60.7.2 (Closes: #16834).
8003 - Upgrade Expat to 2.2.0-2+deb9u2 (DSA-4472-1).
8004 - Upgrade OpenSSL 1.0 to 1.0.2s-1~deb9u1 (DSA-4475-1).
8005 - Upgrade OpenSSL to 1.1.0k-1~deb9u1 (DSA-4475-1).
8006 - Upgrade Vim to 2:8.0.0197-4+deb9u3 (DSA-4467-1).
8009 - Recompute CHS values for the hybrid MBR after first-boot
8010 repartitioning (Closes: #16389). Some legacy BIOS systems won't boot
8012 - Strip debug symbols from the aufs kernel module smaller (refs: #16818).
8013 The primary target was getting the initramfs down under 32MB, hoping
8014 to repair boot of feature/buster on MacBookPro 8,1. In any cases,
8015 the user experience should be improved due to a faster boot for
8016 every user, and a shortened “black screen” duration (between the
8017 bootloader and the Plymouth splash screen).
8019 * Minor improvements and updates
8020 - Make “Unlock VeraCrypt Volumes” show an error message if locking
8021 fails (Closes: #15794).
8022 - Add support for booting Tails from a read only sdcard (fromiso),
8023 through Heads, allowing for measured boot on some tamper-evident
8024 hardware (https://github.com/osresearch/heads/issues/581).
8027 - Patch Thunderbird packages from Debian when building Tails images
8029 - Improve tooling to maintain and update PO files (Closes: #15403),
8030 rewriting some tools and moving code to the jenkins-tools submodule.
8031 - Implement preliminary steps needed to make the ikiwiki PO plugin
8032 able to update PO files for languages that are disabled on the
8033 website (refs: #15355).
8035 -- Tails developers <tails@boum.org> Tue, 09 Jul 2019 02:50:09 +0200
8037 tails (3.14.2) unstable; urgency=medium
8040 - Upgrade Tor Browser to 8.5.3 (Closes: #16835).
8043 - tails-screen-locker: Don't use dim-label style class
8046 -- Tails developers <tails@boum.org> Sun, 23 Jun 2019 11:52:49 +0200
8048 tails (3.14.1) unstable; urgency=medium
8051 - Upgrade Tor Browser to 8.5.2-build1 (Closes: #16824).
8052 - Upgrade Thunderbird to 60.7.0 (Closes: #16742).
8053 - Upgraded Linux to 4.19.37-4 (Closes: #16823).
8056 - Only probe for partitions on the boot device when setting up
8057 TailsData. Without arguments partprobe will scan all devices,
8058 and if it encounters a device it doesn't support (e.g. fake
8059 raid-0 arrays) it will return non-zero, thus aborting Tails'
8060 partitioning script, resulting in an unbootable install
8063 * Minor improvements and updates
8064 - Upgrade tor to 0.4.0.5-1~d90.stretch+1, the first stable
8065 candidate in the 0.4.0.x series (Closes: #16687).
8066 - Completely disable IPv6 except for the loopback interface. We
8067 attempt to completely block it on the netfilter level but we
8068 have seen ICMPv6 "leaks" any way (related to Router
8069 Solicitation, see: #16148) so let's just disable it. We keep
8070 enabled on the loopback interface since some services depends on
8072 - create-usb-image-from-iso: Use syslinux from chroot. We used the
8073 syslinux from the vagrant box before, which caused issues with
8074 when building Tails/Buster with a Stretch vagrant box and then
8075 cloning the image via Tails Installer with syslinux from Buster
8077 - Set Tor Browser's homepage to https://tails.boum.org/home/testing/
8078 if building anything but a stable release. This page explains the
8079 dangers of using a non-stable release. (Closes: #12003)
8082 - auto/{build,config}:
8083 * consistently use fatal() to error out, and prefix its message
8084 with "E: " to help distinguish them from the noise produced by
8086 * Similarly, also prefix informational message with "I: ".
8087 * drop support for GnuPG 1.x.
8088 * clone more build output to the log file.
8089 * Drop obsolete check for syslinux version. This version
8090 requirement is satisfied by Jessie and it is doubtful Tails
8091 would build in anything older.
8092 * auto/build: drop a few checks for conditions that are already
8093 satisfied in the supported build environments.
8094 - Revert "Build system: try to be smart again by fetching only the
8095 refs we need." This optimization overrides the trick we have on
8096 Jenkins (set_origin_base_branch_head in
8097 jenkins-jobs:macros/builders.yaml),
8098 that ensures that a reproducibly_build_Tails_ISO_* job builds
8099 from the commit used by the first build. (Closes: #16730)
8102 - Fix mistake with execute() vs spawn() when starting the upgrader.
8103 - Don't filter during pcap capture, instead let's just apply the
8104 same filtering when we are inspecting the pcap files. This way
8105 any pcap file saved on failure will include the full capture,
8106 and not just the packets sent by the system under testing, which
8107 sometimes makes it hard to understand what is going on.
8108 - Also include the content of /var/log/tor/log in $scenario.tor
8109 when tor failed to bootstrap (refs: #16793)
8110 - Don't flood the debug logger with tor@default's journal
8112 - Power off system under testing after scenario. Until now we have
8113 relied on either one of the generated "snapshot restore" steps
8114 or the "[Given] a computer" step to implicitly stop the old VM
8115 when we move on to a new scenario. That meant the old VM was
8116 still running during the new scenarios @Before@ hooks. If the
8117 new scenario is tagged @check_tor_leaks that means we start its
8118 sniffer while the old VM is still running, possibly sending
8119 packets that then affect the new scenario. That would explain
8120 some myserious "Unexpected connections were made" failures we
8121 have seen (Closes: #11521).
8122 - Only accept IP(v6)/ARP during DHCP check.
8124 -- Tails developers <tails@boum.org> Wed, 19 Jun 2019 15:29:07 +0200
8126 tails (3.14) unstable; urgency=medium
8129 - Upgrade Linux to 4.19.0-5 from sid (Closes: #16708).
8130 - Enable all available mitigations for the Microarchitectural Data
8131 Sampling (MDS) attacks and disable SMT on vulnerable CPUs
8133 - Upgrade Tor Browser to 8.5 (Closes: #16337, #16706).
8136 - Install Electrum 3.2.3-1 from our custom APT repository (Closes: #16708).
8137 The version in sid now displays a warning and exits, while 3.2.3-1 is
8138 still usable, in the rare cases when it manages to connect to the
8139 network, despite being affected by problematic phishing attacks which
8140 will only be solved once the package in Debian is updated to a newer
8144 - Bump APT snapshot of the 'debian' archive to 2019051601, needed for
8145 the MDS mitigations.
8146 - Don't install the firmware-linux and firmware-linux-nonfree
8147 metapackages, as packages they pulled are already listed explicitly
8148 and one might run into version-related issues (Closes: #16708).
8150 * Minor improvements and updates
8151 - Remove some packages from the Tails image as their use is not
8152 widespread while consuming space for everyone. They can still be
8153 installed and upgraded through Additional Software (Closes: #15291).
8154 This includes: monkeysphere and msva-perl, gobby, hopenpgp-tools,
8155 keyringer, libgfshare-bin, monkeysign, paperkey, pitivi,
8156 pdf-redact-tools, pwgen, traverso, and ssss.
8157 - Fix missing translations in the Greeter (Closes: #13438).
8158 - Fix missing newline in unlock-veracrypt-volumes (Closes: #16696).
8159 - Port fillram to Python 3 (Closes: #15845).
8160 - Enable localization for new locales introduced in Tor Browser 8.5
8162 - Re-introduce TopIcons GNOME Shell extension (Closes: #16709).
8163 - Improve internationalization of the Unlock VeraCrypt Volumes
8164 component (Closes: #16602).
8167 - Make tails-security-check's SOCKS port test work when there's a live
8168 security advisory (Closes: #16701).
8169 - Make terminology more consistent.
8171 -- Tails developers <tails@boum.org> Mon, 20 May 2019 18:52:04 +0200
8173 tails (3.13.2) unstable; urgency=medium
8176 - Replace all locale-specific fonts and standard X.Org fonts with
8177 the Noto fonts collection (Closes: #9956).
8178 - Install localization support packages for all tier-1 supported languages,
8179 and only those (Closes: #15807). Current tier-1 supported languages are:
8180 Arabic, German, English, Spanish, Farsi, French, Italian, Portuguese
8181 (Brazil), Russian, Turkish, Simplified Chinese, Hindi, Indonesian.
8182 - Disable the TopIcons GNOME Shell extension (Closes: #16608).
8183 This extension causes crashes (#11188), does not work on Wayland
8184 (#8309, #12213) so long-term, we need to remove it anyway.
8185 In order to learn how much our users rely on this extension and
8186 on OpenPGP Applet, let's disable this extension for one Tails release.
8187 While TopIcons is disabled (by default):
8188 · Users can still use OpenPGP Applet via the system tray in the bottom
8189 left corner of the desktop.
8190 · Users who do need TopIcons for other reasons can enable it again
8191 with 1 command line.
8194 - Upgrade Tor Browser to 8.0.9 (Closes: #16694).
8195 - Upgrade to Debian Stretch 9.9 (Closes: #16670).
8196 - Upgrade Thunderbird to 60.6.1 (Closes: #16641).
8199 - Fix Thunderbird account setup wizard (Closes: #16573).
8200 - Display poweroff and reboot buttons even when locked (Closes: #15640).
8201 - Disable emergency shutdown during suspend (Closes: #11729).
8202 - Provide feedback while starting Onion Circuits (Closes: #16350).
8203 - Associate .key files with Seahorse (Closes: #15213).
8204 This partially fixes importing OpenPGP keys from GNOME Files.
8205 - Don't show spurious notification about "TailsData" while setting
8206 up a persistent volume (Closes: #16632).
8208 * Minor improvements and updates
8209 - Add a suspend button to status-menu-helper (Closes: #14556).
8210 - status-menu-helper: clean up and refactor.
8211 - Drop CSS hacks for the uBlock log window (Closes: #16206).
8212 - Polish 04-change-gids-and-uids code style (Closes: #16322).
8213 - Create persistence.conf backup in a more robust manner (Closes: #16568).
8214 - Make the WhisperBack .desktop file translatable in Transifex
8218 - Don't fail the build if Tor Browser supports new locales that we don't ship
8219 a spellchecking dictionary for (#15807).
8220 - Fix apt-cacher-ng cache shrinking (Closes: #16020).
8221 - Remove obsolete usr.bin.onioncircuits AppArmor profile (Closes: #12170).
8222 All Tails current branches now install onioncircuits 0.6-0.0tails1,
8223 which ships a more current AppArmor profile than the one we
8224 have in our own Git tree.
8225 - Install Electrum from sid (Closes: #16642).
8226 - Avoid new "render" group stealing a GID we have already statically
8227 allocated to another group (Closes: #16649).
8230 - Disable tests about notifications in case of MAC spoofing failure:
8231 we have a well-known bug here and these tests do nothing but confirm
8232 it again and again, which brings no value and has a cost (#10774).
8233 - Clarify what WebM scenarios are fragile (#10442).
8234 - Avoid zombies by waiting for killed child processes to exit (#14948).
8236 -- Tails developers <tails@boum.org> Sun, 05 May 2019 19:32:22 +0000
8238 tails (3.13.1) unstable; urgency=medium
8241 - Upgrade Tor Browser to 8.0.8 (Closes: #16606, MFSA-2019-10).
8242 - Upgrade NTFS-3G to 1:2016.2.22AR.1+dfsg-1+deb9u1 (DSA-4413-1).
8244 -- Tails developers <tails@boum.org> Fri, 22 Mar 2019 20:54:03 +0000
8246 tails (3.13) unstable; urgency=medium
8249 - Upgrade Linux to 4.19.28-1 (Closes: #16390, #16469, #16552).
8250 - Upgrade Tor Browser to 8.0.7 (Closes: #16559).
8251 - Upgrade Thunderbird to 65.1.0 (Closes: #16422).
8254 - Upgrade LDB to 2:1.1.27-1+deb9u1 (DSA-4397-1).
8255 - Upgrade OpenJPEG to 2.1.2-1.1+deb9u3 (DSA-4405-1).
8256 - Upgrade OpenSSL 1.0 to 1.0.2r-1~deb9u1 (DSA-4400-1).
8257 - Upgrade OpenSSH to 1:7.4p1-10+deb9u6 (DSA-4387-2).
8260 - Upgrade tor to 0.3.5.8-1~d90.stretch+1 (Closes: #16348).
8261 - Ensure Additional Software doesn't try to download packages that are
8262 in persistent cache (Closes: #15957).
8263 - Improve chances of recovering a lost persistence configuration
8265 - Tor Launcher: add langpacks to enable localization again
8267 - Migrate away from buggy Chinese input method: switch from ibus-pinyin
8268 to ibus-libpinyin + ibus-chewing (Closes: #11292).
8269 - Fix crash in Whisperback when additional persistent APT repositories
8270 are configured (Closes: #16563).
8271 - Give visual feedback while starting Whisperback (Closes: #16333).
8273 * Minor improvements and updates
8274 - Add feedback when opening VeraCrypt Mounter (Closes: #16334).
8275 - Improve consistency in Additional Software's accessibility
8277 - Fix missing accessibility support when opening a browser from a
8278 notification (Closes: #16475).
8279 - Refresh ublock-origin patch to apply cleanly on top of 1.18.4+dfsg-1
8281 - Upgrade intel-microcode to 3.20180807a.2~deb9u1.
8282 Fixes CVE-2018-3615, CVE-2018-3620, CVE-2018-3646, CVE-2018-3639,
8283 CVE-2018-3640, CVE-2017-5753, CVE-2017-5754.
8286 - Lower memory requirements when building Tails by limiting the memory
8287 used by mksquashfs to 512M (Closes: #16177).
8288 - Remove obsolete check on Thunderbird addons (Closes: #16045).
8289 - Update Tails' APT GnuPG key expiration (Closes: #16420).
8290 - Optimize Git operations (share resources, fetch only the needed
8292 - Clone submodules from the host's local repositories (Closes: #16476).
8293 - Drop useless manual initramfs update (Closes: #16452).
8294 - Add a sanity check on the size of the initramfs (Closes: #16452).
8297 - Add automated tests for Additional Software GUI (Closes: #14576,
8299 - Add automated tests on the backup persistence configuration
8301 - Adjust test for Thunderbird 60.5.1 (Closes: #16555).
8303 -- Tails developers <tails@boum.org> Mon, 18 Mar 2019 23:40:50 +0100
8305 tails (3.12.1) unstable; urgency=medium
8308 - Upgrade Tor Browser to 8.0.6 (MFSA-2019-05; Closes: #16437).
8309 - Upgrade LibreOffice to 1:5.2.7-1+deb9u5 (DSA-4381).
8310 - Upgrade cURL to 7.52.1-5+deb9u9 (DSA-4386).
8311 - Upgrade Qt 5 to 5.7.1+dfsg-3+deb9u1 (DSA-4374).
8312 - Upgrade OpenSSH to 1:7.4p1-10+deb9u5 (DSA-4387).
8314 -- Tails developers <tails@boum.org> Tue, 12 Feb 2019 21:25:14 +0100
8316 tails (3.12) unstable; urgency=medium
8319 - Make the USB image the main supported way to install Tails (refs: #15292).
8320 On first boot, grow the system partition to a size that's a factor
8321 of the size of the boot medium and randomize GUIDs (Closes: #15319).
8322 - Upgrade Linux to 4.19, version 4.19.13-1 (Closes: #16073, #16224).
8323 Fixes CVE-2018-19985, CVE-2018-19406, CVE-2018-16862, CVE-2018-18397,
8324 CVE-2018-18397, CVE-2018-18397, CVE-2018-18397, CVE-2018-19824,
8326 - Remove Liferea (Closes: #11082, #15776).
8327 - Upgrade to the Debian Stretch 9.6 point-release.
8330 - Upgrade Tor Browser to 8.0.5 (MFSA-2019-02; Closes: #16388).
8331 - Upgrade Thunderbird to 60.4.0 (DSA-4362-1; Closes: #16261).
8332 - Upgrade OpenSSL to 1.0.2q-1~deb9u1 (DSA-4355-1).
8333 - Upgrade libarchive to 3.2.2-2+deb9u1 (DSA-4360-1).
8334 - Upgrade GnuTLS to 3.5.8-5+deb9u4 (CVE-2018-10844, CVE-2018-10845).
8335 - Upgrade libgd3 to 2.2.4-2+deb9u3 (CVE-2018-1000222, CVE-2018-5711).
8336 - Upgrade libmspack to 0.5-1+deb9u3 (CVE-2018-18584, CVE-2018-18585).
8337 - Upgrade libopenmpt to 0.2.7386~beta20.3-3+deb9u3 (CVE-2018-10017).
8338 - Upgrade libx11 to 2:1.6.4-3+deb9u1 (CVE-2018-14598, CVE-2018-14599,
8340 - Upgrade libxcursor to 1:1.1.14-1+deb9u2 (CVE-2015-9262).
8341 - Upgrade NetworkManager to 1.6.2-3+deb9u2+0.tails1 (CVE-2018-15688).
8342 - Upgrade wpa to 2:2.4-1+deb9u2 (CVE-2018-14526).
8343 - Upgrade zeromq3 to 4.2.1-4+deb9u1 (CVE-2019-6250).
8344 - Upgrade APT to 1.4.9 (DSA-4371-1).
8345 - Upgrade GhostScript to 9.26a~dfsg-0+deb9u1 (DSA-4372-1).
8348 - Fix Totem's access to the Internet when it's started from the Applications
8350 - Rename HTP pools to avoid confusion (Closes: #15428).
8351 - Fix memory erasure on shutdown with systemd v239+, by mounting
8352 a dedicated tmpfs on /run/initramfs instead of trying to remount /run
8353 with the "exec" option (Closes: #16097).
8354 - Make the KeePassX wrapper dialog translatable.
8355 - Fix detection of first Thunderbird run.
8357 * Minor improvements and updates
8358 - Upgrade tor to 0.3.4.9-1~d90.stretch+1.
8359 - Upgrade Mesa to 18.2.6-1~bpo9+1, libdrm to 2.4.95-1~bpo9+1,
8360 and libglvnd to 1.1.0-1~bpo9+1.
8361 - Upgrade firmware-linux and firmware-nonfree to 20190114-1.
8362 - Upgrade amd64-microcode to 3.20181128.1.
8363 - Upgrade intel-microcode to 3.20180807a.2~bpo9+1.
8364 - Remove the boot readahead feature (Closes: #15915).
8365 In most supported use cases, it did not improve boot time anymore,
8366 or even increases it.
8367 - Require TLS 1.2 in our Upgrader and tails-security-check (Closes: 11815).
8368 - Enable O_CREAT restriction in /tmp directories for FIFOs and regular
8369 files (Closes: #16072).
8370 - Upgrade systemd to 240-4~bpo9+0tails1 (Closes: #16352).
8371 Fixes CVE-2018-16864, CVE-2018-16865, and CVE-2018-16866.
8372 - Upgrade Enigmail to 2.0.8-5~deb9u1 (Closes: #15657).
8373 - Upgrade Torbirdy to 0.2.6-1~bpo9+1 (Closes: #15661).
8374 - Modify Torbirdy configuration in a way that's easier to maintain.
8375 - Tell the user they need to use sudo when they attempt to use su
8379 - Make the build of the USB image reproducible (Closes: #15985).
8380 - Allow specifying which set of APT snapshots shall be used during
8381 the build, with the APT_SNAPSHOTS_SERIALS build option (Closes: #15107).
8382 - Fix more GIDs and display more information when changing UIDs or GIDs
8383 fails (Closes: #16036).
8384 - Remove obsolete patches, refresh remaining ones to apply on top
8385 of currently installed packages version.
8386 - Disable irrelevant recurring jobs in Vagrant build box (refs: #16177)
8387 that increase the chance of FTBFS due to mksquashfs being reaped
8389 - Adjust for recent GnuPG error'ing out when it has no controlling terminal.
8392 - Adjust test suite for USB image:
8393 - Add tests that exercise behavior on first boot from a device
8394 installed using the USB image (Closes: #16003).
8395 - Drop tests for use cases we don't support anymore with the introduction
8396 of the USB image (refs: #16004).
8397 - Adjust remaining tests to focus on main supported use cases,
8398 i.e. Tails installed from a USB image (refs: #16004.
8399 - In scenarios where we simulate MAC spoofing failure, test safety-critical
8400 properties even if the desktop notification is buggy (refs: #10774).
8401 - Update expected title for our Redmine (Closes: #16237).
8402 - Update expected image for OpenPGP key search.
8404 -- Tails developers <tails@boum.org> Mon, 28 Jan 2019 13:26:26 +0100
8406 tails (3.11) unstable; urgency=medium
8409 - Upgrade Tor Browser to 8.0.4-build2 (Closes: #16193).
8410 - Upgrade Thunderbird to 60.3.0-1~deb9u1.0tails1 (Closes: #16118).
8411 - Thunderbird: unconditionally disable Autocrypt, as it is not safe in
8412 its current state (See: #15923, Closes: #16186).
8413 - Upgrade Linux to 4.18.20 and aufs to 4.18.11+-20181119
8415 - Upgrade cURL to 7.52.1-5+deb9u8 (DSA-4331).
8416 - Upgrade Ghostscript to 9.26~dfsg-0+deb9u1 (DSA-4336, DSA-4346).
8417 - Upgrade Perl to 5.24.1-3+deb9u5 (DSA-4347).
8418 - Upgrade Policykit to 0.105-18+deb9u1 (DSA-4350).
8419 - Upgrade Samba to 2:4.5.12+dfsg-2+deb9u4 (DSA-4345).
8420 - Upgrade OpenSSL to 1.1.0j-1~deb9u1 (DSA-4348).
8421 - Upgrade libtiff to 4.0.8-2+deb9u4 (DSA-4349).
8425 · Improve support for incremental upgrades to avoid issues with
8426 partially applied upgrades (Closes: #14754).
8427 · Add a prompt after the IUK has been downloaded so the user can
8428 control when the network will be disabled; previously this was
8429 done without users having a say, possibly leading to confusion and
8430 lost work (Closes: #15282).
8431 - Thunderbird: always set locale according to environment (Closes: #16113).
8433 * Minor improvements and updates
8434 - Remove packages which were needed for getTorBrowserUserAgent
8436 - Fix persistence configuration window opening on full screen
8438 - Time sync: don't temporarily increase tor's log level when using
8439 bridges/PTs (Closes: #15743).
8440 - Warn about non-free software depending on the host operating system
8441 and/or virtualization stack (Closes: #16195).
8444 - Create USB image after building the ISO, and include it in build
8445 artifacts (Closes: #15984, #15985, #15990).
8446 - Release process: adapt to IDF v2 (Closes: #16171).
8449 - Add new Using "VeraCrypt encrypted volumes" feature, with scenarios
8450 split into two parts: "Unlock VeraCrypt Volumes" and "GNOME Disks"
8451 (Closes: #14469, #14471, #15238, #15239).
8452 - Reintroduce "Clock is one day in the future in bridge mode" test
8454 - Make starting apps via GNOME Activities Overview more robust
8456 - Check for "Upgrading the system" and adjust to "Upgrade successfully
8457 downloaded" new UI (See: #14754, #15282).
8459 -- Tails developers <tails@boum.org> Mon, 10 Dec 2018 20:37:06 +0100
8461 tails (3.10.1) unstable; urgency=medium
8463 * Declare that Enigmail is compatible with Thunderbird 60.*.
8465 -- Tails developers <tails@boum.org> Tue, 23 Oct 2018 01:30:00 +0200
8467 tails (3.10) unstable; urgency=medium
8470 - Harden sudo config to avoid potential future privilege escalation
8472 - Upgrade Linux to 4.18 and aufs to 4.18-20181008 (Closes: #15936).
8473 - Upgrade the snapshot of the Debian archive to 2018100901 accordingly.
8474 - Upgrade Tor Browser to 8.0.3-build1 (Closes: #16067).
8475 - Upgrade Thunderbird to 60.2.1 (Closes: #16037).
8478 - Fix installation of mesa/stretch-backports by installing libwayland*
8479 from stretch-backports (Closes: #15846).
8480 - Tor Browser AppArmor profile patch: update to apply cleanly on top
8481 of torbrowser-launcher 0.2.9-5.
8482 - Additional Software: fix issues spotted during the code review
8484 - Additional Software: make sure to offer persistence only for newly
8485 installed packages, avoiding inconsistency (Closes: #15983).
8486 - Improve button labels in confirmation dialogs of the Tails installer
8488 - Hardcode User Agent in htpdate.user-agent (Closes: #15912), as the
8489 Tor Browser doesn't expose it anymore.
8490 - Fix encoding-related crashes in Tails Installer (Closes: #15166).
8491 - Set the Firefox preferences to spoof English, to avoid leaking
8492 information about locale settings (Closes: #16029).
8493 - VeraCrypt: Hide PIM entries in GNOME Shell and Disks, since a newer
8494 cryptsetup would be needed (Closes: #16031).
8495 - VeraCrypt: Fix support for multiple encryption, by iterating over
8496 all children in the device-mapper tree (Closes: #15967).
8497 - Update translations.
8499 * Minor improvements and updates
8500 - Add dmsetup and losetup output in WhisperBack reports to help debug
8501 VeraCrypt-related issues (Closes: #15966).
8502 - Let AppArmor allow access to /usr/local/share/mime, reducing noise
8503 in logs due to many DENIED entries (Closes: #15965).
8504 - Use proper stem.connection module in onion-grater instead of trying
8505 to read the auth cookie manually: that's fragile and breaks some use
8506 cases (e.g. custom auth cookie).
8507 - Unlock VeraCrypt Volumes: Improve internationalization support.
8510 - Ensure the test suite doesn't break when changing the headline of
8511 /home (Closes: #12156).
8512 - Update test suite for updated button labels in confirmation dialogs
8513 of the Tails installer (Closes: #11501).
8515 -- Tails developers <tails@boum.org> Tue, 23 Oct 2018 01:30:00 +0200
8517 tails (3.9.1) unstable; urgency=medium
8520 - Upgrade Tor Browser to 8.0.2, based on Firefox 60.2.1 (Closes: #16017).
8521 - Upgrade Thunderbird to 60.0-3~deb9u1.0tails2 (Closes: #15959). Also
8522 imported the same security fixes that caused Tor Browser 8.0.2.
8523 - Upgrade curl to 7.52.1-5+deb9u7 (DSA-4286).
8524 - Upgrade Ghostscript to 9.20~dfsg-3.2+deb9u5 (DSA-4294).
8525 - Upgrade libarchive-zip-perl to 1.59-1+deb9u1 (DSA-4300).
8526 - Upgrade libkpathsea6 to 2016.20160513.41080.dfsg-2+deb9u1 (DSA-4299).
8527 - Upgrade LittleCMS 2, aka. liblcms2-2, to 2.8-4+deb9u1 (DSA-4284).
8528 - Upgrade Python 2.7 to 2.7.13-2+deb9u3 (DSA-4306).
8529 - Upgrade Python 3.5 to 3.5.3-1+deb9u1 (DSA-4307).
8532 - Make Thunderbird translated in non-English locales via
8533 intl.locale.requested, which works correctly since 60.0-3
8535 - Totem: backport AppArmor profile fix to allow opening the help
8537 - Remove mutt, that was accidentally installed in 3.9 (Closes: #15904).
8538 - Fix VeraCrypt volumes not being opened in GNOME Files (Closes: #15954).
8539 - Fix displaying the "General" section in the Tor Browser preferences
8541 - Fix APT pinning at Tails runtime for our custom APT repository
8542 and for Debian backports (Closes: #15837, #15973).
8544 * Minor improvements and updates
8545 - Upgrade tor to 0.3.4.8-1~d90.stretch+1 (Closes: #15889).
8547 -- Tails developers <tails@boum.org> Wed, 03 Oct 2018 12:12:33 +0200
8549 tails (3.9) unstable; urgency=medium
8552 - Upgrade Tor Browser to 8.0 (Closes: #15803, #15907).
8553 Notable user-visible changes and relevant details:
8554 · Adjust to the fact Tor Browser 8.0a10 replaces firefox with a wrapper.
8555 · Don't use the bundled copy of libstdc++.so.6, ours is recent enough.
8556 · Drop obsolete Torbutton prefs (Closes: #15706).
8557 · Switch back to 128px icons (Closes: #15081).
8558 · AppArmor profile: take into account new Firefox binary path.
8559 - Upgrade Thunderbird to 60.0 (Closes: #15792).
8560 Notable user-visible changes and relevant details:
8561 · AppArmor profile: patch to avoid conflicting x modifiers for ps(1).
8562 - Upgrade tor to 0.3.4.7-rc (Closes: #15772).
8565 - Upgrade Linux to 4.17.17-1 and intel-microcode to 3.20180807a.1
8566 This fixes CVE-2018-3620 aka. Foreshadow aka. L1 Terminal Fault
8568 - Upgrade OpenSSH to 1:7.4p1-10+deb9u4 (DSA-4280).
8571 - Fix Totem on Intel graphics cards by inlining the backported mesa
8572 and dri-enumerate abstractions into its AppArmor profile: they are needed
8573 with recent Mesa and libdrm (Closes: #15821). Regression introduced
8575 - Fix unlocking "hidden" TrueCrypt/VeraCrypt volumes via GNOME Shell
8577 - Fix confusing error message when unlocking TrueCrypt/VeraCrypt volumes
8579 - Revert to Stretch's X.Org nouveau video driver (Closes: #15833).
8580 It seems that the regression brought by the upgraded one
8581 is worse than the improvements reported after our call for testing.
8582 Regression introduced in 3.9~rc1.
8583 - Use the intel X.Org driver for Intel Corporation UHD Graphics 620.
8584 - Fix regressions introduced in 3.9~rc1 in/by Additional Software Packages:
8585 · Don't break new empty persistence configuration files creation when
8586 permissions are incorrect (Closes: #15802).
8587 · Fix UX when the user has specified a distribution or version
8588 for a given package in their live-additional-software.conf
8590 · Don't show installation notifications on upgrade (Closes: #15879).
8591 - Make more Additional Software Packages strings translatable in the
8592 configuration dialog and PolicyKit messages.
8594 * Minor improvements and updates
8595 - Upgrade firmware-nonfree to 20180825-1.
8596 - Update the deb.torproject.org APT repository signing key.
8597 - Unlock VeraCrypt Volumes: add disclaimer (Closes: #15849).
8600 - Update Thunderbird test suite for 60.0 (Closes: #15791).
8601 - Fix various robustness issues.
8602 - Make the Chutney nodes use a higher V3AuthVotingInterval to make client
8603 bootstrap more robust (Closes: #15799).
8604 - Update the Tor Launcher binary path.
8605 - Adjust to the fact "New Circuit for this Site" is now in the site
8606 information and not under the Torbutton anymore.
8607 - Delete unused images.
8609 -- Tails developers <tails@boum.org> Tue, 04 Sep 2018 12:15:43 +0000
8611 tails (3.9~rc1) unstable; urgency=medium
8614 - Integrate the Additional Software Packages feature into the desktop
8615 and revamp the interface of "Configure Persistent Volume".
8616 - Support TrueCrypt/VeraCrypt encrypted volumes on the desktop.
8617 - Upgrade Tor Browser to 8.0a9, based on Firefox 60 ESR (Closes: #15023).
8618 Notable user-visible changes and relevant details:
8619 · Drop search engine customization and stick to Tor Browser's defaults.
8620 · Upgrade uBlock Origin to its WebExtension version and now rely
8621 on the filter lists shipped in the Debian package.
8622 · Tweak the number of web content processes to work better with 2 GiB
8623 of RAM (Closes: #15716).
8624 · Revamp how we're handling our custom prefs, drop obsolete ones,
8625 reduce our delta with pristine Tor Browser.
8626 - Upgrade Thunderbird to 60.0b10 (Closes: #15091). Notable details:
8627 · Install Torbirdy 0.2.5 from stretch-backports and drop our patches
8628 that were merged upstream.
8629 · Enable the optional part of the fixes for EFAIL (Closes: #15602).
8630 - Upgrade Linux to 4.17 (Closes: #15763).
8631 - Upgrade tor to 0.3.4.6-rc (Closes: #15770).
8632 - Upgrade to Debian Stretch 9.5.
8635 - Upgrade CUPS to 2.2.1-8+deb9u2 (DSA-4243).
8636 - Upgrade Exiv2 to 0.25-3.1+deb9u1 (DSA-4238).
8637 - Upgrade FUSE to 2.9.7-1+deb9u1 (DSA-4257).
8638 - Upgrade GDM to 3.22.3-3+deb9u2 (DSA-4270).
8639 - Upgrade libsoup to 2.56.0-2+deb9u2 (DSA-4241).
8640 - Upgrade Imagemagick to 8:6.9.7.4+dfsg-11+deb9u5 (DSA-4245).
8641 - Upgrade ffmpeg to 7:3.2.12-1~deb9u1 (DSA-4258, DSA-4249).
8642 - Upgrade libmspack to 0.5-1+deb9u2 (DSA-4260).
8643 - Upgrade Samba to 2:4.5.12+dfsg-2+deb9u3 (DSA-4271).
8644 - Upgrade the Apache XML Security for C++ library to 1.7.3-4+deb9u1
8648 - Don't display the Enigmail configuration wizard in every Tails session
8649 (Closes: #15693, #15746). Fix against Tails 3.8.
8650 - Make the torstatus GNOME Shell extension actually translatable
8651 (Closes: #15715). Fix against the first Tails release that included
8653 - Drop Icedove → Thunderbird migration code which started causing trouble.
8655 · Link to upgrade documentation when upgrading (Closes: #7904).
8656 · Show the reinstall option only when the device is big enough to make
8657 a full reinstallation (Closes: #14810).
8658 · Make the main window fit in a 600px-high screen (Closes: #14849).
8659 · Show the correct device size in the reinstall confirmation dialog
8661 - Tails Greeter: don't display file:/// URLs to users (Closes: #15582).
8663 * Minor improvements and updates
8664 - Install Mesa and libdrm* from stretch-backports and upgrade the Nouveau
8665 X.Org video driver to 1.0.15. This improves support for some graphics
8666 cards such as NVIDIA Pascal series (Closes: #14910)
8667 - htpdate: improve diagnostics output when the date header can't be fetched.
8668 - Onion Grater: support named AppArmor profiles.
8669 - Update Onion Grater's config for new Tor Browser AppArmor profile name.
8670 - Enable e10s in the Unsafe Browser.
8671 - Delete all search plugins for the Unsafe Browser (Closes: #15708).
8672 - Display a deprecation warning when starting Liferea (#11082).
8673 - Upgrade VirtualBox guest modules to 5.2.16-dfsg-3~bpo9+2.
8674 - Use Tor Browser for browsing the documentation even when offline
8676 - Provide feedback while Tor Browser, "Tails documentation"
8677 or "Report an error" are starting (Closes: #15101).
8678 - WhisperBack: remove the right pane (Closes: #7180).
8679 - tails-debugging-info: return machine-readable, structured data.
8680 Adjust WhisperBack accordingly (Closes: #8514). This paves the way
8681 towards more usable bug reports (#8722).
8682 - Port lots of our Perl code to more lightweight libraries.
8683 This decreases the amount of memory used by the persistence
8684 configuration interface.
8685 - Do not hide applications that require an admin password (Closes: #11013).
8686 - Try unlocking every persistent volume when multiple ones are
8687 available (Closes: #15653).
8688 - Upgrade Electrum to 3.1.3-1~bpo9+1.
8689 - Upgrade most firmware to 20180518-1.
8690 - Upgrade Intel microcode to 3.20180703.2~bpo9+1.
8691 - Upgrade AMD microcode to 3.20180524.1.
8694 - Drop AppArmor feature set pinning: this is now done in Debian Stretch
8696 - Remove the now unused deb.torproject.org sid APT source (Closes: #15638).
8697 - Install OnionShare from our custom APT repo instead of from sid.
8698 We've mistakenly tracked sid for a while and it has become a problem,
8699 so stick to the version that works for us until Tails 4.0.
8700 - Fix building the ISO on zfs by dropping the cache=none setting for
8701 vmproxy's storage (Closes: #14404).
8702 - Update the Vagrant basebox for any change under vagrant/.
8703 Previously, some relevant changes were not effective until something under
8704 vagrant/definitions/tails-builder/ was changed.
8705 - Make intltool ignore .py files: `intltool-update --maintain` seems to be
8706 buggy with .py files.
8707 - Refresh our CUPS AppArmor profile patch to apply on 2.2.1-8+deb9u2.
8708 - Make it more obvious that the .orig file check is fatal (Closes: #15727).
8709 - Delete baseboxes once they're 6 months old instead of 4.
8710 This is more in line with the delay between our major releases these days.
8711 - Rename /usr/share/amnesia to /usr/share/tails. It was about time.
8712 - Abort the build if /etc/{passwd,group} has changed (Closes: #15419).
8713 Such changes can break Tails after an automatic upgrade was applied
8714 so let's detect it ASAP. Consequently, ensure a few GIDs — that wanted
8715 to play musical chairs — are the same as in Tails 3.8 (Closes: #15695).
8716 - Don't fail the build if the APT lists don't include any package
8717 whose name matches ^geoclue.
8720 - Adjust to the new tails-persistence-setup API.
8721 - Update the Tor Browser's AppArmor profile name.
8722 - Re-enable the "I can print the current page […]" test.
8723 - Update tests wrt. the fact tails-upgrade-frontend-wrapper was ported
8724 to Python (Closes: #15379).
8725 - Make a test more robust by waiting for the page to have loaded.
8726 - Adjust to the fact the WhisperBack debugging info is now configured
8727 in a machine-readable file.
8728 - Remove test for tails-debugging-info, that has been a no-op for a while.
8729 - Adjust for Tor Browser 8.
8730 - Make the "I open the address" step more robust and accordingly
8731 stop marking the tests that use it in the Unsafe Browser
8732 as fragile (refs: #14771).
8733 - De-duplicate a number of images of standard GTK+ 3 widgets.
8734 - Make the audio and WebM tests more robust.
8735 - Make the "I start the Tor Browser in offline mode" step more robust.
8736 - Make the "AppArmor has (not )? denied" step more robust.
8737 - Don't try and use XVFB_PID if it's not set (Closes: #15730).
8738 - Adjust Pidgin test to use a certificate that's still in Debian
8740 - Use a hopefully more reliable public GnuPG key and make tests
8741 more robust against new subkeys being added (Closes: #15771).
8742 - Stop hard-coding the list of RTL Tor Browser locales.
8743 - Fix the "Unsafe Browser can be used in all languages supported in Tails"
8744 test for locales that have a translated homepage (Closes: #11711).
8745 - Take into account that apt(8) won't return when run in the remote shell
8746 with the ASP hooks enabled.
8748 -- Tails developers <tails@boum.org> Thu, 16 Aug 2018 18:37:47 +0000
8750 tails (3.8) unstable; urgency=medium
8753 - Upgrade Tor Browser to 7.5.6 (MFSA 2018-17; Closes: #15683).
8754 - Upgrade Enigmail to 2.0.7 (partly fixes #15602 aka. EFAIL).
8755 - Upgrade libgcrypt to 1.7.6-2+deb9u3 (DSA-4231-1).
8756 - Upgrade perl to 5.24.1-3+deb9u4 (DSA-4226-1).
8759 - Thunderbird: fix importing public OpenPGP keys from email attachments
8761 - Make the Unsafe Browser home page translatable again (Closes: #15461).
8763 * Minor improvements
8764 - Don't display the "Know your rights" message on Thunderbird first run.
8765 - Move Thunderbird's default userChrome.css to /etc/thunderbird, just like
8766 we do for Tor Browser, for easier upgrade handling.
8768 -- Tails developers <tails@boum.org> Mon, 25 Jun 2018 09:59:22 +0000
8770 tails (3.7.1) unstable; urgency=medium
8773 - Upgrade Tor Browser to 7.5.5 (MFSA 2018-14; closes: #15643).
8774 - Upgrade Thunderbird to 52.8.0 (DSA-4209-1; Closes: #15607).
8775 - Partially fixes EFAIL.
8776 - Fixes importing OpenPGP keys from keyservers with Enigmail.
8777 - Accordingly refresh our Thunderbird AppArmor profile patch.
8778 - Upgrade cURL to 7.52.1-5+deb9u6 (DSA-4202-1).
8779 - Upgrade GnuPG (modern) 2.1.18-8~deb9u2 (DSA-4222-1).
8780 - Upgrade GnuPG (legacy) to 1.4.21-4+deb9u1 (DSA-4223-1).
8781 - Upgrade Git to 1:2.11.0-3+deb9u3 (DSA-4212-1).
8782 - Upgrade PackageKit to 1.1.5-2+deb9u1 (DSA-4207-1).
8783 - Upgrade procps to 2:3.3.12-3+deb9u1 (DSA-4208-1).
8784 - Upgrade wavpack to 5.0.0-2+deb9u2 (DSA-4197-1).
8785 - Upgrade wget to 1.18-5+deb9u2 (DSA-4195-1).
8786 - Upgrade xdg-utils to 1.1.1-1+deb9u1 (DSA-4211-1).
8789 - Fix setting a screen locker password with non-ASCII characters
8792 - Rename the WhisperBack launcher to "WhisperBack Error Reporting"
8793 so that users have a better chance to understand what it does
8795 - Ensure debugging info in Whisperback reports don't contain email
8796 signature markers so that email clients forward it in full
8798 - Wrap text written by the user to 70 chars (Closes: #11689).
8800 * Minor improvements
8801 - The "Tails documentation" desktop launcher now opens /doc instead of
8802 the aging /getting_started that confused people during user testing
8806 - Update to match "Tails documentation" behaviour change.
8808 -- Tails developers <tails@boum.org> Sat, 09 Jun 2018 19:53:51 +0000
8810 tails (3.7) unstable; urgency=medium
8813 - Upgrade Tor Browser to 7.5.4 (MFSA 2018-12, Closes: #15588).
8814 - Upgrade OpenSSL to 1.1.0f-3+deb9u2 (DSA-4157).
8815 - Upgrade Perl to 5.24.1-3+deb9u3 (DSA-4172).
8816 - Upgrade Libre Office to 1:5.2.7-1+deb9u4 (DSA-4178).
8817 - Upgrade libmad to 0.15.1b-8+deb9u1 (DSA-4192).
8820 - Enable the removal of OpenPGP keyblock in Whisperback (closes: #7797).
8821 - Show the logo in Whisperback's About menu (closes: #13198).
8822 - Use the same font in all the Whisperback report (Closes: #11272).
8823 - Update tails-bugs@tails.boum OpenPGP key (Closes: #15534).
8825 * Minor improvements
8826 - Stop installing python-qt4 and python-trezor (Closes: #15391).
8827 - Make WhisperBack easier to find in the GNOME Overview (Closes: #13299).
8829 -- Tails developers <tails@boum.org> Tue, 08 May 2018 01:47:22 +0200
8831 tails (3.6.2) unstable; urgency=medium
8834 - Upgrade Tor Browser to 7.5.3 (MFSA 2018-10, Closes: #15459).
8835 - Upgrade Thunderbird to 1:52.7.0-1~deb9u1.0tails1 (DSA-4155,
8837 - Upgrade libicu to 57.1-6+deb9u2 (DSA-4150).
8838 - Upgrade intel-microcode to 3.20180312.1~bpo9+1. Implements
8839 IBRS/IBPB/STIPB support, Spectre-v2 mitigation for: Sandybridge,
8840 Ivy Bridge, Haswell, Broadwell, Skylake, Kaby Lake, Coffee Lake
8844 - Tor Browser AppArmor profile:
8845 * Grant the main Firefox process access to machine-id: needed for
8846 IBus support (Closes: #15437).
8847 * Allow access to extensions installed by the user such as Tails
8848 Verification (Closes: #15434).
8849 - Remove packages needed to support Video Acceleration API
8850 (VA-API) because they breaks opening GNOME Settings and Totem in
8851 Tails 3.6 on some computers (only NVIDIA for now but perhaps
8852 other hardware is affected). (Closes: #15433, #15449)
8853 - Upgrade Linux to 4.15.11-1 and bump the aufs submodule (Closes:
8855 - tails-documentation script:
8856 * open translated documentation page in Tor Browser when online
8858 * use documented syntax for os.execv (Refs: #15332)
8859 * re-add support for passing a HTML anchor as the second
8861 - Fix issue where the tails-persistence-setup user's guid would be
8862 changed when it was the uid that was intended (Closes: #15422).
8864 -- Tails developers <tails@boum.org> Thu, 29 Mar 2018 17:49:42 +0200
8866 tails (3.6.1) unstable; urgency=medium
8869 - Upgrade Tor Browser to 7.5.2 (MFSA 2018-08 i.e. CVE-2018-5146).
8870 - Upgrade libvorbis to 1.3.5-4+deb9u2 (DSA 4140-1 aka. CVE-2018-5146).
8871 - Upgrade curl to 7.52.1-5+deb9u5 (DSA 4136-1).
8872 - Upgrade samba to 2:4.5.12+dfsg-2+deb9u2 (DSA 4135-1).
8875 - Fix ISO build reproducibility (Closes: #15400)
8876 - Disable Selfrando: Tor Browser upstream currently enables it only
8877 in non-release builds
8878 (https://trac.torproject.org/projects/tor/ticket/24912#comment:8).
8880 -- Tails developers <tails@boum.org> Fri, 16 Mar 2018 22:42:00 +0000
8882 tails (3.6) unstable; urgency=medium
8885 - Upgrade Tor Browser to 7.5.1.
8886 - Upgrade Tor to 0.3.2.10. (Closes: #15158)
8887 - Add ability to lock the screen. (Closes: #5684)
8888 - Add initial support for Meek bridges. (Closes: #8243)
8889 - Upgrade to Thunderbird 52.6.0. (Closes: #15298)
8890 - Enable Thunderbird AppArmor profile. (Closes: 11973)
8891 - Upgrade Linux to 4.15.0-1. (Closes: #15309).
8892 - Upgrade systemd to 237.
8893 - Upgrade Electrum to 3.0.6. (Closes: #15022)
8894 - Upgrade the base system to the Debian Stretch 9.4 point-release
8896 - Port a few shell scripts to Python thanks to GoodCrypto. (Closes: #11198)
8899 - Upgrade Intel processor microcode firmware. (Closes: #15173).
8900 - Upgrade poppler to 0.48.0-2+deb9u1. (CVE-2017-14929, CVE-2017-1000456)
8901 - Upgrade tiff to 4.0.8-2+deb9u2 (CVE-2017-9935, CVE-2017-11335,
8902 CVE-2017-12944, CVE-2017-13726, CVE-2017-13727, CVE-2017-18013)
8903 - Upgrade ffmpeg to 7:3.2.10-1~deb9u1. (CVE-2017-17081)
8904 - Upgrade libtasn1-6 to 4.10-1.1+deb9u1. (CVE-2017-10790, CVE-2018-6003)
8905 - Upgrade Libre Office to 1:5.2.7-1+deb9u2. (CVE-2018-6871)
8906 - Upgrade libvorbis to 1.3.5-4+deb9u1. (CVE-2017-14632, CVE-2017-14633)
8907 - Upgrade gcc to 6.3.0-18+deb9u1.
8908 - Upgrade util-linux to 2.29.2-1+deb9u1. (CVE-2018-7738)
8909 - Upgrade isc-dhcp to 4.3.5-3+deb9u1 (CVE-2017-3144, CVE-2018-5732,
8912 * Minor improvements
8913 - Avoid noisy warning at boot time by creating tails-upgrade-frontend's
8914 trusted GnuPG homedir with stricter permissions, then making it looser.
8916 - Drop (broken) Thunderbird dedicated SocksPort. (Closes: #12460)
8917 - Drop customized update-ca-certificates.service. (Closes: #14756)
8918 - Update AppArmor cupsd profile. (Closes: #15029)
8919 - Improve UX when GDM does not start. (Closes: #14521)
8920 - Install packages needed to support Video Acceleration API.
8922 - Upgrade aufs-dkms for Linux 4.15. (Closes: #15132).
8923 - Ship pdf-redact-tools, thanks to dachary <loic@dachary.org>.
8925 - Additional Software Packages: convert to python3 and PEP-8.
8927 - Additional Software Packages: do not check for updates every time the
8928 network gets reconnected. (Closes: #9819)
8929 - Revert to xorg-xserver from Stretch. (Closes: #15232)
8930 - Open Tails documentation in Tor Browser when online. (Closes: #15332)
8931 - Disable Enigmail's Memory Hole feature. (Closes: #15201)
8932 - Persistence Setup: stop depending on Synaptic. (Closes: #15263)
8935 - Additional Software Packages: fix the "incomplete online upgrade
8936 process" bug in offline mode (Closes: #14570)
8937 - Additional Software Packages: do not block Desktop opening.
8939 - Install OpenPGP Applet 1.1. (Closes: #6398).
8940 - Repair rng-tools using a real start-stop-daemon program.
8942 - Tails installer: fix bug with unicode status messages. (Closes: #15254)
8945 - Abort if tails-custom-apt-sources failed.
8946 - Abort the ISO build when DKMS modules are not built. (Closes: #14789).
8947 - Improve how we track dependencies in build hooks. (Closes: #14818)
8948 - Fix (potential) rare race condition during build.
8949 - Ensure the SquashFS has /etc/hostname properly configured.
8951 - Bump builder VM's RAM. (Closes: #15310)
8954 - Log the list of systemd jobs when systemctl is-system-running fails.
8956 - Allow more time for 'systemctl is-system-running' to succeed.
8957 - Only support SikuliX, not Sikuli.
8958 - Disable SPICE clipboard sharing.
8959 - Don't flood the debug logger with the journal contents.
8961 - Enter a name into the Thunderbird account configuration.
8963 - Fix the "I do not see ..." step's case. (Closes: #14929)
8964 - Mark scenarios that use the "The Report an Error launcher will…" step
8965 as fragile (Closes: #15321)
8966 - Test that Tor Browser opens docs when online. (Closes: #15332)
8967 - Adapt test after warning moved to after Unsafe Browser verification
8968 dialog. (Closes: #8775)
8969 - Dogtailify electrum.feature.
8970 - Add additional software packages feature. (Closes: #14572)
8971 - Disable test that is broken due to a Tor Browser bug. (refs: #15336)
8973 -- Tails developers <tails@boum.org> Mon, 12 Mar 2018 21:28:29 +0100
8975 tails (3.5) unstable; urgency=medium
8978 - Upgrade amd64-microcode to 3.20171205.1, for the mitigation
8979 against Spectre (CVE-2017-5715) (Closes: #15148).
8980 - Upgrade Tor Browser to 7.5-build3 (Closes: #15197).
8981 - Upgrade Thunderbird to 1:52.5.2-2~deb9u1.0tails1 (Closes: #15033)
8982 - Upgrade gdk-pixbuf to 2.36.5-2+deb9u2.0tails1 (Closes: #15177).
8983 - Upgrade bind9 to 1:9.10.3.dfsg.P4-12.3+deb9u4.
8984 - Upgrade libxml2 to 2.9.4+dfsg1-2.2+deb9u2.
8986 * Minor improvements
8987 - Upgrade Linux to 4.14.13, which is the first kernel that has the
8988 "[x86] microcode/AMD: Add support for fam17h microcode loading"
8989 commit, that's needed to load the AMD fam17h microcode for
8990 mitigating the Spectre vulnerability (CVE-2017-5715).
8993 - Drop Claws Mail persistence setting migration. Whenever
8994 persistent Claws Mail setting is enabled, this creates an empty
8995 ~/.icedove/ directory, that prevents Thunderbird from starting
8997 - Don't prevent the GNOME Applications button from opening its menu if
8998 time syncing resulted in a shift back in time (Closes: #14250).
8999 - Tails Installer: when cloning Tails to another USB drive, check
9000 if the target device has enough space *before* any destructive
9001 actions are made (Closes: #14622).
9002 - Tor Browser: make "Print to file" work again, for all locales
9003 (Closes: #13403, #15024).
9006 - Fix option passed to cmp: -q is not supported but --quiet is.
9007 Spotted on feature/buster that's the first branch that exercises
9008 this code, but there's no reason to fix it only there.
9011 - Adapt tests for Tor Launcher 0.2.14.3, i.e. the one shipped with
9012 Tor Browser 7.5 in Tails 3.5 (Closes: #15064).
9013 - Add support for creating arbitrarily sized partitions.
9014 - Add a "Try cloning Tails to a too small partition" scenario
9015 (regression test for #14622).
9017 -- Tails developers <tails@boum.org> Tue, 23 Jan 2018 00:57:58 +0100
9019 tails (3.4) unstable; urgency=medium
9022 - Install Linux 4.14.0-3 from sid (Closes: #14976). This enables
9023 the kernel-side mitigations for Meltdown.
9024 - Upgrade curl to 7.52.1-5+deb9u3.
9025 - Upgrade enigmail to 2:1.9.9-1~deb9u1.
9026 - Upgrade gimp to 2.8.18-1+deb9u1.
9027 - Upgrade imagemagick to 8:6.9.7.4+dfsg-11+deb9u4.
9028 - Upgrade libav (ffmpeg) to 7:3.2.9-1~deb9u1.
9029 - Upgrade libxcursor to 1:1.1.14-1+deb9u1.
9030 - Upgrade libxml-libxml-perl to 2.0128+dfsg-1+deb9u1.
9031 - Upgrade poppler to 0.48.0-2+deb9u1.
9032 - Upgrade rsync to 3.1.2-1 3.1.2-1+deb9u1.
9033 - Upgrade samba to 2:4.5.12+dfsg-2+deb9u1.
9034 - Upgrade sensible-utils to 0.0.9+deb9u1.
9035 - Upgrade tor to 0.3.1.9-1~d90.stretch+1.
9037 * Minor improvements
9038 - Display TopIcons systray on the left of the system menu. This
9039 fixes #14796 (on Buster, it is displayed in the middle of the
9040 screen, on the left of the clock) and an annoying UX problem we
9041 have on Stretch: OpenPGP applet is in the middle of icons that
9042 share the exact same (modern, GNOME Shell-like) behaviour, which
9043 is disturbing when opening one of the modern menus and moving
9044 the mouse left/right to the others, because in the middle one
9045 icon won't react as expected, and the nice blue bottom border
9046 continuity is broken.
9047 - Use the "intel" X.Org driver for integrated graphics in Intel
9048 i5-7300HQ (Closes: #14990).
9049 - Enable HashKnownHosts in the OpenSSH client (Closes: #14995).
9050 Debian enables HashKnownHosts by default via /etc/ssh/ssh_config
9051 for good reasons, let's not revert to the upstream default.
9052 - Pin the AppArmor feature set to the Stretch's kernel one. Linux
9053 4.14 brings new AppArmor mediation features and the policy
9054 shipped in Stretch may not be ready for it. So let's disable
9055 these new features to avoid breaking stuff: it's too hard to
9056 check if all the policy for apps we ship (and that users install
9057 themselves) has the right rules to cope with these new mediation
9061 - Don't delete downloaded debs after install (Closes: #10958).
9062 - Install xul-ext-ublock-origin from sid to make the dashboard
9063 work again(Closes: #14993). Thanks to cacahuatl
9064 <cacahuatl@autistici.org> for the patch!
9065 - Additional software feature: use debconf priority critical to
9066 prevent failure when installing packages otherwise requiring
9067 manual configuration (Closes: #6038)
9068 - Don't include anything under /lib/live/mount/medium/ in the
9069 readahead list (Closes: #14964). This fixes the boot time
9070 regression introduced in Tails 3.3.
9073 - Display a more helpful error message when the 'origin' remote
9074 does not point to the official Tails Git repository. This task
9075 calls git_base_branch_head() which relies on the fact 'origin'
9076 points to our official repo.
9077 - Vagrant: never build the wiki early. This has caused several
9078 issues throughout the years, the lastest instance being the
9079 reopening of #14933. (Closes: #14933)
9080 - Install libelf-dev during the time we need it for building DKMS modules.
9081 - Make the DKMS build hook verbose, and display DKMS modules build
9082 logs on failure. This hook is a recurring cause of headaches,
9083 let's simplify debugging.
9084 - Remove obsolete duplicate build of the virtualbox-guest DKMS
9088 - Log the list of systemd jobs when systemctl is-system-running
9089 fails (Closes: #14772). Listing the units is not enough: in most
9090 cases I've seen, is-system-running returns "starting" which
9091 means the job queue is not empty, and to debug that we need the
9093 - Only support SikuliX; drop support for Sikuli.
9094 - Disable SPICE clipboard sharing in the guest. It could only mess
9095 things up, and in fact has confused me by suddenly setting my
9096 *host's* clipboard to "ATTACK AT DAWN"... :)
9097 - Decode Base64.decode64 return value appropriately; it returns
9098 strings encoded in ASCII-8bit.
9099 - Don't flood the debug logger with the journal contents.
9100 - Handle case where $vm is undefined during an extremely early
9102 - Allow more time for 'systemctl is-system-running' to
9103 succeed. (Refs: #14772)
9104 - Make Sikuli attempt to find replacements on FindFailed by
9105 employing fuzz, or "lowering the similarity factor". The
9106 replacements (if found) are saved among the artifacts, and
9107 serves as potential drop-in-replacements for outdated
9108 images. The main use case for this is when the font
9109 configuration in Tails changes, which normally invalidates a
9110 large part of our images given that our default high similarity
9111 factor. We also add the `--fuzzy-image-matching` where the
9112 replacements are used in case of FindFailed, so the tests can
9113 proceed beyond the first FindFailed. The idea is that a full
9114 test suite run will produce replacements for potentially *all*
9116 - Fix our findAny() vs findfailed_hook. For findAny() it might be
9117 expected that some images won't be found, so we shouldn't use
9118 our findfailed_hook, which is about dealing with the situation
9119 where images need to be updated.
9120 - Make sure Pidgin's D-Bus policy changes are applied (Closes:
9121 #15007). Without the HUP there's a race that we sometimes lose.
9122 - Nump the Unsafe Browser's start page image (Closes: #15006).
9123 - Hot-plug a 'pcnet' network device instead of 'virtio' on Sid,
9124 since the latter is not detected on Sid (Closes: #14819).
9126 -- Tails developers <tails@boum.org> Mon, 08 Jan 2018 16:57:07 +0100
9128 tails (3.3) unstable; urgency=medium
9131 - Upgrade the base system to the Debian Stretch 9.2 point-release
9132 which gives us tons of bugfixes (Closes: #14714).
9133 - Install Linux 4.13.0-1 (Closes: #14789).
9136 - Upgrade Thunderbird to 52.4.0 (Closes: #14963).
9137 - Upgrade Tor Browser to 7.0.10 (Closes: #14940).
9138 - Upgrade gdk-pixbuf to 2.36.5-2+deb9u1.0tails1 (Closes: #14729).
9140 * Minor improvements
9141 - Upgrade to Tor 0.3.1.8-2~d90.stretch+1, a new stable Tor series.
9142 - tails-documentation: rewrite in Python + use WebKit for display
9143 instead of the Tor Browser. Since Tor Browser 7.0.8 rendering of
9144 local pages (like our docs) fail (#14962) so this is probably a
9145 temporary workaround of that.
9146 - Replace the Unsafe Browser's warning pages with static,
9147 pure-HTML versions. This is truly a *temporary* workaround for
9149 - Update deb.tails.boum.org APT repo key (Closes: #14927)
9150 - Refresh Tor Browser AppArmor profile patch to apply on top of
9151 torbrowser-launcher 0.2.8-4's (Closes: #14923).
9152 - Drop obsolete manual enabling of AppArmor on the kernel
9153 command-line: it's now enabled by default, so the (Tails -
9154 Debian) delta gets smaller. :)
9157 - Install Tails Installer 5.0.2. Fixes:
9158 * Most notably, fix an issue preventing Tails Installer from
9159 installing to drives containing a non-Tails partition that
9160 (obviously) has affected a lot of users. (Closes: #14755).
9161 * Fix an issue that made the resulting installations unbootable
9162 if Tails Installer was using a too recent udisks2, e.g. the
9163 one currently in Debian Sid (Closes: #14809).
9164 * Code clean-ups (Closes: #14721, #14722, #14723).
9165 - Fix UEFI boot for USB sticks installed with Universal USB
9166 Installer (Closes: #8992).
9167 - Force Tor Browser and Thunderbird to enable accessibility
9168 support even if no a11y feature is enabled in GNOME yet (Closes:
9170 - Mark our custom Desktop launchers as trusted (Closes: #14793,
9172 - Add a systemd --user target for bits of GNOME
9173 EarlyInitialization managed by systemd, and make the keyboard
9174 layout configuration as part of it. This fixes an issue where
9175 the layout chosen in the Greeter sometimes wasn't applied in the
9176 GNOME session (Closes: #12543).
9179 - auto/{build,clean,config}: run with `set -eu`.
9180 - Add script to sanity check the website. Currently it ensures all
9181 blog posts and security advisories have valid Ikiwiki 'meta
9182 date' directives, since we depend on it for reproducibility.
9183 Also make passing this sanity check a pre-condition for building
9184 the website (Closes: #12726, #14767).
9185 - Abort the ISO build when DKMS modules were not built.
9186 - Take into account where DKMS modules get installed nowadays.
9187 - auto/build: normalize file timestamps in wiki/src before
9188 building. The copy of the website included in the ISO image has
9189 "Posted" timestamps that apparently match when we cloned the Git
9190 repository, which affects reproducibility. (Closes: #14933).
9191 - Fix reproducibility of builds of topic branches that lag behind
9192 their base branch with the mergebasebranch build option enabled.
9193 Two otherwise identical merge commits done at different times
9194 get different IDs, and we happen to embed in the ISO the ID of
9195 the commit we're building from. (Closes: #14946)
9198 - Bump timeout for "I can save the current page as", otherwise the
9199 "The Tor Browser directory is usable" scenario fails randomly
9200 when the system is under load.
9201 - New scenario: installing Tails to an eligible drive with an
9202 existing filesystem. This is a regression test for #14755.
9203 - New scenario: re-installing over an existing Tails installation.
9205 -- Tails developers <tails@boum.org> Tue, 14 Nov 2017 04:53:27 +0100
9207 tails (3.2) unstable; urgency=medium
9210 - Upgrade Linux packages to the Debian kernel 4.12.0-2, based on
9211 mainline Linux 4.12.12 (Closes: #11831, #12732, #14673).
9214 - Upgrade Tor Browser to 7.0.6-build3 (Closes: #14696).
9215 - Upgrade to Thunderbird 52.3.0 (Closes: #12639).
9216 - Deny access to Pidgin's D-Bus service (Closes: #14612). That D-Bus
9217 interface is dangerous because it allows _any_ application running
9218 as `amnesia' that has access to the session bus to extract
9219 basically any information from Pidgin and to reconfigure it:
9220 https://developer.pidgin.im/wiki/DbusHowto
9221 - Block loading of Bluetooth kernel modules (Closes: #14655) and
9222 block Bluetooth devices with rfkill (Closes: #14655).
9223 - Add localhost.localdomain to the hosts file to prevent loopback
9224 leaks to Tor circuits (Closes: #13574). Thanks to tailshark for
9227 * Minor improvements
9228 - Upgrade to Tails Installer 5.0.1 (Closes: #8859, #8860, #12707). This
9229 version gets rid of the splash screen, detects when Tails is already
9230 installed on the target device (and then proposes to upgrade),
9231 and generally improves the UX. It also increases the Tails partition
9232 size and refuses to install to devices smaller than 8 GB.
9233 - Deprecate Thunderbird's preferences/0000tails.js (Closes: #12680).
9234 - Install the BookletImposer PDF imposition toolkit (Closes: #12686).
9236 * Fallback to ~/Tor Browser for uploads (Closes: #8917).
9237 * Silence some common operations that always are denied and
9238 otherwise would spam the journal (Closes: #14606)
9239 - Shell library: remove now unused functions (Closes: #12685).
9240 - Add pppoe to the installed packages (Closes #13463). Thanks to geb
9242 - Replace syslinux:i386 with syslinux:amd64 in the ISO9660
9243 filesystem (Closes: #13513).
9244 - htpdate: fix date header regexp (Closes: #10495). It seems that
9245 some servers (sometimes) do not send their headers with first
9246 letter uppercased, hence a lot of failures to find the date in it.
9247 - Install aufs-dkms from Debian unstable (Closes: #12732).
9248 - Install vim-tiny instead of vim-nox (Closes: #12687). On Stretch,
9249 vim-nox started pulling ruby and rake in the ISO. I think vim-tiny
9250 would be good enough, and would save a few MiB in the ISO. Those
9251 who use vim more intensively and want another flavour of vim are
9252 likely to need persistence anyway, and can thus install a more
9253 featureful vim with the additional software packages feature.
9254 - Remove gksu and its and gconf's dependencies (Closes: #12738). We
9255 use pkexec instead of gksudo. gksu is unmaintained, buggy
9256 (e.g. #12000), and it is the only reason we ship GConf, which we
9257 want to remove. The other removals are:
9258 * libgnomevfs2-extra, which was previously used for SSH/FTP support in
9259 Nautilus, but isn't needed for that any more.
9260 * libgnome2-bin which provides gnome-open, which isn't required by
9261 any application in Tails (as far as we know).
9262 * Configurations and scripts that become obsolete because of these
9264 - Refresh torbrowser-AppArmor-profile.patch to apply cleanly on top
9265 of torbrowser-launcher 0.2.8-1 (Closes: #14602).
9266 - Switch from Florence to GNOME's on-screen keyboard (Closes: #8281)
9267 and incidentally improve accessibility in GTK+ 2.0 and Qt
9268 applications. This drops Florence and the corresponding GNOME
9270 - Make ./HACKING.mdwn a symlink again (Closes: #13600).
9271 - Implement refresh-translations --force .
9272 - Rework how we handle the individual POT files of our applications.
9273 Comparing the new temporary POT files we generate with the
9274 temporary POT files we generated last time (if ever, and if we
9275 did, for which branch?) is not relevant; these POT files are only
9276 used for merging into a new tails.pot and *that* one is relevant
9277 to diff against the old tails.pot.
9278 - Update the Tails signing key. (Closes: #11747)
9280 * Ensure reproducible permissions for /etc/hostname (Closes:
9282 * Patch desktop-file-utils to make its mimeinfo.cache reproducible
9284 * Patch glib2.0 to make its giomodule.cache reproducible (Closes:
9286 * Patch gdk-pixbuf to make its loaders.cache reproducible (Closes:
9288 * Patch gtk2.0 and gtk3.0 to make their immodules.cache
9289 reproducible (Closes: #13440).
9290 * Remove GCconf: it is a source of non-determinism in the
9291 filesystem (element order in /var/lib/gconf/defaults/%gconf-tree-*.xml)
9292 which made Tails unreproducible.
9293 * Ignore comment updates in POT files, which was a source of
9294 non-determinism and therefore prevented Tails from being
9295 reproducible (Closes: #12641).
9297 * Increase mmap randomization to the maximum supported value
9298 (Closes: #11840). This improves ASLR effectiveness, and makes
9299 address-space fragmentation a bit worse.
9300 * Stop explicitly enabling kaslr: it's enabled by default in
9301 Debian, and this kernel parameter is not supported anymore.
9302 * Disable kexec, to make our attack surface a bit smaller.
9305 - Start Nautilus silently in the background when run as root
9306 (Closes: #12034). Otherwise, after closing Nautilus one gets the
9307 prompt back only after 5-15 seconds, which confuses users and makes
9308 our doc more complicated than it should.
9309 - Ensure pinentry-gtk2 run by Seahorse has the correct $DISPLAY set
9313 - build-manifest-extra-packages.yml: remove squashfs-tools version
9314 we don't use anymore (Closes: #12684). Apparently our
9315 apt-get/debootstrap wrapper tricks are enough to detect the
9316 version of squashfs-tools we actually install and use.
9317 - Merge base branch earlier, i.e. in auto/config instead of
9318 auto/build (Closes: #14459). Previously, a given build from a topic
9319 branch would mix inconsistent versions of things.
9320 - Fail builds started before SOURCE_DATE_EPOCH (Closes:
9321 #12352). Such builds would not be reproducible, and this is an
9322 assumption (a reasonable one!) that we do all over the place, so
9323 let's fail early. While we're at it, let's fail if
9324 SOURCE_DATE_EPOCH is not set as well. Actually we would fail any
9325 way if that was the case when reaching our
9326 99-zzzzzz_reproducible-builds-post-processing build hook, but
9330 - Test the GNOME Root Terminal.
9331 - Take into account that Tails Installer 5.0.1 refuses to install
9332 Tails to devices smaller than 8 GiB. It'll still allow *upgrading*
9334 - Use 7200 MiB virtual USB drives when we really mean 8 GiB. In the
9335 real world, USB sticks labeled "8 GB" can be much smaller, so
9336 Tails Installer will accept anything that's at least 7200 MiB.
9337 This commit makes us exercise something closer to what happens in
9338 the real world, and incidentally it'll save storage space on our
9339 isotesters and improve test suite performance a bit. :)
9340 - Have unclutter poll every 0.1s instead of continuously. On current
9341 sid, virt-viewer eats a full CPU and doesn't do its job when
9342 "unclutter -idle 0" is running.
9343 - Adapt tests for Tails Installer 5.0.1.
9344 - Workaround Pidgin's DBus interface being blocked since we actually
9345 depend on it for some tests.
9346 - Test that Pidgin's DBus interface is blocked.
9347 - Save more data on test suite failures (Refs: #13541):
9348 * When Tor fails to bootstrap, save Tor logs and chutney nodes
9350 * When Htpdate fails to synchronize the clock, save its logs.
9351 * Always save the systemd journal on failure.
9352 - When testing emergency shutdown, wait longer for Tails to tell
9353 us it has finished wiping the memory. The goal here is to help
9354 us understand whether (Refs: #13462) is a bug in the emergency
9355 shutdown feature or in our test suite.
9356 - Restart nautilus-desktop if Desktop icons are not visible
9358 - Test suite: fix assert_raise() when using ruby-test-unit >=
9359 3.2.5 (Closes: #14654). ruby-test-unit 3.2.5 added native Java
9360 exception support for JRuby. The fact we defined the :Java
9361 constant was enough to trigger that JRuby-specific code, which
9363 - Test suite: take into account that click-to-play is not required
9364 anymore for WebM videos in Tor Browser (Closes: #14586).
9366 -- Tails developers <tails@boum.org> Mon, 25 Sep 2017 22:23:01 +0200
9368 tails (3.1) unstable; urgency=medium
9371 - Upgrade Tor Browser to 7.0.4-build1 (Closes: #13577).
9372 - Upgrade Linux to 4.9.30-2+deb9u3.
9373 - Upgrade libtiff to 4.0.8-2+deb9u1.
9374 - Upgrade bind9 to 1:9.10.3.dfsg.P4-12.3+deb9u2.
9375 - Upgrate evince to 3.22.1-3+deb9u1.
9376 - Upgrade imagemagick 8:6.9.7.4+dfsg-11+deb9u1.
9377 - Ensure Thunderbird cleans its temporary directory. (Closes: #13340).
9379 * Minor improvements
9380 - Patch gconf to produce reproducible XML output (refs: #12738). This is
9381 the temporary solution for #12738 in Tails 3.1 which will be reverted
9382 (and fixed permanently by removing gconf) in Tails 3.2.
9383 - Apply Debian bts patch to cracklib to produce reproducible dictionnaries
9385 - Upgrade to Debian 9.1 (Closes: #13178).
9388 - Replace faulty URL in htpdate neutral pool (Closes: #13472).
9389 - Keep installing a version of Enigmail compatible with Thunderbird 45.x
9391 - Fix the time syncing and Tor notifications translations (Closes: #13437).
9394 - Upgrade the Vagrant basebox for building ISO images to Stretch
9396 - Fix on-disk build by bumping Vagrant build VM memory to 768M
9398 - Fix rescue build option by exporting TAILS_BUILD_FAILURE_RESCUE
9402 - mark gnome screenshot scenario as fragile (refs: #13458)
9403 - mark UEFI scenario as fragile (refs: #13459).
9405 -- Tails developers <tails@boum.org> Sat, 05 Aug 2017 15:25:51 +0200
9407 tails (3.0.1) unstable; urgency=medium
9410 - Upgrade tor to 0.3.0.9-1~d90.stretch+1 (Closes: #13253).
9411 - Upgrade Linux to 4.9.30-2+deb9u2.
9412 - Upgrade libc to 2.24-11+deb9u1.
9413 - Upgrade libexpat1 to 2.2.0-2+deb9u1.
9414 - Upgrade libgcrypt20 to 1.7.6-2+deb9u1.
9415 - Upgrade libgnutls30 to 3.5.8-5+deb9u1.
9416 - Enable Debian security APT sources (Closes: #12309).
9418 * Minor improvements
9419 - Use a higher resolution image in Tails persistence setup
9423 - Forcibly set $SSH_AUTH_SOCK before starting GNOME
9424 Shell. Apparently, due to a race condition, GNOME keyring
9425 sometimes fails to tell the session manager about the correct
9426 SSH_AUTH_SOCK, and thus GNOME Terminal hasn't this variable set
9427 and any ssh process started in there won't use the (perfectly
9428 working) SSH agent (Closes: #12481).
9429 - Fix issue that made Tails Installer rejects working USB drives,
9430 pretending they're not "removable" (Closes: #12696).
9431 - Make behavior of the power button and lid close actions in the Greeter
9432 consistent with the regular GNOME session (Closes: #13000).
9435 - Track the latest debian-security archive for the corresponding
9436 APT sources, and not for the unrelated jessie-updates (Closes:
9438 - Print APT sources used in the build VM, to help debugging issues
9441 -- Tails developers <tails@boum.org> Tue, 04 Jul 2017 15:59:18 +0200
9443 tails (3.0) unstable; urgency=medium
9446 - Upgrade Tor Browser to 7.0.1 (Closes: #12635, #12657).
9447 - Upgrade to a new snapshot of the Debian and Torproject
9448 APT repositories: respectively 2017060904 and 2017060903
9451 * Minor improvements
9452 - Tor Browser: enable Electrolysis (e10s), i.e. render content in a separate
9453 child process, which will allow to improve performance and security
9454 further along the road. This required us to drop our branding add-on
9455 and re-implement its functionality in our Tor Browser wrapper
9457 - Clean obsolete cached packages when using the Additional Software Packages
9458 feature (Closes: #12400).
9459 - Improve KeePassX database migration handling (Closes: #12375).
9460 - Upgrade OnionShare to 0.9.2, from Debian sid as it has been removed
9461 from Stretch (Closes: #12610).
9462 - Upgrade Tor to 0.3.0.8 (Closes: #12656).
9463 - Drop obsolete bilibop patch, that was applied in 0.5.2.1.
9464 - Include disk space usage information in the WhisperBack bug reports.
9465 - Reorder technical details in WhisperBack bug reports in way that makes
9466 more sense when reading them.
9467 - Convert lc.py to Python 3.
9468 - Simplify some Python code thanks to subprocess.check_ouput.
9469 - Set the initial keyboard focus on the "Start Tails" button
9470 in Tails Greeter (Closes: #12509).
9471 - Convert Tails Greeter's Debian packaging to current best practices.
9474 - Fix persistent Thunderbird configuration migration when there is
9475 a mimeTypes.rdf, that doesn't contain any associations to "icedove"
9476 or "/usr/bin/iceweasel" (Closes: #12580).
9477 - Fix persistent browser bookmarks, by generating them from an sqlite dump
9479 - Use the "intel" X.Org driver for Intel Atom/Celeron/Pentium Processor
9480 x5-E8000/J3xxx/N3xxx Integrated Graphics Controller.
9481 - `exec' from our Thunderbird wrapper so it doesn't remain running.
9482 - Tails Installer: don't allow installing on non-removable drives
9484 - Fetch the torbrowser-launcher sources from Debian sid:
9485 it's been removed from Debian testing.
9486 Refresh torbrowser-AppArmor-profile.patch accordingly.
9487 - Unsafe Browser: remove the search bar, that's currently buggy
9488 and its presence only encourages unsupported usage (Closes: #12573).
9489 - Unsafe Browser: disable searching in the address bar. It can result
9490 in leaking hostnames and credentials to the default search
9491 engine operator (Closes: #12540).
9492 - Make our omni.ja modifications reproducible (Closes: #12620).
9493 - Generate the fontconfig cache in a reproducible manner (Closes: #12567).
9494 - Don't include torrents/rss.html in the ISO. It's not generated
9495 in a deterministic manner and is worthless in the ISO (Closes: #12619).
9496 - Improve the language → default keyboard layout mapping
9497 in Tails Greeter (Closes: #12547).
9498 - Don't close Tails Greeter's main window when Alt-F4 is pressed
9502 - Run emergency_shutdown.feature after usb_*.feature, to reduce disk
9503 space requirements (Closes: #12565).
9504 - Deal with server messages in Pidgin.
9505 - Improve Pidgin connectivity check robustness.
9506 - Flag the Synaptic test as fragile (i.e. #12586).
9507 - Optimization: only test once that Tails, booted on DVD, eventually
9508 shuts down after wiping memory.
9509 - Move tests about the shutdown applet to a dedicated feature,
9510 as they have nothing to do with Tails' "emergency" shutdown feature.
9511 - Adapt the network connectivity check to Stretch, and improve it to check
9512 both link and IP connectivity (Closes: #12602).
9513 - Apply a fix from upstream Git to mutter, to fix some of its interactions
9514 with dogtail (Closes: #11718).
9515 - Mark "Scenario: Watching a WebM video" as fragile (i.e. #10442).
9518 - Set create_box -e, to make the vagrant box generation a bit more robust.
9520 - Install kernel from backports and Tails build deps before performing
9521 APT upgrade, to avoid useless bandwidth usage (Closes: #12529).
9522 - Update submodules after merging the base branch (Closes: #12556).
9523 - Rakefile: fix date comparison in basebox:clean_old (Closes: #12575).
9524 - Rakefile: have basebox:clean_old delete baseboxes more than 4 months old
9526 - Also check for fuzzy patches' .orig files at the end of our build hooks,
9527 so we detect any fuzzy patches applied by hooks (Closes: #12617).
9528 - Remove .orig files for patches we allow to be fuzzy.
9529 - Don't pre-build the wiki when mergebasebranch is enabled.
9530 When pre-building the wiki, we modify the PO files which results in a
9531 conflict from the base branch merge in case it modifies the same
9532 files, which breaks the build (Closes: #12611).
9533 - Rakefile: add a task that removes all tails-builder-* libvirt volumes
9536 -- Tails developers <tails@boum.org> Sat, 10 Jun 2017 14:39:10 +0000
9538 tails (3.0~rc1) unstable; urgency=medium
9541 - Install Thunderbird 1:45.8.0-3+tails2 and handle the Icedove → Thunderbird
9542 migration, including wrt. persistent data (Closes: #11712, #12242).
9543 This package also has the patch from
9544 https://bugzilla.mozilla.org/show_bug.cgi?id=1281959 applied,
9545 to ease future integration of the Thunderbird AppArmor profile.
9546 Also, drop the Claws → Icedove migration path.
9547 - Upgrade to a new snapshot of the Debian and Torproject
9548 APT repositories: 2017051803 (Closes: #12554).
9549 - Upgrade Linux packages to the Debian kernel 4.9.0-3, based on
9550 mainline Linux 4.9.25.
9551 - Replace the kexec-based memory erasure feature with the Linux kernel's
9552 memory poisoning (Closes: #12354, #12428). The kexec-based implementation
9553 was not reliable enough and provided a poor UX. Instead, we now return
9554 to the initramfs on shutdown and unmount all filesystems there, so their
9555 content and corresponding caches are erased.
9556 - Upgrade Tor Browser to 7.0a4 based on Firefox 52.1.1esr (Closes:
9558 * Unfortunately e10s (multi-process Firefox) is disabled (#12569).
9559 * Unfortunately persistent bookmarks created for the first time
9560 in Tails 3.0~rc1 is broken (#12568).
9561 * Adds exceptions for the extensions Tails installs on top of
9562 the vanilla Tor Browser (Closes: #11419).
9563 - Upgrade tor to 0.3.0.7-1 (Closes: #12485) and log both to the
9564 usual file and the journal (Closes: #12412).
9565 - Merge the code that makes Tails almost build reproducibly (Refs:
9566 #5630); we still have issues with the fontconfig cache (Refs:
9569 * Minor improvements
9570 - Add a HACKING document for new code contributors (Closes:
9572 - Rename tor-controlport-filter to onion-grater (Closes: #12394)
9573 and import patches killing the delta against Whonix version
9575 - Improve onion-grater; thanks to Joy SN <joysn1980@yahoo.com>
9576 for the original patches (Closes: #12173):
9577 · add --listen-interface
9578 · make stdout/stderr unbuffered to ensure Python exceptions are logged
9579 · use yaml.safe_load()
9580 - Improve KeePassX database migration handling (refs: #12375).
9581 - Electrum: set coin selection strategy to 'Privacy' (Closes: #12177).
9582 - Allow Onion Circuits to access /proc/pid/status.
9583 - Make gdm-shell-tails.desktop more similar to the one shipped
9584 in gnome-shell 3.22.3-3 (refs: #12364).
9585 - Greeter: have the help window point to updated documentation,
9586 use WebKit2 instead of the deprecated WebKit, and hide the sidebar
9588 - Use exec to start KeePassX, i.e. avoid leaving the wrapper running.
9591 - Install xserver-xorg-legacy, to fix support for various graphics
9592 adapters that still don't work with rootless X.Org (Closes: #12542).
9593 - Use the "intel" X.Org driver for Intel Q35 and Intel Atom
9594 D4xx/D5xx/N4xx/N5xx graphics controllers (refs: #12219).
9595 - Give UEFI bootloaders upper-case filenames (Closes: #12511).
9596 Some UEFI firmware, such as the one in the ThinkPad X220, only recognize
9597 them if they have an upper-case name.
9598 - KeePassX: enable "Automatically save after each change" again,
9599 like we did in Tails 2.x (fixes a regression introduced
9601 - Install packages needed by the "Test speakers" functionality
9603 - Fix automatic upgrades when one is already applied (Closed:
9605 - When generating the network device blacklist, also blacklist
9606 network drivers from the staging directory (Closes: #12362).
9607 - htpdate pool: replace www.sarava.org with leap.se. The former
9608 has been down for a while and it's not clear when it's going to
9609 be stable again. The latter should be reliable.
9612 - Check that dirmngr used the configured keyserver (Closes: #12371).
9613 - Sanity check that Chutney starts all nodes in the network.
9614 - Disable the Sandbox option for all nodes, until Tor#21943
9615 is fixed (Closes: #12512).
9616 - Wait for the desktop icons to be displayed in the "Tails desktop is ready"
9617 step. Let's not try interacting with the desktop earlier.
9618 - Add tests for memory erasure on "normal" shutdown (refs: #12428).
9619 - Add tests for memory erasure on "emergency" shutdown, and run some
9620 with network enabled (refs: #12354).
9621 - Have eject_cdrom run eject(1) like it used to do in the past.
9622 Otherwise the machine is immediately halted and we cannot test
9623 whether memory has been erased.
9624 - Pass mount_USB_drive structured data instead of free-form text.
9625 - Test that MAC spoofing and "Disable network" works for
9626 hotplugged networking devices (Refs: #12362).
9629 - Generate the Vagrant base box locally as part of the build process,
9630 instead of downloading it: one less binary blob as input in the build
9631 process (refs: #12409).
9632 - Use Vagrant for builds on Jenkins too (Closes: #11972).
9633 - Tell build script to be more verbose.
9634 - Respect the 'ARTIFACTS' environment variable if set.
9635 - Add a second disk to handle the apt-cacher-ng cache, and store
9636 the corresponding logs in there (Closes: #11979).
9637 - Use APT snapshots in Vagrant build VMs, create/use a basebox that matches
9638 the branch/tag/commit being tested, and provision a new VM for each build
9639 (Closes: #11980, #11981).
9640 - Ship all build dependencies in the Vagrant basebox, to save some
9641 time when building ISOs.
9642 - Make basebox generation compatible with both GnuPG 1.x and 2.x.
9643 - Set LC_ALL=C, mostly to suppress some warnings.
9644 - Support forcing VM cleanup before/after build.
9645 - Add tasks for cleaning up old or all base boxes (refs: #12409).
9646 - Add build option useful for debugging build failures.
9647 - Remove obsolete build options.
9648 - Make auto/scripts/utils.sh more reusable, use it in Rakefile,
9649 auto/build and setup-tails-builder.
9650 - Add an option controlling whether to merge the base branch.
9651 - Add "rake test" target and import logics from puppet-tails'
9652 wrap_test_suite script.
9653 - Build Tails as a release simply when HEAD is tagged, i.e. we do not
9654 require building from a detached head any more.
9655 - Sanity check compression choice when building a release.
9656 - Use the host's resolv.conf when building the Vagrant base box.
9657 Since systemd-networkd is used to manage resolv.conf inside the base box,
9658 and it hasn't been initialized yet (we are not booting it, just chrooting
9659 into it) DNS is broken otherwise.
9660 - Release process: "release" a new base box when freezing.
9661 - Chown/scp artifacts with a single command to limit overhead and warnings
9662 noise caused by repeated SSH calls.
9663 - Add a build options to use a custom CPU model, and custom
9664 machine type, for reproducibility testing (refs: #12345).
9665 - Add support for installing Tor Browser nightly builds.
9667 -- Tails developers <tails@boum.org> Sat, 20 May 2017 16:48:45 +0200
9669 tails (3.0~beta4) unstable; urgency=medium
9672 - All changes brought by Tails 2.12.
9673 - Upgrade to a new snapshot of the Debian and Torproject
9674 APT repositories (2017041704).
9676 * Security improvements
9677 - Enable the buddy page allocator free poisoning (Closes: #12089).
9678 - Enable slub/slab allocator free poisoning (Closes: #12090).
9679 - Create IUKs (automatic upgrades) in a reproducible manner
9682 * Minor improvements
9683 - Firewall: forbid the _apt user to talk to DNS ports. APT works very well
9684 without DNS access since we only have Onion APT sources, so let's silence
9686 - Replace Pidgin's "systray" icon with the guifications plugin
9687 (Closes: #11741). We're trying to remove as much as we can from
9688 the set of icons managed by TopIcons extension flavours, in the hope
9689 it's enough to cancel the problems we've seen with them (#10576, #11737).
9690 - Disable apt-daily.timer, that can only cause problems in our context
9692 - Do not let pppd-dns manage /etc/resolv.conf (Closes: #12401).
9693 - Ensure rootless X.Org can access /dev/fb0 when started by GDM.
9694 - Include the amdgpu module in the initramfs (refs: #12218).
9695 - Tails Greeter: don't mention 'firewall' anymore (#12382).
9696 - Tails Greeter: avoid the popover menu for Formats being cut,
9697 in most cases (Closes: #12249).
9698 - Tails Greeter: disable the screensaver (Closes: #12370).
9699 - Tails Greeter: fix behavior when pressing Enter in the language selection
9700 menu (Closes: #12359).
9703 - Install speech-dispatcher-espeak-ng to fix the Orca screen reader
9705 - Install xserver-xorg-video-intel and use it on a few graphics adapters
9706 that are not supported correctly by the modesetting driver (refs: #12219).
9707 More PCI IDs will be added as new affected hardware is reported.
9710 - Run on a Q35 2.8 machine (Closes: #11605).
9711 - Deprecate xtightvncviewer in favor of tigervnc-viewer.
9712 - Test the Unsafe Browser in 3 random supported languages, not all.
9713 This should be enough to identify most future regressions in this area,
9714 and will be much faster than testing them all.
9715 - Pidgin tests: switch to an image that doesn't depend on the
9716 topic of tails@conference.riseup.net.
9717 - Fix a problematic use of try_for.
9718 - Fix VM.select_virtual_desktop() and VM.do_focus().
9719 - Random Gherkin improvements.
9720 - Fix a focus issue for GNOME Terminal vs. Tails Installer.
9721 - Adjust to kernel memory poisoning being enabled, which breaks the way
9722 we used to test memory erasure (refs: #12354):
9723 · Drop "no memory erasure" and "memory erasure" tests, that can't work
9725 · Test erasure of memory freed by a killed userspace process.
9726 · Test that memory poisoning applies to unmounted tmpfs.
9727 · Test that memory poisoning applies to read and write cache
9728 for unmounted vfat and LUKS-encrypted ext4.
9729 · Run erase_memory a bit later, it requires less disk space nowadays.
9731 -- Tails developers <tails@boum.org> Tue, 18 Apr 2017 13:01:25 +0000
9733 tails (2.12) unstable; urgency=medium
9736 - Completely remove I2P. :( We have decided to remove I2P (see
9737 #11276) due to our failure of finding someone interested in
9738 maintaining it in Tails (Closes: #12263).
9739 - Upgrade the Linux kernel to 4.9.13-1~bpo8+1 (Closes: #12122).
9742 - Upgrade Tor Browser to 6.5.2 based on Firefox 45.9. (Closes:
9744 - Mount a dedicated filesystem on /var/tmp, to mitigate the
9745 hardlinks permissions open by the user-tmp abstraction. See
9746 https://labs.riseup.net/code/issues/9949#note-23 for details
9748 - Protect against CVE-2017-2636 by disabling the n-hdlc kernel
9749 module (Closes: #12315).
9750 - Ensure /etc/resolv.conf is owned by root:root in the SquashFS.
9751 lb_chroot_resolv will "cp -a" it from the source tree, so it
9752 inherits its ownership from the whoever cloned the Git
9753 repository. This has two problems. First, this results in unsafe
9754 permissions on this file (e.g. a Vagrant build results in the
9755 'amnesia' user having write access to it).
9756 - Upgrade libjasper1 to 1.900.1-debian1-2.4+deb8u3
9757 - Upgrade gstreamer and its plugins to 1.4.4-2+deb8u1.
9758 - Upgrade eject to 2.1.5+deb1+cvs20081104-13.1+deb8u1.
9759 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u8.
9760 - Upgrade pidgin to 2.11.0-0+deb8u2.
9761 - Upgrade samba to 2:4.2.14+dfsg-0+deb8u5.
9764 * Minor improvements
9765 - Don't add the live user to the "audio" group. This should not be
9766 needed on a modern Linux desktop system anymore (Closes:
9768 - Install virtualbox-* 5.1.14-dfsg-3~bpo8+1 from our custom APT
9769 repository (Closes: #12307).
9770 - Install virtualbox-guest-* from sid. The version currently in
9771 jessie-backports is not compatible with Linux 4.9, and there's
9772 basically no chance that it gets updated (the maintainer asked
9773 for them to be *removed* from jessie-backports) (Closes:
9775 - Pull ttdnsd from our custom APT repository. It's gone from the
9776 TorProject one. We removed ttdnsd on feature/stretch already, so
9777 we'll need to pull it from our custom APT repository only for
9779 - Clean up libdvd-pkg build files, again. This cleanup operation
9780 was mistakenly removed in commit c4e8744 (Closes: #11273).
9781 - Install gnome-sound-recorder (Closes #10950). Thanks to Austin
9782 English <austinenglish@gmail.com> for the patch!
9783 - Stop restarting tor if bootstrapping stalls. It seems tor might
9784 have fixed the issues we used (see: #10238, #9516) to experience
9785 with the bootstrap process stalling and requiring a restart to
9786 kickstart it (Closes: #12411).
9787 - tor.sh: communicate via the UNIX socket instead of TCP port.
9788 This makes the library usable when run inside systemd units that
9789 have `PrivateNetwork=yes` set.
9790 - Get tor's bootstrap progress via GETINFO instead of log
9792 - Upgrade tor to 0.2.9.10-1~d80.jessie+1
9795 - mirror-pool-dispatcher: bump maximum expected mirrors.json size
9796 to 32 KiB. This fixes an error where Tails Upgrader would
9797 complain with "cannot choose a download server" (Closes:
9801 - Retry curl and APT operations up to 20 times to make the ISO
9802 build more robust wrt. unreliable Internet connectivity. Thanks
9803 to Arnaud <arnaud@preev.io> for the patch!
9804 - Install ikiwiki from jessie-backports, instead of our patched
9805 one. Our changes were merged in 3.20161219, and jessie-backports
9806 now has 3.20170111~bpo8+1 (Closes: #12051).
9807 - Fix FTBFS when installing a .deb via config/chroot_local-packages
9808 by being more flexible when matching local packages in the apt
9809 list file (Closes: #12374). Thanks to Arnaud <arnaud@preev.io>
9811 - auto/build: support Stretch's GnuPG v2 keyring filename.
9814 - Try possible fix for #11508. IPv6Packet:s' source is accessed by
9815 `.ipv6_saddr`, not `ip_saddr` (that's for IPv4Packet). So, let's
9816 just try and see which one of the two each packet has, because
9817 one of them must be there! Also, given that UDPPacket can be
9818 either IPv4 or IPv6 it seems safest to try to parse each packet
9819 as IPv6Packet first -- that way we keep looking at transport
9820 layer protocols for IPv4 only, and treat everything IPv6 as the
9821 same, which makes sense, since we should block all IPv6, so
9822 everything should be treated the same at all times.
9823 - Changes due to #12411:
9824 * Raise special exception for Tor bootstrap failures.
9825 * Remove obsolete debug logging now that we don't log anything
9826 interesting for `restart-tor` any more.
9828 -- Tails developers <tails@boum.org> Tue, 18 Apr 2017 17:41:46 +0200
9830 tails (3.0~beta3) unstable; urgency=medium
9832 * Major new features and changes
9833 - Make the "Formats" settings in Tails Greeter take effect (Closes: #12079,
9834 new feature that was broken since it was introduced in 3.0~alpha1).
9835 - Upgrade to a new snapshot of the Debian and Torproject
9836 APT repositories (2017031702).
9839 - Stop including I2P: we decided (#11276) to remove I2P, due to our failure
9840 at finding someone to maintain it in Tails (Closes: #12263).
9843 - Upgrade MAT to 0.6.1-4: fixes silent failure of the Nautilus
9844 contextual menu extension.
9845 - Ensure /etc/resolv.conf is owned by root:root in the SquashFS
9847 - Protect against CVE-2017-2636 by disabling the n-hdlc kernel module
9850 * Minor improvements
9851 - Reintroduce the X11 guest utilities for VirtualBox (regression
9852 introduced in 3.0~beta2).
9853 - Upgrade X.Org server and the modesetting driver (hopefully helps
9855 - Automate the migration from KeePassX databases generated on Tails 2.x
9856 to the format required by KeePassX 2.0.x (Closes: #10956, #12369).
9857 - Add keyboard shortcuts in Tails Greeter (Closes: #12186, #12063).
9858 - Install dbus-user-session (regression introduced in 3.0~beta2).
9859 - Manage temporary directories in a declarative way (tmpfiles.d).
9860 - Replace references to the /var/run compatibility symlink
9861 with the canonical /run.
9862 - Update our Torbirdy patchset to the latest one sent upstream.
9863 - Install mesa-utils, so that Qt 5 can detect whether software based
9864 rendering is needed.
9865 - Have Tails Greeter honor the "debug" kernel command-line option,
9866 for easier debugging (Closes: #12373).
9867 - Refactor Tails Greeter to reduce code duplication (Closes: #12247).
9870 - Fix sizing of zenity dialogs (Closes: #12313, regression introduced
9872 - Fix confusing, spurious error messages in command-line applications
9873 wrapped with torsocks:
9874 · Ship a /etc/mailname file with content "localhost".
9875 Otherwise something (Git? libc6?) tries to resolve the "amnesia" host
9876 name, which fails, and a confusing error message is displayed
9877 (Closes: #12205, regression introduced in 3.0~alpha1).
9878 · Have torsocks allow UDP connections to the loopback interface,
9879 with AllowOutboundLocalhost 2 (Closes: #11736).
9882 - Improve debugging info logging for PacketFu parsing issues,
9883 and implement a plausible fix (refs: #11508).
9884 - Try to make "double-click on desktop launcher" more reliable.
9885 - Fix selection of ISO in Tails Installer.
9886 - Re-enable the GnuPG tests that require a keyserver, pointing them
9887 to an Onion service we run on Chutney, that redirects all TCP traffic
9888 to a real, clearnet keyserver (Closes: #12211).
9889 - Implement a workaround for checking the configured keyserver in GnuPG,
9890 until a better fix is implemented (refs: #12371).
9891 - Fix the "Report an Error launcher" scenario in German.
9894 - Retry curl and APT operations up to 20 times to make the ISO build
9895 more robust wrt. unreliable Internet connectivity.
9896 Thanks to Arnaud <arnaud@preev.io> for the patch!
9897 - Install ikiwiki from jessie-backports, instead of our patched one
9899 - Clean up libdvd-pkg build files, again (Closes: #11273).
9900 - Rakefile: fix TAILS_OFFLINE_BUILD exported variable name.
9901 - Adjust apt-mirror to support branches based on feature/stretch
9902 that don't use frozen APT snapshots.
9904 -- Tails developers <tails@boum.org> Sun, 19 Mar 2017 15:10:28 +0100
9906 tails (3.0~beta2) unstable; urgency=medium
9908 * All changes brought by Tails 2.11, except:
9909 - the test suite changes, that are not all compatible with this branch;
9910 - the "Tails 3.0 will require a 64-bit processor" notification:
9911 this advance warning is not useful on a release series
9914 * Major new features and changes
9915 - Upgrade to a new snapshot of the Debian APT repositories (2017030802),
9916 and of the Torproject ones (2017030801).
9917 - Upgrade Linux to 4.9.0-2 (version 4.9.13-1).
9919 * Minor improvements
9920 - Improve GNOME Shell Window List styling. (Closes: #12233)
9923 - Make it possible to start graphical applications in the Root Terminal.
9927 - Improve robustness when dealing with notifications. (Closes: #11464)
9928 - Bump timeout when waiting for 'Tor is ready' notification.
9929 - Fix the incremental upgrade test.
9930 - Drop a few obsolete test cases, update a number of images.
9931 - Adapt firewall leak test to new DHCP source IP address.
9932 - Adjust Seahorse and Enigmail tests to the keyserver that is now used.
9934 -- Tails developers <tails@boum.org> Wed, 08 Mar 2017 16:29:44 +0000
9936 tails (2.11) unstable; urgency=medium
9939 - Upgrade Tor Browser to 6.5.1 based on Firefox 45.8. (Closes:
9941 - Fix CVE-2017-6074 (local root privilege escalation) by disabling
9942 the 'dccp' module. (Closes: #12280)
9943 - Disable kernel modules for some uncommon network protocol. These
9944 are the ones recommended by CIS. (Part of: #6457)
9945 - Disable modules we blacklist for security reasons. Blacklisted
9946 (via `blacklist MODULENAME`) modules are only blocked from being
9947 loaded during the boot process, but are still loadable with an
9948 explicit `modprobe MODULENAME`, and (worse!) via kernel module
9950 - Upgrade linux-image-4.8.0-0.bpo.2-686-unsigned to 4.8.15-2~bpo8+2.
9951 - Upgrade bind9 to 1:9.9.5.dfsg-9+deb8u10.
9952 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u7.
9953 - Upgrade libevent-2.0-5 to 2.0.21-stable-2+deb8u1.
9954 - Upgrade libgd3 to 2.1.0-5+deb8u9.
9955 - Upgrade libjasper1 to 1.900.1-debian1-2.4+deb8u2.
9956 - Upgrade liblcms2-2 to 2.6-3+deb8u1.
9957 - Upgrade libxpm4 to 1:3.5.12-0+deb8u1.
9958 - Upgrade login to 1:4.2-3+deb8u3.
9959 - Upgrade ntfs-3g to 1:2014.2.15AR.2-1+deb8u3.
9960 - Upgrade openjdk-7-jre to 7u121-2.6.8-2~deb8u1.
9961 - Upgrade openssl to 1.0.1t-1+deb8u6.
9962 - Upgrade tcpdump to 4.9.0-1~deb8u1.
9963 - Upgrade vim to 2:7.4.488-7+deb8u2.
9964 - Upgrade libreoffice to 1:4.3.3-2+deb8u6.
9966 * Minor improvements
9967 - import-translations: also import PO files for French from
9968 Transifex. The translation team for French switched to Transifex
9969 even for our custom programs:
9970 https://mailman.boum.org/pipermail/tails-l10n/2016-November/004312.html
9971 - Notify the user, if running on a 32-bit processor, that it won't
9972 be supported in Tails 3.0 anymore. (Closes: #12193)
9973 - Notify I2P users that I2P will be removed in Tails
9974 2.12. (Closes: #12271)
9977 - Disable -proposed-updates at boot time. If a Debian point
9978 release happens right after a freeze but we have decided to
9979 enable it before the freeze to get (at least most of) it, then
9980 we get in the situation where -proposed-updates is enabled in
9981 the final release, which we don't want. We only want it enabled
9982 at build time. (Closes: #12169)
9983 - Ferm: Use the variable when referring to the Live user. The
9984 firewall will fail to start during early boot otherwise since
9985 the "amnesia" user hasn't been created yet. (Closes: #12208)
9986 - Tor Browser: Don't show offline warning when opening local
9987 documentation. (Closes: #12269)
9988 - tails-virt-notify-user: use the tails-documentation helper to
9989 improve UX when one is not connected to Tor yet, and display
9990 localized doc when available.
9991 - Fix rare issue causing automatic upgrades to not apply properly
9992 (Closes: #8449, and hopefully #11839 as well):
9993 * Allow the tails-install-iuk user to run "/usr/bin/nocache
9995 * Install tails-iuk 2.8, which will use nocache for various file
9996 operations, and sync writes to the installation medium.
9997 - Install Linux 4.8.15 to prevent GNOME from freezing with Intel
9998 GM965/GL960 Integrated Graphics. (Closes: #12217, but fixes tons
9999 of other small bugs)
10002 - Add 'offline' option, making it possible to build Tails offline
10003 (if all needed resources are present in your cache). (Closes:
10007 - Encapsulate exec_helper's class to not "pollute" the global
10008 namespace with all our helpers. This is an example of how we can
10009 work towards #9030.
10010 - Extend remote shell with *safe* file operations. Now we can
10011 read/write/append *any* characters without worrying that it will
10012 do crazy things by being passed through the shell, as was the
10013 case before. This commit also:
10014 * adds some better reporting of errors happening on the server
10015 side by communicating back the exception thrown.
10016 * removes the `user` parameter from the VM.file_* methods. They
10017 were not used, any way, and simply do not feel like they
10018 fit. I think the only reason we had it initially was because
10019 it was implemented via the command interface, where a user
10020 concept makes a lot of sense.
10021 - debug_log() Dogtail script content on failure.
10022 - Add a very precise timestamp to each debug_log().
10023 - Make robust_notification_wait() ensure the applet is closed. In
10024 robust_notification_wait() when we close the notification
10025 applet, other windows may change position, creating a racy
10026 situation for any immediately following action aimed at one such
10027 window. (Closes: #10381)
10028 - Fix I2P's Pidgin test. The initial conversation (that determines
10029 the title of the conversation window) is now made by a different
10030 IRC service than before.
10031 - Use lossless compression for the VNC viewer with --view.
10032 Otherwise the VNC viewer is not a good place to extract test
10033 suite images from, at least with xtigervncviewer.
10034 - Add optional pause() notification feature to the test suite. It
10035 will run a user-configurable arbitrary shell command when
10036 pause() is called, e.g. on failure when --interactive-debugging
10037 is used. This is pretty useful when multitasking with long test
10038 suite runs, so you immediately are notified when a test fails
10039 (or when you reached a temporary pause() breakpoint). (Closes:
10041 - Add the possibility to run Python code in a persistent session
10042 in the remote shell and use this for Dogtail to significantly
10043 improve its performance by saving state and reusing it between
10044 commands. This changes the semantics of the creation of Dogtail
10045 objects. Previously they just created the code that then would
10046 be run once an actionable method was called (.wait, .click etc),
10047 but now it works like in Python, that Dogtail will try to find
10048 the graphical element upon object creation. (Closes: #12059)
10049 - Test that we don't ship any -proposed-updates APT sources.
10051 - Make force_new_tor_circuit() respect NEWNYM rate limiting.
10052 - Add retry magic for lost click when opening Tails' documentation
10053 from the desktop launcher. (Closes: #12131)
10055 -- Tails developers <tails@boum.org> Mon, 06 Mar 2017 17:14:52 +0100
10057 tails (3.0~beta1) experimental; urgency=medium
10059 * All changes brought by Tails 2.7.1, 2.9.1 and 2.10.
10061 * Major new features and changes
10062 - Redesigned Tails Greeter.
10063 - Upgrade to a new snapshot (2017013002) of the Debian and Torproject
10065 - Upgrade Linux to 4.9.0-1.
10068 - Reject packets sent on the LAN to the NetBIOS name service
10070 - Seahorse: use the Tor OnionBalance hidden service pool,
10071 which provides transport encryption and authentication of the keyserver.
10073 * Minor improvements
10074 - Include adwaita-qt* and enable it by default, so that Qt applications
10075 integrate nicely into a GNOME environment (Closes: #11790).
10076 - Add support for the TREZOR hardware wallet in Electrum (Closes: #10964).
10077 - AppArmor: allow all programs to read /etc/tor/torsocks.conf via
10078 abstractions/base, to ease maintenance.
10079 - Don't (try to) bind the Power button to the shutdown action
10081 - Enable natural scrolling (Closes: #11969).
10082 - Update uBlock Origin patterns + settings file.
10083 - live-persist: remove Squeeze → Wheezy migration code.
10084 - Update pre-existing persistent GnuPG configuration on login
10086 - Upgrader: use the alpha channel when the next version will be an
10087 alpha, beta, or RC. This will allow users of 3.0~betaN to upgrade to
10088 the next beta or RC, without having to type any command-line
10092 - Fix "upgrade from ISO" when run from a 32-bit system,
10093 such as Tails 2.x (Closes: #11873).
10094 - Fix ability to read videos over HTTPS with Totem (Closes: #11963).
10095 - Re-introduce default directories in $HOME, which fixes
10096 Spice file transfers (Closes: #11968).
10097 - Re-enable tap-to-click (Closes: #11993).
10098 - Lower systemd's DefaultTimeoutStopSec, to get rid of a long delay
10099 before memory wiping starts. This also prevents shutdown from ever
10100 being blocked by any buggy service that takes a while to stop
10102 - Drop Jessie APT sources.
10103 - Re-add VirtualBox DKMS modules.
10104 - Fix GnuPG communication with keyservers, by using the Tor OnionBalance
10105 hidden service pool (Closes: #12202).
10106 - Fix Enigmail communication with keyservers, by teaching Torbirdy
10107 not to break it (Closes: #11948):
10108 · Patch Torbirdy to allow not breaking keyserver communication when
10109 using GnuPG v2.1+, and to use a better default keyserver.
10110 · Torbirdy: enable the new behaviour made possible by the aforementioned
10111 patch (extensions.enigmail.already_torified).
10112 · Torbirdy: drop our custom keyserver configuration, since the
10113 aforementioned patch makes it the default.
10116 - Don't install gnome-system-log anymore (Closes: #12133).
10117 It's deprecated in GNOME, and mostly useless anyway as it's not
10118 Journal-aware. It's replacement (gnome-logs) is not usable
10119 enough in the context of Tails, and most users who can read logs
10120 should manage to do it with journalctl, so don't install it either.
10121 - Drop multiarch handling: Tails 3.0 will be amd64-only (Closes: #11961).
10124 - Disable eatmydata usage and caching: in current Stretch, debootstrap fails
10125 if we use eatmydata + the operation mode picked by live-build when caching
10126 is enabled (Closes: #12052).
10127 - Bump disk space (and memory for in-RAM builds) requirements.
10128 - Follow replacement of python-reportbug with python3-reportbug.
10129 - Don't try to deinstall packages that are unknown on Stretch.
10130 - Move AppArmor aliases to a dedicated file, and include it.
10131 This will avoid maintaining these settings as a patch.
10132 - Don't attempt to remove the usr.bin.chromium-browser AppArmor profile:
10133 it's not shipped in Debian anymore.
10136 - Add optional pause() notification (Closes: #12175).
10137 - Make the remote shell's file operations robust (Closes: #11887).
10138 - Update a number of test cases for Stretch, sometimes by converting
10140 - Drop usage and tests of read-only persistence.
10141 We won't have this option anymore, and it's not even sure we'll
10142 reintroduce it (Refs: #12093, Closes: #12055).
10143 - Adjust CONFIGURED_KEYSERVER_HOSTNAME to match current settings.
10144 - Test suite: clean up disks between features.
10146 * Adjustments for Debian 9 (Stretch) with no or very little user-visible impact
10147 - Adjust dpkg-divert path: it has moved.
10148 - Replace xfonts-wqy with fonts-wqy-microhei + fonts-wqy-zenhei.
10149 The former was removed from Debian testing, and the latter are recommended
10150 by task-chinese-s-desktop and task-chinese-t-desktop.
10151 - Install virtualbox* from sid.
10152 It was removed from testing due to https://bugs.debian.org/794466.
10153 - Drop deprecated settings from org/gnome/settings-daemon/plugins/power.
10154 - Update settings name in org/gnome/desktop/peripherals/touchpad, and drop
10156 - Adjust to changed Liferea's .desktop filename.
10157 - Also torify Liferea when started via its (new) D-Bus service.
10158 - Install hunspell-pt-br instead of hunspell-pt-pt.
10159 Tor Browser 6.5 moved from pt-PT to pt-BR, which is fine vs
10160 spellcheckers in Jessie since its hunspell-pt provides both -pt and
10161 -br, but in Stretch they are separate packages.
10162 - AppArmor: adjust usr.sbin.cupsd profile so it loads successfully
10164 - Migrate from netstat to ss.
10165 - Update extensions.enigmail.configuredVersion.
10166 - Remove the jessie-proposed-updates APT sources.
10168 -- Tails developers <tails@boum.org> Wed, 01 Feb 2017 19:23:03 +0000
10170 tails (2.10) unstable; urgency=medium
10172 * Major new features and changes
10173 - Upgrade the Linux kernel to 4.8.0-0.bpo.2 (Closes: #11886).
10174 - Install OnionShare from jessie-backports. Also install
10175 python3-stem from jessie-backports to allow the use of ephemeral
10176 onion services (Closes: #7870).
10177 - Completely rewrite tor-controlport-filter. Now we can safely
10178 support OnionShare, Tor Browser's per-tab circuit view and
10181 * Handle multiple sessions simultaneously.
10182 * Separate data (filters) from code.
10183 * Use python3-stem to allow our filter to be a lot more
10184 oblivious of the control language (Closes: #6788).
10185 * Allow restricting STREAM events to only those generated by the
10186 subscribed client application.
10187 * Allow rewriting commands and responses arbitrarily.
10188 * Make tor-controlport-filter reusable for others by e.g. making
10189 it possible to pass the listen port, and Tor control
10190 cookie/socket paths as arguments (Closes: #6742). We hear
10191 Whonix plan to use it! :)
10192 - Upgrade Tor to 0.2.9.9-1~d80.jessie+1, the new stable series
10196 - Upgrade Tor Browser to 6.5 based on Firefox 45.7 (Closes: #12159)
10197 - Upgrade Icedove to 1:45.6.0-1~deb8u1+tail1s.
10198 - Upgrade bind9-packages to 1:9.9.5.dfsg-9+deb8u9.
10199 - Upgrade pcscd to 1.8.13-1+deb8u1.
10200 - Upgrade libgd3 to 2.1.0-5+deb8u8.
10201 - Upgrade libxml2 to 2.9.1+dfsg1-5+deb8u4.
10202 - Upgrade tor to 0.2.9.9-1~d80.jessie+1.
10203 - Upgrade samba-libs to 2:4.2.14+dfsg-0+deb8u2.
10205 * Minor improvements
10206 - Enable and use the Debian Jessie proposed-updates APT
10207 repository, anticipating on the Jessie 8.7 point-release
10209 - Enable the per-tab circuit view in Tor Browser (Closes: #9365).
10210 - Change syslinux menu entries from "Live" to "Tails" (Closes:
10211 #11975). Also replace the confusing "failsafe" wording with
10212 "Troubleshooting Mode" (Closes: #11365).
10213 - Make OnionCircuits use the filtered control port (Closes:
10215 - Make tor-launcher use the filtered control port.
10216 - Run OnionCircuits directly as the Live user, instead of a
10217 separate user. This will make it compatible with the Orca screen
10218 reader (Closes: #11197).
10219 - Run tor-controlport-filter on port 9051, and the unfiltered one
10220 on 9052. This simplifies client configurations and assumptions
10221 made in many applications that use Tor's ControlPort. It's the
10222 exception that we connect to the unfiltered version, so this
10223 seems like the more sane approach.
10224 - Remove tor-arm (Nyx) (Closes: #9811).
10225 - Remove AddTrust_External_Root.pem from our website CA bundle. We
10226 now only use Let's Encrypt (Closes: #11811).
10227 - Configure APT to use Debian's Onion services instead of the
10228 clearnet ones (Closes: #11556).
10229 - Replaced AdBlock Plus with uBlock Origin (Closes: #9833). This
10230 incidentally also makes our filter lists lighter by
10231 de-duplicating common patterns among the EasyList filters
10232 (Closes: #6908). Thanks to spriver for this first major code
10234 - Install OpenPGP Applet 1.0 (and libgtk3-simplelist-perl) from
10235 Jessie backports (Closes: #11899).
10236 - Add support for exFAT (Closes: #9659).
10237 - Disable unprivileged BPF. Since upgrading to kernel 4.6,
10238 unprivileged users can use the bpf() syscall, which is a
10239 security concern, even with JIT disabled. So we disable that.
10240 This feature wasn't available before Linux 4.6, so disabling it
10241 should not cause any regressions (Closes: #11827).
10242 - Add and enable AppArmor profiles for OnionCircuits and OnoinShare.
10243 - Raise the maximum number of loop devices to 32 (Closes: #12065).
10244 - Drop kernel.dmesg_restrict customization: it's enabled by
10245 default since 4.8.4-1~exp1 (Closes: #11886).
10246 - Upgrade Electrum to 2.7.9-1.
10247 - Make the Electrum proxy configuration apply after upgrading to
10248 2.7.9-1. These changes incidentally makes Electrum behave nicer:
10249 users will now not be presented the network configuration part
10250 of the setup wizard -- a server will be picked randomly, and
10251 Electrum will auto-connect. The automated test suite is adjusted
10252 accordingly (Closes: #12140).
10253 - Remove unused Browser profile seed file localstore.rdf which was
10254 made obsolete in Firefox 34.
10255 - Tor Browser: switch from pt-PT to pt-BR langpack. The upstream
10256 Tor Browser did this in version 6.5 (Refs: #12159).
10260 * use gdm-password instead of gdm-autologin, to fix switching to
10261 the VT where the desktop session lives on Stretch (Closes:
10263 * Fix more options scrolledwindow size in Stretch (Closes:
10265 - Tails Installer: remove unused code warning about missing
10266 extlinux in Tails Installer (Closes: #11196).
10267 - Update APT pinning to cover all binary packages built from
10268 src:mesa so we ensure installing mesa from jessie-backports
10270 - Install xserver-xorg-video-amdgpu. This should help supporting
10271 newer AMD graphics adapters. (Closes #11850)
10272 - Fix firewall startup during early boot, by referring to the
10273 "amnesia" user via its UID (Closes: #7018).
10274 - Include all amd64-microcodes.
10275 - refresh-translations: ignore
10276 config/chroot_local-includes/usr/share/doc/tails/website/.
10277 Otherwise, if the website has been built already, PO tools
10278 complain that there are files with translatable strings in
10279 there, which are not listed in POTFILES.in.
10280 - Make uBlock Origin's button appear on first run. Otherwise it
10281 will only appear on browser runs after the first one. This bug
10282 also affected Adblock Plus (Closes: #12145).
10285 - Be more careful when unmounting the tmpfs used as workspace
10286 during builds, fixing an issue that made Jenkins' ISO builders
10287 prone to failures (Closes: #12009).
10288 - Upgrade the Vagrant basebox to 20170105. The only big change is
10289 that we now install the backported kernel in the builder VM, to
10290 make building possible on Debian Sid (Closes: #12081).
10291 - Ensure the VirtualBox guest DKMS modules are built for the
10292 kernel we want them for. In some situations, depending on the
10293 version of the running kernel, the modules would not be built
10294 for the 686 kernel, which is the one that needs the VirtualBox
10295 guest modules. This commit ensures the VirtualBox guest modules
10296 are built and installed regardless of the how the build
10297 environment looks like (Closes: #12139).
10300 - Replace the filesystem shares support with a helper for easily
10301 sharing files from the host to the guest using virtual disks
10303 - Do not test sending email when testing POP3. We cannot clean
10304 that email up (easily) since when we use POP3 deletions won't
10305 affect the remote inbox, only our local one, resulting in the
10306 quota being reached eventually (Closes: #12006).
10307 - Have APT tests configure APT to use non-onion sources. Our test
10308 suite uses Chutney to create a virtual, private Tor network, and
10309 thus doesn't support connections to Onion services running in
10310 the real Tor network (Refs: #11556).
10311 - Allow connections to Tor's control port during stream isolation
10312 tests, but only for those applications where we expect that.
10313 - Fix Electrum tests after upgrading to 2.7.9-1.
10314 - Make encryption.feature pass for Tails 2.10~rc1.
10315 - Adapt tests after the Donation campaign was disabled (Refs:
10317 - Fix 'The "Tails documentation" link on the Desktop works'
10318 scenario. The TailsOfflineDocHomepage.png image doesn't match
10319 what we see any more (I have no clue why), so let's use Dogtail
10320 and solve this once and for all, hopefully.
10321 - Work around Tails freezing during memory wiping. These
10322 workarounds should be reverted once #11786 is fixed
10323 properly. (Refs: #10776, #11786)
10324 - Support both xtigervncviewer and xtightvncviewer for --view.
10325 xtightvncviewer is a transitional package in Sid, which depends
10326 on tigervnc-viewer (which ships xtigervncviewer), so by keeping
10327 the dep and supporting both binaries, --view will work on both
10328 Sid and Jessie (Closes: #12129).
10329 - Test suite: bump image after upgrading to Tor Browser 6.5 (Refs:
10331 - Add debugging info for when PacketFu misbehaves, and be more
10332 careful when to save pcap artifacts (Refs: #11508).
10334 -- Tails developers <tails@boum.org> Mon, 23 Jan 2017 11:38:37 +0100
10336 tails (2.9.1) unstable; urgency=medium
10339 - Upgrade Tor Browser to 6.0.8 based on Firefox 45.6. If you pay
10340 close attention you'll see that we import -build1 but there was
10341 a -build2. The only change is Tor Button 1.9.5.13 which makes
10342 some changes to the donation campaign banner in `about:tor`,
10343 which we safely can skip. (Closes: #12028)
10344 - Upgrade Icedove to 45.5.1-1~deb8u1+tails1. (Closes: #12029)
10345 - Upgrade APT-related packages to 1.0.9.8.4.
10347 * Minor improvements
10348 - Switch to DuckDuckGo as the default search engine in the tor
10349 Browser. This is what Tor Browser has, and Disconnect.me (the
10350 previous default) has been re-directing to DDG for some time,
10351 which has been confusing users. In addition, we localize the DDG
10352 user interface for the locales with availablelangpacks. (Closes:
10354 - Improve the display name for the Wikipedia search plugin.
10355 - Enable contrib and non-free for our own APT repos.
10356 - Upgrade Tor to 0.2.8.10. (Closes: #12015)
10357 - Upgrade obfs4proxy to 0.0.7-1~tpo1.
10360 - AppArmor Totem profile: add permissions needed to avoid warning
10361 on startup. (Closes: #11984)
10362 - Upgrade the VirtualBox Guest additions and modules to version
10363 5.1.8. This should prevent Xorg from crashing unless the video
10364 memory for the VMs are significantly bumped. (Closes: #11965)
10365 Users will still have to enable I/O APIC due to a bug in Linux.
10366 - Drop unwanted search plugins from the Tor Browser langpacks.
10367 Otherwise they are only removed from English locales. Note that
10368 the langpacks contain copies of the English plugins, not
10369 localized versions, so we actually lose nothing.
10372 - Add support for SikuliX, which recently hit Debian Unstable,
10373 while still supporting Sikuli for Jessie users. (Closes: #11991)
10374 - Fix some instances where we were trying to use the mouse outside
10375 of the Sikuli screen.
10376 - Use "TorBirdy" instead of "amnesia branding" as the "anchor"
10377 addon. I.e. the addon that we use to find the other ones. The
10378 "amnesia branding" addon has been removed, so we must use
10379 something else. (Fixup: #11906)
10380 - Dogtailify "the support documentation page opens in Tor Browser"
10381 step. We previously relied on Sikuli, and the image was made
10382 outdated thanks to our donation campaign. No more! (Closes:
10384 - Resolve dl.amnesia.boum.org instead of picking a static address.
10385 Just hours after updating the dustri.org IP address, its web
10386 server went down => test suite failures. Let's make this test as
10387 robust as actually downloading the Tails ISO image -- if that
10388 fails, we probably have more serious problems on our hands than
10389 a failing test suite. (Closes: #11960)
10390 - Switch MAT scenario from testing PDFs to PNGs. Also add
10391 anti-test and test using using a tool *different* from MAT, the
10392 tool being tested here. (Closes: #11901)
10394 -- Tails Developers <tails@boum.org> Wed, 14 Dec 2016 13:19:16 +0100
10396 tails (2.7.1) unstable; urgency=medium
10399 - Upgrade Tor Browser to 6.0.7 (build3) based on Firefox 45.5.1.
10400 - Upgrade gstreamer0.10-based packages to 0.10.31-3+nmu4+deb8u2.
10401 - Upgrade imagemagick-based packages to 8:6.8.9.9-5+deb8u6.
10402 - Upgrade libicu52 to 52.1-8+deb8u4.
10403 - Upgrade vim-based packages to 2:7.4.488-7+deb8u1.
10405 * Minor improvements
10406 - Reserve 64 MiB for the kernel and 128 MiB for privileged
10407 processes before the memory is wiped. We hope that this might
10408 help (but not solve, sadly) some crashes experienced while
10412 - Make the wiki shipped inside Tails build deterministically
10414 * Enable ikiwiki's "deterministic" option, and require it when
10416 * Use our custom backport of discount (2.2.1-1~bpo8+1~0.tails1),
10417 to fix reproducibility issues (Debian#782315). This can be
10418 dropped once our ISO builders use Stretch.
10419 * Install ikiwiki from our builder-jessie APT suite, to make the
10420 pagestats plugin output deterministic.
10421 - refresh-translations: don't update PO files unless something
10422 other than POT-Creation-Date was changed. (Closes: #11967)
10423 - Fix Vagrant's is_release? check. Per auto/build, we consider it
10424 a release when we build from detached head, and HEAD is tagged.
10425 - Enforce `cleanall` when building a release. I.e. don't allow the
10426 user supplied options to override this behaviour. This is
10427 important since Vagrant caches wiki builds, and we do not want
10428 leftovers from a previous builds ending up in a release. Also,
10429 this is required for making Tails images build reproducibly.
10430 - Make the build system's `cleanall` option really clean
10431 everything. At the moment it doesn't clean the cached wiki
10432 build (which basically was its only job).
10433 - import-package: support contrib and non-free sections.
10436 - Wait a bit between opening the shutdown applet menu, and
10437 clicking one of its widgets. (Closes: #11616).
10438 - Adapt Icedove test after removing the amnesia branding add-on.
10440 - Replace --pause-on-fail with --interactive-debugging. It does
10441 the same thing, but also offers an interactive Ruby shell, via
10442 pry, with the Cucumber world context.
10444 -- Tails developers <tails@boum.org> Wed, 30 Nov 2016 17:27:37 +0100
10446 tails (3.0~alpha1) experimental; urgency=medium
10448 * Major new features and changes
10449 - Upgrade to a snapshot of Debian 9 (Stretch) from 2016-11-15.
10450 - Switch userpace from 32-bit to 64-bit (Closes: #8183), and accordingly:
10451 · Memory erasure: drop the "one instance of sdmem per 2 GiB of RAM" tweak,
10452 that is not needed on x86-64.
10453 · Display a "sorry!" message when trying to boot on a 32-bit BIOS system
10455 - Switch GNOME Shell to its default black theme (Closes: #11789).
10457 * Minor improvements
10458 - Install the cirrus and modesetting X.Org drivers (Closes: #10962).
10459 - Install the 'amdgpu' driver for the AMD Radeon cards (refs: #11850).
10460 - Stop disabling kernel modesetting for QXL (refs: #11518).
10461 - Replace TopIcons with gnome-shell-extension-top-icons-plus.
10462 The former causes plenty of trouble and is apparently abandoned
10463 upstream. The latter is actively maintained upstream, and packaged
10464 in Debian. (refs: #10576)
10465 - Use torsocks to torify Git, and drop tsocks entirely. tsocks has been
10466 unmaintained for years in Debian, and was removed from testing
10467 for a while (Closes: #10955).
10468 - Replace Florence's "systray" icon with the Florence Indicator GNOME Shell
10469 extension (refs: #8312). And then, don't automatically start Florence:
10470 the Florence Indicator GNOME Shell extension will start it the first time
10471 one tries to display it. This should save a tiny bit of RAM.
10472 - Harden AppArmor Totem profiles.
10473 - Switch to the Debian-packaged aufs kernel module (Closes: #11829).
10474 - Configure the firewall to not allow root to connect to Tor at all,
10475 which is possible now that APT uses a dedicated user for network
10477 - Fix firewall startup during early boot, by referring to the "amnesia"
10478 user via its UID (refs: #7018).
10479 - Install hunspell dictionaries instead of myspell ones, for a few more
10480 languages: Spanish, Italian, Portuguese and Russian. Only Farsi keeps
10481 using a myspell dictionary for now.
10484 - Stop installing BookletImposer PDF imposition toolkit.
10485 It's unmaintained upstream and thus won't be part of Debian Stretch.
10486 - Stop installing ekeyd: it's unmaintained, very rarely used, poorly
10487 designed (dedicated daemon), and security sensitive (Closes: #7687).
10488 - Stop shipping ttdnsd. It was only useful for developers and power-users
10489 who can install it themselves as needed. It's been unmaintained upstream
10490 for many years. It's very buggy so we had to remove it from the DNS
10491 resolution loop years ago. It's not in Debian. And it's one of the only
10492 two bits of Tails that still relied on tsocks, that is RC-buggy,
10493 unmaintained in Debian, and not in Stretch at the moment. So it has
10494 become clear that the cost of keeping ttdnsd now outweighs the benefits
10495 it brought (refs: #10959).
10498 - Bump disk space (and memory for in-RAM builds) requirements.
10499 - Support new live-config configuration directory naming, again and again.
10500 - Use the lowest compression level for the SquashFS when compressing it
10501 with gzip. This makes our development builds faster, and the resulting
10502 ISO image only a little bit bigger (Closes: #9788).
10503 - Configure initramfs compression later, to make the build faster.
10506 - Various refactoring while we were at it.
10507 - Port tests to Dogtail: installation, upgrade, notification detection,
10508 Synaptic, Gobby, and some of Tor Browser.
10509 - Workaround GNOME Shell being buggy for Dogtail (refs: #11718).
10510 - Update a bunch of test suite images for Stretch.
10511 - Mark created disk as temporary when we don't need to keep it around.
10512 - Simplify adding NetworkManager connections, and rely more on the defaults.
10513 Not providing the complete configuration file makes us test something
10514 closer to what happens when a user adds a Wi-Fi connection themselves.
10515 - Adjust the minimum allowed memory pattern coverage before wiping.
10516 - Always sync the time from the host when restoring from a snapshot.
10517 Previously we wouldn't do it when the network was plugged but Tor wasn't
10518 running, which can cause issues if we *then* start Tor since the time
10520 - Adjust to the fact that we now support running as a 64-bit guest
10521 in VirtualBox, and simplify code since we now include a 64-bit userland.
10522 - Improve how we restart Tor/I2P after restoring from a snapshot.
10523 - Adjust PolicyKit tests for Stretch.
10524 - Work around Tails stopping on shut down due to #11730.
10525 This should be reverted once #11730 is fixed properly.
10526 - Update the screenshot scenario.
10527 - Fix pcap file saving on MAC spoofing failure (Closes: #11698).
10528 - Test that notifications are actually shown.
10529 - Drop obsolete workaround for Florence sometimes not being hidden
10530 on startup (#11398).
10531 - Avoid remote shell deadlock.
10532 - Install at-spi2-core from Debian Sid.
10533 With the current version in Stretch, at-spi-bus-launcher crashes on
10534 start, breaking parts of GNOME's accessibility, and Dogtail.
10535 For details, see https://bugs.debian.org/840618.
10536 - Check that the MAC address is spoofed for manually added persistent
10537 NetworkManager connections created on Jessie and Stretch (refs: #11931).
10538 - Use nc.traditional in tests that rely on its behaviour.
10539 - Adjust expected notification text to cope with #11941.
10541 * Adjustments for Debian 9 (Stretch) with no or very little user-visible impact
10542 - Adjust APT sources and pinning for Stretch.
10543 - Don't install gnome-media, which is not part of testing/sid anymore.
10544 We already install the only bits it was providing or depending on.
10545 - Don't install gnome-themes: it's gone in Stretch.
10546 - Stop installing GStreamer 0.10 explicitly: it won't be in Stretch,
10547 and some bits are gone already.
10548 - Refresh and unfuzzy patches for Stretch. Replace some of them with
10549 programmatic patching, as patches break the build whenever
10551 - Drop start_AppArmor_earlier.diff: on Stretch, AppArmor starts much earlier
10553 - Accept iceweasel-l10n-* that don't provide any search engine:
10554 on Stretch, at least iceweasel-l10n-ar_1%3a43.0.4-1_all.deb doesn't.
10555 - Stop deleting 75-persistent-net-generator.rules: obsolete in Stretch.
10556 It was removed in systemd (220-7).
10557 - Tell live-boot we're still using aufs: recent live-boot defaults
10558 to overlayfs, which we don't use yet.
10559 - Don't remove imagemagick in 11-localize_browser: cups-filters depends on it
10561 - Explicitly install bc: needed by our 2010-pidgin live-config hook.
10562 - Remove gcc-4.9-base and gcc-5 via a chroot hook, taking into account
10563 that GCC 5 is the default on Stretch.
10564 - Switch to openjdk-8-jre: openjdk-7-jre is not in Stretch anymore.
10565 - gcalctool was renamed to gnome-calculator.
10566 - Don't try to delete non-existing AppArmor profile for ntpd: it was moved
10567 to the ntp package in Stretch.
10568 - Build DKMS modules with GCC 5: Stretch hasn't 4.8 anymore.
10569 - Don't try to reload or disable an initscript that we don't patch,
10570 and that doesn't exist anymore.
10571 - Support the case when /usr/src/libdvd-pkg does not exist.
10572 Apparently this can happen on Stretch.
10573 - Adjust to the move of /etc/gnome/defaults.list in Stretch
10575 - Stop installing xserver-xorg-input-vmmouse. It's obsolete and conflicts
10576 with recent kernels: https://bugs.debian.org/831420
10577 - Install open-vm-tools from sid: it's been removed from testing.
10578 - Install the gobby package, instead of the (now gone) transitional
10580 - apparmor-adjust-tor-profile.diff: drop bits that are useless, and
10581 prevent Tor from starting, on Stretch.
10582 - Tor Daemon Status: declare compatibility with GNOME Shell 3.20.
10583 - Shutdown helper: declare compatibility with GNOME Shell 3.20.
10584 - Drop 43-adjust_path_to_ibus-unikey_binaries hook: it was a workaround
10585 for a bug (Debian#714932) that was fixed.
10586 - Use netcat-openbsd instead of connect-proxy for torifying SSH.
10587 connect-proxy seems barely maintained in Debian and was removed from
10588 testing due to https://bugs.debian.org/830423.
10589 - Don't disable gdomap service: we don't include it anymore.
10590 unar in Jessie depended on gnustep-base-runtime (that ships gdomap),
10591 but this is not the case in Stretch anymore.
10592 - Install system-config-printer-common instead of system-config-printer,
10593 and drop customization that were needed only for the latter:
10594 system-config-printer (1.5.7-2) extracts into a new -common package
10595 the bits needed by gnome-control-center (Closes: #11505).
10596 - Adjust haveged AppArmor profile to work with Linux 4.x on Stretch.
10597 - cupsd AppArmor profile: update list of backends, and add aufs-specific
10598 tweak that Stretch needs (refs: #11699).
10599 - Revert to GNOME's default font antialiasing/hinting.
10600 We fixed on rgba/slight when converting some manual fontconfig stuff
10601 to GNOME's layer on top of it, but at least from a fresh Stretch
10602 install (2016-08-24) we got grayscale/slight. It could be that some
10603 auto-detection is involved, so the values would be different depending
10604 on the actual hardware. Any way, let's try to decrease our delta here.
10605 - Adjust haveged arguments customization for Stretch (Closes: 11522).
10606 - Display the date in the desktop top bar, as we did in Jessie and older.
10608 - Drop patch to keep haveged, saned, spice-vdagent and laptop-mode running
10609 on shutdown. These patches are no-ops on Stretch, where these services
10610 have native systemd unit files. It's not worth porting these patches:
10611 saned is socket-activated so in most cases it does not have to be shut
10612 down, and we expect that the other ones can be stopped pretty quickly.
10613 Let's bring back this kind of optimization if, and only if, we identify
10614 an actual problem to fix in this area :)
10615 - Don't delete downloaded debs after install: apt(8) >= 1.2~exp1 deletes
10616 them by default, which is not nice for users who use it to preseed
10617 their persistent APT cache. (Closes: #10958)
10618 - Hide "OpenJDK Java 8 Policy Tool" from the Applications menu.
10619 - Don't ship GCC 6: we don't ship compilers in Tails usually.
10620 - Don't ship gcc-5-base: on Stretch we ship gcc-6-base instead.
10621 - Don't start shipping libdvdcss2-dbgsym nor paxctld.
10622 - Adjust default web browser customization: GNOME in Debian now defaults
10623 to Firefox ESR (refs: #11440).
10624 - Install libreoffice-gtk3: on Stretch this is needed to have Gtk+ 3 widgets
10625 and a Gtk/GNOMEish print dialog.
10626 - Explicitly install gtk2-engines-pixbuf, as it's not pulled automatically
10627 on Stretch, and it's needed to theme GTK+ 2 applications in a nice way
10629 - AppArmor gnome abstraction: allow reading /etc/xdg/*-mimeapps.list
10631 - Drop obsolete disabling of GNOME Keyring's GnuPG agent feature.
10632 That feature was removed upstream.
10633 - Explicitly select pinentry-gtk2 as our preferred pinentry program.
10634 On Stretch, gnome-keyring depends on pinentry-gnome3, and then that one
10635 is selected by default. It does not feel worth it to introduce a hackish
10636 solution such as a fake pinentry-gnome3 package, so let's ignore it and
10637 just make sure we are using the pinentry program we prefer
10639 - Drop keep_memlockd_on_shutdown.diff: it's been a no-op since Tails 2.0
10641 - Drop custom NetworkManager plugin configuration: these tweaks are not
10642 needed on Stretch anymore.
10643 - Disable new style network interface naming scheme.
10644 It has little value for a live system, so let's stick to what we are
10645 used to, and avoid having to adjust code/config/test suite
10647 - Drop obsolete NM configuration wrt. sending hostname in DHCP requests
10649 - Update APT pinning to cover all binary packages built from src:mesa
10651 - Don't try to install gnupg-curl: it doesn't exist anymore in Stretch.
10652 - Install seahorse-nautilus from sid. It's been removed from testing.
10653 - Drop workaround for Debian bug #645466, that was fixed in 2014
10655 - Allow the "_apt" user to use Tor: in Stretch, APT network operations
10656 are performed with the "_apt" user and not root.
10657 - Make sure that 'localhost' points to the IPv4 loopback address.
10658 - Make desktop launchers executable (Closes: #11927).
10659 - Disable Wayland usage in GDM (Closes: #11923).
10660 - Fix AppArmor profile for gst-plugin-scanner (Closes: #11928).
10661 - Change Nautilus' default zoom level to 'small' (Closes: #11716).
10662 The icons in GNOME Files and on the desktop are too huge otherwise. With
10663 this new setting, they are similar in size to what we had in Jessie.
10664 - Fix broken symlink preventing Enigmail from being enabled.
10665 - Configure NetworkManager to not touch MAC addresses (refs: #11931).
10666 Its default behaviour on Debian Stretch is to reset the MAC address to the
10667 permanent one, and we did not make up our mind yet wrt. replacing
10668 our custom MAC spoofing system with NM's own one (refs: #11293).
10669 - Patch NetworkManager so that it does not leak the hostname in DHCP
10670 requests (Closes: #11720).
10671 - Deal with the fact that the NetworkManager dispatcher scripts are now
10672 sometimes called with an empty first argument (Closes: #11938).
10673 - Upgrade to GnuPG 2.1.15-9, and accordingly:
10674 · Remove the CA certificate for sks-keyservers.net, that we installed
10675 in the system-wide CAs directory: it is now included in the dirmngr
10676 package. Stop trusting it for non-GnuPG operations.
10677 · Make dirmngr use the sks-keyservers.net CA certificate from Debian.
10678 · Move keyserver proxy configuration to dirmngr.conf, and drop the
10679 keyserver-options that are obsolete or now the default.
10681 -- intrigeri <intrigeri@boum.org> Thu, 17 Nov 2016 16:19:21 +0000
10683 tails (2.7) unstable; urgency=medium
10686 - Upgrade to Linux 4.7. (Closes: #11885, #11818)
10687 - Upgrade to Tor 0.2.8.9. (Closes: #11832, #11891)
10688 - Upgrade Tor Browser to 6.0.6 based on Firefox 45.5. (Closes: #11910)
10689 - Upgrade Icedove to 1:45.4.0-1~deb8u1+tails1. (Closes: #11854,
10691 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u5.
10692 - Upgrade openssl to 1.0.1t-1+deb8u5.
10693 - Upgrade libarchive to 3.1.2-11+deb8u3.
10694 - Upgrade bind9 to 1:9.9.5.dfsg-9+deb8u8.
10695 - Upgrade libav to 6:11.8-1~deb8u1.
10696 - Upgrade ghostscript to 9.06~dfsg-2+deb8u3.
10697 - Upgrade c-ares to 1.10.0-2+deb8u1.
10698 - Upgrade nspr to 2:4.12-1+debu8u1.
10699 - Upgrade nss to 2:3.26-1+debu8u1.
10700 - Upgrade tar to 1.27.1-2+deb8u1.
10701 - Upgrade curl to 7.38.0-4+deb8u5.
10702 - Upgrade libgd3 to 2.1.0-5+deb8u7.
10703 - Upgrade opendjk-7 to 7u111-2.6.7-2~deb8u1.
10704 - Upgrade mat to 0.5.2-3+deb8u1.
10705 - Upgrade libxslt to 1.1.28-2+deb8u2.
10706 - Upgrade pillow to 2.6.1-2+deb8u3.
10708 * Minor improvements
10709 - Ship Let's encrypt intermediate certificate to prepare the
10710 the next certificate renewal of our website. Also unify the
10711 way our upgrades and security checkers verify this SSL
10712 certificate using our dedicated perl lib code. (Closes: #11810)
10715 - Fix multiarch support in Synaptic. (Closes: #11820)
10716 - Set default spelling language to en_US in Icedove. (Closes: #11037)
10719 - Disable debootstrap merged-usr option. (Closes: #11903)
10722 - Add test for incremental upgrades. (Closes: #6309)
10723 - Add tests for Icedove. (Closes: #6304)
10724 - Decrease timeout to Tails Greeter to speed up testing of branches
10725 where it is broken. (Closes: #11449)
10726 - Add a ID field to the remote shell responses to filter out
10727 unrelated ones. (Closes: #11846)
10728 - Reliabily wait for the Greeter PostLogin script. (Closes: #5666)
10729 - Reliabily type the kernel command line in the prompt at the boot
10730 menu to ensure the remote shell is started. (Closes: #10777)
10731 - Remove DVDROM device when not used, to workaround QEMU/Libvirt
10732 compatibility issue. (Closes: #11874)
10734 -- Tails developers <tails@boum.org> Sun, 13 Nov 2016 14:46:04 +0100
10736 tails (2.6) unstable; urgency=medium
10738 * Major new features and changes
10739 - Install Tor 0.2.8.7. (Closes: #11351)
10740 - Enable kASLR in the Linux kernel. (Closes: #11281)
10741 - Upgrade Icedove to 1:45.2.0-1~deb8u1+tails1: (Closes: #11714)
10742 · Drop auto-fetched configurations using Oauth2. They do not
10743 work together with Torbirdy since it disables needed
10744 functionality (like JavaScript and cookies) in the embedded
10745 browser. This should make auto-configuration work for GMail
10746 again, for instance. (Closes: ##11536)
10747 · Pin Icedove to be installed from our APT repo. Debian's
10748 Icedove packages still do not have our secure Icedove
10749 autoconfig wizard patches applied, so installing them would be
10750 a serious security regression. (Closes: #11613)
10751 · Add missing icedove-l10n-* packages to our custom APT
10752 repository (Closes: #11550)
10753 - Upgrade to Linux 4.6: (Closes: #10298)
10754 · Install the 686 kernel flavour instead of the obsolete 586
10756 · APT, dpkg: add amd64 architecture. The amd64 kernel flavour is
10757 not built anymore for the i386 architecture, so we need to use
10759 · Build and install the out-of-tree aufs4 module. (Closes: #10298)
10760 · Disable kernel modesetting for QXL: it's not compatible with
10761 Jessie's QXL X.Org driver.
10764 - Hopefully fixed an issue which would sometimes make the Greeter
10765 ignore the "disable networking" or "bridge mode"
10766 options. (Closes: #11593)
10768 * Minor improvements
10769 - Install firmware-intel-sound and firmware-ti-connectivity. This
10770 adds support for some sound cards and Wi-Fi adapters. (Closes:
10772 - Install OpenPGP Applet from Debian. (Closes: #10190)
10773 - Port the "About Tails" dialog to python3.
10774 - Run our initramfs memory erasure hook earlier (Closes:
10775 #10733). The goal here is to:
10776 · save a few seconds on shutdown (it might matter especially for
10777 the emergency one);
10778 · work in a less heavily multitasking / event-driven
10779 environment, for more robust operation.
10780 - Install rngd, and make rng-tools initscript return success when
10781 it can't find any hardware RNG device. Most Tails systems around
10782 probably have no such device, and we don't want systemd to
10783 believe they failed to boot properly. (Closes: #5650)
10784 - Don't force using the vboxvideo X.Org driver. According to our
10785 tests, this forced setting is:
10786 · harmful: it breaks X startup when the vboxvideo *kernel*
10788 · useless: X.Org now autodetects the vboxvideo X.Org driver and
10789 uses it when running in VirtualBox and the vboxvideo kernel
10791 - Port boot-profile to python3 (Closes: #10083). Thanks to
10792 heartsucker <heartsucker@autistici.org> for the patch!
10793 - Include /proc/cmdline and the content of persistent APT sources
10794 in WhisperBack bug reports. (Closes: #11675, #11635)
10795 - Disable non-free APT sources at boot time. (Closes: #10130)
10796 - Have a dedicated page for the homepage of Tor Browser in
10797 Tails. (Closes: # 11725)
10798 - Only build the VirtualBox kernel modules for the 32-bit kernel.
10799 It's both hard and useless to build it for 64-bit in the current
10800 state of things, as long as we're shipping a 32-bit userspace.
10801 Also, install virtualbox-* from jessie-backports, since the
10802 version in Jessie is not compatible with Linux 4.x.
10805 - Don't install+remove dpatch during the build. It's not been
10806 needed in this hook for ages.
10807 - Bump BUILD_SPACE_REQUIREMENT: at least one of us needed that to
10808 build feature/10298-linux-4.x-aufs with the gzipcomp option.
10811 - Send Tails Installer's debug log to the Cucumber debug log on
10812 failure. This is meant to debug #10720 since I can't
10813 reproduce it locally.
10814 - Give the system under testing 2 vCPUs. (Closes: #6729)
10815 - Split scenarios from checks.feature. (Closes: #5707)
10816 - Add retry-logic to the Synaptic tests. (Closes: #10412, #10441,
10818 - Run usb_upgrade.feature earlier, when there is enough free disk
10819 space left. (Closes: #11582)
10820 - Use more recent virtual hardware in the system under test,
10821 i.e. USB 3.0 (nec-xhci) on a pc-i440fx-2.5 machine. Switching
10822 USB controllers has helped with problems we see on Jenkins when
10823 booting from USB (#11588). Also, there are chances that more
10824 recent virtual hardware sees more testing these days, so it
10825 sounds potentially useful to "upgrade".
10826 - Add support for Cucumber 2.4. (Closes: #11690)
10827 - Always write {pretty,debug} logs and JSON output to the artifact
10829 - Disable info level logging on Chutney nodes to save disk
10830 space. For our network all these add up to > 1 GiB and we didn't
10831 take this into account when budgeting RAM to the isotesters on
10834 -- Tails developers <tails@boum.org> Tue, 20 Sep 2016 04:16:33 +0200
10836 tails (2.5) unstable; urgency=medium
10838 * Major new features and changes
10839 - Upgrade Icedove to 1:45.1.0-1~deb8u1+tails2. (Closes: #11530)
10840 · Fix long delay causing bad UX in the autoconfig wizard,
10841 when it does not manage to guess proper settings on some domains.
10843 · Better support sending email through some ISPs, such as Riseup.
10845 · Fix spurious error message when creating an account and providing
10846 its password. (Closes: #11550)
10849 - Upgrade Tor Browser to 6.0.3 based on Firefox 45.3. (Closes: #11611)
10850 - Upgrade GIMP to 2.8.14-1+deb8u1.
10851 - Upgrade libav to 6:11.7-1~deb8u1.
10852 - Upgrade expat to 2.1.0-6+deb8u3.
10853 - Upgrade libgd3 to 2.1.0-5+deb8u6.
10854 - Upgrade libmodule-build-perl to 0.421000-2+deb8u1.
10855 - Upgrade perl to 5.20.2-3+deb8u6.
10856 - Upgrade Pidgin to 2.11.0-0+deb8u1.
10857 - Upgrade LibreOffice to 1:4.3.3-2+deb8u5.
10858 - Upgrade libxslt1.1 to 1.1.28-2+deb8u1.
10859 - Upgrade Linux to 3.16.7-ckt25-2+deb8u3.
10860 - Upgrade OpenSSH to 1:6.7p1-5+deb8u3.
10861 - Upgrade p7zip to 9.20.1~dfsg.1-4.1+deb8u2.
10863 * Minor improvements
10864 - htpdate: replace obsolete and unreliable URIs in HTP pools, and decrease
10865 timeout for HTTP operations for more robust time synchronization.
10867 - Hide settings panel for the Online Accounts component of GNOME,
10868 that we don't support. (Closes: #11545)
10869 - Vastly improve graphics performance in KVM guest with QXL driver.
10871 - Fix graphics artifacts in Tor Browser in KVM guest with QXL driver.
10875 - Wrap Pidgin in a more maintainable way. (Closes: #11567)
10878 - Add a test scenario for the persistence "dotfiles" feature.
10880 - Improve robustness of most APT, Git, SFTP and SSH scenarios,
10881 enough to enable them on Jenkins. (Closes: #10444, #10496, #10498)
10882 - Improve robustness of checking for persistence partition. (Closes: #11558)
10883 - Treat Tails booting from /dev/sda as OK, to support all cases
10884 including a weird one caused by hybrid ISO images. (Closes: #10504)
10885 - Bump a bunch of timeouts to cope with the occasional slowness on Jenkins.
10886 - Only query A records when exercising DNS lookups, to improve robustness.
10888 -- Tails developers <tails@boum.org> Sun, 31 Jul 2016 16:50:35 +0000
10890 tails (2.4) unstable; urgency=medium
10892 * Major new features and changes
10893 - Upgrade Tor Browser to 6.0.1 based on Firefox 45.2. (Closes:
10895 - Enable Icedove's automatic configuration wizard. We patch the
10896 wizard to only use secure protocols when probing, and only
10897 accept secure protocols, while keeping the improvements done by
10898 TorBirdy in its own non-automatic configuration wizard. (Closes:
10902 - Upgrade bsdtar and libarchive13 to 3.1.2-11+deb8u1.
10903 - Upgrade icedove to 38.8.0-1~deb8u1+tails3.
10904 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u3.
10905 - Upgrade libexpat1 to 2.1.0-6+deb8u2.
10906 - Upgrade libgd3 to 2.1.0-5+deb8u3.
10907 - Upgrade gdk-pixbuf-based packages to 2.31.1-2+deb8u5.
10908 - Upgrade libidn11 to 1.29-1+deb8u1.
10909 - Upgrade libndp0 to 1.4-2+deb8u1.
10910 - Upgrade poppler-based packages to 0.26.5-2+deb8u1.
10911 - Upgrade librsvg2-2 to 2.40.5-1+deb8u2.
10912 - Upgrade libsmbclient to 2:4.2.10+dfsg-0+deb8u3.
10913 - Upgrade OpenSSL to 1.0.1k-3+deb8u5.
10914 - Upgrade libtasn1-6 to 4.2-3+deb8u2.
10915 - Upgrade libxml2 to 2.9.1+dfsg1-5+deb8u2.
10916 - Upgrade openjdk-7-jre to 7u101-2.6.6-1~deb8u1.
10919 - Enable Packetization Layer Path MTU Discovery for IPv4. If any
10920 system on the path to the remote host has a MTU smaller than the
10921 standard Ethernet one, then Tails will receive an ICMP packet
10922 asking it to send smaller packets. Our firewall will drop such
10923 ICMP packets to the floor, and then the TCP connection won't
10924 work properly. This can happen to any TCP connection, but so far
10925 it's been reported as breaking obfs4 for actual users. Thanks to
10926 Yawning for the help! (Closes: #9268)
10927 - Make Tails Upgrader ship other locales than English. (Closes:
10929 - Make it possible to add local USB printers again. Bugfix on
10930 Tails 2.0. (Closes #10965).
10932 * Minor improvements
10933 - Remove custom SSH ciphers and MACs settings. (Closes: #7315)
10934 - Bring back "minimize" and "maximize" buttons in titlebars by
10935 default. (Closes: #11270)
10936 - Icedove improvements:
10937 * Stop patching in our default into Torbirdy. We've upstreamed
10938 some parts, and the rest we set with pref branch overrides in
10939 /etc/xul-ext/torbirdy.js. (Closes: #10905)
10940 * Use hkps keyserver in Enigmail. (Closes: #10906)
10941 * Default to POP if persistence is enabled, IMAP is
10942 not. (Closes: #10574)
10943 * Disable remote email account creation in Icedove. (Closes:
10945 - Firewall hardening (Closes: #11391):
10946 * Don't accept RELATED packets. This enables quite a lot of code
10947 in the kernel that we don't need. Let's reduce the attack
10949 * Restrict debian-tor user to NEW TCP syn packets. It doesn't
10950 need to do more, so let's do a little bit of security in
10952 * Disable netfilter's nf_conntrack_helper.
10953 * Fix disabling of automatic conntrack helper assignment.
10954 - Kernel hardening:
10955 * Set various kernel boot options: slab_nomerge slub_debug=FZ
10956 mce=0 vsyscall=none. (Closes: #11143)
10957 * Remove the kernel .map files. These are only useful for kernel
10958 debugging and slightly make things easier for malware, perhaps
10959 and otherwise just occupy disk space. Also stop exposing
10960 kernel memory addresses through /proc etc. (Closes: #10951)
10961 - Drop zenity hacks to "focus" the negative answer. Jessie's
10962 zenity introduced the --default-cancel option, finally!
10964 - Drop useless APT pinning for Linux.
10965 - Remove gnome-tweak-tool. (Closes: #11237)
10966 - Install python-dogtail, to enable accessibility technologies in
10967 our automated test suite (see below). (Part of: #10721)
10968 - Install libdrm and mesa from jessie-backports. (Closes: #11303)
10969 - Remove hledger. (Closes: #11346)
10970 - Don't pre-configure the #tails chan on the default OFTC account.
10972 - Install onioncircuits from jessie-backports. (Closes: #11443)
10973 - Remove nmh. (Closes: #10477)
10974 - Drop Debian experimental APT source: we don't use it.
10975 - Use APT codenames (e.g. "stretch") instead of suites, to be
10976 compatible with our tagged APT snapshots.
10977 - Drop module-assistant hook and its cleanup. We've not been using
10979 - Remove 'Reboot' and 'Power Off' entries from Applications →
10980 System Tools. (Closes: #11075)
10981 - Pin our custom APT repo to the same level as Debian ones, and
10982 explicitly pin higher the packages we want to pull from our custom
10983 APT repo, when needed.
10984 - config/chroot_local-hooks/59-libdvd-pkg: verify libdvdcss
10985 package installation. (Closes: #11420)
10986 - Make Tails Upgrader use our new mirror pool design. (Closes:
10988 - Drop custom OpenSSH client ciphers and MACs settings. We did a
10989 pretty bad job at maintaining them compared to the Debian
10990 upstream. (Closes: #7315)
10991 - Install jessie-backports version of all binary packages built
10992 from src:hplip. This adds support for quite a few new
10994 - Install printer-driver-postscript-hp, which adds support for
10995 some more printers.
10998 - Use a freezable APT repo when building Tails. This is a first
10999 step towards reproducible builds, and improves our QA and
11000 development processes by making our builds more predictable. For
11001 details, see: https://tails.boum.org/contribute/APT_repository/
11002 - There has been a massive amount of improvements to the
11003 Vagrant-based build system, and now it could be considered the
11004 de-facto build system for Tails! Improvements and fixes include:
11005 * Migrate Vagrant to use libvirt/KVM instead of
11006 Virtualbox. (Closes: #6354)
11007 * Make apt-get stuff non-interactive while provisioning.
11008 Because there is no interaction, so that will results in
11010 * Bump disk space (=> RAM for RAM builds) needed to build with
11011 Vagrant. Since the Jessie migration it seems impossible to
11012 keep this low enough to fit in 8 GiB or RAM. For this reason
11013 we also drop the space optimization where we build inside a
11014 crazy aufs stack; now we just build in a tmpfs.
11015 * Clean up apt-cacher-ng cache on vm:provision to save disk
11016 space on the builder.
11017 * Add convenient Rake task for SSH:ing into the builder VM:
11019 * Add rake task for generating a new Vagrant base box.
11020 * Automatically provision the VM on build to keep things up-to-date.
11021 * Don't enable extproxy unless explicitly given as an
11022 option. Previously it would automatically be enabled when
11023 `http_proxy` is set in the environment, unlike what is
11024 documented. This will hopefully lead to fewer surprises for users
11025 who e.g. point http_proxy to a torified polipo, or similar.
11026 * Re-fetch tags when running build-tails with Vagrant. That
11027 should fix an annoyance related to #7182 that I frequently
11028 encounter: when I, as the RM, rebuild the release image the
11029 second time from the force-updated tag, the build system would
11030 not have the force-updated tag. (Closes: #7182)
11031 * Make sure we use the intended locale in the Tails builder VM.
11032 Since we communicate via SSH, and e.g. Debian forward the
11033 locale env vars by default, we have to take some steps
11034 ensuring we do not do that.
11035 - Pull monkeysphere from stretch to avoid failing to install under
11036 eatmydata. Patch submitted by Cyril Brulebois <cyril@debamax.com>.
11039 - Add wrapper around dogtail (inside Tails) for "remote" usage in
11040 the automated test suite. This provides a simple interface for
11041 generating dogtail python code, sending it to the guest, and
11042 executing it, and should allow us to write more robust tests
11043 leveraging assistive technologies. (Closes: #10721)
11044 - A few previously sikuli-based tests has been migrated to use
11045 dogtail instead, e.g. GNOME Applications menu interaction.
11046 - Add a test for re-configuring an existing persistent volume.
11047 This is a regression test for #10809. (Closes: #10834)
11048 - Use a simulated Tor network provided by Chutney in the automated
11049 test suite. The main motivation here is improved robustness --
11050 since the "Tor network" we now use will exit from the host
11051 running the automated test suite, we won't have to deal with Tor
11052 network blocking, or unreliable circuits. Performance should
11053 also be improved. (Closes: #9521)
11054 - Drop the usage of Tor Check in our tests. It doesn't make sense
11055 now when we use Chutney since that always means it will report
11056 that Tor is not being used.
11057 - Stop testing obsolete pluggable transports.
11058 - Completely rewrite the firewall leak detector to something more
11059 flexible and expressive.
11060 - Run tcpdump with --immediate-mode for the network sniffer. With
11061 this option, "packets are delivered to tcpdump as soon as they
11062 arrive, rather than being buffered for efficiency" which is
11063 required to make the sniffing work reliable the way we use it.
11064 - Remove most scenarios testing "tordate". It just isn't working
11065 well in Tails, so we shouldn't expect the tests to actually work
11066 all of the time. (Closes: #10440)
11067 - Close Pidgin before we inspect or persist its accounts.xml.
11068 I've seen a case when that file is _not_ saved (and thus, not
11069 persisted) if we shut down the system while Pidgin is still
11070 running. (Closes: #11413)
11071 - Close the GNOME Notification bar by pressing ESC, instead of
11072 opening the Applications menu. The Applications menu often
11073 covers other elements that we're looking for on the
11074 screen. (Closes #11401)
11075 - Hide Florence keyboard window when it doesn't vanish by itself
11076 (Closes: #11398) and wait a bit less for Florence to disappear
11079 -- Tails developers <tails@boum.org> Mon, 06 Jun 2016 20:10:56 +0200
11081 tails (2.3) unstable; urgency=medium
11084 - Upgrade Tor Browser to 5.5.5. (Fixes: #11362)
11085 - Upgrade icedove to 38.7.0-1~deb8u1
11086 - Upgrade git to 1:2.1.4-2.1+deb8u2
11087 - Upgrade libgd3 to 2.1.0-5+deb8u1
11088 - Upgrade pidgin-otr to 4.0.1-1+deb8u1
11089 - Upgrade srtp to 1.4.5~20130609~dfsg-1.1+deb8u1
11090 - Upgrade imagemagick to 8:6.8.9.9-5+deb8u1
11091 - Upgrade samba to 2:4.2.10+dfsg-0+deb8u2
11092 - Upgrade openssh to 1:6.7p1-5+deb8u2
11095 - Refresh Tor Browser's AppArmor profile patch against the one from
11096 torbrowser-launcher 0.2.4-1. (Fixes: #11264)
11097 - Pull monkeysphere from stretch to avoid failing to install under
11098 eatmydata. (Fixes: #11170)
11099 - Start gpg-agent with no-grab option due to issues with pinentry and
11100 GNOME's top bar. (Fixes: #11038)
11101 - Tails Installer: Update error message to match new name of 'Clone
11102 & Install'. (Fixes: #11238)
11104 * Cope with a missing geoipdb. (Fixes: #11203)
11105 * Make both panes of the window scrollable. (Fixes #11192)
11106 - WhisperBack: Workaround socks bug. When the Tor fails to connect to
11107 the host, WisperBack used to display a ValueError. This is caused by
11108 a socks bug that is solved in upstream's master but not in Tails.
11109 This commit workarounds this bug Unclear error message in WhisperBack
11110 when failing to connect to the server. (Fixes: #11136)
11112 * Minor improvements
11113 - Upgrade to Debian 8.4, a Debian point release with many minor upgrades
11114 and fixes to various packages . (Fixes: #11232)
11115 - Upgrade I2P to 0.9.25. (Fixes: #11363)
11116 - Pin pinentry-gtk2 to jessie-backports. The new version allows pasting
11117 passwords from the clipboard. (Fixes: #11239)
11118 - config/chroot_local-hooks/59-libdvd-pkg: cleanup /usr/src/libdvd-pkg.
11120 - Make the Tor Status "disconnected" icon more contrasted with the
11121 "connected" one. (Fixes: #11199)
11124 - Add UTF-8 support to OTR Bot. (Fixes: #10866)
11125 - Don't explicitly depend on openjdk-7-jre or any JRE for that
11126 matter. Sikuli will pull in a suitable one, so depending on one
11127 ourselves is only risks causing trouble. (Fixes: #11335)
11129 -- Tails developers <tails@boum.org> Mon, 25 Apr 2016 14:12:22 +0200
11131 tails (2.2.1) unstable; urgency=medium
11134 - Upgrade Tor Browser to 5.5.4. (Closes: #11254)
11135 - Upgrade bind9-related packages to 1:9.9.5.dfsg-9+deb8u6
11136 - Upgrade libotr to 4.1.0-2+deb8u1
11137 - Upgrade samba-related packages to 2:4.1.17+dfsg-2+deb8u2.
11138 - Upgrade libgraphite2 to 1.3.6-1~deb8u1.
11140 -- Tails developers <tails@boum.org> Thu, 17 Mar 2016 15:03:52 +0100
11142 tails (2.2) unstable; urgency=medium
11144 * Major new features and changes
11145 - Replace Vidalia (which has been unmaintained for years) with:
11147 * the Tor Status GNOME Shell extension, which adds a System Status
11148 icon indicating whether Tor is ready or not.
11149 * Onion Circuits, a simple Tor circuit monitoring tool.
11152 - Upgrade Tor Browser to 5.5.3 (Closes: #11189).
11153 - Upgrade Linux to 3.16.7-ckt20-1+deb8u4.
11154 - Upgrade cpio to 2.11+dfsg-4.1+deb8u1.
11155 - Upgrade glibc to 2.19-18+deb8u3.
11156 - Upgrade libav to 6:11.6-1~deb8u1.
11157 - Upgrade libgraphite2 to 1.3.5-1~deb8u1.
11158 - Upgrade libjasper1 to 1.900.1-debian1-2.4+deb8u1.
11159 - Upgrade libreoffice to 4.3.3-2+deb8u3.
11160 - Upgrade libssh2 to 1.4.3-4.1+deb8u1.
11161 - Upgrade openssl to 1.0.1k-3+deb8u4.
11162 - Upgrade perl to 5.20.2-3+deb8u4.
11163 - Upgrade python-imaging, python-pil to 2.6.1-2 2.6.1-2+deb8u2.
11166 - Hide "Laptop Mode Tools Configuration" menu entry. We don't
11167 support configuring l-m-t in Tails, and it doesn't work out of
11168 the box. (Closes: #11074)
11170 * Actually write a string when saving bug report to
11171 disk. (Closes: #11133)
11172 * Add missing argument to OpenPGP dialog so the optional OpenPGP
11173 key can be added again. (Closes: #11033)
11175 * Minor improvements
11176 - Upgrade I2P to 0.9.24-1~deb8u+1.
11177 - Add support for viewing DRM protected DVD videos using
11178 libdvdcss2. Patch series submitted by Austin English
11179 <austinenglish@gmail.com>. (Closes: #7674)
11180 - Automatically save KeePassX database after every change by default.
11182 - Implement Tor stream isolation for WhisperBack
11183 - Delete unused tor-tsocks-mua.conf previously used by Claws
11184 Mail. (Closes: #10904)
11185 - Add set -u to all gettext:ized shell scripts. In gettext-base <
11186 1.8.2, like the one we had in Wheezy, gettext.sh references the
11187 environment variable ZSH_VERSION, which we do not set. This has
11188 prevented us from doing `set -u` without various hacks. (Closes:
11190 - Also set -e in some shell scripts which lacked it for no good
11192 - Make Git verify the integrity of transferred objects. (Closes:
11194 - Remove LAlt+Shift and LShift+RShift keyboard layout toggling
11195 shortcuts. (Closes: #10913, #11042)
11198 - Reorder the execution of feature to decrease peak disk
11199 usage. (Closes: #10503)
11200 - Paste into the GTK file chooser, instead of typing. (Closes:
11202 - Pidgin: wait a bit for text to have stopped scrolling before we
11203 click on it. (Closes: #10783)
11204 - Fix step that runs commands in GNOME Terminal, that was broken
11205 on Jessie when a Terminal is running already. (Closes: #11176)
11206 - Let ruby-rjb guess JAVA_HOME instead fixing on one jvm
11207 version. (Closes: #11190)
11210 - Upgrade build system to Debian Jessie. This includes migrating to a
11211 new Vagrant basebox based on Debian Jessie.
11212 - Rakefile: print git status when there are uncommitted
11213 changes. Patch submitted by Austin English
11214 <austinenglish@gmail.com>. (Closes: #11108)
11215 - .gitignore: add .rake_tasks~. Patch submitted by Austin English
11216 <austinenglish@gmail.com>. (Closes: #11134)
11217 - config/amnesia: use --show-field over sed filtering. Patch
11218 submitted by Chris Lamb <lamby@debian.org>.
11219 - Umount and clean up leftover temporary directories from old
11220 builds. (Closes: #10772)
11222 -- Tails developers <tails@boum.org> Mon, 07 Mar 2016 18:09:50 +0100
11224 tails (2.0.1) unstable; urgency=medium
11226 * Major new features and changes
11227 - Enable the Tor Browser's font fingerprinting protection
11228 (Closes: #11000). We do it for all browsers (including
11229 the Unsafe Browser and I2P Browser mainly to avoid making our
11230 automated test suite overly complex. This implied to set an appropriate
11231 working directory when launching the Tor Browser, to accommodate for
11232 the assumptions it makes about this.
11235 - Upgrade Tor Browser to 5.5.2 (Closes: #11105).
11238 - Repair 32-bit UEFI support (Closes: #11007); bugfix on 2.0.
11239 - Add libgnome2-bin to installed packages list to provide gnome-open,
11240 which fixes URL handling at least in KeePassX, Electrum and Icedove
11241 (Closes: #11031); bugfix on 2.0. Thanks to segfault for the patch!
11243 * Minor improvements
11244 - Refactor and de-duplicate the chrooted browsers' configuration:
11245 prefs.js, userChrome.css (Closes: #9896).
11246 - Make the -profile Tor Launcher workaround simpler (Closes: #7943).
11247 - Move Torbutton environment configuration to the tor-browser script,
11248 instead of polluting the default system environment with it.
11249 - Refresh patch against the Tor Browser AppArmor profile
11251 - Propagate Tor Launcher options via the wrapper.
11252 - Move tor-launcher script to /usr/local/bin.
11253 - Move tor-launcher-standalone to /usr/local/lib.
11254 - Move Tor Launcher env configuration closer to the place where it is used,
11255 for simplicity's sake.
11258 - Mass update browser and Tor Launcher related images due to font change,
11259 caused by Tor Browser 5.5's font fingerprinting protection
11260 (Closes: #11097). And then, use separate PrintToFile.png for the browsers,
11261 and Evince, since it cannot be shared anymore.
11262 - Adjust to the refactored chrooted browsers configuration handling.
11263 - Test that Tor Launcher uses the correct Tor Browser libraries.
11264 - Allow more slack when verifying that the date that was set.
11265 - Bump a bit the timeout used when waiting for the remote shell.
11266 - Bump timeout for the process to disappear, when closing Evince.
11267 - Bump timeout when saving persistence configuration.
11268 - Bump timeout for bootstrapping I2P.
11271 - Remove no longer relevant places.sqlite cleanup procedure.
11273 -- Tails developers <tails@boum.org> Fri, 12 Feb 2016 13:00:15 +0000
11275 tails (2.0) unstable; urgency=medium
11277 * Major new features and changes
11278 - Upgrade to Debian 8 (Jessie).
11279 - Migrate to GNOME Shell in Classic mode.
11280 - Use systemd as PID 1, and convert all custom initscripts to systemd units.
11281 - Remove the Windows camouflage feature: our call for help to port
11282 it to GNOME Shell (issued in January, 2015) was unsuccessful.
11283 - Remove Claws Mail: Icedove is now the default email client
11285 - Upgrade Tor Browser to 5.5 (Closes: #10858, #10983).
11288 - Minimally sandbox many services with systemd's namespacing features.
11289 - Upgrade Linux to 3.16.7-ckt20-1+deb8u3.
11290 - Upgrade Git to 1:2.1.4-2.1+deb8u1.
11291 - Upgrade Perl to 5.20.2-3+deb8u3.
11292 - Upgrade bind9-related packages to 1:9.9.5.dfsg-9+deb8u5.
11293 - Upgrade FUSE to 2.9.3-15+deb8u2.
11294 - Upgrade isc-dhcp-client tot 4.3.1-6+deb8u2.
11295 - Upgrade libpng12-0 to 1.2.50-2+deb8u2.
11296 - Upgrade OpenSSH client to 1:6.7p1-5+deb8u1.
11299 - Restore the logo in the "About Tails" dialog.
11300 - Don't tell the user that "Tor is ready" before htpdate is done
11302 - Upgrader wrapper: make the check for free memory more accurate
11303 (Closes: #10540, #8263).
11304 - Allow the desktop user, when active, to configure printers;
11305 fixes regression introduced in Tails 1.1 (Closes: #8443).
11306 - Close Vidalia before we restart Tor. Otherwise Vidalia will be running
11307 and showing errors while we make sure that Tor bootstraps, which could
11309 - Allow Totem to read DVDs, by installing apparmor-profiles-extra
11310 from jessie-backports (Closes: #9990).
11311 - Make memory erasure on shutdown more robust (Closes: #9707, #10487):
11312 · don't forcefully overcommit memory
11313 · don't kill the allocating task
11314 · make sure the kernel doesn't starve from memory
11315 · make parallel sdmem handling faster and more robust
11316 - Don't offer the option, in Tor Browser, to open a downloaded file with
11317 an external application (Closes: #9285). Our AppArmor confinement was
11318 blocking most such actions anyway, resulting in poor UX; bugfix on 1.3.
11319 Accordingly, remove the now-obsolete exception we had in the Tor
11320 Browser AppArmor profile, that allowed executing seahorse-tool.
11321 - Fix performance issue in Tails Upgrader, that made it very slow to apply
11322 an automatic upgrade; bugfix on 1.7 (Closes: #10757).
11323 - Use our wrapper script to start Icedove from the GNOME menus.
11324 - Make it possible to localize our Icedove wrapper script.
11325 - List Icedove persistence option in the same position where Claws Mail
11326 used to be, in the persistent volume assistant (Closes: #10832).
11327 - Fix Electrum by installing the version from Debian Testing
11328 (Closes: #10754). We need version >=2.5.4-2, see #9713;
11329 bugfix on 2.0~beta1. And, explicitly install python-qt4 to enable
11330 Electrum's GUI: it's a Recommends, and we're not pulling it ourselves
11331 via other means anymore.
11332 - Restore default file associations (Closes: #10798);
11333 bugfix on 2.0~beta1.
11334 - Update 'nopersistent' boot parameter to 'nopersistence'; bugfix on 0.12
11335 (Closes: #10831). Thanks to live-media=removable, this had no security
11336 impact in practice.
11337 - Repair dotfiles persistence feature, by adding a symlink from
11338 /lib/live/mount/persistence to /live/persistence; bugfix on 2.0~beta1
11340 - Fix ability to re-configure an existing persistent volume using
11341 the GUI; bugfix on 2.0~beta1 (Closes: #10809).
11342 - Associate armored OpenPGP public keys named *.key with Seahorse,
11343 to workaround https://bugs.freedesktop.org/show_bug.cgi?id=93656;
11344 bugfix on 1.1 (Closes: #10889).
11345 - Update the list of enabled GNOME Shell extensions, which might fix
11346 the "GNOME Shell sometimes leaves Classic mode" bug seen in 2.0~beta1:
11347 · Remove obsolete "Alternative Status Menu", that is not shipped
11349 · Explicitly enable the GNOME Shell extensions that build
11351 - Make _get_tg_setting() compatible with set -u (Closes: #10785).
11352 - laptop-mode-tools: don't control autosuspend. Some USB input
11353 devices don't support autosuspend. This change might help fix
11354 #10850, but even if it doesn't, it makes sense to me that we
11355 don't let laptop-mode-tools fiddle with this on a Live system
11356 (Closes (for now): #10850).
11358 * Minor improvements
11359 - Remove obsolete code from various places.
11361 · hide all windows while logging in
11362 · resize and re-position the panel when the screen size grows
11363 · PostLogin: log into the Journal instead of a dedicated log file
11364 · use localectl to set the system locale and keyboard mapping
11365 · delete the Live user's password if no administration password is set
11367 · port to GDBus greeter interface, and adjust to other GDM
11370 · port to UDisks2, and from Qt4 to GTK3
11371 · adapt to work on other GNU/Linux operating systems than Tails
11372 · clean up enough upstream code and packaging bits to make it
11373 deserve being uploaded to Debian
11374 · rename everything from liveusb-creator to tails-installer
11375 - Port tails-perl5lib to GTK3 and UDisks2. In passing, do some minor
11376 refactoring and a GUI improvement.
11377 - Persistent Volume Assistant:
11378 · port to GTK3 and UDisks2
11379 · handle errors when deleting persistent volume (Closes: #8435)
11380 · remove obsolete workarounds
11381 - Don't install UDisks v1.
11382 - Adapt custom udev and polkit rules to UDisks v2 (Closes: #9054, #9270).
11383 - Adjust import-translations' post-import step for Tails Installer,
11384 to match how its i18n system works nowadays.
11385 - Use socket activation for CUPS, to save some boot time.
11386 - Set memlockd.service's OOMScoreAdjust to -1000.
11387 - Don't bother creating /var/lib/live in tails-detect-virtualization.
11388 If it does not exist at this point, we have bigger and more
11389 noticeable problems.
11390 - Simplify the virtualization detection & reporting system, and do it
11391 as a non-root user with systemd-detect-virt rather than virt-what.
11392 - Replace rsyslog with the systemd Journal (Closes: #8320), and adjust
11393 WhisperBack's logs handling accordingly.
11394 - Drop tails-save-im-environment.
11395 It's not been used since we stopped automatically starting the web browser.
11396 - Add a hook that aborts the build if any *.orig file is found. Such files
11397 appear mainly when a patch of ours is fuzzy. In most cases they are no big
11398 deal, but in some cases they end up being taken into account
11400 - Replace the tor+http shim with apt-transport-tor (Closes: #8198).
11401 - Install gnome-tweak-tool.
11402 - Don't bother testing if we're using dependency based boot.
11403 - Drop workaround to start spice-vdagent in GDM (Closes: #8025).
11404 This has been fixed in Jessie proper.
11405 - Don't install ipheth-utils anymore. It seems to be obsolete
11406 in current desktop environments.
11407 - Stop installing the buggy unrar-free, superseded in Jessie (Closes: #5838)
11408 - Drop all custom fontconfig configuration, and configure fonts rendering
11410 - Drop zenity patch (zenity-fix-whitespacing-box-sizes.diff),
11411 that was applied upstream.
11412 - Install libnet-dbus-perl (currently 1.1.0) from jessie-backports,
11413 it brings new features we need.
11414 - Have the security check and the upgrader wait for Tor having bootstrapped
11415 with systemd unit ordering.
11416 - Get rid of tails-security-check's wrapper.
11417 Its only purpose was to wait for Tor to have bootstrapped,
11418 which is now done via systemd.
11419 - Don't allow the amnesia and tails-upgrade-frontend users to run
11420 tor-has-bootstrapped as root with sudo. They don't need it anymore,
11421 thanks to using systemd for starting relevant units only once Tor
11423 - Install python-nautilus, that enables MAT's context menu item in Nautilus.
11425 - Configure GDM with a snippet file instead of patching its
11426 greeter.dconf-defaults.
11428 · port to Python 3 and GObject Introspection (Closes: #7755)
11429 · migrate from the gnutls module to the ssl one
11430 · use PGP/MIME for better attachments handling
11431 · migrate from the gnupginterface module to the gnupg one
11432 · natively support SOCKS ⇒ don't wrap with torsocks anymore
11434 · don't try to include the obsolete .xession-errors in bug reports
11436 - chroot-browser.sh: don't use static DISPLAY.
11437 - Simplify debugging:
11438 · don't hide the emergency shutdown's stdout
11439 · tails-unblock-network: trace commands so that they end up in the Journal
11440 - Configure the console codeset at ISO build time, instead of setting it
11441 to a constant via the Greeter's PostLogin.default.
11442 - Order the AppArmor policy compiling in a way that is less of a blocker
11444 - Include the major KMS modules in the initramfs. This helps seamless
11445 transition to X.Org when booting, and back to text mode on shutdown,
11446 can help for proper graphics hardware reinitialization post-kexec,
11447 and should improve GNOME Shell support in some virtual machines.
11448 - Always show the Universal Access menu icon in the GNOME panel.
11449 - Drop notification for not-migrated-yet persistence configuration,
11450 and persistence settings disabled due to wrong access rights.
11451 That migration happened more two years ago.
11452 - Remove the restricted network detector, that has been broken for too long;
11453 see #10560 for next steps (Closes: #8328).
11454 - Remove unsupported, never completed kiosk mode support.
11455 - clock_gettime_monotonic: use Perl's own function to get the integer part,
11456 instead of forking out to sed.
11457 - Don't (try to) disable lvm2 initscripts anymore. Both the original reason
11458 and the implementation are obsolete on Jessie.
11459 - Lower potential for confusion (#8443), by removing system-config-printer.
11460 One GUI to configure printers is enough (Closes: #8505).
11461 - Add "set -u" to tails-unblock-network.
11462 - Add a systemd target whose completion indicates that Tor has bootstrapped,
11463 and use it everywhere sensible (Closes: #9393).
11464 - Disable udev's 75-persistent-net-generator.rules, to preventing races
11465 between MAC spoofing and interface naming.
11466 - Replace patch against NetworkManager.conf with drop-in files.
11467 - Replace resolvconf with simpler NetworkManager and dhclient configuration.
11469 - Replace patching of the gdomap, i2p, hdparm, tor and ttdnsd initscripts
11470 with 'systemctl disable' (Closes: #9881).
11471 - Replace patches that wrapped apps with torsocks with dynamic patching with
11472 a hook, to ease maintenance. Also, patch D-Bus services as needed
11474 - Notify the user if running Tails inside non-free virtualization software
11475 that does not try to hide its nature (Closes: #5315).
11476 Thanks to Austin English <austinenglish@gmail.com> for the patch.
11477 - Declare htpdate.service as being needed for time-sync.target, to ensure
11478 that "services where correct time is essential should be ordered after
11480 - Convert some of the X session startup programs to `systemd --user' units.
11481 - Let the Pidgin wrapper pass through additional command-line arguments
11483 - Move out of the $PATH a bunch of programs that users should generally
11484 not run directly: connect-socks, end-profile, getTorBrowserUserAgent,
11485 generate-tor-browser-profile, kill-boot-profile, tails-spoof-mac,
11486 tails-set-wireless-devices-state, tails-configure-keyboard,
11487 do_not_ever_run_me, boot-profile, tails-unblock-network,
11488 tor-controlport-filter, tails-virt-notify-user, tails-htp-notify-user,
11489 udev-watchdog-wrapper (Closes: #10658)
11490 - Upgrade I2P to 0.9.23-2~deb8u+1.
11491 - Disable I2P's time syncing support.
11492 - Install Torbirdy from official Jessie backports, instead of from
11493 our own APT repository (Closes: #10804).
11494 - Make GNOME Disks' passphrase strength checking new feature work,
11495 by installing cracklib-runtime (Closes: #10862).
11496 - Add support for Japanese in Tor Browser.
11497 - Install xserver-xorg-video-intel from Jessie Backports (currently:
11498 2.99.917-2~bpo8+1). This adds support for recent chips such as
11499 Intel Broadwell's HD Graphics (Closes: #10841).
11500 - Improve a little bit post-Greeter network unblocking:
11501 · Sleep a bit longer between deleting the blacklist, and triggering udev;
11502 this might help cure #9012.
11503 · Increase logging, so that we get more information next time someone
11505 · Touch /etc/modprobe.d/ after deleting the blacklist; this might help,
11506 in case all this is caused by some aufs bug.
11507 - Enable and use the Debian jessie-proposed-updates APT repository,
11508 anticipating on the Jessie 8.3 point-release (Closes: #10897).
11509 - Upgrade most firmware packages to 20160110-1.
11510 - Upgrade Intel CPU microcodes to 3.20151106.1~deb8u1.
11511 - Disable IPv6 for the default wired connection, so that
11512 NetworkManager does not spam the logs with IPv6 router
11513 solicitation failure. Note that this does not fix the problem
11514 for other connections (Partially closes: #10939).
11517 - Adapt to the new desktop environment and applications' look.
11518 - Adapt new changed nmcli syntax and output.
11519 - New NetworkManager connection files must be manually loaded in Jessie.
11520 - Adapt to new pkexec behavior.
11521 - Adapt to how we now disable networking.
11522 - Use sysctl instead of echo:ing into /proc/sys.
11523 - Use oom_score_adj instead of the older oom_adj.
11524 - Adapt everything depending on logs to the use of the Journal.
11525 - Port to UDisks v2.
11526 - Check that the system partition is an EFI System Partition.
11527 - Add ldlinux.c32 to the list of bootloader files that are expected
11528 to be modified when we run syslinux (Closes: #9053).
11529 - Use apt(8) instead of apt-get(8).
11530 - Don't hide the cursor after opening the GNOME apps menu.
11531 - Convert the remote shell to into a systemd native service and a Python 3,
11532 script that uses the sd_notify facility (Closes: #9057). Also, set its
11533 OOM score adjustment value via its unit file, and not from the test suite.
11534 - Adjust to match where screenshots are saved nowadays.
11535 - Check that all system units have started (Closes: #8262)
11536 - Simplify the "too small device" test.
11537 - Spawn `poweroff' and `halt' in the background, and don't wait for them
11538 to return: anything else would be racy vs. the remote shell's stopping.
11539 - Bump video memory allocated to the system under test, to fix out of video
11541 - When configuring the CPU to lack PAE support, use a qemu32 CPU instead
11542 of a Pentium one: the latter makes GNOME Shell crash.
11543 See #8778 for details about how Mesa's CPU features detection has
11544 room for improvement.
11545 - Adjust free(1) output parsing for Jessie.
11546 - vm-execute: rename --type option to --spawn.
11547 - Add method to set the X.Org clipboard, and install its dependency
11549 - Paste URLs in one go, to work around issue with lost key presses
11550 in the browser (Closes: #10467).
11551 - Reliably wait for Synaptic's search button to fade in.
11552 - Take into account that the sticky bit is not set on block devices
11554 - Ensure that we can use a NetworkManager connection stored in persistence
11556 - Use a stricter regexp when extracting logs for dropped packets.
11557 - Clone the host CPU for the test suite guests (Closes: #8778).
11558 - Run ping as root (aufs does not support file capabilities so we don't
11559 get cap_net_raw+ep, and if built on a filesystem that does support
11560 file capabilities, then /bin/ping is not setupd root).
11561 - Escape regexp special characters when constructing the firewall log
11562 parsing regexp, and pass -P to grep, since Ruby uses PCRE.
11563 - Adjust is_persistent?() helper to findmnt changes in Jessie.
11564 - Rework in depth how we measure pattern coverage in memory, with more
11565 reliable Linux OOM and VM settings, fundamental improvements
11566 in what exactly we measure, and custom OOM adjutments for fillram
11567 processes (Closes: #9705).
11568 - Use blkid instead of parted to determine the filesystem type.
11569 - Use --kiosk mode instead of --fullscreen in virt-viewer, to remove
11570 the tiny border of the in-viewer menu.
11571 - Remove now redundant desktop screenshot directory scenario.
11572 - Adapt GNOME notification handling for Debian Jessie (Closes: #8782)
11573 - Disable screen blanking in the automated test suite, which occasionally
11574 breaks some test cases (Closes: #10403).
11575 - Move upgrade scenarios to the feature dedicated to them.
11576 - Don't make libvirt storage volumes executable.
11577 - Refactor the PAUSE_ON_FAIL functionality, so that we can use `pause()`
11578 as a breakpoint when debugging.
11579 - Drop non-essential Totem test that is mostly a duplicate, and too painful
11580 to be worth automating on Jessie.
11581 - Retry Totem HTTPS test with a new Tor circuit on failure.
11582 - Replace iptables status regexp-based parser with a new XML-based
11583 status analyzer: the previous implementation could not be adjusted
11584 to the new ip6tables' output (Closes: #9704).
11585 - Don't reboot in one instance when it is not needed.
11586 - Optimize memory erasure anti-test: block the boot to save CPU on the host.
11587 - Update I2P tests for Jessie, and generally make them more robust.
11588 - Update Electrum tests for 2.5.4-2 (Closes: #10758).
11589 - Add workaround for libvirt vs. guestfs permissions issue, to allow
11590 running the test suite on current Debian sid.
11591 - Fix buggy code, that happened to work by mistake, in the Seahorse
11592 test cases; bugfix on 1.8.
11593 - Update test suite images due to CSS change on Tails' website.
11594 - Adapt Tor Browser tests to work with the 5.5 series.
11595 - Automatically test downloading files in Tor Browser.
11596 - Remove obsolete scenario, that tested opening a downloaded file with
11597 an external application, which we do not support anymore.
11598 - Improve robustness of the "Tails OpenPGP keys" scenario (Closes: #10378).
11599 - Automatically test the "Diable all networking" feature (Closes: #10430).
11600 - Automatically test that SSH works over LAN (Closes: #9087).
11601 - Bump some statuc sleeps to fix a few race conditions (Closes: #5330).
11602 - Automatically test that an emergency shutdown triggers on boot
11603 medium removal (Closes: #5472).
11604 - Make the AppArmor checks actually detect errors (Closes: #10926).
11607 - Bump amount of disk space needed to build Tails with Vagrant.
11608 The addition of the Japanese Tor Browser tarball made us reach
11609 the limit of the previous value.
11611 * Adjustments for Debian 8 (Jessie) with no or very little user-visible impact
11612 - Free the fixed UIDs/GIDs we need before creating the corresponding users.
11613 - Replace the real gnome-backgrounds with a fake, equivs generated one
11614 (Closes: #8055). Jessie's gnome-shell depends on gnome-backgrounds,
11615 which is too fat to ship considering we're not using it.
11616 - AppArmor: adjust CUPS profile to support our Live system environment
11618 · Mangle lib/live/mount/overlay/... as usual for aufs.
11619 · Pass the the attach_disconnected flag, that's needed for compatibility
11621 - Make sure we don't ship geoclue* (Closes: #7949).
11622 - Drop deprecated GDM configuration file.
11623 - Don't add the Live user to the deprecated 'fuse' group.
11624 - Drop hidepid mount option for /proc (Closes: #8256). In its current,
11625 simplistic form it cannot be supported by systemd.
11626 - Don't manually load acpi-cpufreq at boot time. It fails to load
11627 whenever no device it supports is present, which makes the
11628 systemd-modules-load.service fail. These days, the kernel
11629 should just automatically load such modules when they are needed.
11630 - Drop sysvinit-specific (sensigs.omit.d) tweaks for memlockd.
11631 - Disable the GDM unit file's Restart=always, that breaks our "emergency
11632 shutdown on boot medium removal" feature.
11633 - Update the implementation of the memory erasure on shutdown feature:
11634 · check for rebooting state using systemctl, instead of the obsolete
11635 $RUNLEVEL (Closes: #8306)
11636 · the kexec-load initscript normally silently exits unless systemd is
11637 currently running a reboot job. This is not the case when the emergency
11638 shutdown has been triggered, so we removed this check
11639 · migrate tails-kexec to the /lib/systemd/system-shutdown/ facility
11640 · don't (try to) switch to tty1 on emergency shutdown: it apparently
11641 requires data that we haven't locked into memory, and then it blocks
11642 the whole emergency shutdown process
11643 - Display a slightly darker version of the desktop wallpaper on the screen
11644 saver, instead of the default flashy "Debian 8" branding (Closes: #9038).
11645 - Disable software autorun from external media.
11646 - Disable a few unneeded D-Bus services. Some of these services are
11647 automatically started (via D-Bus activation) when GNOME Shell tries
11648 to use them. The only "use" I've seen for them, except eating
11649 precious RAM, is to display "No appointment today" in the calendar pop-up.
11651 - Prevent NetworkManager services from starting at boot time
11652 (Closes: #8313). We start them ourselves after changing the MAC address.
11653 - Unfuzzy all patches (Closes: #8268) and drop a few obsolete ones.
11654 - Adapt IBus configuration for Jessie (Closes: #8270), i.e. merge the two
11655 places where we configure keyboard layout and input methods: both are now
11656 configured in the same place in Jessie's GNOME.
11657 - Migrate panel launchers to the favorite apps list (Closes: #7992).
11658 - Drop pre-GNOME Shell menu tweaks.
11659 - Hide "Log out" button in the GNOME Shell menu (Closes: #8364).
11660 - Add a custom shutdown-helper GNOME Shell extension (Closes: #8302, #5684
11661 and #5878) that removes the press-Alt-to-turn-shutdown-button-into-Suspend
11662 functionality from the GNOME user menu, and makes Restart and Shutdown
11663 immediate, without further user interaction. Accordingly remove our custom
11664 Shutdown Helper panel applet (#8302).
11665 - Drop GNOME Panel configuration, now deprecated.
11666 - Disable GNOME Shell's screen lock feature.
11667 We're not there yet (see #5684).
11668 - Disable GNOME Shell screen locker's user switch feature.
11669 - Explicitly install libany-moose-perl (Closes: #8051).
11670 It's needed by our OpenPGP applet. On Wheezy, this package was pulled
11671 by some other dependency. This is not the case anymore on Jessie.
11672 - Don't install notification-daemon nor gnome-mag: GNOME Shell has taken
11673 over this functionality (Closes: #7481).
11674 - Don't install ntfsprogs: superseded on Jessie.
11675 - Don't install barry-util: not part of Jessie.
11676 - Link udev-watchdog dynamically, and lock it plus its dependencies
11678 - Migrate from gdm-simple-greeter to a custom gdm-tails session
11680 - Update Plymouth installation and configuration:
11681 · install the plymouth packages via chroot_local-hooks: lb 2.x's "standard"
11682 packages list pulls console-common in, which plymouth now conflicts with
11683 · don't patch the plymouth initscript anymore, that was superseded
11684 by native systemd unit files
11685 · mask the plymouth-{halt,kexec,poweroff,reboot,shutdown} services,
11686 to prevent them from occupying the active TTY with an (empty) splash
11687 screen on shutdown/reboot, that would hide the messages we want to show
11688 to the user via tails-kexec (Closes: #9032)
11689 - Migrate GNOME keyboard layout settings from libgnomekbd to input-sources
11691 - Explicitly install syslinux-efi, that we need and is not automatically
11692 pulled by anything else anymore.
11693 - Workaround #7248 for GDM: use a solid blue background picture,
11694 instead of a solid color fill, in the Greeter session.
11695 - De-install gcc-4.8-base and gcc-4.9 at the end of the ISO build process.
11696 - Revert the "Wrap syndaemon to always use -t" Wheezy-specific workaround.
11697 - htpdate: run date(1) in a Jessie-compatible (and nicer) way.
11698 - Remove obsolete dconf screenshot settings and the corresponding test.
11699 - Drop our patched python-dbus{,-dev} package (Closes: #9177).
11700 - live-persist: stop overriding live-boot's functions, we now have
11701 a recent enough blkid.
11702 - Adjust sdmem initramfs bits for Jessie:
11703 · Directly call poweroff instead of halt -p.
11704 · Don't pass -n to poweroff and reboot, it's not supported anymore.
11705 - Wrap text in the Unsafe Browser startup warning dialog
11706 (Jessie's zenity does not wrap it itself).
11707 - Associate application/pgp-keys with Seahorse's "Import Key" application
11709 - Install topIcons GNOME Shell extension (v28), to work around the fact
11710 that a few of the applets we use hijack the notification area.
11711 - "cd /" to fix permissions issue at tails-persistence-setup startup
11713 - Install gstreamer1.0-libav, so that Totem can play H264-encoded videos.
11714 - Adjust APT sources configuration:
11715 · remove explicit jessie and jessie-updates sources:
11716 automatically added by live-build
11717 · add Debian testing
11718 · add jessie-backports
11719 - Firewall: white-list access to the accessibility daemon (Closes: #8075).
11720 - Adjust to changed desktop notification behavior and supported feature set
11722 · pass the DBUS_SESSION_BUS_ADDRESS used by the GNOME session
11724 · update waiting for a notification handler: gnome-panel and nm-applet
11725 are obsolete, GNOME Shell is now providing this facility, so instead
11726 wait for a process that starts once GNOME Shell is ready, namely
11727 ibus-daemon (Closes: #8685)
11728 · port tails-warn-about-disabled-persistence and tails-virt-notify-user
11729 to notification actions (instead of hyperlinks), and make the latter
11730 transient; to this end, add support to Desktop::Notify for "hints"
11731 and notification actions
11732 · tails-security-check: use a dialog box instead of desktop notifications
11733 · MAC spoofing failure notification: remove the link to the documentation;
11734 it was broken on Tails/Wheezy already, see #10559 for next steps
11735 - Don't explicitly install gnome-panel nor gnome-menus, so that they go away
11736 whenever the Greeter does not pull them in anymore.
11737 - Install gkbd-capplet, that provides gkbd-keyboard-display (Closes: #8363).
11738 - Install Tor 0.2.7 from deb.torproject.org: we don't need to rebuild it
11739 ourselves for seccomp support anymore.
11740 - Wrap Seahorse with torsocks when it is started as a D-Bus service too
11742 - Rename the AppArmor profile for Tor, so it applies to the system-wide
11743 Tor service we run (Closes: #10528).
11744 - Essentially revert ALSA state handling to how it was pre-Jessie, so that
11745 mixer levels are unmuted and sanitized at boot time (Closes: #7591).
11746 - Pass --yes to apt-get when installing imagemagick.
11747 - Make removable devices, that we support installing Tails to, user writable:
11748 Tails Installer requires raw block device access to such devices
11749 (Closes: #8273). Similarly, allow the amnesia user, when active, to open
11750 non-system devices for writing with udisks2. This is roughly udisks2's
11751 equivalent of having direct write access to raw block storage devices.
11752 Here too, Tails Installer uses this functionality.
11753 - Disable networkd to prevent any risk of DNS leaks it might cause; and
11754 disable timesyncd, as we have our own time synchronization mechanism.
11755 They are not enabled by default in Jessie, but may be in Stretch,
11756 so let's be explicit about it.
11757 - Mask hwclock-save.service, to avoid sync'ing the system clock
11758 to the hardware clock on shutdown (Closes: #9363).
11759 - apparmor-adjust-cupsd-profile.diff: adjust to parse fine on Jessie
11761 - Explicitly use tor@default.service when it's the one we mean.
11762 - Refactor GNOME/X env exporting to Tails' shell library, and grab
11763 more of useful bits of the desktop session environment.
11764 Then, use the result in the test suite's remote shell.
11765 - Stop tweaking /etc/modules. It's 2015, the kernel should load these things
11766 automatically (Closes: #10609).
11767 - Have systemd hardening let Tor modify its configuration (needed by Tor
11768 Launcher), and start obfs4proy (Closes: #10696, #10724).
11769 - Bump extensions.adblockplus.currentVersion and
11770 extensions.enigmail.configuredVersion to match what we currently get
11772 - I2P: switch from 'service' to 'systemctl' where possible.
11774 -- Tails developers <tails@boum.org> Mon, 25 Jan 2016 18:06:33 +0100
11776 tails (1.8.2) unstable; urgency=medium
11779 - Upgrade Tor Browser to 5.0.7.
11780 - Upgrade Linux to 3.16.7-ckt20-1+deb8u2.
11781 - Upgrade foomatic-filters to 4.0.17-1+deb7u1.
11782 - Upgrade git to 1:1.7.10.4-1+wheezy2.
11783 - Upgrade Icedove to 38.5.0-1~deb7u1.
11784 - Upgrade libxml2-related packages to 2.8.0+dfsg1-7+wheezy5.
11785 - Upgrade OpenSSL-related packages to 1.0.1e-2+deb7u19.
11786 - Upgrade libsmbclient to 2:3.6.6-6+deb7u6.
11788 -- Tails developers <tails@boum.org> Sat, 09 Jan 2016 16:27:27 +0100
11790 tails (1.8.1) unstable; urgency=medium
11793 - Upgrade Tor Browser to 5.0.6.
11794 - Upgrade Linux to 3.16.7-ckt20-1+deb8u1
11795 - Upgrade gdkpixbuf to 2.26.1-1+deb7u3
11796 - Upgrade bind9 tools to 1:9.8.4.dfsg.P1-6+nmu2+deb7u8
11799 - Fix time synchronization in bridge mode by refreshing our patch
11800 against Tor's AppArmor profile.
11802 -- Tails developers <tails@boum.org> Fri, 18 Dec 2015 19:05:18 +0000
11804 tails (1.8) unstable; urgency=medium
11807 - Upgrade Tor to 0.2.7.6-1~d70.wheezy+1+tails1.
11808 - Upgrade Tor Browser to 5.0.5. (Closes: #10751)
11809 - Upgrade LibreOffice to 1:3.5.4+dfsg2-0+deb7u5.
11810 - Upgrade krb5-based packages to 1.10.1+dfsg-5+deb7u6.
11811 - Upgrade Linux to 3.16.7-ckt11-1+deb8u6.
11812 - Upgrade wpasupplicant to 1.0-3+deb7u3.
11813 - Upgrade libpng12-0 to 1.2.49-1+deb7u1.
11814 - Upgrade openjdk-7 to 7u91-2.6.3-1~deb7u1.
11815 - Upgrade libnspr4 to 2:4.9.2-1+deb7u3
11816 - Upgrade dpkg to 1.16.17.
11817 - Upgrade gnutls26 to 2.12.20-8+deb7u4.
11818 - Upgrade Icedove to 1:38.0.1-1~deb7u1.
11819 - Upgrade OpenSSL to 1.0.1e-2+deb7u18.
11822 - Upgrade to Electrum 2.5.4-2~d70.wheezy+1+tails1. Now Electrum
11823 should work again. Note that the documentation has not been
11824 adapted to the slight changes in the Electrum account setup
11827 * Minor improvements
11828 - Upgrade I2P to 0.9.23-2~deb7u+1.
11829 - Rebase our patch against the Tor Browser AppArmor profile on top
11830 of the one shipped in torbrowser-launcher 0.2.1-2.
11831 - Warn if the claws-mail persistence is enabled and contains a
11832 Claws Mail configuration when starting icedove. (Closes: #10458)
11833 - Replace the Claws Mail GNOME launcher with Icedove. (Closes:
11835 - Remove the Claws Mail persistence feature from the Persistence
11836 Assistant. (Closes: #10742)
11839 - Simplify ISO image naming rules by using the base rule we use
11840 for Jenkins all the time, except when building from a tag
11841 (i.e. building a release). (Closes: #10349)
11844 - Lower the waiting time for USB installation in the test suite.
11845 So far we were waiting up to one hour, which is just the same as
11846 our Jenkins inactivity timeout, so in practice when Tails
11847 Installer fails and displays an error message, instead of
11848 reporting that the job failed (which is the point of the
11849 exercise) we abort the job due to this timeout which
11850 communicates less clearly that there's probably a bug. (Closes:
11852 - Remove the check for the sound icon in the systray in the
11853 Windows Camouflage tests. (Closes: #10493)
11854 - Retry running whois when "LIMIT EXCEEDED" is in its output for
11855 increased robustness. (Closes: #10523)
11856 - Make Seahorse tests more robust. (Closes: #9095, #10501)
11857 - Make the handling of Pidgin's account manager more robust.
11860 -- Tails developers <tails@boum.org> Mon, 14 Dec 2015 23:07:19 +0100
11862 tails (1.7) unstable; urgency=medium
11864 * Major new features and changes
11865 - Upgrade Tor Browser to 5.0.4. (Closes: #10456)
11866 - Add a technology preview of the Icedove Email client (a
11867 rebranded version of Mozilla Thunderbird), including OpenPGP
11868 support via the Enigmail add-on, general security and anonymity
11869 improvements via the Torbirdy add-on, and complete persistence
11870 support (which will be enabled automatically if you already have
11871 Claws Mail persistence enabled). Icedove will replace Claws Mail
11872 as the supported email client in Tails in a future
11873 release. (Closes: #6151, #9498, #10285)
11874 - Upgrade Tor to 0.2.7.4-rc-1~d70.wheezy+1+tails1. Among the many
11875 improvement of this new Tor major release, the new
11876 KeepAliveIsolateSOCKSAuth option allows us to drop the
11877 bug15482.patch patch (taken from the Tor Browse bundle) that
11878 enabled similar (but inferior) functionality for *all*
11879 SocksPort:s -- now the same circuit is only kept alive for
11880 extended periods for the SocksPort used by the Tor
11881 Browser. (Closes: #10194, #10308)
11882 - Add an option to Tails Greeter which disables networking
11883 completely. This is useful when intending to use Tails for
11884 offline work only. (Closes: #6811)
11887 - Fix CVE-2015-7665, which could lead to a network interface's IP
11888 address being exposed through wget. (Closes: #10364)
11889 - Prevent a symlink attack on ~/.xsession-errors via
11890 tails-debugging-info which could be used by the amnesia user to
11891 read the contents of any file, no matter the
11892 permissions. (Closes: #10333)
11893 - Upgrade libfreetype6 to 2.4.9-1.1+deb7u2.
11894 - Upgrade gdk-pixbuf packages to 2.26.1-1+deb7u2.
11895 - Upgrade Linux to 3.16.7-ckt11-1+deb8u5.
11896 - Upgrade openjdk-7 packages to 7u85-2.6.1-6~deb7u1.
11897 - Upgrade unzip to 6.0-8+deb7u4.
11900 - Add a temporary workaround for an issue in our code which checks
11901 whether i2p has bootstrapped, which (due to some recent change
11902 in either I2P or Java) could make it appear it had finished
11903 prematurely. (Closes: #10185)
11904 - Fix a logical bug in the persistence preset migration code while
11905 real-only persistence is enabled. (Closes: #10431)
11907 * Minor improvements
11908 - Rework the wordings of the various installation and upgrade
11909 options available in Tails installer in Wheezy. (Closes: #9672)
11910 - Restart Tor if bootstrapping stalls for too long when not using
11911 pluggable transports. (Closes: #9516)
11912 - Install firmware-amd-graphics, and firmware-misc-nonfree instead
11913 of firmware-ralink-nonfree, both from Debian Sid.
11914 - Update the Tails signing key. (Closes: #10012)
11915 - Update the Tails APT repo signing key. (Closes: #10419)
11916 - Install the nmh package. (Closes: #10457)
11917 - Explicitly run "sync" at the end of the Tails Upgrader's upgrade
11918 process, and pass the "sync" option when remounting the system
11919 partition as read-write. This might help with some issues we've
11920 seen, such as #10239, and possibly for #8449 as well.
11923 - Add initial automated tests for Icedove. (Closes: #10332)
11924 - Add automated tests of the MAC spoofing feature. (Closes: #6302)
11925 - Drop the concept of "background snapshots" and introduce a general
11926 system for generating snapshots that can be shared between
11927 features. This removes all silly hacks we previously used to
11928 "skip" steps, and greatly improves performance and reliability
11929 of the whole test suite. (Closes: #6094, #8008)
11930 - Flush to the log file in debug_log() so the debugging info can
11931 be viewed in real time when monitoring the debug log
11932 file. (Closes: #10323)
11933 - Force UTF-8 locale in automated test suite. Ruby will default to
11934 the system locale, and if it is non-UTF-8, some String-methods
11935 will fail when operating on non-ASCII strings. (Closes: #10359)
11936 - Escape regexp used to match nick in CTCP replies. Our Pidgin
11937 nick's have a 10% chance to include a ^, which will break that
11938 regexp. We need to escape all characters in the nick. (Closes:
11940 - Extract TBB languages from the Tails source code. This will
11941 ensure that valid locales are tested. As an added bonus, the
11942 code is greatly simplified. (Closes: #9897)
11943 - Automatically test that tails-debugging-info is not susceptible
11944 to the type of symlink attacks fixed by #10333.
11945 - Save all test suite artifacts in a dedicated directory with more
11946 useful infromation encoded in the path. This makes it easier to
11947 see which artifacts belongs to which failed scenario and which
11948 run. (Closes: #10151)
11949 - Log all useful information via Cucumber's formatters instead of
11950 printing to stderr, which is not included when logging to file
11951 via `--out`. (Closes: #10342)
11952 - Continue running the automated test suite's vnc server even if
11953 the client disconnects. (Closes: #10345)
11954 - Add more automatic tests for I2P. (Closes: #6406)
11955 - Bump the Tor circuit retry count to 10. (Closes: #10375)
11956 - Clean up dependencies: (Closes: #10208)
11961 -- Tails developers <tails@boum.org> Tue, 03 Nov 2015 01:09:41 +0100
11963 tails (1.6) unstable; urgency=medium
11966 - Upgrade Tor Browser to 5.0.3. (Closes: #10223)
11967 - Upgrade bind9-based packages to 1:9.8.4.dfsg.P1-6+nmu2+deb7u7.
11968 - Upgrade liblcms1 to 1.19.dfsg2-1.2+deb7u1.
11969 - Upgrade libldap-2.4-2 to 2.4.31-2+deb7u1.
11970 - Upgrade libslp1 to 1.2.1-9+deb7u1.
11971 - Upgrade ssl-cert to 1.0.32+deb7u1.
11974 - Fix a corner case for the MAC spoofing panic mode. If panic mode
11975 failed to disable the specific device that couldn't be spoofed
11976 (by unloading the module) we disable networking. Previously we
11977 only stopped NetworkManager. The problem is that NM isn't even
11978 started at this time, but will specifically be started when
11979 we're done with MAC spoofing. Therefore, let's completely
11980 disable NetworkManager so it cannot possibly be
11981 started. (Closes: #10160)
11982 - Avoid use of uninitialized value in restricted-network-detector.
11983 If NetworkManager decides that a wireless connection has timed
11984 out before "supplicant connection state" has occued, our idea of
11985 the state is `undef`, so it cannot be used in a string
11986 comparison. Hence, let's initialize the state to the empty
11987 string instead of `undef`. Also fix the state
11988 recording. Apparently NetworkManager can say a few different
11989 things when it logs the device state transitions. (Closes:
11992 * Minor improvements
11993 - Remove workaround for localizing search engine plugins. The
11994 workaround has recently become unnecessary, possibly due to the
11995 changes made for the seach bar after the Tor Browser was rebased
11996 on Firefox 38esr. (Closes: #9146)
11997 - Refer to the I2P Browser in the I2P notifications. Instead of
11998 some obscure links that won't work in the Tor Browser, where
11999 users likely will try them, and which I believe will open them
12000 by default. (Closes: #10182)
12001 - Upgrade I2P to 0.9.22. Also set the I2P apparmor profile to
12002 enforce mode. (Closes: #9830)
12005 - Test that udev-watchdog is monitoring the correct device when
12006 booted from USB. (Closes: #9890)
12007 - Remove unused 'gksu' step. This causes a false-positive to be
12008 found for #5330. (Closes: #9877)
12009 - Make --capture capture individual videos for failed scenarios
12010 only, and --capture-all to capture videos for all scenarios.
12012 - Use the more efficient x264 encoding when capturing videos using
12013 the --capture* options. (Closes: #10001)
12014 - Make --old-iso default to --iso if omitted. Using the same ISO
12015 for the USB upgrade tests most often still does what we want,
12016 e.g. test that the current version of Tails being tested has a
12017 working Tails installer. Hence this seems like a reasonable
12018 default. (Closes: #10147)
12019 - Avoid nested FindFailed exceptions in waitAny()/findAny(), and
12020 throw a new dedicated FindAnyFailed exception if these fail
12021 instead. Rjb::throw doesn't block Ruby's execution until the
12022 Java exception has been received by Ruby, so strange things can
12023 happen and we must avoid it. (Closes: #9633)
12024 - Fix the Download Management page in our browsers. Without the
12025 browser.download.panel.shown pref set, the progress being made
12026 will not update until after the browser has been restarted.
12028 - Add a 'pretty_debug' (with an alias: 'debug') Cucumber formatter
12029 that deals with debugging instead of printing it to STDERR via
12030 the `--debug` option (which now has been removed). This gives us
12031 the full flexibility of Cucumber's formatter system, e.g. one
12032 easy-to-read formatter can print to the terminal, while we get
12033 the full debug log printed to a file. (Closes: #9491)
12034 - Import logging module in otr-bot.py. Our otr-bot.py does not use
12035 logging but the jabberbot library makes logging calls, causing a
12036 one-off message “No handlers could be found for logger
12037 "jabberbot"” to be printed to the console. This commit
12038 effectively prevents logging/outputting anything to the terminal
12039 which is at a level lower than CRITICAL. (Closes: 9375)
12040 - Force new Tor circuit and reload web site on browser
12041 timeouts. (Closes: #10116)
12042 - Focus Pidgin's buddy list before trying to access the tools
12043 menu. (Closes: #10217)
12044 - Optimize IRC test using waitAny. If connecting to IRC fails,
12045 such as when OFTC is blocking Tor, waiting 60 seconds to connect
12046 while a a Reconnect button is visible is sub-optimal. It would
12047 be better to try forcing a new Tor circuit and clicking the
12048 reconnect button. (Closes: #9653)
12049 - Wait for (and focus if necessary) Pidgin's Certificate windows.
12052 -- Tails developers <tails@boum.org> Sun, 20 Sep 2015 17:47:26 +0000
12054 tails (1.5.1) unstable; urgency=medium
12057 - Upgrade Tor Browser to 5.0.2. (Closes: #10112)
12058 - Upgrade gdk-pixbuf packages to 2.26.1-1+deb7u1.
12059 - Upgrade libnss3 to 2:3.14.5-1+deb7u5.
12062 - Refresh Tor Browser AppArmor profile patch. The old one doesn't
12063 apply on top of testing's torbrowser-launcher anymore.
12066 - Make sure Jenkins creates new jobs to build the testing branch
12067 after freezes. (Closes: #9925)
12069 -- Tails developers <tails@boum.org> Fri, 28 Aug 2015 01:52:14 +0200
12071 tails (1.5) unstable; urgency=medium
12073 * Major new features and changes
12074 - Move LAN web browsing from Tor Browser to the Unsafe Browser,
12075 and forbid access to the LAN from the former. (Closes: #7976)
12076 - Install a 32-bit GRUB EFI boot loader. This at least works
12077 on some Intel Baytrail systems. (Closes: #8471)
12080 - Upgrade Tor Browser to 5.0, and integrate it:
12081 · Disable Tiles in all browsers' new tab page.
12082 · Don't use geo-specific search engine prefs in our browsers.
12083 · Hide Tools -> Set Up Sync, Tools -> Apps (that links to the Firefox
12084 Marketplace), and the "Share this page" button in the Tool bar.
12085 · Generate localized Wikipedia search engine plugin icons so the
12086 English and localized versions can be distinguished in the new
12087 search bar. (Closes: #9955)
12088 - Fix panic mode on MAC spoofing failure. (Closes: #9531)
12089 - Deny Tor Browser access to global tmp directories with AppArmor,
12090 and give it its own $TMPDIR. (Closes: #9558)
12091 - Tails Installer: don't use a predictable file name for the subprocess
12092 error log. (Closes: #9349)
12093 - Pidgin AppArmor profile: disable the launchpad-integration abstraction,
12094 which is too wide-open.
12095 - Use aliases so that our AppArmor policy applies to
12096 /lib/live/mount/overlay/ and /lib/live/mount/rootfs/*.squashfs/ as well as
12097 it applies to /. And accordingly:
12098 · Upgrade AppArmor packages to 2.9.0-3~bpo70+1.
12099 · Install rsyslog from wheezy-backports, since the version from Wheezy
12100 conflicts with AppArmor 2.9.
12101 · Stop installing systemd for now: the migration work is being done in
12102 the feature/jessie branch, and it conflicts with rsyslog from
12104 · Drop apparmor-adjust-user-tmp-abstraction.diff: obsoleted.
12105 · apparmor-adjust-tor-profile.diff: simplify and de-duplicate rules.
12106 · Take into account aufs whiteouts in the system_tor profile.
12107 · Adjust the Vidalia profile to take into account Live-specific paths.
12108 - Upgrade Linux to 3.16.7-ckt11-1+deb8u3.
12109 - Upgrade bind9-host, dnsutils and friends to 1:9.8.4.dfsg.P1-6+nmu2+deb7u6.
12110 - Upgrade cups-filters to 1.0.18-2.1+deb7u2.
12111 - Upgrade ghostscript to 9.05~dfsg-6.3+deb7u2.
12112 - Upgrade libexpat1 to 2.1.0-1+deb7u2.
12113 - Upgrade libicu48 to 4.8.1.1-12+deb7u3.
12114 - Upgrade libwmf0.2-7 to 0.2.8.4-10.3+deb7u1.
12115 - Upgrade openjdk-7 to 7u79-2.5.6-1~deb7u1.
12118 - Upgrade Tor to 0.2.6.10-1~d70.wheezy+1+tails1.
12120 * Minor improvements
12121 - Tails Installer: let the user know when it has rejected a candidate
12122 destination device because it is too small. (Closes: #9130)
12123 - Tails Installer: prevent users from trying to "upgrade" a device
12124 that contains no Tails, or that was not installed with Tails Installer.
12126 - Install libotr5 and pidgin-otr 4.x from wheezy-backports. This adds
12127 support for the OTRv3 protocol and for multiple concurrent connections
12128 to the same account. (Closes: #9513)
12129 - Skip warning dialog when starting Tor Browser while being offline,
12130 in case it is already running. Thanks to Austin English for the patch!
12132 - Install the apparmor-profiles package (Closes: #9539), but don't ship
12133 a bunch of AppArmor profiles we don't use, to avoid increasing
12134 boot time. (Closes: #9757)
12135 - Ship a /etc/apparmor.d/tunables/home.d/tails snippet, instead
12136 of patching /etc/apparmor.d/tunables/home.
12137 - live-boot: don't mount tmpfs twice on /live/overlay, so that the one which
12138 is actually used as the read-write branch of the root filesystem's union
12139 mount, is visible. As a consequence:
12140 · One can now inspect how much space is used, at a given time, in the
12141 read-write branch of the root filesystem's union mount.
12142 · We can make sure our AppArmor policy works fine when that filesystem
12143 is visible, which is safer in case e.g. live-boot's behavior changes
12144 under our feet in the future... or in case these "hidden" files are
12145 actually accessible somehow already.
12148 - Add our jenkins-tools repository as a Git submodule, and replace
12149 check_po.sh with a symlink pointing to the same script in that submodule.
12150 Adjust the automated test suite accordingly. (Closes: #9567)
12151 - Bump amount of RAM needed for Vagrant RAM builds to 7.5 GiB. In
12152 particular the inclusion of the Tor Browser 5.0 series has recently
12153 increased the amount of space needed to build Tails. (Closes: #9901)
12156 - Test that the Tor Browser cannot access LAN resources.
12157 - Test that the Unsafe Browser can access the LAN.
12158 - Installer: test new behavior when trying to upgrade an empty device, and
12159 when attempting to upgrade a non-Tails FAT partition on GPT; also, take
12160 into account that all unsupported upgrade scenarios now trigger
12162 - Request a new Tor circuit and re-run the Seahorse and GnuPG CLI tests
12163 on failure. (Closes: #9518, #9709)
12164 - run_test_suite: remove control chars from log file even when cucumber
12165 exits with non-zero. (Closes: #9376)
12166 - Add compatibility with cucumber 2.0 and Debian Stretch. (Closes: #9667)
12167 - Use custom exception when 'execute_successfully' fails.
12168 - Retry looking up whois info on transient failure. (Closes: #9668)
12169 - Retry wget on transient failure. (Closes: #9715)
12170 - Test that Tor Browser cannot access files in /tmp.
12171 - Allow running the test suite without ntp installed. There are other means
12172 to have an accurate host system clock, e.g. systemd-timesyncd and tlsdate.
12174 - Bump timeout in the Totem feature.
12175 - Grep memory dump using the --text option. This is necessary with recent
12176 versions of grep, such as the one in current Debian sid, otherwise it
12177 will count only one occurrence of the pattern we're looking for.
12179 - Include execute_successfully's error in the exception, instead
12180 of writing it to stdout via puts. (Closes: #9795)
12181 - Test that udev-watchdog is actually monitoring the correct device.
12183 - IUK: workaround weird Archive::Tar behaviour on current sid.
12184 - Test the SocksPort:s given in torrc in the Unsafe Browser.
12185 This way we don't get any sneaky errors in case we change them and
12186 forget to update this test.
12187 - Directly verify AppArmor blocking of the Tor Browser by looking in
12188 the audit log: Firefox 38 does no longer provide any graphical feedback
12189 when the kernel blocks its access to files the user wants to access.
12190 - Update browser-related automated test suite images, and workaround
12191 weirdness introduced by the new Tor Browser fonts.
12192 - Test that Pidgin, Tor Browser, Totem and Evince cannot access ~/.gnupg
12193 via alternate, live-boot generated paths.
12194 - Adjust tests to cope with our new AppArmor aliases.
12195 - Bump memory allocated to the system under test to 2 GB. (Closes: #9883)
12197 -- Tails developers <tails@boum.org> Mon, 10 Aug 2015 19:12:58 +0200
12199 tails (1.4.1) unstable; urgency=medium
12202 - Upgrade Tor Browser to 4.5.3, based on Firefox 31.8.0 ESR. (Closes: #9649)
12203 - Upgrade Tor to 0.2.6.9-1~d70.wheezy+1+tails2, which includes a circuit
12204 isolation bugfix. (Closes: #9560)
12205 - AppArmor: deny Tor Browser access to the list of recently used files.
12207 - Upgrade OpenSSL to 1.0.1e-2+deb7u17.
12208 - Upgrade Linux to 3.16.7-ckt11-1.
12209 - Upgrade CUPS to 1.5.3-5+deb7u6.
12210 - Upgrade FUSE to 2.9.0-2+deb7u2.
12211 - Upgrade libsqlite3-0 to 3.7.13-1+deb7u2.
12212 - Upgrade ntfs-3g and ntfsprogs to 1:2012.1.15AR.5-2.1+deb7u2.
12213 - Upgrade p7zip-full to 9.20.1~dfsg.1-4+deb7u1.
12216 - Fix automatic upgrades in Windows Camouflage mode. (Closes: #9413)
12217 - Don't ship the snakeoil SSL key pair generated by ssl-cert in the ISO.
12219 - Partially fix the truncated notifications issue. (#7249)
12221 * Minor improvements
12222 - Disable the hwclock.sh initscript at reboot/shutdown time.
12223 This is an additional safety measure to ensure that the hardware clock
12224 is not modified. (Closes: #9364)
12225 - Stop shipping /var/cache/man/*, to make ISOs and IUKs smaller.
12227 - Update torbrowser-AppArmor-profile.patch to apply cleanly on top of the
12228 profile shipped with torbrowser-launcher 0.2.0-1.
12229 - Add the jessie/updates APT repo and set appropriate pinning.
12230 - Upgrade Electrum to 1.9.8-4~bpo70+1.
12231 - Upgrade kernel firmware packages to 0.44.
12234 - Install the Linux kernel from Debian Jessie. (Closes: #9341)
12235 - Remove files that are not under version control when building in Jenkins.
12237 - Don't modify files in the source tree before having possibly merged
12238 the base branch into it. (Closes: #9406)
12239 - Make it so eatmydata is actually used during a greater part of the build
12240 process. This includes using eatmydata from wheezy-backports.
12241 (Closes: #9419, #9523)
12242 - release script: adjust to support current Debian sid.
12245 - Test the system clock sanity check we do at boot. (Closes: #9377)
12246 - Remove the impossible "Clock way in the past" scenarios.
12247 Thanks to config/chroot_local-includes/lib/live/config/0001-sane-clock,
12248 these scenarios cannot happen, and since we test that it works they
12249 can be safely removed.
12250 - Test that the hardware clock is not modified at shutdown. (Closes: #9557)
12251 - Pidgin: retry looking for the roadmap URL in the topic.
12252 - Avoid showing Pidgin's tooltips during test, potentially confusing Sikuli.
12254 - Test all OpenPGP keys shipped with Tails. (Closes: #9402)
12255 - Check that notification-daemon is running when looking for notifications
12256 fails. (Closes: #9332)
12257 - Allow using the cucumber formatters however we want. (Closes: #9424)
12258 - Enable Spice in the guest, and blacklist the psmouse kernel module,
12259 to help with lost mouse events. (Closes: #9425)
12260 - Automate testing Torbutton's 'New Identity' feature. (Closes: #9286)
12261 - Test that Seahorse is configured to use the correct keyserver.
12263 - Always export TMPDIR back to the test suite's shell environment.
12265 - Make OpenPGP tests more reliable:
12266 · Retry accessing the OpenPGP applet menus on failure. (Closes: #9355)
12267 · Retry accessing menus in Seahorse on failure. (Closes: #9344)
12268 - Focus the Pidgin conversation window before any attempt to interact
12269 with it. (Closes: #9317)
12270 - Use convertkey from the (backported to Jessie) Debian package,
12271 instead of our own copy of that script. (Closes: #9066)
12272 - Make the memory erasure tests more robust (Closes: #9329):
12273 · Bump /proc/sys/vm/min_free_kbytes when running fillram.
12274 · Actually set oom_adj for the remote shell when running fillram.
12275 · Try to be more sure that we OOM kill fillram.
12276 · Run fillram as non-root.
12277 - Only try to build the storage pool if TailsToasterStorage isn't found.
12280 -- Tails developers <tails@boum.org> Sun, 28 Jun 2015 19:46:25 +0200
12282 tails (1.4) unstable; urgency=medium
12284 * Major new features
12285 - Upgrade Tor Browser to 4.5.1, based on Firefox 31.7.0 ESR, which
12286 introduces many major new features for usability, security and
12287 privacy. Unfortunately its per-tab circuit view did not make it
12288 into Tails yet since it requires exposing more Tor state to the
12289 user running the Tor Browser than we are currently comfortable
12290 with. (Closes: #9031, #9369)
12291 - Upgrade Tor to 0.2.6.7-1~d70.wheezy+1+tails2. Like in the Tor
12292 bundled with the Tor Browser, we patch it so that circuits used
12293 for SOCKSAuth streams have their lifetime increased indefinitely
12294 while in active use. This currently only affects the Tor Browser
12295 in Tails, and should improve the experience on certain web sites
12296 that otherwise would switch language or log you out every ten
12297 minutes or so when Tor switches circuit. (Closes: #7934)
12300 - tor-browser wrapper script: avoid offering avenues to arbitrary
12301 code execution to e.g. an exploited Pidgin. AppArmor Ux rules
12302 don't sanitize $PATH, which can lead to an exploited application
12303 (that's allowed to run this script unconfined, e.g. Pidgin)
12304 having this script run arbitrary code, violating that
12305 application's confinement. Let's prevent that by setting PATH to
12306 a list of directories where only root can write. (Closes: #9370)
12307 - Upgrade Linux to 3.16.7-ckt9-3.
12308 - Upgrade curl to 7.26.0-1+wheezy13.
12309 - Upgrade dpkg to 1.16.16.
12310 - Upgrade gstreamer0.10-plugins-bad to 0.10.23-7.1+deb7u2.
12311 - Upgrade libgd2-xpm to 2.0.36~rc1~dfsg-6.1+deb7u1.
12312 - Upgrade openldap to 2.4.31-2.
12313 - Upgrade LibreOffice to 1:3.5.4+dfsg2-0+deb7u4.
12314 - Upgrade libruby1.9.1 to 1.9.3.194-8.1+deb7u5.
12315 - Upgrade libtasn1-3 to 2.13-2+deb7u2.
12316 - Upgrade libx11 to 2:1.5.0-1+deb7u2.
12317 - Upgrade libxml-libxml-perl to 2.0001+dfsg-1+deb7u1.
12318 - Upgrade libxml2 to 2.8.0+dfsg1-7+wheezy4.
12319 - Upgrade OpenJDK to 7u79-2.5.5-1~deb7u1.
12320 - Upgrade ppp to 2.4.5-5.1+deb7u2.
12323 - Disable security warnings when connecting to POP3 and IMAP ports.
12325 - Make the Windows 8 browser theme compatible with the Unsafe and I2P
12326 browsers. (Closes: #9138)
12327 - Hide Torbutton's "Tor Network Settings..." context menu entry.
12329 - Upgrade the syslinux packages to support booting Tails on
12330 Chromebook C720-2800. (Closes: #9044)
12331 - Enable localization in Tails Upgrader. (Closes: #9190)
12332 - Make sure the system clock isn't before the build date during
12333 early boot. Our live-config hook that imports our signing keys
12334 depend on that the system clock isn't before the date when the
12335 keys where created. (Closes: #9149)
12336 - Set GNOME's OpenPGP keys via desktop.gnome.crypto.pgp to prevent
12337 us from getting GNOME's default keyserver in addition to our
12338 own. (Closes: #9233)
12339 - Prevent Firefox from crashing when Orca is enabled: grant
12340 it access to assistive technologies in its Apparmor
12341 profile. (Closes: #9261)
12342 - Add Jessie APT source. (Closes: #9278)
12343 - Fix set_simple_config_key(). If the key already existed in the
12344 config file before the call, all other lines would be removed
12345 due to the sed option -n and p combo. (Closes: #9122)
12346 - Remove illegal instance of local outside of function definition.
12347 Together with `set -e` that error has prevented this script from
12348 restarting Vidalia, like it should. (Closes: #9328)
12350 * Minor improvements
12351 - Upgrade I2P to 0.9.19-3~deb7u+1.
12352 - Install Tor Browser's bundled Torbutton instead of custom .deb.
12353 As of Torbutton 1.9.1.0 everything we need has been upstreamed.
12354 - Install Tor Browser's bundled Tor Launcher instead of our
12355 in-tree version. With Tor 0.2.6.x our custom patches for the
12356 ClientTransportPlugin hacks are not needed any more. (Closes:
12358 - Don't install msmtp and mutt. (Closes: #8727)
12359 - Install fonts-linuxlibertine for improved Vietnamese support in
12360 LibreOffice. (Closes: #8996)
12361 - Remove obsoletete #i2p-help IRC channel from the Pidgin
12362 configuration (Closes: #9137)
12363 - Add Gedit shortcut to gpgApplet's context menu. Thanks to Ivan
12364 Bliminse for the patch. (Closes: #9069).
12365 - Install printer-driver-gutenprint to support more printer
12366 models. (Closes: #8994).
12367 - Install paperkey for off-line OpenPGP key backup. (Closes: #8957)
12368 - Hide the Tor logo in Tor Launcher. (Closes: #8696)
12369 - Remove useless log() instance in tails-unblock-network. (Closes:
12371 - Install cdrdao: this enables Brasero to burn combined data/audio
12372 CDs and to do byte-to-byte disc copy.
12373 - Hide access to the Add-ons manager in the Unsafe Browser. It's
12374 currently broken (#9307) but we any way do not want users to
12375 install add-ons in the Unsafe Browser. (Closes: #9305)
12376 - Disable warnings on StartTLS for POP3 and IMAP (Will-fix: #9327)
12377 The default value of this option activates warnings on ports
12378 23,109,110,143. This commit disables the warnings for POP3 and
12379 IMAP as these could be equally used in encrypted StartTLS
12380 connections. (Closes: #9327)
12381 - Completely rework how we localize our browser by generating our
12382 branding add-on, and search plugins programatically. This
12383 improves the localization for the ar, es, fa, ko, nl, pl, ru,
12384 tr, vi and zh_CN locales by localizing the Startpage and
12385 Disconnect.me search plugins. Following Tor Browser 4.5's recent
12386 switch, we now use Disconnect.me as the default search
12387 engine. (Closes: #9309)
12388 * Actively set Google as the Unsafe Browser's default search
12392 - Encode in Git which APT suites to include when building Tails.
12394 - Clean up the list of packages we install. (Closes: #6073)
12395 - Run auto/{build,clean,config} under `set -x' for improved
12397 - Zero-pad our ISO images so their size is divisible by 2048.
12398 The data part of an ISO image's sectors is 2048 bytes, which
12399 implies that ISO images should always have a size divisible
12400 by 2048. Some applications, e.g. VirtualBox, use this as a sanity
12401 check, treating ISO images for which this isn't true as garbage.
12402 Our isohybrid post-processing does not ensure this,
12403 however. Also Output ISO size before/after isohybrid'ing and
12404 truncate'ing it. This will help detect if/when truncate is
12405 needed at all, so that we can report back to syslinux
12406 maintainers more useful information. (Closes: #8891)
12407 - Vagrant: raise apt-cacher-ng's ExTreshold preference to 50. The
12408 goal here is to avoid Tor Browser tarballs being deleted by
12409 apt-cacher-ng's daily expiration cronjob: they're not listed in
12410 any APT repo's index file, so acng will be quite eager to clean
12414 - Bring dependency checks up-to-date (Closes: #8988).
12415 - Adapt test suite to be run on Debian Jessie, which includes
12416 removing various Wheezy-specific workarounds, adding a few
12417 specific to Jessie, migrating from ffmpeg to libav, and
12418 more. (Closes: #8165)
12419 - Test that MAT can see that a PDF is dirty (Closes: #9136).
12420 - Allow throwing Timeout::Error in try_for() blocks, as well as
12421 nested try_for() (Closes: #9189, #9290).
12422 - Read test suite configuration files from the features/config/local.d
12423 directory. (Closes: #9220)
12424 - Kill virt-viewer with SIGTERM, not SIGINT, to prevent hordes of
12425 zombie processes from appearing. (Closes: #9139)
12426 - Kill Xvfb with SIGTERM, not SIGKILL, on test suite exit to allow
12427 it to properly clean up. (Closes: #8707)
12428 - Split SSH & SFTP configs in the test suite. (Closes: #9257)
12429 - Improve how we start subprocesses in the test suite, mostly by
12430 bypassing the shell for greater security and robustness (Closes:
12432 - Add Electrum test feature. (Closes #8963)
12433 - Test that Tails Installer detects when USB devices are
12434 removed. (Closes: #9131)
12435 - Test Tails Installer with devices which are too small. (Closes:
12437 - Test that the Report an Error launcher works in German. (Closes:
12439 - Verify that no extensions are installed in the Unsafe Browser
12440 using about:support instead of about:addons, which is broken
12441 (#9307). (Closes: #9306)
12442 - Retry GNOME application menu actions when they glitch. The
12443 GNOME application menus seem to have issues with clicks or
12444 hovering actions not registering, and hence sometimes submenus
12445 are not opened when they should, and sometimes clicks on the
12446 final application shortcut are lost. There seems to be a
12447 correlation between this and CPU load on the host running the
12448 test suite. We workaround this by simply re-trying the last
12449 action when it seems to fail. (Closes: #8928)
12450 - Work around Seahorse GUI glitchiness (Closes: #9343):
12451 * When Seahorse appears to be frozen--apparently due to network
12452 issues--it can often be worked around by refreshing the screen
12453 or activating a new window.
12454 * Open Seahorse's preferences dialog using the mouse.
12455 * Access menu entries with the mouse.
12456 - Wait for systray icons to finish loading before interacting with
12457 the systray. (Closes: #9258)
12458 - Test suite configuration: generalize local.d support to *.d. We
12459 now load features/config/*.d/*.yml.
12460 - Use code blocks in "After Scenario" hooks. This is much simpler
12461 to use (and more readable!) compared to hooking functions and
12462 arguments like we used to do.
12463 - Create filesystem share sources in the temporary directory and
12464 make them world-readable. (Closes: #8950)
12466 -- Tails developers <tails@boum.org> Mon, 11 May 2015 16:45:04 +0200
12468 tails (1.3.2) unstable; urgency=medium
12471 - Upgrade Tor Browser to 4.0.6, based on Firefox 31.6.0 ESR.
12472 - Upgrade OpenSSL to 1.0.1e-2+deb7u16.
12475 - Make Florence usable with touchpads by forcing syndaemon to
12476 always use the `-t` option, which only disables tapping and
12477 scrolling and not mouse movements (Closes: #9011).
12478 - Make tails-spoof-mac log the correct macchanger exit code on
12479 failure (Closes: #8687).
12481 · Ignore devices with less than 3.5 GB of storage since they
12482 do not fit a Tails installation (Closes: #6538).
12483 · Remove devices from the device list as they are unplugged
12486 * Minor improvements
12487 - Install obfs4proxy 0.0.4-1~tpo1, which adds support for
12488 client-mode ScrambleSuit.
12489 - Don't start Vidalia if Windows Camouflage is enabled. (Closes:
12492 · Remove "Add-ons" from the Tools menu, and hide "Keyboard
12493 Shortcuts" and "Take a Tour" since they point to resources on
12494 the open Internet (Closes: #7970).
12495 · Hide TorButton button from the customize toolbar options, and
12496 remove configs whose only purpose was to make Torbutton "green"
12501 · Test non-LAN SSH, and SFTP via GNOME's "Connect to Server"
12503 · Verify that Tails' Tor binary has the expected Tor authorities
12504 hard coded (Closes: #8960).
12506 · Programmatically determine the supported languages when testing
12507 the Unsafe Browser (Closes: #8918).
12508 · Rename --temp-dir to --tmpdir and make it behave more like
12509 mktemp, and honour TMPDIR if set in the environment. (Closes:
12512 · Make --temp-dir (now --tmpdir) actually work.
12514 -- Tails developers <tails@boum.org> Mon, 30 Mar 2015 16:54:20 +0200
12516 tails (1.3.1) unstable; urgency=medium
12519 - Upgrade Tor Browser to 4.0.5, based on Firefox 31.5.3 ESR. This addresses:
12520 · https://www.mozilla.org/en-US/security/advisories/mfsa2015-28/
12521 · https://www.mozilla.org/en-US/security/advisories/mfsa2015-29/
12522 - Upgrade Linux to 3.16.7-ckt7-1.
12523 - Upgrade libxfont to 1:1.4.5-5.
12524 - Upgrade OpenSSL to 1.0.1e-2+deb7u15.
12525 - Upgrade tcpdump to 4.3.0-1+deb7u2.
12526 - Upgrade bsdtar to 3.0.4-3+wheezy1.
12527 - Upgrade CUPS to 1.5.3-5+deb7u5.
12528 - Upgrade file and libmagic to 5.11-2+deb7u8.
12529 - Upgrade GnuPG to 1.4.12-7+deb7u7.
12530 - Upgrade libarchive to 3.0.4-3+wheezy1.
12531 - Upgrade libav to 6:0.8.17-1.
12532 - Upgrade FreeType 2 to 2.4.9-1.1+deb7u1.
12533 - Upgrade libgcrypt11 1.5.0-5+deb7u3.
12534 - Upgrade libgnutls26 to 2.12.20-8+deb7u3.
12535 - Upgrade libgtk2-perl to 2:1.244-1+deb7u1.
12536 - Upgrade ICU to 4.8.1.1-12+deb7u2.
12537 - Upgrade NSS to 2:3.14.5-1+deb7u4.
12538 - Upgrade libssh2 to 1.4.2-1.1+deb7u1.
12541 - Upgrade Tor to 0.2.5.11-1~d70.wheezy+1+tails1. Changes include:
12542 · Directory authority changes.
12543 · Fix assertion errors that may trigger under high DNS load.
12544 · No longer break on HUP with seccomp2 enabled.
12545 · and more - please consult the upstream changelog.
12546 - Upgrade Tor Launcher to 0.2.7.2, and update the test suite accordingly
12547 (Closes: #8964, #6985). Changes include:
12548 · Ask about bridges before proxy in wizard.
12549 · Hide logo if TOR_HIDE_BROWSER_LOGO set.
12550 · Remove firewall prompt from wizard.
12551 · Feedback when “Copy Tor Log” is clicked.
12552 · Improve behavior if tor exits.
12553 · Add option to hide TBB's logo
12554 · Change "Tor Browser Bundle" to "Tor Browser"
12555 · Update translations from Transifex.
12556 - Fix the Tor Launcher killer. (Closes: #9067)
12557 - Allow Seahorse to communicate with keyservers when run from Tails
12558 OpenPGP Applet. (Closes: #6394)
12559 - SSH client: don't proxy connections to 172.17.* to 172.31.*.
12561 - Repair config/chroot_local-packages feature, that was broken in Tails 1.3
12562 by 19-install-tor-browser-AppArmor-profile. (Closes: #8910)
12563 - language_statistics.sh: count original words instead of translated words.
12564 Otherwise we get >100% translation if translated strings are longer than
12565 original strings. (Closes: #9016)
12567 * Minor improvements
12568 - Only ship the new Tails signing key, and have Tails Upgrader stop trusting
12569 the old one. Update the documentation and test suite accordingly.
12570 (Closes: #8735, #8736, #8882, #8769, #8951)
12571 - Polish and harden a bit the WhisperBack configuration (Closes: #8991):
12572 · Only allow the `amnesia' user to run tails-debugging info as root
12574 · Fix spelling and grammar mistakes, improve phrasing a bit.
12575 · Quote variables consistently.
12579 · Chatting over XMPP in Pidgin, both peer-to-peer and in a multi-user
12580 chatroom. (Closes: #8002)
12581 · Chatting with OTR enabled over XMPP in Pidgin. (Closes: #8001)
12582 · Check that Pidgin only responds to the expected CTCP requests.
12584 · Fetching keys using Seahorse started via the OpenPGP Applet.
12585 · Sync'ing keys using Seahorse.
12587 · Fix a race condition between the remote shell's and Tails Greeter's
12588 startup, by making sure the remote shell is ready before we start
12589 GDM. (Closes: #8941)
12590 · Kill virt-viewer properly. (Closes: #9070)
12591 · Make sure the display is stopped on destroy_and_undefine().
12592 Where we had it earlier, it could be skipped if anything else in the
12593 block threw an exception.
12594 · Fix wrong use of "$@". (Closes: #9071)
12595 · Enable the pipefail option in run_test_suite.
12596 · Improve the GNOME screenshot test's robustness. (Closes: #8952)
12598 · turn the focus_pidgin_window() helper into a more generic
12599 VM.focus_xorg_window() one.
12600 · Reorganize the Display class.
12601 · Use clearer method to check process status in the Display class.
12602 - New developer-oriented features:
12603 · Add a --log-to-file option to run_test_suite. (Closes: #8894)
12604 · Add helpers for generating random strings.
12605 · Make it possible to hook arbitrary calls on scenario end. This is useful
12606 for dynamically adding cleanup functions, instead of having
12607 to explicitly deal with them in some After hook.
12609 -- Tails developers <tails@boum.org> Mon, 23 Mar 2015 12:34:56 +0000
12611 tails (1.3) unstable; urgency=medium
12613 * Major new features
12614 - Produce the Tails image in hybrid mode (again) so that the same
12615 image can be installed both on DVD *and* "hard disks" like USB
12616 storage and similar. (Closes: #8510)
12617 - Confine the Tor Browser using AppArmor. (Closes: #5525)
12618 - Install the Electrum bitcoin client from wheezy-backports, and
12619 add a persistence preset for the Live user's bitcoin wallet. If
12620 electrum is started without the persistence preset enabled, a
12621 warning is shown. (Closes: #6739)
12624 - Upgrade Tor Browser to 4.0.4 (based on Firefox 31.5.0esr)
12628 - Have tor_bootstrap_progress echo 0 if no matching log line is
12629 found. (Closes: #8257)
12630 - Always pass arguments through wrappers (connect-socks, totem,
12631 wget, whois) with "$@". $* doesn't handle arguments with
12632 e.g. embedded spaces correctly. (Closes: #8603, #8830)
12633 - Upgrade Linux to 3.16.7-ckt4-3.
12635 * Minor improvements
12636 - Install a custom-built Tor package with Seccomp enabled;
12637 enable the Seccomp sandbox when no pluggable transport is used.
12639 - Install obfs4proxy instead of obfsproxy, which adds support for
12640 the obfs4 Tor pluggable transport. (Closes: #7980)
12641 - Install GnuPG v2 and associated tools from wheezy-backports,
12642 primarily for its improved support for OpenPGP smartcards. It
12643 lives side-by-side with GnuPG v1, which still is the
12644 default. (Closes: #6241)
12645 - Install ibus-unikey, a Vietnamese input method for IBus. (Closes:
12647 - Install torsocks (2.x) from wheezy-backports. (Closes: #8220)
12648 - Install keyringer from Debian Jessie. (Closes: #7752)
12649 - Install pulseaudio-utils.
12650 - Remove all traces of Polipo: we don't use it anymore. This
12651 closes #5379 and #6115 because:
12652 * Have APT directly use the Tor SOCKS proxy. (Closes: #8194)
12653 * Wrap wget with torsocks. (Closes: #6623)
12654 * Wrap Totem to torify it with torsocks. (Closes: #8219)
12655 * Torify Git with tsocks, instead of setting GIT_PROXY_COMMAND.
12657 - Use torsocks for whois and Gobby, instead of torify.
12658 - Upgrade I2P to 0.9.18-1~deb7u+1.
12659 - Refactor the Unsafe and I2P browser code into a common shell
12660 library. A lot of duplicated code is now shared, and the code
12661 has been cleaned up and made more reliable. Several
12662 optimizations of memory usage and startup time were also
12663 implemented. (Closes: #7951)
12664 - Invert Exit and About in gpgApplet context menu. This is a
12665 short-term workaround for making it harder to exit the
12666 application by mistake (e.g. a double right-click). (Closes:
12668 - Implement new touchpad settings. This enables tap-to-click,
12669 2-fingers scrolling, and disable while typing. We don't enable
12670 reverse scrolling nor horizontal scrolling. (Closes: #7779)
12671 - Include the mount(8) output and live-additional-software.conf in
12672 WhisperBack bug reports (Closes: #8719, #8491).
12673 - Reduce brightness and saturation of background color. (Closes:
12675 - Have ALSA output sound via PulseAudio by default. This gives us
12676 centralized sound volume controls, and... allows to easily, and
12677 automatically, test that audio output works from Tor Browser,
12678 thanks to the PulseAudio integration into the GNOME sound
12680 - Import the new Tails signing key, which we will use for Tails
12681 1.3.1, and have Tails Upgrader trust both it and the "old"
12682 (current) Tails signing key. (Closes: #8732)
12683 - tails-security-check: error out when passed an invalid CA file.
12684 Unfortunately, the underlying HTTPS stack we use here fails open
12685 in those case, so we have to check it ourselves. Currently, we
12686 check that the file exists, is readable, is a plain file and is
12687 not empty. Also support specifying the CA file via an
12688 environment variable. This will ease development and bug-fixing
12690 - Fix racy code in Tails Installer that sometimes made the
12691 automated test suite stall for scenarios installing Tails
12692 to USB disks. (Closes: #6092)
12693 - Make it possible to use Tails Upgrader to upgrade a Tails
12694 installation that has cruft files on the system partition.
12698 - Install syslinux-utils from our builder-wheezy APT repository in
12699 Vagrant. We need version 6.03~pre20 to make the Tails ISO image
12701 - Update deb.tails.boum.org apt repo signing key. (Closes: #8747)
12702 - Revert "Workaround build failure in lb_source, after creating
12703 the ISO." This is not needed anymore given the move to the Tor
12704 SOCKS proxy. (Closes: #5307)
12705 - Remove the bootstrap stage usage option and disable all
12706 live-build caching in Vagrant. It introduces complexity and
12707 potential for strange build inconsistencies for a meager
12708 reduction in build time. (Closes: #8725)
12709 - Hardcode the mirrors used at build and boot time in auto/config.
12710 Our stuff will be more consistent, easier to reproduce, and our
12711 QA process will be more reliable if we all use the same mirrors
12712 at build time as the ones we configure in the ISO. E.g. we won't
12713 have issues such as #8715 again. (Closes: #8726)
12714 - Don't attempt to retrieve source packages from local-packages so
12715 local packages can be installed via
12716 config/chroot_local-packages. (Closes: #8756)
12717 - Use our own Tor Browser archive when building an ISO. (Closes:
12721 - Use libguestfs instead of parted when creating partitions and
12722 filsystems, and to check that only the expected files
12723 persist. We also switch to qcow2 as the default disk image
12724 format everywhere to reduce disk usage, enable us to use
12725 snapshots that includes the disks (in the future), and to use
12726 the same steps for creating disks in all tests. (Closes: #8673)
12727 - Automatically test that Tails ignores persistence volumes stored
12728 on non-removable media, and doesn't enable swaps. (Closes:
12730 - Actually make sure that Tails can boot from live systems stored
12731 on a hard drive. Running the 'I start Tails from DVD ...' step
12732 will override the earlier 'the computer is set to boot from ide
12733 drive "live_hd"' step, so let's make the "from DVD" part
12734 optional; it will be the default any way.
12735 - Make it possible to use an old iso with different persistence
12736 presets. (Closes: #8091)
12737 - Hide the cursor between steps when navigating the GNOME
12738 applications menu. This makes it a bit more robust, again:
12739 sometimes the cursor is partially hiding the menu entry we're
12740 looking for, hence preventing Sikuli from finding it (in
12741 particular when it's "Accessories", since we've just clicked on
12742 "Applications" which is nearby). (Closes: #8875)
12743 - Ensure that the test will fail if "apt-get X" commands fail.
12744 - Test 'Tor is ready' notification in a separate scenario. (Closes:
12746 - Add automated tests for torified wget and whois. This should
12747 help us identify future regressions such as #8603 in their
12748 torifying wrappers.
12749 - Add automated test for opening an URL from Pidgin.
12750 - And add automated tests for the Tor Browser's AppArmor
12752 - Test that "Report an Error Launcher" opens the support
12754 - Test that the Unsafe Browser:
12755 * starts in various locales.
12756 * complains when DNS isn't configured.
12757 * tears down its chroot on shutdown.
12758 * runs as the correct user.
12759 * has no plugins or add-ons installed.
12760 * has no unexpected bookmarks.
12761 * has no proxy configured.
12762 - Bump the "I2P router console is ready" timeout in its test to
12763 deal with slow Internet connections.
12764 - Make the automatic tests of gpgApplet more robust by relying
12765 more on graphical elements instead of keyboard shortcuts and
12766 static sleep():s. (Closes: #5632)
12767 - Make sure that enough disk space is available when creating
12768 virtual storage media. (Closes: #8907)
12769 - Test that the Unsafe Browser doesn't generate any non-user
12770 initiated traffic, and in particular that it doesn't check for
12771 upgrades, which is a regression test for #8694. (Closes: #8702)
12772 - Various robustness improvements to the Synaptic tests. (Closes:
12774 - Automatically test Git. (Closes: #6307)
12775 - Automatically test GNOME Screenshot, which is a regression test
12776 for #8087. (Closes: #8688)
12777 - Fix a quoting issue with `tails_persistence_enabled?`. (Closes:
12779 - Introduce an improved configuration system that also can store
12780 local secrets, like user credentials needed for some
12781 tests. (Closes: #6301, #8188)
12782 - Actually verify that we successfully set the time in our time
12783 syncing tests. (Closes: #5836)
12784 - Automatically test Tor. This includes normal functionality and
12785 the use pluggable transports, that our Tor enforcement is
12786 effective (e.g. only the Tor network or configured bridges are
12787 contacted) and that our stream isolation configuration is
12788 working. (Closes: #5644, #6305, #7821)
12790 -- Tails developers <tails@boum.org> Mon, 23 Feb 2015 17:14:00 +0100
12792 tails (1.2.3) unstable; urgency=medium
12795 - Upgrade Linux to 3.16.7-ckt2-1.
12796 - Upgrade Tor Browser to 4.0.3 (based on Firefox 31.4.0esr)
12798 - Fail safe by entering panic mode if macchanger exits with an
12799 error, since in this situation we have to treat the
12800 driver/device state as undefined. Also, we previously just
12801 exited the script in this case, not triggering the panic mode
12802 and potentially leaking the real MAC address (Closes: #8571).
12803 - Disable upgrade checking in the Unsafe Browser. Until now the
12804 Unsafe Browser has checked for upgrades of the Tor Browser in
12805 the clear (Closes: #8694).
12808 - Fix startup of the Unsafe Browser in some locales (Closes: #8693).
12809 - Wait for notification-daemon to run before showing the MAC
12810 spoofing panic mode notifications. Without this, the "Network
12811 card disabled" notification is sometimes lost when MAC spoofing
12812 fails. Unfortunately this only improves the situation, but
12813 doesn't fix it completely (see #8685).
12814 - Log that we're going to stop NetworkManager before trying to do
12815 it in the MAC spoofing scripts. Without this we wouldn't get the
12816 log message in case stopping NetworkManager fails (thanks to
12818 - Set GNOME Screenshot preferences to save the screenshots in
12819 /home/amnesia (Closes: #8087).
12820 - Do not suspend to RAM when closing the lid on battery power
12822 - Properly update the Tails Installer's status when plugging in a
12823 USB drive after it has started (Closes: #8353).
12824 - Make rsync compare file contents by using --checksum for more
12825 reliable generation of the squashfs filesystem in
12826 IUKs. Previously it used the default, which is checking
12827 timestamps and file size, but that doesn't play well with the
12828 Tor browser files, that have a fixed mtime, which could result
12829 in updated files not ending up in the IUK.
12831 * Minor improvements
12832 - Finish migrating tails-security-check's and tails-iuk's pinning
12833 to our website's new X.509 certificate authority (Closes: #8404).
12836 - Update to Vagrant build box tails-builder-20141201. The only
12837 change is the removal of a reference to an ISO image which
12838 doesn't exist (except on the system that generated the build
12839 box) which causes an error for some users (Closes: #7644).
12840 - Generate the list of packages used during build, after building
12841 with Jenkins (Closes: #8518). This allows tracking their status
12842 on the Debian reproducible build front:
12843 https://reproducible.debian.net/index_pkg_sets.html#tails
12845 * Automated test suite
12846 - Check PO files with i18nspector (Closes: #8359).
12847 - Fix the expected image of a check.tp.o failure. Previously we
12848 looked for the "Sorry. You are not using Tor." text, but it
12849 seems it recently changed enough for Sikuli to not find it. To
12850 prevent future errors of the same kind we'll look for the
12851 crossed-over onion icon instead (Closes: #8533).
12852 - Bump timeout when waiting for Tor to re-bootstrap. We have a
12853 dreaded issue with timeouts that are multiple of 2 minutes, and
12854 then Tor succeeds soon after, so in order to allow for this
12855 timeout to be reached twice, and then possibly succeed, let's
12856 use N*2 minutes + 30 seconds, with N=2.
12858 -- Tails developers <tails@boum.org> Wed, 14 Jan 2015 16:12:26 +0100
12860 tails (1.2.2) unstable; urgency=medium
12863 - Create a CA bundle for Tails Upgrader at ISO build time, and
12864 patch Tails Upgrader to use it. Specifically this will make it
12865 possible to check for Tails upgrades after our website changes
12866 certificate around the 2014 to 2015 transition (Partially fixes
12869 -- Tails developers <tails@boum.org> Mon, 15 Dec 2014 10:05:17 +0100
12871 tails (1.2.1) unstable; urgency=low
12874 - Upgrade Linux to 3.16.0-4, i.e. 3.16.7-1.
12875 - Install Tor Browser 4.0.2 (based on Firefox 31.3.0esr).
12878 - Install syslinux-utils, to get isohybrid back (Closes: #8155).
12879 - Update xserver-xorg-input-evdev to 1:2.7.0-1+tails1 which
12880 includes a patch that restores mouse scrolling in KVM/Spice
12882 - Set Torbutton logging preferences to the defaults (Closes:
12883 #8160). With the default settings, no site-specific information is
12885 - Use the correct stack of rootfs:s for the chroot browsers (Closes:
12886 #8152, #8158). After installing incremental upgrades Tails' root
12887 filesystem consists of a stack squashfs:s, not only
12888 filesystem.squashfs. When not stacking them correct we may end up
12889 using the Tor Browser (Firefox) from an older version of Tails, or
12890 with no Tor Browser at all, as in the upgrade from Tails 1.1.2 to
12891 1.2, when we migrated from Iceweasel to the Tor Browser. Based on
12892 a patch contributed by sanic.
12893 - Use the Tor Browser for MIME type that GNOME associates with
12894 Iceweasel (Closes: #8153). Open URLs from Claws Mail, KeePassX
12895 etc. should be possible again.
12896 - Update patch to include all Intel CPU microcodes (Closes: #8189).
12897 - AppArmor: allow Pidgin to run Tor Browser unconfined, with
12898 scrubbed environment (Closes: #8186). Links opened in Pidgin are
12899 now handled by the Tor Browser.
12900 - Install all localized Iceweasel search plugins (Closes: #8139).
12901 - When generating the boot profile, ignore directories in
12902 process_IN_ACCESS as well (Closes: #7925). This allows ut to
12903 update the squashfs-ordering again in Tails 1.2.1.
12904 - gpgApplet: Don't pass already encoded data to GTK2 (Closes:
12905 #7968). It's now possible to clearsign text including non-ASCII
12907 - Do not run the PulseAudio initscript, neither at startup nor
12908 shutdown (Closes: #8082).
12910 * Minor improvements
12911 - Upgrade I2P to 0.9.17-1~deb7u+1.
12912 - Make GnuPG configuration closer to the best practices one
12914 - Have GnuPG directly use the Tor SOCKS port (Closes: #7416).
12915 - Remove TrueCrypt support and documentat how to open TrueCrypt
12916 volumes using cryptsetup (Closes: #5373).
12917 - Install hopenpgp-tools from Debian Jessie.
12920 - Add gettext >= 0.18.3 as a Tails build dependency. We need it for
12921 xgettext JavaScript support in feature/jessie.
12923 * Automated test suite
12924 - Don't click to open a sub-menu in the GNOME applications menu
12926 - When testing the Windows camouflage, look for individual systray
12927 applets, to avoid relying on their ordering (Closes: #8059).
12928 - Focus the Pidgin Buddy List before looking for something
12929 happening in it (Closes: #8161).
12930 - Remove workaround for showing the TBB's menu bar (Closes #8028).
12932 -- Tails developers <tails@boum.org> Tue, 02 Dec 2014 11:34:03 +0100
12934 tails (1.2) unstable; urgency=medium
12936 * Major new features
12937 - Migrate from Iceweasel to the Tor Browser from the Tor Browser
12938 Bundle 4.0 (based on Firefox 31.2.0esr). This fixes the POODLE
12940 The installation in Tails is made global (multi-profile), uses
12941 the system-wide Tor instance, disables the Tor Browser updater,
12942 and keeps the desired deviations previously present in Iceweasel,
12943 e.g. we install the AdBlock Plus add-on, but not Tor Launcher (since
12944 we run it as a standalone XUL application), among other things.
12945 - Install AppArmor's userspace tools and apparmor-profiles-extra
12946 from Wheezy Backports, and enable the AppArmor Linux Security
12947 Module. This adds Mandatory Access Control for several critical
12948 applications in Tails, including Tor, Vidalia, Pidgin, Evince
12950 - Isolate I2P traffic from the Tor Browser by adding a dedicated
12951 I2P Browser. It is set up similarly to the Unsafe Browser,
12952 but further disables features that are irrelevant for I2P, like
12953 search plugins and the AdBlock Plus addon, while keeping Tor Browser
12954 security features like the NoScript and Torbutton addons.
12955 - Upgrade Tor to 0.2.5.8-rc-1~d70.wheezy+1.
12958 - Disable TCP timestamps (Closes: #6579).
12961 - Remove expired Pidgin certificates (Closes: #7730).
12962 - Use sudo instead of gksudo for running tails-upgrade-frontend to
12963 make stderr more easily accessible (Closes: #7431).
12964 - Run tails-persistence-setup with sudo instead of gksudo to make
12965 stderr more easily accessible, and allow the desktop user to
12966 pass the --verbose parameter (Closes: #7623).
12967 - Disable CUPS in the Unsafe Browser. This will prevent the
12968 browser from hanging for several minutes when accidentally
12969 pressing CTRL+P or trying to go to File -> Print (Closes: #7771).
12971 * Minor improvements
12972 - Install Linux 3.16-3 (version 3.16.5-1) from Debian
12973 unstable (Closes: #7886, #8100).
12974 - Transition away from TrueCrypt: install cryptsetup and friends
12975 from wheezy-backports (Closes: #5932), and make it clear that
12976 TrueCrypt will be removed in Tails 1.2.1 (Closes: #7739).
12977 - Install Monkeysign dependencies for qrcodes scanning.
12978 - Upgrade syslinux to 3:6.03~pre20+dfsg-2~bpo70+1, and install
12979 the new syslinux-efi package.
12980 - Upgrade I2P to 0.9.15-1~deb7u+1
12981 - Enable Wheezy proposed-updates APT repository and setup APT
12982 pinnings to install packages from it.
12983 - Enable Tor's syscall sandbox. This feature (new in 0.2.5.x)
12984 should make Tor a bit harder to exploit. It is only be enabled
12985 when when no special Tor configuration is requested in Tails
12986 Greeter due to incompatibility with pluggable transports.
12987 - Start I2P automatically when the network connects via a
12988 NetworkManager hook, and "i2p" is present on the kernel command
12989 line. The router console is no longer opened automatically, but
12990 can be accessed through the I2P Browser (Closes: #7732).
12991 - Simplify the IPv6 ferm rules (Closes: #7668).
12992 - Include persistence.conf in WhisperBack reports (Closes: #7461)
12993 - Pin packages from testing to 500, so that they can be upgraded.
12994 - Don't set Torbutton environment vars globally (Closes: #5648).
12995 - Enable VirtualBox guest additions by default (Closes: #5730). In
12996 particular this enables VirtualBox's display management service.
12997 - In the Unsafe Browser, hide option for "Tor Browser Health
12998 report", and the "Get Addons" section in the Addon manager
13000 - Show Pidgin's formatting toolbar (Closes: #7356). Having the
13001 formatting toolbar displayed in Pidgin makes the OTR status more
13002 explicit by displaying it with words.
13004 * Automated test suite
13005 - Add --pause-on-fail to ease VM state debugging when tests
13007 - Add execute_successfully() and assert_vmcommand_success() for
13008 added robustness when executing some command in the testing VM.
13009 - Use Test::Unit::Assertions instead of our home-made assert().
13010 - Add test for persistent browser bookmarks.
13011 - Add basic tests for Pidgin, Totem and Evince, including their
13012 AppArmor enforcement.
13013 - Factorize some common step pattern into single steps.
13014 - Factorize running a command in GNOME Terminal.
13015 - Add common steps to copy a file and test for its existence.
13016 - Add a wait_and_double_click Sikuli helper method.
13017 - Add a VM.file_content method, to avoid repeating ourselves, and
13018 use it whenever easily doable.
13019 - Drop test that diffs syslinux' exithelp.cfg: we don't ship this
13021 - In the Unsafe Browser tests, rely on subtle timing less (Closes:
13023 - Use the same logic to determine when Tor is working in the test
13024 suite as in Tails itself. The idea is to avoid spamming the Tor
13025 control port during bootstrap, since we've seen problems with
13028 -- Tails developers <tails@boum.org> Wed, 15 Oct 2014 18:34:50 +0200
13030 tails (1.1.2) unstable; urgency=medium
13033 - Upgrade the web browser to 24.8.0esr-0+tails3~bpo70+1
13034 (fixes Mozilla#1064636).
13035 - Install Linux 3.16-1 from sid (Closes: #7886).
13036 - Upgrade file to 5.11-2+deb7u5 (fixes CVE-2014-0207,
13037 CVE-2014-0237, CVE-2014-0238, CVE-2014-3478, CVE-2014-3479,
13038 CVE-2014-3480, CVE-2014-3487, CVE-2014-3538 and CVE-2014-3587).
13039 - Upgrade curl to 7.26.0-1+wheezy10 (fixes CVE-2014-3613 and
13041 - Upgrade bind9-based packages to 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
13042 (fixes CVE-2014-0591).
13043 - Upgrade gnupg to 1.4.12-7+deb7u6 (fixes CVE-2014-5270).
13044 - Upgrade apt to 0.9.7.9+deb7u5 (fixes CVE-2014-0487,
13045 CVE-2014-0488, CVE-2014-0489, CVE-2014-0490, and
13047 - Upgrade dbus to 1.6.8-1+deb7u4 (fixes CVE-2014-3635,
13048 CVE-2014-3636, CVE-2014-3637, CVE-2014-3638 and CVE-2014-3639).
13049 - Upgrade libav-based pacakges to 6:0.8.16-1 (fixes
13051 - Upgrade bash to 4.2+dfsg-0.1+deb7u1 (fixes CVE-2014-6271).
13053 -- Tails developers <tails@boum.org> Tue, 23 Sep 2014 23:01:40 -0700
13055 tails (1.1.1) unstable; urgency=medium
13058 - Upgrade the web browser to 24.8.0esr-0+tails1~bpo70+1
13059 (Firefox 24.8.0esr + Iceweasel patches + Torbrowser patches).
13060 Also import the Tor Browser profile at commit
13061 271b64b889e5c549196c3ee91c888de88148560f from
13062 ttp/tor-browser-24.8.0esr-3.x-1.
13063 - Upgrade Tor to 0.2.4.23-2~d70.wheezy+1 (fixes CVE-2014-5117).
13064 - Upgrade I2P to 0.9.14.1-1~deb7u+1.
13065 - Upgrade Linux to 3.14.15-2 (fixes CVE-2014-3534, CVE-2014-4667
13066 and CVE-2014-4943).
13067 - Upgrade CUPS-based packages to 1.5.3-5+deb7u4 (fixes
13068 CVE-2014-3537, CVE-2014-5029, CVE-2014-5030 and CVE-2014-5031).
13069 - Upgrade libnss3 to 2:3.14.5-1+deb7u1 (fixes CVE-2013-1741,
13070 CVE-2013-5606, CVE-2014-1491 and CVE-2014-1492).
13071 - Upgrade openssl to 1.0.1e-2+deb7u12 (fixes CVE-2014-3505,
13072 CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509,
13073 CVE-2014-3510, CVE-2014-3511, CVE-2014-3512 and CVE-2014-5139).
13074 - Upgrade krb5-based packages to 1.10.1+dfsg-5+deb7u2 (fixes
13075 CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-4344 and
13077 - Upgrade libav-based packages to 6:0.8.15-1 (fixes CVE-2011-3934,
13078 CVE-2011-3935, CVE-2011-3946, CVE-2013-0848, CVE-2013-0851,
13079 CVE-2013-0852, CVE-2013-0860, CVE-2013-0868, CVE-2013-3672,
13080 CVE-2013-3674 and CVE-2014-2263.
13081 - Upgrade libgpgme11 to 1.2.0-1.4+deb7u1 (fixes CVE-2014-5117).
13082 - Upgrade python-imaging to 1.1.7-4+deb7u1 (fixes CVE-2014-3589).
13083 - Prevent dhclient from sending the hostname over the network
13085 - Override the hostname provided by the DHCP server (Closes: #7769).
13086 - Add an I2P boot parameter. Without adding "i2p" to the kernel
13087 command line, I2P will not be accessible for the Live user.
13088 - Stricter I2P firewall rules:
13089 * deny I2P from accessing the LAN
13090 * deny I2P from accessing the loopback device, except for select
13091 whitelisted services
13092 * allow I2P access to the Internet
13093 The ACCEPT rules will only be enabled when the string 'i2p' is
13094 passed at the boot prompt. The rules which DENY or REJECT
13095 access for the 'i2psvc' user will always be applied.
13096 - Disable I2P plugins, since it doesn't make much sense without
13097 persistence, and should eliminate some attack vectors.
13098 - Disable I2P's BOB port. No maintained I2P application uses it.
13101 - Fix condition clause in tails-security-check (Closes: #7657).
13102 - Don't ship OpenJDK 6: I2P prefers v7, and we don't need both.
13103 - Prevent Tails Installer from updating the system partition
13104 properties on MBR partitions (Closes: #7716).
13106 * Minor improvements
13107 - Upgrade to Torbutton 1.6.12.1.
13108 - Install gnome-user-guide (Closes: #7618).
13109 - Install cups-pk-helper (Closes: #7636).
13110 - Update the SquashFS sort file.
13111 - Compress the SquashFS more aggressively (Closes: #7706).
13112 - I2P: Keep POP3 email on server. The default in the I2P webmail
13113 app was to keep mail on the server, but that setting was changed
13114 recently. This configuration setting (susimail.config) will only
13115 be copied over in I2P 0.9.14 and newer.
13116 - Add a Close button to the Tails Installer launcher window.
13119 - Migrate Vagrant basebox to Debian Wheezy (Closes #7133, #6736).
13120 - Consistently use the same Debian mirror.
13121 - Disable runtime APT proxy configuration when using APT in
13122 binary_local-hooks (Closes: #7691).
13124 * Automated test suite
13125 - Automatically test hostname leaks (Closes: #7712).
13126 - Move autotest live-config hook to be run last. This way we'll
13127 notice if some earlier live-config hook cancels all hooks by
13128 running the automated test suite since the remote shell won't be
13129 running in that case.
13130 - Test that the I2P boot parameter does what it's supposed to do
13132 - Start applications by using the GNOME Applications menu instead
13133 of the GNOME Run Dialog (Closes: #5550, #7060).
13135 -- Tails developers <tails@boum.org> Sun, 31 Aug 2014 20:49:28 +0000
13137 tails (1.1) unstable; urgency=medium
13139 * Rebase on Debian Wheezy
13140 - Upgrade literally thousands of packages.
13141 - Migrate to GNOME3 fallback mode.
13142 - Install LibreOffice instead of OpenOffice.
13143 - Remove custom LSB logging: Wheezy has fancy colored init
13146 * Major new features
13147 - UEFI boot support.
13148 - Replace the Windows XP camouflage with an experimental Windows 8
13150 - Install Linux 3.14.12-1 from Debian unstable.
13151 - Bring back VirtualBox guest modules, installed from Wheezy
13152 backports. Full functionality is only available when using the
13156 - Fix write access to boot medium via udisks (#6172).
13157 - Don't allow the desktop user to pass arguments to
13158 tails-upgrade-frontend (Closes: #7410).
13159 - Make persistent file permissions safer (Closes #7443):
13160 * Make the content of /etc/skel non-world-readable. Otherwise,
13161 such files may be copied to /home/amnesia, and in turn to the
13162 persistent volume, with unsafe permissions. That's no big deal
13163 in /home/amnesia (that is itself not world-readable), *but*
13164 the root of the persistent volume has to be world-readable.
13165 * Have activate_custom_mounts create new directories with safe
13167 * Set strict permissions on /home/amnesia (Closes: #7463).
13168 * Fix permissions on persistent directories that were created
13169 with unsafe permissions (Closes: #7458).
13170 * Fix files ownership while copying persistence (Closes: #7216).
13171 The previous instructions to copy the persistent data were
13172 creating personal files that belong to root. I don't think
13173 there is a way of preserving the original ownership using
13174 Nautilus (unless doing a "move" instead of a "copy" but that's
13175 not what we are trying to do here).
13176 - Disable FoxyProxy's proxy:// protocol handler (Closes: #7479).
13177 FoxyProxy adds the proxy:// protocol handler, which can be used
13178 to configure the proxy via an URI. A malicious web page can
13179 include (or a malicious exit node can inject) some JavaScript
13180 code to visit such an URI and disable or otherwise change
13181 Iceweasel's proxy settings. While using this to disable
13182 proxying will be dealt with safely by our firewall, this could
13183 be used to defeat stream isolation, although the user must be
13184 tricked into accepting the new proxy settings.
13185 - Upgrade the web browser to 24.7.0esr-0+tails1~bpo70+1
13186 (Firefox 24.7.0esr + Iceweasel patches + Torbrowser patches).
13187 - Upgrade to Linux 3.14.12-1 (fixes CVE-2014-4699).
13188 - Upgrade libav-based packages to 0.8.13-1 (fixes CVE-2014-4609).
13189 - Upgrade to libxml2 2.8.0+dfsg1-7+wheezy1 (fixes CVE-2014-0191).
13190 - Upgrade to dbus 1.6.8-1+deb7u3 (fixes CVE-2014-3477,
13191 CVE-2014-3532 and CVE-2014-3533).
13194 - Disable GNOME keyring's GnuPG functionality. (Closes: #7330) In
13195 feature/regular-gnupg-agent, we installed the regular GnuPG
13196 agent so that it is used instead of GNOME keyring's one. This is
13197 not enough on Wheezy, so let's disable the starting of the "gpg"
13198 component of GNOME keyring.
13199 - Make sure /etc/default/locale exists, with a sensible default
13200 value (Closes: #7333). Before Tails Greeter's PostLogin script
13201 are run, /etc/default/locale does not exist on Wheezy. Our
13202 tails-kexec initscript (and quite a few other scripts we run)
13203 depends on this file to exist. So, let's make sure it exists,
13204 with a sensible default value.
13205 - Create the tails-persistence-setup user with the same UID/GID it
13206 had on Tails/Squeeze. (Closes: #7343) Else, our various checks
13207 for safe access rights on persistence.conf fail.
13208 - Revert back to browsing the offline documentation using Iceweasel
13209 instead of Yelp (Closes: #7390, #7285).
13210 - Make the new NetworkManager configuration directory persistent,
13211 when the old one was, but disable the old one (Closes: #7338).
13212 - Before running tails-upgrade-frontend, chdir to a world-readable
13213 place (Closes: #7641). In particular, Archive::Tar::Wrapper,
13214 when called by tails-install-iuk, wants to chdir back to the
13215 original cwd after it has chdir'd elsewhere to do its job.
13217 * Minor improvements
13218 - Install seahorse-nautilus, replacing seahorse-plugins (Closes #5516).
13219 - Install hledger (custom backport, for now): our accountants need this.
13220 - Install stable Scribus instead of scribus-ng.
13221 - Install the printer driver for Epson Inkjet that use ESC/P-R.
13222 - Install the BookletImposer PDF imposition toolkit. It's tiny,
13223 and really helpful e.g. when producing booklets.
13224 - Install gtkhash and nautilus-gtkhash (Closes #6763).
13225 - Import new version of Tor Launcher:
13226 · Now based on upstream Tor Launcher 0.2.5.4.
13227 · Tor bug #11772: Proxy Type menu not set correctly
13228 · Tor bug #11699: Change &#160 to   in network-settings.dtd
13229 · Correctly handle startup paths that contain dot.
13230 - Upgrade to Torbutton 1.6.9.0.
13231 - Avoid shipping python2.6 in addition to python2.7.
13232 - Don't install Gobby 0.4 anymore. Gobby 0.5 has been available in
13233 Debian since Squeeze, now is a good time to drop the obsolete
13234 0.4 implementation.
13235 - Require a bit less free memory before checking for upgrades with
13236 Tails Upgrader. The general goal is to avoid displaying "Not
13237 enough memory available to check for upgrades" too often due to
13238 over-cautious memory requirements checked in the wrapper.
13239 - Make Tails Greeter's help window resolution-aware. Previously it
13240 used a static 800x600 which was problematic on lower resolutions,
13241 and sub-optimal on higher resolutions. Now it adapts itself
13242 according to the screen resolution.
13243 - Whisperback now sanitizes attached logs better with respect to
13244 DMI data, IPv6 addresses, and serial numbers (Closes #6797,
13246 - Integrate the new logo in Tails Installer (Closes #7095)
13247 - Also install linux-base and linux-compiler-gcc-4.8-x86 from
13248 sid. This way, we can get rid of our linux-compiler-gcc-4.8-x86
13249 3.12, and it makes things a bit more consistent.
13250 - Include the syslinux binary, and its MBR, in the ISO filesystem.
13251 This in turn allows Tails Installer to use this binary and MBR,
13252 which is critical for avoiding problems (such as #7345) on
13253 "Upgrade from ISO".
13254 - Include syslinux.exe for win32 in utils/win32/ on the ISO
13255 filesystem (Closes: #7425).
13257 * Add consistent margins in GUI.
13258 * Always reset the target drive's MBR, without asking for
13259 confirmation, after installing or upgrading.
13260 * Install the bootloader using the syslinux binary found on the
13261 target device, once the Live OS has been extracted/copied
13263 - Enable double-clicking to pick entries in the language or
13264 keyboard layout lists in Tails Greeter.
13265 - Install backport of shared-mime-info 1.3 (Closes: #7079).
13266 - Make sanity-check prompts closable in Tails Persistence Setup
13268 - Fix quick search in Tails Greeter's Other languages window
13270 - Install systemd. It is not enabled by default, but having it
13271 around will help doing the migration work.
13272 - Enable AppArmor on the kernel command-line. This is a no-op
13273 without the userspace tools and with no profile shipped, but it
13274 will make it easier to fix this part of the situation.
13277 - Bump Vagrant builder's memory for RAM builds. Wheezy requires
13278 more space to build, and the resulting image is larger.
13279 - Fix Vagrant compatibility issue. Some classes' methods/fields
13280 have been renamed between Vagrant versions, so we need a simple
13281 compatibility layer to support all versions. Without this, it's
13282 not possible to issue e.g. a `build` command to an already
13283 running (i.e. `vm:up`:ed) Vagrant instance.
13284 - Move cpu and mem checks to the `build` task. Previously, when
13285 they were checked in `vm:up` *only* when issued while the VM
13286 already is up, so these checks weren't run if one issues a
13287 `build` when the VM is off. Now we'll fail earlier with a more
13288 informative error message, and it looks like a more logical home
13290 - Fix buggy memory checks for RAM building. We have to take into
13291 account which state the Vagrant VM is in for determining *where*
13292 we check if enough memory is available for a RAM build. If it's
13293 off, we check the host; if it's on we check the VM. Previously
13294 we always checked the host, which doesn't make sense when the VM
13295 is already started.
13297 * Automated test suite
13298 - Bump the tester VM's RAM by 256 MiB. There is not enough free
13299 RAM to run Tails Upgrader with just 1 GiB of RAM after the
13300 migration to Wheezy.
13301 - Always adjust OOM and memory overcommit settings. The kernel
13302 freezes seem to also happen for the amd64 kernel when filling
13304 - Add option to make Sikuli rety on FindFailed. This makes it
13305 possible to update manu images for Sikuli in just *one* test
13306 suite run, by continuously updating outdated pictures as we go.
13307 - Actually run "Upgrade from ISO" from a USB drive running the old
13308 version. That's what users do, and is buggy.
13309 - Automatically test persistent directories permissions (Closes: #7560).
13310 - Use read-write persistence when testing upgraded USB
13311 installations. Otherwise e.g. the permission fixes won't get
13312 applied, and the subsequent steps testing the permissions will
13314 - Actually check that the ISO's Tails is installed. The step
13315 "Tails is installed on USB drive $TARGET" only checks that the
13316 *running* Tails is installed on $TARGET, which obviously fails
13317 when doing an upgrade from ISO running an old Tails. That it
13318 worked for the same scenario running the current Tails is just
13320 - Use OpenJDK 7 to run our test suite (Closes #7175).
13321 - Use qemu-system-x86_64 directly, instead of kvm, for running the
13322 automated test suite (Closes: #7605).
13324 -- Tails developers <tails@boum.org> Sun, 20 Jul 2014 23:16:13 +0200
13326 tails (1.0.1) unstable; urgency=medium
13329 - Upgrade the web browser to 24.6.0esr-0+tails1~bpo60+1
13330 (Firefox 24.6.0esr + Iceweasel patches + Torbrowser patches).
13331 Also import the Tor Browser profile at commit
13332 90ba8fbaf6f23494f1a0e38d63153b3b7e65d3d3 from
13333 ttp/tor-browser-24.6.0esr-3.x-1.
13334 - Install Linux 3.14 from Debian unstable (fixes CVE-2014-3153 and
13336 - Install openssl from Squeeze LTS (fixes CVE-2014-0076,
13337 CVE-2014-0195, CVE-2014-0221, CVE-2014-3470 and CVE-2014-0224).
13338 - Install GnuTLS from Squeeze LTS (fixes CVE-2014-3466.).
13340 * Minor improvements
13341 - Add Squeeze LTS APT sources. It has been given a low pinning
13342 priority so explicit pinning must be used to actually install
13344 - Upgrade Tor to 0.2.4.22-1~d60.squeeze+1.
13345 - Upgrade I2P to 0.9.13-1~deb6u+1.
13347 -- Tails developers <tails@boum.org> Sun, 08 Jun 2014 19:14:00 +0200
13349 tails (1.0) unstable; urgency=medium
13352 - Upgrade the web browser to 24.5.0esr-0+tails1~bpo60+1
13353 (Firefox 24.5.0esr + Iceweasel patches + Torbrowser patches).
13354 - Upgrade Tor to 0.2.4.21-1+tails1~d60.squeeze+1:
13355 * Based on 0.2.4.21-1~d60.squeeze+1.
13356 * Backport the fix for Tor bug #11464. It adds client-side blacklists for
13357 all Tor directory authority keys that was vulnerable to Heartbleed.
13358 This protects clients in case attackers were able to compromise a
13359 majority of the authority signing and identity keys.
13362 - Disable inbound I2P connections. Tails already restricts incoming
13363 connections, but this change tells I2P about it.
13364 - Fix link to the system requirements documentation page in the Tails
13365 Upgrader error shown when too little RAM is available.
13367 * Minor improvements
13368 - Upgrade I2P to 0.9.12-2~deb6u+1.
13369 - Import TorBrowser profile. This was forgotten in Tails 0.23 and even
13370 though we didn't explicitly set those preferences in that release
13371 they defaulted to the same values. This future-proofs us in case the
13372 defaults would ever change.
13373 - Import new custom version of tor-launcher:
13374 * Based on upstream Tor Launcher 0.2.5.3.
13375 * Improve how Tor Launcher handles incomplete translation.
13376 (Tor bug #11483; more future-proof fix for Tails bug #6885)
13377 * Remove the bridge settings prompt. (Tor bug #11482; closes Tails
13379 * Always show bridge help button. (Tor bug #11484)
13380 - Integrate the new Tails logo into various places:
13383 * The "About Tails" dialog
13386 - Use the stable APT suite when building from the stable Git branch
13390 - Add test for the #7022 fix.
13392 -- Tails developers <tails@boum.org> Sun, 27 Apr 2014 19:34:01 +0200
13394 tails (0.23) unstable; urgency=medium
13397 - Upgrade the web browser to 24.4.0esr-0+tails1~bpo60+1
13398 (Firefox 24.4.0esr + Iceweasel patches + Torbrowser patches).
13400 * Major new features
13401 - Spoof the network interfaces' MAC address by default (Closes: #5421),
13402 as designed on https://tails.boum.org/contribute/design/MAC_address/.
13403 - Rework the way to configure how Tor connects to the network
13404 (bridges, proxy, fascist firewall): add an option to Tails Greeter,
13405 start Tor Launcher when needed (Closes: #5920, #5343).
13408 - Additional software: do not crash when persistence is disabled
13410 - Upgrade Pidgin to 2.10.9, that fixes some regressions introduced
13411 in the 2.10.8 security update (Closes: #6661).
13412 - Wait for Tor to have fully bootstrapped, plus a bit more time,
13413 before checking for upgrades (Closes: #6728) and unfixed known
13415 - Disable the Intel Management Engine Interface driver (Closes: #6460).
13416 We don't need it in Tails, it might be dangerous, and it causes bugs
13417 on various hardware such as systems that reboot when asked to shut down
13418 - Add a launcher for the Tails documentation. This makes it available
13419 in Windows Camouflage mode (Closes: #5374, #6767).
13420 - Remove the obsolete wikileaks.de account from Pidgin (Closes: #6807).
13422 * Minor improvements
13423 - Upgrade Tor to 0.2.4.21-1~d60.squeeze+1.
13424 - Upgrade obfsproxy to 0.2.6-2~~squeeze+1.
13425 - Upgrade I2P to 0.9.11-1deb6u1.
13426 - Install 64-bit kernel instead of the 686-pae one (Closes: #5456).
13427 This is a necessary first step towards UEFI boot support.
13428 - Install Monkeysign (in a not-so-functional shape yet).
13429 - Disable the autologin text consoles (Closes: #5588). This was one of
13430 the blockers before a screen saver can be installed
13431 in a meaningful way (#5684).
13432 - Don't localize the text consoles anymore: it is broken on Wheezy,
13433 the intended users can as well use loadkeys, and we now do not have
13434 to trust setupcon to be safe for being run as root by the desktop user.
13435 - Make it possible to manually start IBus.
13436 - Reintroduce the possibility to switch identities in the Tor Browser,
13437 using a filtering proxy in front of the Tor ControlPort to avoid giving
13438 full control over Tor to the desktop user (Closes: #6383).
13439 - Incremental upgrades improvements:
13440 · Drop the Tails Upgrader launcher, to limit users' confusion
13442 · Lock down sudo credentials a bit.
13443 · Hide debugging information (Closes: #6505).
13444 · Include ~/.xsession-errors in WhisperBack bug reports.
13445 This captures the Tails Upgrader errors and debugging information.
13446 · Report more precisely why an incremental upgrade cannot be done
13448 · Various user interface and phrasing improvements.
13449 - Don't install the Cookie Monster browser extension (Closes: #6790).
13450 - Add a browser bookmark pointing to Tor's Stack Exchange (Closes: #6632).
13451 - Remove the preconfigured #tor channel from the Pidgin: apparently,
13452 too many Tails users go ask Tails questions there, without making
13453 it clear that they are running Tails, hence creating a user-support
13454 nightmare (Closes: #6679).
13455 - Use (most of) Tor Browser's mozconfig (Closes: #6474).
13456 - Rebase the browser on top of iceweasel 24.3.0esr-1, to get
13457 the certificate authorities added by Debian back (Closes: #6704).
13458 - Give access to the relevant documentation pages from Tails Greeter.
13459 - Hide Tails Greeter's password mismatch warning when entry is changed.
13460 - Persistent Volume Assistant:
13461 · Take into account our installer is now called Tails Installer.
13462 · Optimize window height (Closes: #5458).
13463 · Display device paths in a more user-friendly way (Closes: #5311).
13466 - Ease updating POT and PO files at release time, and importing translations
13467 from Transifex (Closes: #6288, #6207).
13468 - Drop custom poedit backport, install it from squeeze-backports-sloppy.
13469 - Make ISO and IUK smaller (Closes: #6390, #6425):
13470 · Exclude more files from being included in the ISO.
13471 · Remove *.pyc later so that they are not recreated.
13472 · Truncate log files later so that they are not filled again.
13473 · At ISO build time, set mtime to the epoch for large files whose content
13474 generally does not change between releases. This forces rsync
13475 to compare the actual content of these files, when preparing an IUK,
13476 instead of blindly adding it to the IUK merely because the mtime
13477 has changed, while the content is the same.
13478 - Make local hooks logging consistent.
13481 - Migrate from JRuby to native Ruby + rjb.
13482 - The test suite can now be run on Debian Wheezy + backports.
13483 - Fix buggy "persistence is not enabled" step (Closes: #5465).
13484 - Use IPv6 private address as of RFC 4193 for the test suite's virtual
13485 network. Otherwise dnsmasq from Wheezy complains, as it is not capable
13486 of handling public IPv6 addresses.
13487 - Delete volumes after each scenario unless tagged @keep_volumes.
13488 - Add an anti-test to make sure the memory erasure test works fine.
13489 - A *lot* of bugfixes, simplifications and robustness improvements.
13491 -- Tails developers <tails@boum.org> Tue, 18 Mar 2014 00:58:50 +0100
13493 tails (0.22.1) unstable; urgency=medium
13496 - Upgrade the web browser to 24.3.0esr-0+tails1~bpo60+2
13497 (Firefox 24.3.0esr + Iceweasel patches + Torbrowser patches).
13498 - Upgrade NSS to 3.14.5-1~bpo60+1.
13499 - Upgrade Pidgin to 2.10.8.
13500 - Workaround browser size fingerprinting issue by using small icons
13501 in the web browser's navigation toolbar (Closes: #6377).
13502 We're actually hit by Tor#9268, and this is the best workaround gk
13503 and I were able to find when discussing this on Tor#10095.
13505 * Major new features
13506 - Check for upgrades availability using Tails Upgrader, and propose
13507 to apply an incremental upgrade whenever possible (Closes: #6014).
13508 · Run tails-update-frontend at session login time.
13509 · Have tails-security-check only report unfixed security issues.
13510 · Greatly improve the Tails Upgrader UI and strings phrasing.
13511 · Enable startup notification for Tails Upgrader.
13512 - Install Linux 3.12 (3.12.6-2) from Debian testing. Unfortunately,
13513 this breaks the memory wipe feature on some hardware (#6460), but
13514 it fixes quite a few security issues, and improves hardware support.
13515 - Update the build system to be compatible with Vagrant 1.2 and 1.3,
13516 in addition to the already supported versions (Closes: #6221).
13517 Thanks to David Isaac Wolinsky <isaac.wolinsky@gmail.com>.
13520 - Do not start IBus for languages that don't need it. This fixes
13521 the keybindings problems introduced in 0.22 (Closes: #6478).
13522 Thanks to WinterFairy.
13523 - Disable network.proxy.socks_remote_dns in the Unsafe Browser.
13524 Bugfix against 0.22 (Closes: #6479).
13525 - Fetch Tor Browser User-Agent from its own prefs, rather than from
13526 the obsolete Torbutton ones. Bugfix against 0.22 (Closes: #6477).
13527 - Upgrade Vagrant basebox to include up-to-date Debian archive keys
13528 (Closes: #6515, #6527).
13529 - Do not use a non-working proxy for downloading the Vagrant basebox
13531 - Use IE's icon in Windows camouflage mode.
13532 Bugfix against 0.22 (Closes: #6536).
13533 - Support "upgrading" a partial Tails installation (Closes: #6438)
13534 and fix missing confirmation dialog in Tails Installer (Closes: #6437).
13535 Thanks to Andres Gomez Ramirez <andres.gomez@cern.ch>.
13536 - Fix browser homepage in Spanish locales (Closes: #6612).
13538 * Minor improvements
13539 - Tor 0.2.4 is stable! Adapt APT sources accordingly.
13540 - Update Tor Browser to 24.2.0esr-1+tails1, that uses its own NSS
13541 library instead of the system one.
13542 - Update Torbutton to 1.6.5.3.
13543 - Do not start Tor Browser automatically, but notify when Tor is ready.
13544 Warn the user when they attempt to start Tor Browser before Tor is ready.
13545 - Import Tor Browser profile at
13546 3ed5d9511e783deb86835803a6f40e7d5a182a12 from ttp/tor-browser-24.2.0esr-1.
13547 - Use http.debian.net for Vagrant builds, instead of the mostly broken
13548 (and soon obsolete) cdn.debian.net.
13549 - Phrasing and UI improvements in tails-upgrade-frontend.
13550 - Style and robustness improvements in tails-security-check.
13551 - Make room for upcoming UEFI support in Tails Installer.
13553 -- Tails developers <tails@boum.org> Wed, 29 Jan 2014 15:08:13 +0100
13555 tails (0.22) unstable; urgency=medium
13559 - Upgrade to Iceweasel 24.2.0esr that fixes a few serious security issues.
13560 - Stop migrating persistence configuration and access rights. Instead,
13561 disable all persistence configuration files if the mountpoint has wrong
13562 access rights (Closes: #6413).
13563 - Upgrade to NSS 3.15.3 that fixes a few serious security issues affecting
13564 the browser, such as CVE-2013-1741, CVE-2013-5605 and CVE-2013-5606.
13566 * Major improvements
13567 - Switch to Iceweasel 24 (Closes: #6370).
13568 · Resync' (most) Iceweasel prefs with TBB 3.0-beta-1 and get rid
13569 of many obsolete or default settings.
13570 · Disable WebRTC (Closes: #6468).
13571 · Import TorBrowser profile at commit
13572 51bf06502c46ee6c1f587459e8370aef11a3422d from the tor-browser-24.2.0esr-1
13573 branch at https://git.torproject.org/tor-browser.git.
13574 - Switch to Torbutton 1.6.5 (Closes: #6371).
13575 · Prevent Torbutton from asking users to "upgrade TBB".
13576 · Use the same Tor SOCKS port as the TBB (9151) for our web browser.
13577 This should be enough to avoid being affected by Tor#8511.
13578 · Disable Torbutton 1.6's check for Tor.
13579 Unfortunately, the new check.torproject.org breaks the remote Tor
13580 check. We cannot use the local Tor check with the control port. So,
13581 the shortest and sanest path to fixing the check issue, because the
13582 remote Tor check is broken" seems to simply disable this check.
13583 Patch submitted upstream as Tor#10216.
13584 - Prepare incremental upgrades to be the next default way to upgrade Tails,
13585 on point-releases at least.
13588 - Deny X authentication only after Vidalia exits (Closes: #6389).
13589 - Disable DPMS screen blanking (Closes: #5617).
13590 - Fix checking of the persistent volume's ACL.
13591 - Sanitize more IP and MAC addresses in bug reports (Closes: #6391).
13592 - Do not fail USB upgrade when the "tmp" directory exists on the
13593 destination device.
13594 - Tails Installer: list devices with isohybrid Tails installed
13597 * Minor improvements
13598 - Create a configuration file for additional software if needed
13600 - Translations all over the place.
13601 - Enable favicons in Iceweasel.
13602 - Do not propose to make permanent NoScript exceptions.
13603 In Tails, every such thing is temporary, so better only display the menu
13604 entry that's about temporarily allowing something.
13605 - Clearer warning when deleting persistent volume (thanks to Andres Gomez
13606 Ramirez <andres.gomez@cern.ch> for the patch).
13607 - Make wording in Tails Installer more consistent.
13610 * Use IBus instead of SCIM (Closes: #5624, #6206).
13611 It makes it possible to input passwords in pinentry for at least Japanese,
13612 Chinese and Korean languages.
13613 * Add an import-translation script.
13614 This automates the importation process of completed translations
13616 * Always list optimal keyboard layout in the greeter (Closes: #5741).
13617 * Fix on-the-fly translation of the greeter in various languages
13621 * Update I2P to 0.9.8.1 (Closes: #6080, #5889).
13622 * Improve I2P configuration:
13623 - Disable IPv6 support in a nicer way.
13624 - Disable i2cp (allows java clients to communicate from outside the JVM). If
13625 this is unset an exception for port 7654 would need to be added to ferm.
13626 - Disable "in-network" updates (this is also done in the regular I2P
13628 - Disable the outproxies. Access to the Internet is already routed through
13629 Tor so these are unnecessary. If end-users have a good reason to go
13630 through one of the I2P outproxies they can turn them back on.
13631 * Add a couple of default I2P IRC channels to Pidgin.
13632 * Allow access to the local 'eepsite' through FoxyProxy.
13633 * Add firewall exceptions for the standard I2P ports.
13635 -- Tails developers <tails@boum.org> Sat, 30 Nov 2013 16:47:18 +0100
13637 tails (0.21) unstable; urgency=low
13640 - Don't grant access to the Tor control port for the desktop user
13641 (amnesia). Else, an attacker able to run arbitrary code as this user
13642 could obtain the public IP with a get_info command.
13643 · Vidalia is now run as a dedicated user.
13644 · Remove the amnesia user from the debian-tor group.
13645 · Remove the Vidalia launcher in the Applications menu.
13646 The Vidalia instance it starts is useless, since it can't connect
13647 to the Tor control port.
13648 - Don't allow the desktop user to directly change persistence settings.
13649 Else, an attacker able to run arbitrary code as this user could
13650 leverage this feature to gain persistent root access, as long as
13651 persistence is enabled.
13652 · Fully rework the persistent filesystem and files ownership
13654 · Run the Persistent Volume Assistant as a dedicated user, that is
13655 granted the relevant udisks and filesystem -level credentials.
13656 · At persistence activation time, don't trust existing persistence
13657 configuration files, migrate to the new ownership and permissions,
13658 migrate every known-safe existing settings and backup what's left.
13659 Warn the user when not all persistence settings could be migrated.
13660 · Persistent Volume Assistant uses the new ownership and permissions
13661 scheme when initializing a new persistent volume, and refuses to
13662 read persistence.conf if it, or the parent directory, hasn't the
13663 expected permissions.
13664 · Make boot medium 'system internal' for udisks with bilibop.
13665 Once Tails is based on Wheezy, this will further complete the
13666 protection (see #6172 for details).
13667 - Update Iceweasel to 17.0.10esr-0+tails2~bpo60+1.
13668 - Update Torbutton to 1.5.2-2, including a patch cherry-picked from
13669 upstream to make window resizing closer to what the design says.
13671 * Major new features
13672 - Add a persistence preset for printing settings (Closes: #5686).
13673 Reload CUPS configuration after persistence activation.
13674 - Support SD card connected through a SDIO host adapter (Closes: #6324).
13675 · Rebrand Tails USB installer to Tails installer.
13676 · Display devices brand, model and size in the Installer
13678 · Ask for confirmation before installing Tails onto a device
13680 · Add support for SDIO and MMC block devices to the Tails Installer
13681 (Closes: #5744) and the Persistent Volume Assistant (Closes: #6325).
13682 · Arm the udev watchdog when booted from SD (plugged in SDIO) too
13685 * Minor improvements
13686 - Provide a consistent path to the persistent volume mountpoint
13688 - Add a KeePassX launcher to the top GNOME panel (Closes: #6290).
13689 - Rework bug reporting workflow: point the desktop launcher to
13690 the troubleshooting page.
13691 - Make /home world-readable at build time, regardless of the Git
13692 working copy permissions. This makes the build process more robust
13693 against strict umasks.
13694 - Add signing capabilities to the tails-build script (Closes: #6267).
13695 This is in turn used to sign ISO images built by our Jenkins setup
13697 - Simplify the ikiwiki setup and make more pages translatable.
13698 - Exclude the version string in GnuPG's ASCII armored output.
13699 - Prefer stronger ciphers (AES256,AES192,AES,CAST5) when encrypting
13701 - Use the same custom Startpage search URL than the TBB.
13702 This apparently disables the new broken "family" filter.
13703 - Update AdBlock Plus patterns.
13704 - Install Linux from Debian testing.
13705 (That is, the same version that was shipped in 0.20.1.)
13708 - Look for "/tmp/.X11-unix/X${1#:}" too when detecting displays in use.
13709 - Adapt tests to match the Control Port access security fix:
13710 · Take into account that the amnesia user isn't part of the debian-tor
13712 · Run as root the checks to see if a process is running: this
13713 is required to see other users' processes.
13715 -- Tails developers <tails@boum.org> Sat, 26 Oct 2013 23:42:46 +0200
13717 tails (0.20.1) unstable; urgency=low
13719 * Major new features
13720 - Install Tor 0.2.4.17-rc-1~d60.squeeze+1 from the Tor project's repository.
13721 - Install Iceweasel 17.0.9esr with Torbrowser patches.
13722 - Install Linux kernel 3.10-3 (version 3.10.11-1) from sid.
13725 - Remount persistence devices read-only at shutdown/reboot time
13727 - Greeter: display a warning icon on admin password mismatch and on
13728 persistence unlocking failure. Thanks to Andres Gomez Ramirez
13729 <andres.gomez@cern.ch> for the fix!
13730 - Don't torsocksify Pidgin.
13731 Instead we disable Pidgin's GNOME integration to get the "Global proxy
13732 configuration", which we set to use Tor. This fixes the I2P IRC account.
13733 - Additional software: fix typo in notification.
13734 - Allow installing "Priority: standard" packages that we do not install
13735 by default: remove them late in the build process instead of assigning
13736 them a -1 APT pinning level.
13738 * Minor improvements
13739 - Update AdBlock Plus patterns.
13740 - Use more unique ISO file name when building from Jenkins.
13741 - Additional software: point to the system log on upgrade failure.
13742 - Set SOCKS5_USER and SOCKS5_PASSWORD in the connect-socks wrapper (used
13743 by Git). Else, Tor 0.2.4's IsolateSOCKSAuth and connect-proxy
13744 sometimes play together in some way that makes connect-proxy ask for
13745 a password to connect to the SocksPort. SOCKS5_USER and
13746 SOCKS5_PASSWORD are passed through unchanged if they were manually set
13747 by the user already.
13748 - Use our custom connect-socks wrapper for SSH. Else, Tor 0.2.4's
13749 IsolateSOCKSAuth and connect-proxy sometimes play together in some way
13750 that makes connect-proxy ask for a password to connect to the
13751 SocksPort. Note that connect-socks uses the default SocksPort too, so
13752 no change here wrt. our connection isolation design.
13755 - Import new translations from Transifex.
13758 - Fix old ISO checking for consistent error reporting.
13759 - Remove custom persistence test from manual test suite.
13760 It was removed for the GUI in t-p-s 0.33.
13762 -- Tails developers <tails@boum.org> Sun, 15 Sep 2013 15:49:36 +0200
13764 tails (0.20) unstable; urgency=low
13766 * Major new features
13767 - Install Linux kernel 3.10.3-1 from Debian unstable.
13768 - Iceweasel 17.0.8esr + Torbrowser patches.
13771 - Prevent Iceweasel from displaying a warning when leaving HTTPS web sites.
13772 - Make Iceweasel use the correct, localized search engine.
13773 - Fix Git access to https:// repositories.
13775 * Minor improvements
13776 - Install Dasher, a predictive text entry tool.
13777 - Add a wrapper around TrueCrypt which displays a warning about it soon
13778 being deprecated in Tails.
13779 - Remove Pidgin libraries for all protocols but IRC and Jabber/XMPP.
13780 Many of the other protocols Pidgin support are broken in Tails and
13781 haven't got any security auditting.
13782 - Disable the pre-defined Pidgin accounts so they do not auto-connect
13784 - Include information about Alsa in WhisperBack reports.
13785 - Explicitly restrict access to ptrace. While this setting was enabled
13786 by default in Debian's Linux 3.9.6-1, it will later disabled in 3.9.7-1.
13787 It's unclear what will happen next, so let's explicitly enable it ourselves.
13788 - Do not display dialog when a message is sent in Claws Mail.
13789 - Sync iceweasel preferences with the Torbrowser's.
13792 - Many translation updates all over the place.
13793 - Merge all Tails-related POT files into one, and make use of intltoolize
13794 for better integration with Transifex.
13796 -- Tails developers <tails@boum.org> Tue, 30 Jul 2013 14:19:57 +0200
13798 tails (0.19) unstable; urgency=low
13800 * Major new features
13801 - Install Linux kernel 3.9.5-1 from Debian unstable.
13802 Features of particular interest for Tails are the Yama LSM
13803 (ptrace scope restrictions) and improved hardware support.
13804 As a corollary, install initramfs-tools from there too.
13805 - Iceweasel 17.0.7esr + Torbrowser patches.
13806 - Unblock Bluetooth, Wi-Fi, WWAN and WiMAX; block every other type of
13807 wireless device. Next steps are described on the
13808 todo/protect_against_external_bus_memory_forensics ticket.
13811 - Fix write access to boot medium at the block device level,
13812 by installing bilibop-udev. Thanks to quidame for his support.
13813 - tails-greeter l10n-related fixes, thanks to winterfairy:
13814 · Fix so translations is applied on password mismatch messages.
13815 · Separate forward and login buttons and make them translatable.
13816 - Fix link to documentation when no sudo password is set.
13817 - gpgApplet: partial fix for clipboard emptying after a wrong passphrase
13819 - Workaround aufs bug in Unsafe Browser script.
13821 * Minor improvements
13822 - Drop GNOME proxy settings: we did not find any use of it we were keen
13823 to support, other than two programs (Seahorse, Pidgin) that are now run
13825 - Format newly created persistent volumes as ext4.
13826 - GnuPG: don't connect to the keyserver specified by the key owner.
13827 This feature opens the door to a variety of subtle attacks.
13828 - GnuPG: locate keys only from local keyrings.
13829 This is probably the default, but better safe than sorry.
13830 - Install virt-what from Wheezy.
13831 The version from Squeeze does not detect at least Parallels for Mac v.8.
13832 - Upgrade live-boot and live-config to the 3.0.x final version from Wheezy.
13833 · Remove /live and /lib/live/image compatibility symlinks.
13834 · Add /live/overlay -> /lib/live/mount/overlay symlink.
13835 The live-boot changes (commit d2b2a461) brought to fix Debian bug
13836 #696495 revert some of our previous changes (commit 77dab1cb), and as
13837 a result, at the time live-persist runs, no tmpfs is mounted on
13838 /live/overlay, which breaks the aufs mount. So, let's just ensure
13839 /live/overlay points to a tmpfs.
13840 · Really disable policykit and sudo live-config hooks.
13841 ... by making it believe they've already been run.
13842 This workarounds new live-config's default behavior.
13845 - Many translation updates all over the place.
13848 - Re-enable previously disabled boot device permissions test.
13850 -- Tails developers <tails@boum.org> Wed, 26 Jun 2013 12:36:20 +0200
13852 tails (0.18) unstable; urgency=low
13855 - Support obfs3 bridges.
13856 - Automatically install a custom list of additional packages chosen by
13857 the user at the beginning of every working session, and upgrade them
13858 once a network connection is established (technology preview).
13861 - Upgrade to Iceweasel 17.0.6esr-0+tails1~bpo60+1.
13862 - Update Torbrowser patches to current maint-2.4 branch (567682b).
13863 - Isolate DOM storage to first party URI, and enable DOM storage:
13864 don't set dom.storage.enabled anymore, and set Torbutton's
13865 disable_domstorage to false.
13866 - Isolate the image cache per url bar domain.
13867 - Torbutton 1.5.2, and various prefs hacks to fix breakage:
13868 · Add .saved version of the Torbutton preferences the TBB also sets.
13869 · Set TOR_SOCKS_HOST and TOR_SOCKS_PORT.
13870 · Move some prefs (network.proxy.*, extensions.autoDisableScopes,
13871 extensions.foxyproxy.last-version) to user.js.
13872 Else, with Torbutton 1.5.x, these ones are not taken into account.
13873 · Set network.proxy.socks_version.
13874 Else we get the meaningless user_pref("network.proxy.socks_version", 9063);
13875 in prefs.js after the initial startup.
13876 · Set extensions.foxyproxy.socks_remote_dns to true.
13877 Else, it overrides the various ways we set network.proxy.socks_remote_dns,
13878 which in turn makes Torbutton think it should start in non-Tor mode.
13879 · Also pass the TOR_SOCKS_* environment variables to iceweasel when
13880 generating the profile: Torbutton behaves differently depending on
13881 these variables, so we don't want the initial profile generation to be
13882 done without them. In practice, this has no implication that we could
13883 see right now, but better safe than sorry.
13884 · Import all version overrides from the TBB prefs.
13885 Else, the User-Agent sent in the HTTP headers is fine, but real
13886 values leak with JavaScript, as demonstrated by ip-check's "Browser
13888 · Move a bunch of settings to user_pref(), that are not applied otherwise.
13889 For some, this fixes a regression in 0.18~rc1.
13890 For other, the bug was already present in Tails 0.17.2.
13891 - HTTPS Everywhere 3.2.
13892 - Update prefs to match the TBB's, fix bugs, and take advantage of the latest
13893 Torbrowser patches:
13894 · Increase pipeline randomization.
13895 · Fix @font-face handling of local() fonts.
13896 Also disable fallback font rendering.
13897 · Explicitly disable SPDY v2 and v3.
13898 · Update http pipelining prefs.
13899 - Make prefs organization closer to the TBB's:
13900 · Remove Torbutton prefs that we set at their default value.
13901 · Import Torbutton preferences from the TBB.
13902 · Organize iceweasel config files in sections the same way as the TBB.
13904 · Don't set extensions.torbutton.clear_cookies nor
13905 extensions.torbutton.saved.share_proxy_settings:
13906 we don't care about toggling anymore.
13907 · Don't set extensions.torbutton.saved.download_retention nor
13908 extensions.torbutton.saved.search_suggest:
13909 these settings are not used in Torbutton anymore.
13910 - Update unsafe browser prefs mangling accordingly.
13911 - Move network.protocol-handler.warn-external.* to user_pref().
13912 Else they're not applied.
13913 These prefs are actually ignored by Firefox these days -- the TBB
13914 design doc reads "They are set still anyway out of respect for the
13915 dead". Let's go on doing the same.
13916 - Update extensions.adblockplus.currentVersion.
13917 - Fetch xul-ext-https-everywhere (3.2-2) and xul-ext-noscript (2.6.6.1-1)
13918 from Debian unstable. They were uploaded there, and accordingly removed
13922 - Linux 3.2.41-2+deb7u2.
13923 - Fixed swapped filenames of tails-{reboot,shutdown}.desktop.
13924 Thanks to Mikko Harhanen for the patch.
13925 - Only add ClientTransportPlugin to torrc when bridge mode is enabled.
13926 This should bring back support for proxies of type other than obfsproxy.
13928 * Minor improvements
13929 - Set kernel.dmesg_restrict=1, and make /proc/<pid>/ invisible
13930 and restricted for other users. It makes it slightly harder for an attacker
13931 to gather information that may allow them to escalate privileges.
13932 - Install gnome-screenshot.
13933 - Don't disable IPv6 on all network interfaces anymore.
13934 It turns out the IPv6 leaks we wanted to fix actually don't exist.
13935 - Add a "About Tails" launcher in the System menu.
13936 - Install GNOME accessibility themes.
13937 - Use 'Getting started...' as the homepage for Tails documentation button.
13938 - Stop relying on the obsolete /live/image compatibility symlink.
13939 - Disable audio preview in Nautilus.
13940 - Wheezy was released => Squeeze is now oldstable.
13941 - Pick Tor from deb.torproject.org regardless of the release name they
13942 advertise. At some point we needed it, their APT repository still thought
13943 that stable == Squeeze.
13944 - Add Wheezy APT sources.
13945 - Install Linux and related packages from Wheezy.
13946 Debian sid just got Linux 3.8, and we don't want to switch to a new kernel
13948 - Fetch laptop-mode-tools from Wheezy.
13949 Wheezy has the version we've been installing in 0.18~rc1,
13950 while a newer one was uploaded to sid in the meantime.
13951 - Fetch a few packages from Wheezy instead of unstable.
13952 Namely: spice-vdagent, libregexp-common-perl, macchanger, service-wrapper,
13953 libservice-wrapper-java and libservice-wrapper-jni.
13954 Wheezy has the versions we've been installing for a while, so let's
13955 avoid having unstable push a newer one to us uselessly at some point.
13956 Note that at the time of this writing, the versions in sid and in Wheezy
13957 are the same, so this commit is effectively a no-op as of today: it is
13958 merely a safeguard for the future.
13961 - Many translation updates all over the place.
13964 - Make Vagrant's build-tails script support Jenkins too.
13967 - Fix Unsafe Browser test broken by hidepid.
13969 -- Tails developers <tails@boum.org> Mon, 13 May 2013 22:17:38 +0200
13971 tails (0.17.2) unstable; urgency=low
13974 - Upgrade to Iceweasel 17.0.5esr-0+tails2~bpo60+1.
13975 - Stop displaying obsolete context menu entries ("Open Tor URL" and friends).
13978 - Update Linux to 3.2.41-2
13981 - Use more reliable OpenPGP keyservers:
13982 · use the hkps pool in GnuPG (and import their SSL CA)
13983 · use hkp://pool.sks-keyservers.net in Seahorse (as it does not support
13985 - Keep udisks users (GNOME Disk Utility, tails-persistence-setup, etc.)
13986 from resetting the system partition's attributes when manipulating the
13987 partition table. To this end, backport the relevant bugfix from Wheezy
13988 into parted 2.3-5+tails1. This allowed to remove the sgdisk-based
13989 workaround in tais-persistence-setup, and to stop installing
13990 python-parted. All this is a first needed step to fix
13991 todo/make_system_disk_read-only in a future release.
13993 * Minor improvements
13994 - Disable NoScript's HTML5 media click-to-play for better user experience.
13997 - Tails USB installer: update translations for French, German, Spanish,
13998 Finnish, Greek, Italian, Latvian, Dutch, Polish and Chinese.
13999 - Tails Greeter: update translations for Farsi, Chinese, French;
14000 new translations: Finnish, Norwegian Bokmål, Galician.
14001 - tails-persistence-setup: update Farsi and Chinese translations;
14002 import new translations for Finnish and Swedish.
14003 - WhisperBack: update translations for Arabic, French, German, Greek,
14004 Spanish, Korean, Polish, Russian. New translations: Finnish, Chinese.
14007 - Add automated testing framework (Sikuli, Cucumber, libvirt -based)
14008 with a bunch of tests.
14010 -- Tails developers <amnesia@boum.org> Sun, 07 Apr 2013 12:17:26 +0200
14012 tails (0.17.1) unstable; urgency=low
14015 - Upgrade to Iceweasel 17.0.4esr-0+tails1~bpo60+1.
14018 - Update Linux to 3.2.39-2.
14019 It includes the drm and agp subsystems from Linux 3.4.29.
14020 - Don't install xserver-xorg-video-rendition backport.
14021 xserver-xorg-video-rendition has been removed from squeeze-backports
14022 due to an upstream tarball mismatch discover when merging backports
14023 into the main Debian archive, and xserver-xorg-video-all still depends
14024 on it, so we explicitly install all drivers from -all but -rendition
14025 as a (hopefully temporary) workaround.
14027 * Minor improvements
14028 - Remove Indymedia IRC account, until we ship a version of Pidgin
14029 with SASL support, that is when Tails is based on Wheezy.
14032 - Don't ship the wiki's todo and bugs on ISO images.
14034 -- Tails developers <amnesia@boum.org> Thu, 21 Mar 2013 18:54:11 +0100
14036 tails (0.17) unstable; urgency=low
14039 - Install the KeePassX password manager, with a configuration and
14040 documentation that makes it easy to persist the password database.
14043 - Upgrade to Iceweasel 17.0.3esr-1+tails1~bpo60+1.
14044 - Install xul-ext-adblock-plus from squeeze-backports.
14045 - Do not allow listing all available fonts.
14046 Set browser.display.max_font_attempts and browser.display.max_font_count
14047 to enable the Torbrowser Limit-the-number-of-fonts-per-document patch.
14048 - Set default spellchecker dictionary to English (USA),
14049 and localize it according to locale with our custom branding extension.
14050 - Disable the add-ons automatic update feature.
14051 - Make the generated profile world-readable.
14052 - Remove NoScript click-to-play confirmation.
14053 - Sync some prefs set by Torbutton, to be ready when it stops setting these.
14054 - Disable navigation timing.
14055 - Disable SPDY. It stores state and may have keepalive issues.
14056 - More aggressive iceweasel HTTP pipelining settings.
14057 - Enable WebGL (as click-to-play only).
14058 - Disable network.http.connection-retry-timeout.
14059 - Disable full path information for plugins.
14060 - Remove NoScript blocks of WebFonts.
14061 - Disable DOM storage in Torbutton.
14062 Since we don't apply the 0026-Isolate-DOM-storage-to-first-party-URI.patch
14063 Torbrowser patch yet, and still disable DOM storage, we need to tell
14064 Torbutton not to use it.
14065 - Synchronize iceweasel's general.useragent.override with TBB based on FF17.
14066 The User-Agent settings are not kept up-to-date anymore in Torbutton, so
14067 we have to keep in sync manually with TBB's settings.
14068 - Remove obsolete APT pining for Torbutton.
14069 It's not maintained in Debian anymore, so we now fetch it from our own
14071 - Fetch FoxyProxy from Debian experimental and libnspr4-0d from
14072 squeeze-backports, for compatibility with Iceweasel 17.
14073 - Rebase bookmarks file on top of the default iceweasel 17 one.
14074 - Explicitly disable AdBlock Plus "correct typos" feature.
14075 This feature connects to http://urlfixer.org/.
14076 It is disabled by default in 2.2-1, but let's be careful.
14078 * Minor improvements
14079 - Upgrade to live-boot 3.0~b11-1 and live-config 3.0.12-1.
14080 Accordingly update the 9980-permissions hook, live-persist,
14081 unsafe-browser and boot-profile.
14082 Add compatibility symlinks from /live to /lib/live, and from /live/image
14083 to /lib/live/mount/medium, to ease the transition.
14084 - Check for errors when sourcing live-boot files, e.g. to detect when
14085 they have been renamed upstream.
14086 - Don't add "quiet" to the kernel command-line ourselves.
14087 Else, it appears twice as live-build's lb_binary_syslinux adds it too.
14088 Historically, we've been adding it ourselves on top of that because
14089 lb_binary_yaboot does not add it, but since we gave up the PowerPC support
14090 attempt, we're now only interested in syslinux, so let's make it easier
14091 for the general case, e.g. when one wants to remove the "quiet" parameter
14092 as suggested by our "Tails does not start" debugging documentation.
14093 - Upgrade I2P to 0.9.4.
14096 - Many bugfixes brought by the Debian Squeeze 6.0.7 point-release.
14097 - Use the regular GnuPG agent + pinentry-gtk2 instead of Seahorse
14098 as a GnuPG agent. This fixes usage of OpenPGP in Claws Mail,
14099 and brings support for OpenPGP smartcards.
14100 - Enable I2P hidden mode.
14101 Else, killing I2P ungracefully is bad for the I2P network.
14102 - live-persist: move error() function before the first potential usecase.
14103 - Add missing executable bit on restart-tor and restart-vidalia.
14104 - Add shutdown and reboot launchers to the menu.
14105 This workarounds the lack of a shutdown helper applet in camouflage mode.
14106 - Remove Pidgin's MXit and Sametime support.
14107 ... at least until CVE-2013-0273, CVE-2013-0272 and CVE-2013-0271 are
14108 fixed in Debian stable. While we're at it, don't force file removal in
14109 these "set -e" build scripts: fail hard, instead of silently ignoring
14110 the fact that files may have moved or disappeared.
14113 - Install recent Intel and AMD microcode from squeeze-backports,
14114 explicitly excluding the iucode-tool package that's not a good idea
14116 - Install firmware loader for Qualcomm Gobi USB chipsets.
14117 This is needed to have various mobile broadband chipsets work.
14118 - Upgrade barry to 0.18.3-5~bpo60+1.
14119 This much improved new version supports more hardware & ISP,
14120 and does not display dozens of spurious error messages at boot time.
14123 - Remove APT local cache (/Var/cache/apt/{,src}pkgcache.bin).
14125 -- Tails developers <amnesia@boum.org> Sat, 23 Feb 2013 10:37:57 +0100
14127 tails (0.16) unstable; urgency=low
14129 * Minor improvements
14130 - Replace the too-easy-to-misclick shutdown button with a better
14131 "Shutdown Helper" Gnome applet.
14132 - Display ~/Persistent in GNOME Places and GtkFileChooser if it is mounted.
14133 - Set Unsafe Browser's window title to "Unsafe Browser".
14134 - Install ekeyd to support the EntropyKey.
14135 - Install font for Sinhala.
14136 - Update Poedit to 1.5.4.
14137 - Kill Vidalia when restarting Tor.
14138 Doing this as early as possible exposes Vidalia's "broken onion" icon
14140 - Hide the persistence setup launchers in kiosk mode.
14141 - Add a shell library for Tor functions.
14142 These are shared among multiple of our scripts.
14143 - Install dictionaries for supported languages.
14144 Install hunspell dictionaries when possible,
14145 fall back on myspell ones else.
14148 - Disable IPv6 on all network interfaces.
14149 This is a workaround for the IPv6 link-local multicast leak that was recently
14150 discovered. Tails has no local service that listens on IPv6, so there should be
14151 no regression, hopefully, unless one wants to play with OnionCat and VoIP,
14152 but those of us should know how to workaround this anyway.
14153 - live-persist: Fix variable mismatch, fixing probe white-list.
14154 Tails may previously have been able to list GPT partitions labelled
14155 "TailsData" on hard drives (!) as valid persistence volumes...
14156 - live-persist: Fix --media option when no devices are attached.
14157 Earlier, if it was set to e.g. 'removable-usb' and no USB storage was
14158 connected, $whitelistdev would be empty, which is interpreted like
14159 all devices are ok by the rest of the code.
14160 - Fix SCIM in the autostarted web browser: save IM environment variables
14161 to a file during Desktop session startup, and export them into the
14162 autostarted browser's environment.
14163 - Talk of DVD, not of CD, in the shutdown messages.
14164 - Make tordate work in bridge mode with an incorrect clock.
14165 When using a bridge Tor reports TLS cert lifetime errors (e.g. when
14166 the system clock is way off) with severity "info", but when no bridge
14167 is used the severity is "warn". tordate/20-time.sh depends on grepping
14168 these error messages, so we termporarily increase Tor's logging
14169 severity when using bridge mode. If we don't do this tordate will
14170 sleep forever, leaving Tor in a non-working state.
14171 · White-list root to use Tor's ControlPort.
14172 · Add logging for is_clock_way_off().
14173 · Remove Tor's log before time syncing.
14174 We depend on grepping stuff from the Tor log (especially for
14175 tordate/20-time.sh), so deleting it seems like a Good Thing(TM).
14176 · Stop Tor before messing with its log or data dir.
14177 - live-persist: limit searched devices the same way as live-boot.
14178 If no --media argument is specified, use live-boot's
14179 "(live-media|bootfrom)=removable(|-usb)" argument to limit devices
14180 searched for a persistent volume.
14181 - tails-greeter: do not pass media=removable to live-persist.
14182 Now that we have autodetection with kernel command-line,
14183 it should not be needed anymore.
14184 - Start memlockd after configuring it,
14185 instead of starting it before and restarting it after.
14186 This avoids running memlockd twice, and prevents other possibly
14187 surprising race-conditions.
14188 As a consequence, also have tails-sdmem-on-media-removal start after the
14189 memlockd service *and* tails-reconfigure-memlockd: to start the watchdog,
14190 we need memlockd to be properly configured *and* running.
14193 - Set iceweasel homepage to the news section on the Tails website.
14194 ... using the localized one when possible.
14195 - Hide the iceweasel add-on bar by default.
14196 Now that we don't want to ship the Monkeysphere addon anymore,
14197 that was the only one displayed in there, we can as well hide the whole bar.
14198 - Don't hide the AdBlock-Plus button in the add-on bar anymore. Now that
14199 we hide the whole addon bar, we can get rid of this old
14201 - Do not install a placeholder (fake) FireGPG iceweasel extension anymore.
14202 It was shipped from 0.10 (early 2012) to 0.15 (late November),
14203 so the migration period should be over now.
14204 - Don't install xul-ext-monkeysphere anymore.
14205 The implication of the current keyserver policy are not well
14206 understood, Monkeysphere is little used in Tails, and we're not sure
14207 anymore it would be our first bet for the web browser profile with no
14208 CA. Let's keep the various configuration bits (e.g. FoxyProxy,
14209 patching MSVA), though, so that advanced users who are used to have
14210 Monkeysphere in Tails just have to install the package.
14213 - Install the "standard" task with tasksel for better consistency in the
14214 Tails ISO images built in various environments.
14215 - Install p7zip-full. It's a dep by file-roller, but we explicily use it
14216 elsewhere, and it's better to be safe than sorry.
14217 - Remove pinning of libvpx0 to sid.
14218 This package is part of Squeeze, and not from testing/sid.
14219 We have been shipping the version from Squeeze for a while.
14220 - Remove config/chroot_local-packages/ from .gitignore.
14221 The documented way for "external" contributors to add custom packages
14222 is to put them in chroot_local-packages, and once we pull we import
14223 any such package into our APT repo and rewrite the
14224 history appropriately.
14225 Also, the ability to add packages in there and not see them in "git
14226 status" makes it very easy to build tainted ISO images with
14227 non-standard packages, which makes some of us fear can lead to hard to
14229 - Make it clearer what can and cannot be done in terms of local packages.
14231 -- Tails developers <amnesia@boum.org> Thu, 10 Jan 2013 12:47:42 +0100
14233 tails (0.15) unstable; urgency=low
14235 * Major new features
14236 - Persistence for browser bookmarks.
14237 - Support for obfsproxy bridges.
14239 * Minor improvements
14240 - Add the Hangul (Korean) Input Method Engine for SCIM.
14241 - Add vendor-specific dpkg origin information. This makes dpkg-vendor
14242 return correct information.
14243 - Install pcscd and libccid from squeeze-backports. This is needed to
14244 support, to some extent, some OpenPGP SmartCard readers.
14245 - Install HPIJS PPD files and the IJS driver (hpijs).
14246 This adds support for some printers, such as Xerox DocumentCenter400.
14247 - Optimize fonts display for LCD.
14248 - Update TrueCrypt to version 7.1a.
14251 - Do not use pdnsd anymore. It has been orphaned in Debian, has quite
14252 some bugs in there, and apparently Tor's DNSPort's own caching is
14254 - Remove useless iceweasel cookies exceptions. They are useless as
14255 per-session cookies are allowed.
14256 - Do not run setupcon on X. This call is only needed on the Linux
14257 console, no need to annoy the user with a weird "Press enter to
14258 activate this console" when the open a root shell in a GNOME
14260 - Allow the tails-iuk-get-target-file user to connect to the SOCKSPort
14261 dedicated for Tails-specific software.
14262 - Fix gpgApplet menu display in Windows camouflage mode.
14263 - Fix Tor reaching an inactive state if it's restarted in "bridge mode",
14264 e.g. during the time sync' process.
14267 - Update iceweasel to 10.0.11esr-1+tails1.
14268 - User profile is now generated at build time in order to support persistent
14270 - Update HTTPS Everywhere to version 3.0.4.
14271 - Update NoScript to version 2.6.
14272 - Fix bookmark to I2P router console.
14273 - Re-enable Monkeysphere extension to connect to the validation agent.
14276 - The Tails USB installer, tails-persistence-setup and tails-greeter
14277 are now translated into Bulgarian.
14278 - Update Chinese translation for tails-greeter.
14279 - Update Euskadi translation for WhisperBack.
14282 - Custom packages are now retrieved from Tails APT repository instead
14283 of bloating the Git repository.
14284 - Allow '~' in wiki filenames. This makes it possible to ship
14285 update-description files for release candidates.
14286 - Document how to create incremental update kit.
14287 - Handle release candidates when generating custom APT sources.
14288 - Remove pinning for xul-ext-adblock-plus.
14289 It is obsolete since we've added this package to our APT repository.
14291 -- Tails developers <amnesia@boum.org> Sun, 25 Nov 2012 12:59:17 +0100
14293 tails (0.14) unstable; urgency=low
14295 * Major new features
14296 - Enable Tor stream isolation; several new SocksPorts with
14297 appropriate Isolate* options have been added for different use
14298 cases (i.e. applications). All application's have been
14299 reconfigured to use these new SocksPorts, which should increase
14300 anonymity by making it more difficulte to correlate traffic from
14301 different applications or "online identities".
14302 - The web browser now has the anonymity enhancing patches from the
14303 TorBrowser applied.
14304 - gpgApplet can now handle public-key cryptography.
14305 - Install an additional, PAE-enabled kernel with NX-bit
14306 support. This kernel is auto-selected when the hardware supports
14308 * provide executable space protection, preventing certain types of
14309 buffer overflows from being exploitable.
14310 * enable more than 4 GiB of system memory.
14311 * make all processors/cores available, including their
14312 power-saving functionality.
14313 - Add a persistence preset for NetworkManager connections.
14315 * Minor improvements
14316 - On kexec reboot, make the boot quiet only if debug=wipemem was not
14318 - Update torproject.org's APT repo key.
14319 - Update the embedded Tails signing key.
14320 - Use symlinks instead of duplicating localized searchplugins.
14321 - Rewrite Tails firewall using ferm. Tails firewall was written in
14322 very unsophisticated iptables-save/restore format. As more feature
14323 creeped in, it started to be quite unreadable.
14324 - Optimize VirtualBox modules build at runtime to avoid installing the
14325 userspace utils N times.
14326 - Drop most of Vidalia's configuration. Our custom lines just caused
14327 trouble (with multiple SocksPorts) and the default works well.
14328 - Blacklist PC speaker module. On some computers, having the pcspkr
14329 module loaded means loud beeps at bootup, shutdown and when using
14330 the console. As it draws useless attention to Tails users, it is
14331 better to prevent Linux from loading it by default.
14332 - Remove all addons from the Unsafe Browser. No addons are essential
14333 for the Unsafe Browser's intent. If anything they will modify the
14334 network fingerprint compared to a normal Iceweasel install, which
14336 - Prevent some unwanted packages to be installed at all, rather than
14337 uninstalling them later. This should speed up the build a bit.
14338 - Add a symlink from /etc/live/config to /etc/live/config.d. This
14339 makes the system compatible with live-config 3.0.4-1, without
14340 breaking backward compatibility with various parts of the system
14341 that use the old path.
14342 - Do not run unecessary scripts during shutdown sequence, to make
14344 - Make live-persist deal with persistent ~/.gconf subdirs so that
14345 any options saved therein actually get persistent.
14346 - Prevent memlockd unload on shutdown, to make sure that all
14347 necessary tools for memory wiping are available when the new
14348 kernel has kexec'd.
14349 - Patch initscripts headers instead of fiddling with update-rc.d. We
14350 now let insserv figure out the correct ordering for the services
14351 during startup and shutdown, i.e. use dependency-based boot
14353 - Remove the last absolute path in our isolinux config, which makes
14354 it easier to migrate from isolinux to syslinux (just rename the
14355 directory), and hence might make it easier for 3rd party USB
14356 installers (like the Universal USB Installer) to support Tails.
14359 - Include `seq` in the ramdisk environment: it is used to wipe more
14360 memory. This fixes the long-standing bug about Tails not cleaning
14361 all memory on shutdown.
14362 - Fix Yelp crashing on internal links
14363 - Allow amnesia user to use Tor's TransPort. This firewall exception
14364 is necessary for applications that doesn't have in-built SOCKS
14365 support and cannot use torsocks. One such example is Claws Mail,
14366 which uses tsocks since torsocks makes it leak the hostname. This
14367 exception, together with Tor's automatic .onion mapping makes
14368 Claws Mail able to use hidden service mail providers again.
14369 - Force threads locking support in Python DBus binding. Without this
14370 liveusb-creator doesn't work with a PAE-enabled kernel.
14371 - Fix localized search plugins for 'es' and 'pt'
14372 - Fix live-boot's readahead, which caused an unnecessary pause
14374 - Factorize GCC wanted / available version numbers in VirtualBox
14375 modules building hook. This, incidentally, fixes a bug caused by
14376 duplication and not updating all instances.
14377 - Fix tordate vs. Tor 0.2.3.x. Since 0.2.3.x Tor doesn't download a
14378 consensus for clocks that are more than 30 days in the past or 2
14379 days in the future (see commits f4c1fa2 and 87622e4 in Tor's git
14380 repo). For such clock skews we set the time to the Tor authority's
14381 cert's valid-after date to ensure that a consensus can be
14385 - Update to version 0.2.3.24-rc-1~~squeeze+1, a new major
14386 version. It's not a stable release, but we have been assured by
14387 the Tor developers that this is the right move.
14388 - Stop setting custom value for the Tor LongLivedPorts
14389 setting. Gobby's port was upstreamed in Tor 0.2.3.x.
14392 - Update to 10.0.10esr-1+tails1, which has all the anonymity enhancing
14393 patches from the TorBrowser applied.
14394 - Install iceweasel from our own repo, http://deb.tails.boum.org.
14395 - Fix Iceweasel's file associations. No more should you be suggested
14396 to open a PDF in the GIMP.
14399 - Use curl instead of wget, and add a --proxy option passed through
14401 - Remove the --fullrequest option, we don't need it anymore.
14402 - Remove --dns-timeout option, we don't need it anymore.
14403 - Change --proxy handling to support Debian Squeeze's curl.
14404 - Clarify what happens if --proxy is not used.
14405 - Compute the median of the diffs more correctly.
14408 - Update Linux to 3.2.32-1.
14411 - Update vidalia to 0.2.20-1+tails1.
14412 - Update bundled WhisperBack package to 1.6.2:
14413 * Raise the socket library timeout to 120 seconds
14414 * Use smtplib's timeout parameter
14415 * Fix error output when calling send a 2nd time
14416 - Update liveusb-creator to 3.11.6-3.
14417 - Update i2p to 0.9.2.
14418 - Update tails-persistence-setup to 0.20-1, which should make it
14419 possible to install Tails on large (>= 32 GiB) USB drives.
14420 - Install console-setup and keyboard-configuration from unstable
14421 (required by new initramfs-tools).
14422 - Update tails-greeter to 0.7.3:
14423 * Import pt_BR translation.
14424 * Let langpanel usable during option selection stage
14425 * Print less debugging messages by default
14426 (below are changes in tails-greeter 0.7.2:)
14427 * Use correct test operators.
14428 * Generate language codes of available locales at package build
14430 * Read list of language codes from where we have saved it at
14431 package build time.
14432 * Drop tails-lang-helper, not used anymore.
14433 * Do not compile locales at login time anymore. Tails now ships
14435 - Import live-config{,-sysvinit} 3.0.8-1. live-config >= 3.0.9-1
14436 has basically nothing useful for us, and it migrates to new paths
14437 brought by live-boot 3.0~b7, which we're not ready for yet (see:
14438 todo/newer_live-boot).
14441 - Fix Tails specific Iceweasel localization for pt-BR
14442 - Add Japanese input system: scim-anthy.
14443 - whisperback is now also translated into German, Hebrew, Hungarian,
14444 Italian and Korean.
14445 - tails-persistence-setup is now also translated into Arabic.
14446 - tails-greeter is now also translated into Arabic, Hebrew, Basque,
14447 Hungarian, Italian and Chinese.
14450 - Catch more errors in during build time:
14451 - Ensure that all local hooks start with 'set -e'.
14452 - Fail hard if adduser fails in local hooks.
14453 - Fail hard if 'rm' fails in local hooks.
14454 - vagrant: Ensure we have the set of Perl packages needed by our
14456 - vagrant: Configure live-build to ship with ftp.us.debian.org.
14457 Using cdn.debian.net leads to bad interactions with Tor.
14458 - vagrant: Don't use gzip compression when building from a tag, i.e.
14460 - vagrant: Optionally use bootstrap stage cache for faster builds
14461 via the 'cache' build option.
14462 - vagrant: Make sure release builds are clean, i.e. they don't use
14463 any potentially dangerous build options.
14464 - vagrant: Disable live-build package caching. This build system is
14465 meant to use an external caching proxy, so live-build's cache just
14466 wastes RAM (for in-memory builds) or disk space.
14467 - vagrant: use aufs magic instead of copying source into tmpfs.
14468 This reduces the amount of RAM required for building Tails in.
14469 - vagrant: Allow in-memory builds when a VM with enough memory is
14472 -- Tails developers <amnesia@boum.org> Sat, 10 Nov 2012 12:34:56 +0000
14474 tails (0.13) unstable; urgency=low
14476 * Major new features
14477 - Use white-list/principle of least privelege approach for local services.
14478 Only users that need a certain local (i.e. hosted on loopback) service
14479 (according to our use cases) are granted access to it by our firewall;
14480 all other users are denied access.
14481 - Ship a first version of the incremental update system. Updates are not
14482 currently triggered automatically, but this will allow tests to be done
14485 * Minor improvements
14486 - Enable four workspaces in the Windows XP camouflage. This allows
14487 users to quickly switch to a more innocent looking workspace in case
14488 they are working on sensitive data and attract unwanted attention.
14489 The workspace switcher applet isn't there, though, since there's no
14490 such thing in Windows XP, so switching is only possible via keyboard
14492 - Ship with precompiled locales instead of generating them upon login.
14493 - Add support for wireless regulation.
14494 - Use color for Git output, not intended for machine consumption,
14495 written to the terminal.
14496 - Have ttdnsd use OpenDNS. Using Google's DNS servers was very
14497 glitchy, and rarely succeeded when it should. It can probably be
14498 attributed to Google's DNS, which is known to take issue with Tor
14500 - Upgrade WhisperBack to 1.6, with many UI improvements and new translations.
14501 - Include GDM logs and dmidecode informations in the reports.
14502 - Allow to modify language and layout in the "Advanced options" screen
14504 - GnuPG: bump cert-digest-algo to SHA512.
14505 - Update torproject.org's APT repo key.
14508 - Make Claws Mail save local/POP emails in its dot-directory. The
14509 default is to save them at ~/Mail, which isn't included in our
14510 current Claws Mail persistence preset.
14511 - Fix the System Monitor applet.
14512 - Remove broken ttdnsd from the default DNS resolution loop.
14513 - Hide the 'TailsData' partition in desktop applications.
14514 - Ship unrar-free again, so that the GNOME archive manager knows about
14516 - Ship with an empty whitelist for Noscript.
14517 - Disable FoxyProxy's advertisement on proxy error page.
14518 - Fix slow browsing experience for offline documentation.
14519 - Raise the socket timeout to 120 seconds in WhisperBack.
14520 - Enable the ikiwiki trail plugin for the locally built wiki too.
14523 - Upgrade iceweasel to 10.0.6esr-1 (Extended Support Release) and install it
14524 and its dependencies from squeeze-backports.
14527 - Upgrade Linux to 3.2.23-1.
14530 - Update tor to version 0.2.2.39.
14531 - Update Iceweasel to version 10.0.7esr-2.
14532 - Update i2p to version 0.9.1.
14535 - vagrant: Install Ikiwiki from Debian unstable. The 'mirrorlist'
14536 patches have finally been merged in upstream Ikiwiki. So instead of
14537 building Ikiwiki by hand, we can now install the package directly
14538 from Debian unstable.
14539 - Do not build the ikiwiki forum on the bundled static website copy.
14541 -- Tails developers <amnesia@boum.org> Mon, 17 Sep 2012 15:19:25 +0200
14543 tails (0.12.1) unstable; urgency=low
14545 This is a brown paper bag release to fix two major problems introduced in
14549 - Upgrade Torbutton to 1.4.6.
14550 - Upgrade AdBlock Plus to 2.1.
14551 - Update AdBlock Plus patterns.
14554 - Upgrade Linux to 3.2.21-3 (linux-image-3.2.0-3-486).
14557 - Install MAT from Debian backports, drop custom package.
14558 - Install python-pdfrw to re-add PDF support to the MAT.
14559 - Upgrade tails-greeter to 0.7.1, which fixes the race condition that
14560 broke administration password and locale settings on some systems.
14563 - Remove the Tails specific plymouth theme. The theme interfers heavily with
14564 the boot process on some hardware.
14566 -- Tails developers <amnesia@boum.org> Mon, 17 Sep 2012 13:06:03 +0200
14568 tails (0.12) unstable; urgency=low
14570 * Major new features
14571 - Add the Unsafe Web Browser, which has direct access to the Internet and
14572 can be used to login to captive portals.
14573 - The (previously experimental, now deemed stable) Windows camouflage can now
14574 be enabled via a check box in Tails greeter.
14577 - Upgrade to 0.2.2.37-1~~squeeze+1.
14580 - Upgrade iceweasel to 10.0.5esr-1 (Extended Support Release) and install it
14581 and its dependencies from squeeze-backports.
14582 - Add a bookmark for the offline Tails documentation.
14583 - Update AdBlock patterns.
14586 - Allow using larger USB drives by increasing the mkfs timeout to 10 minutes.
14587 - Tell the user what's going on when the Tails boot device cannot be found.
14590 - Upgrade Linux to 3.2.20-1 (linux-image-3.2.0-2-amd64).
14594 - Install torsocks. Note that this makes `torify' use `torsocks' instead of
14595 `tsocks'. The `tsocks' binary is dropped to avoid problems, but remaining
14596 files (the library) are kept since ttdnsd depends on them.
14597 - Fetch live-config-sysvinit from sid so that it matches live-config version.
14598 - Update virtualbox backports to 4.1.10-dfsg-1~bpo60+1.
14599 - Install pciutils (needed by virtualbox-guest-utils).
14600 - Install mousetweaks. This is needed to use the mouse accessibility settings
14601 in System -> Preferences -> Mouse -> Accessibility.
14602 - Install the "hardlink" files deduplicator.
14603 - Do not install cryptkeeper anymore. See todo/remove_cryptkeeper for reason.
14604 Users of cryptkeeper are encouraged to install cryptkeeper via `apt-get
14605 update; apt-get install --yes cryptkeeper`, open their volume and move
14606 their to Tails' built-in persistence instead, as a one-time migration.
14607 - Upgrade I2P to version 0.9.
14608 - Don't install GParted. GNOME Disk Utility has been on par with GParted
14609 since Squeeze was released.
14610 - Upgrade live-boot to 3.0~a27-1+tails2~1.gbp319fe6.
14611 - Upgrade live-config to 3.0~a39-1 and install it from Debian experimental.
14612 - Upgrade tails-greeter to 0.7.
14613 - Upgrade tails-persistence-setup to 0.17-1.
14614 - Install libyaml-libyaml-perl.
14615 - Upgrade MAT, the metadata anonymisation toolkit, 0.3.2-1~bpo60+1.
14616 - Fetch python-pdfrw from backports, drop custom package.
14618 * Internationalization
14619 - The Tails website and documentation now has a (partial) Portuguese
14623 - Tails can now be built without using a HTTP proxy.
14624 - Tails can now easily be built by using Vagrant. See the updated
14625 contribute/build page for instructions.
14628 - Remove obsolete noswap boot parameter. live-boot now handles swap on an
14630 - The squashfs.sort files generated with boot-profile should now be ok which
14631 makes the generate images boot noticeably faster on optical media. See
14632 bugs/weird_squashfs.sort_entries for more information.
14633 - Set Tails specific syslinux and plymouth themes.
14634 - Add NVidia KMS video drivers to the initrd in order to show our shiny new
14635 plymouth theme on more systems.
14637 -- Tails developers <amnesia@boum.org> Mon, 11 Jun 2012 13:37:00 +0200
14639 tails (0.11) unstable; urgency=low
14641 * Major new features
14642 - Do not grant the desktop user root credentials by default.
14643 - A graphical boot menu (tails-greeter 0.6.3) allows choosing among
14644 many languages, and setting an optional sudoer password.
14645 - Support opt-in targeted persistence
14646 · tails-persistence-setup 0.14-1
14647 · live-boot 3.0~a25-1+tails1~5.gbp48d06c
14648 · live-config 3.0~a35-1
14649 - USB installer: liveusb-creator 3.11.6-1
14652 - Install iceweasel 10.0.4esr-1 (Extended Support Release).
14653 Let's stop tracking a too fast moving target.
14654 Debian Wheezy will ship ESR versions.
14655 - Install needed dependencies from squeeze-backports.
14658 bing appeared due to our upgrading iceweasel.
14659 Removing it makes things consistent with the way they have been
14660 until now, that is: let's keep only the general search engines
14661 we've been asked to add, plus Google, and a few specialized ones.
14662 · Replace Debian-provided DuckDuckGo search plugin with the "HTML SSL"
14663 one, version 20110219. This is the non-JavaScript, SSL, POST flavour.
14665 · Install localized search engines in the correct place.
14666 No need to copy them around at boot time anymore.
14667 · Remove Scroogle. RIP.
14668 - Enable TLS false start, like the TBB does since December.
14669 - Adblock Plus: don't count and save filter hits, supress first run dialog.
14670 - Install neither the GreaseMonkey add-on, nor any GreaseMonkey script.
14671 YouTube's HTML5 opt-in program is over.
14672 HTML5 video support is now autodetected and used.
14675 - Upgrade to 0.2.17-1+tails1: drop Do-not-warn-about-Tor-version.patch,
14677 - Set SkipVersionCheck=true.
14678 Thanks to chiiph for implementing this upstream (needs Vidalia 0.2.16+).
14680 * Internationalization
14681 - Install all available iceweasel l10n packages.
14682 - Remove syslinux language choosing menu.
14683 tails-greeter allows choosing a non-English language.
14684 - Add fonts for Hebrew, Thai, Khmer, Lao and Korean languages.
14685 - Add bidi support.
14686 - Setup text console at profile time.
14687 Context: Tails runs with text console autologin on.
14688 These consoles now wait, using a "Press enter to activate this console"
14689 message, for the user. When they press enter in there, they should have chosen
14690 their preferred keyboard layout in tails-greeter by now. Then, we run setupcon.
14691 As a result, the resulting shell is properly localized, and setupcon
14692 sets the correct keyboard layout, both according to the preferences expressed by
14693 the user in tails-greeter.
14694 - Don't use localepurge, don't remove any Scribus translations anymore,
14695 don't localize environment at live-config time:
14696 tails-greeter allows us to support many, many more languages.
14699 - Linux 3.2.15-1 (linux-image-3.2.0-2-amd64).
14700 - Fix low sound level on MacBook5,2.
14701 - Disable laptop-mode-tools automatic modules. This modules set often
14702 needs some amount of hardware-specific tweaking to work properly.
14703 This makes them rather not well suited for a Live system.
14706 - Install GNOME keyring.
14707 This is needed so that NetworkManager remembers the WEP/WPA secrets
14708 for the time of a Tails session. Initialize GNOME keyring at user
14710 - Install usbutils to have the lsusb command.
14711 - Install the Traverso multitrack audio recorder and editor.
14714 - GNOME Terminal: keep 8192 scrollback lines instead of the smallish
14716 - Replaced tails-wifi initscript with laptop-mode-tools matching feature.
14717 - Disable gdomap service.
14718 - Fetch klibc-utils and libklibc from sid.
14719 The last initramfs-tools depends on these.
14720 - Set root password to "root" if debug=root is passed on the
14721 kernel cmdline. Allow setting root password on kernel cmdline via
14722 rootpw=. Looks like we implemented this feature twice.
14723 - Append a space on the kernel command line. This eases manually adding
14725 - Rename sudoers.d snippets to match naming scheme.
14726 Sudo credentials that shall be unconditionally granted to the Tails
14727 default user are named zzz_*, to make sure they are applied.
14728 - WhisperBack: also include /var/log/live-persist and
14729 /var/lib/gdm3/tails.persistence.
14730 - Add a wrapper to torify whois.
14731 - Rework the VirtualBox guest modules building hook to support
14733 - Consistently wait for nm-applet when waiting for user session to come up.
14734 Waiting for gnome-panel or notification-daemon worked worse.
14735 - Don't start the NetworkManager system service via init.
14736 Some Tails NM hooks need the user to be logged in to run properly.
14737 That's why tails-greeter starts NetworkManager at PostLogin time.
14738 - Also lock /bin/echo into memory. For some reason, kexec-load needs it.
14739 - Pidgin: don't use the OFTC hidden service anymore.
14740 It proved to be quite unreliable, being sometimes down for days.
14741 - Do not display storage volumes on Desktop, by disabling
14742 /apps/nautilus/desktop/volumes_visible GConf entry. Enabling that
14743 GConf setting avoids displaying the bind-mounted persistent
14744 directories on the Desktop, and reduces user confusion. It also is
14745 a first step towards a bigger UI change: GNOME3 does not manage the
14746 Desktop anymore, so volume icons and other Desktop icons are meant to
14747 disappear anyway. It implies we'll have to move all Desktop icons
14748 elsewhere. Let's start this move now: this will smooth the UI change
14749 Wheezy will carry for our users, by applying some of it progressively.
14752 - Don't build hybrid ISO images anymore. They boot less reliably on
14753 a variety of hardware, and are made less useful by us shipping
14754 a USB installer from now on.
14755 - Append .conf to live-config configuration filenames:
14756 live-config >3.0~a36-1 only takes into account files named *.conf
14757 in there. Accordingly update scripts that source these files.
14758 - Remove long-obsolete home-refresh script and its configuration.
14760 * Virtualization support
14761 - Support Spice and QXL: install the Spice agent from Debian sid,
14762 install xserver-xorg-video-qxl from squeeze-backports.
14764 -- Tails developers <amnesia@boum.org> Tue, 17 Apr 2012 14:54:00 +0200
14766 tails (0.10.2) unstable; urgency=low
14769 - Update to 10.0.2-1.
14770 - Disable HTTPS-Everywhere's SSL Observatory (plus first-run pop-up).
14771 - Revert "FoxyProxy: don't enclose regexps between ^ and $."
14772 Currently "http://www.i2p2.de" (and everything similar) is captured by
14773 the I2P filter, which is incorrect. It seems isMultiLine="false" does
14774 *not* make RE into ^RE$ any longer.
14775 - Remove file:// from NoScript's exception lists.
14776 This will fix the JavaScript toggles in the local copy of the documentation.
14777 - Update AdBlock patterns.
14780 - Upgrade I2P to 0.8.13.
14781 - Install libvpx0 from sid.
14782 - Fetch klibc-utils and libklibc from sid.
14783 The last initramfs-tools depends on these.
14786 - Upgrade Linux kernel to 3.2.7-1.
14787 - Install firmware-libertas.
14788 This adds support for wireless network cards with Marvell Libertas
14789 8xxx chips supported by the libertas_cs, libertas_sdio, libertas_spi,
14790 libertas_tf_usb, mwl8k and usb8xxx drivers.
14793 - Revert "Set time to middle of [valid-after, fresh-until] from consensus."
14794 This reverts commit 18d23a500b9412b4b0fbe4e38a9398eb1a3eadef.
14795 With this vmid clocks that are E minutes back in time may cause issues
14796 (temporary Tor outages) after consensus updates that happen at the
14797 (60-E):th minute or later during any hour. Full analysis:
14798 https://mailman.boum.org/pipermail/tails-dev/2012-January/000873.html
14799 - Add the default user to the vboxsf group.
14800 This will allow the user to get full access to automounted VirtualBox
14801 shared folders as they are mounted with guid vboxsf and rwx group
14804 -- Tails developers <amnesia@boum.org> Thu, 01 Mar 2012 20:26:21 +0100
14806 tails (0.10.1) unstable; urgency=low
14809 - Make Startpage the default web search engine. Scroogle does not look
14810 reliable enough these days.
14813 - Upgrade WhisperBack to 1.5.1 (update link to bug reporting documentation).
14814 - Update MAT to 0.2.2-2~bpo60+1 (fixes a critical bug in the GUI).
14817 - Upgrade Linux kernel to 3.2.1-2
14819 * Time synchronization
14820 Serious rework that should fix most, if not all, of the infamous
14821 time-sync' related bugs some Tails users have experienced recently.
14822 - Make htpdate more resilient by using three server pools, and
14823 allowing some failure ratio.
14824 - Set time from Tor's unverified-consensus if needed.
14825 - Set time to middle of [valid-after, fresh-until] from consensus.
14826 - Many robustness, performance and fingerprinting-resistance improvements.
14827 - Display time-sync' notification much earlier.
14830 - Fix access to "dumb" git:// protocol by using a connect-socks wrapper
14831 as GIT_PROXY_COMMAND.
14832 - SSH client: fix access to SSH servers on the Internet by correcting
14833 Host / ProxyCommand usage.
14834 - Pidgin: use OFTC hidden service to workaround Tor blocking.
14835 - Claws Mail: disable draft autosaving.
14836 When composing PGP encrypted email, drafts are saved back to
14837 the server in plaintext. This includes both autosaved and manually
14839 - tails-security-check-wrapper: avoid eating all memory when offline.
14841 -- Tails developers <amnesia@boum.org> Sat, 28 Jan 2012 10:00:31 +0100
14843 tails (0.10) unstable; urgency=low
14845 * Tor: upgrade to 0.2.2.35-1.
14848 - Install Iceweasel 9.0 from the Debian Mozilla team's APT repository.
14849 - Update Torbutton to 1.4.5.1-1.
14850 - Support viewing any YouTube video that is available in HTML5 format:
14851 install xul-ext-greasemonkey and the "Permanently Enable HTML5 on
14852 YouTube" GreaseMonkey script.
14853 - Stop using Polipo in Iceweasel. Its SOCKS support was fixed.
14854 - Install from Debian sid the iceweasel extensions we ship,
14855 for compatibility with FF9.
14856 - Use Scroogle (any languages) instead of Scroogle (English only) when
14857 booted in English. Many users choose English because their own
14858 language is not supported yet; let's not hide them search results in
14859 their own language.
14860 - Install Iceweasel language packs from Debian unstable:
14861 unfortunately they are not shipped on the mozilla.debian.net repository.
14862 - Install the NoScript Firefox extension; configure it the same way as
14864 - Disable third-party cookies.
14865 They can be used to track users, which is bad. Besides, this is what
14866 TBB has been doing for years.
14867 - FoxyProxy: allow direct connections to RFC1918 IPs.
14869 * Do not transparent proxy outgoing Internet connections through Tor.
14870 - Torify the SSH client using connect-proxy to all IPs but RFC1918 ones.
14871 - Torify APT using Polipo HTTP.
14872 - Torify wget in wgetrc.
14873 - Torify gobby clients using torsocks. It does not support proxies yet.
14874 - Torify tails-security-check using LWP::UserAgent's SOCKS proxy support.
14875 - Fix enabling of GNOME's HTTP proxy.
14878 - Upgrade Vidalia to 0.2.15-1+tails1.
14879 · New upstream release.
14880 · Do not warn about Tor version.
14881 - Upgrade MAT to 0.2.2-1~bpo60+1.
14882 - Upgrade VirtualBox guest software to 4.1.6-dfsg-2~bpo60+1,
14883 built against the ABI of X.Org backports.
14884 - Upgrade I2P to 0.8.11 using KillYourTV's Squeeze packages;
14885 additionally, fix its start script that was broken by the tordate merge.
14886 - Install unar (The Unarchiver) instead of the non-free unrar.
14887 - Install Nautilus Wipe instead of custom Nautilus scripts.
14890 - Upgrade Linux kernel to 3.1.6-1.
14891 - Upgrade to X.Org from squeeze-backports.
14892 - Install more, and more recent b43 firmwares.
14893 - Upgrade barry to 0.15-1.2~bpo60+1.
14895 * Internationalization
14896 - Add basic language support for Russian, Farsi and Vietnamese.
14897 - Install some Indic fonts.
14898 - Install some Russian fonts.
14899 - Add Alt+Shift shortcut to switch keyboard layout.
14902 - Support booting in "Windows XP -like camouflage mode":
14903 · Install homebrewn local .debs for a Windows XP look-alike Gnome theme.
14904 · Add the "Windows XP Bliss" desktop wallpaper.
14905 · Added a script that's sets up Gnome to look like Microsoft Windows XP.
14906 · Add Windows XP "camouflage" icons for some programs.
14907 · Make Iceweasel use the IE icon when Windows XP camouflage is enabled.
14908 · Add special launcher icons for the Windows XP theme so that they're
14910 - Decrease Florence focus zoom to 1.2.
14911 - Do not fetch APT translation files. Running apt-get update is heavy enough.
14912 - Add MSN support thanks to msn-pecan.
14913 - Add custom SSH client configuration:
14914 · Prefer strong ciphers and MACs.
14915 · Enable maximum compression level.
14916 · Explicitly disable X11 forwarding.
14917 · Connect as root by default, to prevent fingerprinting when username
14919 - Replace flawed FireGPG with a home-made GnuPG encryption applet;
14920 install a feature-stripped FireGPG that redirects users to
14921 the documentation, and don't run Seahorse applet anymore.
14922 - Enable Seahorse's GnuPG agent.
14923 - Blank screen when lid is closed, rather than shutting down the system.
14924 The shutdown "feature" has caused data losses for too many people, it seems.
14925 There are many other ways a Tails system can be shut down in a hurry
14927 - Import Tails signing key into the keyring.
14928 - Fix bug in the Pidgin nick generation that resulted in the nick
14929 "XXX_NICK_XXX" once out of twenty.
14930 - Pre-configure the #tor IRC discussion channel in Pidgin.
14931 - Fix "technology preview" of bridge support: it was broken by tordate merge.
14932 - Install dependencies of our USB installer to ease its development.
14933 - Make vidalia NM hook sleep only if Vidalia is already running.
14934 - Reintroduce the htpdate notification, telling users when it's safe
14935 to use Tor Hidden Services.
14936 - htpdate: omit -f argument to not download full pages.
14937 - htpdate: write success file even when not within {min,max}adjust.
14938 Otherwise htpdate will not "succeed" when the time diff is 0 (i.e.
14939 the clock was already correct) so the success file cannot be used
14940 as an indicator that the system time now is correct, which arguably
14941 is its most important purpose.
14944 - Name built images according to git tag.
14946 -- Tails developers <tails@boum.org> Wed, 04 Jan 2012 09:56:38 +0100
14948 tails (0.9) unstable; urgency=low
14951 - Upgrade to 0.2.2.34 (fixes CVE-2011-2768, CVE-2011-2769).
14954 - Upgrade to 3.5.16-11 (fixes CVE-2011-3647, CVE-2011-3648, CVE-2011-3650).
14955 - Upgrade FireGPG to 0.8-1+tails2: notify users that the FireGPG Text
14956 Editor is the only safe place for performing cryptographic operations,
14957 and make it impossible to do otherwise. Other ways open up several
14958 severe attacks through JavaScript (e.g. leaking plaintext when
14959 decrypting, signing messages written by the attacker).
14960 - Install Cookie Monster extension instead of CS Lite.
14961 - Always ask where to save files.
14962 - Upgrade Torbutton to 1.4.4.1-1, which includes support for the in-browser
14963 "New identity" feature.
14966 - Install MAT, the metadata anonymisation toolkit.
14967 - Upgrade TrueCrypt to 7.1.
14968 - Upgrade WhisperBack to 1.5~rc1 (leads the user by the hand if an error
14969 occurs while sending the bugreport, proposes to save it after 2 faild
14970 attempts, numerous bugfixes).
14971 - Linux: upgrade to linux-image-3.0.0-2-486 (version 3.0.0-6); fixes
14972 a great number of bugs and security issues.
14975 - Fully rework date and time setting system.
14976 - Remove the htp user firewall exception.
14977 - Saner keyboard layouts for Arabic and Russian.
14978 - Use Plymouth text-only splash screen at boot time.
14979 - Color the init scripts output.
14980 - Suppress Tor's warning about applications doing their own DNS lookups.
14981 This is totally safe due to our Tor enforcement.
14982 - Disable hdparm boot-time service.
14983 We only want hdparm so that laptop-mode-tools can use it.
14984 - Run Claws Mail using torify.
14985 It's not as good as if Claws Mail supported SOCKS proxies itself,
14986 but still better than relying on the transparent netfilter torification.
14987 - Install HPLIP and hpcups for better printing support.
14989 * Erase memory at shutdown
14990 - Run many sdmem instances at once.
14991 In hope of erasing more memory until we come up with a proper fix for
14992 [[bugs/sdmem_does_not_clear_all_memory]].
14993 - Kill gdm3 instead of using its initscript on brutal shutdown.
14994 - Use absolute path to eject for more robust memory wipe on boot medium removal.
14997 - Exclude kernel and initramfs from being put into the SquashFS.
14998 Those files are already shipped where they are needed, that is in the ISO
14999 filesystem. Adapt kexec and memlockd bits.
15000 - Do not ship the GNOME icon theme cache.
15001 - Do not ship .pyc files.
15002 - Do not ship NEWS.Debian.gz files.
15005 - Re-implement hook that modifies syslinux config to make future
15006 development easier.
15008 -- Tails developers <amnesia@boum.org> Tue, 01 Nov 2011 13:26:38 +0100
15010 tails (0.8.1) unstable; urgency=low
15013 - Update to 3.5.16-10 (fixes DSA-2313-1).
15014 - FireGPG: force crypto action results to appear in a new window, otherwise
15015 JavaScript can steal decrypted plaintext. Advice: always use FireGPG's
15016 text editor when writing text you want to encrypt. If you write it in a
15017 textbox the plaintext can be stolen through JavaScript before it is
15018 encrypted in the same way.
15019 - Update HTTPS Everywhere extension to 1.0.3-1.
15020 - Stop using the small version of the Tor check page. The small version
15021 incorrectly tells Tails users to upgrade their Torbrowser, which has
15022 confused some users.
15025 - Update Linux to 3.0.0-2 (fixes DSA-2310-1, CVE-2011-2905, CVE-2011-2909,
15026 CVE-2011-2723, CVE-2011-2699, CVE-2011-1162, CVE-2011-1161).
15027 - Update usb-modeswitch to 1.1.9-2~bpo60+1 and usb-modeswitch-data to
15028 20110805-1~bpo60+1 from Debian backports. This adds support for a few
15029 devices such as Pantech UMW190 CDMA modem.
15030 - Install libregexp-common-perl 2011041701-3 from Debian unstable. This
15031 fixes the bug: [[bugs/msva_does_not_use_configured_keyserver]].
15032 - Install hdparm so the hard drives can be spinned down in order to save
15034 - Install barry-util for better BlackBerry integration.
15035 - Debian security upgrades: OpenOffice.org (DSA-2315-1), openjdk-6
15036 (DSA-2311-1), policykit-1 (DSA-2319-1)
15038 * Protecting against memory recovery
15039 - Set more appropriate Linux VM config before wiping memory. These
15040 parameters should make the wipe process more robust and efficient.
15042 -- Tails developers <amnesia@boum.org> Sun, 16 Oct 2011 11:31:18 +0200
15044 tails (0.8) unstable; urgency=low
15046 * Rebase on the Debian Squeeze 6.0.2.1 point-release.
15049 - Update to 0.2.2.33-1.
15050 - Disabled ControlPort in favour of ControlSocket.
15051 - Add port 6523 (Gobby) to Tor's LongLivedPorts list.
15055 - Start script now depends on HTP since I2P breaks if the clock jumps or is
15056 too skewed during bootstrap.
15059 - Update to 3.5.16-9 (fixes CVE-2011-2374, CVE-2011-2376, CVE-2011-2365,
15060 CVE-2011-2373, CVE-2011-2371, CVE-2011-0083, CVE-2011-2363, CVE-2011-0085,
15061 CVE-2011-2362, CVE-2011-2982, CVE-2011-2981, CVE-2011-2378, CVE-2011-2984,
15063 - Enable HTTP pipelining (like TBB).
15064 - Update HTTPS Everywhere extension to 1.0.1-1 from Debian unstable.
15065 - Suppress FoxyProxy update prompts.
15066 - Prevent FoxyProxy from "phoning home" after a detected upgrade.
15067 - Fixed a bunch of buggy regular expressions in FoxyProxy's configuration.
15068 See [[bugs/exploitable_typo_in_url_regex?]] for details. Note that none of
15069 these issues are critical due to the transparent proxy.
15070 - Add DuckDuckGo SSL search engine.
15073 - Update to torbutton 1.4.3-1 from Debian unstable.
15074 - Don't show Torbutton status in the status bar as it's now displayed in the
15078 - More random looking nicks in pidgin.
15079 - Add IRC account on chat.wikileaks.de:9999.
15082 - Upgrade htpdate script (taken from Git 7797fe9) that allows setting wget's
15083 --dns-timeout option.
15086 - Update Linux to 3.0.0-1. -686 is now deprecated in favour of -486 and
15087 -686-pae; the world is not ready for -pae yet, so we now ship -486.
15088 - Update OpenSSL to 0.9.8o-4squeeze2 (fixes CVE-2011-1945 (revoke
15089 compromised DigiNotar certificates), CVE-2011-1945).
15090 - Update Vidalia to 0.2.14-1+tails1 custom package.
15091 - Install accessibility tools:
15092 - gnome-mag: screen magnifier
15093 - gnome-orca: text-to-speech
15094 - Replace the onBoard virtual keyboard with Florence.
15095 - Install the PiTIVi non-linear audio/video editor.
15100 * Arbitrary DNS queries
15101 - Tor can not handle all types of DNS queries, so if the Tor resolver fails
15102 we fallback to ttdnsd. This is now possible with Tor 0.2.2.x, since we
15103 fixed Tor bug #3369.
15106 - Install ipheth-utils for iPhone tethering.
15107 - Install xserver-xorg-input-vmmouse (for mouse integration with the host OS
15108 in VMWare and KVM).
15109 - Install virtualbox-ose 4.x guest packages from Debian backports.
15112 - Switch gpg to use keys.indymedia.org's hidden service, without SSL.
15113 The keys.indymedia.org SSL certificate is now self-signed. The hidden
15114 service gives a good enough way to authenticate the server and encrypts
15115 the connection, and just removes the certificates management issue.
15116 - The squashfs is now compressed using XZ which reduces the image size quite
15118 - Remove Windows autorun.bat and autorun.inf. These files did open a static
15119 copy of our website, which is not accessible any longer.
15122 - Use the Git branch instead of the Debian version into the built image's
15124 - Allow replacing efficient XZ compression with quicker gzip.
15125 - Build and install documentation into the chroot (-> filesystem.squashfs).
15126 Rationale: our static website cannot be copied to a FAT32 filesystem due
15127 to filenames being too long. This means the documentation cannot be
15128 browsed offline from outside Tails. However, our installer creates GPT
15129 hidden partitions, so the doc would not be browseable from outside Tails
15130 anyway. The only usecase we really break by doing so is browsing the
15131 documentation while running a non-Tails system, from a Tails CD.
15133 -- Tails developers <amnesia@boum.org> Thu, 09 Sep 2011 11:31:18 +0200
15135 tails (0.7.2) unstable; urgency=high
15138 - Disable Torbutton's external application launch warning.
15139 ... which advises using Tails. Tails *is* running Tails.
15140 - FoxyProxy: install from Debian instead of the older one we previously
15144 - haveged: install an official Debian backport instead of a custom backport.
15145 - unrar: install the version from Debian's non-free repository.
15146 Users report unrar-free does not work well enough.
15148 -- Tails developers <amnesia@boum.org> Sun, 12 Jun 2011 15:34:56 +0200
15150 tails (0.7.1) unstable; urgency=high
15152 * Vidalia: new 0.2.12-2+tails1 custom package.
15155 - Don't show Foxyproxy's status / icon in FF statusbar to prevent users
15156 from accidentaly / unconsciously put their anonymity at risk.
15157 - "amnesia branding" extension: bump Iceweasel compatibility to 4.0 to ease
15158 development of future releases.
15161 - Upgrade Linux kernel to Debian's 2.6.32-33: fixes tons of bugs,
15162 including the infamous missing mouse cursor one. Oh, and it closes
15163 a few security holes at well.
15164 - Install unrar-free.
15165 - Do not install pppoeconf (superseeded by NetworkManager).
15166 - Upgrade macchanger to Debian testing package to ease development of
15167 future Tails releases.
15168 - Debian security upgrades: x11-xserver-utils (DSA-2213-1), isc-dhcp
15169 (DSA-2216-1), libmodplug (DSA-2226-1), openjdk-6 (DSA-2224-1).
15171 * Protecting against memory recovery
15172 - Add Italian translation for tails-kexec. Thanks to Marco A. Calamari.
15173 - Make it clear what it may mean if the system does not power off
15175 - Use kexec's --reset-vga option that might fix display corruption issues
15178 * WhisperBack (encrypted bug reporting software)
15179 - Upgrade WhisperBack to 1.4.1:
15180 localizes the documentation wiki's URL,
15181 uses WebKit to display the bug reporting help page,
15182 now is usable on really small screens.
15183 - Extract wiki's supported languages at build time, save this
15184 information to /etc/amnesia/environment, source this file into the
15185 Live user's environment so that WhisperBack 1.4+ can make good use
15189 - Fix boot in Chinese.
15190 - Install mobile-broadband-provider-info for better 3G support.
15191 - Add back GNOME system icons to menus.
15192 - tails-security-check: avoid generating double-slashes in the Atom
15194 - Remove "vga=788" boot parameter which breaks the boot on some hardware.
15195 - Remove now useless "splash" boot parameter.
15196 - Fix a bunch of i386-isms.
15197 - Pass the noswap option to the kernel. This does not change actual Tails
15198 behaviour but prevents users from unnecessarily worrying because of
15199 the "Activating swap" boot message.
15200 - Make use of check.torproject.org's Arabic version.
15203 - Enable squeeze-backports. It is now ready and will be used soon.
15204 - Install eatmydata in the chroot.
15205 - Convert ikiwiki setup files to YAML.
15207 -- Tails developers <amnesia@boum.org> Fri, 29 Apr 2011 17:14:53 +0200
15209 tails (0.7) unstable; urgency=low
15212 - Install foomatic-filters-ppds to support more printers.
15213 - Give the default user the right to manage printers.
15216 - Deinstall unwanted packages newly pulled by recent live-build.
15218 -- Tails developers <amnesia@boum.org> Wed, 06 Apr 2011 22:58:51 +0200
15220 tails (0.7~rc2) unstable; urgency=low
15222 ** SNAPSHOT build @824f39248a08f9e190146980fb1eb0e55d483d71 **
15224 * Rebase on Debian Squeeze 6.0.1 point-release.
15226 * Vidalia: new 0.2.10-3+tails5 custom package..
15229 - Install usb-modeswitch and modemmanager to support mobile broadband
15230 devices such as 3G USB dongles. Thanks to Marco A. Calamari for the
15234 - Website relocated to https://tails.boum.org/ => adapt various places.
15235 - Configure keyboard layout accordingly to the chosen language for
15236 Italian and Portuguese.
15238 -- Tails developers <amnesia@boum.org> Fri, 25 Mar 2011 15:44:25 +0100
15240 tails (0.7~rc1) UNRELEASED; urgency=low
15242 ** SNAPSHOT build @98987f111fc097a699b526eeaef46bc75be5290a **
15244 * Rebase on Debian Squeeze.
15246 * T(A)ILS has been renamed to Tails.
15248 * Protecting against memory recovery
15249 New, safer way to wipe memory on shutdown which is now also used when
15250 the boot media is physically removed.
15253 - Update to 0.2.1.30-1.
15256 - Add HTTPS Everywhere 0.9.4 extension.
15257 - Better preserve Anonymity Set: spoof US English Browser and timezone
15258 the same way as the Tor Browser Bundle, disable favicons and picture
15260 - Install AdBlock Plus extension from Debian.
15261 - Add Tor-related bookmarks.
15262 - Support FTP, thanks to FoxyProxy.
15263 - Update AdBlock patterns.
15264 - Disable geolocation and the offline cache.
15267 - Update Vidalia to 0.2.10-3+tails4.
15268 - Install gnome-disk-utility (Palimpsest) and Seahorse plugins.
15269 - Add opt-in i2p support with Iceweasel integration through FoxyProxy.
15270 - onBoard: fix "really quits when clicking the close window icon" bug.
15271 - Optionally install TrueCrypt at boot time.
15272 - Install laptop-mode-tools for better use of battery-powered hardware.
15273 - Replace xsane with simple-scan which is part of GNOME and way easier
15275 - Upgrade WhisperBack to 1.3.1 (bugfixes, French translation).
15276 - Install scribus-ng instead of scribus. It is far less buggy in Squeeze.
15279 - Drop incoming packets by default.
15280 - Forbid queries to DNS resolvers on the LAN.
15281 - Set output policy to drop (defense-in-depth).
15284 - Install Atheros and Broadcom wireless firmwares.
15285 - Install libsane-hpaio and sane-utils, respectively needed for
15286 multi-function peripherals and some SCSI scanners.
15288 * live-boot 2.0.15-1+tails1.35f1a14
15289 - Cherry-pick our fromiso= bugfixes from upstream 3.x branch.
15292 - Many tiny user interface improvements.
15293 - More robust HTP time synchronization wrt. network failures.
15294 Also, display the logs when the clock synchronization fails.
15295 - Disable GNOME automatic media mounting and opening to protect against
15296 a class of attacks that was recently put under the spotlights.
15297 Also, this feature was breaking the "no trace is left on local
15298 storage devices unless explicitly asked" part of Tails specification.
15299 - Make configuration more similar to the Tor Browser Bundle's one.
15300 - GnuPG: default to stronger digest algorithms.
15301 - Many more or less proper hacks to get the built image size under 700MB.
15302 - Compress the initramfs using LZMA for faster boot.
15305 - Run lb build inside eatmydata fsync-less environment to greatly improve
15308 -- Tails developers <amnesia@boum.org> Fri, 11 Mar 2011 15:52:19 +0100
15310 tails (0.6.2) unstable; urgency=high
15312 * Tor: upgrade to 0.2.1.29 (fixes CVE-2011-0427).
15314 - Upgrade Linux kernel, dpkg, libc6, NSS, OpenSSL, libxml2 (fixes various
15316 - Upgrade Claws Mail to 3.7.6 (new backport).
15317 - Install Liferea, tcpdump and tcpflow.
15318 * Seahorse: use hkp:// transport as it does not support hkps://.
15319 * FireGPG: use hkps:// to connect to the configured keyserver.
15320 * Build system: take note of the Debian Live tools versions being used
15321 to make next point-release process faster.
15322 * APT: don't ship package indices.
15324 -- T(A)ILS developers <amnesia@boum.org> Wed, 19 Jan 2011 16:59:43 +0100
15326 tails (0.6.1) unstable; urgency=low
15328 * Tor: upgrade to 0.1.28 (fixes CVE-2010-1676)
15329 * Software: upgrade NSS, Xulrunner, glibc (fixes various security issues)
15330 * FireGPG: use the same keyserver as the one configured in gpg.conf.
15331 * Seahorse: use same keyserver as in gpg.conf.
15332 * HTP: display the logs when the clock synchronization fails.
15333 * Update HTP configuration: www.google.com now redirects to
15334 encrypted.google.com.
15335 * Use the light version of the "Are you using Tor?" webpage.
15336 * Update AdBlock patterns.
15338 -- T(A)ILS developers <amnesia@boum.org> Fri, 24 Dec 2010 13:28:29 +0100
15340 tails (0.6) unstable; urgency=low
15344 * New OpenPGP signing-only key. Details are on the website:
15345 https://amnesia.boum.org/GnuPG_key/
15348 - Fixed torbutton has migrated to testing, remove custom package.
15351 - Query ssl.scroogle.org instead of lists.debian.org.
15352 - Don't run when the interface that has gone up is the loopback one.
15355 - Add shortcut to securely erase free space in a partition.
15356 - The nautilus-wipe shortcut user interface is now translatable.
15359 - Really fix virtualization warning display.
15360 - More accurate APT pinning.
15361 - Disable Debian sid APT source again since a fixed live-config has
15362 migrated to Squeeze since then.
15364 * live-boot: upgrade to 2.0.8-1+tails1.13926a
15365 - Sometimes fixes the smem at shutdown bug.
15366 - Now possible to create a second partition on the USB stick T(A)ILS is
15370 - Support RT2860 wireless chipsets by installing firmware-ralink from
15372 - Install firmware-linux-nonfree from backports.
15373 - Fix b43 wireless chipsets by having b43-fwcutter extract firmwares at
15377 - Install live-build and live-helper from Squeeze.
15378 - Update SquashFS sort file.
15380 -- T(A)ILS developers <amnesia@boum.org> Wed, 20 Oct 2010 19:53:17 +0200
15382 tails (0.6~rc3) UNRELEASED; urgency=low
15384 ** SNAPSHOT build @a3ebb6c775d83d1a1448bc917a9f0995df93e44d **
15387 - Autostart Iceweasel with the GNOME session. This workarounds the
15388 "Iceweasel first page is not loaded" bug.
15391 - Upgrade htpdate script (taken from Git 7797fe9).
15394 - Disable ssh-agent auto-starting with X session: gnome-keyring is
15395 more user-friendly.
15396 - Fix virtualization warning display.
15397 - Boot profile hook: write desktop file to /etc/skel.
15400 - Convert build system to live-build 2.0.1.
15401 - APT: fetch live-build and live-helper from Debian Live snapshots.
15402 - Remove dependency on live-build functions in chroot_local-hooks.
15403 This makes the build environment more robust and less dependent on
15404 live-build internals.
15405 - Remove hand-made rcS.d/S41tails-wifi: a hook now does this.
15406 - Measure time used by the lh build command.
15407 - Fix boot profile hook.
15408 - Boot profiling: wait a bit more: the current list does not include
15411 -- T(A)ILS developers <amnesia@boum.org> Sat, 02 Oct 2010 23:06:46 +0200
15413 tails (0.6~rc2) UNRELEASED; urgency=low
15415 ** SNAPSHOT build @c0ca0760ff577a1e797cdddf0e95c5d62a986ec8 **
15418 - Refreshed AdBlock patterns (20100926).
15419 - Set network.dns.disableIPv6 to true (untested yet)
15420 - Torbutton: install patched 1.2.5-1+tails1 to fix the User-Agent bug,
15421 disable extensions.torbutton.spoof_english again.
15424 - WhisperBack: upgrade to 1.3~beta3 (main change: let the user provide
15425 optional email address and OpenPGP key).
15427 - Update haveged backport to 0.9-3~amnesia+lenny1.
15428 - Update live-boot custom packages (2.0.6-1+tails1.6797e8): fixes bugs
15429 in persistency and smem-on-shutdown.
15430 - Update custom htpdate script. Taken from commit d778a6094cb3 in our
15431 custom Git repository: fixes setting of date/time.
15434 - Bugfix: failed builds are now (hopefully) detected.
15435 - Fix permissions on files in /etc/apt/ that are preserved in the image.
15436 - Install version 2.0~a21-1 of live-build and live-helper in the image.
15437 We are too late in the release process to upgrade to current Squeeze
15438 version (2.0~a29-1).
15441 - Pidgin/OTR: disable the automatic OTR initiation and OTR requirement.
15443 -- T(A)ILS developers <amnesia@boum.org> Wed, 29 Sep 2010 19:23:17 +0200
15445 tails (0.6~1.gbpef2878) UNRELEASED; urgency=low
15447 ** SNAPSHOT build @ef28782a0bf58004397b5fd303f938cc7d11ddaa **
15450 - Use a 2.6.32 kernel: linux-image-2.6.32-bpo.5-686 (2.6.32-23~bpo50+1)
15451 from backports.org. This should support far more hardware and
15452 especially a lot of wireless adapters.
15453 - Add firmware for RTL8192 wireless adapters.
15454 - Enable power management on all wireless interfaces on boot.
15457 - Install inkscape.
15459 - Install gfshare and ssss: two complementary implementations
15460 of Shamir's Secret Sharing.
15461 - Install tor-geoipdb.
15462 - Remove dialog, mc and xterm.
15465 - Set extensions.torbutton.spoof_english to its default true value
15466 in order to workaround a security issue:
15467 https://amnesia.boum.org/security/Iceweasel_exposes_a_rare_User-Agent/
15470 - Install the Iceweasel extension.
15471 - Use a hkps:// keyserver.
15474 - Install gnupg from backports.org so that hkps:// is supported.
15475 - Use a hkps:// keyserver.
15476 - Proxy traffic via polipo.
15477 - Prefer up-to-date digests and ciphers.
15479 * Vidalia: rebased our custom package against 0.2.10.
15482 - Built images are now named like this:
15483 tails-i386-lenny-0.5-20100925.iso
15484 - Use live-helper support for isohybrid options instead of doing the
15485 conversion ourselves. The default binary image type we build is now
15487 - Remove .deb built by m-a after they have been installed.
15488 - Setup custom GConf settings at build time rather than at boot time.
15489 - Move $HOME files to /etc/skel and let adduser deal with permissions.
15490 - Convert to live-boot / live-config / live-build 2.x branches.
15491 - Replaced our custom live-initramfs with a custom live-boot package;
15492 included version is 2.0.5-1+tails2.6797e8 from our Git repository:
15493 git clone git://git.immerda.ch/tails_live-boot.git
15494 - Install live-config* from the live-snapshots Lenny repository.
15495 Rationale: live-config binary packages differ depending on the target
15496 distribution, so that using Squeeze's live-config does not produce
15497 fully-working Lenny images.
15498 - Rename custom scripts, packages lists and syslinux menu entries from
15499 the amnesia-* namespace to the tails-* one.
15502 - Use (authenticated) HTP instead of NTP.
15503 - The htpdate script that is used comes from commit 43f5f83c0 in our
15504 custom repository: git://git.immerda.ch/tails_htp.git
15505 - Start Tor and Vidalia only once HTP is done.
15508 - Fix IPv6 firewall restore file. It was previously not used at all.
15509 - Use ftp.us.debian.org instead of the buggy GeoIP-powered
15511 - Gedit: don't autocreate backup copies.
15512 - Build images with syslinux>=4.01 that has better isohybrid support.
15513 - amnesia-security-check: got rid of the dependency on File::Slurp.
15514 - Take into account the migration of backports.org to backports.debian.org.
15515 - Make GnuPG key import errors fatal on boot.
15516 - Warn the user when T(A)ILS is running inside a virtual machine.
15517 - DNS cache: forget automapped .onion:s on Tor restart.
15519 * Documentation: imported Incognito's walkthrough, converted to
15520 Markdown, started the needed adaptation work.
15522 -- T(A)ILS developers <amnesia@boum.org> Sun, 26 Sep 2010 11:06:50 +0200
15524 tails (0.5) unstable; urgency=low
15526 * The project has merged efforts with Incognito.
15527 It is now to be called "The (Amnesic) Incognito Live System".
15531 - Created the amnesia-news mailing-list.
15532 - Added a forum to the website.
15533 - Created a chatroom on IRC: #tails on irc.oftc.net
15536 - Workaround nasty NetworkManager vs. Tor bug that often
15537 prevented the system to connect to the Tor network: restart Tor and Vidalia
15538 when a network interface goes up.
15539 - onBoard now autodetects the keyboard layout... at least once some
15540 keys have been pressed.
15541 - New windows don't open in background anymore, thanks to
15542 a patched Metacity.
15543 - Memory wiping at shutdown is now lightning fast, and does not prevent
15544 the computer to halt anymore.
15545 - GNOME panel icons are right-aligned again.
15546 - Fixed permissions on APT config files.
15547 - Repaired mouse integration when running inside VirtualBox.
15550 - Torbutton: redirect to Scroogle when presented a Google captcha.
15551 - Revamped bookmarks
15552 . moved T(A)ILS own website to the personal toolbar
15553 . moved webmail links (that are expected to be more than 3 soon)
15554 to a dedicated folder.
15555 - Don't show AdBlock Plus icon in the toolbar.
15556 - Adblock Plus: updated patterns, configured to only update subscriptions
15557 once a year. Which means never, hopefully, as users do update their
15558 Live system on a regular basis, don't they?
15560 * Vidalia: rebased our custom package against 0.2.8.
15563 - Install Claws Mail from backports.org to use the X.509 CA
15564 certificates provided by Debian.
15565 - Enable PGP modules with basic configuration:
15566 . Automatically check signatures.
15567 . Use gpg-agent to manage passwords.
15568 . Display warning on start-up if GnuPG doesn't work.
15569 - Set the IO timeout to 120s (i.e. the double of the default 60s).
15572 - Automatically connect to irc.oftc.net with a randomized nickname,
15573 so as not to advertize the use of T(A)ILS; this nickname is made of:
15574 . a random firstname picked from the 2000 most registered by the U.S.
15575 social security administration in the 70s;
15576 . two random digits.
15577 Good old irc.indymedia.org is still configured - with same nickname -
15578 but is not enabled by default anymore.
15579 - Disabled MSN support, that is far too often affected by security flaws.
15581 * Build $HOME programmatically
15582 - Migrated all GConf settings, including the GNOME panel configuration,
15583 to XML files that are loaded at boot time.
15584 - Configure iceweasel profile skeleton in /etc/iceweasel.
15585 A brand new profile is setup from this skeleton once iceweasel is
15586 started after boot.
15587 . build sqlite files at build time from plain SQL.
15588 . FireGPG: hard-code current firegpg version at build time to prevent
15589 the extension to think it was just updated.
15590 . stop shipping binary NSS files. These were here only to
15591 install CaCert's certificate, that is actually shipped by Debian's
15595 - Updated Debian Live snapshots APT repository URL.
15596 - Purge all devel packages at the end of the chroot configuration.
15597 - Make sure the hook that fixes permissions runs last.
15598 - Remove unwanted Iceweasel search plugins at build time.
15601 - Added a progress bar for boot time file readahead.
15602 - Readahead more (~37MB) stuff in foreground at boot time.
15603 - Make the APT pinning persist in the Live image.
15604 - localepurge: keep locales for all supported languages,
15605 don't bother when installing new packages.
15606 - Removed syslinux help menu: these help pages are either buggy or
15607 not understandable by non-geeks.
15608 - Fixed Windows autorun.
15609 - Disable a few live-initramfs scripts to improve boot time.
15610 - Firewall: forbid any IPv6 communication with the outside.
15611 - Virtualization support: install open-vm-tools.
15612 - WhisperBack: updated to 1.2.1, add a random bug ID to the sent
15614 - Prompt for CD removal on shutdown, not for USB device.
15616 * live-initramfs: new package built from our Git (e2890a04ff) repository.
15617 - Merged upstream changes up to 1.177.2-1.
15618 - New noprompt=usb feature.
15619 - Fix buggy memory wiping and shutdown.
15620 - Really reboot when asked, rather than shutting down the system.
15623 - Upgraded to a new custom, patched package (0.93.0-0ubuntu4~amnesia1).
15624 - Added an entry in the Applications menu.
15627 - Install vim-nox with basic configuration
15629 - Install monkeysphere and msva-perl
15630 - Replaced randomsound with haveged as an additional source of entropy.
15633 - Build ralink rt2570 wifi modules.
15634 - Build rt2860 wifi modules from Squeeze. This supports the RT2860
15635 wireless adapter, found particularly in the ASUS EeePC model 901
15637 - Build broadcom-sta-source wifi modules.
15638 - Bugfix: cpufreq modules were not properly added to /etc/modules.
15639 - Use 800x600 mode on boot rather than 1024x768 for compatibility
15640 with smaller displays.
15642 -- amnesia <amnesia@boum.org> Fri, 30 Apr 2010 16:14:13 +0200
15644 amnesia (0.4.2) unstable; urgency=low
15646 New release, mainly aimed at fixing live-initramfs security issue
15647 (Debian bug #568750), with an additional set of small enhancements as
15650 * live-initramfs: new custom package built from our own live-initramfs
15651 Git repository (commit 8b96e5a6cf8abc)
15652 - based on new 1.173.1-1 upstream release
15653 - fixed live-media=removable behaviour so that filesystem images found
15654 on non-removable storage are really never used (Debian bug #568750)
15656 * Vidalia: bring back our UI customizations (0.2.7-1~lenny+amnesia1)
15658 * APT: consistently use the GeoIP-powered cdn.debian.net
15660 * Software: make room so that {alpha, future} Squeeze images fit on
15662 - only install OpenOffice.org's calc, draw, impress, math and writer
15664 - removed OpenOffice.org's English hyphenation and thesaurus
15665 - removed hunspell, wonder why it was ever added
15668 - explicitly disable persistence, better safe than sorry
15669 - removed compulsory 15s timeout, live-initramfs knows how to wait for
15670 the Live media to be ready
15672 * Build system: don't cache rootfs anymore
15674 -- amnesia <amnesia@boum.org> Sun, 07 Feb 2010 18:28:16 +0100
15676 amnesia (0.4.1) unstable; urgency=low
15678 * Brown paper bag bugfix release: have amnesia-security-check use
15679 entries publication time, rather than update time... else tagging
15680 a security issue as fixed, after releasing a new version, make this
15681 issue be announced to every user of this new, fixed version.
15683 -- amnesia <amnesia@boum.org> Sat, 06 Feb 2010 03:58:41 +0100
15685 amnesia (0.4) unstable; urgency=low
15687 * We now only build and ship "Hybrid" ISO images, which can be either
15688 burnt on CD-ROM or dd'd to a USB stick or hard disk.
15690 * l10n: we now build and ship multilingual images; initially supported
15691 (or rather wanna-be-supported) languages are: ar, zh, de, en, fr, it,
15693 - install Iceweasel's and OpenOffice.org's l10n packages for every
15695 - stop installing localized help for OpenOffice.org, we can't afford it
15696 for enough languages
15697 - when possible, Iceweasel's homepage and default search engine are localized
15698 - added Iceweasel's "any language" Scroogle SSL search engine
15699 - when the documentation icon is clicked, display the local wiki in
15700 currently used language, if available
15701 - the Nautilus wipe script is now translatable
15702 - added gnome-keyboard-applet to the Gnome panel
15705 - replaced Icedove with claws mail, in a bit rough way; see
15706 https://amnesia.boum.org/todo/replace_icedove_with_claws/ for best
15707 practices and configuration advices
15708 - virtual keyboard: install onBoard instead of kvkbd
15709 - Tor controller: install Vidalia instead of TorK
15710 - install only chosen parts of Gnome, rather than gnome-desktop-environment
15711 - do not install xdialog, which is unused and not in Squeeze
15712 - stop installing grub as it breaks Squeeze builds (see Debian bug #467620)
15713 - install live-helper from snapshots repository into the Live image
15716 - do not install the NoScript extension anymore: it is not strictly
15717 necessary but bloodily annoying
15719 * Provide WhisperBack 1.2 for anonymous, GnuPG-encrypted bug reporting.
15720 - added dependency on python-gnutls
15721 - install the SMTP hidden relay's certificate
15723 * amnesia-security-check: new program that tells users that the amnesia
15724 version they are running is affected by security flaws, and which ones
15725 they are; this program is run at Gnome session startup, after sleeping
15726 2 minutes to let Tor a chance to initialize.
15729 - uses the Desktop Notifications framework
15730 - fetches the security atom feed from the wiki
15731 - verifies the server certificate against its known CA
15732 - tries fetching the localized feed; if it fails, fetch the default
15735 * live-initramfs: new custom package built from our own live-initramfs
15736 Git repository (commit 40e957c4b89099e06421)
15737 - at shutdown time, ask the user to unplug the CD / USB stick, then run
15738 smem, wait for it to finish, then attempt to immediately halt
15741 - bumped dependency on live-helper to >= 2.0a6 and adapted our config
15742 - generate hybrid ISO images by default, when installed syslinux is
15744 - stop trying to support building several images in a row, it is still
15745 broken and less needed now that we ship hybrid ISO images
15746 - scripts/config: specify distribution when initializing defaults
15747 - updated Debian Live APT repository's signing key
15750 - disable virtualbox packages installing and module building on !i386
15751 && !amd64, as PowerPC is not a supported guest architecture
15752 - built and imported tor_0.2.1.20-1~~lenny+1_powerpc.deb
15755 - rough beginnings of a scratch Squeeze branch, currently unsupported
15756 - install gobby-infinote
15759 - updated GnuPG key with up-to-date signatures
15760 - more improvements on boot time from CD
15761 - enhanced the wipe in Nautilus UI (now asks for confirmation and
15762 reports success or failure)
15763 - removed the "restart Tor" launcher from the Gnome panel
15765 -- amnesia <amnesia@boum.org> Fri, 05 Feb 2010 22:28:04 +0100
15767 amnesia (0.3) unstable; urgency=low
15769 * software: removed openvpn, added
15775 - lvm2 (with disabled initscript as it slows-down too much the boot in certain
15777 - NetworkManager 0.7 (from backports.org) to support non-DHCP networking
15779 - randomsound to enhance the kernel's random pool
15781 - install the latest stable release from deb.torproject.org
15782 - ifupdown script now uses SIGHUP signal rather than a whole tor
15783 restart, so that in the middle of it vidalia won't start it's own
15785 - configure Gnome proxy to use Tor
15787 - adblockplus: upgraded to 1.0.2
15788 - adblockplus: subscribe to US and DE EasyList extensions, updated patterns
15789 - firegpg is now installed from Debian Squeeze rather than manually; current
15790 version is then 0.7.10
15791 - firegpg: use better keyserver ... namely pool.sks-keyservers.net
15792 - added bookmark to Amnesia's own website
15793 - use a custom "amnesiabranding" extension to localize the default search
15794 engine and homepage depending on the current locale
15795 - updated noscript whitelist
15796 - disable overriden homepage redirect on iceweasel upgrade
15798 - nicer default configuration with verified irc.indymedia.org's SSL cert
15799 - do not parse incoming messages for formatting
15800 - hide formatting toolbar
15801 * hardware compatibility
15803 - beginning of support for the ppc architecture
15804 - load acpi-cpufreq, cpufreq_ondemand and cpufreq_powersave kernel
15806 * live-initramfs: custom, updated package based on upstream's 1.157.4-1, built
15807 from commit b0a4265f9f30bad945da of amnesia's custom live-initramfs Git
15809 - securely erases RAM on shutdown using smem
15810 - fixes the noprompt bug when running from USB
15811 - disables local swap partitions usage, wrongly enabled by upstream
15812 * fully support for running as a guest system in VirtualBox
15813 - install guest utils and X11 drivers
15814 - build virtualbox-ose kernel modules at image build time
15816 - new (translatable) wiki, using ikiwiki, with integrated bugs and todo
15817 tracking system a static version of the wiki is included in generated
15818 images and linked from the Desktop
15820 - adapt for live-helper 2.0, and depend on it
15821 - get amnesia version from debian/changelog
15822 - include the full version in ISO volume name
15823 - save .list, .packages and .buildlog
15824 - scripts/clean: cleanup any created dir in binary_local-includes
15825 - updated Debian Live snapshot packages repository URL and signing key
15826 - remove duplicated apt/preferences file, the live-helper bug has been
15828 * l10n: beginning of support for --language=en
15830 - improved boot time on CD by ordering files in the squashfs in the order they
15831 are used during boot
15832 - added a amnesia-version script to built images, that outputs the current
15834 - added a amnesia-debug script that prepares a tarball with information that
15835 could be useful for developpers
15836 - updated Amnesia GnuPG key to a new 4096R one
15837 - set time with NTP when a network interface is brought up
15838 - import amnesia's GnuPG pubkey into the live session user's keyring
15839 - do not ask DHCP for a specific hostname
15840 - install localepurge, only keep en, fr, de and es locales, which reduces the
15841 generated images' size by 100MB
15842 - added a hook to replace /sbin/swapon with a script that only runs
15844 - moved networking hooks responsibility from ifupdown to NetworkManager
15846 -- amnesia <amnesia@boum.org> Thu, 26 Nov 2009 11:17:08 +0100
15848 amnesia (0.2) unstable; urgency=low
15850 * imported /home/amnesia, then:
15851 - more user-friendly shell, umask 077
15852 - updated panel, added launcher to restart Tor
15853 - mv $HOME/bin/* /usr/local/bin/
15854 - removed metacity sessions
15855 - removed gstreamer's registry, better keep this dynamically updated
15856 - rm .qt/qt_plugins_3.3rc, better keep this dynamically updated
15857 - removed .gnome/gnome-vfs/.trash_entry_cache
15858 - removed kconf_update log
15859 - removed and excluded Epiphany configuration (not installed)
15862 - enable caching in RAM
15863 - explicitly disable ssl v2, and enable ssl v3 + tls
15864 - removed prefs for the non-installed webdeveloper
15865 - removed the SSL Blacklist extension (not so useful, licensing issues)
15866 - deep profile directory cleanup
15867 - extensions cleanup: prefer Debian-packaged ones, cleanly reinstalled
15868 AddBlock Plus and CS Lite to allow upgrading them
15869 - updated pluginreg.dat and localstore.rdf
15870 - moved some settings to user.js
15871 - made cookie/JavaScript whitelists more consistent
15872 - force httpS on whitelisted sites
15873 - NoScript: marked google and gmail as untrusted
15874 - some user interface tweaks, mainly for NoScript
15875 - FireGPG: disable the buggy auto-detection feature, the link to firegpg's
15876 homepage in generated pgp messages and the GMail interface (which won't
15877 work without JavaScript anyway)
15878 - updated blocklist.xml
15879 - removed and excluded a bunch of files in the profile directory
15880 * icedove: clean the profile directory up just like we did for iceweasel
15881 * software: install msmtp and mutt
15883 - use rsync rather than tar
15886 - reviewed pidgin-otr security (see TODO)
15888 - stop calling home-refresh in lh_build
15889 - include home-refresh in generated images
15891 - fix permissions on local includes at build time
15892 - updated scripts/{build,clean} wrt. new $HOME handling
15893 - scripts/{build,config}: stop guessing BASEDIR, we must be run from
15894 the root of the source directory anyway
15895 - stop storing /etc/amnesia/version in Git, delete it at clean time
15897 - converted Changelog to the Debian format and location, updated
15898 build scripts accordingly
15899 - added a README symlink at the root of the source directory
15900 - basic debian/ directory (not working for building packages yet,
15901 but at least we can now use git-dch)
15902 - added debian/gbp.conf with our custom options for git-dch
15903 - config/amnesia: introduce new $AMNESIA_DEV_* variables to be used
15904 by developpers' scripts
15905 - added ./release script: a wrapper around git-dch, git-commit and git-tag
15907 -- amnesia <amnesia@boum.org> Tue, 23 Jun 2009 14:42:03 +0200
15909 amnesia (0.1) UNRELEASED; urgency=low
15911 * Forked Privatix 9.03.15, by Markus Mandalka:
15912 http://mandalka.name/privatix/index.html.en
15913 Everything has since been rewritten or so heavily changed that nothing
15914 remains from the original code... apart of a bunch of Gnome settings.
15915 * hardware support:
15916 - install a bunch of non-free wifi firmwares
15917 - install xsane and add the live user to the scanner group
15918 - install aircrack-ng
15919 - install xserver-xorg-video-geode on i386 (eCafe support)
15920 - install xserver-xorg-video-all
15921 - install firmware-linux from backports.org
15922 - install system-config-printer
15923 - added instructions in README.eCAFE to support the Hercules eCAFE EC-800
15926 - configure pinning to support installing chosen packages from
15927 squeeze; the APT source for testing is hardcoded in chroot_sources/,
15928 since there is no way to use $LH_CHROOT_MIRROR in chroot_local-hooks
15929 - give backports.org priority 200, so that we track upgrades of packages
15930 installed from there
15931 * release: include the Changelog and TODO in the generated images,
15932 in the /usr/share/doc/amnesia/ directory
15933 * software: install gnomebaker when building Gnome-based live OS, to
15934 easily clone myself when running from CD
15936 - build i386 images when the build host is amd64
15937 - added a version file: /etc/amnesia/version
15938 - use snapshot live-* packages inside the images
15939 - setup timezone depending on the chosen build locale
15940 - rely on standard live-initramfs adduser to do our user setup
15941 (including sudo vs. Gnome/KDE, etc.)
15942 - stop "supporting" KDE
15943 - allow building several images at once
15944 - migrated most of lh_config invocations to scripts/config
15945 - append "noprompt" so that halting/rebooting work with splashy
15946 - moved our own variables to config/amnesia, using the namespace
15949 - default search engine is now Scroogle SSL, configured to search pages
15950 in French language; the English one is also installed
15951 - never ask to save passwords or forms content
15952 - configured the torbutton extension to use polipo
15953 - installed the CACert root certificate
15954 - installed the SSL Blacklist extension and the blacklist data
15955 - installed the FireGPG extension
15956 - installed the CS Lite extension
15957 - installed the NoScript extension
15958 - NoScript, CS Lite: replaced the default whitelists with a list of
15959 trusted, non-commercial Internet Service Providers
15960 - configure extensions (add to prefs.js):
15961 user_pref("extensions.torbutton.startup", true);
15962 user_pref("extensions.torbutton.startup_state", 1);
15963 user_pref("extensions.torbutton.tor_enabled", true);
15964 user_pref("noscript.notify.hide", true);
15965 user_pref("capability.policy.maonoscript.sites", "about:
15966 about:blank about:certerror about:config about:credits
15967 about:neterror about:plugins about:privatebrowsing
15968 about:sessionrestore chrome: resource:");
15969 user_pref("extensions.firegpg.no_updates", true);
15970 - install the NoScript plugin from Debian squeeze
15971 - delete urlclassifier3.sqlite on $HOME refresh: as we disabled
15972 "safebrowsing", this huge file is of no use
15973 - torbutton: install newer version from Squeeze
15974 * linux: removed non-686 kernel flavours when building i386 images
15975 * compatibility: append "live-media=removable live-media-timeout=15", to
15976 prevent blindly booting another debian-live installed on the hard disk
15978 - gnome-app-install
15980 - cryptkeeper: Gnome system tray applet to encrypt files with EncFS
15981 - kvkbd: virtual keyboard (installed from backports.org)
15982 - sshfs (and added live user to the fuse group)
15983 - less, secure-delete, wipe, seahorse, sshfs, ntfs-3g
15986 - enable the transparent proxy, the DNS resolver, and the control port
15987 - save authentication cookie to /tmp/control_auth_cookie, so that the
15988 live user can use Tork and co.
15989 - autostart Tork with Gnome
15990 - Tork: installed, disabled most notifications and startup tips
15991 - added a restart tor hook to if-up.d (used by Network Manager as well),
15992 so that Tor does work immediately even if the network cable was
15993 plugged late in/after the boot process
15995 - added a nautilus-script to wipe files and directories
15996 - bash with working completion for the live user
15997 * polipo: install and configure this HTTP proxy to forward requests
15999 * DNS: install and configure pdnsd to forward any DNS request through
16001 * firewall: force every outgoing TCP connection through the Tor
16002 transparent proxy, discard any outgoing UDP connection
16004 - set syslinux timeout to 4 seconds
16005 - use splashy for more user-friendly boot/halt sequences
16007 -- amnesia <amnesia@boum.org> Sat, 20 Jun 2009 21:09:15 +0200