Version 1.7.12 of Mandos is released
Teddy Hogeborn
teddy at recompile.se
Wed Oct 5 22:56:23 CEST 2016
Mandos 1.7.12 is released. It is client bug fix release.
What bug fix? The client, for some people, on some architectures,
crashed after successfully getting and supplying the password, after
exit() was called, when the --dh-parameters option was used. Since the
client crashed and did not exit successfully, the password would be
ignored by the plugin-runner(8mandos). Since the --dh-parameters option
is by default used by the Debian package in the initramfs environment,
but is not necessary, and is not used in the example test command in
/usr/share/doc/mandos-client/README.Debian.gz, the client would appear
to work fine in the normal system (when running the test command) but
not in the initramfs (when the --dh-parameters option is used). Also,
this crash would only manifest for some people on certain
architectures.
What caused the crash? It was the LeakSanitizer (used since 1.7.2)
which caught a memory leak in the --dh-parameters code (present since
1.7.0), but when debugging info is not present in the compiled binary,
LeakSanitizer for some reason crashes when doing its cleanup instead of
reporting the memory leak. The bug fix is to simply fix the memory
leak.
Version 1.7.12 (2016-10-05)
* Client
** Bug fix: Don't crash after exit() when using DH parameters file
There were no Debian package changes from 1.7.11.
/Teddy Hogeborn & Björn Påhlsson
--
The Mandos Project
https://www.recompile.se/mandos
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 818 bytes
Desc: not available
URL: <http://mail.recompile.se/pipermail/mandos-dev/attachments/20161005/6b5f2408/attachment.sig>
More information about the Mandos-Dev
mailing list