Debian Package Tracker
Register | Log in
Subscribe

libtoxcore

Choose email to subscribe with

general
  • source: libtoxcore (main)
  • version: 0.2.13-1
  • maintainer: Yangfl (DMD)
  • arch: any
  • std-ver: 4.6.0
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • oldstable: 0.2.9-1
  • stable: 0.2.12-1
  • testing: 0.2.13-1
  • unstable: 0.2.13-1
versioned links
  • 0.2.9-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.2.12-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 0.2.13-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • libtoxcore-dev
  • libtoxcore2
  • toxcore-utils
action needed
A new upstream version is available: 0.2.18 high
A new upstream version 0.2.18 is available, you should consider packaging it.
Created: 2022-02-09 Last update: 2022-05-28 22:07
50 new commits since last upload, is it time to release? normal
vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:
commit 48d7597a3eea55af353d58f4a301be04f7681474
Author: yangfl <yangfl@users.noreply.github.com>
Date:   Tue Dec 21 15:42:01 2021 +0800

    debian: update to 0.2.13

commit 43000bddc4819ab7ed3b737d4eab1882528eaabb
Merge: b095256 4348b96
Author: yangfl <yangfl@users.noreply.github.com>
Date:   Tue Dec 21 15:38:16 2021 +0800

    Merge tag 'v0.2.13'
    
    v0.2.13
    **Merged PRs:**
    
    - [#1725] cleanup: add some missing null checks
    - [#1723] chore: Run infer static analyser on circle ci builds.
    - [#1718] fix: Sec/fix crypto size compute
    - [#1716] chore: Use toktok-stack docker image with built third_party.
    - [#1713] test: Add some unit tests for important internal DHT functions.
    - [#1708] perf: reduce calling into Mono_Time in DHT
    - [#1706] chore: Enable cimple tests on cirrus build.
    - [#1705] fix: issue with save_load autotest
    - [#1703] chore: Upgrade to toktok-stack:0.0.11.
    - [#1699] fix: some friend connection issues
    - [#1698] fix: bug causing API to report wrong self connection status
    - [#1693] chore: Update IRC info
    - [#1691] chore: Fix Appveyor and add workarounds for Cirrus CI
    - [#1686] chore: Enable c-toxcore conan packaging
    - [#1684] cleanup: Update INSTALL.md instructions
    - [#1679] cleanup: Trivial cleanup
    - [#1674] cleanup: filetransfer code
    - [#1672] docs: Add instructions for building unit tests to INSTALL.md
    - [#1667] chore: Update tox-bootstrapd checksum due to newer packages in Alpine
    - [#1664] cleanup: use heap memory instead of stack for large variables
    - [#1663] fix: Fix file tests on windows
    - [#1633] fix: AppVeyor failing due to conan remote being added twice
    - [#1602] fix: Fix buffer over-read when a peer leaves a conference
    - [#1586] test: Fix tcp_relay_test by adding a second bootstrap node.
    - [#1580] style: Format comments according to tokstyle's requirements.
    - [#1557] chore: Add conan support
    - [#1537] chore: Cygwin build
    - [#1516] cleanup: Make pylint and mypy happy with bootstrap_node_info.py.
    - [#1515] style: Run restyled on Travis and Circle CI scripts.
    - [#1514] refactor: Remove multi-declarators entirely.
    - [#1513] refactor: Disallow multiple initialised declarators per decl.
    - [#1510] chore: Don't build pushes to branches, only to tags.
    - [#1504] chore: Remove release-drafter configuration in favour of global one.
    - [#1498] refactor: Limit scope of loop iterators.
    - [#1497] refactor: Use bash arrays instead of strings for static analysis scripts.
    - [#1496] cleanup: Stop hard-coding packet IDs in tests.
    - [#1495] chore: Exclude imported libsodium sources from restyled.
    - [#1493] feat: Add logging to TCP and onion client.
    - [#1489] cleanup: `NAC_LIBS` -> `NACL_LIBS`.
    - [#1487] chore: Add autotools build to localbuild docker images.
    - [#1473] chore: Add a script to run Travis CI locally.
    - [#1467] fix: Fix a bug in savedata loading when malloc fails.
    - [#1464] fix: Fix errors on error paths found by oomer.
    - [#1463] cleanup: Add a check that we don't have any unused functions.
    - [#1462] cleanup: Include `<string.h>` for `explicit_bzero`.
    - [#1436] chore: Enable cimple tests by default but allow disabling them.
    
    **Closed issues:**
    
    - [#1598] ERROR:  heap-buffer-overflow in group.c found with AddressSanitizer
    - [#1326] the cause is great, but this thing is completely unusable
    - [#1319] Is this new application is safe & trusted ??
    - [#1236] Ruby Extension?
    - [#1149] uTox aborts on toxcore restart
    - [#886] Maybe need to set the stacksize for musl-libc

commit 4348b96a5b482134a9cd55cb0ef9616798b4eb3c
Author: Robin Linden <dev@robinlinden.eu>
Date:   Mon Dec 6 18:55:31 2021 +0100

    Release 0.2.13

commit ce268c2f82c7c37b9972adba6f97f31708171927
Author: jfreegman <jfreegman@gmail.com>
Date:   Mon Dec 6 16:57:07 2021 -0500

    Add some missing null checks

commit d930ecca4cf7bc76cc2ac1a50588a26d75431826
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon Dec 6 18:41:27 2021 +0000

    chore: Run infer static analyser on circle ci builds.
    
    Also running some other analysis that we used to have on Travis.

commit af1848ed13d2aa3a7fc218de1d0633e99814efec
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Fri Dec 3 16:20:10 2021 +0000

    chore: Use toktok-stack docker image with built third_party.
    
    This should cut down the build time a bit by downloading the binaries
    built for `//third_party/...`.

commit 0320e2eb8e2d680ecf07e3b8d4707e79e81cf63c
Author: sudden6 <sudden6@gmx.at>
Date:   Sun Dec 5 13:27:22 2021 +0100

    fix missing braces in computed macro value
    
    Using this value in any computation might not work as expected.

commit 1b02bad36864fdfc36694e3f96d2dc6c58a891e4
Author: sudden6 <sudden6@gmx.at>
Date:   Sun Dec 5 13:25:24 2021 +0100

    fix possible stack overflow
    
    CRYPTO_SIZE is used in a subtraction as second argument and instead of
    subtracting then intended value only '1' is subtracted due to operator
    precedence rules and missing braces.

commit f12347dfec8131677cae499c1d002c57397f1f80
Author: zugz (tox) <mbays+tox@sdf.org>
Date:   Wed May 20 00:00:01 2020 +0000

    Fix buffer over-read when a peer leaves a conference
    
    Fixes 1598 -- thanks to peirick for reporting the bug.

commit 57b0651ffdfc31d1cd5c6d3c51cc43bb5b4c7a13
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Tue Nov 30 18:15:27 2021 +0000

    test: Add some unit tests for important internal DHT functions.
    
    We definitely need more of this kind of test so refactorings don't
    accidentally break things in ways that happen to still work in auto
    tests.

commit fd73f3eeb65293e0fe6daeff45bf0a5e0151c8e0
Author: sudden6 <sudden6@gmx.at>
Date:   Wed Dec 30 02:59:52 2020 +0100

    add logging when connection limits file transfer speed

commit 286cc44f5499299468e40de79b7638ec6e61d245
Author: sudden6 <sudden6@gmx.at>
Date:   Wed Dec 30 02:42:39 2020 +0100

    rewrite filetransfer logic in Messenger.c
    
    Makes the logic easier to follow and removes suspicious case.

commit 10ddf8097c34a280fe736f8a6d51058b3da43aaa
Author: sudden6 <sudden6@gmx.at>
Date:   Wed Dec 30 02:19:09 2020 +0100

    rewrite loop for better understanding

commit 825d457073a4859c6c52a8583be83d24aa4f2020
Author: sudden6 <sudden6@gmx.at>
Date:   Wed Dec 30 02:01:06 2020 +0100

    simplify do_all_filetransfers
    
    This should not change any behaviour of this function.

commit 01c3869bd05370bb4251bdece8cd1856d9be9b8c
Author: zugz (tox) <mbays+tox@sdf.org>
Date:   Mon Dec 28 00:00:00 2020 +0000

    Add instructions for building unit tests to INSTALL.md

commit 0c320462d713b2741045e56df4487cfad559c05e
Author: sudden6 <sudden6@gmx.at>
Date:   Sun Nov 28 18:55:05 2021 +0100

    perf: reduce calling into Mono_Time in DHT
    
    Mono_Time needs to acquire a lock each time one of its functions are
    used. This becomes very costly in the DHT code where timeouts for all
    connected nodes are recalculated. Improve this by caching the timestamp
    at the begin of a do_dht() iteration.

commit 8b725c1ecc2c77215353e9005ae53da2f308dce1
Author: jfreegman <jfreegman@gmail.com>
Date:   Wed Nov 10 12:00:18 2021 -0500

    Fix some friend connection issues
    
    - Properly handle crypto_connection_status() failure
    - Remove CONNECTION_UNKNOWN and restructure surrounding logic so that
      the API no longer reports erroneous friend connection statuses

commit c0a0a8204c9c9046ef3b543155b735b31b31ae13
Author: jfreegman <jfreegman@gmail.com>
Date:   Tue Nov 9 11:39:56 2021 -0500

    Fix bug causing API to report wrong self connection status

commit 99d873b98551b6b10865ac60a7f686485925540a
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Sat Nov 27 02:27:45 2021 +0000

    chore: Enable cimple tests on cirrus build.
    
    This ensures that we don't break Cimple compatibility despite Travis
    being gone (which used to test this).

commit b66165977e83dd96f95be8401daf83670f63acbd
Author: jfreegman <jfreegman@gmail.com>
Date:   Thu Nov 25 15:32:29 2021 -0500

    fix issue with save_load autotest
    
    The test explicitly wanted a UDP connection when a TCP connection would suffice. This
    was a remnant of back when the test was part of a multi-purpose autotest that
    didn't attempt to connect to TCP relays and needed a UDP connection specifically.

commit 1700334c3b81c0dffc43c9314c12ca3182357986
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Thu Nov 25 18:13:33 2021 +0000

    chore: Upgrade to toktok-stack:0.0.11.

commit 13cca6716d95719f30b21b66c0cea8008604bfd0
Author: cryptogospod <cryptogospod@dcntrlzd.network>
Date:   Fri Sep 17 21:37:42 2021 +0200

    Update IRC info

commit 485fe88253418e97973ba22744ccd8a0c41f87f1
Author: Robin Linden <dev@robinlinden.eu>
Date:   Sat Aug 21 13:00:04 2021 +0200

    Get Appveyor and Cirrus CI to pass again
    
    * Fix Appveyor CI build
    
    The problem was that when running commands in powershell, any stderr
    output is treated as an "exception", stopping the build even if the exit
    code of the command was good.
    
    * Add workarounds to get Cirrus CI to pass
    
    Removing the cache isn't great, but the build is still only 5-7 minues,
    so it's not terrible either.
    
    Disabling the tcp_relay test also sucks. It passes locally, so we're
    likely getting caught in a firewall or something like it somewhere.

commit 25a56c354937e9c8c4c50a64c3b4cfc099c34e29
Author: sudden6 <sudden6@gmx.at>
Date:   Sat Jan 2 22:53:47 2021 +0100

    simplify do_tcp(...)

commit c9ad4a2e3969081d1580fd0feb98610e208d123e
Author: Alexandre Petitjean <alpetitjean@gmail.com>
Date:   Fri Apr 9 09:08:24 2021 +0200

    Enable c-toxcore conan packaging

commit 6f3cdb1780626ae5718d41fc6f1feb27ecaeb3b8
Author: Maxim Biro <nurupo.contributions@gmail.com>
Date:   Thu Feb 18 01:21:44 2021 -0500

    Remove references to Tox's package repository
    
    Since it's shut down

commit d8c676bb010f4c317b4455382fa8b8a1fa5eea7c
Author: Maxim Biro <nurupo.contributions@gmail.com>
Date:   Thu Feb 18 01:20:48 2021 -0500

    Remove references to Jenkins
    
    Since we are shutting it down

commit 0d5f85485b89d57f0dc3f5000ef1b238c6696611
Author: Maxim Biro <nurupo.contributions@gmail.com>
Date:   Sun Feb 21 21:15:13 2021 -0500

    Update deps used in Windows build scripts

commit 98c148179f673d4658e5d7f7dc012910aa613b4b
Author: redmanmale <redmanmale@gmail.com>
Date:   Sat May 9 19:50:48 2020 +0300

    Add Cygwin build script

commit a71ddc7eac5cb62dfa15f30f01d22a0b84f47267
Author: Robin Linden <dev@robinlinden.eu>
Date:   Sat Oct 10 22:07:03 2020 +0200

    Fix tests involving reading/writing files failing on Windows
    
    The issue was that r and w without the b flag on Windows does LF and CR
    translations when reading and writing. Not good for binary files.

commit 00f2f41dbbc660d7554b4df8e8397272cc92e22f
Author: jfreegman <jfreegman@gmail.com>
Date:   Fri Nov 20 19:15:58 2020 -0500

    Use heap memory instead of stack for large variables
    
    The default stack size for musl-libc is 128kb. Therefore we should try to keep stack
    allocations well below this limit in order to avoid stack overflows.

commit 5d2b1e3861e650b32f22319a89a33cdf7db5af5c
Author: Robin Linden <dev@robinlinden.eu>
Date:   Mon Nov 16 16:22:55 2020 +0100

    Update tox-bootstrapd checksum due to newer packages in Alpine
    
    * g++       9.2.0-r4  -> 9.3.0-r0
    * gcc       9.2.0-r4  -> 9.3.0-r0
    * libatomic 9.2.0-r4  -> 9.3.0-r0
    * libcurl   7.67.0-r0 -> 7.67.0-r1
    * libgcc    9.2.0-r4  -> 9.3.0-r0
    * libgomp   9.2.0-r4  -> 9.3.0-r0
    * libstdc++ 9.2.0-r4  -> 9.3.0-r0
    * python3   3.8.2-r0  -> 3.8.2-r1

commit 470fa79f92fbe08eb3ac053730af3db822ab3f61
Author: Robin Linden <dev@robinlinden.eu>
Date:   Fri Jun 12 11:25:55 2020 +0200

    Fix AppVeyor failing due to conan remote being added twice

commit 56992b099eb5b77adfca15678ada9ec4011d8dd3
Author: Robin Linden <dev@robinlinden.eu>
Date:   Thu May 14 01:50:43 2020 +0200

    Add support for the conan C/C++ package manager
    
    * Don't overwrite the CMAKE_MODULE_PATH
    * Allow linking libsodium statically with MSVC
    * Allow finding libsodium the normal way on MSVC
    * Allow using pthreads4w for pthreads on MSVC
    * Fall back to find_package if pkg_find_module fails
    * Don't pass incompatible compile flags to MSVC
    * Also try to find Opus and libvpx using their canonical names
    * Support building using conan
    * Allow pkg_use_module to take a list of libraries to look for
    * Build for Windows on Appveyor using conan

commit 03a511482ffa643a636cd5bcce596f110ca2d8e0
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Sat May 16 23:04:10 2020 +0100

    Format comments according to tokstyle's requirements.

commit fe8e0fb8fa46a815e89e3722a7c92b35181c2ce8
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Sun May 17 12:36:34 2020 +0100

    Fix tcp_relay_test by adding a second bootstrap node.
    
    This is a non-hermetic network test. initramfs node is down, so let's
    have a second one for redundancy.

commit 3d601fe32066619f50297cb52131d1bbf5e6862e
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Wed May 6 00:15:09 2020 +0100

    style: Run restyled on Travis and Circle CI scripts.

commit 8f4400b9b4a63dd5674ea6e7cf15486e90a01174
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Tue May 5 23:45:16 2020 +0000

    cleanup: Make pylint and mypy happy with bootstrap_node_info.py.

commit 3851cfb652f1b2237738a49c106e703f0270ceee
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Sun May 3 21:13:33 2020 +0100

    Add autotools build to localbuild docker images.

commit 8c0fd40356e4a7724b556e17b15b0d14f7d25b4d
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Tue May 5 22:56:03 2020 +0100

    refactor: Remove multi-declarators entirely.
    
    We no longer allow `int a, b;`. In the few cases where we used it, we
    instead better
    
    * limit the scope of the identifier (e.g. in a for-init-decl)
    * split the line and have 2 separate declarators, because the
      identifiers designate different types of things (e.g. friend numbers
      and group numbers).

commit fd2bb77923b68ec50e4812c9663eab42314d4557
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Tue May 5 13:43:53 2020 +0100

    chore: Don't build pushes to branches, only to tags.

commit 48bd200acbf4b4d8f3fa241373477b3a21001d17
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Tue May 5 22:28:59 2020 +0100

    refactor: Disallow multiple initialised declarators per decl.
    
    We no longer allow:
    
    ```c
    int a = 0, b = 0;
    int a[3], b[3];
    int a, *b;
    ```
    
    But we do still allow (for now):
    
    ```c
    int a, b;
    ```

commit c1a2ea3309969608a5553c34fa4199b05f20abc2
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon May 4 02:19:14 2020 +0100

    Use bash arrays instead of strings for static analysis scripts.
    
    These are more robust wrt. spaces in names.

commit f8ab7218f0eb752b4f936b4686be313921be1da6
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon May 4 02:08:42 2020 +0100

    Exclude imported libsodium sources from restyled.
    
    Also limit clang-format to .cc files. Don't apply it to .c files.

commit 9edb2e5088711b3cd3aeb60ed33d4ed214ecfa71
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon May 4 22:43:56 2020 +0100

    chore: Delete release-drafter config in favour of global one.

commit d52bf0a94799560a15c3af5f0ff8467079d444ea
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon May 4 02:33:38 2020 +0100

    refactor: Minor cleanup: limit scope of loop iterators.

commit 669ea8797ba7040d3bfbe1dfbf49e3222575d3a0
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Sun May 3 21:16:44 2020 +0100

    Fix typo: `NAC_LIBS` -> `NACL_LIBS`.
    
    This is working, so probably `NACL_LIBS` is entirely useless, but I
    can't be bothered to figure out what this was supposed to be, so here we
    are.

commit cc99ecd43a81cab0fba294a747658f0ea2c4bbe2
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon May 4 02:12:57 2020 +0100

    Stop hard-coding packet IDs in tests.

commit 02a5bdc60c9ff8474a959027882048290571f806
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Mon May 4 00:40:59 2020 +0100

    Add logging to TCP and onion client.

commit 4efe541814ec2ddd073428d6928497b50c48397a
Author: iphydf <iphydf@users.noreply.github.com>
Date:   Sun May 3 15:36:57 2020 +0100

    Add a script to run Travis CI locally.
    
    This isn't quite Travis, but close enough for local testing.
Created: 2021-12-21 Last update: 2022-05-27 02:40
1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:
  • CVE-2021-44847: (needs triaging) A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 (caused by an improper length calculation during the handling of received network packets) allows remote attackers to crash the process or potentially execute arbitrary code via a network packet.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-12-13 Last update: 2022-01-04 20:03
1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:
  • CVE-2021-44847: (needs triaging) A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 (caused by an improper length calculation during the handling of received network packets) allows remote attackers to crash the process or potentially execute arbitrary code via a network packet.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-12-13 Last update: 2022-01-04 20:03
Build log checks report 1 warning low
Build log checks report 1 warning
Created: 2018-11-09 Last update: 2018-11-09 12:12
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.6.0).
Created: 2022-05-11 Last update: 2022-05-11 23:25
news
[rss feed]
  • [2021-12-25] libtoxcore 0.2.13-1 MIGRATED to testing (Debian testing watch)
  • [2021-12-22] Accepted libtoxcore 0.2.13-1 (source) into unstable (Yangfl) (signed by: Boyuan Yang)
  • [2020-05-08] libtoxcore 0.2.12-1 MIGRATED to testing (Debian testing watch)
  • [2020-05-06] Accepted libtoxcore 0.2.12-1 (source) into unstable (Yangfl) (signed by: Boyuan Yang)
  • [2019-07-13] libtoxcore 0.2.10-1 MIGRATED to testing (Debian testing watch)
  • [2019-07-10] Accepted libtoxcore 0.2.10-1 (source) into unstable (Yangfl) (signed by: Boyuan Yang)
  • [2019-02-07] libtoxcore 0.2.9-1 MIGRATED to testing (Debian testing watch)
  • [2019-02-01] Accepted libtoxcore 0.2.9-1 (source amd64) into unstable, unstable (Yangfl) (signed by: Boyuan Yang)
  • [2018-11-14] libtoxcore 0.2.8-1 MIGRATED to testing (Debian testing watch)
  • [2018-11-09] Accepted libtoxcore 0.2.8-1 (source) into unstable (Yangfl) (signed by: Boyuan Yang)
  • [2018-06-06] libtoxcore 0.2.2-1 MIGRATED to testing (Debian testing watch)
  • [2018-05-31] Accepted libtoxcore 0.2.2-1 (source) into unstable (Yangfl) (signed by: Adam Borowski)
  • [2018-05-29] Accepted libtoxcore 0.2.0-1 (source amd64) into unstable, unstable (Yangfl) (signed by: Adam Borowski)
bugs [bug history graph]
  • all: 0
links
  • homepage
  • lintian
  • buildd: logs, checks, clang, reproducibility, cross
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • debci
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 0.2.13-1
  • 1 bug

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing