1 year ago 3 commits to master since this release
A brown paper release, to fix an error causing asserts in daemons. See https://bugzilla.quagga.net/show_bug.cgi?id=975. With thanks to Sergey Popov, Andreas Nilsson and Xiami.
Summary of changes:
lib: Fix assert in thread_add_unuse if thread_execute was used lib: Avoid re-definition of IPPROTO_IP with some versions of Linux
lib: Fix assert in thread_add_unuse if thread_execute was used * thread.c: (thread_call) thread_execute passes in a dummy thread, on its stack, with a NULL thread master. Those shouldn't be added to the unuse list or thread_add_unuse rightly asserts. Fix this very dumb bug. See https://bugzilla.quagga.net/show_bug.cgi?id=975 With thanks to Sergey Popov, firstname.lastname@example.org, and Andreas Nilsson, email@example.com, for help with diagnosis and testing.
lib: Avoid re-definition of IPPROTO_IP with some versions of Linux * Starting from linux-4.11 [commit bcb41c6bced1ee778d23c53a6b4807fb08cf5540], linux/mroute.h includes linux/in.h , that makes gcc roar a lot of things like "error: redeclaration of enumerator 'IPPROTO_IP'" when compiling quagga-1.2.2 lib/zebra.h includes sys/capability.h first, then includes netinet/in.h . In sys/capability.h, it includes linux/xattr.h, and that includes linux/libc-compat.h . Since at that time netinet/in.h is not included yet, _NETINET_IN_H is not defined, causing libc-compat.h set __UAPI_DEF_IN_IPPROTO to 1. Then, a include of netinet/in.h defines IPPROTO_IP. Later a include of linux/mroute.h includes linux/in.h. Because __UAPI_DEF_IN_IPPROTO is set to non zero, IPPROTO_IP is redeclared. * lib/zebra.h: Move the privs/capabilities include block to after the network block.
1 year ago 7 commits to master since this release
Quagga 1.2.3 has been released, available from the usual place:
This is a minor release, with a series of bug fixes, including potentially important BGP security fixes.
This includes a fix in bgpd for a double-free that can be triggered by UPDATE messages with transitive attributes, which could be sent by a BGP speaker many hops away. The severity of this issue is unknown and depends on implementations details of the system malloc library. The issue may have little impact on some systems, but also could trigger a crash, or even be remotely exploitable.
Advisories for the security fixes will appear at:
This release contains a candidate fix for Bug#870, affecting IPv6 advertisement. It is reported to fix issues for some users, but other users still report problems. Please see:
With thanks to Alban Browaeys, Balaji Gurudoss, Borg, Scott Leggett and Debian QA Group, Eugene Bogomazov, Evgeny Uskov, Gerrie Roos, Mathieu Jadin, Pier Carlo Chiodi, and Rolf Eike Beer.
The change-list overview: