All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
4.6.1 - 2021-06-18
- Fix DHCP regression introduced in 4.6.0. !95
4.6.0 - 2021-06-14
- mbuf: Add debugging helpers for allocation. !90
- Revert "Set macOS deployment target to macOS 10.4". !93
- mtod()-related buffer overflows (CVE-2021-3592 #44, CVE-2021-3593 #45, CVE-2021-3594 #47, CVE-2021-3595 #46).
- poll_fd: add missing fd registration for UDP and ICMP
- ncsi: make ncsi_calculate_checksum work with unaligned data. !89
- Various typos and doc fixes. !88
4.5.0 - 2021-05-18
- IPv6 forwarding. !62 !75 !77
- slirp_neighbor_info() to dump the ARP/NDP tables. !71
- Lazy guest address resolution for IPv6. !81
- Improve signal handling when spawning a child. !61
- Set macOS deployment target to macOS 10.4. !72
- slirp_add_hostfwd: Ensure all error paths set errno. !80
- More API documentation.
- Assertion failure on unspecified IPv6 address. !86
- Disable polling for PRI on MacOS, fixing some closing streams issues. !73
- Various memory leak fixes on fastq/batchq. !68
- Memory leak on IPv6 fast-send. !67
- Slow socket response on Windows. !64
- Misc build and code cleanups. !60 !63 !76 !79 !84
4.4.0 - 2020-12-02
- udp, udp6, icmp: handle TTL value. !48
- Enable forwarding ICMP errors. !49
- Add DNS resolving for iOS. !54
- Improve meson subproject() support. !53
- Removed Makefile-based build system. !56
- socket: consume empty packets. !55
- check pkt_len before reading protocol header (CVE-2020-29129). !57
- ip_stripoptions use memmove (fixes undefined behaviour). !47
- various Coverity-related changes/fixes.
4.3.1 - 2020-07-08
- A silent truncation could occur in
slirp_fmt()
, which will now print a critical message. See also #22.
- CVE-2020-10756 - Drop bogus IPv6 messages that could lead to data leakage. See !44 and !42.
- Fix win32 builds by using the SLIRP_PACKED definition.
- Various coverity scan errors fixed. !41
- Fix new GCC warnings. !43
4.3.0 - 2020-04-22
SLIRP_VERSION_STRING
macro, with the git sha suffix when building from gitSlirpConfig.disable_dns
, to disable DNS redirection #16
slirp_version_string()
now has the git sha suffix when building form git- Limit DNS redirection to port 53 #16
- Fix build regression with mingw & NetBSD
- Fix use-afte-free in
ip_reass()
(CVE-2020-1983)
4.2.0 - 2020-03-17
- New API function
slirp_add_unix
: add a forward rule to a Unix socket. - New API function
slirp_remove_guestfwd
: remove a forward rule previously added byslirp_add_exec
,slirp_add_unix
orslirp_add_guestfwd
- New
SlirpConfig.outbound_addr{,6}
fields to bind output socket to a specific address
- socket: do not fallback on host loopback if
get_dns_addr()
failed or the address is in slirp network
- ncsi: fix checksum OOB memory access
tcp_emu()
: fix OOB accesses- tftp: restrict relative path access
- state: fix loading of guestfwd state
4.1.0 - 2019-12-02
- The
slirp_new()
API, simpler and more extensible thanslirp_init()
. - Allow custom MTU configuration.
- Option to disable host loopback connections.
- CI now runs scan-build too.
- Disable
tcp_emu()
by default.tcp_emu()
is known to have caused several CVEs, and not useful today in most cases. The feature can be still enabled by settingSlirpConfig.enable_emu
to true. - meson build system is now
subproject()
friendly. - Replace remaining
malloc()
/free()
with glib (which aborts on OOM) - Various code cleanups.
- The
slirp_init()
API.
getpeername()
error aftershutdown(SHUT_WR)
.- Exec forward: correctly parse command lines that contain spaces.
- Allow 0.0.0.0 destination address.
- Make host receive broadcast packets.
- Various memory related fixes (heap overflow, leaks, NULL dereference).
- Compilation warnings, dead code.
4.0.0 - 2019-05-24
- Installable as a shared library.
- meson build system (& make build system for in-tree QEMU integration)
- Standalone project, removing any QEMU dependency.
- License clarifications.