markqvist/Reticulum 1.3.4

RNS 1.3.4

on GitHub

Important! See the Verified Retrieval section at the end of this release notes document for instructions on verifying RNS releases and fetching updates directly over Reticulum. For the full documentation, see this section of the manual.

This release synchronizes the github release mirror with upstream changes and improvements. Once you have RNS 1.3.4 installed, you will be able to verify future releases of RNS and related packages using the built-in manifest verification and release update tools.

Changes

• Fixed regression in inbound announce de-duplication
• Fixed missing check for shared instance type configuration conflict
• Fixed superfluous path state configuration on new announce from new destinations
• Improved cleanup of stale known destinations
• Improved shared instance RPC handling
• Fixed regression in known destinations persist on Windows
• Extended blackhole functionality to immediately terminate links from blackholed identities
• Added commit signing and validation to rngit
• Added commit hash inclusion in generated release manifest to rngit
• Added local verify operation shorthand to rngit release
• Added option to configure blackhole update interval
• Added configuration option to log without timestamps
• Fixed regression in request response transfer size accumulator
• Added ability to use wildcards and pattern matches in rngit artifact fetch targets
• Fixed channel outlet sequence holes and ghost envelopes on dying outlets by neutral
• Fixed known destination iteration races by neutral
• Fixed timeout deadlock in rnsh by neutral
• Fixed commit message rendering in rngit
• Fixed various minor bugs and output inconsistencies in rngit
• Adjusted timeouts for remote operations in rngit
• Updated documentation
• Added full rngit documentation to the manual
• Added offline .rsm release manifest verification
• Added the ability to fetch release updates directly from .rsm manifests
• Added canonical .rsm release structure validator to rnid for import
• Added .rsm manifest saving when using rngit release fetch
• Added remote HEAD tracking for forks and mirros to rngit
• Improved known destinations persist reliability
• Improved page node ref link handling in rngit
• Improved logging in various locations
• Added signed release manifest generation to rngit release
• Added verified release fetching to rngit release
• Added automatic artifact signing to rngit release
• Added signed message creation from file to rnid
• Added signed message metadata output option to rnid
• Added rsm metadata embedding and spec validation to rnid
• Added identity and destination aliases to rngit
• Added blocked identities option to rngit
• Added ability to render raw micron in markdown files to rngit
• Added fork and mirror last sync time to repository page in rngit
• Better handling of silly links in rngit
• Fixed markdown table cell truncation not closing micron tags
• Fixed various minor bugs and inconsistencies in rngit
• Dropped note metadata field requirement from rsg structure
• Added work document proposals functionality to rngit
• Added fork and mirroring support to rngit
• Added ability to create new repositories remotely to rngit
• Added latest release management to rngit
• Added download stats to rngit
• Improved shared instance RPC error handling
• Improved announce cache cleaning
• Improved rngit page node link handling
• Improved stats pages rngit
• Improved transfer completed feedback in rncp, thanks to neutral
• Improved interface transport insertion and removal
• Added embedded message signing, validation and viewing to rnid
• Added file encryption for multiple file path inputs and shell expansions to rnid
• Added file decryption for multiple file path inputs and shell expansions to rnid
• Added signature creation for multiple file path inputs and shell expansions to rnid
• Added signature validation of multiple file path inputs and shell expansions to rnid
• Added workdoc signing and validation to rngit
• Added ability to edit workdoc titles to rngit
• Added ability to download workdocs via the nomadnet interface to rngit
• Added local URL resolution to the rngit repository frontpage markdown readme renderer
• Improved rnstatus remote monitor loop
• Improved rngit workdoc page handling
• Improved rngit release page rendering
• Fixed missing none check in interface discovery sanitizer thanks to PAzter1101
• Fixed potential race condition in interface discovery
• Fixed rngit remote helper hanging on startup if no client config had been created previously, and RNS loglevel was configured at debug or higher

Verified Retrieval
You can retrieve and verify this release over Reticulum using the built-in rngit release utility. To retrieve only the installation .whl package, and the release manifest for future updates, you can use:

rngit release rns://7649a50d84610232d1416b41d2896aff/reticulum/reticulum fetch "latest:rns-*.whl" --signer bc7291552be7a58f361522990465165c

To download all artifacts, including the documentation and source archive, you can use the following command:

rngit release rns://7649a50d84610232d1416b41d2896aff/reticulum/reticulum fetch latest:all --signer bc7291552be7a58f361522990465165c

Release Signatures
Release artifacts include a signed rsm release manifest and rsg signature files that can be validated against the RNS release signing identity <bc7291552be7a58f361522990465165c> using rngit or rnid. To perform an offline verification of all release artifacts using a manifest:

rngit release rns_*.rsm verify --signer bc7291552be7a58f361522990465165c

To verify release artifacts using individual rsg files, while also verifying the manifest itself, download the rsm and rsg signatures, make sure they are in the same folder as the release artifact, and run rnid signature verification with the release identity as the required signer:

rnid -i bc7291552be7a58f361522990465165c -V rns_*.rsm *.rsg

The rnid utility will then verify the signatures, and display whether they are valid. If the signature cannot be verified, the release has been tampered with and should be discarded.