This release includes 3 breaking changes for platform teams planning a safe upgrade.
✓ No known CVEs patched in this version
Topics
+11 more
Affected surfaces
Summary
AI summaryUpdates Core Changes, tmpfs, and TransPort across a mixed release.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
All runtime state, lock files, and system logs now reside strictly in /run/ttp (tmpfs). Data evaporates physically when the system is powered off or rebooted. All runtime state, lock files, and system logs now reside strictly in /run/ttp (tmpfs). Data evaporates physically when the system is powered off or rebooted. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Feature | Medium |
A dedicated, volatile systemd unit named ttp-tor.service is generated dynamically at runtime for service isolation. A dedicated, volatile systemd unit named ttp-tor.service is generated dynamically at runtime for service isolation. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Feature | Medium |
Traffic routing shifted to custom ports 9041 (TransPort) and 9054 (DNSPort) to allow coexistence with pre-existing Tor instances. Traffic routing shifted to custom ports 9041 (TransPort) and 9054 (DNSPort) to allow coexistence with pre-existing Tor instances. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Feature | Medium |
Destructive editing of /etc/resolv.conf replaced by kernel-level mount --bind overlay, preserving original DNS configuration on disk. Destructive editing of /etc/resolv.conf replaced by kernel-level mount --bind overlay, preserving original DNS configuration on disk. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Feature | Medium |
Daemon management now handled natively via private Unix sockets mapped in RAM, eliminating exposure of local TCP control ports. Daemon management now handled natively via private Unix sockets mapped in RAM, eliminating exposure of local TCP control ports. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Feature | Medium |
Entry Guards preserved in dedicated persistent cache, reducing circuit initialization time to approximately 3 seconds. Entry Guards preserved in dedicated persistent cache, reducing circuit initialization time to approximately 3 seconds. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: low |
— |
| Feature | Medium |
Cryptographic circuit shutdown executed prior to releasing firewall rules to prevent cleartext packet leaks on physical interface. Cryptographic circuit shutdown executed prior to releasing firewall rules to prevent cleartext packet leaks on physical interface. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: low |
— |
| Feature | Medium |
Mandatory system state verification and RAM availability checks performed prior to startup to prevent mid-execution failures. Mandatory system state verification and RAM availability checks performed prior to startup to prevent mid-execution failures. Source: granite4.1:8b-q6_K@2026-05-20 Confidence: low |
— |
Full changelog
TTP v0.3.0: Amnesia Core
The transition to version 0.3.0 introduces a major architectural shift focused on process isolation and forensic invisibility. The application core has been redesigned to operate almost entirely in volatile memory, trying to minimize physical traces on the disk following a reboot.
Disclaimer: This is not forensically reliable because the Linux distro beneath it (let it be Arch, RHEL, etc.) are NOT designed for such purpose. So, traces on the OS/Kernel level are present. If you are looking reliable tools, please, use TailsOS, the TOR Browser, etc.
Core Changes
- Amnesia Architecture: All runtime state, lock files, and system logs now reside strictly in
/run/ttp(tmpfs). Data evaporates physically when the system is powered off or rebooted. - Service Isolation: A dedicated, volatile systemd unit named
ttp-tor.serviceis now generated dynamically at runtime. This service operates independently, avoiding permission conflicts with the default system Tor sandbox. - Port Shifting: To allow seamless coexistence with pre-existing Tor instances, traffic routing is now shifted to custom ports 9041 (TransPort) and 9054 (DNSPort). Background Tor relays or onion services can operate simultaneously without encountering port conflicts.
- Stateless DNS Overlay: Destructive editing of
/etc/resolv.confhas been replaced by a kernel-levelmount --bindoverlay. The original system DNS configuration remains completely untouched on the physical disk. - Unix Control Sockets: Daemon management is now handled natively via private Unix sockets mapped in RAM, eliminating the exposure of local TCP control ports.
Improvements
- Fast Bootstrap: Entry Guards are preserved within a dedicated persistent cache, reducing circuit initialization time to approximately 3 seconds.
- Safe Teardown: A cryptographic circuit shutdown is executed prior to releasing firewall rules to prevent cleartext packet leaks on the physical interface.
- Pre-flight Checks: Mandatory system state verification and RAM availability checks are performed prior to startup to prevent mid-execution failures.
The update can be applied by re-running the global installation script or deploying the latest pre-compiled package artifacts.
Breaking Changes
- All runtime state, lock files, and system logs now reside exclusively in /run/ttp (tmpfs) and evaporate on reboot.
- Traffic routing ports changed to custom TransPort 9041 and DNSPort 9054 to avoid conflicts with default Tor instances.
- Destructive editing of /etc/resolv.conf replaced by a kernel-level mount --bind overlay, leaving the original system DNS config untouched.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About TTP 0.3.0
All releases →Related context
Related tools
Beta — feedback welcome: [email protected]