diff options
author | Nick Mathewson <nickm@torproject.org> | 2020-07-27 09:01:33 -0400 |
---|---|---|
committer | Nick Mathewson <nickm@torproject.org> | 2020-07-27 09:01:33 -0400 |
commit | e1b032a99171a8af1889e8e605babf80eaf0b80b (patch) | |
tree | 2f5b2a183f02d0408ec25809587a71c3bd808ab9 | |
parent | c178d51965bd543d3973ef8d15e97c9ae1105768 (diff) | |
download | tor-e1b032a99171a8af1889e8e605babf80eaf0b80b.tar.gz tor-e1b032a99171a8af1889e8e605babf80eaf0b80b.zip |
Light edits to 0.4.4.3-alpha changelog
-rw-r--r-- | ChangeLog | 15 |
1 files changed, 6 insertions, 9 deletions
@@ -11,21 +11,18 @@ Changes in version 0.4.4.3-alpha - 2020-07-2? o Major bugfixes (NSS): - When running with NSS enabled, make sure that NSS knows to expect nonblocking sockets. Previously, we set our TCP sockets as - blocking, but did not tell NSS about the fact, which in turn could - lead to unexpected blocking behavior. Fixes bug 40035; bugfix + nonblocking, but did not tell NSS, which in turn could lead to + unexpected blocking behavior. Fixes bug 40035; bugfix on 0.3.5.1-alpha. o Minor bugfixes (linux seccomp2 sandbox): - Fix a regression on sandboxing rules for the openat() syscall. The fix for bug 25440 fixed the problem on systems with glibc >= 2.27 - but broke tor on previous versions of glibc. We now apply the - correct seccomp rule according to the running glibc version. Patch - from Daniel Pinto. Fixes bug 27315; bugfix on 0.3.5.11. + but broke with versions of glibc. We now choose a rule based on + the glibc version. Patch from Daniel Pinto. Fixes bug 27315; + bugfix on 0.3.5.11. - Makes the seccomp sandbox allow the correct syscall for opendir - according to the running glibc version. The opendir function - either uses open or openat but the current code does not - differenciate between opendir and open calls. This adds a new - seccomp sandbox rule for opendir. This fixes crashes when + according to the running glibc version. This fixes crashes when reloading torrc with sandbox enabled when running on glibc 2.15 to 2.21 and 2.26. Patch from Daniel Pinto. Fixes bug 40020; bugfix on 0.3.5.11. |