diff options
| author | Nick Mathewson <nickm@torproject.org> | 2008-02-07 16:10:33 +0000 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2008-02-07 16:10:33 +0000 |
| commit | eecc44dab8ad98246b2c4dbedf977113f1874f77 (patch) | |
| tree | d1b52922bb8a1d03919bf0422ab2ea5e320e0ad3 /ChangeLog | |
| parent | 842a33ff20f1da87d64ae3922eab135dc37bde16 (diff) | |
| download | tor-eecc44dab8ad98246b2c4dbedf977113f1874f77.tar.gz tor-eecc44dab8ad98246b2c4dbedf977113f1874f77.zip | |
r17963@catbus: nickm | 2008-02-07 10:14:25 -0500
Be more thorough about memory poisoning and clearing. Add an in-place version of aes_crypt in order to remove a memcpy from relay_crypt_one_payload.
svn:r13414
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -13,6 +13,10 @@ Changes in version 0.2.0.19-alpha - 2008-02-?? - Give more descriptive well-formedness errors for out-of-range hidden service descriptor/protocol versions. + o Minor features (security): + - Be slightly more paranoid about overwriting sensitive memory on free, + as a defensive programming tactic to ensure forward secrecy. + o Deprecated features (controller): - The status/version/num-versioning and status/version/num-concurring GETINFO options are no longer useful in the V3 directory protocol: @@ -59,6 +63,8 @@ Changes in version 0.2.0.19-alpha - 2008-02-?? from a CREATE cell that we are waiting for a cpuworker to be assigned" and "onionskin from an EXTEND cell that we are going to send to an OR as soon as we are connected". + - Add an in-place version of aes_crypt so that we can avoid doing a + needless memcpy() call on each cell payload. Changes in version 0.2.0.18-alpha - 2008-01-25 |