diff options
67 files changed, 944 insertions, 263 deletions
@@ -1,3 +1,620 @@ +Changes in version 0.3.4.7-rc - 2018-08-24 + Tor 0.3.4.7-rc fixes several small compilation, portability, and + correctness issues in previous versions of Tor. This version is a + release candidate: if no serious bugs are found, we expect that the + stable 0.3.4 release will be (almost) the same as this release. + + o Minor features (bug workaround): + - Compile correctly on systems that provide the C11 stdatomic.h + header, but where C11 atomic functions don't actually compile. + Closes ticket 26779; workaround for Debian issue 903709. + + o Minor features (continuous integration): + - Backport Travis rust distcheck to 0.3.3. Closes ticket 24629. + - Enable macOS builds in our Travis CI configuration. Closes + ticket 24629. + - Install libcap-dev and libseccomp2-dev so these optional + dependencies get tested on Travis CI. Closes ticket 26560. + - Only post Appveyor IRC notifications when the build fails. + Implements ticket 27275. + - Run asciidoc during Travis CI. Implements ticket 27087. + - Use ccache in our Travis CI configuration. Closes ticket 26952. + + o Minor features (continuous integration, rust): + - Use cargo cache in our Travis CI configuration. Closes + ticket 26952. + + o Minor features (directory authorities): + - Authorities no longer vote to make the subprotocol version + "LinkAuth=1" a requirement: it is unsupportable with NSS, and + hasn't been needed since Tor 0.3.0.1-alpha. Closes ticket 27286. + + o Minor features (geoip): + - Update geoip and geoip6 to the August 7 2018 Maxmind GeoLite2 + Country database. Closes ticket 27089. + + o Minor bugfixes (compilation, windows): + - Don't link or search for pthreads when building for Windows, even + if we are using build environment (like mingw) that provides a + pthreads library. Fixes bug 27081; bugfix on 0.1.0.1-rc. + + o Minor bugfixes (continuous integration): + - Improve Appveyor CI IRC logging. Generate correct branches and + URLs for pull requests and tags. Use unambiguous short commits. + Fixes bug 26979; bugfix on master. + - Build with zstd on macOS. Fixes bug 27090; bugfix on 0.3.1.5-alpha. + - Pass the module flags to distcheck configure, and log the flags + before running configure. (Backported to 0.2.9 and later as a + precaution.) Fixes bug 27088; bugfix on 0.3.4.1-alpha. + + o Minor bugfixes (in-process restart): + - Always call tor_free_all() when leaving tor_run_main(). When we + did not, restarting tor in-process would cause an assertion + failure. Fixes bug 26948; bugfix on 0.3.3.1-alpha. + + o Minor bugfixes (linux seccomp2 sandbox): + - Fix a bug in out sandboxing rules for the openat() syscall. + Previously, no openat() call would be permitted, which would break + filesystem operations on recent glibc versions. Fixes bug 25440; + bugfix on 0.2.9.15. Diagnosis and patch from Daniel Pinto. + + o Minor bugfixes (onion services): + - Fix bug that causes services to not ever rotate their descriptors + if they were getting SIGHUPed often. Fixes bug 26932; bugfix + on 0.3.2.1-alpha. + + o Minor bugfixes (portability): + - Fix compilation of the unit tests on GNU/Hurd, which does not + define PATH_MAX. Fixes bug 26873; bugfix on 0.3.3.1-alpha. Patch + from "paulusASol". + + o Minor bugfixes (rust): + - Backport test_rust.sh from master. Fixes bug 26497; bugfix + on 0.3.1.5-alpha. + - Consistently use ../../.. as a fallback for $abs_top_srcdir in + test_rust.sh. Fixes bug 27093; bugfix on 0.3.4.3-alpha. + - Protover parsing was accepting the presence of whitespace in + version strings, which the C implementation would choke on, e.g. + "Desc=1\t,2". Fixes bug 27177; bugfix on 0.3.3.5-rc. + - Protover parsing was ignoring a 2nd hyphen and everything after + it, accepting entries like "Link=1-5-foo". Fixes bug 27164; bugfix + on 0.3.3.1-alpha. + - Stop setting $CARGO_HOME. cargo will use the user's $CARGO_HOME, or + $HOME/.cargo by default. Fixes bug 26497; bugfix on 0.3.1.5-alpha. + - cd to ${abs_top_builddir}/src/rust before running cargo in + src/test/test_rust.sh. This makes the working directory consistent + between builds and tests. Fixes bug 26497; bugfix on 0.3.3.2-alpha. + + o Minor bugfixes (testing, bootstrap): + - When calculating bootstrap progress, check exit policies and the + exit flag. Previously, Tor would only check the exit flag, which + caused race conditions in small and fast networks like chutney. + Fixes bug 27236; bugfix on 0.2.6.3-alpha. + + o Minor bugfixes (testing, openssl compatibility): + - Our "tortls/cert_matches_key" unit test no longer relies on + OpenSSL internals. Previously, it relied on unsupported OpenSSL + behavior in a way that caused it to crash with OpenSSL 1.0.2p. + Fixes bug 27226; bugfix on 0.2.5.1-alpha. + + o Minor bugfixes (Windows, compilation): + - Silence a compilation warning on MSVC 2017 and clang-cl. Fixes bug + 27185; bugfix on 0.2.2.2-alpha. + + +Changes in version 0.3.4.6-rc - 2018-08-06 + Tor 0.3.4.6-rc fixes several small compilation, portability, and + correctness issues in previous versions of Tor. This version is a + release candidate: if no serious bugs are found, we expect that the + stable 0.3.4 release will be (almost) the same as this release. + + o Major bugfixes (event scheduler): + - When we enable a periodic event, schedule it in the event loop + rather than running it immediately. Previously, we would re-run + periodic events immediately in the middle of (for example) + changing our options, with unpredictable effects. Fixes bug 27003; + bugfix on 0.3.4.1-alpha. + + o Minor features (compilation): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor features (Rust, portability): + - Rust cross-compilation is now supported. Closes ticket 25895. + + o Minor bugfixes (compilation): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (controller): + - Report the port correctly when a port is configured to bind to + "auto". Fixes bug 26568; bugfix on 0.3.4.1-alpha. + - Parse the "HSADDRESS=" parameter in HSPOST commands properly. + Previously, it was misparsed and ignored. Fixes bug 26523; bugfix + on 0.3.3.1-alpha. Patch by "akwizgran". + + o Minor bugfixes (correctness, flow control): + - Upon receiving a stream-level SENDME cell, verify that our window + has not grown too large. Fixes bug 26214; bugfix on svn + r54 (pre-0.0.1) + + o Minor bugfixes (memory, correctness): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Minor bugfixes (portability): + - Avoid a compilation error in test_bwmgt.c on Solaris 10. Fixes bug + 26994; bugfix on 0.3.4.1-alpha. + + o Minor bugfixes (testing, compatibility): + - When running the ntor_ref.py and hs_ntor_ref.py tests, make sure + only to pass strings (rather than "bytes" objects) to the Python + subprocess module. Python 3 on Windows seems to require this. + Fixes bug 26535; bugfix on 0.2.5.5-alpha (for ntor_ref.py) and + 0.3.1.1-alpha (for hs_ntor_ref.py). + + +Changes in version 0.3.4.5-rc - 2018-07-13 + Tor 0.3.4.5-rc moves to a new bridge authority, meaning people running + bridge relays should upgrade. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + +Changes in version 0.3.3.9 - 2018-07-13 + Tor 0.3.3.9 moves to a new bridge authority, meaning people running + bridge relays should upgrade. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + +Changes in version 0.3.2.11 - 2018-07-13 + Tor 0.3.2.11 moves to a new bridge authority, meaning people running + bridge relays should upgrade. We also take this opportunity to backport + other minor fixes. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + o Directory authority changes (backport from 0.3.3.7): + - Add an IPv6 address for the "dannenberg" directory authority. + Closes ticket 26343. + + o Major bugfixes (directory authorities, backport from 0.3.4.1-alpha): + - When directory authorities read a zero-byte bandwidth file, they + would previously log a warning with the contents of an + uninitialised buffer. They now log a warning about the empty file + instead. Fixes bug 26007; bugfix on 0.2.2.1-alpha. + + o Major bugfixes (onion service, backport from 0.3.4.1-alpha): + - Correctly detect when onion services get disabled after HUP. Fixes + bug 25761; bugfix on 0.3.2.1. + + o Minor features (sandbox, backport from 0.3.3.4-alpha): + - Explicitly permit the poll() system call when the Linux + seccomp2-based sandbox is enabled: apparently, some versions of + libc use poll() when calling getpwnam(). Closes ticket 25313. + + o Minor feature (continuous integration, backport from 0.3.3.5-rc): + - Update the Travis CI configuration to use the stable Rust channel, + now that we have decided to require that. Closes ticket 25714. + + o Minor features (continuous integration, backport from 0.3.4.1-alpha): + - Our .travis.yml configuration now includes support for testing the + results of "make distcheck". (It's not uncommon for "make check" + to pass but "make distcheck" to fail.) Closes ticket 25814. + - Our Travis CI configuration now integrates with the Coveralls + coverage analysis tool. Closes ticket 25818. + + o Minor features (relay, diagnostic, backport from 0.3.4.3-alpha): + - Add several checks to detect whether Tor relays are uploading + their descriptors without specifying why they regenerated them. + Diagnostic for ticket 25686. + + o Minor features (compilation, backport from 0.3.4.4-rc): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor bugfixes (correctness, client, backport from 0.3.4.1-alpha): + - Upon receiving a malformed connected cell, stop processing the + cell immediately. Previously we would mark the connection for + close, but continue processing the cell as if the connection were + open. Fixes bug 26072; bugfix on 0.2.4.7-alpha. + + o Minor bugfixes (Linux seccomp2 sandbox, backport from 0.3.4.1-alpha): + - Allow the nanosleep() system call, which glibc uses to implement + sleep() and usleep(). Fixes bug 24969; bugfix on 0.2.5.1-alpha. + + o Minor bugfixes (testing, compatibility, backport from 0.3.4.4-rc): + - When running the hs_ntor_ref.py test, make sure only to pass + strings (rather than "bytes" objects) to the Python subprocess + module. Python 3 on Windows seems to require this. Fixes bug + 26535; bugfix on 0.3.1.1-alpha. + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + o Minor bugfixes (compatibility, openssl, backport from 0.3.4.2-alpha): + - Work around a change in OpenSSL 1.1.1 where return values that + would previously indicate "no password" now indicate an empty + password. Without this workaround, Tor instances running with + OpenSSL 1.1.1 would accept descriptors that other Tor instances + would reject. Fixes bug 26116; bugfix on 0.2.5.16. + + o Minor bugfixes (documentation, backport from 0.3.3.5-rc): + - Document that the PerConnBW{Rate,Burst} options will fall back to + their corresponding consensus parameters only if those parameters + are set. Previously we had claimed that these values would always + be set in the consensus. Fixes bug 25296; bugfix on 0.2.2.7-alpha. + + o Minor bugfixes (compilation, backport from 0.3.4.4-rc): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (client, backport from 0.3.4.1-alpha): + - Don't consider Tor running as a client if the ControlPort is open, + but no actual client ports are open. Fixes bug 26062; bugfix + on 0.2.9.4-alpha. + + o Minor bugfixes (hardening, backport from 0.3.4.2-alpha): + - Prevent a possible out-of-bounds smartlist read in + protover_compute_vote(). Fixes bug 26196; bugfix on 0.2.9.4-alpha. + + o Minor bugfixes (C correctness, backport from 0.3.3.4-alpha): + - Fix a very unlikely (impossible, we believe) null pointer + dereference. Fixes bug 25629; bugfix on 0.2.9.15. Found by + Coverity; this is CID 1430932. + + o Minor bugfixes (onion service, backport from 0.3.4.1-alpha): + - Fix a memory leak when a v3 onion service is configured and gets a + SIGHUP signal. Fixes bug 25901; bugfix on 0.3.2.1-alpha. + - When parsing the descriptor signature, look for the token plus an + extra white-space at the end. This is more correct but also will + allow us to support new fields that might start with "signature". + Fixes bug 26069; bugfix on 0.3.0.1-alpha. + + o Minor bugfixes (relay, backport from 0.3.4.3-alpha): + - Relays now correctly block attempts to re-extend to the previous + relay by Ed25519 identity. Previously they would warn in this + case, but not actually reject the attempt. Fixes bug 26158; bugfix + on 0.3.0.1-alpha. + + o Minor bugfixes (relay, crash, backport from 0.3.4.1-alpha): + - Avoid a crash when running with DirPort set but ORPort turned off. + Fixes a case of bug 23693; bugfix on 0.3.1.1-alpha. + + o Minor bugfixes (compilation, backport from 0.3.4.2-alpha): + - Silence unused-const-variable warnings in zstd.h with some GCC + versions. Fixes bug 26272; bugfix on 0.3.1.1-alpha. + + o Minor bugfixes (testing, backport from 0.3.3.4-alpha): + - Avoid intermittent test failures due to a test that had relied on + onion service introduction point creation finishing within 5 + seconds of real clock time. Fixes bug 25450; bugfix + on 0.3.1.3-alpha. + + o Minor bugfixes (compilation, backport from 0.3.3.4-alpha): + - Fix a C99 compliance issue in our configuration script that caused + compilation issues when compiling Tor with certain versions of + xtools. Fixes bug 25474; bugfix on 0.3.2.5-alpha. + + o Minor bugfixes (memory, correctness, backport from 0.3.4.4-rc): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Code simplification and refactoring (backport from 0.3.3.5-rc): + - Move the list of default directory authorities to its own file. + Closes ticket 24854. Patch by "beastr0". + + +Changes in version 0.2.9.16 - 2018-07-13 + Tor 0.2.9.16 moves to a new bridge authority, meaning people running + bridge relays should upgrade. We also take this opportunity to backport + other minor fixes. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + o Directory authority changes (backport from 0.3.3.7): + - Add an IPv6 address for the "dannenberg" directory authority. + Closes ticket 26343. + + o Major bugfixes (directory authorities, backport from 0.3.4.1-alpha): + - When directory authorities read a zero-byte bandwidth file, they + would previously log a warning with the contents of an + uninitialised buffer. They now log a warning about the empty file + instead. Fixes bug 26007; bugfix on 0.2.2.1-alpha. + + o Minor features (sandbox, backport from 0.3.3.4-alpha): + - Explicitly permit the poll() system call when the Linux + seccomp2-based sandbox is enabled: apparently, some versions of + libc use poll() when calling getpwnam(). Closes ticket 25313. + + o Minor features (continuous integration, backport from 0.3.4.1-alpha): + - Our .travis.yml configuration now includes support for testing the + results of "make distcheck". (It's not uncommon for "make check" + to pass but "make distcheck" to fail.) Closes ticket 25814. + - Our Travis CI configuration now integrates with the Coveralls + coverage analysis tool. Closes ticket 25818. + + o Minor features (compilation, backport from 0.3.4.4-rc): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor bugfixes (correctness, client, backport from 0.3.4.1-alpha): + - Upon receiving a malformed connected cell, stop processing the + cell immediately. Previously we would mark the connection for + close, but continue processing the cell as if the connection were + open. Fixes bug 26072; bugfix on 0.2.4.7-alpha. + + o Minor bugfixes (Linux seccomp2 sandbox, backport from 0.3.4.1-alpha): + - Allow the nanosleep() system call, which glibc uses to implement + sleep() and usleep(). Fixes bug 24969; bugfix on 0.2.5.1-alpha. + + o Minor bugfixes (testing, compatibility, backport from 0.3.4.4-rc): + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + o Minor bugfixes (compatibility, openssl, backport from 0.3.4.2-alpha): + - Work around a change in OpenSSL 1.1.1 where return values that + would previously indicate "no password" now indicate an empty + password. Without this workaround, Tor instances running with + OpenSSL 1.1.1 would accept descriptors that other Tor instances + would reject. Fixes bug 26116; bugfix on 0.2.5.16. + + o Minor bugfixes (compilation, backport from 0.3.4.4-rc): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (client, backport from 0.3.4.1-alpha): + - Don't consider Tor running as a client if the ControlPort is open, + but no actual client ports are open. Fixes bug 26062; bugfix + on 0.2.9.4-alpha. + + o Minor bugfixes (hardening, backport from 0.3.4.2-alpha): + - Prevent a possible out-of-bounds smartlist read in + protover_compute_vote(). Fixes bug 26196; bugfix on 0.2.9.4-alpha. + + o Minor bugfixes (C correctness, backport from 0.3.3.4-alpha): + - Fix a very unlikely (impossible, we believe) null pointer + dereference. Fixes bug 25629; bugfix on 0.2.9.15. Found by + Coverity; this is CID 1430932. + + o Minor bugfixes (memory, correctness, backport from 0.3.4.4-rc): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Code simplification and refactoring (backport from 0.3.3.5-rc): + - Move the list of default directory authorities to its own file. + Closes ticket 24854. Patch by "beastr0". + + +Changes in version 0.3.4.4-rc - 2018-07-09 + Tor 0.3.4.4-rc fixes several small compilation, portability, and + correctness issues in previous versions of Tor. This version is a + release candidate: if no serious bugs are found, we expect that the + stable 0.3.4 release will be (almost) the same as this release. + + o Minor features (compilation): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor features (Rust, portability): + - Rust cross-compilation is now supported. Closes ticket 25895. + + o Minor bugfixes (compilation): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (control port): + - Report the port correctly when a port is configured to bind to + "auto". Fixes bug 26568; bugfix on 0.3.4.1-alpha. + - Handle the HSADDRESS= argument to the HSPOST command properly. + (Previously, this argument was misparsed and thus ignored.) Fixes + bug 26523; bugfix on 0.3.3.1-alpha. Patch by "akwizgran". + + o Minor bugfixes (correctness, flow control): + - Upon receiving a stream-level SENDME cell, verify that our window + has not grown too large. Fixes bug 26214; bugfix on svn + r54 (pre-0.0.1). + + o Minor bugfixes (memory, correctness): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Minor bugfixes (testing, compatibility): + - When running the hs_ntor_ref.py test, make sure only to pass + strings (rather than "bytes" objects) to the Python subprocess + module. Python 3 on Windows seems to require this. Fixes bug + 26535; bugfix on 0.3.1.1-alpha. + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + +Changes in version 0.3.3.8 - 2018-07-09 + Tor 0.3.3.8 backports several changes from the 0.3.4.x series, including + fixes for a memory leak affecting directory authorities. + + o Major bugfixes (directory authority, backport from 0.3.4.3-alpha): + - Stop leaking memory on directory authorities when planning to + vote. This bug was crashing authorities by exhausting their + memory. Fixes bug 26435; bugfix on 0.3.3.6. + + o Major bugfixes (rust, testing, backport from 0.3.4.3-alpha): + - Make sure that failing tests in Rust will actually cause the build + to fail: previously, they were ignored. Fixes bug 26258; bugfix + on 0.3.3.4-alpha. + + o Minor features (compilation, backport from 0.3.4.4-rc): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor features (relay, diagnostic, backport from 0.3.4.3-alpha): + - Add several checks to detect whether Tor relays are uploading + their descriptors without specifying why they regenerated them. + Diagnostic for ticket 25686. + + o Minor bugfixes (circuit path selection, backport from 0.3.4.1-alpha): + - Don't count path selection failures as circuit build failures. + This change should eliminate cases where Tor blames its guard or + the network for situations like insufficient microdescriptors + and/or overly restrictive torrc settings. Fixes bug 25705; bugfix + on 0.3.3.1-alpha. + + o Minor bugfixes (compilation, backport from 0.3.4.4-rc): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (control port, backport from 0.3.4.4-rc): + - Handle the HSADDRESS= argument to the HSPOST command properly. + (Previously, this argument was misparsed and thus ignored.) Fixes + bug 26523; bugfix on 0.3.3.1-alpha. Patch by "akwizgran". + + o Minor bugfixes (memory, correctness, backport from 0.3.4.4-rc): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Minor bugfixes (relay, backport from 0.3.4.3-alpha): + - Relays now correctly block attempts to re-extend to the previous + relay by Ed25519 identity. Previously they would warn in this + case, but not actually reject the attempt. Fixes bug 26158; bugfix + on 0.3.0.1-alpha. + + o Minor bugfixes (restart-in-process, backport from 0.3.4.1-alpha): + - When shutting down, Tor now clears all the flags in the control.c + module. This should prevent a bug where authentication cookies are + not generated on restart. Fixes bug 25512; bugfix on 0.3.3.1-alpha. + + o Minor bugfixes (testing, compatibility, backport from 0.3.4.4-rc): + - When running the hs_ntor_ref.py test, make sure only to pass + strings (rather than "bytes" objects) to the Python subprocess + module. Python 3 on Windows seems to require this. Fixes bug + 26535; bugfix on 0.3.1.1-alpha. + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + +Changes in version 0.3.4.3-alpha - 2018-06-26 + Tor 0.3.4.3-alpha fixes several bugs in earlier versions, including + one that was causing stability issues on directory authorities. + + o Major bugfixes (directory authority): + - Stop leaking memory on directory authorities when planning to + vote. This bug was crashing authorities by exhausting their + memory. Fixes bug 26435; bugfix on 0.3.3.6. + + o Major bugfixes (rust, testing): + - Make sure that failing tests in Rust will actually cause the build + to fail: previously, they were ignored. Fixes bug 26258; bugfix + on 0.3.3.4-alpha. + + o Minor feature (directory authorities): + - Stop warning about incomplete bw lines before the first complete + bw line has been found, so that additional header lines can be + ignored. Fixes bug 25960; bugfix on 0.2.2.1-alpha + + o Minor features (relay, diagnostic): + - Add several checks to detect whether Tor relays are uploading + their descriptors without specifying why they regenerated them. + Diagnostic for ticket 25686. + + o Minor features (unit tests): + - Test complete bandwidth measurements files, and test that + incomplete bandwidth lines only give warnings when the end of the + header has not been detected. Fixes bug 25947; bugfix + on 0.2.2.1-alpha + + o Minor bugfixes (compilation): + - Refrain from compiling unit testing related object files when + --disable-unittests is set to configure script. Fixes bug 24891; + bugfix on 0.2.5.1-alpha. + - When linking the libtor_testing.a library, only include the + dirauth object files once. Previously, they were getting added + twice. Fixes bug 26402; bugfix on 0.3.4.1-alpha. + - The --enable-fatal-warnings flag now affects Rust code as well. + Closes ticket 26245. + + o Minor bugfixes (onion services): + - Recompute some consensus information after detecting a clock jump, + or after transitioning from a non-live consensus to a live + consensus. We do this to avoid having an outdated state, and + miscalculating the index for next-generation onion services. Fixes + bug 24977; bugfix on 0.3.2.1-alpha. + + o Minor bugfixes (relay): + - Relays now correctly block attempts to re-extend to the previous + relay by Ed25519 identity. Previously they would warn in this + case, but not actually reject the attempt. Fixes bug 26158; bugfix + on 0.3.0.1-alpha. + + o Minor bugfixes (testing): + - Fix compilation of the doctests in the Rust crypto crate. Fixes + bug 26415; bugfix on 0.3.4.1-alpha. + - Instead of trying to read the geoip configuration files from + within the unit tests, instead create our own ersatz files with + just enough geoip data in the format we expect. Trying to read + from the source directory created problems on Windows with mingw, + where the build system's paths are not the same as the platform's + paths. Fixes bug 25787; bugfix on 0.3.4.1-alpha. + - Refrain from trying to get an item from an empty smartlist in + test_bridges_clear_bridge_list. Set DEBUG_SMARTLIST in unit tests + to catch improper smartlist usage. Furthermore, enable + DEBUG_SMARTLIST globally when build is configured with fragile + hardening. Fixes bug 26196; bugfix on 0.3.4.1-alpha. + + Changes in version 0.3.3.7 - 2018-06-12 Tor 0.3.3.7 backports several changes from the 0.3.4.x series, including fixes for bugs affecting compatibility and stability. @@ -196,7 +813,7 @@ Changes in version 0.3.3.6 - 2018-05-22 Fixes bug 26069; bugfix on 0.3.0.1-alpha. o Minor bugfixes (relay, crash, backport from 0.3.4.1-alpha): - - Avoid a crash when running with DirPort set but ORPort tuned off. + - Avoid a crash when running with DirPort set but ORPort turned off. Fixes a case of bug 23693; bugfix on 0.3.1.1-alpha. o Documentation (backport from 0.3.4.1-alpha): @@ -499,7 +1116,7 @@ Changes in version 0.3.4.1-alpha - 2018-05-17 here.) Fixes bug 24910; bugfix on 0.2.4.17-rc. o Minor bugfixes (relay, crash): - - Avoid a crash when running with DirPort set but ORPort tuned off. + - Avoid a crash when running with DirPort set but ORPort turned off. Fixes a case of bug 23693; bugfix on 0.3.1.1-alpha. o Minor bugfixes (restart-in-process): @@ -28476,4 +29093,3 @@ Changes in version 0.0.2pre13 - 2003-10-19 - If --DebugLogFile is specified, log to it at -l debug - If --LogFile is specified, use it instead of commandline - If --RunAsDaemon is set, tor forks and backgrounds on startup - diff --git a/ReleaseNotes b/ReleaseNotes index 8a38289c2c..11bcba8a69 100644 --- a/ReleaseNotes +++ b/ReleaseNotes @@ -2,6 +2,330 @@ This document summarizes new features and bugfixes in each stable release of Tor. If you want to see more detailed descriptions of the changes in each development snapshot, see the ChangeLog file. +Changes in version 0.3.3.9 - 2018-07-13 + Tor 0.3.3.9 moves to a new bridge authority, meaning people running + bridge relays should upgrade. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + +Changes in version 0.3.2.11 - 2018-07-13 + Tor 0.3.2.11 moves to a new bridge authority, meaning people running + bridge relays should upgrade. We also take this opportunity to backport + other minor fixes. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + o Directory authority changes (backport from 0.3.3.7): + - Add an IPv6 address for the "dannenberg" directory authority. + Closes ticket 26343. + + o Major bugfixes (directory authorities, backport from 0.3.4.1-alpha): + - When directory authorities read a zero-byte bandwidth file, they + would previously log a warning with the contents of an + uninitialised buffer. They now log a warning about the empty file + instead. Fixes bug 26007; bugfix on 0.2.2.1-alpha. + + o Major bugfixes (onion service, backport from 0.3.4.1-alpha): + - Correctly detect when onion services get disabled after HUP. Fixes + bug 25761; bugfix on 0.3.2.1. + + o Minor features (sandbox, backport from 0.3.3.4-alpha): + - Explicitly permit the poll() system call when the Linux + seccomp2-based sandbox is enabled: apparently, some versions of + libc use poll() when calling getpwnam(). Closes ticket 25313. + + o Minor feature (continuous integration, backport from 0.3.3.5-rc): + - Update the Travis CI configuration to use the stable Rust channel, + now that we have decided to require that. Closes ticket 25714. + + o Minor features (continuous integration, backport from 0.3.4.1-alpha): + - Our .travis.yml configuration now includes support for testing the + results of "make distcheck". (It's not uncommon for "make check" + to pass but "make distcheck" to fail.) Closes ticket 25814. + - Our Travis CI configuration now integrates with the Coveralls + coverage analysis tool. Closes ticket 25818. + + o Minor features (relay, diagnostic, backport from 0.3.4.3-alpha): + - Add several checks to detect whether Tor relays are uploading + their descriptors without specifying why they regenerated them. + Diagnostic for ticket 25686. + + o Minor features (compilation, backport from 0.3.4.4-rc): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor bugfixes (correctness, client, backport from 0.3.4.1-alpha): + - Upon receiving a malformed connected cell, stop processing the + cell immediately. Previously we would mark the connection for + close, but continue processing the cell as if the connection were + open. Fixes bug 26072; bugfix on 0.2.4.7-alpha. + + o Minor bugfixes (Linux seccomp2 sandbox, backport from 0.3.4.1-alpha): + - Allow the nanosleep() system call, which glibc uses to implement + sleep() and usleep(). Fixes bug 24969; bugfix on 0.2.5.1-alpha. + + o Minor bugfixes (testing, compatibility, backport from 0.3.4.4-rc): + - When running the hs_ntor_ref.py test, make sure only to pass + strings (rather than "bytes" objects) to the Python subprocess + module. Python 3 on Windows seems to require this. Fixes bug + 26535; bugfix on 0.3.1.1-alpha. + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + o Minor bugfixes (compatibility, openssl, backport from 0.3.4.2-alpha): + - Work around a change in OpenSSL 1.1.1 where return values that + would previously indicate "no password" now indicate an empty + password. Without this workaround, Tor instances running with + OpenSSL 1.1.1 would accept descriptors that other Tor instances + would reject. Fixes bug 26116; bugfix on 0.2.5.16. + + o Minor bugfixes (documentation, backport from 0.3.3.5-rc): + - Document that the PerConnBW{Rate,Burst} options will fall back to + their corresponding consensus parameters only if those parameters + are set. Previously we had claimed that these values would always + be set in the consensus. Fixes bug 25296; bugfix on 0.2.2.7-alpha. + + o Minor bugfixes (compilation, backport from 0.3.4.4-rc): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (client, backport from 0.3.4.1-alpha): + - Don't consider Tor running as a client if the ControlPort is open, + but no actual client ports are open. Fixes bug 26062; bugfix + on 0.2.9.4-alpha. + + o Minor bugfixes (hardening, backport from 0.3.4.2-alpha): + - Prevent a possible out-of-bounds smartlist read in + protover_compute_vote(). Fixes bug 26196; bugfix on 0.2.9.4-alpha. + + o Minor bugfixes (C correctness, backport from 0.3.3.4-alpha): + - Fix a very unlikely (impossible, we believe) null pointer + dereference. Fixes bug 25629; bugfix on 0.2.9.15. Found by + Coverity; this is CID 1430932. + + o Minor bugfixes (onion service, backport from 0.3.4.1-alpha): + - Fix a memory leak when a v3 onion service is configured and gets a + SIGHUP signal. Fixes bug 25901; bugfix on 0.3.2.1-alpha. + - When parsing the descriptor signature, look for the token plus an + extra white-space at the end. This is more correct but also will + allow us to support new fields that might start with "signature". + Fixes bug 26069; bugfix on 0.3.0.1-alpha. + + o Minor bugfixes (relay, backport from 0.3.4.3-alpha): + - Relays now correctly block attempts to re-extend to the previous + relay by Ed25519 identity. Previously they would warn in this + case, but not actually reject the attempt. Fixes bug 26158; bugfix + on 0.3.0.1-alpha. + + o Minor bugfixes (relay, crash, backport from 0.3.4.1-alpha): + - Avoid a crash when running with DirPort set but ORPort turned off. + Fixes a case of bug 23693; bugfix on 0.3.1.1-alpha. + + o Minor bugfixes (compilation, backport from 0.3.4.2-alpha): + - Silence unused-const-variable warnings in zstd.h with some GCC + versions. Fixes bug 26272; bugfix on 0.3.1.1-alpha. + + o Minor bugfixes (testing, backport from 0.3.3.4-alpha): + - Avoid intermittent test failures due to a test that had relied on + onion service introduction point creation finishing within 5 + seconds of real clock time. Fixes bug 25450; bugfix + on 0.3.1.3-alpha. + + o Minor bugfixes (compilation, backport from 0.3.3.4-alpha): + - Fix a C99 compliance issue in our configuration script that caused + compilation issues when compiling Tor with certain versions of + xtools. Fixes bug 25474; bugfix on 0.3.2.5-alpha. + + o Minor bugfixes (memory, correctness, backport from 0.3.4.4-rc): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Code simplification and refactoring (backport from 0.3.3.5-rc): + - Move the list of default directory authorities to its own file. + Closes ticket 24854. Patch by "beastr0". + + +Changes in version 0.2.9.16 - 2018-07-13 + Tor 0.2.9.16 moves to a new bridge authority, meaning people running + bridge relays should upgrade. We also take this opportunity to backport + other minor fixes. + + o Directory authority changes: + - The "Bifroest" bridge authority has been retired; the new bridge + authority is "Serge", and it is operated by George from the + TorBSD project. Closes ticket 26771. + + o Directory authority changes (backport from 0.3.3.7): + - Add an IPv6 address for the "dannenberg" directory authority. + Closes ticket 26343. + + o Major bugfixes (directory authorities, backport from 0.3.4.1-alpha): + - When directory authorities read a zero-byte bandwidth file, they + would previously log a warning with the contents of an + uninitialised buffer. They now log a warning about the empty file + instead. Fixes bug 26007; bugfix on 0.2.2.1-alpha. + + o Minor features (sandbox, backport from 0.3.3.4-alpha): + - Explicitly permit the poll() system call when the Linux + seccomp2-based sandbox is enabled: apparently, some versions of + libc use poll() when calling getpwnam(). Closes ticket 25313. + + o Minor features (continuous integration, backport from 0.3.4.1-alpha): + - Our .travis.yml configuration now includes support for testing the + results of "make distcheck". (It's not uncommon for "make check" + to pass but "make distcheck" to fail.) Closes ticket 25814. + - Our Travis CI configuration now integrates with the Coveralls + coverage analysis tool. Closes ticket 25818. + + o Minor features (compilation, backport from 0.3.4.4-rc): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor bugfixes (correctness, client, backport from 0.3.4.1-alpha): + - Upon receiving a malformed connected cell, stop processing the + cell immediately. Previously we would mark the connection for + close, but continue processing the cell as if the connection were + open. Fixes bug 26072; bugfix on 0.2.4.7-alpha. + + o Minor bugfixes (Linux seccomp2 sandbox, backport from 0.3.4.1-alpha): + - Allow the nanosleep() system call, which glibc uses to implement + sleep() and usleep(). Fixes bug 24969; bugfix on 0.2.5.1-alpha. + + o Minor bugfixes (testing, compatibility, backport from 0.3.4.4-rc): + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + o Minor bugfixes (compatibility, openssl, backport from 0.3.4.2-alpha): + - Work around a change in OpenSSL 1.1.1 where return values that + would previously indicate "no password" now indicate an empty + password. Without this workaround, Tor instances running with + OpenSSL 1.1.1 would accept descriptors that other Tor instances + would reject. Fixes bug 26116; bugfix on 0.2.5.16. + + o Minor bugfixes (compilation, backport from 0.3.4.4-rc): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (client, backport from 0.3.4.1-alpha): + - Don't consider Tor running as a client if the ControlPort is open, + but no actual client ports are open. Fixes bug 26062; bugfix + on 0.2.9.4-alpha. + + o Minor bugfixes (hardening, backport from 0.3.4.2-alpha): + - Prevent a possible out-of-bounds smartlist read in + protover_compute_vote(). Fixes bug 26196; bugfix on 0.2.9.4-alpha. + + o Minor bugfixes (C correctness, backport from 0.3.3.4-alpha): + - Fix a very unlikely (impossible, we believe) null pointer + dereference. Fixes bug 25629; bugfix on 0.2.9.15. Found by + Coverity; this is CID 1430932. + + o Minor bugfixes (memory, correctness, backport from 0.3.4.4-rc): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Code simplification and refactoring (backport from 0.3.3.5-rc): + - Move the list of default directory authorities to its own file. + Closes ticket 24854. Patch by "beastr0". + + +Changes in version 0.3.3.8 - 2018-07-09 + Tor 0.3.3.8 backports several changes from the 0.3.4.x series, including + fixes for a memory leak affecting directory authorities. + + o Major bugfixes (directory authority, backport from 0.3.4.3-alpha): + - Stop leaking memory on directory authorities when planning to + vote. This bug was crashing authorities by exhausting their + memory. Fixes bug 26435; bugfix on 0.3.3.6. + + o Major bugfixes (rust, testing, backport from 0.3.4.3-alpha): + - Make sure that failing tests in Rust will actually cause the build + to fail: previously, they were ignored. Fixes bug 26258; bugfix + on 0.3.3.4-alpha. + + o Minor features (compilation, backport from 0.3.4.4-rc): + - When building Tor, prefer to use Python 3 over Python 2, and more + recent (contemplated) versions over older ones. Closes + ticket 26372. + + o Minor features (geoip): + - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 + Country database. Closes ticket 26674. + + o Minor features (relay, diagnostic, backport from 0.3.4.3-alpha): + - Add several checks to detect whether Tor relays are uploading + their descriptors without specifying why they regenerated them. + Diagnostic for ticket 25686. + + o Minor bugfixes (circuit path selection, backport from 0.3.4.1-alpha): + - Don't count path selection failures as circuit build failures. + This change should eliminate cases where Tor blames its guard or + the network for situations like insufficient microdescriptors + and/or overly restrictive torrc settings. Fixes bug 25705; bugfix + on 0.3.3.1-alpha. + + o Minor bugfixes (compilation, backport from 0.3.4.4-rc): + - Fix a compilation warning on some versions of GCC when building + code that calls routerinfo_get_my_routerinfo() twice, assuming + that the second call will succeed if the first one did. Fixes bug + 26269; bugfix on 0.2.8.2-alpha. + + o Minor bugfixes (control port, backport from 0.3.4.4-rc): + - Handle the HSADDRESS= argument to the HSPOST command properly. + (Previously, this argument was misparsed and thus ignored.) Fixes + bug 26523; bugfix on 0.3.3.1-alpha. Patch by "akwizgran". + + o Minor bugfixes (memory, correctness, backport from 0.3.4.4-rc): + - Fix a number of small memory leaks identified by coverity. Fixes + bug 26467; bugfix on numerous Tor versions. + + o Minor bugfixes (relay, backport from 0.3.4.3-alpha): + - Relays now correctly block attempts to re-extend to the previous + relay by Ed25519 identity. Previously they would warn in this + case, but not actually reject the attempt. Fixes bug 26158; bugfix + on 0.3.0.1-alpha. + + o Minor bugfixes (restart-in-process, backport from 0.3.4.1-alpha): + - When shutting down, Tor now clears all the flags in the control.c + module. This should prevent a bug where authentication cookies are + not generated on restart. Fixes bug 25512; bugfix on 0.3.3.1-alpha. + + o Minor bugfixes (testing, compatibility, backport from 0.3.4.4-rc): + - When running the hs_ntor_ref.py test, make sure only to pass + strings (rather than "bytes" objects) to the Python subprocess + module. Python 3 on Windows seems to require this. Fixes bug + 26535; bugfix on 0.3.1.1-alpha. + - When running the ntor_ref.py test, make sure only to pass strings + (rather than "bytes" objects) to the Python subprocess module. + Python 3 on Windows seems to require this. Fixes bug 26535; bugfix + on 0.2.5.5-alpha. + + Changes in version 0.3.3.7 - 2018-06-12 Tor 0.3.3.7 backports several changes from the 0.3.4.x series, including fixes for bugs affecting compatibility and stability. @@ -562,7 +886,7 @@ Changes in version 0.3.3.6 - 2018-05-22 hop. Fixes bug 23100; bugfix on 0.2.2.2-alpha. o Minor bugfixes (relay, crash, backport from 0.3.4.1-alpha): - - Avoid a crash when running with DirPort set but ORPort tuned off. + - Avoid a crash when running with DirPort set but ORPort turned off. Fixes a case of bug 23693; bugfix on 0.3.1.1-alpha. o Minor bugfixes (Rust FFI): diff --git a/changes/27286 b/changes/27286 deleted file mode 100644 index 5f5f7a4ae7..0000000000 --- a/changes/27286 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (directory authorities): - - Authorities no longer vote to make the subprotocol version "LinkAuth=1" - a requirement: it is unsupportable with NSS, and hasn't been needed - since Tor 0.3.0.1-alpha. Closes ticket 27286. diff --git a/changes/bug20424_029_minimal b/changes/bug20424_029_minimal deleted file mode 100644 index eb7886233e..0000000000 --- a/changes/bug20424_029_minimal +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - When compiling with --enable-openbsd-malloc or --enable-tcmalloc, tell - the compiler not to include the system malloc implementation. Fixes bug - 20424; bugfix on 0.2.0.20-rc. diff --git a/changes/bug24891 b/changes/bug24891 deleted file mode 100644 index 403b2b1123..0000000000 --- a/changes/bug24891 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Refrain from compiling unit testing related object files - when --disable-unittests is set to configure script. - Fixes bug 24891; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug24977 b/changes/bug24977 deleted file mode 100644 index f8127a2a73..0000000000 --- a/changes/bug24977 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (onion services): - - Recompute some consensus information after clock skews or when we - transition from a non-live consensus to a live consensus. We do this to - avoid having an outdated state which could impact next-generation onion - services. Fixes bug 24977; bugfix on 0.3.2.1-alpha. diff --git a/changes/bug25440 b/changes/bug25440 deleted file mode 100644 index f8d9dd4fab..0000000000 --- a/changes/bug25440 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (linux seccomp2 sandbox): - - Fix a bug in out sandboxing rules for the openat() syscall. - Previously, no openat() call would be permitted, which would break - filesystem operations on recent glibc versions. Fixes bug 25440; - bugfix on 0.2.9.15. Diagnosis and patch from Daniel Pinto. diff --git a/changes/bug25686_diagnostic b/changes/bug25686_diagnostic deleted file mode 100644 index 96323145d8..0000000000 --- a/changes/bug25686_diagnostic +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (relay, diagnostic): - - Add several checks to detect whether Tor relays are uploading their - descriptors without specifying why they regenerated. Diagnostic for - ticket 25686. diff --git a/changes/bug25787 b/changes/bug25787 deleted file mode 100644 index 3041e8a603..0000000000 --- a/changes/bug25787 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (testing): - - Instead of trying to read the geoip configuration files from within the - unit tests, instead create our own ersatz files with just enough - geoip data in the format we expect. Trying to read from the source - directory created problems on Windows with mingw, where the - build system's paths are not the same as the platform's paths. - Fixes bug 25787; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26158 b/changes/bug26158 deleted file mode 100644 index 0d74cf1167..0000000000 --- a/changes/bug26158 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (relay): - - Relays now correctly block attempts to re-extend to the previous - relay by Ed25519 identity. Previously they would warn in this case, - but not actually reject the attempt. Fixes bug 26158; bugfix on - 0.3.0.1-alpha. diff --git a/changes/bug26196 b/changes/bug26196 deleted file mode 100644 index e63f09a2d6..0000000000 --- a/changes/bug26196 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (testing, compilation): - - Refrain from trying to get an item from empty smartlist in - test_bridges_clear_bridge_list. Set DEBUG_SMARTLIST in unit - tests to catch improper smartlist usage. Furthermore, - enable DEBUG_SMARTLIST globally when build is configured - with fragile hardening. Fixes bug 26196; bugfix on - 0.3.4.1-alpha. diff --git a/changes/bug26214 b/changes/bug26214 deleted file mode 100644 index 4277b9c6ec..0000000000 --- a/changes/bug26214 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (correctness, flow control): - - Upon receiving a stream-level SENDME cell, verify that our window has - not grown too large. Fixes bug 26214; bugfix on svn r54 (pre-0.0.1) diff --git a/changes/bug26245 b/changes/bug26245 deleted file mode 100644 index 7a14cea0bc..0000000000 --- a/changes/bug26245 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (compilation): - o The --enable-fatal-warnings flag now affects Rust code as well. - Closes ticket 26245. diff --git a/changes/bug26258_033 b/changes/bug26258_033 deleted file mode 100644 index ceca383335..0000000000 --- a/changes/bug26258_033 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (rust, testing): - - Fix a bug where a failure in the rust unit tests would not actually - cause the build to fail. Fixes bug 26258; bugfix on 0.3.3.4-alpha. - diff --git a/changes/bug26269 b/changes/bug26269 deleted file mode 100644 index 73dcdbf5c5..0000000000 --- a/changes/bug26269 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (compilation): - - Fix a compilation warning on some versions of GCC when - building code that calls routerinfo_get_my_routerinfo() twice, - assuming that the second call will succeed if the first one did. - Fixes bug 26269; bugfix on 0.2.8.2-alpha. diff --git a/changes/bug26402 b/changes/bug26402 deleted file mode 100644 index b21283a2d2..0000000000 --- a/changes/bug26402 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - When linking the libtor_testing.a library, only include the dirauth - object files once. Previously, they were getting added twice. - Fixes bug 26402; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26415 b/changes/bug26415 deleted file mode 100644 index 497fbb7365..0000000000 --- a/changes/bug26415 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (testing): - - Fix compilation of the doctests in the Rust crypto crate. Fixes - bug 26415; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26435 b/changes/bug26435 deleted file mode 100644 index f66c503dd5..0000000000 --- a/changes/bug26435 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (directory authority): - - Fix a memory leak where directory authorities would leak a chunk - of memory for every router descriptor every time they considered - voting. This bug was taking down directory authorities due to - out-of-memory issues. Fixes bug 26435; bugfix on 0.3.3.6. diff --git a/changes/bug26485 b/changes/bug26485 deleted file mode 100644 index 5a40b7a78e..0000000000 --- a/changes/bug26485 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (directory authority): - - When voting for recommended versions, make sure that all of the - versions are well-formed and parsable. Fixes bug 26485; bugfix on - 0.1.1.6-alpha. diff --git a/changes/bug26497 b/changes/bug26497 deleted file mode 100644 index d0c05ff3e4..0000000000 --- a/changes/bug26497 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (rust): - - Stop setting $CARGO_HOME. cargo will use the user's $CARGO_HOME, or - $HOME/.cargo by default. Fixes bug 26497; bugfix on 0.3.1.5-alpha. diff --git a/changes/bug26497-backport b/changes/bug26497-backport deleted file mode 100644 index 1d86e01bf3..0000000000 --- a/changes/bug26497-backport +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (rust): - - Backport test_rust.sh from master. - Fixes bug 26497; bugfix on 0.3.1.5-alpha. diff --git a/changes/bug26497-cd b/changes/bug26497-cd deleted file mode 100644 index 37bf1bc956..0000000000 --- a/changes/bug26497-cd +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (rust): - - cd to ${abs_top_builddir}/src/rust before running cargo in - src/test/test_rust.sh. This makes the working directory consistent - between builds and tests. Fixes bug 26497; bugfix on 0.3.3.2-alpha. diff --git a/changes/bug26523 b/changes/bug26523 deleted file mode 100644 index a739d240e9..0000000000 --- a/changes/bug26523 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (hidden service, control port): - - The HSPOST command wasn't parsing properly the HSADDRESS= parameter and - thus not using it. It now handles it correctly. Fixes bug 26523; bugfix on - 0.3.3.1-alpha. Patch by "akwizgran". - diff --git a/changes/bug26535.029 b/changes/bug26535.029 deleted file mode 100644 index 111b539f17..0000000000 --- a/changes/bug26535.029 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing, compatibility): - - When running the ntor_ref.py test, make sure only to pass strings - (rather than "bytes" objects) to the Python subprocess module. - Python 3 on Windows seems to require this. Fixes bug 26535; bugfix on - 0.2.5.5-alpha. diff --git a/changes/bug26535.032 b/changes/bug26535.032 deleted file mode 100644 index 395d08d816..0000000000 --- a/changes/bug26535.032 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing, compatibility): - - When running the hs_ntor_ref.py test, make sure only to pass strings - (rather than "bytes" objects) to the Python subprocess module. - Python 3 on Windows seems to require this. Fixes bug 26535; bugfix on - 0.3.1.1-alpha. diff --git a/changes/bug26568 b/changes/bug26568 deleted file mode 100644 index 0c4c05d043..0000000000 --- a/changes/bug26568 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (controller): - - Report the port correctly when a port is configured to bind to "auto". - Fixes bug 26568; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26627 b/changes/bug26627 deleted file mode 100644 index d28bd05d53..0000000000 --- a/changes/bug26627 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (v3 onion services): - - Stop sending ed25519 link specifiers in v3 onion service introduce - cells, when the rendezvous point doesn't support ed25519 link - authentication. Fixes bug 26627; bugfix on 0.3.2.4-alpha. - - Stop putting ed25519 link specifiers in v3 onion service descriptors, - when the intro point doesn't support ed25519 link authentication. - Fixes bug 26627; bugfix on 0.3.2.4-alpha. diff --git a/changes/bug26779 b/changes/bug26779 deleted file mode 100644 index fb7f6160ea..0000000000 --- a/changes/bug26779 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (bug workaround): - - Compile correctly on systems that provide the C11 stdatomic.h header, - but where C11 atomic functions don't actually compile. - Closes ticket 26779; workaround for Debian issue 903709. diff --git a/changes/bug26785 b/changes/bug26785 deleted file mode 100644 index e6392fcbdd..0000000000 --- a/changes/bug26785 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation, portability): - - Don't try to use a pragma to temporarily disable - -Wunused-const-variable if the compiler doesn't support it. - Fixes bug 26785; bugfix on 0.3.2.11. diff --git a/changes/bug26787 b/changes/bug26787 deleted file mode 100644 index b32e519a93..0000000000 --- a/changes/bug26787 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (testing): - - Disable core dumps in test_bt.sh, to avoid failures in "make - distcheck". Fixes bug 26787; bugfix on 0.2.5.2-alpha. diff --git a/changes/bug26789 b/changes/bug26789 deleted file mode 100644 index 9b3520543d..0000000000 --- a/changes/bug26789 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Update build system so that tor builds again with - --disable-unittests after recent refactoring efforts. - Fixes bug 26789; bugfix on 0.3.4.3-alpha. diff --git a/changes/bug26830 b/changes/bug26830 deleted file mode 100644 index c002f19530..0000000000 --- a/changes/bug26830 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (continuous integration): - - Skip an unreliable key generation test on Windows, until the underlying - issue in bug 26076 is resolved. Fixes bug 26830; bugfix on 0.2.7.3-rc. diff --git a/changes/bug26853 b/changes/bug26853 deleted file mode 100644 index 6ee47789b9..0000000000 --- a/changes/bug26853 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (continuous integration): - - Skip an unreliable key expiration test on Windows, until the underlying - issue in bug 26076 is resolved. Fixes bug 26853; bugfix on 0.3.2.1-alpha. diff --git a/changes/bug26873 b/changes/bug26873 deleted file mode 100644 index 565f8bf0b1..0000000000 --- a/changes/bug26873 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (portability): - - Fix compilation of the unit tests on GNU/Hurd, which does not - define PATH_MAX. Fixes bug 26873; bugfix on 0.3.3.1-alpha. - Patch from "paulusASol". diff --git a/changes/bug26876 b/changes/bug26876 deleted file mode 100644 index b661104236..0000000000 --- a/changes/bug26876 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (portability): - - Work around two different bugs in the OS X 10.10 and later SDKs that - would prevent us from successfully targeting earlier versions of OS X. - Fixes bug 26876; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug26924 b/changes/bug26924 deleted file mode 100644 index 882db56b40..0000000000 --- a/changes/bug26924 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (single onion services, Tor2web): - - Log a protocol warning when single onion services or Tor2web clients - fail to authenticate direct connections to relays. - Fixes bug 26924; bugfix on 0.2.9.1-alpha. diff --git a/changes/bug26927 b/changes/bug26927 deleted file mode 100644 index cd035bba8e..0000000000 --- a/changes/bug26927 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (logging): - - Improve the log message when connection initiators fail to authenticate - direct connections to relays. - Fixes bug 26927; bugfix on 0.3.0.1-alpha. diff --git a/changes/bug26932 b/changes/bug26932 deleted file mode 100644 index 7d9481dcd3..0000000000 --- a/changes/bug26932 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (onion services): - - Fix bug that causes services to not ever rotate their descriptors if they - were getting SIGHUPed often. Fixes bug 26932; bugfix on 0.3.2.1-alpha.
\ No newline at end of file diff --git a/changes/bug26948 b/changes/bug26948 deleted file mode 100644 index 0f0728843f..0000000000 --- a/changes/bug26948 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (in-process restart): - - Always call tor_free_all() when leaving tor_run_main(). When we - did not, restarting tor in-process would cause an assertion failure. - Fixes bug 26948; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug26979 b/changes/bug26979 deleted file mode 100644 index e615207b74..0000000000 --- a/changes/bug26979 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (appveyor ci): - - Improve Appveyor CI IRC logging. Generate correct branches and URLs for - pull requests and tags. Use unambiguous short commits. - Fixes bug 26979; bugfix on master. diff --git a/changes/bug26994 b/changes/bug26994 deleted file mode 100644 index 664894a7fc..0000000000 --- a/changes/bug26994 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (portability): - - Avoid a compilation error in test_bwmgt.c on Solaris 10. - Fixes bug 26994; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27003 b/changes/bug27003 deleted file mode 100644 index 4f2045afc7..0000000000 --- a/changes/bug27003 +++ /dev/null @@ -1,6 +0,0 @@ - o Major bugfixes (event scheduler): - - When we enable a periodic event, schedule it in the event loop - rather than running it immediately. Previously, we would re-run - periodic events immediately in the middle of (for example) - changing our options, with unpredictable effects. Fixes bug - 27003; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27081 b/changes/bug27081 deleted file mode 100644 index 74e0efbd29..0000000000 --- a/changes/bug27081 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation, windows): - - Don't link or search for pthreads when building for Windows, even if we - are using build environment (like mingw) that provides a pthreads - library. Fixes bug 27081; bugfix on 0.1.0.1-rc. diff --git a/changes/bug27088 b/changes/bug27088 deleted file mode 100644 index d4d3b292c5..0000000000 --- a/changes/bug27088 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (continuous integration): - - Pass the module flags to distcheck configure, and - log the flags before running configure. (Backported - to 0.2.9 and later as a precaution.) - Fixes bug 27088; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27090 b/changes/bug27090 deleted file mode 100644 index 3d119a9c30..0000000000 --- a/changes/bug27090 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (continuous integration): - - Build with zstd on macOS. - Fixes bug 27090; bugfix on 0.3.1.5-alpha. diff --git a/changes/bug27093 b/changes/bug27093 deleted file mode 100644 index 6c097f1196..0000000000 --- a/changes/bug27093 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (rust): - - Consistently use ../../.. as a fallback for $abs_top_srcdir in - test_rust.sh. Fixes bug 27093; bugfix on 0.3.4.3-alpha. diff --git a/changes/bug27164 b/changes/bug27164 deleted file mode 100644 index d04d2f28f4..0000000000 --- a/changes/bug27164 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (rust): - - Protover parsing was ignoring a 2nd hyphen and everything after it, - accepting entries like "Link=1-5-foo". Fixes bug 27164; bugfix on - 0.3.3.1-alpha. diff --git a/changes/bug27177 b/changes/bug27177 deleted file mode 100644 index b03bbc96ea..0000000000 --- a/changes/bug27177 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (rust): - - Protover parsing was accepting the presence of whitespace in version - strings, which the C implementation would choke on, e.g. "Desc=1\t,2". - Fixes bug 27177; bugfix on 0.3.3.5-rc. diff --git a/changes/bug27185 b/changes/bug27185 deleted file mode 100644 index 79221b3df4..0000000000 --- a/changes/bug27185 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (Windows, compilation): - - Silence a compilation warning on MSVC 2017 and clang-cl. - Fixes bug 27185; bugfix on 0.2.2.2-alpha. diff --git a/changes/bug27226 b/changes/bug27226 deleted file mode 100644 index 9030773cd5..0000000000 --- a/changes/bug27226 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing, openssl compatibility): - - Our "tortls/cert_matches_key" unit test no longer relies on OpenSSL - internals. Previously, it relied on unsupported OpenSSL behavior in - a way that caused it to crash with OpenSSL 1.0.2p. Fixes bug 27226; - bugfix on 0.2.5.1-alpha. diff --git a/changes/bug27236 b/changes/bug27236 deleted file mode 100644 index 76d792f4c9..0000000000 --- a/changes/bug27236 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing, bootstrap): - - When calculating bootstrap progress, check exit policies and the exit - flag. Previously, Tor would only check the exit flag, which caused - race conditions in small and fast networks like chutney. - Fixes bug 27236; bugfix on 0.2.6.3-alpha. diff --git a/changes/feature26372_029 b/changes/feature26372_029 deleted file mode 100644 index 150ac30555..0000000000 --- a/changes/feature26372_029 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (compilation): - - - When building Tor, prefer to use Python 3 over Python 2, and more - recent (contemplated) versions over older ones. Closes ticket 26372. diff --git a/changes/geoip-2018-07-03 b/changes/geoip-2018-07-03 deleted file mode 100644 index e921d63c99..0000000000 --- a/changes/geoip-2018-07-03 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the July 3 2018 Maxmind GeoLite2 - Country database. Closes ticket 26674. - diff --git a/changes/geoip-2018-08-07 b/changes/geoip-2018-08-07 deleted file mode 100644 index 9ddbe7b1b2..0000000000 --- a/changes/geoip-2018-08-07 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the August 7 2018 Maxmind GeoLite2 - Country database. Closes ticket 27089. - diff --git a/changes/rust_cross b/changes/rust_cross deleted file mode 100644 index d490403a28..0000000000 --- a/changes/rust_cross +++ /dev/null @@ -1,2 +0,0 @@ - o Minor feature (Rust, portability): - - Rust cross-compilation is now supported. Closes ticket 25895. diff --git a/changes/task26771 b/changes/task26771 deleted file mode 100644 index fd700900f7..0000000000 --- a/changes/task26771 +++ /dev/null @@ -1,4 +0,0 @@ - o Directory authority changes: - - The "Bifroest" bridge authority has been retired; the new bridge - authority is "Serge", and it is operated by George from the - TorBSD project. Closes ticket 26771. diff --git a/changes/ticket24629 b/changes/ticket24629 deleted file mode 100644 index 482c0a1a6d..0000000000 --- a/changes/ticket24629 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Enable macOS builds in our Travis CI configuration. - Closes ticket 24629. diff --git a/changes/ticket24629-backport b/changes/ticket24629-backport deleted file mode 100644 index dfbc465634..0000000000 --- a/changes/ticket24629-backport +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Backport Travis rust distcheck to 0.3.3. - Closes ticket 24629. diff --git a/changes/ticket25947 b/changes/ticket25947 deleted file mode 100644 index 68559a73f8..0000000000 --- a/changes/ticket25947 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor feature (unit tests): - - Test complete bandwidth measurements files and test that incomplete lines - only give warnings when the end of the header has not been - detected. Fixes bug 25947; bugfix on 0.2.2.1-alpha diff --git a/changes/ticket25960 b/changes/ticket25960 deleted file mode 100644 index 0d1be2119b..0000000000 --- a/changes/ticket25960 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor feature (directory authorities): - - Stop warning about incomplete bw lines before the first complete bw line - has been found, so that additional header lines can be ignored. - Fixes bug 25960; bugfix on 0.2.2.1-alpha - diff --git a/changes/ticket26467 b/changes/ticket26467 deleted file mode 100644 index 45883786c2..0000000000 --- a/changes/ticket26467 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (memory, correctness): - - Fix a number of small memory leaks identified by coverity. Fixes - bug 26467; bugfix on numerous Tor versions. diff --git a/changes/ticket26560 b/changes/ticket26560 deleted file mode 100644 index 5b4fb1bfe7..0000000000 --- a/changes/ticket26560 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Install libcap-dev and libseccomp2-dev so these optional - dependencies get tested on Travis CI. Closes ticket 26560. diff --git a/changes/ticket26647 b/changes/ticket26647 deleted file mode 100644 index 1c2e917c6d..0000000000 --- a/changes/ticket26647 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (controller): - - The control port now exposes the list of HTTPTunnelPorts and - ExtOrPorts via GETINFO net/listeners/httptunnel and net/listeners/extor - respectively. Closes ticket 26647. diff --git a/changes/ticket26952-cargo b/changes/ticket26952-cargo deleted file mode 100644 index e1efdfcd74..0000000000 --- a/changes/ticket26952-cargo +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration, rust): - - Use cargo cache in our Travis CI configuration. - Closes ticket 26952. diff --git a/changes/ticket26952-ccache b/changes/ticket26952-ccache deleted file mode 100644 index edc115e9de..0000000000 --- a/changes/ticket26952-ccache +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Use ccache in our Travis CI configuration. - Closes ticket 26952. diff --git a/changes/ticket27087 b/changes/ticket27087 deleted file mode 100644 index b8af70aaa0..0000000000 --- a/changes/ticket27087 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Run asciidoc during Travis CI. - Implements ticket 27087. diff --git a/changes/ticket27275 b/changes/ticket27275 deleted file mode 100644 index d1332e9540..0000000000 --- a/changes/ticket27275 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Only post Appveyor IRC notifications when the build fails. - Implements ticket 27275. |