diff options
Diffstat (limited to 'changes')
93 files changed, 210 insertions, 229 deletions
diff --git a/changes/.dummy b/changes/.dummy new file mode 100644 index 0000000000..dd9738feb2 --- /dev/null +++ b/changes/.dummy @@ -0,0 +1,37 @@ +This file is here to keep git from removing the changes directory when +all the changes files have been merged. + + + + + + + + + + + + + + + + + + + + + + + + +"I'm Nobody! Who are you? + Are you--Nobody--too? + Then there's a pair of us! + Don’t tell! they'd advertise--you know! + + How dreary--to be--Somebody! + How public--like a Frog-- + To tell one's name--the livelong June-- + To an admiring Bog!" + -- Emily Dickinson + diff --git a/changes/15188 b/changes/15188 deleted file mode 100644 index 2065b3974c..0000000000 --- a/changes/15188 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (testing): - - Avoid a side-effect in a tor_assert() in the unit tests. Fixes bug - 15188; bugfix on 0.1.2.3-alpha. Patch from Tom van der Woerdt. diff --git a/changes/bug11447 b/changes/bug11447 deleted file mode 100644 index 8cd4f5b467..0000000000 --- a/changes/bug11447 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (DoS-resistance): - - Decrease the amount of reattempts that a hidden service is - willing to perform when its rendezvous circuits fail. This - reduces the computational cost for hidden service under heavy - load. Resolves ticket #11447.
\ No newline at end of file diff --git a/changes/bug11454 b/changes/bug11454 deleted file mode 100644 index b37a7d9728..0000000000 --- a/changes/bug11454 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (certificate handling): - - Remove any old authority certificates that have been superseded - for at least two days. Previously, we would keep superseded - certificates until they expired, if they were published close - in time to the certificate that superseded them. - Fixes bug 11454; bugfix on 0.2.1.8-alpha. diff --git a/changes/bug11457 b/changes/bug11457 deleted file mode 100644 index cf64c1d10d..0000000000 --- a/changes/bug11457 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (certificate handling): - - If an authority operator accidentally makes a signing certificate with - a future publication time, do not discard its real signing - certificates. Fixes bug 11457; bugfix on 0.2.0.3-alpha. - diff --git a/changes/bug14821 b/changes/bug14821 new file mode 100644 index 0000000000..e9ccc2fd1b --- /dev/null +++ b/changes/bug14821 @@ -0,0 +1,4 @@ + o Major bugfixes (compilation): + - Repair hardened builds under the clang compiler. Previously, + our use of _FORTIFY_SOURCE would conflict with clang's address + sanitizer. Fixes bug 14821; bugfix on 0.2.5.4-alpha. diff --git a/changes/bug14848_redux b/changes/bug14848_redux deleted file mode 100644 index c10320fb23..0000000000 --- a/changes/bug14848_redux +++ /dev/null @@ -1,5 +0,0 @@ - o Removed code: - - Remove some lingering dead code that once supported mempools. Mempools - were disabled by default in 0.2.5, and removed entirely in - 0.2.6.3-alpha. Closes more of ticket 14848; patch by "cypherpunks". - diff --git a/changes/bug14950 b/changes/bug14950 deleted file mode 100644 index 33cea9cb58..0000000000 --- a/changes/bug14950 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (logs): - - Quiet some log messages in the heartbeat and at startup. Closes - ticket 14950.
\ No newline at end of file diff --git a/changes/bug14980 b/changes/bug14980 deleted file mode 100644 index b873bb009c..0000000000 --- a/changes/bug14980 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (testing): - - Fix endianness issues in unit test for resolve_my_address() to - have it pass on big endian systems. Fixes bug 14980; bugfix on - Tor 0.2.6.3-alpha. diff --git a/changes/bug14988 b/changes/bug14988 deleted file mode 100644 index 67dc96e443..0000000000 --- a/changes/bug14988 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Fix a compilation warning on s390. Fixes bug 14988; bugfix on - 0.2.5.2-alpha. - diff --git a/changes/bug14989 b/changes/bug14989 deleted file mode 100644 index f4432d468b..0000000000 --- a/changes/bug14989 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (Linux seccomp2 sandbox): - - Pass IPPROTO_TCP rather than 0 to socket(), so that the - Linux seccomp2 sandbox doesn't fail. Fixes bug 14989; - bugfix on 0.2.6.3-alpha. diff --git a/changes/bug15003 b/changes/bug15003 deleted file mode 100644 index 2dcce74dfe..0000000000 --- a/changes/bug15003 +++ /dev/null @@ -1,3 +0,0 @@ - o Major bugfixes (linux seccomp2 sandbox): - - Allow AF_UNIX hidden services to be used with the seccomp2 sandbox. - Fixes bug 15003; bugfix on 0.2.6.3-alpha. diff --git a/changes/bug15033 b/changes/bug15033 deleted file mode 100644 index 953e6c3d59..0000000000 --- a/changes/bug15033 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (tests): - - When running the zero-length-keys check, do not use the default - torrc file. Fixes bug 15033; bugfix on 0.2.6.3-alpha. Reported - by "reezer". diff --git a/changes/bug15037 b/changes/bug15037 deleted file mode 100644 index 587d63186e..0000000000 --- a/changes/bug15037 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (testing): - - When running the new 'make test-stem' target, use the configured - python binary. Fixes bug 15037; bugfix on 0.2.6.3-alpha. Patch - from "cypherpunks". diff --git a/changes/bug15064 b/changes/bug15064 deleted file mode 100644 index e6bd747b1f..0000000000 --- a/changes/bug15064 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (FreeBSD IPFW transparent proxy): - - Fix address detection with FreeBSD transparent proxies, - when "TransProxyType ipfw" is in use. - Fixes bug 15064; bugfix on 0.2.5.4-alpha. diff --git a/changes/bug15083 b/changes/bug15083 deleted file mode 100644 index 5cc79b5ba1..0000000000 --- a/changes/bug15083 +++ /dev/null @@ -1,10 +0,0 @@ - o Major bugfixes (relay, stability, possible security): - - Fix a bug that could lead to a relay crashing with an assertion - failure if a buffer of exactly the wrong layout was passed - to buf_pullup() at exactly the wrong time. Fixes bug 15083; - bugfix on 0.2.0.10-alpha. Patch from 'cypherpunks'. - - - Do not assert if the 'data' pointer on a buffer is advanced to the very - end of the buffer; log a BUG message instead. Only assert if it is - past that point. Fixes bug 15083; bugfix on 0.2.0.10-alpha. - diff --git a/changes/bug15088 b/changes/bug15088 deleted file mode 100644 index 95878bdb39..0000000000 --- a/changes/bug15088 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (Linux seccomp2 sandbox): - - Upon receiving sighup, do not crash during attempts to call - wait4. Fixes bug 15088; bugfix on 0.2.5.1-alpha. Patch from - "sanic". diff --git a/changes/bug15151 b/changes/bug15151 deleted file mode 100644 index b9c3061554..0000000000 --- a/changes/bug15151 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (compilation): - - Fix a compilation warning on FreeBSD. Fixes bug 15151; bugfix on - 0.2.6.2-alpha. diff --git a/changes/bug15205 b/changes/bug15205 deleted file mode 100644 index 0cb9f3f4bc..0000000000 --- a/changes/bug15205 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (crash, OSX, security): - - Fix a remote denial-of-service opportunity caused by a bug - in OSX's _strlcat_chk() function. Fixes bug 15205; bug first - appeared in OSX 10.9. - diff --git a/changes/bug15221 b/changes/bug15221 new file mode 100644 index 0000000000..ed72309857 --- /dev/null +++ b/changes/bug15221 @@ -0,0 +1,4 @@ + o Minor bugfixes (sandbox): + - Allow the setrlimit syscall, and the prlimit and prlimit64 syscalls, + which some libc implementations + use under the hood. Fixes bug 15221. Bugfix on 0.2.5.1-alpha. diff --git a/changes/bug15240 b/changes/bug15240 deleted file mode 100644 index e11f804a12..0000000000 --- a/changes/bug15240 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (pluggable transports): - - Initialize the extended OR Port authentication cookie before launching - pluggable transports. This prevents a race condition that occured when - server-side pluggable transports would cache the authentication cookie - before it has been (re)generated. Fixes bug 15240; bugfix on - 0.2.5.1-alpha. diff --git a/changes/bug15245 b/changes/bug15245 deleted file mode 100644 index 520a370eeb..0000000000 --- a/changes/bug15245 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes: - - Avoid crashing when making certain configuration option changes - on clients. Fixes bug 15245; bugfix on 0.2.6.3-alpha. Reported - by "anonym". - diff --git a/changes/bug15436 b/changes/bug15436 deleted file mode 100644 index 4fa44d1e16..0000000000 --- a/changes/bug15436 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (portability): - - Use the correct datatype in the SipHash-2-4 function to prevent compilers - from assuming any sort of alignment. Fixes bug 15436; bugfix on - 0.2.5.3-alpha. diff --git a/changes/bug15515 b/changes/bug15515 deleted file mode 100644 index dda7c2fcd8..0000000000 --- a/changes/bug15515 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (DoS-resistance): - - Make it harder for attackers to overwhelm hidden services with - introductions, by blocking multiple introduction requests on the - same circuit. Resolves ticket #15515. diff --git a/changes/bug15600 b/changes/bug15600 deleted file mode 100644 index ee1d6cfe19..0000000000 --- a/changes/bug15600 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (security, hidden service): - - Fix an issue that would allow a malicious client to trigger - an assertion failure and halt a hidden service. Fixes - bug 15600; bugfix on 0.2.1.6-alpha. Reported by "skruffy". - diff --git a/changes/bug15601 b/changes/bug15601 deleted file mode 100644 index 2cc880af7f..0000000000 --- a/changes/bug15601 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (security, hidden service): - - Fix a bug that could cause a client to crash with an assertion - failure when parsing a malformed hidden service descriptor. - Fixes bug 15601; bugfix on 0.2.1.5-alpha. Found by "DonnCha". diff --git a/changes/bug15609 b/changes/bug15609 new file mode 100644 index 0000000000..efaccdeaae --- /dev/null +++ b/changes/bug15609 @@ -0,0 +1,2 @@ + o Documentation: + - Fix capitalization of SOCKS in sample torrc. Closes ticket 15609. diff --git a/changes/bug15823 b/changes/bug15823 deleted file mode 100644 index 987de5d9ac..0000000000 --- a/changes/bug15823 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (hidden service): - - Fix an out-of-bounds read when parsing invalid INTRODUCE2 cells - on a client authorized hidden service. Fixes bug 15823; bugfix - on 0.2.1.6-alpha. diff --git a/changes/bug15850 b/changes/bug15850 deleted file mode 100644 index 48a7c7bdd7..0000000000 --- a/changes/bug15850 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfix - - Revert commit that made directory authority assign the HSDir flag to - relay without a DirPort which is bad because relay can't handle - BEGIN_DIR cells. Fixes #15850. Bugfix on tor-0.2.6.3-alpha; diff --git a/changes/bug16013 b/changes/bug16013 deleted file mode 100644 index d194c609f8..0000000000 --- a/changes/bug16013 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (hidden service, stability): - - Stop randomly crashing with an assertion failure when connecting to a - busy hidden service, or connecting to a hidden service while a NEWNYM - is in progress. Fixes bug 16013; bugfix on 0.1.0.1-rc. - diff --git a/changes/bug16030 b/changes/bug16030 deleted file mode 100644 index c14fd62303..0000000000 --- a/changes/bug16030 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (tests): - - Fix a crash in the unit tests on MSVC2013. Fixes bug 16030; bugfix on - 0.2.6.2-alpha. Patch from "NewEraCracker".
\ No newline at end of file diff --git a/changes/bug16056 b/changes/bug16056 new file mode 100644 index 0000000000..e3311c0f93 --- /dev/null +++ b/changes/bug16056 @@ -0,0 +1,4 @@ + o Minor bugfixes (relay, IPv6): + - When displaying an IPv6 exit policy, include the mask bits correctly + even when the number is greater than 31. Fixes bug 16056; bugfix on + 0.2.4.7-alpha. Patch from "gturner".
\ No newline at end of file diff --git a/changes/bug16164 b/changes/bug16164 deleted file mode 100644 index fbb383c26d..0000000000 --- a/changes/bug16164 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Build with --enable-systemd correctly when libsystemd is installed, - but systemd is not. Fixes bug 16164, bugfix on 0.2.6.3-alpha. Patch - from Peter Palfrader. diff --git a/changes/bug16212 b/changes/bug16212 deleted file mode 100644 index bc1246376d..0000000000 --- a/changes/bug16212 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (sandbox, systemd): - - Allow systemd connections to work with the Linux seccomp2 sandbox - code. Fixes bug 16212; bugfix on 0.2.6.2-alpha. - Patch by Peter Palfrader. - diff --git a/changes/bug16244 b/changes/bug16244 deleted file mode 100644 index 00bc557983..0000000000 --- a/changes/bug16244 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (sandbox, relay): - - Fix sandboxing to work when running as a relay again. This - includes correctly allowing renaming secret_id_key and - allowing the eventfd2 and futex syscalls. - Fixes bug 16244; bugfix on 0.2.6.1-alpha. - Patch by Peter Palfrader. - diff --git a/changes/bug16247 b/changes/bug16247 deleted file mode 100644 index 9464b1cb24..0000000000 --- a/changes/bug16247 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (client-side privacy): - - Properly separate out each SOCKSPort when applying stream isolation. - The error occured because each port's session group was being - overwritten by a default value. Fixes bug 16247; bugfix on - 0.2.6.3-alpha. Patch by "jojelino". diff --git a/changes/bug16248 b/changes/bug16248 new file mode 100644 index 0000000000..399b7093cd --- /dev/null +++ b/changes/bug16248 @@ -0,0 +1,8 @@ + o Major bugfixes (dns proxy mode, crash): + - Avoid crashing when running as a DNS proxy. Closes bug 16248; bugfix on + 0.2.0.1-alpha. Patch from 'cypherpunks'. + + o Minor features (bug-resistance): + - Make Tor survive errors involving connections without a corresponding + event object. Previously we'd fail with an assertion; now we produce a + log message. Related to bug 16248. diff --git a/changes/bug16360-failed-crypto-early-init b/changes/bug16360-failed-crypto-early-init deleted file mode 100644 index 21972bce52..0000000000 --- a/changes/bug16360-failed-crypto-early-init +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (crypto error-handling): - - If crypto_early_init fails, a typo in a return value from tor_init - means that tor_main continues running, rather than returning - an error value. - Fixes bug 16360; bugfix on d3fb846d8c98 in 0.2.5.2-alpha, - introduced when implementing #4900. - Patch by "teor". diff --git a/changes/bug16363 b/changes/bug16363 deleted file mode 100644 index 1a6f8c6eff..0000000000 --- a/changes/bug16363 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (Linux seccomp2 sandbox): - - Allow pipe() and pipe2() syscalls; we need these when eventfd2() - support is missing. Fixes bug 16363; bugfix on 0.2.6.3-alpha. - Patch from "teor". diff --git a/changes/bug16381 b/changes/bug16381 deleted file mode 100644 index 51a9b53007..0000000000 --- a/changes/bug16381 +++ /dev/null @@ -1,13 +0,0 @@ - o Major bugfix (Hidden service client) - - Revert commit 9407040c592184e05e45a3c1a00739c2dd302288 of bug #14219 - that indeed fixed an issue but introduced a major hidden service - reachability regression detailed in bug #16381. This is a temporary - fix since we can live with the minor issue in #14219 but the - regression introduced is too much of a set back. - - To be clear, #14219 bug just results in some load on the network, and - some delay for the client when visiting a hidden service that will - ultimately fail. - - This is only a bandaid for #16381 thus it does _not_ fixes it. bugfix - on tor-0.2.6.3-alpha~138. diff --git a/changes/bug16400 b/changes/bug16400 deleted file mode 100644 index 3e5f9c5843..0000000000 --- a/changes/bug16400 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes: - - Do not crash with an assertion error when parsing certain kinds - of malformed or truncated microdescriptors. Fixes bug 16400; - bugfix on 0.2.6.1-alpha. Found by "torkeln"; fix based on a patch by - "cypherpunks_backup". diff --git a/changes/bug16702 b/changes/bug16702 new file mode 100644 index 0000000000..5de36cd351 --- /dev/null +++ b/changes/bug16702 @@ -0,0 +1,4 @@ + o Minor bugfixes (hidden service) + - The wrong list was used when looking up expired intro points in a rend + service object causing what we think could be reachability issues and + triggering a BUG log. Fixes 16702; bugfix on tor-0.2.7.2-alpha. diff --git a/changes/bug17151 b/changes/bug17151 new file mode 100644 index 0000000000..0993b90eac --- /dev/null +++ b/changes/bug17151 @@ -0,0 +1,7 @@ + o Minor bugfixes (portability): + - Use libexecinfo on FreeBSD, to enable backtrace support. Fixes part of + bug 17151; bugfix on 0.2.5.2-alpha. Patch from Marcin Cieślak. + + o Minor bugfixes (testing): + - Skip backtrace tests when backtrace support is not compiled in. Fixes + part of bug 17151; bugfix on 0.2.7.1-alpha. Patch from Marcin Cieślak. diff --git a/changes/bug17154 b/changes/bug17154 new file mode 100644 index 0000000000..6ad7b74468 --- /dev/null +++ b/changes/bug17154 @@ -0,0 +1,3 @@ + o Minor bugfixes (testing): + - Fix breakage when running 'make check' with BSD make. Fixes bug + 17154; bugfix on 0.2.7.3-rc. Patch by Marcin Cieślak. diff --git a/changes/bug17173-socket-hack-rv b/changes/bug17173-socket-hack-rv new file mode 100644 index 0000000000..d5132114b4 --- /dev/null +++ b/changes/bug17173-socket-hack-rv @@ -0,0 +1,3 @@ + o Minor bug fixes (addresses, testing): + - Add unit tests for get_interface_address* failure cases. + Fixes bug 17173; bugfix on 0.2.7.3-rc. Patch by fk/teor. diff --git a/changes/bug17237_027 b/changes/bug17237_027 new file mode 100644 index 0000000000..e5978d0ec8 --- /dev/null +++ b/changes/bug17237_027 @@ -0,0 +1,3 @@ + o Minor features (compilation): + - Repair compilation with the most recent (unreleased, alpha) + vesions of OpenSSL 1.1. Fixes part of ticket 17237. diff --git a/changes/bug17251 b/changes/bug17251 new file mode 100644 index 0000000000..edd7739d2f --- /dev/null +++ b/changes/bug17251 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Fix an integer overflow warning in test_crypto_slow.c. + Fixes bug 17251; bugfix on 0.2.7.2-alpha. diff --git a/changes/bug17347 b/changes/bug17347 new file mode 100644 index 0000000000..487b1320e2 --- /dev/null +++ b/changes/bug17347 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - Fix compilation of sandbox.c with musl-libc. + Fixes bug 17347; bugfix on 0.2.5.1-alpha. + Patch from 'jamestk'. diff --git a/changes/bug17364 b/changes/bug17364 new file mode 100644 index 0000000000..dd9ff12784 --- /dev/null +++ b/changes/bug17364 @@ -0,0 +1,3 @@ + o Documentation: + - Note that HiddenServicePorts can take a unix domain socket. + Closes ticket 17364. diff --git a/changes/bug17398 b/changes/bug17398 new file mode 100644 index 0000000000..66e27a6966 --- /dev/null +++ b/changes/bug17398 @@ -0,0 +1,3 @@ + o Minor bugfixes (memory leaks): + - Fix a memory leak in ed25519 batch signature checking. + Fixes bug 17398; bugfix on 0.2.6.1-alpha. diff --git a/changes/bug17401 b/changes/bug17401 new file mode 100644 index 0000000000..a22f79c431 --- /dev/null +++ b/changes/bug17401 @@ -0,0 +1,3 @@ + o Major bugfixes (correctness): + - Fix a use-after-free bug in validate_intro_point_failure(). + Fixes bug 17401; bugfix on 0.2.7.3-rc. diff --git a/changes/bug17402 b/changes/bug17402 new file mode 100644 index 0000000000..4760e00b04 --- /dev/null +++ b/changes/bug17402 @@ -0,0 +1,3 @@ + o Major bugfixes (memory leak): + - Fix a memory leak in rend_cache_failure_entry_free(). + Fixes bug 17402; bugfix on 0.2.7.3-rc. diff --git a/changes/bug17403 b/changes/bug17403 new file mode 100644 index 0000000000..e83a4a247b --- /dev/null +++ b/changes/bug17403 @@ -0,0 +1,3 @@ + o Minor bugfixes (memory leaks): + - Fix a memory leak when reading an expired signing key from disk. + Fixes bug 17403; bugfix on 0.2.7.2-rc. diff --git a/changes/bug17404 b/changes/bug17404 new file mode 100644 index 0000000000..d524f6662d --- /dev/null +++ b/changes/bug17404 @@ -0,0 +1,6 @@ + o Major bugfixes (security, correctness): + - Fix a programming error that could cause us to read 4 bytes before + the beginning of an openssl string. This could be used to provoke + a crash on systems with an unusual malloc implementation, or + systems with unsual hardening installed. Fixes bug 17404; bugfix + on 0.2.3.6-alpha. diff --git a/changes/bug17551 b/changes/bug17551 new file mode 100644 index 0000000000..27e467979e --- /dev/null +++ b/changes/bug17551 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - When checking for net/pfvar.h, include netinet/in.h if possible. + This fixes transparent proxy detection on OpenBSD. Fixes bug + 17551; bugfix on 0.1.2.1-alpha. Patch from "rubiate". diff --git a/changes/bug17583 b/changes/bug17583 new file mode 100644 index 0000000000..d77d46759a --- /dev/null +++ b/changes/bug17583 @@ -0,0 +1,4 @@ + o Documentation: + - Add a description of the correct use of the '--keygen' command-line + option. Closes ticket 17583; based on text by 's7r'. + diff --git a/changes/bug17668 b/changes/bug17668 new file mode 100644 index 0000000000..fa5c1c8081 --- /dev/null +++ b/changes/bug17668 @@ -0,0 +1,5 @@ + o Major bugfixes (voting): + - When collating votes by Ed25519 identities, authorities now + include a "NoEdConsensus" flag if the ed25519 value (or lack thereof) + for a server does not reflect the majority consensus. Related to bug + 17668; bugfix on 0.2.7.2-alpha. diff --git a/changes/bug17675 b/changes/bug17675 new file mode 100644 index 0000000000..8326a0b9e8 --- /dev/null +++ b/changes/bug17675 @@ -0,0 +1,4 @@ + o Minor bugfixes (linux seccomp2 sandbox): + - Fix a crash when using offline master ed25519 keys with the + Linux seccomp2 sandbox enabled. Fixes bug 17675; bugfix on + 0.2.7.3-alpha. diff --git a/changes/bug17702 b/changes/bug17702 new file mode 100644 index 0000000000..4fda36f736 --- /dev/null +++ b/changes/bug17702 @@ -0,0 +1,6 @@ + o Major bugfixes: + - Actually enable Ed25519-based directory collation. + Previously, the code had been written, but some debugging code that had + accidentally been left in the codebase made it stay turned off. + Fixes bug 17702; bugfix on 0.2.7.2-alpha. + diff --git a/changes/bug17722 b/changes/bug17722 new file mode 100644 index 0000000000..1b18d4af2b --- /dev/null +++ b/changes/bug17722 @@ -0,0 +1,3 @@ + o Minor bugfixes (code correctness) + - Fix undefined behavior in the tor_cert_checksig function. Fixes bug + 17722; bugfix on tor-0.2.7.2-alpha. diff --git a/changes/bug17818 b/changes/bug17818 new file mode 100644 index 0000000000..3d9afe329e --- /dev/null +++ b/changes/bug17818 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Isolate environment variables meant for tests from the rest of the + build system. Fixes bug 17818; bugfix on tor-0.2.7.3-rc. diff --git a/changes/bug17819 b/changes/bug17819 new file mode 100644 index 0000000000..45c55f74b6 --- /dev/null +++ b/changes/bug17819 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - Don't try to use the pthrad_condattr_setclock() function unless + it actually exists. Fixes compilation on NetBSD-6.x. Fixes bug + 17819; bugfix on 0.2.6.3-alpha. diff --git a/changes/bug17827 b/changes/bug17827 new file mode 100644 index 0000000000..04cd3b5977 --- /dev/null +++ b/changes/bug17827 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Fix backtrace compilation on FreeBSD. Fixes bug 17827; bugfix on + tor-0.2.5.2-alpha. diff --git a/changes/bug17906 b/changes/bug17906 index fff76d1c59..2937369f0a 100644 --- a/changes/bug17906 +++ b/changes/bug17906 @@ -1,4 +1,4 @@ - o Minor features (authorities): - - Update the V3 identity key for dannenberg, it was changed on + o Major features (authorities): + - Update the V3 identity key for the dannenberg authority, which changed on 18 November 2015. - Closes task #17906. Patch by "teor". + Closes task 17906. Patch by "teor". diff --git a/changes/bug17923 b/changes/bug17923 new file mode 100644 index 0000000000..94849fb06a --- /dev/null +++ b/changes/bug17923 @@ -0,0 +1,4 @@ + o Minor bugfixes (portability): + - Add an #endif to configure.ac so that we correctly detect + the presence of in6_addr.s6_addr32. Fixes bug 17923; bugfix on + 0.2.0.13-alpha. diff --git a/changes/bug18050 b/changes/bug18050 new file mode 100644 index 0000000000..27456bea80 --- /dev/null +++ b/changes/bug18050 @@ -0,0 +1,7 @@ + o Minor bugfixes (relays): + - Check that both the ORPort and DirPort (if present) are reachable + before publishing a relay descriptor. Otherwise, relays publish a + descriptor with DirPort 0 when the DirPort reachability test takes + longer than the ORPort reachability test. + Fixes bug 18050; + bugfix on 0.1.0.1-rc. Reported by "starlight", patch by "teor". diff --git a/changes/bug18089 b/changes/bug18089 index c1fb342f77..8ff75b8b8e 100644 --- a/changes/bug18089 +++ b/changes/bug18089 @@ -1,6 +1,4 @@ - o Minor fixes (security): + o Minor bugfixes (security): - Make memwipe() do nothing when passed a NULL pointer or zero size. Check size argument to memwipe() for underflow. - Closes bug #18089. Reported by "gk", patch by "teor". - Bugfix on 0.2.3.25 and 0.2.4.6-alpha (#7352), - commit 49dd5ef3 on 7 Nov 2012. + Fixes bug 18089; bugfix on 0.2.3.25 and 0.2.4.6-alpha. Reported by "gk", patch by "teor". diff --git a/changes/bug18162 b/changes/bug18162 index 0844d6f62f..88d19a87cc 100644 --- a/changes/bug18162 +++ b/changes/bug18162 @@ -1,7 +1,7 @@ o Major bugfixes (security, pointers): - Avoid a difficult-to-trigger heap corruption attack when extending - a smartlist to contain over 16GB of pointers. Fixes bug #18162; + a smartlist to contain over 16GB of pointers. Fixes bug 18162; bugfix on Tor 0.1.1.11-alpha, which fixed a related bug incompletely. Reported by Guido Vranken. diff --git a/changes/bug18318_ed b/changes/bug18318_ed new file mode 100644 index 0000000000..af39234d53 --- /dev/null +++ b/changes/bug18318_ed @@ -0,0 +1,7 @@ + o Major bugfixes: + - When generating a vote with keypinning disabled, never include two + entries for the same ed25519 identity. This bug was causing + authorities to generate votes that they could not parse when a router + violated key pinning by changing its RSA identity but keeping its + Ed25519 identity. Fixes bug 17668; fixes part of bug 18318. Bugfix on + 0.2.7.2-alpha. diff --git a/changes/bug18368 b/changes/bug18368 new file mode 100644 index 0000000000..17218d432f --- /dev/null +++ b/changes/bug18368 @@ -0,0 +1,5 @@ + o Minor bugfixes: + - When logging information about an unparseable networkstatus vote or + consensus, do not say "vote" when we mean consensus. Fixes bug + 18368; bugfix on 0.2.0.8-alpha. + diff --git a/changes/bug18570 b/changes/bug18570 new file mode 100644 index 0000000000..04f72f4c9e --- /dev/null +++ b/changes/bug18570 @@ -0,0 +1,7 @@ + o Minor bugfixes (correctness): + - Fix a bad memory handling bug that would occur if we had queued + a cell on a channel's incoming queue. Fortunately, we can't actually + queue a cell like that as our code is constructed today, but it's best + to avoid this kind of error, even if there isn't any code that triggers + it today. Fixes bug 18570; bugfix on 0.2.4.4-alpha. + diff --git a/changes/bug18841.1 b/changes/bug18841.1 new file mode 100644 index 0000000000..205ee5a425 --- /dev/null +++ b/changes/bug18841.1 @@ -0,0 +1,7 @@ + o Major bugfixes (compilation): + - Correctly detect compiler flags on systems where _FORTIFY_SOURCE + is predefined. Previously, our use of -D_FORTIFY_SOURCE would + cause a compiler warning, thereby making other checks fail. + Fixes one case of bug 18841; bugfix on 0.2.3.17-beta. Patch from + "trudokal". + diff --git a/changes/bug18977 b/changes/bug18977 new file mode 100644 index 0000000000..3f46b09fba --- /dev/null +++ b/changes/bug18977 @@ -0,0 +1,4 @@ + o Minor bugfixes (time handling): + - When correcting a corrupt 'struct tm' value, fill in the tm_wday + field. Otherwise, our unit tests crash on Windows. + Fixes bug 18977; bugfix on 0.2.2.25-alpha. diff --git a/changes/bug19008 b/changes/bug19008 new file mode 100644 index 0000000000..c51c98faa6 --- /dev/null +++ b/changes/bug19008 @@ -0,0 +1,3 @@ + o Major bugfixes (testing): + - Fix a bug that would block 'make test-network-all' on systems + where IPv6 packets were lost. Fixes bug 19008; bugfix on tor-0.2.7.3-rc. diff --git a/changes/bug19032 b/changes/bug19032 new file mode 100644 index 0000000000..93f17c2f91 --- /dev/null +++ b/changes/bug19032 @@ -0,0 +1,4 @@ + o Major bugfixes (security, directory authorities): + - Fix a crash and out-of-bounds write during authority voting, when the + list of relays includes duplicate ed25519 identity keys. Fixes bug 19032; + bugfix on 0.2.8.2-alpha. diff --git a/changes/bug19213 b/changes/bug19213 new file mode 100644 index 0000000000..f912ffb0c3 --- /dev/null +++ b/changes/bug19213 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Cause the unit tests to compile correctly on mingw64 versions + that lack sscanf. Fixes bug 19213. Bugfix on 0.2.7.1-alpha. diff --git a/changes/bug9495_redux b/changes/bug9495_redux deleted file mode 100644 index 74b0cdf2a8..0000000000 --- a/changes/bug9495_redux +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (portability): - - Do not crash on startup when running on Solaris. Fixes a bug - related to our fix for 9495; bugfix on 0.2.6.1-alpha. Reported - by "ruebezahl". diff --git a/changes/build18490 b/changes/build18490 new file mode 100644 index 0000000000..466a133cb2 --- /dev/null +++ b/changes/build18490 @@ -0,0 +1,4 @@ + o Minor bugfixes (build): + - Do not link the unit tests against both the testing and non-testing + versions of the static libraries. Fixes bug 18490; bugfix on + 0.2.7.1-alpha. diff --git a/changes/feature15006 b/changes/feature15006 deleted file mode 100644 index 168a440ba0..0000000000 --- a/changes/feature15006 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (controller): - - Messages about problems in the bootstrap process now include - information about the server we were trying to connect to when we - noticed the problem. Closes ticket 15006. diff --git a/changes/geoip-april2015 b/changes/geoip-april2015 deleted file mode 100644 index 7db38ed797..0000000000 --- a/changes/geoip-april2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip to the April 8 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/geoip-july2015 b/changes/geoip-july2015 deleted file mode 100644 index 381c2df231..0000000000 --- a/changes/geoip-july2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip and geoip6 to the July 8 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/geoip-june2015 b/changes/geoip-june2015 deleted file mode 100644 index 9d6cd3658b..0000000000 --- a/changes/geoip-june2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip to the June 3 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/geoip-march2015 b/changes/geoip-march2015 deleted file mode 100644 index 565781280a..0000000000 --- a/changes/geoip-march2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip to the March 3 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/geoip-march2016 b/changes/geoip-march2016 index d7b1bd42f9..a66599f5a9 100644 --- a/changes/geoip-march2016 +++ b/changes/geoip-march2016 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (geoip): - Update geoip and geoip6 to the March 3 2016 Maxmind GeoLite2 Country database. diff --git a/changes/geoip-september2015 b/changes/geoip-september2015 deleted file mode 100644 index a4f99efaa2..0000000000 --- a/changes/geoip-september2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip and geoip6 to the September 3 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/geoip6-april2015 b/changes/geoip6-april2015 deleted file mode 100644 index 241c9119b6..0000000000 --- a/changes/geoip6-april2015 +++ /dev/null @@ -1,2 +0,0 @@ - o Minor features: - - Update geoip6 to the April 8 2015 Maxmind GeoLite2 Country database. diff --git a/changes/geoip6-june2015 b/changes/geoip6-june2015 deleted file mode 100644 index 527dbff53b..0000000000 --- a/changes/geoip6-june2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip6 to the June 3 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/geoip6-march2015 b/changes/geoip6-march2015 deleted file mode 100644 index 9a38c65e62..0000000000 --- a/changes/geoip6-march2015 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update geoip6 to the March 3 2015 Maxmind GeoLite2 Country database. - diff --git a/changes/ifaddrs-tests-network-configs b/changes/ifaddrs-tests-network-configs new file mode 100644 index 0000000000..6b5ed4d484 --- /dev/null +++ b/changes/ifaddrs-tests-network-configs @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - Make the get_ifaddrs_* unit tests more tolerant of different network + configurations. (Don't assume every test box has an IPv4 address, and + Don't assume every test box has a non-localhost address. + Fixes bug 17255; bugfix on 0.2.7.3-rc. Patch by "teor". diff --git a/changes/ticket14487 b/changes/ticket14487 deleted file mode 100644 index 577337ff24..0000000000 --- a/changes/ticket14487 +++ /dev/null @@ -1,3 +0,0 @@ - o Directory authority IP change: - - The directory authority Faravahar has a new IP address. Closes - ticket 14487. diff --git a/changes/ticket15176 b/changes/ticket15176 deleted file mode 100644 index 6d12723728..0000000000 --- a/changes/ticket15176 +++ /dev/null @@ -1,3 +0,0 @@ - o Code simplification and refactoring: - - Refactor main loop to extract the 'loop' part. This makes it easier - to run Tor under Shadow. Closes ticket 15176. diff --git a/changes/ticket15212 b/changes/ticket15212 deleted file mode 100644 index 2c41e3865c..0000000000 --- a/changes/ticket15212 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (heartbeat): - - - On relays, report how many connections we negotiated using each - version of the Tor link protocols. This information will let us - know if removing support for very old versions of the Tor - protocols is harming the network. Closes ticket 15212. diff --git a/changes/ticket8243 b/changes/ticket8243 deleted file mode 100644 index 8946a21a59..0000000000 --- a/changes/ticket8243 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor feature: - - The HSDir flag given by authorities now requires the Stable flag. For - the current network, this results in going from 2887 to 2806 HSDirs. - Also, it makes it harder for an attacker to launch a sybil attack by - raising the effort for a relay to become Stable which takes at the - very least 7 days to do so and by keeping the 96 hours uptime - requirement for HSDir. Implements ticket #8243. |