diff options
Diffstat (limited to 'changes')
57 files changed, 62 insertions, 224 deletions
diff --git a/changes/10582_tproxy b/changes/10582_tproxy deleted file mode 100644 index 8eed6a29ba..0000000000 --- a/changes/10582_tproxy +++ /dev/null @@ -1,7 +0,0 @@ - o Minor features: - - - Add support for the TPROXY transparent proxying facility on Linux. - See documentation for the new TransProxyType option for more details. - Implementation by "thomo". Closes ticket 10582. - - diff --git a/changes/bug10046 b/changes/bug10046 deleted file mode 100644 index b2f545efe9..0000000000 --- a/changes/bug10046 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes: - - Fix an always-true assertion in pluggable transports code. Fixes - issue 10046. Found by dcb. diff --git a/changes/bug10297 b/changes/bug10297 deleted file mode 100644 index 4cdd80f83b..0000000000 --- a/changes/bug10297 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - Spawn background processes using the CREATE_NO_WINDOW flag on - Windows, in order to prevent a console window from appearing. - Resolves ticket 10297. diff --git a/changes/bug10313 b/changes/bug10313 deleted file mode 100644 index b29d4daffd..0000000000 --- a/changes/bug10313 +++ /dev/null @@ -1,8 +0,0 @@ - o Minor bugfixes: - - Fixed an erroneous pointer comparison that would have allowed - compilers to remove a bounds check in channeltls.c. The fix - was to remove the check entirely, since it was impossible for - the code to overflow the bounds. Noticed by Jared L - Wong. Fixes bug 10313 and 9980. Bugfix on 0.2.0.10-alpha. - - diff --git a/changes/bug10324 b/changes/bug10324 deleted file mode 100644 index 9cd7d5bdb8..0000000000 --- a/changes/bug10324 +++ /dev/null @@ -1,2 +0,0 @@ - o Tool changes: - - Make tor-gencert create 2048 bit signing keys. Addresses ticket #10324. diff --git a/changes/bug10365 b/changes/bug10365 deleted file mode 100644 index f7a15155dd..0000000000 --- a/changes/bug10365 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes: - - - When receving a VERSIONS cell with an odd number of bytes, close - the connection immediately. Fix for bug 10365; bugfix on - 0.2.0.10-alpha. Spotted by "bobnomnom"; fix by "rl1987". - - diff --git a/changes/bug10470 b/changes/bug10470 deleted file mode 100644 index 2b753436d9..0000000000 --- a/changes/bug10470 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation fixes: - - Note that all but one DirPort entry must have the NoAdvertise flag - set. Fix for #10470. - diff --git a/changes/bug10485 b/changes/bug10485 deleted file mode 100644 index d2b3d8be0b..0000000000 --- a/changes/bug10485 +++ /dev/null @@ -1,12 +0,0 @@ -<<<<<<< HEAD - o Minor bugfixes: - - Turn "circuit handshake stats since last time" log messages into a - heartbeat message. Fixes bug 10485; bugfix on 0.2.4.17-rc. - -||||||| merged common ancestors -======= - o Minor bugfixes: - - Move message about circuit handshake counts into the heartbeat - message where it belongs, instead of logging it once per hour - unconditionally. Fixes bug 10485; bugfix on 0.2.4.17-rc. ->>>>>>> origin/maint-0.2.4 diff --git a/changes/bug10536 b/changes/bug10536 deleted file mode 100644 index e15da7c0f6..0000000000 --- a/changes/bug10536 +++ /dev/null @@ -1,6 +0,0 @@ - - o Minor bugfixes: - - Reject 0-lenth EXTEND2 cells more expicitly. Previously our code would - reject them a bit later than it should have. This bug is - harmless. Fixes bug 10536; bugfix on 0.2.4.8-alpha. Reported by - "cypherpunks". diff --git a/changes/bug10543 b/changes/bug10543 deleted file mode 100644 index 60445063cf..0000000000 --- a/changes/bug10543 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes: - - If all nodes with the Exit flag have been disabled with the ExitNodes - flag, consider nodes which can exit to other ports as well. Fixes bug - 10543; bugfix on 0.2.4.10-alpha. - diff --git a/changes/bug10565 b/changes/bug10565 deleted file mode 100644 index 9fef9d43e7..0000000000 --- a/changes/bug10565 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes: - - Fix compilation on Solaris 9, which didn't like us to have an - identifier namd "sun". Fixes bug 10565; bugfix in 0.2.5.1-alpha. diff --git a/changes/bug10722 b/changes/bug10722 deleted file mode 100644 index dd4711f110..0000000000 --- a/changes/bug10722 +++ /dev/null @@ -1,8 +0,0 @@ - o Minor bugfixes: - - Consider non-excluded hidden service directory servers before - excluded ones. Do not consider excluded hidden service directory - servers at all if StrictNodes was set. (Previously, we would - sometimes decide to connect to those servers, and then realize - before we initiated a connection that we had excluded them.) - Fix for bug #10722. Bugfix on 0.2.0.10-alpha. Reported by - "mr-4". diff --git a/changes/bug10758 b/changes/bug10758 deleted file mode 100644 index beadd9e5e5..0000000000 --- a/changes/bug10758 +++ /dev/null @@ -1,4 +0,0 @@ - o Removed code - - Remove all code that existed to support the v2 directory system: - There are no longer any v2 directory authorities. Resolves - bug 10758. diff --git a/changes/bug10793 b/changes/bug10793 deleted file mode 100644 index 24c4025dde..0000000000 --- a/changes/bug10793 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (security): - - Always clear OpenSSL bignums before freeing them--even bignums - that don't contain secrets. Resolves ticket 10793. Patch by - Florent Daigniere. diff --git a/changes/bug10835 b/changes/bug10835 deleted file mode 100644 index 9df7bdd279..0000000000 --- a/changes/bug10835 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (testing): - - Fix a segmentation fault in our benchmark code when running with - Fedora's OpenSSL package, or any other OpenSSL that provides - ECDH but not P224. Fixes bug 10835; bugfix on 0.2.4.8-alpha. diff --git a/changes/bug10842 b/changes/bug10842 deleted file mode 100644 index 0ead9e7db8..0000000000 --- a/changes/bug10842 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes: - - Suppress a warning that votes and signatures cannot be uploaded to - other directory authorities if there's only one directory authority - in the network. Bugfix on 0.2.2.26-beta. Resolves ticket 10842. diff --git a/changes/bug10849_023 b/changes/bug10849_023 new file mode 100644 index 0000000000..480dea3de0 --- /dev/null +++ b/changes/bug10849_023 @@ -0,0 +1,6 @@ + o Major bugfixes: + - When running a hidden service, do not allow TunneledDirConns 0; + this will keep the hidden service from running, and also + make it publish its descriptors directly over HTTP. Fixes bug 10849; + bugfix on 0.2.1.1-alpha. + diff --git a/changes/bug11605 b/changes/bug11605 new file mode 100644 index 0000000000..973ac6db18 --- /dev/null +++ b/changes/bug11605 @@ -0,0 +1,2 @@ + o Minor bugfixes (dmalloc): + - Fix compilation with dmalloc. Fixes bug 11605; bugfix on 0.2.4.10-alpha. diff --git a/changes/bug11608 b/changes/bug11608 new file mode 100644 index 0000000000..f34c9eb17b --- /dev/null +++ b/changes/bug11608 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - The Python parts of the test scripts now work on Python 3 as well + as Python 2, so systems where '/usr/bin/python' is Python 3 will + no longer have the tests break. Fixes bug 11608; bugfix on + 0.2.5.2-alpha. diff --git a/changes/bug11623 b/changes/bug11623 new file mode 100644 index 0000000000..58ff06d38b --- /dev/null +++ b/changes/bug11623 @@ -0,0 +1,3 @@ + o Minor bugfixes: + - Make Tor compile correctly with --disable-buf-freelists. + Fixes bug 11623; bugfix on 0.2.5.3-alpha. diff --git a/changes/bug11628 b/changes/bug11628 new file mode 100644 index 0000000000..b93e1f4fc7 --- /dev/null +++ b/changes/bug11628 @@ -0,0 +1,4 @@ + o Minor features: + - The configure script has a --disable-seccomp option to turn off + support for libseccomp on systems that have it, in case it (or + Tor's use of it) is broken. Resolves ticket 11628. diff --git a/changes/bug11632 b/changes/bug11632 new file mode 100644 index 0000000000..0dc7f8f1e2 --- /dev/null +++ b/changes/bug11632 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - When looking for versions of python that we could run the tests + with, check for "python2.7" and "python3.3"; previously we were + only looking for "python", "python2", and "python3". Patch from + Dana Koch. Fixes bug 11632; bugfix on 0.2.5.2-alpha. diff --git a/changes/bug11633_part1 b/changes/bug11633_part1 new file mode 100644 index 0000000000..fb281bd7d0 --- /dev/null +++ b/changes/bug11633_part1 @@ -0,0 +1,4 @@ + o Minor bugfixes (build): + - Resolve GCC complaints on OpenBSD about discarding constness in + TO_{ORIGIN,OR}_CIRCUIT functions. Fixes part of bug 11633; bugfix on + 0.1.1.23. Patch from Dana Koch. diff --git a/changes/bug11634 b/changes/bug11634 new file mode 100644 index 0000000000..2a52b3fcf2 --- /dev/null +++ b/changes/bug11634 @@ -0,0 +1,6 @@ + o Documentation: + - Clean up several option names in the manpage to match their real + names, add the missing documentation for a couple of testing and + directory authority options, remove the documentation for a + V2-directory fetching option that no longer exists. Resolves + ticket 11634. diff --git a/changes/bug11635 b/changes/bug11635 new file mode 100644 index 0000000000..bb5eceee30 --- /dev/null +++ b/changes/bug11635 @@ -0,0 +1,6 @@ + o Minor bugfixes (pluggable transports): + - Enable the ExtORPortCookieAuthFile option, to allow changing the + default location of the authentication token for the extended OR Port + as used by sever-side pluggable transports. We had implemented this + option before, but the code to make it settable had been omitted. + Fixes bug 11635; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug1376 b/changes/bug1376 deleted file mode 100644 index bee42a39a4..0000000000 --- a/changes/bug1376 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes: - - - Added additional argument to write_chunks_to_file to optionally skip - using a temp file to do non-atomic writes. Implements ticket #1376. diff --git a/changes/bug4677 b/changes/bug4677 deleted file mode 100644 index 9a62bdb9cc..0000000000 --- a/changes/bug4677 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (build): - - Restore the ability to compile Tor with V2_HANDSHAKE_SERVER - turned off. Fixes bug 4677; bugfix on 0.2.3.2-alpha. Patch - from "piet". diff --git a/changes/bug5018 b/changes/bug5018 deleted file mode 100644 index c5c12efaba..0000000000 --- a/changes/bug5018 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Don't launch pluggable transport proxies that contribute - transports we don't need. Resolves ticket 5018. diff --git a/changes/bug5605 b/changes/bug5605 deleted file mode 100644 index 2144d968fd..0000000000 --- a/changes/bug5605 +++ /dev/null @@ -1,5 +0,0 @@ -o Minor Bugfixes: - - No longer writing control ports to file if updating reversible - options fail. Fixes bug 5605; bugfix on 0.2.2.26-beta. Patch from - Ryman. - diff --git a/changes/bug7359 b/changes/bug7359 deleted file mode 100644 index d1bff0afa2..0000000000 --- a/changes/bug7359 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor features (controller): - - Extend ORCONN controller event by ID parameter and add four new - controller event types CONN_BW, CIRC_BW, CELL_STATS, and TB_EMPTY - that shall help understand connection and circuit usage. The new - events are emitted in private Tor networks only. Implements - proposal 218. Resolves ticket #7359. - diff --git a/changes/bug8368 b/changes/bug8368 new file mode 100644 index 0000000000..fa3991c3a6 --- /dev/null +++ b/changes/bug8368 @@ -0,0 +1,4 @@ + o Minor features: + - Add a systemd service file (tor.service) that can be installed by + Linux distributions that make use of the systemd init daemon. + Fixes bug 8368. diff --git a/changes/bug9162 b/changes/bug9162 deleted file mode 100644 index c1a247a97f..0000000000 --- a/changes/bug9162 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes: - - Fix a get_configured_bridge_by_addr_port_digest() function so - that it would return a bridge with given address and port even - if bridge digest is not specified by caller. Fixes bug 9162; - bugfix on 0.2.0.3-alpha. Based on a patch from "rl1987". - diff --git a/changes/bug9206 b/changes/bug9206 deleted file mode 100644 index 7acb366990..0000000000 --- a/changes/bug9206 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (testing): - - - When bootstrapping a test network, few relays get the Guard - flag. There is now a new option, TestingDirAuthVoteGuard, which - can be used to specify a set of relays which should be voted - Guard regardless of uptime or bandwidth. Addresses ticket 9206. diff --git a/changes/bug9578 b/changes/bug9578 deleted file mode 100644 index 96d66fe1f7..0000000000 --- a/changes/bug9578 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes: - - When a command-line option such as --version or --help that ordinarily - implies --hush appears on the command line along with --quiet, obey - --quiet. Previously, we obeyed --quiet only if it appeared later on the - command line. Fixes bug 9578; bugfix on 0.2.5.1-alpha. - diff --git a/changes/bug9602 b/changes/bug9602 deleted file mode 100644 index 2dc13c4c02..0000000000 --- a/changes/bug9602 +++ /dev/null @@ -1,5 +0,0 @@ - o Bugfixes - - Null out orconn->chan->conn when closing orconn in case orconn is freed - before channel_run_cleanup() gets to orconn->chan, and handle the null - conn edge case correctly in channel_tls_t methods. Fixes bug #9602; - bugfix on 0.2.4.4-alpha. diff --git a/changes/bug9651 b/changes/bug9651 deleted file mode 100644 index 453fe9a4a0..0000000000 --- a/changes/bug9651 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Warn when the Extended ORPort should be set, but it isn't. Resolves - ticket 9651. diff --git a/changes/bug9698 b/changes/bug9698 deleted file mode 100644 index ee5c4f64a5..0000000000 --- a/changes/bug9698 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - When receiving a new controller connection, log the origin address. - Resolves ticket 9698; patch from "sigpipe". diff --git a/changes/bug9859 b/changes/bug9859 deleted file mode 100644 index 54ca30e6f7..0000000000 --- a/changes/bug9859 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor Feature - - - Assign status flags to bridges based on thresholds calculated - over all bridges. Fixes bug 9859. - - Add threshold cutoffs to the networkstatus document created by - the Bridge Authority. Fixes bug 1117. diff --git a/changes/bug9869 b/changes/bug9869 deleted file mode 100644 index d67156d384..0000000000 --- a/changes/bug9869 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor features (build): - - - Assume that a user using configure --host wants to cross- - compile and error if we cannot find a properly named tool- - chain. Add --disable-tool-name-check to enable the user - to build nevertheless. Addresses ticket 9869. Patch by - Benedikt Gollatz. diff --git a/changes/bug9922 b/changes/bug9922 deleted file mode 100644 index 9ac21118da..0000000000 --- a/changes/bug9922 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes: - - Fix a bug where clients using bridges would report themselves - as 50% bootstrapped even without a live consensus document. - Fixes bug 9922; bugfix on 0.2.1.1-alpha. - diff --git a/changes/bug9926 b/changes/bug9926 deleted file mode 100644 index 51af5e088e..0000000000 --- a/changes/bug9926 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes: - - Remove some old fallback code designed to keep Tor clients working - in a network with only two working nodes. Elsewhere in the code we - have long since stopped supporting such networks, so there wasn't - much point in keeping it around. Fixes bug 9926. - diff --git a/changes/bug9934 b/changes/bug9934 deleted file mode 100644 index 2a636dba83..0000000000 --- a/changes/bug9934 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (controller): - - New DROPGUARDS command to forget all current entry guards. Not - recommended for ordinary use, since replacing guards too frequently - makes several attacks easier. Resolves ticket #9934; patch from "ra". diff --git a/changes/bug9948 b/changes/bug9948 deleted file mode 100644 index 6a673c0548..0000000000 --- a/changes/bug9948 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (build): - - - Check in configure whether we can link an executable when - stack protection is enabled so we can warn the user about a - potentially missing libssp. Addresses ticket 9948. Patch - from Benedikt Gollatz. diff --git a/changes/bug9958 b/changes/bug9958 deleted file mode 100644 index b801dcf779..0000000000 --- a/changes/bug9958 +++ /dev/null @@ -1,8 +0,0 @@ - o Minor bugfixes: - - Report bootstrapping progress correctly when we're downloading - microdescriptors. We had updated our "do we have enough microdescs - to begin building circuits?" logic most recently in 0.2.4.10-alpha - (see bug 5956), but we left the bootstrap status event logic at - "how far through getting 1/4 of them are we?" Fixes bug 9958; - bugfix on 0.2.2.36, which is where they diverged (see bug 5343). - diff --git a/changes/feature9777 b/changes/feature9777 deleted file mode 100644 index 312b5e034e..0000000000 --- a/changes/feature9777 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Avoid using circuit paths if no node in the path supports the ntor - circuit extension handshake. Implements ticket 9777. diff --git a/changes/md_leak_bug b/changes/md_leak_bug new file mode 100644 index 0000000000..26270aacc3 --- /dev/null +++ b/changes/md_leak_bug @@ -0,0 +1,5 @@ + o Major bugfixes (security, OOM) + - Fix a memory leak that could occur if a microdescriptor parse + fails during the tokenizing step. This could enable a memory + exhaustion attack by directory servers. Fixes bug #11649; bugfix + on 0.2.2.6-alpha. diff --git a/changes/prop157-require b/changes/prop157-require deleted file mode 100644 index f04806ddd0..0000000000 --- a/changes/prop157-require +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features: - - Clients now reject any directory authority certificates lacking - a dir-key-crosscert element. These have been included since - 0.2.1.9-alpha, so there's no real reason for them to be optional - any longer. Completes proposal 157. diff --git a/changes/prop221 b/changes/prop221 deleted file mode 100644 index b2bf44bc37..0000000000 --- a/changes/prop221 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features: - - Stop sending the CREATE_FAST cells by default; instead, use a - parameter in the consensus to decide whether to use - CREATE_FAST. This can improve security on connections where - Tor's circuit handshake is stronger than the available TLS - connection security levels. Implements proposal 221. diff --git a/changes/python-tests b/changes/python-tests deleted file mode 100644 index 4373e31e6a..0000000000 --- a/changes/python-tests +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - "make check" now runs extra tests beyond the unit test scripts if - Python is installed. - diff --git a/changes/seccomp2-fixes b/changes/seccomp2-fixes deleted file mode 100644 index 600feecd11..0000000000 --- a/changes/seccomp2-fixes +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes: - - Fix compilation warnings and startup issues when running with - libseccomp-2.1.0. Fixes bug 10563. diff --git a/changes/stack_trace b/changes/stack_trace deleted file mode 100644 index 2eaf15ec89..0000000000 --- a/changes/stack_trace +++ /dev/null @@ -1,8 +0,0 @@ - o Major features: - - On some platforms (currently: recent OSX versions, glibc-based - platforms that support the ELF format, and a few other - Unix-like operating systems), Tor can now dump stack traces - when a crash occurs or an assertion fails. By default, traces - are dumped to stderr (if possible) and to any logs that are - reporting errors. - diff --git a/changes/ticket10043 b/changes/ticket10043 deleted file mode 100644 index 21541bedbb..0000000000 --- a/changes/ticket10043 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - When logging OpenSSL engine status at startup, log the status of - more engines. Fixes ticket 10043; patch from Joshua Datko. - diff --git a/changes/ticket10060 b/changes/ticket10060 deleted file mode 100644 index 867c46436b..0000000000 --- a/changes/ticket10060 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features: - - Adding --allow-missing-torrc commandline option that allows Tor to - run if configuration file specified by -f is not available. - Implements ticket 10060. - diff --git a/changes/ticket8368 b/changes/ticket8368 new file mode 100644 index 0000000000..206a766548 --- /dev/null +++ b/changes/ticket8368 @@ -0,0 +1,5 @@ + o Distribution: + - Include a tor.service file in contrib.dist for use with + systemd. Some distributions will be able to use this file unmodified; + others will need to tweak it, or write their own. Patch from + Jamie Nguyen; resolves ticket 8368. diff --git a/changes/ticket8510 b/changes/ticket8510 deleted file mode 100644 index c79129ac69..0000000000 --- a/changes/ticket8510 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - Implement the HS_DESC async control event that notifies controller on - activities related to hidden service descriptors. Partly resolves - ticket 8510. diff --git a/changes/ticket8966 b/changes/ticket8966 new file mode 100644 index 0000000000..d6967a4e30 --- /dev/null +++ b/changes/ticket8966 @@ -0,0 +1,7 @@ + o Package cleanup: + - The contrib directory has been sorted and tidy. Before, it was an + unsorted dumping ground for useful and not-so-useful things. Now, + it has been divided based on functionality, and the items which + seemed to be nonfunctional or useless have been removed. Resolves + ticket 8966; based on patches from "rl1987". + diff --git a/changes/ticket9839 b/changes/ticket9839 deleted file mode 100644 index a71c231042..0000000000 --- a/changes/ticket9839 +++ /dev/null @@ -1,3 +0,0 @@ - o Documentation: - - Update manpage to describe some of the files one could find - in data directory. Fixes bug 9839. |