diff options
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/19122 | 3 | ||||
| -rw-r--r-- | changes/bug19677 | 6 | ||||
| -rw-r--r-- | changes/bug19767 | 4 | ||||
| -rw-r--r-- | changes/bug19902 | 5 | ||||
| -rw-r--r-- | changes/bug19998 | 6 | ||||
| -rw-r--r-- | changes/bug19999_prep | 2 | ||||
| -rw-r--r-- | changes/bug20012 | 12 | ||||
| -rw-r--r-- | changes/bug20064 | 5 | ||||
| -rw-r--r-- | changes/bug20065 | 5 | ||||
| -rw-r--r-- | changes/bug20093 | 4 | ||||
| -rw-r--r-- | changes/bug20110 | 6 | ||||
| -rw-r--r-- | changes/feature17178 | 30 | ||||
| -rw-r--r-- | changes/feature18693 | 5 | ||||
| -rw-r--r-- | changes/feature20069 | 6 | ||||
| -rw-r--r-- | changes/geoip-september2016 | 4 | ||||
| -rw-r--r-- | changes/ticket20002 | 4 | ||||
| -rw-r--r-- | changes/ticket20066 | 5 |
17 files changed, 112 insertions, 0 deletions
diff --git a/changes/19122 b/changes/19122 new file mode 100644 index 0000000000..cface80679 --- /dev/null +++ b/changes/19122 @@ -0,0 +1,3 @@ + o Minor bugfixes (documentation): + - man page incorrectly states the User option takes a UID when it really + takes a username. Fixes bug 19122. diff --git a/changes/bug19677 b/changes/bug19677 new file mode 100644 index 0000000000..e8ba3dd61a --- /dev/null +++ b/changes/bug19677 @@ -0,0 +1,6 @@ + o Minor bug fixes (option parsing): + - Count unix sockets when counting client listeners (SOCKS, Trans, + NATD, and DNS). This has no user-visible behaviour changes: these + options are set once, and never read. + Required for correct behaviour in ticket #17178. + Fixes bug #19677, patch by teor. diff --git a/changes/bug19767 b/changes/bug19767 new file mode 100644 index 0000000000..f0a010be0c --- /dev/null +++ b/changes/bug19767 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - Always include orconfig.h before including any other C headers. + Sometimes, it includes macros that affect the behavior of the + standard headers. Closes bug 19767. diff --git a/changes/bug19902 b/changes/bug19902 new file mode 100644 index 0000000000..297570ea0d --- /dev/null +++ b/changes/bug19902 @@ -0,0 +1,5 @@ + o Major bugfixes (compilation, OpenBSD): + + - Fix a Libevent-detection bug in our autoconf script that would + prevent Tor from linking successfully on OpenBSD. Patch from + rubiate. Fixes bug 19902; bugfix on 0.2.9.1-alpha. diff --git a/changes/bug19998 b/changes/bug19998 new file mode 100644 index 0000000000..d01589da03 --- /dev/null +++ b/changes/bug19998 @@ -0,0 +1,6 @@ + o Minor features (security, TLS): + - Servers no longer support clients that do not provide AES + ciphersuites. (3DES is no longer considered an acceptable + cipher.) We believe that no such clients currently exist, + since we have required OpenSSL 0.9.7 or later since 2009. + Closes ticket 19998. diff --git a/changes/bug19999_prep b/changes/bug19999_prep index e8bb4a571b..769c870fe9 100644 --- a/changes/bug19999_prep +++ b/changes/bug19999_prep @@ -12,6 +12,8 @@ - Our link-handshake unit tests now check, that when invalid handshakes fail, they fail with the error messages we expected. + - The unit tests now treat any failure of a "tor_assert_nonfatal()" + assertion as a test failure. o Minor bugfixes (unit tests): - The tor_tls_server_info_callback unit test no longer crashes when diff --git a/changes/bug20012 b/changes/bug20012 new file mode 100644 index 0000000000..f67ee65867 --- /dev/null +++ b/changes/bug20012 @@ -0,0 +1,12 @@ + o Major bugfixes (hidden services): + - Clients require hidden services to include the TAP keys + for their intro points in the hidden service descriptor. + This prevents an inadvertent upgrade to ntor, which a + malicious hidden service could use to discover which + consensus a client has. + Fixes bug 20012; bugfix on 0.2.4.8-alpha. Patch by teor. + o Minor bugfixes (hidden services): + - Stop logging intro point details to the client log on + certain error conditions. + Fixed as part of bug 20012; bugfix on 0.2.4.8-alpha. + Patch by teor. diff --git a/changes/bug20064 b/changes/bug20064 new file mode 100644 index 0000000000..38d3b91cfa --- /dev/null +++ b/changes/bug20064 @@ -0,0 +1,5 @@ + o Minor bugfixes (Directory Authority): + - When allowing private addresses, mark Exits that only exit to + private locations as such. Fixes bug 20064; bugfix on + 0.2.2.9-alpha. + diff --git a/changes/bug20065 b/changes/bug20065 new file mode 100644 index 0000000000..cdeb698991 --- /dev/null +++ b/changes/bug20065 @@ -0,0 +1,5 @@ + o Minor bugfixes (directory authorities): + - Die with a useful error when the operator forgets to place the + authority_signing_key file into the keys directory. This avoids an + uninformative assert & traceback about having an invalid key. + Fixes bug 20065; bugfix on 0.2.0.1-alpha. diff --git a/changes/bug20093 b/changes/bug20093 new file mode 100644 index 0000000000..ef3260143b --- /dev/null +++ b/changes/bug20093 @@ -0,0 +1,4 @@ + o Minor bugfixes (logging): + - When logging a message from the BUG() macro, be explicit about what + we were asserting. Previously we were confusing what we were asserting + with what the bug was. Fixes bug 20093; bugfix on 0.2.9.1-alpha. diff --git a/changes/bug20110 b/changes/bug20110 new file mode 100644 index 0000000000..bb56a13268 --- /dev/null +++ b/changes/bug20110 @@ -0,0 +1,6 @@ + o Minor bugfixes (compilation): + + - Stop trying to build with Clang 4.0's -Wthread-safety + warnings. They apparently require a set of annotations that we + aren't currently using, and they create false positives in our + pthreads wrappers. Fixes bug 20110; bugfix on 0.2.9.1-alpha. diff --git a/changes/feature17178 b/changes/feature17178 new file mode 100644 index 0000000000..172097cd62 --- /dev/null +++ b/changes/feature17178 @@ -0,0 +1,30 @@ + o Major features (onion services): + - Add experimental HiddenServiceSingleHopMode and + HiddenServiceNonAnonymousMode options. When both are set to 1, every + hidden service on a tor instance becomes a non-anonymous Single Onion + Service. Single Onions make one-hop (direct) connections to their + introduction and renzedvous points. One-hop circuits make Single Onion + servers easily locatable, but clients remain location-anonymous. + This is compatible with the existing hidden service implementation, and + works on the current tor network without any changes to older relays or + clients. + Implements proposal #260, completes ticket #17178. Patch by teor & asn. + o Minor features (Tor2web): + - Make Tor2web clients respect ReachableAddresses. + This feature was inadvertently enabled in 0.2.8.6, then removed + by bugfix #19973 on 0.2.8.7. + Implements feature #20034. Patch by teor. + o Minor bug fixes (Tor2web): + - Prevent Tor2web clients running hidden services, these services are + not anonymous due to the one-hop client paths. + Fixes bug #19678. Patch by teor. + o Minor bug fixes (circuits): + - Use CircuitBuildTimeout whenever LearnCircuitBuildTimeout is disabled. + Fixes bug #19678 in commit 5b0b51ca3 in 0.2.4.12-alpha. Patch by teor. + o Minor bug fixes (options): + - Stop changing the configured value of UseEntryGuards on authorities + and Tor2web clients. + Fixes bug #20074 in commits 51fc6799 in tor-0.1.1.16-rc and + acda1735 in tor-0.2.4.3-alpha. Patch by teor. + - Check the consistency of UseEntryGuards and EntryNodes more reliably. + Fixes bug #20074 in commit 686aaa5c in tor-0.2.4.12-alpha. Patch by teor. diff --git a/changes/feature18693 b/changes/feature18693 new file mode 100644 index 0000000000..ce7c9939a0 --- /dev/null +++ b/changes/feature18693 @@ -0,0 +1,5 @@ + o Minor feature (port flags): + - Add *Port flags NoDNSRequest and NoOnionTraffic, and + the synthetic flag OnionTrafficOnly, which is equivalent to + NoDNSRequest, NoIPv4Traffic, and NoIPv6Traffic. + Closes enhancement 18693; patch by "teor". diff --git a/changes/feature20069 b/changes/feature20069 new file mode 100644 index 0000000000..039fb754d2 --- /dev/null +++ b/changes/feature20069 @@ -0,0 +1,6 @@ + o Minor feature (testing, ipv6): + - Add the hs-ipv6 chutney target to make test-network-all's IPv6 + tests. Remove bridges+hs, as it's somewhat redundant. + This requires a recent chutney version that supports IPv6 clients, + relays, and authorities. + Closes ticket 20069; patch by teor. diff --git a/changes/geoip-september2016 b/changes/geoip-september2016 new file mode 100644 index 0000000000..a14c7c699f --- /dev/null +++ b/changes/geoip-september2016 @@ -0,0 +1,4 @@ + o Minor features: + - Update geoip and geoip6 to the September 6 2016 Maxmind GeoLite2 + Country database. + diff --git a/changes/ticket20002 b/changes/ticket20002 new file mode 100644 index 0000000000..28eaa8d60d --- /dev/null +++ b/changes/ticket20002 @@ -0,0 +1,4 @@ + o Minor features (directory authority): + - After voting, if the authorities decide that a relay is not "Valid", + they no longer include it in the consensus at all. Closes ticket + 20002; implements part of proposal 272. diff --git a/changes/ticket20066 b/changes/ticket20066 new file mode 100644 index 0000000000..970793d4ee --- /dev/null +++ b/changes/ticket20066 @@ -0,0 +1,5 @@ + o Minor features (testing): + - Disable memory protections on OpenBSD when testing memwipe(). + The test deliberately invokes undefined behaviour which the + protections interfere with. Patch from "rubiate". Closes ticket + 20066. |