diff options
Diffstat (limited to 'changes')
80 files changed, 174 insertions, 212 deletions
diff --git a/changes/11150 b/changes/11150 deleted file mode 100644 index b4d40ed07c..0000000000 --- a/changes/11150 +++ /dev/null @@ -1,6 +0,0 @@ - o Removed features: - - Remove client-side support for connecting to Tor servers running - versions of Tor before 0.2.3.6-alpha. These servers didn't - support the v3 TLS handshake protocol, and are no longer allowed - on the Tor network. Implements the client side of ticket - 11150. Based on patches by Tom van der Woerdt. diff --git a/changes/17004 b/changes/17004 deleted file mode 100644 index 1dc9a237d4..0000000000 --- a/changes/17004 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - Unit tests for directory_handle_command_get. Closes ticket 17004. - Patch from Reinaldo de Souza Jr. diff --git a/changes/17075 b/changes/17075 deleted file mode 100644 index a91ac673e6..0000000000 --- a/changes/17075 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for compat_libevent.c. Closes ticket 17075. - Patch from Ola Bini. diff --git a/changes/17078 b/changes/17078 deleted file mode 100644 index af02877898..0000000000 --- a/changes/17078 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for procmon.c. Closes ticket 17078. - Patch from Ola Bini. diff --git a/changes/17082 b/changes/17082 deleted file mode 100644 index 30ed01473e..0000000000 --- a/changes/17082 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for tortls.c. Closes ticket 17082. - Patch from Ola Bini. diff --git a/changes/17084 b/changes/17084 deleted file mode 100644 index 361e26f264..0000000000 --- a/changes/17084 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for util_format.c. Closes ticket 17084. - Patch from Ola Bini. diff --git a/changes/assert_event_base b/changes/assert_event_base new file mode 100644 index 0000000000..b887795518 --- /dev/null +++ b/changes/assert_event_base @@ -0,0 +1,5 @@ + o Minor features (robustness): + - Exit immediately with an error message if the code attempts to + use libevent without having initialized it. This should resolve + some frequently-made mistakes in our unit tests. Closes ticket + 18241. diff --git a/changes/bug14821 b/changes/bug14821 new file mode 100644 index 0000000000..0920d1fffc --- /dev/null +++ b/changes/bug14821 @@ -0,0 +1,4 @@ + o Major bugfixes (compilation): + - Correctly repair hardened builds under the clang compiler. Previously, + our use of _FORTIFY_SOURCE would conflict with clang's address + sanitizer. Closes ticket 14821. diff --git a/changes/bug16023 b/changes/bug16023 new file mode 100644 index 0000000000..7451e271a0 --- /dev/null +++ b/changes/bug16023 @@ -0,0 +1,4 @@ + o Minor feature (hidden service, control port) + - Add the onion address to the HS_DESC event for the UPLOADED action + both on success or failure. It was previously hardcoded with UNKNOWN. + Fixes #16023; diff --git a/changes/bug16056 b/changes/bug16056 deleted file mode 100644 index e3311c0f93..0000000000 --- a/changes/bug16056 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (relay, IPv6): - - When displaying an IPv6 exit policy, include the mask bits correctly - even when the number is greater than 31. Fixes bug 16056; bugfix on - 0.2.4.7-alpha. Patch from "gturner".
\ No newline at end of file diff --git a/changes/bug16382 b/changes/bug16382 deleted file mode 100644 index 8faee98ad8..0000000000 --- a/changes/bug16382 +++ /dev/null @@ -1,3 +0,0 @@ - o Documentation: - - Explain actual minima for BandwidthRate. Closes ticket 16382. - diff --git a/changes/bug16563 b/changes/bug16563 deleted file mode 100644 index 19e59b3821..0000000000 --- a/changes/bug16563 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (logging): - - In log messages that include a function name, use __FUNCTION__ instead - of __PRETTY_FUNCTION__. In GCC, these are synonymous, but with clang - __PRETTY_FUNCTION__ has extra information we don't need. - Fixes bug 16563; bugfix on 0.0.2pre8. Fix by Tom van der Woerdt. -
\ No newline at end of file diff --git a/changes/bug16651 b/changes/bug16651 deleted file mode 100644 index 096daeaf70..0000000000 --- a/changes/bug16651 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (compilation): - - - Fix search for libevent libraries on OpenBSD (and similar systems - which install libevent 1 and libevent 2 in parallel). Resolves - ticket 16651. Patch from "rubiate". diff --git a/changes/bug16702 b/changes/bug16702 deleted file mode 100644 index 5de36cd351..0000000000 --- a/changes/bug16702 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (hidden service) - - The wrong list was used when looking up expired intro points in a rend - service object causing what we think could be reachability issues and - triggering a BUG log. Fixes 16702; bugfix on tor-0.2.7.2-alpha. diff --git a/changes/bug16825 b/changes/bug16825 new file mode 100644 index 0000000000..75c5627efd --- /dev/null +++ b/changes/bug16825 @@ -0,0 +1,7 @@ + o Minor bugfixes: + - Count receipt of new microdescriptors as progress towards + bootstrapping. Now, when a user who has set EntryNodes finishes + bootstrapping, Tor automatically repopulates the guard set based + on this new directory information. Fixes bug 16825; bugfix on + 0.2.3.1-alpha. + diff --git a/changes/bug17026 b/changes/bug17026 deleted file mode 100644 index 8b1ce3c61b..0000000000 --- a/changes/bug17026 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features: - - Set unused entires in a smartlist to NULL. This helped catch a - (harmless) bug, and shouldn't affect performance too much. - Implements ticket 17026. - diff --git a/changes/bug17027-reject-private-bind-port b/changes/bug17027-reject-private-bind-port deleted file mode 100644 index abc1431c9a..0000000000 --- a/changes/bug17027-reject-private-bind-port +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bug fixes (security, exit policies): - - ExitPolicyRejectPrivate rejects more private addresses by default: - * the relay's outbound bind addresses (if configured), and - * the relay's configured port addresses (such as ORPort and DirPort). - Resolves ticket 17027. Patch by "teor". - Patch on 42b8fb5a1523 (11 Nov 2007), released in 0.2.0.11-alpha, - and on 0.2.7.3-rc. diff --git a/changes/bug17194 b/changes/bug17194 deleted file mode 100644 index 26549b307f..0000000000 --- a/changes/bug17194 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor feature: - - When logging to syslog, allow a tag to be added to the syslog - identity ("Tor"), i.e. the string prepended to every log message. - The tag can be configured by setting SyslogIdentityTag and defaults - to none. Setting it to "foo" will cause logs to be tagged as - "Tor-foo". - diff --git a/changes/bug17347 b/changes/bug17347 deleted file mode 100644 index 487b1320e2..0000000000 --- a/changes/bug17347 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Fix compilation of sandbox.c with musl-libc. - Fixes bug 17347; bugfix on 0.2.5.1-alpha. - Patch from 'jamestk'. diff --git a/changes/bug17364 b/changes/bug17364 deleted file mode 100644 index dd9ff12784..0000000000 --- a/changes/bug17364 +++ /dev/null @@ -1,3 +0,0 @@ - o Documentation: - - Note that HiddenServicePorts can take a unix domain socket. - Closes ticket 17364. diff --git a/changes/bug17544 b/changes/bug17544 deleted file mode 100644 index 4316d0709c..0000000000 --- a/changes/bug17544 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfix (SipHash-2-4 performance): - - Improve performance when hashing non-multiple of 8 sized buffers, - based on Andrew Moon's Public Domain SipHash-2-4 implementation. - Fixes bug 17544; bugfix on 0.2.5.3-alpha. diff --git a/changes/bug17549 b/changes/bug17549 deleted file mode 100644 index 3650608141..0000000000 --- a/changes/bug17549 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (compilation): - - Repair compilation with the most recent (unreleased, alpha) - vesions of OpenSSL 1.1. Fixes bug 17549. diff --git a/changes/bug17551 b/changes/bug17551 deleted file mode 100644 index 27e467979e..0000000000 --- a/changes/bug17551 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - When checking for net/pfvar.h, include netinet/in.h if possible. - This fixes transparent proxy detection on OpenBSD. Fixes bug - 17551; bugfix on 0.1.2.1-alpha. Patch from "rubiate". diff --git a/changes/bug17572-fallback-by-digest b/changes/bug17572-fallback-by-digest deleted file mode 100644 index 3fba123360..0000000000 --- a/changes/bug17572-fallback-by-digest +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfix (fallback directories): - - Mark fallbacks as "too busy" when they return a 503 response, - rather than just marking authorities. - Fixes bug 17572; bugfix on 5c51b3f1f0d4 released in 0.2.4.7-alpha. - Patch by "teor". diff --git a/changes/bug17589 b/changes/bug17589 deleted file mode 100644 index 91103276df..0000000000 --- a/changes/bug17589 +++ /dev/null @@ -1,7 +0,0 @@ - o Code simplificiation and refactoring: - - When a direct directory request fails immediately on launch, - instead of relaunching that request from inside the code that - launches it, instead mark the connection for teardown. This - change simplifies Tor's callback and prevents the directory- - request launching code from invoking itself recursively. - Closes ticket 17589.
\ No newline at end of file diff --git a/changes/bug17632-no-ipv4-no-localhost b/changes/bug17632-no-ipv4-no-localhost deleted file mode 100644 index 04622079d3..0000000000 --- a/changes/bug17632-no-ipv4-no-localhost +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfix (unit tests): - - Make unit tests pass on IPv6-only systems, and systems without - localhost addresses (like some FreeBSD jails). - Fixes bug #17632; bugfix on unit tests in 0.2.7.3-rc. - c464a367728d was a partial fix for this issue in #17255; - it was released in unit tests in 0.2.7.4-rc. - Patch by "teor". diff --git a/changes/bug17638-ipv6-ersatz-socketpair b/changes/bug17638-ipv6-ersatz-socketpair deleted file mode 100644 index 6193065ff3..0000000000 --- a/changes/bug17638-ipv6-ersatz-socketpair +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfix (IPv6 compatibility, unit tests): - - Make tor_ersatz_socketpair work on IPv6-only systems. - Fixes bug #17638; bugfix on a very early tor version, - earlier than 22dba27d8dd5 (23 Nov 2004) / svn:r2943. - Patch by "teor". diff --git a/changes/bug17686 b/changes/bug17686 deleted file mode 100644 index 8fa16c794b..0000000000 --- a/changes/bug17686 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - Adjust Tor's use of OpenSSL's RNG APIs so that they absolutely, - positively are not allowed to fail. Previously we depended on - internals about OpenSSL behavior. Closes ticket 17686. diff --git a/changes/bug17722 b/changes/bug17722 deleted file mode 100644 index 1b18d4af2b..0000000000 --- a/changes/bug17722 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (code correctness) - - Fix undefined behavior in the tor_cert_checksig function. Fixes bug - 17722; bugfix on tor-0.2.7.2-alpha. diff --git a/changes/bug17724 b/changes/bug17724 deleted file mode 100644 index 7ace99eece..0000000000 --- a/changes/bug17724 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bug fixes (unit tests, hidden services): - - Avoid relying on malloc internals in test_rend_cache_purge. - Closes ticket 17724. Bug fix on ade5005853c1 and 5e9f2384cf0f, - not in any released version of Tor. Patch by "teor". diff --git a/changes/bug17732 b/changes/bug17732 new file mode 100644 index 0000000000..010645d3c9 --- /dev/null +++ b/changes/bug17732 @@ -0,0 +1,10 @@ + o Minor features (compilation): + - Note our minimum required autoconf/automake versions in the + appropriate locations. Closes ticket 17732. + + o Dependency updates: + - Tor now uses Autoconf version 2.63 or later, and Automake 1.11 or later + (released in 2008 and 2009 respectively). If you are building Tor from + the git repository instead of from the source distribution, and your + tools are older than this, you will need to upgrade. + Closes ticket 17732. diff --git a/changes/bug17763 b/changes/bug17763 deleted file mode 100644 index d565d13a7d..0000000000 --- a/changes/bug17763 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bug fixes (exit policies): - - Consistently ignore multicast addresses when automatically - generating reject private exit policies. - Closes ticket 17763. Bug fix on 10a6390deb3c9, - not in any released version of Tor. Patch by "teor". diff --git a/changes/bug17772 b/changes/bug17772 deleted file mode 100644 index 54d457c601..0000000000 --- a/changes/bug17772 +++ /dev/null @@ -1,7 +0,0 @@ - o Major bugfixes (guard selection): - - Actually look at the Guard flag when selecting a new directory - guard. When we implemented the directory guard design, we - accidentally started treating all relays as if they have the Guard - flag during guard selection, leading to weaker anonymity and worse - performance. Fixes bug 17222; bugfix on 0.2.4.8-alpha. Discovered - by Mohsen Imani. diff --git a/changes/bug17778 b/changes/bug17778 deleted file mode 100644 index 9844969a3b..0000000000 --- a/changes/bug17778 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (tests): - - Fix a memory leak in the ntor test. Fixes bug 17778; bugfix on - 0.2.4.8-alpha. diff --git a/changes/bug17781 b/changes/bug17781 deleted file mode 100644 index 01ed231b0a..0000000000 --- a/changes/bug17781 +++ /dev/null @@ -1,3 +0,0 @@ - o Compilation fixes: - - Fix a compilation warning with Clang 3.6: Do not check the - presence of an address which can never be NULL. Fixes bug 17781. diff --git a/changes/bug17852 b/changes/bug17852 new file mode 100644 index 0000000000..b36b55f9d6 --- /dev/null +++ b/changes/bug17852 @@ -0,0 +1,10 @@ + o Minor features (code hardening): + - Use tor_snprintf() and tor_vsnprintf() even in external and + low-level code, to harden against accidental failures to NUL- + terminate. Part of ticket 17852. Patch from 'jsturgix'. Found + with Flawfinder. + + o Minor bugfixes (private directory): + - Prevent a race condition when creating private directories. + Fixes part of bug 17852; bugfix on 0.2pre13. Part of ticket + 17852. Patch from 'jsturgix'. Found with Flawfinder. diff --git a/changes/bug18051 b/changes/bug18051 new file mode 100644 index 0000000000..1b11867d19 --- /dev/null +++ b/changes/bug18051 @@ -0,0 +1,4 @@ + o Minor bugfixes: + - When generating a URL for a directory server on an IPv6 address, + wrap the IPv6 address in square brackets. Fixes bug 18051; + bugfix on ?. Patch from Malek. diff --git a/changes/bug18116 b/changes/bug18116 new file mode 100644 index 0000000000..23ff8f7775 --- /dev/null +++ b/changes/bug18116 @@ -0,0 +1,3 @@ + o Major bugfixes: + - Correctly handle detaching circuits from cmuxes when doing + circuit_free_all() on shutdown again; fixes bug #18116. diff --git a/changes/bug18123 b/changes/bug18123 new file mode 100644 index 0000000000..1359b4ef67 --- /dev/null +++ b/changes/bug18123 @@ -0,0 +1,4 @@ + o Minor bugfixes (security, win32): + - Set SO_EXCLUSIVEADDRUSE on Win32 to avoid a local port-stealing + attack. + Fixes bug 18123; bugfix on all tor versions. Patch by "teor". diff --git a/changes/bug18162 b/changes/bug18162 new file mode 100644 index 0000000000..0844d6f62f --- /dev/null +++ b/changes/bug18162 @@ -0,0 +1,7 @@ + o Major bugfixes (security, pointers): + + - Avoid a difficult-to-trigger heap corruption attack when extending + a smartlist to contain over 16GB of pointers. Fixes bug #18162; + bugfix on Tor 0.1.1.11-alpha, which fixed a related bug + incompletely. Reported by Guido Vranken. + diff --git a/changes/bug18184 b/changes/bug18184 new file mode 100644 index 0000000000..af493df75f --- /dev/null +++ b/changes/bug18184 @@ -0,0 +1,5 @@ + o Removed platform support: + - Tor no longer attempts to support platforms where the "time_t" type + is unsigned. (To the best of our knowledge, only OpenVMS does this, + and Tor has never actually built on OpenVMS.) Closes ticket 18184. + diff --git a/changes/bug18204_028 b/changes/bug18204_028 new file mode 100644 index 0000000000..3a1a11620e --- /dev/null +++ b/changes/bug18204_028 @@ -0,0 +1,3 @@ + o Testing: + - Treat backtrace test failures as expected on FreeBSD until we + solve bug 17808. Closes ticket 18204. diff --git a/changes/bug18208 b/changes/bug18208 new file mode 100644 index 0000000000..d6d194bb4d --- /dev/null +++ b/changes/bug18208 @@ -0,0 +1,5 @@ + o Minor bug fixes (exit policies, security): + - Refresh an exit relay's exit policy when interface addresses change. + Previously, tor only refreshed the exit policy when the configured + external address changed. + Closes ticket 18208 on tor 0.2.7.3. Patch by "teor". diff --git a/changes/bug18221 b/changes/bug18221 new file mode 100644 index 0000000000..afc240422a --- /dev/null +++ b/changes/bug18221 @@ -0,0 +1,3 @@ + o Minor features (crypto): + - Validate the Diffie-Hellman hard coded parameters and ensure that + p is a safe prime, and g is suitable. Closes ticket 18221. diff --git a/changes/bug18242 b/changes/bug18242 new file mode 100644 index 0000000000..e91f6d5eb3 --- /dev/null +++ b/changes/bug18242 @@ -0,0 +1,6 @@ + o Minor bugfixes (testing): + - We no longer disable assertions in the unit tests when coverage + is enabled. Instead, we require you to say --disable-asserts-in-tests + to the configure script if you need assertions disabled in the + unit tests (for example, if you want to perform branch coverage). + Fixes bug 18242; bugfix on 0.2.7.1-alpha. diff --git a/changes/bug18258 b/changes/bug18258 new file mode 100644 index 0000000000..00e122466f --- /dev/null +++ b/changes/bug18258 @@ -0,0 +1,12 @@ + o Code simplification and refactoring: + - Remove specialized code for non-inplace AES_CTR. 99% of our AES + is inplace, so there's no need to have a separate implementation + for the non-inplace code. Closes ticket 18258. Patch from + Malek. + + o New requirements: + - Tor no longer supports versions of OpenSSL with a broken + implementation of counter mode. (This bug was present in OpenSSL + 1.0.0, and was fixed in OpenSSL 1.0.0a.) Tor still detects, but + no longer runs with, these versions. + diff --git a/changes/bug18259 b/changes/bug18259 new file mode 100644 index 0000000000..1084b8f524 --- /dev/null +++ b/changes/bug18259 @@ -0,0 +1,4 @@ + o Code simplification and refactoring: + - Simplify return types for some crypto functions that can't + actually fail. Patch from Hassan Alsibyani. Closes ticket + 18259. diff --git a/changes/bug18261 b/changes/bug18261 new file mode 100644 index 0000000000..df4c74f337 --- /dev/null +++ b/changes/bug18261 @@ -0,0 +1,6 @@ + o Minor features (crypto): + - Fix a segfault during startup: If unix socket was configured as + listener (such as a ControlSocket or a SocksPort unix socket), and + tor was started as root but not configured to switch to another + user, tor would segfault while trying to string compare a NULL + value. Fixes bug 18261; bugfix on 0.2.8.1-alpha. Patch by weasel. diff --git a/changes/bug18296 b/changes/bug18296 new file mode 100644 index 0000000000..1e98200be9 --- /dev/null +++ b/changes/bug18296 @@ -0,0 +1,4 @@ + o Minor bugfixes (containers): + - If we somehow attempt to construct a heap with more than + 1073741822 elements, avoid an integer overflow when maintaining + the heap property. Fixes bug 18296; bugfix on 0.1.2.1-alpha. diff --git a/changes/bug18348 b/changes/bug18348 new file mode 100644 index 0000000000..03978eda19 --- /dev/null +++ b/changes/bug18348 @@ -0,0 +1,5 @@ + o Major bug fixes (relays, bridge clients): + - Ensure relays always allow IPv4 OR and Dir connections. + Ensure bridge clients use the address configured in the bridge line. + Fixes bug 18348; bugfix on 0.2.8.1-alpha. + Reported by sysrqb, patch by teor. diff --git a/changes/bug18374 b/changes/bug18374 new file mode 100644 index 0000000000..4764c53f56 --- /dev/null +++ b/changes/bug18374 @@ -0,0 +1,3 @@ + o Minor bugfixes (configuration): + - Fix a tiny memory leak when parsing a port configuration ending in + ":auto". Fixes bug 18374; bugfix on 0.2.3.3-alpha. diff --git a/changes/bug18384 b/changes/bug18384 new file mode 100644 index 0000000000..78befcabaa --- /dev/null +++ b/changes/bug18384 @@ -0,0 +1,5 @@ + o Minor bugfixes (crypto, static analysis): + - Silence spurious clang-scan warnings in the ed25519_donna code + by explicitly initialising some objects. + Fixes bug 18384; bugfix on 0f3eeca9 in 0.2.7.2-alpha. + Patch by "teor". diff --git a/changes/bug18426_18459 b/changes/bug18426_18459 new file mode 100644 index 0000000000..9059d6e47e --- /dev/null +++ b/changes/bug18426_18459 @@ -0,0 +1,4 @@ + o Documentation: + - Change build messages to refer to "Fedora" instead of "Fedora Core", + and "dnf" instead of "yum". Closes tickets 18459 and 18426. + Patches from "icanhasaccount" and "cypherpunks". diff --git a/changes/bug18448 b/changes/bug18448 new file mode 100644 index 0000000000..e328ce367a --- /dev/null +++ b/changes/bug18448 @@ -0,0 +1,6 @@ + o Minor features (build): + - Detect systems with FreeBSD-derived kernels (such as GNU/kFreeBSD) as + having possible IPfW support. Closes ticket 18448. Patch from + Steven Chamberlain. + + diff --git a/changes/bug18454 b/changes/bug18454 new file mode 100644 index 0000000000..c573dae417 --- /dev/null +++ b/changes/bug18454 @@ -0,0 +1,8 @@ + o Minor bugfixes (memory safety): + - Avoid freeing an uninitialised pointer when opening a socket fails + in get_interface_addresses_ioctl. + Fixes bug 18454; bugfix on 9f06ec0c in tor-0.2.3.11-alpha. + Reported by "toralf" and "cypherpunks", patch by "teor". + - Correctly duplicate addresses in get_interface_address6_list. + Fixes bug 18454; bugfix on 110765f5 in tor-0.2.8.1-alpha. + Reported by "toralf", patch by "cypherpunks". diff --git a/changes/build18490 b/changes/build18490 new file mode 100644 index 0000000000..466a133cb2 --- /dev/null +++ b/changes/build18490 @@ -0,0 +1,4 @@ + o Minor bugfixes (build): + - Do not link the unit tests against both the testing and non-testing + versions of the static libraries. Fixes bug 18490; bugfix on + 0.2.7.1-alpha. diff --git a/changes/check-crypto-errors b/changes/check-crypto-errors deleted file mode 100644 index e41862ca13..0000000000 --- a/changes/check-crypto-errors +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfix (crypto): - - Check the return value of HMAC and assert on failure. - Fixes bug #17658; bugfix on commit in fdbb9cdf746b (11 Oct 2011) - in tor version 0.2.3.5-alpha-dev. - Patch by "teor". diff --git a/changes/cleanup_17587 b/changes/cleanup_17587 deleted file mode 100644 index 05e00fd9e5..0000000000 --- a/changes/cleanup_17587 +++ /dev/null @@ -1,3 +0,0 @@ - o Code simplifications and refactorings: - - Clean up a little duplicated code in crypto_expand_key_material_TAP. - Closes ticket 17587; patch from "pfrankw". diff --git a/changes/decouple_circuit_mark b/changes/decouple_circuit_mark deleted file mode 100644 index 4b7ed778a2..0000000000 --- a/changes/decouple_circuit_mark +++ /dev/null @@ -1,6 +0,0 @@ - o Code simplification and refactoring: - - Extract the more complicated parts of circuit_mark_for_close into - a new function run periodically before connections are freed. - This change removes more than half of the functions currently - in the "blob". - Closes ticket #17218. diff --git a/changes/decouple_conn_attach b/changes/decouple_conn_attach deleted file mode 100644 index 6167b4e932..0000000000 --- a/changes/decouple_conn_attach +++ /dev/null @@ -1,6 +0,0 @@ - o Code simplification and refactorings: - - Decouple the list of streams needing to be attached to circuits - from the overall connection list. This change makes it possible to - attach streams quickly while both simplifying Tor's callgraph and - avoiding O(N) scans of the entire connection list. Closes ticket - 17590. diff --git a/changes/doc17392 b/changes/doc17392 deleted file mode 100644 index 3c93497b00..0000000000 --- a/changes/doc17392 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation: - - Mention torspec URL in the manpage and point the reader to it - whenever we mention a document that belongs in torspce. - Fixes issue 17392. diff --git a/changes/feature13696 b/changes/feature13696 deleted file mode 100644 index 21c2188d12..0000000000 --- a/changes/feature13696 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (security, cryptography): - - Use modern system calls to generate strong entropy on platforms that - provide them. Closes ticket 13696. diff --git a/changes/feature14846 b/changes/feature14846 deleted file mode 100644 index 4668761f22..0000000000 --- a/changes/feature14846 +++ /dev/null @@ -1,4 +0,0 @@ - o Major features (controller): - - New "GETINFO hs/service/desc/id/" command to retrieve a hidden service - descriptor from a service's local hidden service descriptor cache. - Closes ticket 14846. diff --git a/changes/feature17663 b/changes/feature17663 deleted file mode 100644 index baad9436fc..0000000000 --- a/changes/feature17663 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor feature (crypto): - - Add SHA512 support to crypto.c. Closes ticket 17663; patch from - George Tankersley. diff --git a/changes/feature17840 b/changes/feature17840 new file mode 100644 index 0000000000..b8b3b7f5b5 --- /dev/null +++ b/changes/feature17840 @@ -0,0 +1,9 @@ + o Minor feature (IPv6): + - Add ClientUseIPv4, which is set to 1 by default. If set to 0, tor + avoids using IPv4 for client OR and directory connections. + - Add ClientPreferIPv6DirPort, which is set to 0 by default. If set + to 1, tor prefers IPv6 directory addresses. + - Try harder to fulfil IP version restrictions ClientUseIPv4 0 and + ClientUseIPv6 0; and the preferences ClientPreferIPv6ORPort and + ClientPreferIPv6DirPort. + Closes ticket 17840; patch by "teor". diff --git a/changes/feature8961-replaycache-sha256 b/changes/feature8961-replaycache-sha256 deleted file mode 100644 index c5b5c857db..0000000000 --- a/changes/feature8961-replaycache-sha256 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor enhancement (replaycache): - - The replay cache now uses SHA256 instead of SHA1. - Implements feature #8961. - Patch by "teor", issue reported by "rransom". diff --git a/changes/geoip-december2015 b/changes/geoip-december2015 deleted file mode 100644 index 597bcc92f8..0000000000 --- a/changes/geoip-december2015 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - Update geoip and geoip6 to the December 1 2015 Maxmind GeoLite2 - Country database. - diff --git a/changes/geoip-february2016 b/changes/geoip-february2016 new file mode 100644 index 0000000000..49a8041fad --- /dev/null +++ b/changes/geoip-february2016 @@ -0,0 +1,4 @@ + o Minor features: + - Update geoip and geoip6 to the February 2 2016 Maxmind GeoLite2 + Country database. + diff --git a/changes/geoip-march2016 b/changes/geoip-march2016 new file mode 100644 index 0000000000..d7b1bd42f9 --- /dev/null +++ b/changes/geoip-march2016 @@ -0,0 +1,4 @@ + o Minor features: + - Update geoip and geoip6 to the March 3 2016 Maxmind GeoLite2 + Country database. + diff --git a/changes/getinfo-private-exitpolicy b/changes/getinfo-private-exitpolicy deleted file mode 100644 index e8345167e9..0000000000 --- a/changes/getinfo-private-exitpolicy +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (exit policies, controllers): - - Add controller getinfo exit-policy/reject-private/[default,relay] - for the reject rules added by ExitPolicyRejectPrivate. This makes - it easier for stem to display exit policies. - - Add unit tests for getinfo exit-policy/*. - Completes ticket #17183. Patch by "teor". diff --git a/changes/laplace-edge-cases b/changes/laplace-edge-cases deleted file mode 100644 index 6c8c77b040..0000000000 --- a/changes/laplace-edge-cases +++ /dev/null @@ -1,8 +0,0 @@ - o Code simplifications and unit tests: - - Handle edge cases in the laplace functions: avoid division by zero, - avoid taking the log of zero, and silence clang type conversion - warnings using round and trunc. Add unit tests for edge cases with - maximal values. - - Consistently check for overflow in round_*_to_next_multiple_of - functions, and add unit tests with additional and maximal values. - diff --git a/changes/rand-failure-modes b/changes/rand-failure-modes deleted file mode 100644 index cc6ef4744e..0000000000 --- a/changes/rand-failure-modes +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (unit tests, random number generation): - - Add unit tests that check for common RNG failure modes, such as - returning all zeroes, identical values, or incrementing values - (OpenSSL's rand_predictable feature). - Patch by "teor". diff --git a/changes/remove_memarea_freelist b/changes/remove_memarea_freelist new file mode 100644 index 0000000000..dd9520c11e --- /dev/null +++ b/changes/remove_memarea_freelist @@ -0,0 +1,4 @@ + o Removed code: + - We no longer maintain an internal freelist in memarea.c. Allocators + should be good enough to make this code unnecessary, and it's doubtful + that it ever had any performance benefit. diff --git a/changes/routerset-parse-IPv6-literals b/changes/routerset-parse-IPv6-literals deleted file mode 100644 index c80c82c229..0000000000 --- a/changes/routerset-parse-IPv6-literals +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bug fixes (routersets, IPv6): - - routerset_parse now accepts IPv6 literal addresses. - Fix for ticket 17060. Patch by "teor". - Patch on 3ce6e2fba290 (24 Jul 2008), and related commits, - released in 0.2.1.3-alpha. diff --git a/changes/sha-unit-tests b/changes/sha-unit-tests deleted file mode 100644 index 457578d337..0000000000 --- a/changes/sha-unit-tests +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (unit tests): - - Check the full results of SHA256 and SHA512 digests in the - unit tests. - Bugfix on a tor version before the refactoring in git commit - cea12251995d (23 Sep 2009). Patch by "teor". diff --git a/changes/test16831 b/changes/test16831 deleted file mode 100644 index 7db2d14df5..0000000000 --- a/changes/test16831 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - Cover dns_resolve_impl() in dns.c with unit tests. Implements a - portion of ticket 16831. diff --git a/changes/test_asan b/changes/test_asan new file mode 100644 index 0000000000..ce0aa978ff --- /dev/null +++ b/changes/test_asan @@ -0,0 +1,3 @@ + o Testing: + - Fix several warnings from clang's address sanitizer produced in the + unit tests. diff --git a/changes/ticket17744 b/changes/ticket17744 new file mode 100644 index 0000000000..57a4a595c8 --- /dev/null +++ b/changes/ticket17744 @@ -0,0 +1,4 @@ + o Code simplification and refactoring: + - Quote all the string interpolations in configure.ac -- even + those which we are pretty sure can't contain spaces. Closes + ticket 17744. Patch from "zerosion".
\ No newline at end of file diff --git a/changes/trunnel_update b/changes/trunnel_update new file mode 100644 index 0000000000..4f8c1855b6 --- /dev/null +++ b/changes/trunnel_update @@ -0,0 +1,5 @@ + o Minor bugfixes (code correctness): + - Update to the latest version of Trunnel, which tries harder + to avoid generating code that can invoke memcpy(p,NULL,0). + Bug found by clang address sanitizer. Fixes bug 18373. Bugfix + on 0.2.7.2-alpha. diff --git a/changes/warn-when-time-goes-backwards b/changes/warn-when-time-goes-backwards deleted file mode 100644 index d7e584d9ff..0000000000 --- a/changes/warn-when-time-goes-backwards +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (security, clock): - - Warn when the system clock is set back in time (when the - state file was last written in the future). Tor doesn't know - that consensuses have expired if the clock is in the past. - Patch by "teor". Implements ticket #17188. |