diff options
Diffstat (limited to 'changes')
108 files changed, 383 insertions, 81 deletions
diff --git a/changes/bug13221 b/changes/bug13221 new file mode 100644 index 0000000000..13935a1921 --- /dev/null +++ b/changes/bug13221 @@ -0,0 +1,5 @@ + o Minor bugfixes (logging): + - Correct a misleading error message when IPv4Only or IPv6Only + is used but the resolved address can not be interpreted as an + address of the specified IP version. Fixes bug 13221; bugfix + on 0.2.3.9-alpha. Patch from Kris Katterjohn. diff --git a/changes/bug21394.2 b/changes/bug21394.2 deleted file mode 100644 index b580d2a786..0000000000 --- a/changes/bug21394.2 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfix (Exit node DNS retries): - - Re-attempt timed-out DNS queries 3 times before failure, since our - timeout is 5 seconds for them, but clients wait 10-15. Also allow - slightly more timeouts per resolver before giving up on it in the - case where an exit has multiple resolvers configured. Fixes bug 21394; - bugfix on 0.3.1.9. - diff --git a/changes/bug23512 b/changes/bug23512 deleted file mode 100644 index 91b2786de4..0000000000 --- a/changes/bug23512 +++ /dev/null @@ -1,6 +0,0 @@ - o Major bugfix (Relay bandwidth statistics): - - When we close relayed circuits, report the data in the circuit queues - as being written in our relay bandwidth stats. This mitigates guard - discovery and other attacks that close circuits for the explicit purpose - of noticing this discrepancy in statistics. Fixes bug 23512; bugfix - on 0.0.8pre3. diff --git a/changes/bug23681 b/changes/bug23681 deleted file mode 100644 index e317f36d50..0000000000 --- a/changes/bug23681 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (hidden service client): - - The introduction circuit was being timed out too quickly while waiting - for the rendezvous circuit to complete. Keep the intro circuit around - longer instead of timing out and reopening new ones constantly. Fixes - bug 23681; bugfix on 0.2.4.8-alpha. diff --git a/changes/bug23790 b/changes/bug23790 deleted file mode 100644 index 4aaf616e4d..0000000000 --- a/changes/bug23790 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (hidden service v2): - - When reloading tor (HUP) configured with hidden service(s), some - information weren't copy to the new service object. One problem with this - was that tor would wait at least the RendPostPeriod time before uploading - the descriptor if the reload happened before the descriptor needed to be - published. Fixes bug 23790; bugfix on 0.2.1.9-alpha. diff --git a/changes/bug24104 b/changes/bug24104 deleted file mode 100644 index ca2a3537fa..0000000000 --- a/changes/bug24104 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfix (relay statistics): - - Update relay descriptor on bandwidth changes only when the uptime is - smaller than 24h in order to reduce the efficiency of guard discovery - attacks. Fixes bug 24104; bugfix on 0.1.1.6-alpha. diff --git a/changes/bug24661 b/changes/bug24661 new file mode 100644 index 0000000000..a915a93e0e --- /dev/null +++ b/changes/bug24661 @@ -0,0 +1,3 @@ + o Minor bugfixes (client, guard selection): + - When Tor's consensus has expired, but is still reasonably live, use it + to select guards. Fixes bug 24661; bugfix on 0.3.0.1-alpha. diff --git a/changes/bug24903 b/changes/bug24903 deleted file mode 100644 index 01c9b53f23..0000000000 --- a/changes/bug24903 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (controller, reliability): - - Avoid a (nonfatal) assertion failure when extending a one-hop circuit - from the controller to become a multihop circuit. Fixes bug 24903; - bugfix on 0.2.5.2-alpha. - diff --git a/changes/bug25113 b/changes/bug25113 deleted file mode 100644 index 4a020b784d..0000000000 --- a/changes/bug25113 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (unit test, monotonic time): - - Bump a gap of 1msec to 10msec used in the monotonic time test that makes - sure the nsec/usec/msec time read are synchronized. This change was - needed to accommodate slow system like armel or when the clock_gettime() - is not a VDSO on the running kernel. Fixes bug 25113; bugfix on 0.2.9.1. diff --git a/changes/bug25116 b/changes/bug25116 deleted file mode 100644 index b3e73feeaa..0000000000 --- a/changes/bug25116 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (hidden service, heartbeat): - - Don't log in the heartbeat any long term established one hop rendezvous - points if tor is a single onion service. Fixes bug 25116; bugfix on - 0.2.9.6-rc; diff --git a/changes/bug25733 b/changes/bug25733 deleted file mode 100644 index 775c1ae00e..0000000000 --- a/changes/bug25733 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (Assert crash): - - Avoid an assert in the circuit build timeout code if we fail to - allow any circuits to actually complete. Fixes bug 25733; - bugfix on 0.2.2.2-alpha. diff --git a/changes/bug27073 b/changes/bug27073 deleted file mode 100644 index 851e7f0df6..0000000000 --- a/changes/bug27073 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (testing): - - Revise the "conditionvar_timeout" test so that it succeeds even - on heavily loaded systems where the test threads are not scheduled - within 200 msec. Fixes bug 27073; bugfix on 0.2.6.3-alpha. diff --git a/changes/bug27197 b/changes/bug27197 new file mode 100644 index 0000000000..e389f85065 --- /dev/null +++ b/changes/bug27197 @@ -0,0 +1,3 @@ + o Minor bugfixes (protover, rust): + - Reject extra commas in version string. Fixes bug 27197; bugfix on + 0.3.3.3-alpha. diff --git a/changes/bug27199 b/changes/bug27199 new file mode 100644 index 0000000000..f9d2a422f9 --- /dev/null +++ b/changes/bug27199 @@ -0,0 +1,3 @@ + o Minor bugfixes (rust): + - Abort on panic in all build profiles, instead of potentially unwinding + into C code. Fixes bug 27199; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug27316 b/changes/bug27316 deleted file mode 100644 index cec9348912..0000000000 --- a/changes/bug27316 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (protover): - - Reject protocol names containing bytes other than alphanumeric characters - and hyphens ([A-Za-z0-9-]). Fixes bug 27316; bugfix on 0.2.9.4-alpha. diff --git a/changes/bug27658 b/changes/bug27658 deleted file mode 100644 index 8cc0aa4714..0000000000 --- a/changes/bug27658 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (testing): - - If a unit test running in a subprocess exits abnormally or with a - nonzero status code, treat the test as having failed, even if - the test reported success. Without this fix, memory leaks don't cause - cause the tests to fail, even with LeakSanitizer. Fixes bug 27658; - bugfix on 0.2.2.4-alpha. diff --git a/changes/bug27709 b/changes/bug27709 deleted file mode 100644 index 49e87cbb0a..0000000000 --- a/changes/bug27709 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (code safety): - - Rewrite our assertion macros so that they no longer suppress - the compiler's -Wparentheses warnings on their inputs. Fixes bug 27709; - bugfix on 0.0.6. diff --git a/changes/bug27740 b/changes/bug27740 new file mode 100644 index 0000000000..76a17b7dda --- /dev/null +++ b/changes/bug27740 @@ -0,0 +1,4 @@ + o Minor bugfixes (rust): + - Return a string that can be safely freed by C code, not one created by + the rust allocator, in protover_all_supported(). Fixes bug 27740; bugfix + on 0.3.3.1-alpha. diff --git a/changes/bug27741 b/changes/bug27741 new file mode 100644 index 0000000000..531e264b63 --- /dev/null +++ b/changes/bug27741 @@ -0,0 +1,5 @@ + o Minor bugfixes (rust, directory authority): + - Fix an API mismatch in the rust implementation of + protover_compute_vote(). This bug could have caused crashes on any + directory authorities running Tor with Rust (which we do not yet + recommend). Fixes bug 27741; bugfix on 0.3.3.6. diff --git a/changes/bug27750 b/changes/bug27750 new file mode 100644 index 0000000000..c234788b1c --- /dev/null +++ b/changes/bug27750 @@ -0,0 +1,6 @@ + o Minor bugfixes (connection, relay): + - Avoid a wrong BUG() stacktrace in case a closing connection is being held + open because the write side is rate limited but not the read side. Now, + the connection read side is simply shutdown instead of kept open until tor + is able to flush the connection and then fully close it. Fixes bug 27750; + bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27800 b/changes/bug27800 new file mode 100644 index 0000000000..63d5dbc681 --- /dev/null +++ b/changes/bug27800 @@ -0,0 +1,4 @@ + o Minor bugfixes (directory authority): + - Log additional info when we get a relay that shares an ed25519 + ID with a different relay, instead making a BUG() warning. + Fixes bug 27800; bugfix on 0.3.2.1-alpha. diff --git a/changes/bug27804 b/changes/bug27804 new file mode 100644 index 0000000000..fa7fec0bc5 --- /dev/null +++ b/changes/bug27804 @@ -0,0 +1,3 @@ + o Minor bugfixes (rust): + - Fix a potential null dereference in protover_all_supported(). + Add a test for it. Fixes bug 27804; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug27841 b/changes/bug27841 new file mode 100644 index 0000000000..9cd1da7275 --- /dev/null +++ b/changes/bug27841 @@ -0,0 +1,7 @@ + o Minor bugfixes (onion services): + - On an intro point for a version 3 onion service, we do not close + an introduction circuit on an NACK. This lets the client decide + whether to reuse the circuit or discard it. Previously, we closed + intro circuits on NACKs. Fixes bug 27841; bugfix on 0.3.2.1-alpha. + Patch by Neel Chaunan + diff --git a/changes/bug27963_timeradd b/changes/bug27963_timeradd new file mode 100644 index 0000000000..34b361cf8d --- /dev/null +++ b/changes/bug27963_timeradd @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation, opensolaris): + - Add a missing include to compat_pthreads.c, to fix compilation + on OpenSolaris and its descendants. Fixes bug 27963; bugfix + on 0.3.5.1-alpha. diff --git a/changes/bug27968 b/changes/bug27968 new file mode 100644 index 0000000000..78c8eee33a --- /dev/null +++ b/changes/bug27968 @@ -0,0 +1,3 @@ + o Minor bugfixes (testing): + - Avoid hangs and race conditions in test_rebind.py. + Fixes bug 27968; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28115 b/changes/bug28115 new file mode 100644 index 0000000000..e3e29968eb --- /dev/null +++ b/changes/bug28115 @@ -0,0 +1,3 @@ + o Minor bugfixes (portability): + - Make the OPE code (which is used for v3 onion services) run correctly + on big-endian platforms. Fixes bug 28115; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28127 b/changes/bug28127 new file mode 100644 index 0000000000..541128c88e --- /dev/null +++ b/changes/bug28127 @@ -0,0 +1,7 @@ + o Minor bugfixes (onion services): + - Unless we have explicitly set HiddenServiceVersion, detect the onion + service version and then look for invalid options. Previously, we + did the reverse, but that broke existing configs which were pointed + to a v2 hidden service and had options like HiddenServiceAuthorizeClient + set Fixes bug 28127; bugfix on 0.3.5.1-alpha. Patch by Neel Chauhan. + diff --git a/changes/bug28183 b/changes/bug28183 new file mode 100644 index 0000000000..8d35dcdc01 --- /dev/null +++ b/changes/bug28183 @@ -0,0 +1,4 @@ + o Minor bugfixes (Linux seccomp2 sandbox): + - Permit the "shutdown()" system call, which is apparently + used by OpenSSL under some circumstances. Fixes bug 28183; + bugfix on 0.2.5.1-alpha. diff --git a/changes/bug28298 b/changes/bug28298 new file mode 100644 index 0000000000..8db340f3df --- /dev/null +++ b/changes/bug28298 @@ -0,0 +1,4 @@ + o Minor bugfixes (configuration): + - Resume refusing to start with relative file paths and RunAsDaemon + set (regression from the fix for bug 22731). Fixes bug 28298; + bugfix on 0.3.3.1-alpha. diff --git a/changes/bug28303 b/changes/bug28303 new file mode 100644 index 0000000000..80f1302e5e --- /dev/null +++ b/changes/bug28303 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Fix a pair of missing headers on OpenBSD. Fixes bug 28303; + bugfix on 0.3.5.1-alpha. Patch from Kris Katterjohn. diff --git a/changes/bug28348_034 b/changes/bug28348_034 new file mode 100644 index 0000000000..3913c03a4c --- /dev/null +++ b/changes/bug28348_034 @@ -0,0 +1,5 @@ + o Major bugfixes (embedding, main loop): + - When DisableNetwork becomes set, actually disable periodic events that + are already enabled. (Previously, we would refrain from enabling new + ones, but we would leave the old ones turned on.) + Fixes bug 28348; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug28399 b/changes/bug28399 new file mode 100644 index 0000000000..9096db70b0 --- /dev/null +++ b/changes/bug28399 @@ -0,0 +1,4 @@ + o Minor bugfixes (continuous integration, Windows): + - Stop using an external OpenSSL install, and stop installing MSYS2 + packages, when building using mingw on Appveyor Windows CI. + Fixes bug 28399; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug28419 b/changes/bug28419 new file mode 100644 index 0000000000..52ceb0a2a7 --- /dev/null +++ b/changes/bug28419 @@ -0,0 +1,3 @@ + o Minor bugfixes (memory leaks): + - Fix a harmless memory leak in libtorrunner.a. Fixes bug 28419; + bugfix on 0.3.3.1-alpha. Patch from Martin Kepplinger.
\ No newline at end of file diff --git a/changes/bug28435 b/changes/bug28435 new file mode 100644 index 0000000000..2a886cb8b7 --- /dev/null +++ b/changes/bug28435 @@ -0,0 +1,3 @@ + o Minor bugfixes (documentation): + - Make Doxygen work again after the 0.3.5 source tree moves. + Fixes bug 28435; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28441 b/changes/bug28441 new file mode 100644 index 0000000000..d259b9f742 --- /dev/null +++ b/changes/bug28441 @@ -0,0 +1,4 @@ + o Minor bugfixes (logging): + - Stop talking about the Named flag in log messages. Clients have + ignored the Named flag since 0.3.2. Fixes bug 28441; + bugfix on 0.3.2.1-alpha. diff --git a/changes/bug28454 b/changes/bug28454 new file mode 100644 index 0000000000..ca46ae2777 --- /dev/null +++ b/changes/bug28454 @@ -0,0 +1,4 @@ + o Minor bugfixes (continuous integration, Windows): + - Manually configure the zstd compiler options, when building using + mingw on Appveyor Windows CI. The MSYS2 mingw zstd package does not + come with a pkg-config file. Fixes bug 28454; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug28485 b/changes/bug28485 new file mode 100644 index 0000000000..a8309ae21f --- /dev/null +++ b/changes/bug28485 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Add missing dependency on libgdi32.dll for tor-print-ed-signing-cert.exe + on Windows. Fixes bug 28485; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28524 b/changes/bug28524 new file mode 100644 index 0000000000..1cad700422 --- /dev/null +++ b/changes/bug28524 @@ -0,0 +1,4 @@ + o Minor bugfixes (restart-in-process, boostrap): + - Add missing resets of bootstrap tracking state when shutting + down (regression caused by ticket 27169). Fixes bug 28524; + bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28554 b/changes/bug28554 new file mode 100644 index 0000000000..9a0b281406 --- /dev/null +++ b/changes/bug28554 @@ -0,0 +1,3 @@ + o Minor bugfixes (unit tests, guard selection): + - Stop leaking memory in an entry guard unit test. Fixes bug 28554; + bugfix on 0.3.0.1-alpha. diff --git a/changes/bug28562 b/changes/bug28562 new file mode 100644 index 0000000000..e14362164d --- /dev/null +++ b/changes/bug28562 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - Use a separate DataDirectory for the test_rebind script. + Previously, this script would run using the default DataDirectory, + and sometimes fail. Fixes bug 28562; bugfix on 0.3.5.1-alpha. + Patch from Taylor R Campbell. diff --git a/changes/bug28568 b/changes/bug28568 new file mode 100644 index 0000000000..919ec08903 --- /dev/null +++ b/changes/bug28568 @@ -0,0 +1,4 @@ + o Minor bugfixes (testing): + - Stop running stem's unit tests as part of "make test-stem". But continue + to run stem's unit and online tests during "make test-stem-full". + Fixes bug 28568; bugfix on 0.2.6.3-alpha. diff --git a/changes/bug28569 b/changes/bug28569 new file mode 100644 index 0000000000..45a57a80ae --- /dev/null +++ b/changes/bug28569 @@ -0,0 +1,3 @@ + o Minor bugfixes (unit tests, directory clients): + - Mark outdated dirservers when Tor only has a reasonably live consensus. + Fixes bug 28569; bugfix on 0.3.2.5-alpha. diff --git a/changes/bug28612 b/changes/bug28612 new file mode 100644 index 0000000000..559f254234 --- /dev/null +++ b/changes/bug28612 @@ -0,0 +1,4 @@ + o Minor bugfixes (windows services): + - Make Tor start correctly as an NT service again: previously it + was broken by refactoring. Fixes bug 28612; bugfix on 0.3.5.3-alpha. + diff --git a/changes/bug28619 b/changes/bug28619 new file mode 100644 index 0000000000..86be8cb2fb --- /dev/null +++ b/changes/bug28619 @@ -0,0 +1,6 @@ + o Minor bugfixes (hidden service v3): + - When deleting an ephemeral onion service (DEL_ONION), do not close any + rendezvous circuits in order to let the existing client connections + finish by themselves or closed by the application. The HS v2 is doing + that already so now we have the same behavior for all versions. Fixes + bug 28619; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug28656 b/changes/bug28656 new file mode 100644 index 0000000000..d3a13d196c --- /dev/null +++ b/changes/bug28656 @@ -0,0 +1,3 @@ + o Minor bugfixes (logging): + - Stop logging a BUG() warning when tor is waiting for exit descriptors. + Fixes bug 28656; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28698 b/changes/bug28698 new file mode 100644 index 0000000000..716aa0c552 --- /dev/null +++ b/changes/bug28698 @@ -0,0 +1,3 @@ + o Minor bugfix (logging): + - Avoid logging about relaxing circuits when their time is fixed. + Fixes bug 28698; bugfix on 0.2.4.7-alpha diff --git a/changes/bug28895 b/changes/bug28895 new file mode 100644 index 0000000000..25fb167b2e --- /dev/null +++ b/changes/bug28895 @@ -0,0 +1,5 @@ + o Minor bugfixes (usability): + - Stop saying "Your Guard ..." in pathbias_measure_{use,close}_rate() + as that confusingly suggests that mentioned guard node is under control + and responsibility of end user, which it is not. Fixes bug 28895; + bugfix on Tor 0.3.0.1-alpha. diff --git a/changes/bug28920 b/changes/bug28920 new file mode 100644 index 0000000000..e698686a6d --- /dev/null +++ b/changes/bug28920 @@ -0,0 +1,6 @@ + o Minor bugfixes (logging): + - Rework rep_hist_log_link_protocol_counts() to iterate through all link + protocol versions when logging incoming/outgoing connection counts. Tor + no longer skips version 5 and we don't have to remember to update this + function when new link protocol version is developed. Fixes bug 28920; + bugfix on 0.2.6.10. diff --git a/changes/bug28938 b/changes/bug28938 new file mode 100644 index 0000000000..de6c5f7b79 --- /dev/null +++ b/changes/bug28938 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - Fix missing headers required for proper detection of + OpenBSD. Fixes bug 28938; bugfix on 0.3.5.1-alpha. + Patch from Kris Katterjohn. diff --git a/changes/bug28974 b/changes/bug28974 new file mode 100644 index 0000000000..2d74f5674f --- /dev/null +++ b/changes/bug28974 @@ -0,0 +1,3 @@ + o Minor bugfixes (compilation): + - Fix compilation for Android by adding a missing header to + freespace.c. Fixes bug 28974; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug28979 b/changes/bug28979 new file mode 100644 index 0000000000..0625fd5d25 --- /dev/null +++ b/changes/bug28979 @@ -0,0 +1,4 @@ + o Minor bugfixes (documentation): + - Describe the contents of the v3 onion service client authorization + files correctly: They hold public keys, not private keys. Fixes bug + 28979; bugfix on 0.3.5.1-alpha. Spotted by "Felixix". diff --git a/changes/bug28981 b/changes/bug28981 new file mode 100644 index 0000000000..c0ea92ab35 --- /dev/null +++ b/changes/bug28981 @@ -0,0 +1,5 @@ + o Minor bugfixes (misc): + - The amount of total available physical memory is now determined + using the sysctl identifier HW_PHYSMEM (rather than HW_USERMEM) + when it is defined and a 64-bit variant is not available. Fixes + bug 28981; bugfix on 0.2.5.4-alpha. Patch from Kris Katterjohn. diff --git a/changes/bug28995 b/changes/bug28995 new file mode 100644 index 0000000000..f76b6a085a --- /dev/null +++ b/changes/bug28995 @@ -0,0 +1,5 @@ + o Minor bugfix (IPv6): + Fix tor_ersatz_socketpair on IPv6-only systems. Previously, + the IPv6 socket was bound using an address family of AF_INET + instead of AF_INET6. Fixes bug 28995; bugfix on 0.3.5.1-alpha. + Patch from Kris Katterjohn. diff --git a/changes/bug29017 b/changes/bug29017 new file mode 100644 index 0000000000..5c4a53c43f --- /dev/null +++ b/changes/bug29017 @@ -0,0 +1,4 @@ + o Minor bugfixes (stats): + - When ExtraInfoStatistics is 0, stop including PaddingStatistics in + relay and bridge extra-info documents. Fixes bug 29017; + bugfix on 0.3.1.1-alpha. diff --git a/changes/bug29040 b/changes/bug29040 new file mode 100644 index 0000000000..0662aaa8a5 --- /dev/null +++ b/changes/bug29040 @@ -0,0 +1,4 @@ + o Minor bugfixes (onion services): + - Avoid crashing if ClientOnionAuthDir (incorrectly) contains + more than one private key for a hidden service. Fixes bug 29040; + bugfix on 0.3.5.1-alpha. diff --git a/changes/bug29042 b/changes/bug29042 new file mode 100644 index 0000000000..8d76939cea --- /dev/null +++ b/changes/bug29042 @@ -0,0 +1,5 @@ + o Minor bugfixes (logging): + - Log more information at "warning" level when unable to read a private + key; log more information ad "info" level when unable to read a public + key. We had warnings here before, but they were lost during our + NSS work. Fixes bug 29042; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug29135 b/changes/bug29135 new file mode 100644 index 0000000000..fd7b1ae80e --- /dev/null +++ b/changes/bug29135 @@ -0,0 +1,5 @@ + o Minor bugfixes (onion services, logging): + - In hs_cache_store_as_client() log an HSDesc we failed to parse at Debug + loglevel. Tor used to log it at Warning loglevel, which caused + very long log lines to appear for some users. Fixes bug 29135; bugfix on + 0.3.2.1-alpha. diff --git a/changes/bug29144 b/changes/bug29144 new file mode 100644 index 0000000000..5801224f14 --- /dev/null +++ b/changes/bug29144 @@ -0,0 +1,5 @@ + o Minor bugfixes (logging): + - Log the correct port number for listening sockets when "auto" is + used to let Tor pick the port number. Previously, port 0 was + logged instead of the actual port number. Fixes bug 29144; + bugfix on 0.3.5.1-alpha. Patch from Kris Katterjohn. diff --git a/changes/bug29161 b/changes/bug29161 new file mode 100644 index 0000000000..39a638acf6 --- /dev/null +++ b/changes/bug29161 @@ -0,0 +1,3 @@ + o Minor bugfixes (tests): + - Detect and suppress "bug" warnings from the util/time test on Windows. + Fixes bug 29161; bugfix on 0.2.9.3-alpha. diff --git a/changes/bug29175_035 b/changes/bug29175_035 new file mode 100644 index 0000000000..134c1d9529 --- /dev/null +++ b/changes/bug29175_035 @@ -0,0 +1,4 @@ + o Major bugfixes (networking): + - Gracefully handle empty username/password fields in SOCKS5 + username/password auth messsage and allow SOCKS5 handshake to + continue. Fixes bug 29175; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug29244 b/changes/bug29244 new file mode 100644 index 0000000000..6206a95463 --- /dev/null +++ b/changes/bug29244 @@ -0,0 +1,4 @@ + o Minor bugfixes (build, compatibility): + - Update Cargo.lock file to match the version made by the latest + version of Rust, so that "make distcheck" will pass again. + Fixes bug 29244; bugfix on 0.3.3.4-alpha. diff --git a/changes/bug29530_035 b/changes/bug29530_035 new file mode 100644 index 0000000000..6dfcd51e7b --- /dev/null +++ b/changes/bug29530_035 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - Downgrade some LOG_ERR messages in the address/* tests to warnings. + The LOG_ERR messages were occurring when we had no configured network. + We were failing the unit tests, because we backported 28668 to 0.3.5.8, + but did not backport 29530. Fixes bug 29530; bugfix on 0.3.5.8. diff --git a/changes/bug29601 b/changes/bug29601 new file mode 100644 index 0000000000..c4ba5fbc8b --- /dev/null +++ b/changes/bug29601 @@ -0,0 +1,6 @@ + o Minor bugfixes (Windows, CI): + - Skip the Appveyor 32-bit Windows Server 2016 job, and 64-bit Windows + Server 2012 R2 job. The remaining 2 jobs still provide coverage of + 64/32-bit, and Windows Server 2016/2012 R2. Also set fast_finish, so + failed jobs terminate the build immediately. + Fixes bug 29601; bugfix on 0.3.5.4-alpha. diff --git a/changes/bug29922 b/changes/bug29922 new file mode 100644 index 0000000000..dacb951097 --- /dev/null +++ b/changes/bug29922 @@ -0,0 +1,4 @@ + o Minor bugfixes (testing, windows): + - Fix a test failure caused by an unexpected bug warning in + our test for tor_gmtime_r(-1). Fixes bug 29922; + bugfix on 0.2.9.3-alpha. diff --git a/changes/bug30011 b/changes/bug30011 new file mode 100644 index 0000000000..4c9069e291 --- /dev/null +++ b/changes/bug30011 @@ -0,0 +1,4 @@ + o Minor bugfixes (CI): + - Terminate test-stem if it takes more than 9.5 minutes to run. + (Travis terminates the job after 10 minutes of no output.) + Diagnostic for 29437. Fixes bug 30011; bugfix on 0.3.5.4-alpha. diff --git a/changes/bug30475 b/changes/bug30475 new file mode 100644 index 0000000000..839597b885 --- /dev/null +++ b/changes/bug30475 @@ -0,0 +1,4 @@ + o Minor bugfixes (): + - Avoid a GCC 9.1.1 warning (and possible crash depending on libc + implemenation) when failing to load a hidden service client authorization + file. Fixes bug 30475; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug30713 b/changes/bug30713 new file mode 100644 index 0000000000..e00b98da65 --- /dev/null +++ b/changes/bug30713 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - Skip test_rebind when the TOR_SKIP_TEST_REBIND environmental variable is + set. Fixes bug 30713; bugfix on 0.3.5.1-alpha. + - Skip test_rebind on macOS in Travis, because it is unreliable on + macOS on Travis. Fixes bug 30713; bugfix on 0.3.5.1-alpha. diff --git a/changes/bug30744 b/changes/bug30744 new file mode 100644 index 0000000000..9f07d4855f --- /dev/null +++ b/changes/bug30744 @@ -0,0 +1,3 @@ + o Minor bugfixes (continuous integration): + - Allow the test-stem job to fail in Travis, because it sometimes hangs. + Fixes bug 30744; bugfix on 0.3.5.4-alpha. diff --git a/changes/geoip-2018-09-06 b/changes/geoip-2018-09-06 deleted file mode 100644 index 851ec46e25..0000000000 --- a/changes/geoip-2018-09-06 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the September 6 2018 Maxmind GeoLite2 - Country database. Closes ticket 27631. - diff --git a/changes/geoip-2018-10-09 b/changes/geoip-2018-10-09 deleted file mode 100644 index 9b8e621852..0000000000 --- a/changes/geoip-2018-10-09 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the October 9 2018 Maxmind GeoLite2 - Country database. Closes ticket 27991. - diff --git a/changes/rust_asan b/changes/rust_asan new file mode 100644 index 0000000000..1ca7ae6888 --- /dev/null +++ b/changes/rust_asan @@ -0,0 +1,8 @@ + o Major bugfixes (compilation, rust): + - Rust tests can now build and run successfully with the + --enable-fragile-hardening option enabled. + Doing this currently requires the rust beta channel; it will + be possible with stable rust as of rust version 1.31 is out. + Patch from Alex Crichton. + Fixes bugs 27272, 27273, and 27274. + Bugfix on 0.3.1.1-alpha. diff --git a/changes/ticket19566 b/changes/ticket19566 new file mode 100644 index 0000000000..bf7071e660 --- /dev/null +++ b/changes/ticket19566 @@ -0,0 +1,6 @@ + o Code simplification and refactoring (shared random, dirauth): + - Change many tor_assert() to use BUG() instead. The idea is to not crash + a dirauth but rather scream loudly with a stacktrace and let it continue + run. The shared random subsystem is very resilient and if anything wrong + happens with it, at worst a non coherent value will be put in the vote + and discarded by the other authorities. Closes ticket 19566. diff --git a/changes/ticket27252 b/changes/ticket27252 deleted file mode 100644 index 410ddef8c0..0000000000 --- a/changes/ticket27252 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (continuous integration): - - Skip gcc on OSX in Travis CI, it's rarely used. - Skip a duplicate hardening-off build in Travis on Tor 0.2.9. - Skip gcc on Linux with default settings, because all the non-default - builds use gcc on Linux. - Implements ticket 27252. diff --git a/changes/ticket27471 b/changes/ticket27471 new file mode 100644 index 0000000000..ffe77d268e --- /dev/null +++ b/changes/ticket27471 @@ -0,0 +1,5 @@ + o Minor bugfixes (hidden service v3, client): + - When replacing a descriptor in the client cache with a newer descriptor, + make sure to close all client introduction circuits of the old + descriptor so we don't end up with unusable leftover circuits. Fixes bug + 27471; bugfix on 0.3.2.1-alpha. diff --git a/changes/ticket27738 b/changes/ticket27738 deleted file mode 100644 index f23bfb019e..0000000000 --- a/changes/ticket27738 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (continuous integration): - - Use the Travis Homebrew addon to install packages on macOS. The package - list is the same, but the Homebrew addon does not do a `brew update` by - default. Implements ticket 27738. diff --git a/changes/ticket27751 b/changes/ticket27751 new file mode 100644 index 0000000000..593c473b61 --- /dev/null +++ b/changes/ticket27751 @@ -0,0 +1,2 @@ + o Minor features (continuous integration): + - Add a Travis CI build for --enable-nss on Linux gcc. Closes ticket 27751. diff --git a/changes/ticket27838 b/changes/ticket27838 new file mode 100644 index 0000000000..1699730d7a --- /dev/null +++ b/changes/ticket27838 @@ -0,0 +1,4 @@ + o Minor bugfixes (hidden service v3): + - Build the service descriptor signing key certificate before uploading so + we always have a fresh one leaving no chances for it to expire service + side. Fixes bug 27838; bugfix on 0.3.2.1-alpha. diff --git a/changes/ticket27913 b/changes/ticket27913 new file mode 100644 index 0000000000..81ce725932 --- /dev/null +++ b/changes/ticket27913 @@ -0,0 +1,3 @@ + o Testing: + - Add new CI job to Travis configuration that runs stem-based + integration tests. Closes ticket 27913. diff --git a/changes/ticket27995 b/changes/ticket27995 new file mode 100644 index 0000000000..8c75425749 --- /dev/null +++ b/changes/ticket27995 @@ -0,0 +1,4 @@ + o Minor bugfixes (hidden service v3, client authorization): + - Fix an assert() when adding a client authorization for the first time + and then sending a HUP signal to the service. Before that, tor would + stop abruptly. Fixes bug 27995; bugfix on 0.3.5.1-alpha. diff --git a/changes/ticket28026 b/changes/ticket28026 new file mode 100644 index 0000000000..a6911c2cab --- /dev/null +++ b/changes/ticket28026 @@ -0,0 +1,3 @@ + o Documentation (hidden service manpage): + - Improve HSv3 client authorization by making some options more explicit + and detailed. Closes ticket 28026. Patch by "mtigas". diff --git a/changes/ticket28113 b/changes/ticket28113 new file mode 100644 index 0000000000..30dd825a9b --- /dev/null +++ b/changes/ticket28113 @@ -0,0 +1,5 @@ + o Minor bugfixes (relay shutdown, systemd): + - Notify systemd of ShutdownWaitLength so it can be set to longer than + systemd's TimeoutStopSec. In tor's systemd service file, set + TimeoutSec to 60 seconds, to allow tor some time to shut down. + Fixes bug 28113; bugfix on 0.2.6.2-alpha. diff --git a/changes/ticket28128 b/changes/ticket28128 new file mode 100644 index 0000000000..6d08c74242 --- /dev/null +++ b/changes/ticket28128 @@ -0,0 +1,4 @@ + o Documentation (hidden service manpage, sandbox): + - Document in the man page that changing ClientOnionAuthDir value or + adding a new file in the directory will not work at runtime upon sending + a HUP if Sandbox 1. Closes ticket 28128. diff --git a/changes/ticket28229_diag b/changes/ticket28229_diag new file mode 100644 index 0000000000..cd02b81faa --- /dev/null +++ b/changes/ticket28229_diag @@ -0,0 +1,3 @@ + o Testing: + - Increase logging and tag all log entries with timestamps + in test_rebind.py. Provides diagnostics for issue 28229. diff --git a/changes/ticket28275 b/changes/ticket28275 new file mode 100644 index 0000000000..eadca86b7b --- /dev/null +++ b/changes/ticket28275 @@ -0,0 +1,4 @@ + o Documentation (hidden service v3, man page): + - Note in the man page that the only real way to fully revoke an onion + service v3 client authorization is by restarting the tor process. Closes + ticket 28275. diff --git a/changes/ticket28318 b/changes/ticket28318 new file mode 100644 index 0000000000..24dc1e9580 --- /dev/null +++ b/changes/ticket28318 @@ -0,0 +1,3 @@ + o Minor features (Windows, continuous integration): + - Build tor on Windows Server 2012 R2 and Windows Server 2016 using + Appveyor's CI. Closes ticket 28318. diff --git a/changes/ticket28459 b/changes/ticket28459 new file mode 100644 index 0000000000..6b5839b52b --- /dev/null +++ b/changes/ticket28459 @@ -0,0 +1,4 @@ + o Minor features (continuous integration, Windows): + - Always show the configure and test logs, and upload them as build + artifacts, when building for Windows using Appveyor CI. + Implements 28459. diff --git a/changes/ticket28574 b/changes/ticket28574 new file mode 100644 index 0000000000..562810f511 --- /dev/null +++ b/changes/ticket28574 @@ -0,0 +1,4 @@ + o Minor bugfixes (continuous integration, Windows): + - Explicitly specify the path to the OpenSSL library and do not download + OpenSSL from Pacman, but instead use the library that is already provided + by AppVeyor. Fixes bug 28574; bugfix on master. diff --git a/changes/ticket28668 b/changes/ticket28668 new file mode 100644 index 0000000000..6386e0051f --- /dev/null +++ b/changes/ticket28668 @@ -0,0 +1,3 @@ + o Minor features (testing): + - Treat all unexpected ERR and BUG messages as test failures. + Closes ticket 28668. diff --git a/changes/ticket28669 b/changes/ticket28669 new file mode 100644 index 0000000000..32c6114ffc --- /dev/null +++ b/changes/ticket28669 @@ -0,0 +1,6 @@ + o Minor bugfix (hidden service v3, client): + - Avoid a BUG() stacktrace in case a SOCKS connection is found waiting for + the descriptor while we do have it in the cache. There is a rare case + when this can happen. Now, tor will recover and retry the descriptor. + Fixes bug 28669; bugfix on 0.3.2.4-alpha. + diff --git a/changes/ticket28838 b/changes/ticket28838 new file mode 100644 index 0000000000..6c290bf82b --- /dev/null +++ b/changes/ticket28838 @@ -0,0 +1,8 @@ + o Minor features (performance): + - Remove about 96% of the work from the function that we run at + startup to test our curve25519_basepoint implementation. Since + this function has yet to find an actual failure, we'll only + run it for 8 iterations instead of 200. Based on our profile + information, this change should save around 8% of our startup + time on typical desktops, and may have a similar effect on + other platforms. Closes ticket 28838. diff --git a/changes/ticket28851 b/changes/ticket28851 new file mode 100644 index 0000000000..bab0318662 --- /dev/null +++ b/changes/ticket28851 @@ -0,0 +1,4 @@ + o Minor features (performance): + - Stop re-validating our hardcoded Diffie-Hellman parameters on every + startup. Doing this wasted time and cycles, especially on low-powered + devices. Closes ticket 28851. diff --git a/changes/ticket28879 b/changes/ticket28879 new file mode 100644 index 0000000000..126420f6ca --- /dev/null +++ b/changes/ticket28879 @@ -0,0 +1,5 @@ + o Minor bugfixes (correctness): + - Fix an unreached code-path where we checked the value of "hostname" + inside send_resolved_hostnam_cell(). Previously, we used it before + checking it; now we check it first. Fixes bug 28879; bugfix on + 0.1.2.7-alpha. diff --git a/changes/ticket28881 b/changes/ticket28881 new file mode 100644 index 0000000000..1b015a6c37 --- /dev/null +++ b/changes/ticket28881 @@ -0,0 +1,4 @@ + o Code simplification and refactoring: + - When parsing a port configuration, make it more + obvious to static analyzer tools that we will always initialize the + address. Closes ticket 28881. diff --git a/changes/ticket28883 b/changes/ticket28883 new file mode 100644 index 0000000000..1d8b6cb416 --- /dev/null +++ b/changes/ticket28883 @@ -0,0 +1,4 @@ + o Minor bugfixes (testing): + - Make sure that test_rebind.py actually obeys its timeout, even + when it receives a large number of log messages. Fixes bug 28883; + bugfix on 0.3.5.4-alpha. diff --git a/changes/ticket28912 b/changes/ticket28912 new file mode 100644 index 0000000000..4119b778bc --- /dev/null +++ b/changes/ticket28912 @@ -0,0 +1,6 @@ + o Major bugfixes (relay, directory): + - A connection serving directory information wouldn't get reactivated after + the first chunk of data was sent (usually 32KB). Tor now always activate + the main loop event that goes through these connections as long as at + least one connection is still active. Fixes bug 28912; bugfix on + 0.3.4.1-alpha. Patch by "cypherpunks3". diff --git a/changes/ticket28924 b/changes/ticket28924 new file mode 100644 index 0000000000..055a6cf285 --- /dev/null +++ b/changes/ticket28924 @@ -0,0 +1,4 @@ + o Minor features (compilation): + - When possible, place our warning flags in a separate file, to avoid + flooding verbose build logs to an unacceptable amount. Closes ticket + 28924. diff --git a/changes/ticket28973 b/changes/ticket28973 new file mode 100644 index 0000000000..b1d208ee51 --- /dev/null +++ b/changes/ticket28973 @@ -0,0 +1,6 @@ + o Minor features (OpenSSL bug workaround): + - Work around a bug in OpenSSL 1.1.1a, which prevented the TLS 1.3 + key export function from handling long labels. When this bug + is detected, Tor will disable TLS 1.3. We recommend upgrading to + a version of OpenSSL without this bug when it becomes available. + Closes ticket 28973. diff --git a/changes/ticket29026 b/changes/ticket29026 new file mode 100644 index 0000000000..1db873dfcf --- /dev/null +++ b/changes/ticket29026 @@ -0,0 +1,4 @@ + o Minor features (compilation): + - Compile correctly when OpenSSL is built with engine support + disabled, or with deprecated APIs disabled. Closes ticket + 29026. Patches from "Mangix". diff --git a/changes/ticket29160 b/changes/ticket29160 new file mode 100644 index 0000000000..8e11183064 --- /dev/null +++ b/changes/ticket29160 @@ -0,0 +1,4 @@ + o Minor bugfixes (tests): + - Do not log an error-level message if we fail to find an IPv6 + network interface from the unit tests. Fixes bug 29160; bugfix on + 0.2.7.3-rc. diff --git a/changes/ticket29168 b/changes/ticket29168 new file mode 100644 index 0000000000..65c5232f65 --- /dev/null +++ b/changes/ticket29168 @@ -0,0 +1,5 @@ + o Major bugfixes (cell scheduler, KIST): + - Make KIST to always take into account the outbuf length when computing + what we can actually put in the outbuf. This could lead to the outbuf + being filled up and thus a possible memory DoS vector. TROVE-2019-001. + Fixes bug 29168; bugfix on 0.3.2.1-alpha. diff --git a/changes/ticket29435 b/changes/ticket29435 new file mode 100644 index 0000000000..d48ae98e4b --- /dev/null +++ b/changes/ticket29435 @@ -0,0 +1,3 @@ + o Minor bugfixes (testing): + - Fix our gcov wrapper script to look for object files at the + correct locations. Fixes bug 29435; bugfix on 0.3.5.1-alpha. diff --git a/changes/ticket29702 b/changes/ticket29702 new file mode 100644 index 0000000000..e1cc1f867b --- /dev/null +++ b/changes/ticket29702 @@ -0,0 +1,4 @@ + o Testing: + - Specify torrc paths (with empty files) when launching tor in + integration tests; refrain from reading user and system torrcs. + Resolves issue 29702. diff --git a/changes/ticket29806 b/changes/ticket29806 new file mode 100644 index 0000000000..6afefd4c04 --- /dev/null +++ b/changes/ticket29806 @@ -0,0 +1,7 @@ + o Minor features (bandwidth authority): + - Make bandwidth authorities to ignore relays that are reported in the + bandwidth file with the key-value "vote=0". + This change allows to report the relays that were not measured due + some failure and diagnose the reasons without the bandwidth being included in the + bandwidth authorities vote. + Closes ticket 29806. diff --git a/changes/ticket29962 b/changes/ticket29962 new file mode 100644 index 0000000000..e36cc0cf9a --- /dev/null +++ b/changes/ticket29962 @@ -0,0 +1,3 @@ + o Minor features (continuous integration): + - On Travis Rust builds, cleanup Rust registry and refrain from caching + target/ directory to speed up builds. Resolves issue 29962. diff --git a/changes/ticket30117 b/changes/ticket30117 new file mode 100644 index 0000000000..5b6e6dabf7 --- /dev/null +++ b/changes/ticket30117 @@ -0,0 +1,4 @@ + o Testing (continuous integration): + - In Travis, tell timelimit to use stem's backtrace signals. And launch + python directly from timelimit, so python receives the signals from + timelimit, rather than make. Closes ticket 30117. diff --git a/changes/ticket30234 b/changes/ticket30234 new file mode 100644 index 0000000000..5a0076bad2 --- /dev/null +++ b/changes/ticket30234 @@ -0,0 +1,2 @@ + o Testing (continuous integration): + - In Travis, show stem's tor log after failure. Closes ticket 30234. diff --git a/changes/ticket30591 b/changes/ticket30591 new file mode 100644 index 0000000000..f97c024009 --- /dev/null +++ b/changes/ticket30591 @@ -0,0 +1,3 @@ + o Testing (continuous integration): + - In Travis, make stem log a controller trace to the console. And tail + stem's tor log after failure. Closes ticket 30591. diff --git a/changes/ticket30694 b/changes/ticket30694 new file mode 100644 index 0000000000..70dbf6481a --- /dev/null +++ b/changes/ticket30694 @@ -0,0 +1,3 @@ + o Testing (continuous integration): + - In Travis, only run the stem tests that use a tor binary. + Closes ticket 30694. |