summaryrefslogtreecommitdiff
path: root/changes
diff options
context:
space:
mode:
Diffstat (limited to 'changes')
-rw-r--r--changes/155423
-rw-r--r--changes/bug114475
-rw-r--r--changes/bug137365
-rw-r--r--changes/bug137963
-rw-r--r--changes/bug139934
-rw-r--r--changes/bug140184
-rw-r--r--changes/bug141845
-rw-r--r--changes/bug143915
-rw-r--r--changes/bug147644
-rw-r--r--changes/bug148063
-rw-r--r--changes/bug149223
-rw-r--r--changes/bug14987b-doc4
-rw-r--r--changes/bug149948
-rw-r--r--changes/bug150534
-rw-r--r--changes/bug152116
-rw-r--r--changes/bug152697
-rw-r--r--changes/bug152963
-rw-r--r--changes/bug155154
-rw-r--r--changes/bug155415
-rw-r--r--changes/bug155914
-rw-r--r--changes/bug156005
-rw-r--r--changes/bug156014
-rw-r--r--changes/bug156047
-rw-r--r--changes/coverage6
-rw-r--r--changes/doc155504
-rw-r--r--changes/feature150265
-rw-r--r--changes/feature151803
-rw-r--r--changes/feature154355
-rw-r--r--changes/feature154715
-rw-r--r--changes/no_digests5
-rw-r--r--changes/remove_old_version_checks5
-rw-r--r--changes/test-memwipe3
-rw-r--r--changes/ticket1471010
-rw-r--r--changes/ticket150244
-rw-r--r--changes/ticket154316
-rw-r--r--changes/ticket155423
36 files changed, 153 insertions, 16 deletions
diff --git a/changes/15542 b/changes/15542
new file mode 100644
index 0000000000..bf289c9563
--- /dev/null
+++ b/changes/15542
@@ -0,0 +1,3 @@
+ o Minor features:
+ - The "--hash-password" option now implies "--hush" to avoid needless
+ noise. Closes ticket 15542. Patch from "cypherpunks".
diff --git a/changes/bug11447 b/changes/bug11447
new file mode 100644
index 0000000000..8cd4f5b467
--- /dev/null
+++ b/changes/bug11447
@@ -0,0 +1,5 @@
+ o Minor features (DoS-resistance):
+ - Decrease the amount of reattempts that a hidden service is
+ willing to perform when its rendezvous circuits fail. This
+ reduces the computational cost for hidden service under heavy
+ load. Resolves ticket #11447. \ No newline at end of file
diff --git a/changes/bug13736 b/changes/bug13736
new file mode 100644
index 0000000000..686d2f1fa2
--- /dev/null
+++ b/changes/bug13736
@@ -0,0 +1,5 @@
+ o Removed features:
+ - Remove the (seldom-used) DynamicDHGroups feature. For
+ anti-fingerprinting we now recommend pluggable transports; for
+ forward-secrecy in TLS, we now use the P-256 group.
+ Closes ticket 13736.
diff --git a/changes/bug13796 b/changes/bug13796
deleted file mode 100644
index 5c84f99917..0000000000
--- a/changes/bug13796
+++ /dev/null
@@ -1,3 +0,0 @@
- o Minor bugfixes:
- - Use getsockname, not getsockopt, to retrieve the address for
- a TPROXY-redirected connection. Fixes bug 13796; bugfix on 0.2.5.2-alpha.
diff --git a/changes/bug13993 b/changes/bug13993
deleted file mode 100644
index bf99559822..0000000000
--- a/changes/bug13993
+++ /dev/null
@@ -1,4 +0,0 @@
- o Minor bugfixes (logging):
- - Don't log messages to stdout twice when starting up. Fixes bug
- 13993; bugfix on 0.2.6.1-alpha.
-
diff --git a/changes/bug14018 b/changes/bug14018
new file mode 100644
index 0000000000..165e0427f5
--- /dev/null
+++ b/changes/bug14018
@@ -0,0 +1,4 @@
+ o Minor features:
+ - Complain (i.e. print a warning) whenever we find a relative
+ file path being used as torrc option. Resolves issue 14018.
+
diff --git a/changes/bug14184 b/changes/bug14184
deleted file mode 100644
index ed3d760bf2..0000000000
--- a/changes/bug14184
+++ /dev/null
@@ -1,5 +0,0 @@
- o Minor bugfixes:
- - On the control port, the "entry-guards" command was reporting an "up"
- status for a relay that was actually down. This fix check if
- "unreachable_since" is set and if so reports the "down" status. Fixes
- bug 14184.
diff --git a/changes/bug14391 b/changes/bug14391
new file mode 100644
index 0000000000..590737218c
--- /dev/null
+++ b/changes/bug14391
@@ -0,0 +1,5 @@
+
+ o Code simplification and refactoring:
+ - Refactor hidden service client-side cache lookup to intelligently
+ report its various failure cases, and disentangle failure cases
+ involving a lack of introduction points. Closes ticket 14391.
diff --git a/changes/bug14764 b/changes/bug14764
deleted file mode 100644
index b05ff69f7c..0000000000
--- a/changes/bug14764
+++ /dev/null
@@ -1,4 +0,0 @@
- o Minor bugfixes (portability):
- - Fix scheduler compilation on targets where char is unsigned.
- Fixes bug 14764; bugfix on 0.2.6.2-alpha. Reported by Christian
- Kujau.
diff --git a/changes/bug14806 b/changes/bug14806
new file mode 100644
index 0000000000..dd85e785ce
--- /dev/null
+++ b/changes/bug14806
@@ -0,0 +1,3 @@
+ o Minor bugfixes (testing):
+ - Commandline argument tests moved to Stem. Fixes bug 14806.
+
diff --git a/changes/bug14922 b/changes/bug14922
new file mode 100644
index 0000000000..65396e4d8f
--- /dev/null
+++ b/changes/bug14922
@@ -0,0 +1,3 @@
+ o Removed code:
+ - Remove the 'tor_strclear()' function; use memwipe() instead.
+ Closes ticket 14922. \ No newline at end of file
diff --git a/changes/bug14987b-doc b/changes/bug14987b-doc
new file mode 100644
index 0000000000..b8b239292e
--- /dev/null
+++ b/changes/bug14987b-doc
@@ -0,0 +1,4 @@
+ o Documentation:
+ - Standardize on the term "server descriptor" in the manual page.
+ Previously, we had used "router descriptor", "server descriptor",
+ and "relay descriptor" interchangeably. Part of ticket 14987.
diff --git a/changes/bug14994 b/changes/bug14994
new file mode 100644
index 0000000000..aafeac4b2a
--- /dev/null
+++ b/changes/bug14994
@@ -0,0 +1,8 @@
+ o Minor bugfixes (command-line interface):
+ - When "--quiet" is provided along with "--validate-config", do not
+ write anything to stdout on success. Fixes bug 14994; bugfix on
+ 0.2.3.3-alpha.
+ - When complaining about bad arguments to "--dump-config", use
+ stderr, not stdout.
+
+
diff --git a/changes/bug15053 b/changes/bug15053
new file mode 100644
index 0000000000..5dde9d7a97
--- /dev/null
+++ b/changes/bug15053
@@ -0,0 +1,4 @@
+ o Minor bugfixes (build):
+ - Improve out-of-tree builds by making non-standard rules work and clean up
+ additional files and directories. Fixes bug 15053; bugfix on
+ 0.2.7.0-alpha.
diff --git a/changes/bug15211 b/changes/bug15211
new file mode 100644
index 0000000000..24c189dbfd
--- /dev/null
+++ b/changes/bug15211
@@ -0,0 +1,6 @@
+ o Minor bugfixes:
+ - Remove side-effects from tor_assert() calls. This was harmless,
+ because we never disable assertions, but it is bad style and
+ unnecessary. Fixes bug 15211; bugfix on 0.2.5.5, 0.2.2.36, and
+ 0.2.0.10.
+
diff --git a/changes/bug15269 b/changes/bug15269
new file mode 100644
index 0000000000..e6b2b24221
--- /dev/null
+++ b/changes/bug15269
@@ -0,0 +1,7 @@
+ o Minor bugfixes (logs):
+ - When building Tor under Clang, do not include an extra set of
+ parentheses in log messages that include function names.
+ Fixes bug 15053; bugfix on every released version of Tor when
+ compiled with recent enough Clang.
+
+
diff --git a/changes/bug15296 b/changes/bug15296
new file mode 100644
index 0000000000..5230a419c1
--- /dev/null
+++ b/changes/bug15296
@@ -0,0 +1,3 @@
+ o Minor bugfixes (hidden service):
+ - Remove an extraneous newline character from the end of hidden
+ service descriptors. Fixes bug 15296; bugfix on 0.2.0.10-alpha.
diff --git a/changes/bug15515 b/changes/bug15515
new file mode 100644
index 0000000000..dda7c2fcd8
--- /dev/null
+++ b/changes/bug15515
@@ -0,0 +1,4 @@
+ o Minor features (DoS-resistance):
+ - Make it harder for attackers to overwhelm hidden services with
+ introductions, by blocking multiple introduction requests on the
+ same circuit. Resolves ticket #15515.
diff --git a/changes/bug15541 b/changes/bug15541
new file mode 100644
index 0000000000..f73ce5f4d4
--- /dev/null
+++ b/changes/bug15541
@@ -0,0 +1,5 @@
+ o Minor bugfixes (interface):
+ - Print usage information for --dump-config when it is used without
+ an argument. Also, fix the error message to use different wording
+ and add newline at the end. Fixes bug 15541; bugfix on 0.2.5.1-alpha.
+
diff --git a/changes/bug15591 b/changes/bug15591
new file mode 100644
index 0000000000..1398a027d7
--- /dev/null
+++ b/changes/bug15591
@@ -0,0 +1,4 @@
+ o Testing:
+ - Check for matching value in server response in ntor_ref.py.
+ Fixes bug 15591; bugfix on 0.2.4.8-alpha. Reported and fixed
+ by "joelanders".
diff --git a/changes/bug15600 b/changes/bug15600
new file mode 100644
index 0000000000..ee1d6cfe19
--- /dev/null
+++ b/changes/bug15600
@@ -0,0 +1,5 @@
+ o Major bugfixes (security, hidden service):
+ - Fix an issue that would allow a malicious client to trigger
+ an assertion failure and halt a hidden service. Fixes
+ bug 15600; bugfix on 0.2.1.6-alpha. Reported by "skruffy".
+
diff --git a/changes/bug15601 b/changes/bug15601
new file mode 100644
index 0000000000..2cc880af7f
--- /dev/null
+++ b/changes/bug15601
@@ -0,0 +1,4 @@
+ o Major bugfixes (security, hidden service):
+ - Fix a bug that could cause a client to crash with an assertion
+ failure when parsing a malformed hidden service descriptor.
+ Fixes bug 15601; bugfix on 0.2.1.5-alpha. Found by "DonnCha".
diff --git a/changes/bug15604 b/changes/bug15604
new file mode 100644
index 0000000000..de293800f1
--- /dev/null
+++ b/changes/bug15604
@@ -0,0 +1,7 @@
+ o Minor bugfixes
+ - Disregard the ConnDirectionStatistics torrc options when Tor is
+ not a relay since in that mode of operation no sensible data is
+ being collected and because Tor might run into measurement hiccups
+ when running as a client for some time, then becoming a relay. Fixes
+ bug 15604; bugfix on 0.2.2.35.
+
diff --git a/changes/coverage b/changes/coverage
new file mode 100644
index 0000000000..bb7c7cf97a
--- /dev/null
+++ b/changes/coverage
@@ -0,0 +1,6 @@
+ o Minor features:
+ - Remove assertions during builds to determine Tor's test coverage.
+ We don't want to trigger these even in assertions, so including
+ them artificially makes our branch coverage look worse than it is.
+ This patch provides the new test-stem-full and coverage-html-full
+ configure options. Implements ticket 15400.
diff --git a/changes/doc15550 b/changes/doc15550
new file mode 100644
index 0000000000..f953bbf6c7
--- /dev/null
+++ b/changes/doc15550
@@ -0,0 +1,4 @@
+ o Documentation:
+ - Improve the descriptions of statistics-related torrc options in
+ the manpage to describe rationale and possible uses cases. Fixes
+ issue 15550.
diff --git a/changes/feature15026 b/changes/feature15026
new file mode 100644
index 0000000000..c732b41e5d
--- /dev/null
+++ b/changes/feature15026
@@ -0,0 +1,5 @@
+ o Minor features (logging):
+ - Include the Tor version in all LD_BUG log messages, since people
+ tend to cut and paste those into the bugtracker. Implements
+ ticket 15026.
+
diff --git a/changes/feature15180 b/changes/feature15180
new file mode 100644
index 0000000000..f73ab965e5
--- /dev/null
+++ b/changes/feature15180
@@ -0,0 +1,3 @@
+ o Minor features (testing):
+ - Add make rule `check-changes` to verify the format of changes files.
+ Closes ticket 15180.
diff --git a/changes/feature15435 b/changes/feature15435
new file mode 100644
index 0000000000..afe36032c3
--- /dev/null
+++ b/changes/feature15435
@@ -0,0 +1,5 @@
+ o Minor features (pluggable Transports):
+ - When launching managed pluggable transports, setup a valid open stdin
+ in the child process that can be used to detect if tor has terminated.
+ The "TOR_PT_EXIT_ON_STDIN_CLOSE" enviornment variable can be used by
+ implementations to detect this new behavior. Resolves ticket 15435.
diff --git a/changes/feature15471 b/changes/feature15471
new file mode 100644
index 0000000000..594adf0f54
--- /dev/null
+++ b/changes/feature15471
@@ -0,0 +1,5 @@
+ o Minor features (pluggable transports):
+ - When launching managed pluggable transports on linux systems,
+ attempt to have the kernel deliver a SIGTERM on tor exit if
+ the pluggable transport process is still running. Resolves
+ ticket 15471.
diff --git a/changes/no_digests b/changes/no_digests
new file mode 100644
index 0000000000..1327ac3e77
--- /dev/null
+++ b/changes/no_digests
@@ -0,0 +1,5 @@
+ o Removed features:
+ - Remove the undocumented "--digests" command-line option. It
+ complicated our build process, caused subtle build issues
+ on multiple platforms, and is now redundant since we started
+ including git version identifiers. Closes ticket 14742.
diff --git a/changes/remove_old_version_checks b/changes/remove_old_version_checks
new file mode 100644
index 0000000000..fe4dab9e19
--- /dev/null
+++ b/changes/remove_old_version_checks
@@ -0,0 +1,5 @@
+ o Removed features:
+ - Tor no longer contains workarounds for stat files generated by
+ super-old versions of Tor that didn't choose guards sensibly.
+ - Tor no longer contains checks for ancient directory cache versions
+ that didn't know about microdescriptors.
diff --git a/changes/test-memwipe b/changes/test-memwipe
new file mode 100644
index 0000000000..04a21f75f1
--- /dev/null
+++ b/changes/test-memwipe
@@ -0,0 +1,3 @@
+ o Testing:
+ - Add a test to verify that the compiler does not eliminate our
+ memwipe() implementation. Closes ticket 15377.
diff --git a/changes/ticket14710 b/changes/ticket14710
new file mode 100644
index 0000000000..2b6cb2060f
--- /dev/null
+++ b/changes/ticket14710
@@ -0,0 +1,10 @@
+ o Code simplification and refactoring:
+ - Move the hacky fallback code out of get_interface_address6()
+ into separate function and get it covered with unit-tests. Resolves
+ ticket 14710.
+
+ o Minor bugfixes:
+ - When attempting to use fallback technique for network interface
+ lookup, disregard loopback and multicast addresses since they are
+ unsuitable for public communications.
+
diff --git a/changes/ticket15024 b/changes/ticket15024
new file mode 100644
index 0000000000..908177142e
--- /dev/null
+++ b/changes/ticket15024
@@ -0,0 +1,4 @@
+ o Documentation:
+ - Improve the layout and formatting of ./configure --help messages.
+ Closes ticket 15024. Patch from "cypherpunks".
+
diff --git a/changes/ticket15431 b/changes/ticket15431
new file mode 100644
index 0000000000..ea6821afdf
--- /dev/null
+++ b/changes/ticket15431
@@ -0,0 +1,6 @@
+ o Minor features (testing):
+ - Add unit tests for control_event_is_interesting().
+ Add a compile-time check that the number of events doesn't exceed
+ the capacity of control_event_t.event_mask.
+ Closes ticket 15431, checks for bugs similar to 13085.
+ Patch by "teor".
diff --git a/changes/ticket15542 b/changes/ticket15542
new file mode 100644
index 0000000000..fcf293e5d0
--- /dev/null
+++ b/changes/ticket15542
@@ -0,0 +1,3 @@
+ o Minor features (command-line interface):
+ - Make --hash-password imply --hush to prevent unnecessary noise. Closes
+ ticket 15542.