diff options
Diffstat (limited to 'changes')
36 files changed, 153 insertions, 16 deletions
diff --git a/changes/15542 b/changes/15542 new file mode 100644 index 0000000000..bf289c9563 --- /dev/null +++ b/changes/15542 @@ -0,0 +1,3 @@ + o Minor features: + - The "--hash-password" option now implies "--hush" to avoid needless + noise. Closes ticket 15542. Patch from "cypherpunks". diff --git a/changes/bug11447 b/changes/bug11447 new file mode 100644 index 0000000000..8cd4f5b467 --- /dev/null +++ b/changes/bug11447 @@ -0,0 +1,5 @@ + o Minor features (DoS-resistance): + - Decrease the amount of reattempts that a hidden service is + willing to perform when its rendezvous circuits fail. This + reduces the computational cost for hidden service under heavy + load. Resolves ticket #11447.
\ No newline at end of file diff --git a/changes/bug13736 b/changes/bug13736 new file mode 100644 index 0000000000..686d2f1fa2 --- /dev/null +++ b/changes/bug13736 @@ -0,0 +1,5 @@ + o Removed features: + - Remove the (seldom-used) DynamicDHGroups feature. For + anti-fingerprinting we now recommend pluggable transports; for + forward-secrecy in TLS, we now use the P-256 group. + Closes ticket 13736. diff --git a/changes/bug13796 b/changes/bug13796 deleted file mode 100644 index 5c84f99917..0000000000 --- a/changes/bug13796 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes: - - Use getsockname, not getsockopt, to retrieve the address for - a TPROXY-redirected connection. Fixes bug 13796; bugfix on 0.2.5.2-alpha. diff --git a/changes/bug13993 b/changes/bug13993 deleted file mode 100644 index bf99559822..0000000000 --- a/changes/bug13993 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (logging): - - Don't log messages to stdout twice when starting up. Fixes bug - 13993; bugfix on 0.2.6.1-alpha. - diff --git a/changes/bug14018 b/changes/bug14018 new file mode 100644 index 0000000000..165e0427f5 --- /dev/null +++ b/changes/bug14018 @@ -0,0 +1,4 @@ + o Minor features: + - Complain (i.e. print a warning) whenever we find a relative + file path being used as torrc option. Resolves issue 14018. + diff --git a/changes/bug14184 b/changes/bug14184 deleted file mode 100644 index ed3d760bf2..0000000000 --- a/changes/bug14184 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes: - - On the control port, the "entry-guards" command was reporting an "up" - status for a relay that was actually down. This fix check if - "unreachable_since" is set and if so reports the "down" status. Fixes - bug 14184. diff --git a/changes/bug14391 b/changes/bug14391 new file mode 100644 index 0000000000..590737218c --- /dev/null +++ b/changes/bug14391 @@ -0,0 +1,5 @@ + + o Code simplification and refactoring: + - Refactor hidden service client-side cache lookup to intelligently + report its various failure cases, and disentangle failure cases + involving a lack of introduction points. Closes ticket 14391. diff --git a/changes/bug14764 b/changes/bug14764 deleted file mode 100644 index b05ff69f7c..0000000000 --- a/changes/bug14764 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (portability): - - Fix scheduler compilation on targets where char is unsigned. - Fixes bug 14764; bugfix on 0.2.6.2-alpha. Reported by Christian - Kujau. diff --git a/changes/bug14806 b/changes/bug14806 new file mode 100644 index 0000000000..dd85e785ce --- /dev/null +++ b/changes/bug14806 @@ -0,0 +1,3 @@ + o Minor bugfixes (testing): + - Commandline argument tests moved to Stem. Fixes bug 14806. + diff --git a/changes/bug14922 b/changes/bug14922 new file mode 100644 index 0000000000..65396e4d8f --- /dev/null +++ b/changes/bug14922 @@ -0,0 +1,3 @@ + o Removed code: + - Remove the 'tor_strclear()' function; use memwipe() instead. + Closes ticket 14922.
\ No newline at end of file diff --git a/changes/bug14987b-doc b/changes/bug14987b-doc new file mode 100644 index 0000000000..b8b239292e --- /dev/null +++ b/changes/bug14987b-doc @@ -0,0 +1,4 @@ + o Documentation: + - Standardize on the term "server descriptor" in the manual page. + Previously, we had used "router descriptor", "server descriptor", + and "relay descriptor" interchangeably. Part of ticket 14987. diff --git a/changes/bug14994 b/changes/bug14994 new file mode 100644 index 0000000000..aafeac4b2a --- /dev/null +++ b/changes/bug14994 @@ -0,0 +1,8 @@ + o Minor bugfixes (command-line interface): + - When "--quiet" is provided along with "--validate-config", do not + write anything to stdout on success. Fixes bug 14994; bugfix on + 0.2.3.3-alpha. + - When complaining about bad arguments to "--dump-config", use + stderr, not stdout. + + diff --git a/changes/bug15053 b/changes/bug15053 new file mode 100644 index 0000000000..5dde9d7a97 --- /dev/null +++ b/changes/bug15053 @@ -0,0 +1,4 @@ + o Minor bugfixes (build): + - Improve out-of-tree builds by making non-standard rules work and clean up + additional files and directories. Fixes bug 15053; bugfix on + 0.2.7.0-alpha. diff --git a/changes/bug15211 b/changes/bug15211 new file mode 100644 index 0000000000..24c189dbfd --- /dev/null +++ b/changes/bug15211 @@ -0,0 +1,6 @@ + o Minor bugfixes: + - Remove side-effects from tor_assert() calls. This was harmless, + because we never disable assertions, but it is bad style and + unnecessary. Fixes bug 15211; bugfix on 0.2.5.5, 0.2.2.36, and + 0.2.0.10. + diff --git a/changes/bug15269 b/changes/bug15269 new file mode 100644 index 0000000000..e6b2b24221 --- /dev/null +++ b/changes/bug15269 @@ -0,0 +1,7 @@ + o Minor bugfixes (logs): + - When building Tor under Clang, do not include an extra set of + parentheses in log messages that include function names. + Fixes bug 15053; bugfix on every released version of Tor when + compiled with recent enough Clang. + + diff --git a/changes/bug15296 b/changes/bug15296 new file mode 100644 index 0000000000..5230a419c1 --- /dev/null +++ b/changes/bug15296 @@ -0,0 +1,3 @@ + o Minor bugfixes (hidden service): + - Remove an extraneous newline character from the end of hidden + service descriptors. Fixes bug 15296; bugfix on 0.2.0.10-alpha. diff --git a/changes/bug15515 b/changes/bug15515 new file mode 100644 index 0000000000..dda7c2fcd8 --- /dev/null +++ b/changes/bug15515 @@ -0,0 +1,4 @@ + o Minor features (DoS-resistance): + - Make it harder for attackers to overwhelm hidden services with + introductions, by blocking multiple introduction requests on the + same circuit. Resolves ticket #15515. diff --git a/changes/bug15541 b/changes/bug15541 new file mode 100644 index 0000000000..f73ce5f4d4 --- /dev/null +++ b/changes/bug15541 @@ -0,0 +1,5 @@ + o Minor bugfixes (interface): + - Print usage information for --dump-config when it is used without + an argument. Also, fix the error message to use different wording + and add newline at the end. Fixes bug 15541; bugfix on 0.2.5.1-alpha. + diff --git a/changes/bug15591 b/changes/bug15591 new file mode 100644 index 0000000000..1398a027d7 --- /dev/null +++ b/changes/bug15591 @@ -0,0 +1,4 @@ + o Testing: + - Check for matching value in server response in ntor_ref.py. + Fixes bug 15591; bugfix on 0.2.4.8-alpha. Reported and fixed + by "joelanders". diff --git a/changes/bug15600 b/changes/bug15600 new file mode 100644 index 0000000000..ee1d6cfe19 --- /dev/null +++ b/changes/bug15600 @@ -0,0 +1,5 @@ + o Major bugfixes (security, hidden service): + - Fix an issue that would allow a malicious client to trigger + an assertion failure and halt a hidden service. Fixes + bug 15600; bugfix on 0.2.1.6-alpha. Reported by "skruffy". + diff --git a/changes/bug15601 b/changes/bug15601 new file mode 100644 index 0000000000..2cc880af7f --- /dev/null +++ b/changes/bug15601 @@ -0,0 +1,4 @@ + o Major bugfixes (security, hidden service): + - Fix a bug that could cause a client to crash with an assertion + failure when parsing a malformed hidden service descriptor. + Fixes bug 15601; bugfix on 0.2.1.5-alpha. Found by "DonnCha". diff --git a/changes/bug15604 b/changes/bug15604 new file mode 100644 index 0000000000..de293800f1 --- /dev/null +++ b/changes/bug15604 @@ -0,0 +1,7 @@ + o Minor bugfixes + - Disregard the ConnDirectionStatistics torrc options when Tor is + not a relay since in that mode of operation no sensible data is + being collected and because Tor might run into measurement hiccups + when running as a client for some time, then becoming a relay. Fixes + bug 15604; bugfix on 0.2.2.35. + diff --git a/changes/coverage b/changes/coverage new file mode 100644 index 0000000000..bb7c7cf97a --- /dev/null +++ b/changes/coverage @@ -0,0 +1,6 @@ + o Minor features: + - Remove assertions during builds to determine Tor's test coverage. + We don't want to trigger these even in assertions, so including + them artificially makes our branch coverage look worse than it is. + This patch provides the new test-stem-full and coverage-html-full + configure options. Implements ticket 15400. diff --git a/changes/doc15550 b/changes/doc15550 new file mode 100644 index 0000000000..f953bbf6c7 --- /dev/null +++ b/changes/doc15550 @@ -0,0 +1,4 @@ + o Documentation: + - Improve the descriptions of statistics-related torrc options in + the manpage to describe rationale and possible uses cases. Fixes + issue 15550. diff --git a/changes/feature15026 b/changes/feature15026 new file mode 100644 index 0000000000..c732b41e5d --- /dev/null +++ b/changes/feature15026 @@ -0,0 +1,5 @@ + o Minor features (logging): + - Include the Tor version in all LD_BUG log messages, since people + tend to cut and paste those into the bugtracker. Implements + ticket 15026. + diff --git a/changes/feature15180 b/changes/feature15180 new file mode 100644 index 0000000000..f73ab965e5 --- /dev/null +++ b/changes/feature15180 @@ -0,0 +1,3 @@ + o Minor features (testing): + - Add make rule `check-changes` to verify the format of changes files. + Closes ticket 15180. diff --git a/changes/feature15435 b/changes/feature15435 new file mode 100644 index 0000000000..afe36032c3 --- /dev/null +++ b/changes/feature15435 @@ -0,0 +1,5 @@ + o Minor features (pluggable Transports): + - When launching managed pluggable transports, setup a valid open stdin + in the child process that can be used to detect if tor has terminated. + The "TOR_PT_EXIT_ON_STDIN_CLOSE" enviornment variable can be used by + implementations to detect this new behavior. Resolves ticket 15435. diff --git a/changes/feature15471 b/changes/feature15471 new file mode 100644 index 0000000000..594adf0f54 --- /dev/null +++ b/changes/feature15471 @@ -0,0 +1,5 @@ + o Minor features (pluggable transports): + - When launching managed pluggable transports on linux systems, + attempt to have the kernel deliver a SIGTERM on tor exit if + the pluggable transport process is still running. Resolves + ticket 15471. diff --git a/changes/no_digests b/changes/no_digests new file mode 100644 index 0000000000..1327ac3e77 --- /dev/null +++ b/changes/no_digests @@ -0,0 +1,5 @@ + o Removed features: + - Remove the undocumented "--digests" command-line option. It + complicated our build process, caused subtle build issues + on multiple platforms, and is now redundant since we started + including git version identifiers. Closes ticket 14742. diff --git a/changes/remove_old_version_checks b/changes/remove_old_version_checks new file mode 100644 index 0000000000..fe4dab9e19 --- /dev/null +++ b/changes/remove_old_version_checks @@ -0,0 +1,5 @@ + o Removed features: + - Tor no longer contains workarounds for stat files generated by + super-old versions of Tor that didn't choose guards sensibly. + - Tor no longer contains checks for ancient directory cache versions + that didn't know about microdescriptors. diff --git a/changes/test-memwipe b/changes/test-memwipe new file mode 100644 index 0000000000..04a21f75f1 --- /dev/null +++ b/changes/test-memwipe @@ -0,0 +1,3 @@ + o Testing: + - Add a test to verify that the compiler does not eliminate our + memwipe() implementation. Closes ticket 15377. diff --git a/changes/ticket14710 b/changes/ticket14710 new file mode 100644 index 0000000000..2b6cb2060f --- /dev/null +++ b/changes/ticket14710 @@ -0,0 +1,10 @@ + o Code simplification and refactoring: + - Move the hacky fallback code out of get_interface_address6() + into separate function and get it covered with unit-tests. Resolves + ticket 14710. + + o Minor bugfixes: + - When attempting to use fallback technique for network interface + lookup, disregard loopback and multicast addresses since they are + unsuitable for public communications. + diff --git a/changes/ticket15024 b/changes/ticket15024 new file mode 100644 index 0000000000..908177142e --- /dev/null +++ b/changes/ticket15024 @@ -0,0 +1,4 @@ + o Documentation: + - Improve the layout and formatting of ./configure --help messages. + Closes ticket 15024. Patch from "cypherpunks". + diff --git a/changes/ticket15431 b/changes/ticket15431 new file mode 100644 index 0000000000..ea6821afdf --- /dev/null +++ b/changes/ticket15431 @@ -0,0 +1,6 @@ + o Minor features (testing): + - Add unit tests for control_event_is_interesting(). + Add a compile-time check that the number of events doesn't exceed + the capacity of control_event_t.event_mask. + Closes ticket 15431, checks for bugs similar to 13085. + Patch by "teor". diff --git a/changes/ticket15542 b/changes/ticket15542 new file mode 100644 index 0000000000..fcf293e5d0 --- /dev/null +++ b/changes/ticket15542 @@ -0,0 +1,3 @@ + o Minor features (command-line interface): + - Make --hash-password imply --hush to prevent unnecessary noise. Closes + ticket 15542. |