diff options
Diffstat (limited to 'changes')
110 files changed, 174 insertions, 340 deletions
diff --git a/changes/25857 b/changes/25857 deleted file mode 100644 index e457af2f82..0000000000 --- a/changes/25857 +++ /dev/null @@ -1,3 +0,0 @@ - o Documentation: - - Correct an IPv6 error in the documentation for ExitPolicy. - Closes ticket 25857. Patch from "CTassisF". diff --git a/changes/TROVE-2018-005 b/changes/TROVE-2018-005 deleted file mode 100644 index 769c653f43..0000000000 --- a/changes/TROVE-2018-005 +++ /dev/null @@ -1,6 +0,0 @@ - o Major bugfixes (security, directory authority, denial-of-service): - - Fix a bug that could have allowed an attacker to force a - directory authority to use up all its RAM by passing it a - maliciously crafted protocol versions string. Fixes bug 25517; - bugfix on 0.2.9.4-alpha. This issue is also tracked as - TROVE-2018-005. diff --git a/changes/bug21394.2 b/changes/bug21394.2 deleted file mode 100644 index b580d2a786..0000000000 --- a/changes/bug21394.2 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfix (Exit node DNS retries): - - Re-attempt timed-out DNS queries 3 times before failure, since our - timeout is 5 seconds for them, but clients wait 10-15. Also allow - slightly more timeouts per resolver before giving up on it in the - case where an exit has multiple resolvers configured. Fixes bug 21394; - bugfix on 0.3.1.9. - diff --git a/changes/bug22310 b/changes/bug22310 deleted file mode 100644 index c8017daffe..0000000000 --- a/changes/bug22310 +++ /dev/null @@ -1,8 +0,0 @@ - o Major bugfixes (performance, load balancing): - - Directory authorities no longer vote in favor of the Guard flag - for relays that don't advertise directory support. Starting in Tor - 0.3.0.1-alpha, Tor clients have been avoiding using such relays in - the Guard position, leading to increasingly broken load balancing - for the 5%-or-so of Guards that don't advertise directory support. - Fixes bug 22310; bugfix on 0.3.0.6. - diff --git a/changes/bug23693.1 b/changes/bug23693.1 deleted file mode 100644 index 4b16788814..0000000000 --- a/changes/bug23693.1 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (relay, crash): - - Avoid a crash when running with DirPort set but ORPort tuned off. - Fixes a case of bug 23693; bugfix on 0.3.1.1-alpha. - diff --git a/changes/bug24031 b/changes/bug24031 deleted file mode 100644 index 2bb0e83091..0000000000 --- a/changes/bug24031 +++ /dev/null @@ -1,13 +0,0 @@ - o Major bugfixes (protover, voting): - - Revise Rust implementation of protover to use a more memory-efficient - voting algorithm and corresponding data structures, thus avoiding a - potential (but small impact) DoS attack where specially crafted protocol - strings would expand to several potential megabytes in memory. In the - process, several portions of code were revised to be methods on new, - custom types, rather than functions taking interchangeable types, thus - increasing type safety of the module. Custom error types and handling - were added as well, in order to facilitate better error dismissal/handling - in outside crates and avoid mistakenly passing an internal error string to - C over the FFI boundary. Many tests were added, and some previous - differences between the C and Rust implementations have been - remedied. Fixes bug 24031; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug24767 b/changes/bug24767 deleted file mode 100644 index 56fbe51a98..0000000000 --- a/changes/bug24767 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (relay, connection): - - Refuse to connect again to a relay from which we failed previously with - a connection refused, timeout or error (at the TCP level). The relay - won't be retried for 60 seconds after the failure occured. Fixes bug - 24767; bugfix on 0.0.6. diff --git a/changes/bug24769 b/changes/bug24769 deleted file mode 100644 index 2893e0ff07..0000000000 --- a/changes/bug24769 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (performance): - - Reduce the number of circuits that can be opened at once during the - circuit build timeout phase. This is done by increasing the idle timeout - to 3 minutes, and lowering the maximum number of concurrent learning - circuits to 10. Fixes bug 24769; bugfix on 0.3.1.1-alpha. - - diff --git a/changes/bug24782 b/changes/bug24782 deleted file mode 100644 index 59bbdad123..0000000000 --- a/changes/bug24782 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (config options): - - Change the way the default value for MaxMemInQueues is calculated. We now - use 0.4 * RAM if the system have 8 GB RAM or more, otherwise we use the - former value of 0.75 * RAM. Closes ticket 24782. diff --git a/changes/bug24854 b/changes/bug24854 deleted file mode 100644 index 64e10772e0..0000000000 --- a/changes/bug24854 +++ /dev/null @@ -1,3 +0,0 @@ - o Code simplification and refactoring: - - Move the list of default directory authorities to their own file for - inclusion using the C preprocessor. Closes ticket 24854. Patch by "beastr0". diff --git a/changes/bug24891 b/changes/bug24891 new file mode 100644 index 0000000000..403b2b1123 --- /dev/null +++ b/changes/bug24891 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - Refrain from compiling unit testing related object files + when --disable-unittests is set to configure script. + Fixes bug 24891; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug24903 b/changes/bug24903 deleted file mode 100644 index 01c9b53f23..0000000000 --- a/changes/bug24903 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (controller, reliability): - - Avoid a (nonfatal) assertion failure when extending a one-hop circuit - from the controller to become a multihop circuit. Fixes bug 24903; - bugfix on 0.2.5.2-alpha. - diff --git a/changes/bug24904 b/changes/bug24904 deleted file mode 100644 index 648d9a5834..0000000000 --- a/changes/bug24904 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfix (channel, client): - - Better identify client connection when reporting to the geoip client - cache. Fixes bug 24904; bugfix on 0.3.1.7. - diff --git a/changes/bug24969 b/changes/bug24969 deleted file mode 100644 index 46b2bae6f4..0000000000 --- a/changes/bug24969 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (Linux seccomp2 sandbox): - - Allow the nanosleep() system call, which glibc uses to implement - sleep() and usleep(). Fixes bug 24969; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug24977 b/changes/bug24977 new file mode 100644 index 0000000000..f8127a2a73 --- /dev/null +++ b/changes/bug24977 @@ -0,0 +1,5 @@ + o Minor bugfixes (onion services): + - Recompute some consensus information after clock skews or when we + transition from a non-live consensus to a live consensus. We do this to + avoid having an outdated state which could impact next-generation onion + services. Fixes bug 24977; bugfix on 0.3.2.1-alpha. diff --git a/changes/bug24978 b/changes/bug24978 deleted file mode 100644 index 5dc45c7442..0000000000 --- a/changes/bug24978 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor features (compatibility, OpenSSL): - - Tor will now support TLS1.3 once OpenSSL 1.1.1 is released. - Previous versions of Tor would not have worked with OpenSSL - 1.1.1, since they neither disabled TLS 1.3 nor enabled any of the - ciphersuites it requires. Here we enable the TLS 1.3 ciphersuites. - Closes ticket 24978. - diff --git a/changes/bug24989 b/changes/bug24989 deleted file mode 100644 index a0ea6acf03..0000000000 --- a/changes/bug24989 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (hidden services): - - Re-instate counting pending client HSDir fetch circuits against the - MaxClientCircuitsPending rate limit. Fixes bug 24989; bugfix on - 0.3.3.0-alpha-dev. diff --git a/changes/bug25120 b/changes/bug25120 deleted file mode 100644 index 7215756ef3..0000000000 --- a/changes/bug25120 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (logging): - - Clarify the log messages produced when getrandom() or a related - entropy-generation mechanism gives an error. Closes ticket - 25120. diff --git a/changes/bug25213 b/changes/bug25213 deleted file mode 100644 index bb196ca724..0000000000 --- a/changes/bug25213 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (warnings, ipv6): - - Avoid a bug warning that could occur when trying to connect to - a relay over IPv6 on a Tor instance that downloads router descriptors, - but prefers to use microdescriptors. Fixes bug 25213; bugfix on - 0.3.3.1-alpha. diff --git a/changes/bug25223 b/changes/bug25223 deleted file mode 100644 index fdd5563500..0000000000 --- a/changes/bug25223 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (DoS mitigation): - - Make sure we don't modify consensus parameters if we aren't a public - relay when a new consensus arrives. Fixes bug 25223; bugfix on - 0.3.3.2-alpha. diff --git a/changes/bug25226 b/changes/bug25226 deleted file mode 100644 index b594a7a424..0000000000 --- a/changes/bug25226 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (relay, denial of service): - - Impose a limit on circuit cell queue size. The limit can be controlled by - a consensus parameter. Fixes bug 25226; bugfix on 0.2.4.14-alpha. - diff --git a/changes/bug25249 b/changes/bug25249 deleted file mode 100644 index b4153eeaef..0000000000 --- a/changes/bug25249 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (spec conformance): - - Forbid "-0" as a protocol version. Fixes part of bug 25249; bugfix on - 0.2.9.4-alpha. diff --git a/changes/bug25249.2 b/changes/bug25249.2 deleted file mode 100644 index 9058c11071..0000000000 --- a/changes/bug25249.2 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (spec conformance): - - Forbid UINT32_MAX as a protocol version. Fixes part of bug 25249; - bugfix on 0.2.9.4-alpha. diff --git a/changes/bug25296_032 b/changes/bug25296_032 deleted file mode 100644 index f60048ca66..0000000000 --- a/changes/bug25296_032 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (documentation): - - Document that the PerConnBW{Rate,Burst} options will fall back to their - corresponding consensus parameters only if those parameters are - set. Previously we had claimed that these values would always be - set in the consensus. Fixes bug 25296; bugfix on 0.2.2.7-alpha. diff --git a/changes/bug25306 b/changes/bug25306 deleted file mode 100644 index a2e6306f42..0000000000 --- a/changes/bug25306 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (hidden service v3): - - Avoid asserting when building descriptors in the next rotation time is - out of sync with the consensus valid after time. Instead, log a bug - warning with extra information to hunt down the cause of this assert. - Fixes bug 25306; bugfix on 0.3.2.1-alpha. - diff --git a/changes/bug25372 b/changes/bug25372 deleted file mode 100644 index 4cceab3a45..0000000000 --- a/changes/bug25372 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (log messages): - - Improve log message in the out of memory handler to include information - about memory usage from the different compression backends. Closes ticket 25372. diff --git a/changes/bug25378 b/changes/bug25378 deleted file mode 100644 index 4648a0a313..0000000000 --- a/changes/bug25378 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation: - - Update the documentation for "Log" to include the current list - of logging domains. Closes ticket 25378. - diff --git a/changes/bug25415 b/changes/bug25415 deleted file mode 100644 index ec851aee8d..0000000000 --- a/changes/bug25415 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (directory authority): - - Avoid a crash when testing router reachability on a router that could - have an ed25519 ID, but which does not. Fixes bug 25415; bugfix on - 0.3.3.2-alpha. diff --git a/changes/bug25450 b/changes/bug25450 deleted file mode 100644 index ae14135a72..0000000000 --- a/changes/bug25450 +++ /dev/null @@ -1,8 +0,0 @@ - o Minor bugfixes (testing): - - Avoid intermittent test failures due to relying on hidden service - introductory point creation within 5 seconds of real clock time. The - time limit for the test has been increased to 500 seconds, which may - still result in intermittent failures (e.g. if the system doing the - testing enters sleep/hibernation or experiences some other clock jump). - However, this should elliminate test failures currently happening on - developer and CI systems. Fixes bug 25450; bugfix on 0.3.1.3-alpha. diff --git a/changes/bug25474 b/changes/bug25474 deleted file mode 100644 index 7d3bd1c5f5..0000000000 --- a/changes/bug25474 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (compilation): - - Fix a c99 compliance issue in our configuration script that was - causing compilation issues when compiling Tor with certain - versions of xtools. Fixes bug 25474; bugfix on 0.3.2.5-alpha. - diff --git a/changes/bug25479 b/changes/bug25479 deleted file mode 100644 index e693b8ec7a..0000000000 --- a/changes/bug25479 +++ /dev/null @@ -1,4 +0,0 @@ - o Major bugfixes (benchmarks): - - Fix a crash when running benchmark tests on win32 systems which - was due to an uninitialised mutex before logging and options - were initialised. Fixes bug 25479; bugfix on 0.3.3.3-alpha. diff --git a/changes/bug25512 b/changes/bug25512 deleted file mode 100644 index 4b6491867e..0000000000 --- a/changes/bug25512 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (restart-in-process): - - When shutting down, Tor now clears all the flags in the control.c - module. This should prevent a bug where authentication cookies - are not generated on restart. Fixes bug 25512; bugfix on 0.3.3.1-alpha. - diff --git a/changes/bug25560 b/changes/bug25560 deleted file mode 100644 index 5947fa03a3..0000000000 --- a/changes/bug25560 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing, rust): - - Some of our Rust crates were not having their tests run with `make - test-rust` due to a static string in the `src/test/test_rust.sh` script - specifying which crates to test. Rust crates are not automatically - detected and tested. Fixes bug 25560; bugfix on 0.3.3.3-alpha. diff --git a/changes/bug25581 b/changes/bug25581 deleted file mode 100644 index 86f2491db7..0000000000 --- a/changes/bug25581 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (configuration): - - Remove undescores from the _HSLayer{2,3}Nodes options. This expert-user - configuration can now be enabled as HSLayer{2,3}Nodes. Fixes bug 25581; - bugfix on 0.3.3.1-alpha diff --git a/changes/bug25582 b/changes/bug25582 deleted file mode 100644 index 609b94aac6..0000000000 --- a/changes/bug25582 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (documentation): - - Revert a misformatting issue in the ExitPolicy - documentation. Fixes bug 25582; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug25617 b/changes/bug25617 deleted file mode 100644 index 5de655d69e..0000000000 --- a/changes/bug25617 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (controller): - - Restore the correct operation of the RESOLVE command, which had - been broken since we added the ability to enable/disable DNS - on specific listener ports. Fixes bug 25617; bugfix on 0.2.9.3-alpha. - diff --git a/changes/bug25629 b/changes/bug25629 deleted file mode 100644 index 190928a941..0000000000 --- a/changes/bug25629 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (C correctness): - - Fix a very unlikely null pointer dereference. Fixes bug 25629; - bugfix on 0.2.9.15. Found by Coverity; this is CID 1430932. diff --git a/changes/bug25664 b/changes/bug25664 deleted file mode 100644 index c8b3ca6187..0000000000 --- a/changes/bug25664 +++ /dev/null @@ -1,3 +0,0 @@ - o New system requirements: - - When built with Rust, Tor now depends on version 0.2.39 of the libc - crate. Closes tickets 25310 and 25664. diff --git a/changes/bug25679 b/changes/bug25679 deleted file mode 100644 index 9247a29153..0000000000 --- a/changes/bug25679 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation, rust): - - Build correctly when the rust dependencies submodule is loaded, - but the TOR_RUST_DEPENDENCIES environment variable is not set. - Fixes bug 25679; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug25691 b/changes/bug25691 deleted file mode 100644 index 5f630d5032..0000000000 --- a/changes/bug25691 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (client): - - When using a listed relay as a bridge, and also using - microdescriptors, and considering that relay as a non-bridge in - a circuit, consider its microdescriptor as a valid source of information - about that relay. Fixes bug 25691; bugfix on 0.3.3.4-alpha. - diff --git a/changes/bug25691_again b/changes/bug25691_again deleted file mode 100644 index 3d0d91bfd3..0000000000 --- a/changes/bug25691_again +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (path selection): - - Only select relays when they have the descriptors we prefer to - use for them. This change fixes a bug where we could select - a relay because it had _some_ descriptor, but reject it later with - a nonfatal assertion error because it didn't have the exact one we - wanted. Fixes bugs 25691 and 25692; bugfix on 0.3.3.4-alpha. diff --git a/changes/bug25705 b/changes/bug25705 deleted file mode 100644 index 360d96d4c6..0000000000 --- a/changes/bug25705 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (circuit path selection): - - Don't count path selection failures as circuit build failures. This - should eliminate cases where Tor blames its guard or the network - for situations like insufficient microdescriptors and/or overly - restrictive torrc settings. Fixes bug 25705; bugfix on 0.3.3.1-alpha. diff --git a/changes/bug25732 b/changes/bug25732 deleted file mode 100644 index 49ffae29e5..0000000000 --- a/changes/bug25732 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (distribution, compilation): - - Actually include all of our Rust source in our source - distributions. (Previously, a few of the files were accidentally - omitted.) Fixes bug 25732; bugfix on 0.3.3.2-alpha. diff --git a/changes/bug25733 b/changes/bug25733 deleted file mode 100644 index 775c1ae00e..0000000000 --- a/changes/bug25733 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (Assert crash): - - Avoid an assert in the circuit build timeout code if we fail to - allow any circuits to actually complete. Fixes bug 25733; - bugfix on 0.2.2.2-alpha. diff --git a/changes/bug25761 b/changes/bug25761 deleted file mode 100644 index 096fadcf09..0000000000 --- a/changes/bug25761 +++ /dev/null @@ -1,3 +0,0 @@ - o Major bugfixes (onion service): - - Correctly detect when onion services get disabled after HUP. - Fixes bug 25761; bugfix on 0.3.2.1. diff --git a/changes/bug25787 b/changes/bug25787 new file mode 100644 index 0000000000..3041e8a603 --- /dev/null +++ b/changes/bug25787 @@ -0,0 +1,7 @@ + o Minor bugfixes (testing): + - Instead of trying to read the geoip configuration files from within the + unit tests, instead create our own ersatz files with just enough + geoip data in the format we expect. Trying to read from the source + directory created problems on Windows with mingw, where the + build system's paths are not the same as the platform's paths. + Fixes bug 25787; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug25901 b/changes/bug25901 deleted file mode 100644 index 3ad30c7676..0000000000 --- a/changes/bug25901 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (hidden service v3): - - Fix a memory leak when an hidden service v3 is configured and gets a - SIGHUP signal. Fixes bug 25901; bugfix on 0.3.2.1-alpha. diff --git a/changes/bug26007 b/changes/bug26007 deleted file mode 100644 index efcd15084d..0000000000 --- a/changes/bug26007 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (directory authorities, security): - - When directory authorities read a zero-byte bandwidth file, they log - a warning with the contents of an uninitialised buffer. Log a warning - about the empty file instead. - Fixes bug 26007; bugfix on 0.2.2.1-alpha. diff --git a/changes/bug26052 b/changes/bug26052 deleted file mode 100644 index 4721933fa5..0000000000 --- a/changes/bug26052 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (documentation): - - Stop saying in the manual that clients cache ipv4 dns answers - from exit relays. We haven't used them since 0.2.6.3-alpha, and - in ticket 24050 we stopped even caching them as of 0.3.2.6-alpha, - but we forgot to say so in the man page. Fixes bug 26052; bugfix - on 0.3.2.6-alpha. diff --git a/changes/bug26069 b/changes/bug26069 deleted file mode 100644 index 192e97d782..0000000000 --- a/changes/bug26069 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (hidden service v3): - - When parsing the descriptor signature, look for the token plus an extra - white-space at the end. This is more correct but also will allow us to - support new fields that might start with "signature". Fixes bug 26069; - bugfix on 0.3.0.1-alpha. diff --git a/changes/bug26072 b/changes/bug26072 deleted file mode 100644 index 2489e4fbb5..0000000000 --- a/changes/bug26072 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (correctness, client): - - Upon receiving a malformed connected cell, stop processing the cell - immediately. Previously we would mark the connection for close, but - continue processing the cell as if the connection were open. Fixes bug - 26072; bugfix on 0.2.4.7-alpha. diff --git a/changes/bug26116 b/changes/bug26116 deleted file mode 100644 index 3bfde74f77..0000000000 --- a/changes/bug26116 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (compatibility, openssl): - - Work around a change in OpenSSL 1.1.1 where - return values that would previously indicate "no password" now - indicate an empty password. Without this workaround, Tor instances - running with OpenSSL 1.1.1 would accept descriptors that other Tor - instances would reject. Fixes bug 26116; bugfix on 0.2.5.16. - diff --git a/changes/bug26121 b/changes/bug26121 deleted file mode 100644 index 5f734dd56b..0000000000 --- a/changes/bug26121 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (controller): - - Improve accuracy of the BUILDTIMEOUT_SET control port event's - TIMEOUT_RATE and CLOSE_RATE fields. (We were previously miscounting - the total number of circuits for these field values.) Fixes bug - 26121; bugfix on 0.3.3.1-alpha. - diff --git a/changes/bug26196 b/changes/bug26196 index 47fcffa0f8..e63f09a2d6 100644 --- a/changes/bug26196 +++ b/changes/bug26196 @@ -1,4 +1,7 @@ - o Minor bugfixes (hardening): - - Prevent a possible out-of-bounds smartlist read in - protover_compute_vote(). Fixes bug 26196; bugfix on - 0.2.9.4-alpha. + o Minor bugfixes (testing, compilation): + - Refrain from trying to get an item from empty smartlist in + test_bridges_clear_bridge_list. Set DEBUG_SMARTLIST in unit + tests to catch improper smartlist usage. Furthermore, + enable DEBUG_SMARTLIST globally when build is configured + with fragile hardening. Fixes bug 26196; bugfix on + 0.3.4.1-alpha. diff --git a/changes/bug26214 b/changes/bug26214 new file mode 100644 index 0000000000..4277b9c6ec --- /dev/null +++ b/changes/bug26214 @@ -0,0 +1,3 @@ + o Minor bugfixes (correctness, flow control): + - Upon receiving a stream-level SENDME cell, verify that our window has + not grown too large. Fixes bug 26214; bugfix on svn r54 (pre-0.0.1) diff --git a/changes/bug26245 b/changes/bug26245 new file mode 100644 index 0000000000..7a14cea0bc --- /dev/null +++ b/changes/bug26245 @@ -0,0 +1,3 @@ + o Minor features (compilation): + o The --enable-fatal-warnings flag now affects Rust code as well. + Closes ticket 26245. diff --git a/changes/bug26272 b/changes/bug26272 deleted file mode 100644 index 9dcf42f0e1..0000000000 --- a/changes/bug26272 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (compilation): - - Silence unused-const-variable warnings in zstd.h on some gcc versions. - Fixes bug 26272; bugfix on 0.3.1.1-alpha. diff --git a/changes/bug26402 b/changes/bug26402 new file mode 100644 index 0000000000..b21283a2d2 --- /dev/null +++ b/changes/bug26402 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - When linking the libtor_testing.a library, only include the dirauth + object files once. Previously, they were getting added twice. + Fixes bug 26402; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26415 b/changes/bug26415 new file mode 100644 index 0000000000..497fbb7365 --- /dev/null +++ b/changes/bug26415 @@ -0,0 +1,3 @@ + o Minor bugfixes (testing): + - Fix compilation of the doctests in the Rust crypto crate. Fixes + bug 26415; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26568 b/changes/bug26568 new file mode 100644 index 0000000000..0c4c05d043 --- /dev/null +++ b/changes/bug26568 @@ -0,0 +1,3 @@ + o Minor bugfixes (controller): + - Report the port correctly when a port is configured to bind to "auto". + Fixes bug 26568; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26789 b/changes/bug26789 new file mode 100644 index 0000000000..9b3520543d --- /dev/null +++ b/changes/bug26789 @@ -0,0 +1,4 @@ + o Minor bugfixes (compilation): + - Update build system so that tor builds again with + --disable-unittests after recent refactoring efforts. + Fixes bug 26789; bugfix on 0.3.4.3-alpha. diff --git a/changes/bug26896 b/changes/bug26896 new file mode 100644 index 0000000000..9762dc7fac --- /dev/null +++ b/changes/bug26896 @@ -0,0 +1,3 @@ + o Minor bugfixes (directory connection shutdown): + - Avoid a double-close when shutting down a stalled directory connection. + Fixes bug 26896; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug26979 b/changes/bug26979 new file mode 100644 index 0000000000..e615207b74 --- /dev/null +++ b/changes/bug26979 @@ -0,0 +1,4 @@ + o Minor bugfixes (appveyor ci): + - Improve Appveyor CI IRC logging. Generate correct branches and URLs for + pull requests and tags. Use unambiguous short commits. + Fixes bug 26979; bugfix on master. diff --git a/changes/bug26994 b/changes/bug26994 new file mode 100644 index 0000000000..664894a7fc --- /dev/null +++ b/changes/bug26994 @@ -0,0 +1,3 @@ + o Minor bugfixes (portability): + - Avoid a compilation error in test_bwmgt.c on Solaris 10. + Fixes bug 26994; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27003 b/changes/bug27003 new file mode 100644 index 0000000000..4f2045afc7 --- /dev/null +++ b/changes/bug27003 @@ -0,0 +1,6 @@ + o Major bugfixes (event scheduler): + - When we enable a periodic event, schedule it in the event loop + rather than running it immediately. Previously, we would re-run + periodic events immediately in the middle of (for example) + changing our options, with unpredictable effects. Fixes bug + 27003; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27139 b/changes/bug27139 new file mode 100644 index 0000000000..0d1e3b4329 --- /dev/null +++ b/changes/bug27139 @@ -0,0 +1,14 @@ + o Minor bugfixes (32-bit OSX and iOS, timing): + - Fix an integer overflow bug in our optimized 32-bit millisecond- + difference algorithm for 32-bit Apple platforms. Previously, it + would overflow when calculating the difference between two times + more than 47 days apart. Fixes part of bug 27139; bugfix on + 0.3.4.1-alpha. + - Improve the precision of our 32-bit millisecond difference + algorithm for 32-bit Apple platforms. Fixes part of bug 27139; + bugfix on 0.3.4.1-alpha. + - Relax the tolerance on the mainloop/update_time_jumps test + when running on 32-bit Apple platforms. Fixes part of bug 27139; + bugfix on 0.3.4.1-alpha. + + diff --git a/changes/bug27236 b/changes/bug27236 new file mode 100644 index 0000000000..76d792f4c9 --- /dev/null +++ b/changes/bug27236 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing, bootstrap): + - When calculating bootstrap progress, check exit policies and the exit + flag. Previously, Tor would only check the exit flag, which caused + race conditions in small and fast networks like chutney. + Fixes bug 27236; bugfix on 0.2.6.3-alpha. diff --git a/changes/bug27460 b/changes/bug27460 new file mode 100644 index 0000000000..53c4c7daf3 --- /dev/null +++ b/changes/bug27460 @@ -0,0 +1,6 @@ + o Minor bugfixes (continuous integration): + - Disable gcc hardening in Appveyor Windows 64-bit builds. As of + August 29, 2018, Appveyor images come with gcc 8.2.0 by default. + 64-bit Windows executables compiled with gcc 8.2.0 and + tor's --enable-gcc-hardening crash. + Fixes bug 27460; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27464 b/changes/bug27464 new file mode 100644 index 0000000000..9dedd06f41 --- /dev/null +++ b/changes/bug27464 @@ -0,0 +1,3 @@ + o Minor bugfixes (continuous integration): + - Stop reinstalling identical packages in our Windows CI. + Fixes bug 27464; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27750 b/changes/bug27750 new file mode 100644 index 0000000000..c234788b1c --- /dev/null +++ b/changes/bug27750 @@ -0,0 +1,6 @@ + o Minor bugfixes (connection, relay): + - Avoid a wrong BUG() stacktrace in case a closing connection is being held + open because the write side is rate limited but not the read side. Now, + the connection read side is simply shutdown instead of kept open until tor + is able to flush the connection and then fully close it. Fixes bug 27750; + bugfix on 0.3.4.1-alpha. diff --git a/changes/bug27781 b/changes/bug27781 new file mode 100644 index 0000000000..44d838af8a --- /dev/null +++ b/changes/bug27781 @@ -0,0 +1,4 @@ + o Major bugfixes (compilation): + - Fix compilation on arm (and other less-used CPUs) + when compiling with OpenSSL before 1.1. Fixes bug 27781; + bugfix on 0.3.4.1-alpha. diff --git a/changes/bug28399 b/changes/bug28399 new file mode 100644 index 0000000000..9096db70b0 --- /dev/null +++ b/changes/bug28399 @@ -0,0 +1,4 @@ + o Minor bugfixes (continuous integration, Windows): + - Stop using an external OpenSSL install, and stop installing MSYS2 + packages, when building using mingw on Appveyor Windows CI. + Fixes bug 28399; bugfix on 0.3.4.1-alpha. diff --git a/changes/bug28454 b/changes/bug28454 new file mode 100644 index 0000000000..ca46ae2777 --- /dev/null +++ b/changes/bug28454 @@ -0,0 +1,4 @@ + o Minor bugfixes (continuous integration, Windows): + - Manually configure the zstd compiler options, when building using + mingw on Appveyor Windows CI. The MSYS2 mingw zstd package does not + come with a pkg-config file. Fixes bug 28454; bugfix on 0.3.4.1-alpha. diff --git a/changes/bugs_25036_25055 b/changes/bugs_25036_25055 deleted file mode 100644 index daa46321c0..0000000000 --- a/changes/bugs_25036_25055 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (networking): - - Tor will not reject IPv6 address strings from TorBrowser when they - are passed as hostnames in SOCKS5 requests. Fixes bug 25036, - bugfix on Tor 0.3.1.2. - - string_is_valid_hostname() will not consider IP strings to be valid - hostnames. Fixes bug 25055; bugfix on Tor 0.2.5.5. - diff --git a/changes/coveralls b/changes/coveralls deleted file mode 100644 index 7fa69bb2b4..0000000000 --- a/changes/coveralls +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (continuous integration): - - Our Travis CI configuration now integrates with the Coveralls coverage - analysis tool. Closes ticket 25818. diff --git a/changes/feature25313 b/changes/feature25313 deleted file mode 100644 index 90f421169f..0000000000 --- a/changes/feature25313 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (sandbox): - - Explicitly permit the poll() system call when the Linux seccomp2-based - sandbox is enabled: apparently, some versions of libc use poll() when - calling getpwnam(). Closes ticket 25313. diff --git a/changes/geoip-2018-03-08 b/changes/geoip-2018-03-08 deleted file mode 100644 index d9696aab53..0000000000 --- a/changes/geoip-2018-03-08 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the March 8 2018 Maxmind GeoLite2 - Country database. Closes ticket 25469. - diff --git a/changes/geoip-2018-04-03 b/changes/geoip-2018-04-03 deleted file mode 100644 index 987cc450bf..0000000000 --- a/changes/geoip-2018-04-03 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the April 3 2018 Maxmind GeoLite2 - Country database. Closes ticket 25718. - diff --git a/changes/geoip-2018-05-01 b/changes/geoip-2018-05-01 deleted file mode 100644 index 1528bb0c31..0000000000 --- a/changes/geoip-2018-05-01 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the May 1 2018 Maxmind GeoLite2 - Country database. Closes ticket 26104. - diff --git a/changes/geoip-2018-06-07 b/changes/geoip-2018-06-07 deleted file mode 100644 index 0f8cff97af..0000000000 --- a/changes/geoip-2018-06-07 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the June 7 2018 Maxmind GeoLite2 - Country database. Closes ticket 26351. - diff --git a/changes/refactor23814 b/changes/refactor23814 deleted file mode 100644 index a67b6989f8..0000000000 --- a/changes/refactor23814 +++ /dev/null @@ -1,4 +0,0 @@ - o Code simplification and refactoring: - - Remove the old (deterministic) directory retry logic entirely: - We've used exponential backoff exclusively for some time. - Closes ticket 23814. diff --git a/changes/rust_cross b/changes/rust_cross new file mode 100644 index 0000000000..d490403a28 --- /dev/null +++ b/changes/rust_cross @@ -0,0 +1,2 @@ + o Minor feature (Rust, portability): + - Rust cross-compilation is now supported. Closes ticket 25895. diff --git a/changes/ticket23635 b/changes/ticket23635 deleted file mode 100644 index 54d303e4b8..0000000000 --- a/changes/ticket23635 +++ /dev/null @@ -1,3 +0,0 @@ - o Documentation: - - Improved the documentation of AccountingStart paremeter. - Closes ticket 23635. diff --git a/changes/ticket24343 b/changes/ticket24343 deleted file mode 100644 index e62d65eb54..0000000000 --- a/changes/ticket24343 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (man page, SocksPort): - - Remove dead code about the old "SocksSockets" option. To do so, the - SocksSocketsGroupWritable option has been renamed to - UnixSockssGroupWritable which does the same exact thing. The old option - is still usable but will warn that it is deprecated. Fixes bug 24343; - bugfix on 0.2.6.3. diff --git a/changes/ticket25071 b/changes/ticket25071 deleted file mode 100644 index 5e2917e10b..0000000000 --- a/changes/ticket25071 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (testing): - - Add a "make test-rust" target to run the rust tests only. - Closes ticket 25071. - diff --git a/changes/ticket25202 b/changes/ticket25202 deleted file mode 100644 index ba64abad7b..0000000000 --- a/changes/ticket25202 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (DoS mitigation): - - Add extra safety checks when refilling the circuit creation bucket to - ensure we never set a value that is above the allowed burst. Fixes - bug 25202; bugfix on 0.3.3.2-alpha. diff --git a/changes/ticket25248 b/changes/ticket25248 deleted file mode 100644 index 67ccdb6313..0000000000 --- a/changes/ticket25248 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation (manpage, denial of service): - - Better detail the denial of service options by listing the different - mitigation in place. Closes ticket 25248. - diff --git a/changes/ticket25323 b/changes/ticket25323 deleted file mode 100644 index 836825de5d..0000000000 --- a/changes/ticket25323 +++ /dev/null @@ -1,4 +0,0 @@ - o Code simplification and refactoring: - - Update the "rust dependencies" submodule to be an project-level - repository, rather than a user repository. Closes ticket 25323. - diff --git a/changes/ticket25573 b/changes/ticket25573 new file mode 100644 index 0000000000..9939601b50 --- /dev/null +++ b/changes/ticket25573 @@ -0,0 +1,5 @@ + o Minor features (controller): + - For purposes of CIRC_BW-based dropped cell detection, track half-closed + stream ids, and allow their ENDs, SENDMEs, DATA and path bias check + cells to arrive without counting it as dropped until either the END arrvies, + or the windows are empty. Closes ticket 25573. diff --git a/changes/ticket25714 b/changes/ticket25714 deleted file mode 100644 index 63823fc6ca..0000000000 --- a/changes/ticket25714 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor feature (continuous integration): - - Update the Travis CI configuration to use the stable Rust - channel, now that we have decided to require that. Closes - ticket 25714. diff --git a/changes/ticket25947 b/changes/ticket25947 new file mode 100644 index 0000000000..68559a73f8 --- /dev/null +++ b/changes/ticket25947 @@ -0,0 +1,4 @@ + o Minor feature (unit tests): + - Test complete bandwidth measurements files and test that incomplete lines + only give warnings when the end of the header has not been + detected. Fixes bug 25947; bugfix on 0.2.2.1-alpha diff --git a/changes/ticket25960 b/changes/ticket25960 new file mode 100644 index 0000000000..0d1be2119b --- /dev/null +++ b/changes/ticket25960 @@ -0,0 +1,5 @@ + o Minor feature (directory authorities): + - Stop warning about incomplete bw lines before the first complete bw line + has been found, so that additional header lines can be ignored. + Fixes bug 25960; bugfix on 0.2.2.1-alpha + diff --git a/changes/ticket26006 b/changes/ticket26006 deleted file mode 100644 index e33e3f1cd2..0000000000 --- a/changes/ticket26006 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (compilation, portability): - - Avoid some compilation warnings with recent versions - of LibreSSL. Closes ticket 26006. - diff --git a/changes/ticket26062 b/changes/ticket26062 deleted file mode 100644 index 1ee49d8608..0000000000 --- a/changes/ticket26062 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (client): - - Don't consider Tor running as a client if the ControlPort is open. Fixes - bug 26062; bugfix on 0.2.9.4-alpha. diff --git a/changes/ticket26343 b/changes/ticket26343 deleted file mode 100644 index ab5f332ee6..0000000000 --- a/changes/ticket26343 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (directory authority): - - Add an IPv6 address for the "dannenberg" directory - authority. Closes ticket 26343. diff --git a/changes/ticket27252-034 b/changes/ticket27252-034 new file mode 100644 index 0000000000..620ad83efe --- /dev/null +++ b/changes/ticket27252-034 @@ -0,0 +1,3 @@ + o Minor features (continuous integration): + - Don't do a distcheck with --disable-module-dirauth in Travis. + Implements ticket 27252. diff --git a/changes/ticket27275 b/changes/ticket27275 new file mode 100644 index 0000000000..d1332e9540 --- /dev/null +++ b/changes/ticket27275 @@ -0,0 +1,3 @@ + o Minor features (continuous integration): + - Only post Appveyor IRC notifications when the build fails. + Implements ticket 27275. diff --git a/changes/ticket27430 b/changes/ticket27430 new file mode 100644 index 0000000000..4e016e91e7 --- /dev/null +++ b/changes/ticket27430 @@ -0,0 +1,4 @@ + o Minor features (continuous integration): + - Show config.log and test-suite.log after failed Appveyor builds. + Also upload the zipped full logs as a build artifact. + Implements ticket 27430. diff --git a/changes/ticket27449 b/changes/ticket27449 new file mode 100644 index 0000000000..2a0984c09c --- /dev/null +++ b/changes/ticket27449 @@ -0,0 +1,3 @@ + o Minor features (continuous integration): + - Log the compiler path and version during Appveyor builds. + Implements ticket 27449. diff --git a/changes/ticket27797 b/changes/ticket27797 new file mode 100644 index 0000000000..f07e35f84c --- /dev/null +++ b/changes/ticket27797 @@ -0,0 +1,5 @@ + o Minor bugfixes (node, hidden service v3): + - When selecting a v3 rendezvous point, not only look at the protover but + also if the curve25519 onion key is present. That way we avoid picking a + node that supports the v3 rendezvous but for which we don't have the + descriptor yet for the key. Fixes bug 27797; bugfix on 0.3.2.1-alpha. diff --git a/changes/ticket27810 b/changes/ticket27810 new file mode 100644 index 0000000000..119f781cb9 --- /dev/null +++ b/changes/ticket27810 @@ -0,0 +1,5 @@ + o Minor bugfixes (test, hidden service v3): + - Make the the hs_service tests uses the same time source when creating + the introduction point and testing it. This helps make test work on very + slow system like ARM or Travis. Fixes bug 27810; bugfix on + 0.3.2.1-alpha. diff --git a/changes/ticket27849 b/changes/ticket27849 new file mode 100644 index 0000000000..c2babeffc7 --- /dev/null +++ b/changes/ticket27849 @@ -0,0 +1,5 @@ + o Major bugfixes (mainloop, bootstrap): + - Make sure Tor bootstraps and works properly if only the ControlPort is + set. Prior to this fix, Tor would only bootstrap with at least a client + port being set (Socks, Trans, NATD, DNS or HTTPTunnel port). Fixes bug + 27849; bugfix on 0.3.4.1-alpha. diff --git a/changes/ticket28089 b/changes/ticket28089 new file mode 100644 index 0000000000..a900ec18f5 --- /dev/null +++ b/changes/ticket28089 @@ -0,0 +1,6 @@ + o Major bugfixes (relay): + - When our write bandwidth limit is exhausted, stop writing on the + connection. Previously, we had a typo in the code that would make us stop + reading leading to relay connections being stuck indefinitely. Fixes bug + 28089; bugfix on 0.3.4.1-alpha. + diff --git a/changes/ticket28459 b/changes/ticket28459 new file mode 100644 index 0000000000..6b5839b52b --- /dev/null +++ b/changes/ticket28459 @@ -0,0 +1,4 @@ + o Minor features (continuous integration, Windows): + - Always show the configure and test logs, and upload them as build + artifacts, when building for Windows using Appveyor CI. + Implements 28459. diff --git a/changes/ticket28574 b/changes/ticket28574 new file mode 100644 index 0000000000..562810f511 --- /dev/null +++ b/changes/ticket28574 @@ -0,0 +1,4 @@ + o Minor bugfixes (continuous integration, Windows): + - Explicitly specify the path to the OpenSSL library and do not download + OpenSSL from Pacman, but instead use the library that is already provided + by AppVeyor. Fixes bug 28574; bugfix on master. diff --git a/changes/ticket28912 b/changes/ticket28912 new file mode 100644 index 0000000000..4119b778bc --- /dev/null +++ b/changes/ticket28912 @@ -0,0 +1,6 @@ + o Major bugfixes (relay, directory): + - A connection serving directory information wouldn't get reactivated after + the first chunk of data was sent (usually 32KB). Tor now always activate + the main loop event that goes through these connections as long as at + least one connection is still active. Fixes bug 28912; bugfix on + 0.3.4.1-alpha. Patch by "cypherpunks3". diff --git a/changes/tickets_27765_27943 b/changes/tickets_27765_27943 new file mode 100644 index 0000000000..e8468545f1 --- /dev/null +++ b/changes/tickets_27765_27943 @@ -0,0 +1,5 @@ + o Minor bugfixes (CI, appveyor): + - Only install the necessary mingw packages during our appveyor + builds. This change makes the build a little faster, and prevents a + conflict with a preinstalled mingw openssl that appveyor now ships. + Fixes bugs 27943 and 27765; bugfix on 0.3.4.2-alpha. diff --git a/changes/travis_distcheck b/changes/travis_distcheck deleted file mode 100644 index 0f278fe7ee..0000000000 --- a/changes/travis_distcheck +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (continuous integration): - - Our .travis.yml configuration now includes support for testing - the results of "make distcheck". (It's not uncommon for "make check" to - pass but "make distcheck" to fail.) Closes ticket 25814. diff --git a/changes/trove-2018-001.1 b/changes/trove-2018-001.1 deleted file mode 100644 index f0ee92f409..0000000000 --- a/changes/trove-2018-001.1 +++ /dev/null @@ -1,6 +0,0 @@ - o Major bugfixes (denial-of-service, directory authority): - - Fix a protocol-list handling bug that could be used to remotely crash - directory authorities with a null-pointer exception. Fixes bug 25074; - bugfix on 0.2.9.4-alpha. Also tracked as TROVE-2018-001. - - diff --git a/changes/trove-2018-004 b/changes/trove-2018-004 deleted file mode 100644 index 37e0a89b0d..0000000000 --- a/changes/trove-2018-004 +++ /dev/null @@ -1,8 +0,0 @@ - o Minor bugfixes (denial-of-service): - - Fix a possible crash on malformed consensus. If a consensus had - contained an unparseable protocol line, it could have made clients - and relays crash with a null-pointer exception. To exploit this - issue, however, an attacker would need to be able to subvert the - directory-authority system. Fixes bug 25251; bugfix on - 0.2.9.4-alpha. Also tracked as TROVE-2018-004. - |