| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-12-19 | 0.2.8.12 releasenotes | Nick Mathewson | |
| 2016-12-19 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-12-19 | Merge branch 'bug21018_024' into maint-0.2.8 | Nick Mathewson | |
| 2016-12-19 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-12-19 | Merge remote-tracking branch 'teor/new-fallbacks-028-20161219' into maint-0.2.8 | Nick Mathewson | |
| 2016-12-19 | Update the fallback directory mirror list in December 2016 | teor | |
| Replace the 81 remaining fallbacks of the 100 originally introduced in Tor 0.2.8.3-alpha in March 2016, with a list of 177 fallbacks (123 new, 54 existing, 27 removed) generated in December 2016. Resolves ticket 20170. | |||
| 2016-12-18 | Fix parsing bug with unecognized token at EOS | Nick Mathewson | |
| In get_token(), we could read one byte past the end of the region. This is only a big problem in the case where the region itself is (a) potentially hostile, and (b) not explicitly nul-terminated. This patch fixes the underlying bug, and also makes sure that the one remaining case of not-NUL-terminated potentially hostile data gets NUL-terminated. Fix for bug 21018, TROVE-2016-12-002, and CVE-2016-1254 | |||
| 2016-12-09 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-12-09 | Merge branch 'maint-0.2.7' into maint-0.2.8 | Nick Mathewson | |
| 2016-12-09 | Merge branch 'maint-0.2.6' into maint-0.2.7 | Nick Mathewson | |
| 2016-12-09 | Merge branch 'maint-0.2.5' into maint-0.2.6 | Nick Mathewson | |
| 2016-12-09 | Merge branch 'maint-0.2.4' into maint-0.2.5 | Nick Mathewson | |
| 2016-12-09 | Update geoip and geoip6 to the December 7 2016 database. | Karsten Loesing | |
| 2016-12-07 | Start a changelog for 0.2.8.11 | Nick Mathewson | |
| 2016-12-05 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-12-05 | Merge branch 'getentropy_028' into maint-0.2.8 | Nick Mathewson | |
| 2016-12-05 | 20865: Don't use getentropy() on OSX Sierra. | Nick Mathewson | |
| Tor 0.2.9 has a broader range of fixes and workarounds here, but for 0.2.8, we're just going to maintain the existing behavior. (The alternative would be to backport both 1eba088054eca1555b455ee4a2adfafecb888af9 and 16fcbd21c963a9a65bf55024680c8323c8b7175d , but the latter is kind of a subtle kludge in the configure.ac script, and I'm not a fan of backporting that kind of thing.) | |||
| 2016-12-05 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-12-05 | Always Use EVP_aes_*_ctr() with openssl 1.1 | Nick Mathewson | |
| (OpenSSL 1.1 makes EVP_CIPHER_CTX opaque, _and_ adds acceleration for counter mode on more architectures. So it won't work if we try the older approach, and it might help if we try the newer one.) Fixes bug 20588. | |||
| 2016-12-01 | Start an 0.2.8.10 changelog | Nick Mathewson | |
| All entries are copied verbatim from the 029 changelog. | |||
| 2016-12-01 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-11-22 | Try to work around breakage in the OSX 10.12 SDK. | Nick Mathewson | |
| Apple is supposed to decorate their function declarations with macros to indicate which OSX version introduced them, so that you can tell the compiler that you want to build against certain versions of OSX. But they forgot to do that for clock_gettime() and getentropy(), both of which they introduced in 10.12. This patch adds a kludge to the configure.ac script where, if we detect that we are targeting OSX 10.11 or earlier, we don't even probe to see if the two offending functions are present. Closes ticket 20235. | |||
| 2016-11-07 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-11-07 | Merge branch 'maint-0.2.7' into maint-0.2.8 | Nick Mathewson | |
| 2016-11-07 | Merge branch 'maint-0.2.6' into maint-0.2.7 | Nick Mathewson | |
| 2016-11-07 | Merge branch 'maint-0.2.5' into maint-0.2.6 | Nick Mathewson | |
| 2016-11-07 | Merge branch 'maint-0.2.4' into maint-0.2.5 | Nick Mathewson | |
| 2016-11-07 | Update geoip and geoip6 to the November 3 2016 database. | Karsten Loesing | |
| 2016-11-03 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-11-03 | Merge branch 'bug20551_028' into maint-0.2.8 | Nick Mathewson | |
| 2016-11-03 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-11-03 | Merge remote-tracking branch 'arma/bug19969_028_squashed' into maint-0.2.8 | Nick Mathewson | |
| 2016-11-03 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-11-03 | Work around a behavior change in openssl's BUF_MEM code | Nick Mathewson | |
| In our code to write public keys to a string, for some unfathomable reason since 253f0f160e1185c, we would allocate a memory BIO, then set the NOCLOSE flag on it, extract its memory buffer, and free it. Then a little while later we'd free the memory buffer with BUF_MEM_free(). As of openssl 1.1 this doesn't work any more, since there is now a BIO_BUF_MEM structure that wraps the BUF_MEM structure. This BIO_BUF_MEM doesn't get freed in our code. So, we had a memory leak! Is this an openssl bug? Maybe. But our code was already pretty silly. Why mess around with the NOCLOSE flag here when we can just keep the BIO object around until we don't need the buffer any more? Fixes bug 20553; bugfix on 0.0.2pre8 | |||
| 2016-11-03 | Use explicit casts to avoid warnings when building with openssl 1.1 | Nick Mathewson | |
| fixes bug 20551; bugfix on 0.2.1.1-alpha | |||
| 2016-11-01 | Ask event_base_loop to finish when we add a pending stream | Roger Dingledine | |
| Fixes bug 19969; bugfix on b1d56fc58. We can fix this some more in later Tors, but for now, this is probably the right fix for us. | |||
| 2016-10-17 | Changelog and releasenotes for 0.2.8.9tor-0.2.8.9 | Nick Mathewson | |
| 2016-10-17 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-10-17 | Merge branch 'buf_sentinel_026_v2' into maint-0.2.8 | Nick Mathewson | |
| 2016-10-17 | Add a one-word sentinel value of 0x0 at the end of each buf_t chunk | Nick Mathewson | |
| This helps protect against bugs where any part of a buf_t's memory is passed to a function that expects a NUL-terminated input. It also closes TROVE-2016-10-001 (aka bug 20384). | |||
| 2016-10-06 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-10-06 | Merge branch 'maint-0.2.7' into maint-0.2.8 | Nick Mathewson | |
| 2016-10-06 | Merge branch 'maint-0.2.6' into maint-0.2.7 | Nick Mathewson | |
| 2016-10-06 | Merge branch 'maint-0.2.5' into maint-0.2.6 | Nick Mathewson | |
| 2016-10-06 | Merge branch 'maint-0.2.4' into maint-0.2.5 | Nick Mathewson | |
| 2016-10-05 | Update geoip and geoip6 to the October 6 2016 database. | Karsten Loesing | |
| 2016-09-23 | Fold entry into changelog. | Nick Mathewson | |
| 2016-09-23 | Merge branch 'maint-0.2.8' into release-0.2.8 | Nick Mathewson | |
| 2016-09-23 | Merge remote-tracking branch 'teor/broken-028-fallbacks' into maint-0.2.8 | Nick Mathewson | |
| 2016-09-22 | Start on an 0.2.8.8 changelog. | Nick Mathewson | |
 |
index : tor | |
| Transit encryption and privacy out of the box | The Tor Project |
| summaryrefslogtreecommitdiff |