diff options
Diffstat (limited to 'changes')
36 files changed, 180 insertions, 0 deletions
diff --git a/changes/12032 b/changes/12032 new file mode 100644 index 000000000..c51ddb85a --- /dev/null +++ b/changes/12032 @@ -0,0 +1,4 @@ + o Minor bugfixes (linux syscall sandbox): + - Avoid crash when running with sandboxing enabled and + DirReqStatistics not disabled. Fixes bug 12035; bugfix on + 0.2.5.1-alpha.
\ No newline at end of file diff --git a/changes/bug10849_023 b/changes/bug10849_023 new file mode 100644 index 000000000..480dea3de --- /dev/null +++ b/changes/bug10849_023 @@ -0,0 +1,6 @@ + o Major bugfixes: + - When running a hidden service, do not allow TunneledDirConns 0; + this will keep the hidden service from running, and also + make it publish its descriptors directly over HTTP. Fixes bug 10849; + bugfix on 0.2.1.1-alpha. + diff --git a/changes/bug10849_025 b/changes/bug10849_025 new file mode 100644 index 000000000..1a3b71bab --- /dev/null +++ b/changes/bug10849_025 @@ -0,0 +1,6 @@ + o Removed code: + - The TunnelDirConns and PreferTunnelledDirConns options no longer + exist; tunneled directory connections have been available since + 0.1.2.5-alpha, and turning them off is not a good idea. This is a + brute-force fix for 10849, where "TunnelDirConns 0" would break + hidden services. diff --git a/changes/bug11233 b/changes/bug11233 new file mode 100644 index 000000000..1161b6dfd --- /dev/null +++ b/changes/bug11233 @@ -0,0 +1,4 @@ + o Minor features: + - When we encounter an unexpected CR in text that we're trying to + write to a file on Windows, log the name of the file. Should help + diagnosing bug 11233. diff --git a/changes/bug11469 b/changes/bug11469 new file mode 100644 index 000000000..8517d388e --- /dev/null +++ b/changes/bug11469 @@ -0,0 +1,6 @@ + o Major bugfixes (relay): + - When uploading to the directory authorities, use a direct dirport + connection if we are a uploading an ordinary, non-anonymous directory + object. Previously, relays would used tunnel connections under a + fairly wide variety of circumstances. Fixes bug 11469; bugfix on + 0.2.4.3-alpha. diff --git a/changes/bug11477 b/changes/bug11477 new file mode 100644 index 000000000..21dd34591 --- /dev/null +++ b/changes/bug11477 @@ -0,0 +1,4 @@ + o Minor bugfixes (linux syscall sandbox): + - Prevent the sandbox from crashing on startup when run with the + --enable-expensive-hardening configuration option. Fixes bug + 11477; bugfix on 0.2.5.4-alpha. diff --git a/changes/bug11605 b/changes/bug11605 new file mode 100644 index 000000000..973ac6db1 --- /dev/null +++ b/changes/bug11605 @@ -0,0 +1,2 @@ + o Minor bugfixes (dmalloc): + - Fix compilation with dmalloc. Fixes bug 11605; bugfix on 0.2.4.10-alpha. diff --git a/changes/bug11609 b/changes/bug11609 new file mode 100644 index 000000000..2a116137c --- /dev/null +++ b/changes/bug11609 @@ -0,0 +1,5 @@ + o Minor bugfixes (sandbox): + - Don't try to enable the sandbox when using the Tor binary to + check its configuration, hash a passphrase, or so on. Doing + so was crashing on startup for some users. Fixes bug 11609; + bugfix on 0.2.5.1-alpha. diff --git a/changes/bug11618 b/changes/bug11618 new file mode 100644 index 000000000..e650d55cd --- /dev/null +++ b/changes/bug11618 @@ -0,0 +1,5 @@ + o Minor bugfixes: + - Fix all valgrind warnings produced by the unit tests. There were + over a thousand memory leak warnings previously, mostly produced + by forgetting to free things in the unit test code. Fixes bug + 11618, bugfixes on many versions of Tor. diff --git a/changes/bug11623 b/changes/bug11623 new file mode 100644 index 000000000..58ff06d38 --- /dev/null +++ b/changes/bug11623 @@ -0,0 +1,3 @@ + o Minor bugfixes: + - Make Tor compile correctly with --disable-buf-freelists. + Fixes bug 11623; bugfix on 0.2.5.3-alpha. diff --git a/changes/bug11628 b/changes/bug11628 new file mode 100644 index 000000000..b93e1f4fc --- /dev/null +++ b/changes/bug11628 @@ -0,0 +1,4 @@ + o Minor features: + - The configure script has a --disable-seccomp option to turn off + support for libseccomp on systems that have it, in case it (or + Tor's use of it) is broken. Resolves ticket 11628. diff --git a/changes/bug11632 b/changes/bug11632 new file mode 100644 index 000000000..0dc7f8f1e --- /dev/null +++ b/changes/bug11632 @@ -0,0 +1,5 @@ + o Minor bugfixes (testing): + - When looking for versions of python that we could run the tests + with, check for "python2.7" and "python3.3"; previously we were + only looking for "python", "python2", and "python3". Patch from + Dana Koch. Fixes bug 11632; bugfix on 0.2.5.2-alpha. diff --git a/changes/bug11633_part1 b/changes/bug11633_part1 new file mode 100644 index 000000000..fb281bd7d --- /dev/null +++ b/changes/bug11633_part1 @@ -0,0 +1,4 @@ + o Minor bugfixes (build): + - Resolve GCC complaints on OpenBSD about discarding constness in + TO_{ORIGIN,OR}_CIRCUIT functions. Fixes part of bug 11633; bugfix on + 0.1.1.23. Patch from Dana Koch. diff --git a/changes/bug11633_part2 b/changes/bug11633_part2 new file mode 100644 index 000000000..574660dec --- /dev/null +++ b/changes/bug11633_part2 @@ -0,0 +1,4 @@ + o Minor bugfixes (build): + - Resolve clang complaints on OpenBSD with -Wshorten-64-to-32 due to + treatment of long and time_t as comparable types. Fixes part of bug 11633. + Patch from Dana Koch. diff --git a/changes/bug11648 b/changes/bug11648 new file mode 100644 index 000000000..0e8927435 --- /dev/null +++ b/changes/bug11648 @@ -0,0 +1,8 @@ + o Minor bugfixes (Directory server): + - When sending a compressed set of descriptors or microdescriptors, + make sure to finalize the zlib stream. Previously, we would write + all the compressed data, but if the last descriptor we wanted to + send was missing or too old, we would not mark the stream as + finished. This caused problems for decompression tools. Fixes bug + 11648; bugfix on 0.1.1.23. + diff --git a/changes/bug11654 b/changes/bug11654 new file mode 100644 index 000000000..97c70b25d --- /dev/null +++ b/changes/bug11654 @@ -0,0 +1,4 @@ + o Minor bugfixes: + - Fix a broken log message about delayed directory fetches that + was caused by a misuse of strlcpy(). Fixes bug 11654; bugfix on + 0.2.5.3-alpha. diff --git a/changes/bug11729 b/changes/bug11729 new file mode 100644 index 000000000..93751cfea --- /dev/null +++ b/changes/bug11729 @@ -0,0 +1,5 @@ + o Minor bugfixes (build): + - When deciding whether to build the 64-bit curve25519 implementation, + detect platforms where we can compile 128-bit arithmetic but cannot + link it. Fixes bug 11729; bugfix on 0.2.4.8-alpha. Patch + from "conradev". diff --git a/changes/bug11737_diagnostic b/changes/bug11737_diagnostic new file mode 100644 index 000000000..62e7a4a78 --- /dev/null +++ b/changes/bug11737_diagnostic @@ -0,0 +1,5 @@ + o Minor features (diagnostic): + - When logging a warning because of bug #7164, additionally check the + hash table for consistency (as proposed on ticket #11737). This may + help diagnose bug #7164. + diff --git a/changes/bug11742 b/changes/bug11742 new file mode 100644 index 000000000..000487120 --- /dev/null +++ b/changes/bug11742 @@ -0,0 +1,4 @@ + o Removed code: + - Remove /tor/dbg-stability.txt URL that was meant to help debug WFU + and MTBF calculations, but that nobody was using. Fixes #11742. + diff --git a/changes/bug11743 b/changes/bug11743 new file mode 100644 index 000000000..843517908 --- /dev/null +++ b/changes/bug11743 @@ -0,0 +1,16 @@ + o Major security fixes (directory authorities): + + - Directory authorities now include a digest of each relay's + identity key as a part of its microdescriptor. + + This is a workaround for bug #11743 (reported by "cypherpunks"), + where Tor clients do not + support receiving multiple microdescriptors with the same SHA256 + digest in the same consensus. When clients receive a consensus + like this, they only use one of the relays. Without this fix, a + hostile relay could selectively disable some client use of target + relays by constucting a router descriptor with a different + identity and the same microdescriptor parameters and getting the + authorities to list it in a microdescriptor consensus. This fix + prevents an attacker from causing a microdescriptor collision, + because the router's identity is not forgeable. diff --git a/changes/bug11750 b/changes/bug11750 new file mode 100644 index 000000000..f779ac8fe --- /dev/null +++ b/changes/bug11750 @@ -0,0 +1,5 @@ + o Minor features (security): + - Apply the secure SipHash-2-4 function to the hash table mapping + circuit IDs and channels to circuits. We missed this one when we + were converting all the other hash functions to use SipHash back + in 0.2.5.3-alpha. Resolves ticket 11750. diff --git a/changes/bug11761 b/changes/bug11761 new file mode 100644 index 000000000..ffcae5a71 --- /dev/null +++ b/changes/bug11761 @@ -0,0 +1,4 @@ + o Minor bugfixes: + - Fix compilation when DNS_CACHE_DEBUG is enabled. Fixes bug 11761; + bugfix on 0.2.3.13-alpha. Found by "cypherpunks". + diff --git a/changes/bug11805 b/changes/bug11805 new file mode 100644 index 000000000..02a553894 --- /dev/null +++ b/changes/bug11805 @@ -0,0 +1,5 @@ + o Minor bugfixes: + - Correctly detect the total available system memory. We tried to do this + in 0.2.5.4-alpha, but the code was set up to always return an error + value, even on success. + Fixes bug 11805; bugfix on 0.2.5.4-alpha. diff --git a/changes/bug11946 b/changes/bug11946 new file mode 100644 index 000000000..9ea48311b --- /dev/null +++ b/changes/bug11946 @@ -0,0 +1,5 @@ + o Minor bugfixes (sandbox): + + - Handle failures in getpwnam()/getpwuid() when running with the + User option set and the Linux syscall sandbox enabled. Fixes bug + 11946; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug12028 b/changes/bug12028 new file mode 100644 index 000000000..f88d4e546 --- /dev/null +++ b/changes/bug12028 @@ -0,0 +1,5 @@ + o Minor bugfixes (linux syscall sandbox): + - When running with DirPortFrontPage and Sandbox both enabled, reload + the DirPortFrontPage correctly when restarting. Fixes bug 12028; + bugfix on 0.2.5.1-alpha. + diff --git a/changes/bug12032 b/changes/bug12032 new file mode 100644 index 000000000..44fc6c756 --- /dev/null +++ b/changes/bug12032 @@ -0,0 +1,4 @@ + o Minor bugfixes (Linux syscall sandbox): + - When we receive a SIGHUP with the sandbox enabled, correctly + support rotating our log files. Fixes bug 12032; bugfix on + 0.2.5.1-alpha. diff --git a/changes/bug12041 b/changes/bug12041 new file mode 100644 index 000000000..ddbc7de97 --- /dev/null +++ b/changes/bug12041 @@ -0,0 +1,5 @@ + o Minor bugfixes (linux syscall sandbox): + - Fix a "BUG" warning when trying to write bridge-stats files with + the Linux syscall sandbox filter enabled. Fixes bug 12041; + bugfix on 0.2.5.1-alpha. + diff --git a/changes/bug12043 b/changes/bug12043 new file mode 100644 index 000000000..4ec735c1e --- /dev/null +++ b/changes/bug12043 @@ -0,0 +1,4 @@ + o Minor bugfixes (linux syscall sandboxing): + - Do not allow options which would require us to call exec to be + enabled along with the seccomp2 sandbox: they will inevitably + crash. Fix for bug 12043; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug4345 b/changes/bug4345 new file mode 100644 index 000000000..5e650fc34 --- /dev/null +++ b/changes/bug4345 @@ -0,0 +1,10 @@ + o Minor bugfixes: + - Check return code on spawn_func() in cpuworker code, so that we don't + think we've spawned a nonworking cpuworker and write junk to it + forever. Fix related to bug 4345; bugfix on all released Tor versions. + Found by "skruffy". + + - Use a pthread_attr to make sure that spawn_func() cannot return + an error while at the same time launching a thread. Fix related + to bug 4345; bugfix on all released Tor versions. Reported by + "cypherpunks". diff --git a/changes/bug8368 b/changes/bug8368 new file mode 100644 index 000000000..fa3991c3a --- /dev/null +++ b/changes/bug8368 @@ -0,0 +1,4 @@ + o Minor features: + - Add a systemd service file (tor.service) that can be installed by + Linux distributions that make use of the systemd init daemon. + Fixes bug 8368. diff --git a/changes/bug9635 b/changes/bug9635 new file mode 100644 index 000000000..042da7b8c --- /dev/null +++ b/changes/bug9635 @@ -0,0 +1,3 @@ + o Minor features: + - Give more specific warnings when we notice at the client side that + an onion handshake has failed. Fixes ticket 9635. diff --git a/changes/bug9781 b/changes/bug9781 new file mode 100644 index 000000000..0a3c557cb --- /dev/null +++ b/changes/bug9781 @@ -0,0 +1,5 @@ + o Minor bugfixes (tor-fw-helper): + + - Give a correct log message when tor-fw-helper fails to launch. + (Previously, we would say something like "tor-fw-helper sent us a + string we could not parse".) Fixes bug 9781; bugfix on 0.2.4.2-alpha. diff --git a/changes/diagnose_8387 b/changes/diagnose_8387 new file mode 100644 index 000000000..3dfc84578 --- /dev/null +++ b/changes/diagnose_8387 @@ -0,0 +1,4 @@ + o Minor features (diagnostic): + - When we log a heartbeat, log how many one-hop circuits we have that + are at least 30 minutes old, and log status information about a + few of them. This is an attempt to track down bug 8387. diff --git a/changes/md_leak_bug b/changes/md_leak_bug new file mode 100644 index 000000000..26270aacc --- /dev/null +++ b/changes/md_leak_bug @@ -0,0 +1,5 @@ + o Major bugfixes (security, OOM) + - Fix a memory leak that could occur if a microdescriptor parse + fails during the tokenizing step. This could enable a memory + exhaustion attack by directory servers. Fixes bug #11649; bugfix + on 0.2.2.6-alpha. diff --git a/changes/msvc_fix b/changes/msvc_fix new file mode 100644 index 000000000..6d4531bff --- /dev/null +++ b/changes/msvc_fix @@ -0,0 +1,3 @@ + o Minor bugfixes (build): + - Fix compilation of test_status.c when building with MVSC. + Bugfix on 0.2.5.4-alpha. Patch from Gisle Vanem. diff --git a/changes/ticket8368 b/changes/ticket8368 new file mode 100644 index 000000000..206a76654 --- /dev/null +++ b/changes/ticket8368 @@ -0,0 +1,5 @@ + o Distribution: + - Include a tor.service file in contrib.dist for use with + systemd. Some distributions will be able to use this file unmodified; + others will need to tweak it, or write their own. Patch from + Jamie Nguyen; resolves ticket 8368. |