diff options
Diffstat (limited to 'changes')
-rw-r--r-- | changes/bug11970 | 7 | ||||
-rw-r--r-- | changes/bug12191 | 7 | ||||
-rw-r--r-- | changes/bug6799 | 20 | ||||
-rw-r--r-- | changes/more_8387_diagnosis | 4 | ||||
-rw-r--r-- | changes/not_bug_8093 | 4 |
5 files changed, 42 insertions, 0 deletions
diff --git a/changes/bug11970 b/changes/bug11970 new file mode 100644 index 000000000..896f0cfaf --- /dev/null +++ b/changes/bug11970 @@ -0,0 +1,7 @@ + o Minor bugfixes (linux seccomp sandbox): + - Refactor the getaddrinfo workaround that the seccomp sandbox + uses to avoid calling getaddrinfo() after installing the sandbox + filters. Previously, it preloaded a cache with the IPv4 address + for our hostname, and nothing else. Now, it loads the cache with + every address that it used to initialize the Tor process. Fixes + bug 11970; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug12191 b/changes/bug12191 new file mode 100644 index 000000000..77589ab31 --- /dev/null +++ b/changes/bug12191 @@ -0,0 +1,7 @@ + o Minor bugfixes: + + - We now drop CREATE cells for already-existent circuit IDs and + for zero-valued circuit IDs, regardless of other factors that + might otherwise have called for DESTROY cells. Fixes bug 12191; + bugfix on 0.0.8pre1. + diff --git a/changes/bug6799 b/changes/bug6799 new file mode 100644 index 000000000..72b6519a2 --- /dev/null +++ b/changes/bug6799 @@ -0,0 +1,20 @@ + o Major features: + + - Increase the base amount of time that a canonical connection + (one that we have made to a known OR) is allowed to stay idle + from 3 minutes to 15 minutes. This leaks less information + about when circuits have closed, and avoids unnecessary overhead + from renegotiating connections. Part of a fix for ticket 6799. + + - Instead of closing connections after they have been idle for a + fixed interval, randomly add up to 50% to each connection's + maximum timeout. This makes it harder to tell when the last + circuit closed by looking at when a connection closes. Part of a + fix for ticket 6799. + + - Base connection idleness tests on the actual time elapsed since + the connection last had circuits, not on the time when we last + added non-padding. This change also makes it harder for an + observer to tell when the last circuit closed by looking at when + a connection closes. Part of a fix for ticket 6799. + Incidentally fixes bug 12023; bugfix on 0.2.5.1-alpha. diff --git a/changes/more_8387_diagnosis b/changes/more_8387_diagnosis new file mode 100644 index 000000000..68a36a113 --- /dev/null +++ b/changes/more_8387_diagnosis @@ -0,0 +1,4 @@ + o Minor features (diagnostic): + - Improve the diagnostic log message for bug #8387 even further to + try to improve our odds of figuring out why one-hop directory + circuits sometimes do not get closed. diff --git a/changes/not_bug_8093 b/changes/not_bug_8093 new file mode 100644 index 000000000..98b421926 --- /dev/null +++ b/changes/not_bug_8093 @@ -0,0 +1,4 @@ + o Minor bugfixes: + - When rejecting DATA cells for stream_id zero, still count them against + the circuit's deliver window so that we don't get fail to send a + SENDME. Fix for bug 11246; bugfix on 0.2.4.10-alpha. |