diff options
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/bug10405 | 5 | ||||
| -rw-r--r-- | changes/bug10616 | 4 | ||||
| -rw-r--r-- | changes/bug11605 | 2 | ||||
| -rw-r--r-- | changes/bug11608 | 5 | ||||
| -rw-r--r-- | changes/bug11632 | 5 | ||||
| -rw-r--r-- | changes/bug11633_part1 | 4 | ||||
| -rw-r--r-- | changes/bug11634 | 6 | ||||
| -rw-r--r-- | changes/bug11635 | 6 | ||||
| -rw-r--r-- | changes/bug11970 | 7 | ||||
| -rw-r--r-- | changes/bug12169_simple | 5 | ||||
| -rw-r--r-- | changes/bug12170 | 11 | ||||
| -rw-r--r-- | changes/bug12184_diagnostic | 4 | ||||
| -rw-r--r-- | changes/bug12191 | 7 | ||||
| -rw-r--r-- | changes/bug12195 | 7 | ||||
| -rw-r--r-- | changes/bug12227 | 5 | ||||
| -rw-r--r-- | changes/bug6799 | 20 | ||||
| -rw-r--r-- | changes/bug8368 | 4 | ||||
| -rw-r--r-- | changes/geoip6-june2014 | 2 | ||||
| -rw-r--r-- | changes/md_leak_bug | 5 | ||||
| -rw-r--r-- | changes/more_8387_diagnosis | 4 | ||||
| -rw-r--r-- | changes/not_bug_8093 | 4 | ||||
| -rw-r--r-- | changes/ticket8368 | 5 | ||||
| -rw-r--r-- | changes/ticket8966 | 7 |
23 files changed, 85 insertions, 49 deletions
diff --git a/changes/bug10405 b/changes/bug10405 new file mode 100644 index 000000000..d1110e44e --- /dev/null +++ b/changes/bug10405 @@ -0,0 +1,5 @@ + o Minor bugfixes: + - Avoid "Tried to open a socket with DisableNetwork set" warnings + when starting a client with bridges configured and DisableNetwork + set. (Tor launcher starts Tor with DisableNetwork set the first + time.) Fixes bug 10405; bugfix on 0.2.3.9-alpha. diff --git a/changes/bug10616 b/changes/bug10616 new file mode 100644 index 000000000..26f0bda85 --- /dev/null +++ b/changes/bug10616 @@ -0,0 +1,4 @@ + o Bugfixes: + - Squelch a spurious LD_BUG message "No origin circuit for successful + SOCKS stream" in certain hidden service failure cases; fixes bug + #10616. diff --git a/changes/bug11605 b/changes/bug11605 deleted file mode 100644 index 973ac6db1..000000000 --- a/changes/bug11605 +++ /dev/null @@ -1,2 +0,0 @@ - o Minor bugfixes (dmalloc): - - Fix compilation with dmalloc. Fixes bug 11605; bugfix on 0.2.4.10-alpha. diff --git a/changes/bug11608 b/changes/bug11608 deleted file mode 100644 index f34c9eb17..000000000 --- a/changes/bug11608 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing): - - The Python parts of the test scripts now work on Python 3 as well - as Python 2, so systems where '/usr/bin/python' is Python 3 will - no longer have the tests break. Fixes bug 11608; bugfix on - 0.2.5.2-alpha. diff --git a/changes/bug11632 b/changes/bug11632 deleted file mode 100644 index 0dc7f8f1e..000000000 --- a/changes/bug11632 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (testing): - - When looking for versions of python that we could run the tests - with, check for "python2.7" and "python3.3"; previously we were - only looking for "python", "python2", and "python3". Patch from - Dana Koch. Fixes bug 11632; bugfix on 0.2.5.2-alpha. diff --git a/changes/bug11633_part1 b/changes/bug11633_part1 deleted file mode 100644 index fb281bd7d..000000000 --- a/changes/bug11633_part1 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (build): - - Resolve GCC complaints on OpenBSD about discarding constness in - TO_{ORIGIN,OR}_CIRCUIT functions. Fixes part of bug 11633; bugfix on - 0.1.1.23. Patch from Dana Koch. diff --git a/changes/bug11634 b/changes/bug11634 deleted file mode 100644 index 2a52b3fcf..000000000 --- a/changes/bug11634 +++ /dev/null @@ -1,6 +0,0 @@ - o Documentation: - - Clean up several option names in the manpage to match their real - names, add the missing documentation for a couple of testing and - directory authority options, remove the documentation for a - V2-directory fetching option that no longer exists. Resolves - ticket 11634. diff --git a/changes/bug11635 b/changes/bug11635 deleted file mode 100644 index bb5eceee3..000000000 --- a/changes/bug11635 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (pluggable transports): - - Enable the ExtORPortCookieAuthFile option, to allow changing the - default location of the authentication token for the extended OR Port - as used by sever-side pluggable transports. We had implemented this - option before, but the code to make it settable had been omitted. - Fixes bug 11635; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug11970 b/changes/bug11970 new file mode 100644 index 000000000..896f0cfaf --- /dev/null +++ b/changes/bug11970 @@ -0,0 +1,7 @@ + o Minor bugfixes (linux seccomp sandbox): + - Refactor the getaddrinfo workaround that the seccomp sandbox + uses to avoid calling getaddrinfo() after installing the sandbox + filters. Previously, it preloaded a cache with the IPv4 address + for our hostname, and nothing else. Now, it loads the cache with + every address that it used to initialize the Tor process. Fixes + bug 11970; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug12169_simple b/changes/bug12169_simple new file mode 100644 index 000000000..f9a300775 --- /dev/null +++ b/changes/bug12169_simple @@ -0,0 +1,5 @@ + o Minor bugfixes (performance): + - Avoid using tor_memeq() for checking relay cell integrity. + This removes a possible performance bottleneck. Fixes part of bug + 12169; bugfix on 0.2.1.31. + diff --git a/changes/bug12170 b/changes/bug12170 new file mode 100644 index 000000000..e462e4fa7 --- /dev/null +++ b/changes/bug12170 @@ -0,0 +1,11 @@ + o Major bugfixes (performance): + - Do not recompute whether we have sufficient information to build + circuits every time we make a successful connection. Previously, + we would forget our cached value for this flag every time we + successfully opened a channel (or marked a router as running or not + running for any + other reason), regardless of whether we had + previously believed the router to be running. This forced us to + run a fairly expensive update operation with relatively + high frequency. + Fixes bug 12170; bugfix on 0.1.2.1-alpha. diff --git a/changes/bug12184_diagnostic b/changes/bug12184_diagnostic new file mode 100644 index 000000000..3c783b17d --- /dev/null +++ b/changes/bug12184_diagnostic @@ -0,0 +1,4 @@ + o Minor features (diagnostic): + - Add significant new logging code to attempt to diagnose bug 12184, + where relays seem to run out of available circuit IDs. + diff --git a/changes/bug12191 b/changes/bug12191 new file mode 100644 index 000000000..77589ab31 --- /dev/null +++ b/changes/bug12191 @@ -0,0 +1,7 @@ + o Minor bugfixes: + + - We now drop CREATE cells for already-existent circuit IDs and + for zero-valued circuit IDs, regardless of other factors that + might otherwise have called for DESTROY cells. Fixes bug 12191; + bugfix on 0.0.8pre1. + diff --git a/changes/bug12195 b/changes/bug12195 new file mode 100644 index 000000000..f798129e6 --- /dev/null +++ b/changes/bug12195 @@ -0,0 +1,7 @@ + o Major bugfixes: + - When a circuit accidentally has the same circuit ID for its + forward and reverse direction, correctly detect the direction of + cells using that circuit. Previously, this would have made + roughly one circuit in a million non-functional. Fixes bug + 12195; this is a bugfix on every version of Tor. + diff --git a/changes/bug12227 b/changes/bug12227 new file mode 100644 index 000000000..d8b5d08a5 --- /dev/null +++ b/changes/bug12227 @@ -0,0 +1,5 @@ + o Minor bugfixes: + - Avoid an illegal read from stack when initializing the TLS + module using a version of OpenSSL without all of the ciphers + used by the v2 link handshake. Fixes bug 12227; bugfix on + 0.2.4.8-alpha. Found by "starlight". diff --git a/changes/bug6799 b/changes/bug6799 new file mode 100644 index 000000000..72b6519a2 --- /dev/null +++ b/changes/bug6799 @@ -0,0 +1,20 @@ + o Major features: + + - Increase the base amount of time that a canonical connection + (one that we have made to a known OR) is allowed to stay idle + from 3 minutes to 15 minutes. This leaks less information + about when circuits have closed, and avoids unnecessary overhead + from renegotiating connections. Part of a fix for ticket 6799. + + - Instead of closing connections after they have been idle for a + fixed interval, randomly add up to 50% to each connection's + maximum timeout. This makes it harder to tell when the last + circuit closed by looking at when a connection closes. Part of a + fix for ticket 6799. + + - Base connection idleness tests on the actual time elapsed since + the connection last had circuits, not on the time when we last + added non-padding. This change also makes it harder for an + observer to tell when the last circuit closed by looking at when + a connection closes. Part of a fix for ticket 6799. + Incidentally fixes bug 12023; bugfix on 0.2.5.1-alpha. diff --git a/changes/bug8368 b/changes/bug8368 deleted file mode 100644 index fa3991c3a..000000000 --- a/changes/bug8368 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features: - - Add a systemd service file (tor.service) that can be installed by - Linux distributions that make use of the systemd init daemon. - Fixes bug 8368. diff --git a/changes/geoip6-june2014 b/changes/geoip6-june2014 new file mode 100644 index 000000000..1a33e6fb4 --- /dev/null +++ b/changes/geoip6-june2014 @@ -0,0 +1,2 @@ + o Minor features: + - Update geoip and geoip6 to the June 4 2014 Maxmind GeoLite2 Country database. diff --git a/changes/md_leak_bug b/changes/md_leak_bug deleted file mode 100644 index 26270aacc..000000000 --- a/changes/md_leak_bug +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes (security, OOM) - - Fix a memory leak that could occur if a microdescriptor parse - fails during the tokenizing step. This could enable a memory - exhaustion attack by directory servers. Fixes bug #11649; bugfix - on 0.2.2.6-alpha. diff --git a/changes/more_8387_diagnosis b/changes/more_8387_diagnosis new file mode 100644 index 000000000..68a36a113 --- /dev/null +++ b/changes/more_8387_diagnosis @@ -0,0 +1,4 @@ + o Minor features (diagnostic): + - Improve the diagnostic log message for bug #8387 even further to + try to improve our odds of figuring out why one-hop directory + circuits sometimes do not get closed. diff --git a/changes/not_bug_8093 b/changes/not_bug_8093 new file mode 100644 index 000000000..98b421926 --- /dev/null +++ b/changes/not_bug_8093 @@ -0,0 +1,4 @@ + o Minor bugfixes: + - When rejecting DATA cells for stream_id zero, still count them against + the circuit's deliver window so that we don't get fail to send a + SENDME. Fix for bug 11246; bugfix on 0.2.4.10-alpha. diff --git a/changes/ticket8368 b/changes/ticket8368 deleted file mode 100644 index 206a76654..000000000 --- a/changes/ticket8368 +++ /dev/null @@ -1,5 +0,0 @@ - o Distribution: - - Include a tor.service file in contrib.dist for use with - systemd. Some distributions will be able to use this file unmodified; - others will need to tweak it, or write their own. Patch from - Jamie Nguyen; resolves ticket 8368. diff --git a/changes/ticket8966 b/changes/ticket8966 deleted file mode 100644 index d6967a4e3..000000000 --- a/changes/ticket8966 +++ /dev/null @@ -1,7 +0,0 @@ - o Package cleanup: - - The contrib directory has been sorted and tidy. Before, it was an - unsorted dumping ground for useful and not-so-useful things. Now, - it has been divided based on functionality, and the items which - seemed to be nonfunctional or useless have been removed. Resolves - ticket 8966; based on patches from "rl1987". - |