aboutsummaryrefslogtreecommitdiff
path: root/changes
Commit message (Collapse)AuthorAge
* Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2014-02-07
|\
| * Survive fedora's openssl in our benchmarksNick Mathewson2014-02-07
| | | | | | | | | | | | | | | | Apparently fedora currently has ECDH but not P224. This isn't a huge deal, since we no longer use OpenSSL's P224 ever (see #9780 and 72c1e5acfe1c6). But we shouldn't have segfaulting benchmarks really. Fixes bug 10835; bugfix on 0.2.4.8-alpha.
* | Merge remote-tracking branch 'public/feature9777_024_squashed'Nick Mathewson2014-02-07
|\ \ | | | | | | | | | | | | Conflicts: src/or/circuitbuild.c
| * | Discard circuit paths on which nobody supports ntorNick Mathewson2014-02-07
| |/ | | | | | | | | | | | | | | | | | | | | Right now this accounts for about 1% of circuits over all, but if you pick a guard that's running 0.2.3, it will be about 6% of the circuits running through that guard. Making sure that every circuit has at least one ntor link means that we're getting plausibly good forward secrecy on every circuit. This implements ticket 9777,
* | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2014-02-07
|\|
| * Attribute bug 9602 to a version.Nick Mathewson2014-02-07
| |
| * NULL out conns on tlschans when freeing in case channel_run_cleanup() is ↵Andrea Shepard2014-02-06
| | | | | | | | late; fixes bug 9602
| * Merge remote-tracking branch 'public/bug9716_024' into maint-0.2.4Nick Mathewson2014-02-06
| |\
| * | changelog for 10793Nick Mathewson2014-02-06
| | |
* | | Merge remote-tracking branch 'public/bug10543_024_v2'Nick Mathewson2014-02-06
|\ \ \
| * | | Make the handling for usable-exit counting handle ExitNodes betterNick Mathewson2014-02-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It's possible to set your ExitNodes to contains only exits that don't have the Exit flag. If you do that, we'll decide that 0 of your exits are working. Instead, in that case we should look at nodes which have (or which might have) exit policies that don't reject everything. Fix for bug 10543; bugfix on 0.2.4.10-alpha.
* | | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2014-02-06
|\ \ \ \ | | |/ / | |/| | | | | | | | | | | | | | | | | | Conflicts: changes/bug10485 src/or/rephist.c src/or/status.c
| * | | Deliver circuit handshake counts as part of the heartbeatNick Mathewson2014-02-06
| |/ / | | | | | | | | | | | | | | | Previously, they went out once an hour, unconditionally. Fixes 10485; bugfix on 0.2.4.17-rc.
* | | Rename sun to s_un in test_addr.cNick Mathewson2014-02-06
| | | | | | | | | | | | | | | | | | Apparently the compiler on solaris 9 didn't like "sun" as an identifier. Fix for bug 10565; bugfix on 0.2.5.1-alpha.
* | | TransProxyType replaces TransTPROXY optionNick Mathewson2014-02-03
| | | | | | | | | | | | | | | | | | | | | I'm making this change now since ipfw will want its own option too, and proliferating options here isn't sensible. (See #10582 and #10267)
* | | 10365: Close connections if the VERSIONS cell has an odd length.rl19872014-02-03
| | | | | | | | | | | | Fixes issue 10365.
* | | Merge remote-tracking branch 'houqp/hs_control'Nick Mathewson2014-02-03
|\ \ \
| * | | add change log for hs_desc async eventQingping Hou2014-01-29
| | | |
* | | | Merge remote-tracking branch 'public/bug10758'Nick Mathewson2014-02-03
|\ \ \ \
| * | | | Rip out all of the v2 directory code.Nick Mathewson2014-01-29
| |/ / / | | | | | | | | | | | | | | | | | | | | The remaining vestige is that we continue to publish the V2dir flag, and that, for the controller, we continue to emit v2 directory formats when requested.
* | | | changelog for 10793Nick Mathewson2014-02-03
| | | |
* | | | Add support for TPROXY via new TransTPRoxy optionNick Mathewson2014-01-31
|/ / / | | | | | | | | | Based on patch from "thomo" at #10582.
* | | Incorporate changes from 0.2.4.20 into 0.2.5.2 changelog-in-progressNick Mathewson2014-01-20
| | |
* | | Move all merged-in-0.2.4.18-rc items into 0.2.5.2-alpha changelog section.Nick Mathewson2014-01-20
| | |
* | | Fix some seccomp2 issuesNick Mathewson2014-01-06
| | | | | | | | | | | | | | | Fix for #10563. This is a compatibility issue with libseccomp-2.1. I guess you could call it a bugfix on 0.2.5.1?
* | | Add explicit check for 0-length extend2 cellsNick Mathewson2014-01-03
| | | | | | | | | | | | | | | | | | This is harmless in the Tor of today, but important for correctness. Fixes bug 10536; bugfix on 0.2.4.8-alpha. Reported by "cypherpunks".
* | | Merge remote-tracking branch 'public/bug10485'Nick Mathewson2013-12-24
|\ \ \
| * | | Move onion-type stats message into heartbeatNick Mathewson2013-12-24
| |/ / | | | | | | | | | Fix for 10485. Fix on 0.2.4.17-alpha.
* | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-23
|\| |
| * | Clarify DirPort multiplicityNick Mathewson2013-12-23
| | | | | | | | | | | | Fix for #10470 as suggested by arma
* | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-22
|\| |
| * | Fix automapping to ipv6Nick Mathewson2013-12-22
| | | | | | | | | | | | Bugfix on 0.2.4.7-alpha; fixes bug 10465.
* | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-21
|\| |
| * | Fix a logic error in circuit_stream_is_being_handled.Nick Mathewson2013-12-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When I introduced the unusable_for_new_circuits flag in 62fb209d837f3f551, I had a spurious ! in the circuit_stream_is_being_handled loop. This made us decide that non-unusable circuits (that is, usable ones) were the ones to avoid, and caused it to launch a bunch of extra circuits. Fixes bug 10456; bugfix on 0.2.4.12-alpha.
* | | Merge remote-tracking branch 'linus/bug10324'Nick Mathewson2013-12-20
|\ \ \
| * | | Make tor-gencert create 2048 bit signing keys.Linus Nordberg2013-12-12
| | | |
* | | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-18
|\ \ \ \ | | |/ / | |/| | | | | | | | | | Conflicts: src/common/crypto.c
| * | | Never allow OpenSSL engines to replace the RAND_SSLeay methodNick Mathewson2013-12-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes bug 10402, where the rdrand engine would use the rdrand instruction, not as an additional entropy source, but as a replacement for the entire userspace PRNG. That's obviously stupid: even if you don't think that RDRAND is a likely security risk, the right response to an alleged new alleged entropy source is never to throw away all previously used entropy sources. Thanks to coderman and rl1987 for diagnosing and tracking this down.
* | | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-17
|\| | |
| * | | Merge branch 'bug10423' into maint-0.2.4Nick Mathewson2013-12-17
| |\ \ \
| | * | | Avoid double-free on failure to dump_descriptor() a cached mdNick Mathewson2013-12-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a fix for 10423, which was introducd in caa0d15c in 0.2.4.13-alpha. Spotted by bobnomnom.
* | | | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-17
|\| | | | | |_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | Conflicts: src/or/microdesc.c Conflict because one change was on line adjacent to line where 01206893 got fixed.
| * | | Merge remote-tracking branch 'public/bug10409_023' into maint-0.2.4Nick Mathewson2013-12-17
| |\ \ \ | | |/ / | |/| |
| | * | Avoid free()ing from an mmap on corrupted microdesc cacheNick Mathewson2013-12-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The 'body' field of a microdesc_t holds a strdup()'d value if the microdesc's saved_location field is SAVED_IN_JOURNAL or SAVED_NOWHERE, and holds a pointer to the middle of an mmap if the microdesc is SAVED_IN_CACHE. But we weren't setting that field until a while after we parsed the microdescriptor, which left an interval where microdesc_free() would try to free() the middle of the mmap(). This patch also includes a regression test. This is a fix for #10409; bugfix on 0.2.2.6-alpha.
* | | | Fix get_configured_bridge_by_addr_port_digest(.,.,NULL)rl19872013-12-09
| | | | | | | | | | | | | | | | | | | | | | | | The old behavior was that NULL matched only bridges without known identities; the correct behavior is that NULL should match all bridges (assuming that their addr:port matches).
* | | | Merge remote-tracking branch 'public/bug10131_024'Nick Mathewson2013-12-09
|\ \ \ \
| * | | | Remove a check in channeltls.c that could never fail.Nick Mathewson2013-12-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We were checking whether a 8-bit length field had overflowed a 503-byte buffer. Unless somebody has found a way to store "504" in a single byte, it seems unlikely. Fix for 10313 and 9980. Based on a pach by Jared L Wong. First found by David Fifield with STACK.
* | | | | Set CREATE_NO_WINDOW in tor_spawn_background.David Fifield2013-12-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This flag prevents the creation of a console window popup on Windows. We need it for pluggable transport executables--otherwise you get blank console windows when you launch the 3.x browser bundle with transports enabled. http://msdn.microsoft.com/en-us/library/ms684863.aspx#CREATE_NO_WINDOW The browser bundles that used Vidalia used to set this flag when launching tor itself; it was apparently inherited by the pluggable transports launched by tor. In the 3.x bundles, tor is launched by some JavaScript code, which doesn't have the ability to set CREATE_NO_WINDOW. tor itself is now being compiled with the -mwindows option, so that it is a GUI application, not a console application, and doesn't show a console window in any case. This workaround doesn't work for pluggable transports, because they need to be able to write control messages to stdout. https://trac.torproject.org/projects/tor/ticket/9444#comment:30
* | | | | Restore ability to build with V2_HANDSHAKE_SERVERNick Mathewson2013-11-25
| | | | | | | | | | | | | | | | | | | | Fixes bug 4677; bugfix on 0.2.3.2-alpha. Fix by "piet".
* | | | | Merge remote-tracking branch 'sysrqb/bug9859_5'Nick Mathewson2013-11-20
|\ \ \ \ \