aboutsummaryrefslogtreecommitdiff
path: root/changes
Commit message (Expand)AuthorAge
* ides has become turtles, and gotten a new IP address•••As per ticket 5569 Sebastian Hahn2012-04-05
* Do not use strcmp() to compare an http authenticator to its expected value•••This fixes a side-channel attack on the (fortunately unused!) BridgePassword option for bridge authorities. Fix for bug 5543; bugfix on 0.2.0.14-alpha. Nick Mathewson2012-04-01
* Safe cookie authentication gets a changes fileNick Mathewson2012-03-26
* Use a given name in the bug5090 message, at its holder's request.Nick Mathewson2012-03-09
* Never choose a bridge as an exit. Bug 5342.Nick Mathewson2012-03-09
* Merge branch 'bug5343' into maint-0.2.2Nick Mathewson2012-03-09
|\
| * Require a threshold of exit nodes before building circuits•••This mitigates an attack proposed by wanoskarnet, in which all of a client's bridges collude to restrict the exit nodes that the client knows about. Fixes bug 5343. Nick Mathewson2012-03-08
* | Oops; credit bug5090 patch to flupzor. estebanm only found the bug.Nick Mathewson2012-03-09
* | Correctly handle broken escape sequences in torrc values•••Previously, malformatted torrc values could crash us. Patch by Esteban Manchado. Fixes bug 5090; fix on 0.2.0.16-alpha. Nick Mathewson2012-03-09
|/
* Fix compile warnings in openbsd mallocSebastian Hahn2012-03-08
* Merge remote-tracking branch 'karsten/geoip-march2012' into maint-0.2.2Nick Mathewson2012-03-08
|\
| * Update to the March 2012 GeoIP database.Karsten Loesing2012-03-08
* | new ip address for maatuskaRoger Dingledine2012-02-29
* | Properly protect paths to sed, sha1sum, openssl•••in Makefile.am, we used it without quoting it, causing build failure if your openssl/sed/sha1sum happened to live in a directory with a space in it (very common on windows) Sebastian Hahn2012-02-10
* | Downgrade "missing a certificate" from notice to info•••It was apparently getting mistaken for a problem, even though it was at notice. Fixes 5067; fix on 0.2.0.10-alpha. Nick Mathewson2012-02-10
* | Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine2012-02-09
|\|
| * Update to the February 2012 GeoIP database.Karsten Loesing2012-02-09
* | Revert "add a "docs" to the manual URI as listed in torrc.sample.in"•••This reverts commit 55e8cae81553678ec77ce6b8fb1bf2d5e483e0aa. The conversation from irc: > weasel: i had intended to leave torrc.sample.in alone in maint-0.2.2, since i don't want to make all your stable users have to deal with a torrc change. but nickm changed it. is it in fact the case that a change in that file means a change in the deb? <weasel> it means you'll prompt every single user who ever touched their torrc <weasel> and they will be asked if they like your new version better than what they have right now <weasel> so it's not great Instead I changed the website to redirect requests for the tor-manual URL listed in maint-0.2.2's torrc.sample.in so the link will still work. Roger Dingledine2012-02-09
* | add a "docs" to the manual URI as listed in torrc.sample.inNick Mathewson2012-02-08
* | Update "ClientOnly" man page entry•••There isn't really any point to messing with it. Resolves ticket 5005. Roger Dingledine2012-02-02
* | Merge remote-tracking branch 'public/bug4533_part2' into maint-0.2.2Nick Mathewson2012-01-18
|\ \
| * | Fix SOCKET_OK test on win64.•••Bugfix on 0.2.2.29-beta; partial fix for 4533; found by wanoskarnet Nick Mathewson2012-01-18
* | | Documentation for GiveGuardFlagTo... optionNick Mathewson2012-01-18
|/ /
* | Fix a trivial log message error in renservice.c•••Fixes bug 4856; bugfix on 0.0.6 This bug was introduced in 79fc5217, back in 2004. Nick Mathewson2012-01-09
* | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson2012-01-05
|\|
| * Add a changes file for bug4822Nick Mathewson2012-01-05
* | Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine2012-01-05
|\|
| * add a changes file for ticket 4825Roger Dingledine2012-01-05
* | Fix spelling in a controlsocket log msg•••Fixes bug 4803. Sebastian Hahn2011-12-30
* | Merge remote-tracking branch 'public/bug4788' into maint-0.2.2Nick Mathewson2011-12-28
|\ \
| * | Authorities reject insecure Tors.•••This patch should make us reject every Tor that was vulnerable to CVE-2011-0427. Additionally, it makes us reject every Tor that couldn't handle RELAY_EARLY cells, which helps with proposal 110 (#4339). Nick Mathewson2011-12-27
* | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson2011-12-28
|\ \ \ | |/ / |/| / | |/
| * Bug 4786 fix: don't convert EARLY to RELAY on v1 connections•••We used to do this as a workaround for older Tors, but now it's never the correct thing to do (especially since anything that didn't understand RELAY_EARLY is now deprecated hard). Nick Mathewson2011-12-28
* | Provide correct timeradd/timersup replacements•••Bug caught and patch provided by Vektor. Fixes bug 4778.t Sebastian Hahn2011-12-25
* | Do not even try to keep going on a socket with socklen==0•••Back in #1240, r1eo linked to information about how this could happen with older Linux kernels in response to nmap. Bugs #4545 and #4547 are about how our approach to trying to deal with this condition was broken and stupid. Thanks to wanoskarnet for reminding us about #1240. This is a fix for the abovementioned bugs, and is a bugfix on 0.1.0.3-rc. Nick Mathewson2011-12-21
* | Merge remote-tracking branch 'sebastian/clang-3.0-fixes_022' into maint-0.2.2Nick Mathewson2011-12-16
|\ \
| * | Build with warnings and clang 3.0•••--enable-gcc-warnings enables two warnings that clang doesn't support, so the build fails. We had hoped clang 3.0 would add those, but it didn't, so let's just always disable those warnings when building with clang. We can still fix it later once they add support Sebastian Hahn2011-12-13
* | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson2011-12-15
|\ \ \ | |/ / |/| / | |/
| * Add a fix for the buf_pullup bug that Vektor reportedNick Mathewson2011-12-15
* | Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine2011-12-08
|\|
| * Update to the December 2011 GeoIP database.Karsten Loesing2011-12-08
* | Don't call tor_tls_set_logged_address till after checking conn->tls•••Fixes bug 4531; partial backport of e27a26d5. Nick Mathewson2011-12-02
* | tor_accept_socket() should take tor_addr_t for listener arg•••Fixes bug 4535; bugfix on 0.2.2.28-beta; found by "troll_un" Nick Mathewson2011-12-02
* | Fix bug 4530; check return val of tor_addr_lookup correctly•••Fix on 0.2.1.5-alpha; reported by troll_un Nick Mathewson2011-12-02
* | Detect tor_addr_to_str failure in tor_dup_addr.•••This avoids a possible strdup of an uninitialized buffer. Fixes 4529; fix on 0.2.1.3-alpha; reported by troll_un. Nick Mathewson2011-11-23
* | Merge remote-tracking branch 'public/bug4230' into maint-0.2.2Nick Mathewson2011-11-23
|\ \
| * | Correct the handling of overflow behavior in smartlist_ensure_capacity•••The old behavior was susceptible to the compiler optimizing out our assertion check, *and* could still overflow size_t on 32-bit systems even when it did work. Nick Mathewson2011-11-09
* | | parameterize bw cutoffs to guarantee Fast and Guard flags•••Now it will be easier for researchers to simulate Tor networks with different values. Resolves ticket 4484. Roger Dingledine2011-11-21
* | | Merge branch 'bug4518' into maint-0.2.2Nick Mathewson2011-11-21
|\ \ \
| * | | Only call cull_wedged_cpuworkers once every 60 seconds.•••The function is over 10 or 20% on some of Moritz's profiles, depending on how you could. Since it's checking for a multi-hour timeout, this is safe to do. Fixes bug 4518. Nick Mathewson2011-11-19
generated by cgit v1.2.3 (git 2.48.1) at 2025-04-12 17:11:05 +0000