aboutsummaryrefslogtreecommitdiff
path: root/changes
Commit message (Collapse)AuthorAge
...
| * | | | | | Add changes file for bug11476Andrea Shepard2014-05-16
| | | | | | |
* | | | | | | sandbox: permit gettid, sched_getaffinityNick Mathewson2014-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | These are needed under some circumstances if we are running with expensive-hardening and sandbox at the same time. fixes 11477, bugfix on 0.2.5.4-alpha (where we introduced expensive-hardening)
* | | | | | | sandbox: support logfile rotationNick Mathewson2014-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes bug 12032; bugfix on 0.2.5.1-alpha
* | | | | | | sandbox: tolerate reloading with DirPortFrontPage setNick Mathewson2014-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also, don't tolerate changing DirPortFrontPage. Fixes bug 12028; bugfix on 0.2.5.1-alpha.
* | | | | | | sandbox: Disallow options which would make us call exec()Nick Mathewson2014-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | None of the things we might exec() can possibly run under the sanbox, so rather than crash later, we have to refuse to accept the configuration nice and early. The longer-term solution is to have an exec() helper, but wow is that risky. fixes 12043; bugfix on 0.2.5.1-alpha
* | | | | | | sandbox: Permit access to stats/dirreq-statsNick Mathewson2014-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This prevents a crash when rotating logs with dirreq-stats enabled fixes 12035; bugfix on 0.2.5.1-alpha.
* | | | | | | Sandbox: allow access to stats/bridge-statsNick Mathewson2014-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix for 12041; bugfix on 0.2.5.1-alpha.
* | | | | | | Merge remote-tracking branch 'public/bug11469_024'Nick Mathewson2014-05-15
|\ \ \ \ \ \ \
| * | | | | | | Use DirPort for uploading descriptors.Nick Mathewson2014-05-14
| | |/ / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When we converted the horrible set of options that previously controlled "use ORPort or DirPort? Anonymously or Non-anonymouly?" to a single 'indirection' argument, we missed directory_post_to_dirservers. The problematic code was introduced in 5cbeb6080, which went into 0.2.4.3-alpha. This is a fix for bug 11469.
| * | | | | | Merge commit 'bb9b4c37f8e7f5cf78918f382e90d8b11ff42551' into maint-0.2.4Nick Mathewson2014-05-07
| |\ \ \ \ \ \
| * \ \ \ \ \ \ Merge remote-tracking branch 'public/ticket11528_024' into maint-0.2.4Nick Mathewson2014-05-07
| |\ \ \ \ \ \ \
| * \ \ \ \ \ \ \ Merge remote-tracking branch 'public/bug11513_024' into maint-0.2.4Nick Mathewson2014-05-07
| |\ \ \ \ \ \ \ \
| * \ \ \ \ \ \ \ \ Merge remote-tracking branch 'public/update_ciphers_ff28' into maint-0.2.4Nick Mathewson2014-05-07
| |\ \ \ \ \ \ \ \ \
| * \ \ \ \ \ \ \ \ \ Merge remote-tracking branch 'origin/maint-0.2.3' into maint-0.2.4Nick Mathewson2014-05-01
| |\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: src/or/microdesc.c
| | * | | | | | | | | | Downgrade bug 7164 warning to INFONick Mathewson2014-05-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The 0.2.5.x warning is the one that might help us track this down; the warnings in stable are just annoying users over and over and over.
* | | | | | | | | | | | Use tor_getpw{nam,uid} wrappers to fix bug 11946Nick Mathewson2014-05-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When running with User set, we frequently try to look up our information in the user database (e.g., /etc/passwd). The seccomp2 sandbox setup doesn't let us open /etc/passwd, and probably shouldn't. To fix this, we have a pair of wrappers for getpwnam and getpwuid. When a real call to getpwnam or getpwuid fails, they fall back to a cached value, if the uid/gid matches. (Granting access to /etc/passwd isn't possible with the way we handle opening files through the sandbox. It's not desirable either.)
* | | | | | | | | | | | Merge branch 'bug9781_v2'Nick Mathewson2014-05-12
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | Log an error reply from tor-fw-helper correctly.Nick Mathewson2014-05-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix for bug 9781; bugfix on cd05f35d2cdf50 in 0.2.4.2-alpha.
* | | | | | | | | | | | | changes file for gisle vanem's MSVC fixNick Mathewson2014-05-12
| | | | | | | | | | | | |
* | | | | | | | | | | | | Quench clang's complaints with -Wshorten-64-to-32 when time_t is not long.dana koch2014-05-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | On OpenBSD 5.4, time_t is a 32-bit integer. These instances contain implicit treatment of long and time_t as comparable types, so explicitly cast to time_t.
* | | | | | | | | | | | | Merge remote-tracking branch 'public/bug11648'Nick Mathewson2014-05-08
|\ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | changes file for 11648Nick Mathewson2014-05-08
| |/ / / / / / / / / / / /
* | | | | | | | | | | | | Return success when get_total_system_memory() succeeds.Nick Mathewson2014-05-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes bug 11805; bugfix on 0.2.5.4-alpha.
* | | | | | | | | | | | | Merge remote-tracking branch 'public/bug11737_diagnostic'Nick Mathewson2014-05-07
|\ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | Check HT_REP_IS_BAD_() when giving a bug-7164 warning.Nick Mathewson2014-05-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This may let us know if we're hitting 7164 because of an hte_hash-corruption situation proposed by "cypherpunks" in bug 11737.
* | | | | | | | | | | | | | Improve bug11743 message a bit.Nick Mathewson2014-05-07
| | | | | | | | | | | | | |
* | | | | | | | | | | | | | Merge remote-tracking branch 'public/bug8387_diagnostic'Nick Mathewson2014-05-07
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | |_|/ / / / / / / / / / / / |/| | | | | | | | | | | | |
| * | | | | | | | | | | | | Log info on ancient one-hop circuits in heartbeatNick Mathewson2014-04-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is an attempt to diagnose 8387.
* | | | | | | | | | | | | | Merge remote-tracking branch 'public/bug11750'Nick Mathewson2014-05-06
|\ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | Use siphash on channel/circuit-id map tooNick Mathewson2014-05-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes ticket 11750.
* | | | | | | | | | | | | | | Merge branch 'bug11743_option_b'Nick Mathewson2014-05-06
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | | changes file for bug11743Nick Mathewson2014-05-06
| | | | | | | | | | | | | | | |
* | | | | | | | | | | | | | | | Merge remote-tracking branch 'karsten/bug11742'Nick Mathewson2014-05-06
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | |_|_|_|/ / / / / / / / / / / / |/| | | | | | | | | | | | | | |
| * | | | | | | | | | | | | | | Remove /tor/dbg-stability.txt URL.Karsten Loesing2014-05-05
| | |_|_|_|_|_|_|_|_|_|_|_|_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The /tor/dbg-stability.txt URL was meant to help debug WFU and MTBF calculations, but nobody was using it. Fixes #11742.
* | | | | | | | | | | | | | | Fix compilation with DEBUG_DNS_CACHENick Mathewson2014-05-06
| |_|/ / / / / / / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Reported by cypherpunks. Fix for #11761; bugfix on 0.2.3.13-alpha where we made ht.h stop using _identifiers.
* | | | | | | | | | | | | | Fix cross-compiling when 128-bit math compiles but won't linkNick Mathewson2014-05-05
| |/ / / / / / / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Apparently, there exist cross-compiling environments for arm7 where you can compile a 64x64->128 multiply, but not link it. Fixes bug 11729; bugfix on 0.2.4.8-alpha. Patch from 'conradev'.
* | | | | | | | | | | | | Don't start sandbox except for CMD_RUN_TORNick Mathewson2014-05-05
|/ / / / / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This was crashing on --verify-config in the debian startup script, if you had sandboxing enabled. Fixes 11609; fix on 0.2.5.1-alpha.
* | | | | | | | | | | | Merge remote-tracking branch 'public/bug9635'Nick Mathewson2014-05-01
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | Give specific warnings when client-side onionskin handshakes failNick Mathewson2014-03-27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix for bug9635.
* | | | | | | | | | | | | Merge remote-tracking branch 'public/bug11233_diagnose'Nick Mathewson2014-05-01
|\ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | Better log message when writing a CR in text mode on windowsNick Mathewson2014-03-27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Help to diagnose #11233
* | | | | | | | | | | | | | Merge branch 'bug11654_squashed'Nick Mathewson2014-05-01
|\ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | Fix a misuse of strlcpy() introduced by the #11156 patch.George Kadianakis2014-05-01
| | |_|_|_|_|_|_|_|_|_|_|_|/ | |/| | | | | | | | | | | |
* | | | | | | | | | | | | | Merge remote-tracking branch 'public/valgrind_tests'Nick Mathewson2014-05-01
|\ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | Changes file for valgrind fixesNick Mathewson2014-04-29
| | | | | | | | | | | | | | |
* | | | | | | | | | | | | | | Merge remote-tracking branch 'public/bug4345a_024'Nick Mathewson2014-05-01
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | | More hacking around spawn_func issuesNick Mathewson2014-02-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This time, we use a pthread_attr to make sure that if pthread_create succeeds, the thread is successfully detached. This probably isn't the big thing going on with 4345, since it'd be a bit weird for pthread_detach to be failing. But it's worth getting it right.
| * | | | | | | | | | | | | | | Check spawn_func() return valueNick Mathewson2014-01-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we don't, we can wind up with a wedged cpuworker, and write to it for ages and ages. Found by skruffy. This was a bug in 2dda97e8fd898757, a.k.a. svn revision 402. It's been there since we have been using cpuworkers.
* | | | | | | | | | | | | | | | Merge remote-tracking branch 'public/bug10849_025'Nick Mathewson2014-05-01
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: src/or/config.c
| * | | | | | | | | | | | | | | | Remove TunnelDirConns and PreferTunnelledDirConnsNick Mathewson2014-02-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | These options were added back in 0.1.2.5-alpha, but no longer make any sense now that all directories support tunneled connections and BEGIN_DIR cells. These options were on by default; now they are always-on. This is a fix for 10849, where TunnelDirConns 0 would break hidden services -- and that bug arrived, I think, in 0.2.0.10-alpha.
generated by cgit v1.2.3 (git 2.25.4) at 2024-05-18 11:07:53 +0000