|
@@ -22,7 +22,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
o Major bugfixes (security, pointers):
|
|
o Major bugfixes (security, pointers):
|
|
|
- Avoid a difficult-to-trigger heap corruption attack when extending
|
|
- Avoid a difficult-to-trigger heap corruption attack when extending
|
|
|
a smartlist to contain over 16GB of pointers. Fixes bug 18162;
|
|
a smartlist to contain over 16GB of pointers. Fixes bug 18162;
|
|
|
- bugfix on Tor 0.1.1.11-alpha, which fixed a related bug
|
|
|
|
|
|
|
+ bugfix on 0.1.1.11-alpha, which fixed a related bug
|
|
|
incompletely. Reported by Guido Vranken.
|
|
incompletely. Reported by Guido Vranken.
|
|
|
|
|
|
|
|
o Major bugfixes (bridges, pluggable transports):
|
|
o Major bugfixes (bridges, pluggable transports):
|
|
@@ -37,13 +37,15 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
use of _FORTIFY_SOURCE would conflict with clang's address
|
|
use of _FORTIFY_SOURCE would conflict with clang's address
|
|
|
sanitizer. Fixes bug 14821; bugfix on 0.2.5.4-alpha.
|
|
sanitizer. Fixes bug 14821; bugfix on 0.2.5.4-alpha.
|
|
|
|
|
|
|
|
- o Major bugfixes (crash on shutdown):
|
|
|
|
|
|
|
+ o Major bugfixes (crash on startup):
|
|
|
- Fix a segfault during startup: If a Unix domain socket was
|
|
- Fix a segfault during startup: If a Unix domain socket was
|
|
|
configured as listener (such as a ControlSocket or a SocksPort
|
|
configured as listener (such as a ControlSocket or a SocksPort
|
|
|
"unix:" socket), and tor was started as root but not configured to
|
|
"unix:" socket), and tor was started as root but not configured to
|
|
|
switch to another user, tor would segfault while trying to string
|
|
switch to another user, tor would segfault while trying to string
|
|
|
compare a NULL value. Fixes bug 18261; bugfix on 0.2.8.1-alpha.
|
|
compare a NULL value. Fixes bug 18261; bugfix on 0.2.8.1-alpha.
|
|
|
Patch by weasel.
|
|
Patch by weasel.
|
|
|
|
|
+
|
|
|
|
|
+ o Major bugfixes (crash on shutdown):
|
|
|
- Correctly handle detaching circuits from muxes when shutting down.
|
|
- Correctly handle detaching circuits from muxes when shutting down.
|
|
|
Fixes bug 18116; bugfix on 0.2.8.1-alpha.
|
|
Fixes bug 18116; bugfix on 0.2.8.1-alpha.
|
|
|
- Fix an assert-on-exit bug related to counting memory usage in
|
|
- Fix an assert-on-exit bug related to counting memory usage in
|
|
@@ -60,7 +62,8 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
patch by teor.
|
|
patch by teor.
|
|
|
|
|
|
|
|
o Major bugfixes (voting):
|
|
o Major bugfixes (voting):
|
|
|
- - Actually enable Ed25519-based directory collation. Previously, the
|
|
|
|
|
|
|
+ - Actually enable support for authorities to match routers by their
|
|
|
|
|
+ Ed25519 identities. Previously, the
|
|
|
code had been written, but some debugging code that had
|
|
code had been written, but some debugging code that had
|
|
|
accidentally been left in the codebase made it stay turned off.
|
|
accidentally been left in the codebase made it stay turned off.
|
|
|
Fixes bug 17702; bugfix on 0.2.7.2-alpha.
|
|
Fixes bug 17702; bugfix on 0.2.7.2-alpha.
|
|
@@ -87,7 +90,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
|
|
|
|
|
o Minor features (build):
|
|
o Minor features (build):
|
|
|
- Detect systems with FreeBSD-derived kernels (such as GNU/kFreeBSD)
|
|
- Detect systems with FreeBSD-derived kernels (such as GNU/kFreeBSD)
|
|
|
- as having possible IPfW support. Closes ticket 18448. Patch from
|
|
|
|
|
|
|
+ as having possible IPFW support. Closes ticket 18448. Patch from
|
|
|
Steven Chamberlain.
|
|
Steven Chamberlain.
|
|
|
|
|
|
|
|
o Minor features (code hardening):
|
|
o Minor features (code hardening):
|
|
@@ -96,10 +99,6 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
terminate. Part of ticket 17852. Patch from 'jsturgix'. Found
|
|
terminate. Part of ticket 17852. Patch from 'jsturgix'. Found
|
|
|
with Flawfinder.
|
|
with Flawfinder.
|
|
|
|
|
|
|
|
- o Minor features (compilation):
|
|
|
|
|
- - Note our minimum required autoconf/automake versions in the
|
|
|
|
|
- appropriate locations. Closes ticket 17732.
|
|
|
|
|
-
|
|
|
|
|
o Minor features (crypto):
|
|
o Minor features (crypto):
|
|
|
- Validate the hard-coded Diffie-Hellman parameters and ensure that
|
|
- Validate the hard-coded Diffie-Hellman parameters and ensure that
|
|
|
p is a safe prime, and g is a suitable generator. Closes
|
|
p is a safe prime, and g is a suitable generator. Closes
|
|
@@ -148,12 +147,12 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
- Refresh an exit relay's exit policy when interface addresses
|
|
- Refresh an exit relay's exit policy when interface addresses
|
|
|
change. Previously, tor only refreshed the exit policy when the
|
|
change. Previously, tor only refreshed the exit policy when the
|
|
|
configured external address changed. Fixes bug 18208; bugfix on
|
|
configured external address changed. Fixes bug 18208; bugfix on
|
|
|
- tor 0.2.7.3. Patch by "teor".
|
|
|
|
|
|
|
+ 0.2.7.3-rc. Patch by "teor".
|
|
|
|
|
|
|
|
o Minor bugfixes (security, hidden services):
|
|
o Minor bugfixes (security, hidden services):
|
|
|
- Prevent hidden services connecting to client-supplied rendezvous
|
|
- Prevent hidden services connecting to client-supplied rendezvous
|
|
|
addresses that are reserved as internal or multicast. Fixes bug
|
|
addresses that are reserved as internal or multicast. Fixes bug
|
|
|
- 8976; bugfix on b7c172c9e in tor-0.2.3.21. Patch by "dgoulet"
|
|
|
|
|
|
|
+ 8976; bugfix on 0.2.3.21-rc. Patch by "dgoulet"
|
|
|
and "teor".
|
|
and "teor".
|
|
|
|
|
|
|
|
o Minor bugfixes (build):
|
|
o Minor bugfixes (build):
|
|
@@ -164,7 +163,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
exit(0) in TOR_SEARCH_LIBRARY. Fixes bug 18625; bugfix on
|
|
exit(0) in TOR_SEARCH_LIBRARY. Fixes bug 18625; bugfix on
|
|
|
0.2.0.1-alpha. Patch from "cypherpunks".
|
|
0.2.0.1-alpha. Patch from "cypherpunks".
|
|
|
- Silence spurious clang-scan warnings in the ed25519_donna code by
|
|
- Silence spurious clang-scan warnings in the ed25519_donna code by
|
|
|
- explicitly initialising some objects. Fixes bug 18384; bugfix on
|
|
|
|
|
|
|
+ explicitly initializing some objects. Fixes bug 18384; bugfix on
|
|
|
0f3eeca9 in 0.2.7.2-alpha. Patch by "teor".
|
|
0f3eeca9 in 0.2.7.2-alpha. Patch by "teor".
|
|
|
|
|
|
|
|
o Minor bugfixes (client, bootstrap):
|
|
o Minor bugfixes (client, bootstrap):
|
|
@@ -215,7 +214,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
all current directory connections asking for the hidden service.
|
|
all current directory connections asking for the hidden service.
|
|
|
The solution here is to not close the connections if we have
|
|
The solution here is to not close the connections if we have
|
|
|
pending directory fetches. Fixes bug 15937; bugfix
|
|
pending directory fetches. Fixes bug 15937; bugfix
|
|
|
- on tor-0.2.7.1-alpha.
|
|
|
|
|
|
|
+ on 0.2.7.1-alpha.
|
|
|
|
|
|
|
|
o Minor bugfixes (hidden service, control port):
|
|
o Minor bugfixes (hidden service, control port):
|
|
|
- Add the onion address to the HS_DESC event for the UPLOADED action
|
|
- Add the onion address to the HS_DESC event for the UPLOADED action
|
|
@@ -230,7 +229,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
- Avoid a 10-second delay when starting as a client with "Sandbox 1"
|
|
- Avoid a 10-second delay when starting as a client with "Sandbox 1"
|
|
|
enabled and no DNS resolvers configured. This should help TAILS
|
|
enabled and no DNS resolvers configured. This should help TAILS
|
|
|
start up faster. Fixes bug 18548; bugfix on 0.2.5.1-alpha.
|
|
start up faster. Fixes bug 18548; bugfix on 0.2.5.1-alpha.
|
|
|
- - Fix the sandbox's interoprability with unix domain sockets under
|
|
|
|
|
|
|
+ - Fix the sandbox's interoperability with unix domain sockets under
|
|
|
setuid. Fixes bug 18253; bugfix on 0.2.8.1-alpha.
|
|
setuid. Fixes bug 18253; bugfix on 0.2.8.1-alpha.
|
|
|
- Allow the setrlimit syscall, and the prlimit and prlimit64
|
|
- Allow the setrlimit syscall, and the prlimit and prlimit64
|
|
|
syscalls, which some libc implementations use under the hood.
|
|
syscalls, which some libc implementations use under the hood.
|
|
@@ -240,7 +239,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
- When logging information about an unparsable networkstatus vote or
|
|
- When logging information about an unparsable networkstatus vote or
|
|
|
consensus, do not say "vote" when we mean consensus. Fixes bug
|
|
consensus, do not say "vote" when we mean consensus. Fixes bug
|
|
|
18368; bugfix on 0.2.0.8-alpha.
|
|
18368; bugfix on 0.2.0.8-alpha.
|
|
|
- - Scrub service in from "unrecognized service ID" log messages.
|
|
|
|
|
|
|
+ - Scrub service name in "unrecognized service ID" log messages.
|
|
|
Fixes bug 18600; bugfix on 0.2.4.11-alpha.
|
|
Fixes bug 18600; bugfix on 0.2.4.11-alpha.
|
|
|
- Downgrade logs and backtraces about IP versions to info-level.
|
|
- Downgrade logs and backtraces about IP versions to info-level.
|
|
|
Only log backtraces once each time tor runs. Assists in diagnosing
|
|
Only log backtraces once each time tor runs. Assists in diagnosing
|
|
@@ -250,10 +249,10 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
o Minor bugfixes (memory safety):
|
|
o Minor bugfixes (memory safety):
|
|
|
- Avoid freeing an uninitialized pointer when opening a socket fails
|
|
- Avoid freeing an uninitialized pointer when opening a socket fails
|
|
|
in get_interface_addresses_ioctl. Fixes bug 18454; bugfix on
|
|
in get_interface_addresses_ioctl. Fixes bug 18454; bugfix on
|
|
|
- 9f06ec0c in tor-0.2.3.11-alpha. Reported by "toralf" and
|
|
|
|
|
|
|
+ 0.2.3.11-alpha. Reported by "toralf" and
|
|
|
"cypherpunks", patch by "teor".
|
|
"cypherpunks", patch by "teor".
|
|
|
- Correctly duplicate addresses in get_interface_address6_list.
|
|
- Correctly duplicate addresses in get_interface_address6_list.
|
|
|
- Fixes bug 18454; bugfix on 110765f5 in tor-0.2.8.1-alpha. Reported
|
|
|
|
|
|
|
+ Fixes bug 18454; bugfix on 0.2.8.1-alpha. Reported
|
|
|
by "toralf", patch by "cypherpunks".
|
|
by "toralf", patch by "cypherpunks".
|
|
|
- Fix a memory leak in tor-gencert. Fixes part of bug 18672; bugfix
|
|
- Fix a memory leak in tor-gencert. Fixes part of bug 18672; bugfix
|
|
|
on 0.2.0.1-alpha.
|
|
on 0.2.0.1-alpha.
|
|
@@ -262,7 +261,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28
|
|
|
|
|
|
|
|
o Minor bugfixes (private directory):
|
|
o Minor bugfixes (private directory):
|
|
|
- Prevent a race condition when creating private directories. Fixes
|
|
- Prevent a race condition when creating private directories. Fixes
|
|
|
- part of bug 17852; bugfix on 0.2pre13. Part of ticket 17852. Patch
|
|
|
|
|
|
|
+ part of bug 17852; bugfix on 0.0.2pre13. Part of ticket 17852. Patch
|
|
|
from 'jsturgix'. Found with Flawfinder.
|
|
from 'jsturgix'. Found with Flawfinder.
|
|
|
|
|
|
|
|
o Minor bugfixes (test networks, IPv6):
|
|
o Minor bugfixes (test networks, IPv6):
|
Nick Mathewson