|
@@ -1,40 +1,57 @@
|
|
|
-Changes in version 0.2.2.9-alpha - 2010-??-??
|
|
|
+Changes in version 0.2.2.9-alpha - 2010-02-22
|
|
|
+ o Directory authority changes:
|
|
|
+ - Change IP address for dannenberg (v3 directory authority), and
|
|
|
+ remove moria2 (obsolete v1, v2 directory authority and v0 hidden
|
|
|
+ service directory authority) from the list.
|
|
|
+
|
|
|
o Major bugfixes:
|
|
|
+ - Make Tor work again on the latest OS X: when deciding whether to
|
|
|
+ use strange flags to turn TLS renegotiation on, detect the OpenSSL
|
|
|
+ version at run-time, not compile time. We need to do this because
|
|
|
+ Apple doesn't update its dev-tools headers when it updates its
|
|
|
+ libraries in a security patch.
|
|
|
+ - Fix a potential buffer overflow in lookup_last_hid_serv_request()
|
|
|
+ that could happen on 32-bit platforms with 64-bit time_t. Also fix
|
|
|
+ a memory leak when requesting a hidden service descriptor we've
|
|
|
+ requested before. Fixes bug 1242, bugfix on 0.2.0.18-alpha. Found
|
|
|
+ by aakova.
|
|
|
- Authorities could be tricked into giving out the Exit flag to relays
|
|
|
- that didn't allow exiting to any ports. This could screw with load
|
|
|
- balancing and stats. Bugfix on 0.1.1.6-alpha, fixes bug 1238. Bug
|
|
|
- discovered by Martin Kowalczyk.
|
|
|
+ that didn't allow exiting to any ports. This bug could screw
|
|
|
+ with load balancing and stats. Bugfix on 0.1.1.6-alpha; fixes bug
|
|
|
+ 1238. Bug discovered by Martin Kowalczyk.
|
|
|
|
|
|
o Minor bugfixes:
|
|
|
- - When deciding whether to use strange flags to turn TLS renegotiation
|
|
|
- on, detect the OpenSSL version at run-time, not compile time. We
|
|
|
- need to do this because Apple doesn't update its dev-tools headers
|
|
|
- when it updates its libraries in a security patch.
|
|
|
- Fix static compilation by listing the openssl libraries in the right
|
|
|
- order. Fixes bug 1237.
|
|
|
- - Actually reject .exit hostnames when we're supposed to be rejecting
|
|
|
- them; do not pass them on to the exit server. Bugfix on 0.2.2.7-alpha;
|
|
|
- found and diagnosed by Scott Bennett and Downie on or-talk.
|
|
|
- - Don't spam the controller with log messages when we have no file
|
|
|
- descriptors available. Rate-limiting for log messages was already
|
|
|
- implemented in the past.
|
|
|
- - Avoid a bogus overlapped memcpy in tor_addr_copy(). Found by
|
|
|
+ order. Bugfix on Tor 0.2.2.8-alpha; fixes bug 1237.
|
|
|
+ - Resume handling .exit hostnames in a special way: originally we
|
|
|
+ stripped the .exit part and used the requested exit relay. In
|
|
|
+ 0.2.2.1-alpha we stopped treating them in any special way, meaning
|
|
|
+ if you use a .exit address then Tor will pass it on to the exit
|
|
|
+ relay. Now we reject the .exit stream outright, since that behavior
|
|
|
+ might be more expected by the user. Found and diagnosed by Scott
|
|
|
+ Bennett and Downie on or-talk.
|
|
|
+ - Don't spam the controller with events when we have no file
|
|
|
+ descriptors available. Bugfix on 0.2.1.5-alpha. (Rate-limiting
|
|
|
+ for log messages was already solved from bug 748.)
|
|
|
+ - Avoid a bogus overlapped memcpy in tor_addr_copy(). Reported by
|
|
|
"memcpyfail".
|
|
|
- Make the DNSPort option work with libevent 2.x. Don't alter the
|
|
|
behaviour for libevent 1.x. Fixes bug 1143. Found by SwissTorExit.
|
|
|
- - Emit an GUARD DROPPED event for a case we missed.
|
|
|
- - Make more fields in the controller protocol case-insensitive as
|
|
|
- documented in control-spec.txt.
|
|
|
+ - Emit a GUARD DROPPED controller event for a case we missed.
|
|
|
+ - Make more fields in the controller protocol case-insensitive, since
|
|
|
+ control-spec.txt said they were.
|
|
|
+ - Refactor resolve_my_address() to not use gethostbyname() anymore.
|
|
|
+ Fixes bug 1244; bugfix on 0.0.2pre25. Reported by Mike Mestnik.
|
|
|
|
|
|
o Code simplifications and refactoring:
|
|
|
- - Generate our manpage and HTML documentation using Asciidoc. This
|
|
|
- should make it easier to maintain the documentation, and produce
|
|
|
- nicer HTML.
|
|
|
- - Remove the --enable-iphone option. According to reports from
|
|
|
- Marco Bonetti, Tor builds fine without any special tweaking on
|
|
|
- recent iPhone SDK versions.
|
|
|
+ - Generate our manpage and HTML documentation using Asciidoc. This
|
|
|
+ change should make it easier to maintain the documentation, and
|
|
|
+ produce nicer HTML.
|
|
|
+ - Remove the --enable-iphone option. According to reports from Marco
|
|
|
+ Bonetti, Tor builds fine without any special tweaking on recent
|
|
|
+ iPhone SDK versions.
|
|
|
- Removed some unnecessary files from the source distribution. The
|
|
|
- AUTHORS file had its content merged into the people page on the
|
|
|
+ AUTHORS file has now been merged into the people page on the
|
|
|
website. The roadmaps and design doc can now be found in the
|
|
|
projects directory in svn.
|
|
|
- Enabled various circuit build timeout constants to be controlled
|
|
@@ -44,18 +61,14 @@ Changes in version 0.2.2.9-alpha - 2010-??-??
|
|
|
|
|
|
o Minor features:
|
|
|
- The 'EXTENDCIRCUIT' control port command can now be used with
|
|
|
- a circ id of 0 and no path. This will cause Tor to build a new
|
|
|
- 'fast' general purpose circuit using its own path selection
|
|
|
+ a circ id of 0 and no path. This feature will cause Tor to build
|
|
|
+ a new 'fast' general purpose circuit using its own path selection
|
|
|
algorithms.
|
|
|
- - Added a BUILDTIMEOUT_SET control port event to describe changes
|
|
|
+ - Added a BUILDTIMEOUT_SET controller event to describe changes
|
|
|
to the circuit build timeout.
|
|
|
- Future-proof the controller protocol a bit by ignoring keyword
|
|
|
arguments we do not recognize.
|
|
|
|
|
|
- o Removed features:
|
|
|
- - Stop shipping parts of the website and the design paper in the
|
|
|
- source tarballs.
|
|
|
-
|
|
|
|
|
|
Changes in version 0.2.2.8-alpha - 2010-01-26
|
|
|
o Major bugfixes:
|