|
|
@@ -1,5 +1,73 @@
|
|
|
Changes in version 0.2.7.2-alpha - 2015-07-??
|
|
|
|
|
|
+ o Major bugfixes (client-side privacy, also in 0.2.6.9):
|
|
|
+ - Properly separate out each SOCKSPort when applying stream
|
|
|
+ isolation. The error occurred because each port's session group was
|
|
|
+ being overwritten by a default value when the listener connection
|
|
|
+ was initialized. Fixes bug 16247; bugfix on 0.2.6.3-alpha. Patch
|
|
|
+ by "jojelino".
|
|
|
+
|
|
|
+ o Minor feature (directory authorities, security, also in 0.2.6.9):
|
|
|
+ - The HSDir flag given by authorities now requires the Stable flag.
|
|
|
+ For the current network, this results in going from 2887 to 2806
|
|
|
+ HSDirs. Also, it makes it harder for an attacker to launch a sybil
|
|
|
+ attack by raising the effort for a relay to become Stable which
|
|
|
+ takes at the very least 7 days to do so and by keeping the 96
|
|
|
+ hours uptime requirement for HSDir. Implements ticket 8243.
|
|
|
+
|
|
|
+ o Minor bugfixes (compilation, also in 0.2.6.9):
|
|
|
+ - Build with --enable-systemd correctly when libsystemd is
|
|
|
+ installed, but systemd is not. Fixes bug 16164; bugfix on
|
|
|
+ 0.2.6.3-alpha. Patch from Peter Palfrader.
|
|
|
+
|
|
|
+ o Minor bugfixes (Linux seccomp2 sandbox, also in 0.2.6.9):
|
|
|
+ - Fix sandboxing to work when running as a relaymby renaming of
|
|
|
+ secret_id_key, and allowing the eventfd2 and futex syscalls. Fixes
|
|
|
+ bug 16244; bugfix on 0.2.6.1-alpha. Patch by Peter Palfrader.
|
|
|
+ - Allow systemd connections to work with the Linux seccomp2 sandbox
|
|
|
+ code. Fixes bug 16212; bugfix on 0.2.6.2-alpha. Patch by
|
|
|
+ Peter Palfrader.
|
|
|
+
|
|
|
+ o Minor bugfixes (tests, also in 0.2.6.9):
|
|
|
+ - Fix a crash in the unit tests when built with MSVC2013. Fixes bug
|
|
|
+ 16030; bugfix on 0.2.6.2-alpha. Patch from "NewEraCracker".
|
|
|
+
|
|
|
+ o Major bugfixes (hidden service clients, stability, also in 0.2.6.10):
|
|
|
+ - Stop refusing to store updated hidden service descriptors on a
|
|
|
+ client. This reverts commit 9407040c59218 (which indeed fixed bug
|
|
|
+ 14219, but introduced a major hidden service reachability
|
|
|
+ regression detailed in bug 16381). This is a temporary fix since
|
|
|
+ we can live with the minor issue in bug 14219 (it just results in
|
|
|
+ some load on the network) but the regression of 16381 is too much
|
|
|
+ of a setback. First-round fix for bug 16381; bugfix
|
|
|
+ on 0.2.6.3-alpha.
|
|
|
+
|
|
|
+ o Major bugfixes (stability, also in 0.2.6.10):
|
|
|
+ - Stop crashing with an assertion failure when parsing certain kinds
|
|
|
+ of malformed or truncated microdescriptors. Fixes bug 16400;
|
|
|
+ bugfix on 0.2.6.1-alpha. Found by "torkeln"; fix based on a patch
|
|
|
+ by "cypherpunks_backup".
|
|
|
+ - Stop random client-side assertion failures that could occur when
|
|
|
+ connecting to a busy hidden service, or connecting to a hidden
|
|
|
+ service while a NEWNYM is in progress. Fixes bug 16013; bugfix
|
|
|
+ on 0.1.0.1-rc.
|
|
|
+
|
|
|
+ o Minor features (geoip, also in 0.2.6.10):
|
|
|
+ - Update geoip to the June 3 2015 Maxmind GeoLite2 Country database.
|
|
|
+ - Update geoip6 to the June 3 2015 Maxmind GeoLite2 Country database.
|
|
|
+
|
|
|
+ o Minor bugfixes (crypto error-handling, also in 0.2.6.10):
|
|
|
+ - Check for failures from crypto_early_init, and refuse to continue.
|
|
|
+ A previous typo meant that we could keep going with an
|
|
|
+ uninitialized crypto library, and would have OpenSSL initialize
|
|
|
+ its own PRNG. Fixes bug 16360; bugfix on 0.2.5.2-alpha, introduced
|
|
|
+ when implementing ticket 4900. Patch by "teor".
|
|
|
+
|
|
|
+ o Minor bugfixes (Linux seccomp2 sandbox, also in 0.2.6.10):
|
|
|
+ - Allow pipe() and pipe2() syscalls in the seccomp2 sandbox: we need
|
|
|
+ these when eventfd2() support is missing. Fixes bug 16363; bugfix
|
|
|
+ on 0.2.6.3-alpha. Patch from "teor".
|
|
|
+
|
|
|
|
|
|
Changes in version 0.2.6.10 - 2015-07-12
|
|
|
Tor version 0.2.6.10 fixes some significant stability and hidden
|
Nick Mathewson