mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-28 06:13:31 +01:00
Remove changes files already merged in 0.2.2.30-rc
This commit is contained in:
parent
976027210b
commit
be5aa47b55
@ -1,8 +0,0 @@
|
|||||||
o Security fixes:
|
|
||||||
- Don't attach new streams to old rendezvous circuits after SIGNAL
|
|
||||||
NEWNYM. Previously, we would keep using an existing rendezvous
|
|
||||||
circuit if it remained open (i.e. if it were kept open by a
|
|
||||||
long-lived stream or if a new stream were attached to it before
|
|
||||||
Tor could notice that it was old and no longer in use and close
|
|
||||||
it). Bugfix on 0.1.1.15-rc; fixes bug 3375.
|
|
||||||
|
|
@ -1,16 +0,0 @@
|
|||||||
o Major bugfixes:
|
|
||||||
- Apply circuit timeouts to opened hidden-service-related circuits
|
|
||||||
based on the correct start time. Previously, we would apply the
|
|
||||||
circuit build timeout based on time since the circuit's
|
|
||||||
creation; it was supposed to be applied based on time since the
|
|
||||||
circuit entered its current state. Bugfix on 0.0.6; fixes part
|
|
||||||
of bug 1297.
|
|
||||||
- Use the same circuit timeout for client-side introduction
|
|
||||||
circuits as for other four-hop circuits. Previously,
|
|
||||||
client-side introduction circuits were closed after the same
|
|
||||||
timeout as single-hop directory-fetch circuits; this was
|
|
||||||
appropriate with the static circuit build timeout in 0.2.1.x and
|
|
||||||
earlier, but caused many hidden service access attempts to fail
|
|
||||||
with the adaptive CBT introduced in 0.2.2.2-alpha. Bugfix on
|
|
||||||
0.2.2.2-alpha; fixes another part of bug 1297.
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- On SIGHUP, do not clear out all TrackHostExits mappings, client DNS
|
|
||||||
cache entries, and virtual address mappings: that's what NEWNYM is
|
|
||||||
for. Bugfix on Tor 0.1.0.1-rc; fixes bug 1345.
|
|
||||||
- When TrackHostExits is changed from a controller, remove any
|
|
||||||
mappings for hosts that should no longer have their exits tracked.
|
|
||||||
Bugfix on Tor 0.1.0.1-rc.
|
|
||||||
- When VirtualAddrNetwork option is changed from a controller,
|
|
||||||
remove any mappings for hosts that were automapped to
|
|
||||||
that network. Bugfix on 0.1.1.19-rc.
|
|
||||||
- When one of the AutomapHosts* options is changed from a
|
|
||||||
controller, remove any mappings for hosts that should no longer be
|
|
||||||
automapped. Bugfix on 0.2.0.1-alpha.
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor features
|
|
||||||
- Rate-limit a warning about failures to download v2 networkstatus
|
|
||||||
documents. Resolves part of bug 1352.
|
|
||||||
|
|
@ -1,6 +0,0 @@
|
|||||||
o Major bugfixes:
|
|
||||||
- Don't decide to make a new descriptor when receiving a HUP signal.
|
|
||||||
This bug has caused a lot of relays to disappear from the consensus
|
|
||||||
periodically. Fixes the most common case of triggering bug 1810;
|
|
||||||
bugfix on 0.2.2.7-alpha.
|
|
||||||
|
|
@ -1,8 +0,0 @@
|
|||||||
o Major features:
|
|
||||||
- If "UseBridges 1" is set and no bridges are configured, Tor will
|
|
||||||
now refuse to build any circuits until some bridges are set.
|
|
||||||
If "UseBridges auto" is set, Tor will use bridges if they are
|
|
||||||
configured and we are not running as a server, but otherwise
|
|
||||||
will make circuits as usual. The new default is "auto". Patch
|
|
||||||
by anonym.
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Revert the UseBridges option to its behavior before 0.2.2.28-beta.
|
|
||||||
When we changed the default behavior to "use bridges if any are
|
|
||||||
listed in the torrc", we broke a number of users who had bridges
|
|
||||||
in their torrc files but who didn't actually want to use them.
|
|
||||||
Partial resolution for bug 3354.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- When an HTTPS proxy reports "403 Forbidden", we now explain
|
|
||||||
what it means rather than calling it an unexpected status code.
|
|
||||||
Closes bug 2503. Patch from "mikey".
|
|
@ -1,7 +0,0 @@
|
|||||||
o Minor bugfixes
|
|
||||||
- Do not reject hidden service descriptors simply because we don't
|
|
||||||
think we have not been assigned the HSDir flag. Clients and
|
|
||||||
hidden services can have a more up-to-date view of the network
|
|
||||||
consensus, and if they think that the directory authorities
|
|
||||||
list us a HSDir, we might actually be one. Related to bug 2732;
|
|
||||||
bugfix on 0.2.0.10-alpha.
|
|
@ -1,10 +0,0 @@
|
|||||||
o Minor bugfixes
|
|
||||||
- Remove dead code from rend_cache_lookup_v2_desc_as_dir. Fixes
|
|
||||||
part of bug 2748; bugfix on 0.2.0.10-alpha.
|
|
||||||
- Log malformed requests for rendezvous descriptors as protocol
|
|
||||||
warnings, not warnings. Also, use a more informative log
|
|
||||||
message in case someone sees it at log level warning without
|
|
||||||
prior info-level messages. Fixes the other part of bug 2748;
|
|
||||||
bugfix on 0.2.0.10-alpha.
|
|
||||||
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Tor used to limit HttpProxyAuthenticator values to 48 characters.
|
|
||||||
Changed the limit to 512 characters by removing base64 newlines.
|
|
||||||
Fixes bug 2752. Fix by Michael Yakubovich.
|
|
||||||
|
|
@ -1,8 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Tor now refuses to create a ControlSocket in a directory that is
|
|
||||||
world-readable (or group-readable if ControlSocketsGroupWritable
|
|
||||||
is 0). This is necessary because some operating systems do not
|
|
||||||
check the permissions on an AF_UNIX socket when programs try to
|
|
||||||
connect to it. Checking permissions on the directory holding
|
|
||||||
the socket, however, seems to work everywhere.
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
- Minor features
|
|
||||||
o Set SO_REUSEADDR on all sockets, not just listeners. This should
|
|
||||||
help busy exit nodes avoid running out of useable ports just because
|
|
||||||
all the ports have been used in the near past. Resolves issue 2850.
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Allow ControlSockets to be group-writable when the
|
|
||||||
ControlSocksGroupWritable configuration option is turned on. Patch
|
|
||||||
by Jérémy Bobbio; implements ticket 2972.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Do not reset the bridge descriptor download status every time we
|
|
||||||
re-parse our configuration or get a configuration change. Fixes
|
|
||||||
bug 3019; bugfix on Tor 0.2.0.3-alpha.
|
|
@ -1,6 +0,0 @@
|
|||||||
o Removed features
|
|
||||||
- Caches no longer download and serve v2 networkstatus documents
|
|
||||||
unless FetchV2Networkstatus flag is set: these documents haven't
|
|
||||||
haven't been used by clients or relays since 0.2.0.x. Resolves
|
|
||||||
bug 3022.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes (directory authority)
|
|
||||||
- Do not upload our own vote or signature set to ourself. It would
|
|
||||||
tell us nothing new. Also, as of Tor 0.2.2.24-alpha, we started
|
|
||||||
to warn about receiving duplicate votes. Resolves bug 3026.
|
|
@ -1,6 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Revise most log messages that refer to nodes by nickname to
|
|
||||||
instead use the "$key=nickname at address" format. This should be
|
|
||||||
more useful, especially since nicknames are less and less likely
|
|
||||||
to be unique. Fixes bug 3045.
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
|||||||
o Security fixes
|
|
||||||
- Replace all potentially sensitive memory comparison operations
|
|
||||||
with versions whose runtime does not depend on the data being
|
|
||||||
compared. This will help resist a class of attacks where an
|
|
||||||
adversary can use variations in timing information to learn
|
|
||||||
sensitive data. Fix for one case of bug 3122. (Safe memcmp
|
|
||||||
implementation by Robert Ransom based partially on code by DJB.)
|
|
@ -1,6 +0,0 @@
|
|||||||
o Minor bugfixes
|
|
||||||
- Do not crash when our configuration file becomes unreadable
|
|
||||||
(usually due to a permissions change) between when we start
|
|
||||||
up and when a controller calls SAVECONF. Fixes bug 3135;
|
|
||||||
bugfix on 0.0.9pre6.
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Resolve an untriggerable issue in smartlist_string_num_isin(),
|
|
||||||
where if the function had ever in the future been used to check
|
|
||||||
for the presence of a too-large number, it would have given an
|
|
||||||
incorrect result. (Fortunately, we only used it for 16-bit
|
|
||||||
values.) Fixes bug 3175; bugfix on Tor 0.1.0.1-rc.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Major bugfixes:
|
|
||||||
- When we configure a new bridge via the controller, don't wait up
|
|
||||||
to ten seconds before trying to fetch its descriptor. Bugfix on
|
|
||||||
0.2.0.3-alpha; fixes bug 3198 (suggested by 2355).
|
|
@ -1,6 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- When a client starts or stops using bridges, never use a circuit
|
|
||||||
that was built before the configuration change. This behavior could
|
|
||||||
put at risk a user who uses bridges to ensure that her traffic
|
|
||||||
only goes to the chosen addresses. Bugfix on 0.2.0.3-alpha; fixes
|
|
||||||
bug 3200.
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Require that onion keys have exponent 65537 in microdescriptors too.
|
|
||||||
Fixes part of bug 3207; bugfix on 0.2.2.25-alpha
|
|
||||||
|
|
@ -1,6 +0,0 @@
|
|||||||
o Removed options:
|
|
||||||
- Remove undocumented option "-F" from tor-resolve: it hasn't done
|
|
||||||
anything since 0.2.1.16-rc.
|
|
||||||
|
|
||||||
o Minor bugfixes:
|
|
||||||
- Fix warnings from GCC 4.6's "-Wunused-but-set-variable" option.
|
|
@ -1,4 +0,0 @@
|
|||||||
o Major bugfixes:
|
|
||||||
- Fix a crash bug when changing bridges in a running Tor process.
|
|
||||||
Fixes bug 3213; bugfix on 0.2.2.26-beta.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Major bugfixes:
|
|
||||||
- Don't try to build descriptors if "ORPort auto" is set and we
|
|
||||||
don't know our actual ORPort yet. Fix for bug 3216; bugfix on
|
|
||||||
0.2.2.26-beta.
|
|
@ -1,3 +0,0 @@
|
|||||||
o Major bugfixes:
|
|
||||||
- Resolve a crash that occured when setting BridgeRelay to 1 with
|
|
||||||
accounting enabled. Fixes bug 3228; bugfix on 0.2.2.18-alpha.
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Relays now log the reason for publishing a new relay descriptor,
|
|
||||||
so we have a better chance of hunting down the root cause of bug
|
|
||||||
1810. Resolves ticket 3252.
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes
|
|
||||||
- Use a wide type to hold sockets when built for 64-bit Windows builds.
|
|
||||||
Fixes bug 3270.
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Warn when the user configures two HiddenServiceDir lines that point
|
|
||||||
to the same directory. Bugfix on 0.0.6 (the version introducing
|
|
||||||
HiddenServiceDir); fixes bug 3289.
|
|
||||||
|
|
@ -1,9 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Make our crypto_rand_int() function check the value of its input
|
|
||||||
correctly. Previously, it accepted values up to UINT_MAX, but
|
|
||||||
could return a negative number if given a value above INT_MAX+1.
|
|
||||||
Found by George Kadianakis. Fixes bug 3306; bugfix on 0.2.2pre14.
|
|
||||||
|
|
||||||
- Avoid a segfault when reading a malformed circuit build state
|
|
||||||
with more than INT_MAX entries. Found by wanoskarnet. Bugfix on
|
|
||||||
0.2.2.4-alpha.
|
|
@ -1,13 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Clear the table recording the time of the last request for each
|
|
||||||
hidden service descriptor from each HS directory on SIGNAL
|
|
||||||
NEWNYM. Previously, we would clear our HS descriptor cache on
|
|
||||||
SIGNAL NEWNYM, but if we had previously retrieved a descriptor
|
|
||||||
(or tried to) from every directory responsible for it, we would
|
|
||||||
refuse to fetch it again for up to 15 minutes. Bugfix on
|
|
||||||
0.2.2.25-alpha; fixes bug 3309.
|
|
||||||
|
|
||||||
o Minor features:
|
|
||||||
- Log (at info level) when purging pieces of hidden-service-client
|
|
||||||
state on SIGNAL NEWNYM.
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Fix a log message that said "bits" while displaying a value in
|
|
||||||
bytes. Found by wanoskarnet. Fixes bug 3318; bugfix on
|
|
||||||
0.2.0.1-alpha.
|
|
||||||
- When checking for 1024-bit keys, check for 1024 bits, not 128
|
|
||||||
bytes. This allows Tor to correctly discard keys of length
|
|
||||||
1017 through 1023. Bugfix on 0.0.9pre5.
|
|
@ -1,7 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- In bug 2511 we fixed a case where you could use an unconfigured
|
|
||||||
bridge if you had configured it as a bridge the last time you ran
|
|
||||||
Tor. Now fix another edge case: if you had configured it as a bridge
|
|
||||||
but then switched to a different bridge via the controller, you
|
|
||||||
would still be willing to use the old one. Bugfix on 0.2.0.1-alpha;
|
|
||||||
fixes bug 3321.
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- When asked about a DNS record type we don't support via a
|
|
||||||
client DNSPort, reply with NOTIMPL rather than an empty
|
|
||||||
reply. Patch by intrigeri. Fixes bug 3369; bugfix on 2.0.1-alpha.
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Fix a bug when using ControlSocketsGroupWritable with User. The
|
|
||||||
directory's group would be checked against the current group, not
|
|
||||||
the configured group. Patch by Jérémy Bobbio. Fixes bug3393; bugfix
|
|
||||||
on Tor 0.2.2.26-beta.
|
|
@ -1,6 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
|
|
||||||
- Add BUILDTIMEOUT_SET to the list returned by the 'GETINFO
|
|
||||||
events/names' control-port command. Bugfix on 0.2.2.9-alpha;
|
|
||||||
fixes part of bug 3465.
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Send a SUCCEEDED stream event to the controller when a reverse
|
|
||||||
resolve succeeded. Fixes bug 3536; bugfix on 0.0.8pre1. Issue
|
|
||||||
discovered by katmagic.
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
|||||||
o Security fixes:
|
|
||||||
- When fetching a hidden service descriptor, check that it is for
|
|
||||||
the hidden service we were trying to connect to, in order to
|
|
||||||
stop a directory from pre-seeding a client with a descriptor for
|
|
||||||
a hidden service that they didn't want. Bugfix on 0.0.6.
|
|
||||||
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Require that introduction point keys and onion keys have public
|
|
||||||
exponent 65537. Bugfix on 0.2.0.10-alpha.
|
|
||||||
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Always NUL-terminate the sun_path field of a sockaddr_un before
|
|
||||||
passing it to the kernel. (Not a security issue: kernels are
|
|
||||||
smart enough to reject bad sockaddr_uns.) Found by Coverity; CID
|
|
||||||
# 428. Bugfix on Tor 0.2.0.3-alpha.
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Don't stack-allocate the list of supplementary GIDs when we're
|
|
||||||
about to log them. Stack-allocating NGROUPS_MAX gid_t elements
|
|
||||||
could take up to 256K, which is way too much stack. Found by
|
|
||||||
Coverity; CID #450. Bugfix on 0.2.1.7-alpha.
|
|
@ -1,9 +0,0 @@
|
|||||||
o Code simplifications and refactoring:
|
|
||||||
- Remove some dead code as indicated by coverity.
|
|
||||||
- Remove a few dead assignments during router parsing. Found by coverity.
|
|
||||||
o Minor bugfixes:
|
|
||||||
- Add some forgotten return value checks during unit tests. Found
|
|
||||||
by coverity.
|
|
||||||
- Don't use 1-bit wide signed bit fields. Found by coverity.
|
|
||||||
- Fix a rare memory leak during stats writing. Found by coverity.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Fix a potential null-pointer dereference while computing a consensus.
|
|
||||||
Bugfix on tor-0.2.0.3-alpha, found with the help of clang's analyzer.
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Remove a trailing asterisk from "exit-policy/default" in the
|
|
||||||
output of the control port command "GETINFO info/names". Bugfix
|
|
||||||
on 0.1.2.5-alpha.
|
|
||||||
|
|
@ -1,6 +0,0 @@
|
|||||||
o Major features:
|
|
||||||
- Add an __OwningControllerProcess configuration option and a
|
|
||||||
TAKEOWNERSHIP control-port command, so that a Tor controller can
|
|
||||||
ensure that when it exits, Tor will shut down. Implements
|
|
||||||
feature 3049.
|
|
||||||
|
|
@ -1,14 +0,0 @@
|
|||||||
o Minor features
|
|
||||||
- The options SocksPort, ControlPort, and so on now all accept an
|
|
||||||
optional value "auto" that opens a socket on an OS-selected port.
|
|
||||||
o Minor features (controller)
|
|
||||||
- GETINFO net/listeners/(type) now returns a list of the addresses
|
|
||||||
and ports that are bound for listeners for a given connection
|
|
||||||
type. This is useful for if the user has selected SocksPort
|
|
||||||
"auto", and you need to know which port got chosen.
|
|
||||||
- There is a ControlPortWriteToFile option that tells Tor to write
|
|
||||||
its actual control port or ports to a chosen file. If the option
|
|
||||||
ControlPortFileGroupReadable is set, the file is created as
|
|
||||||
group-readable.
|
|
||||||
|
|
||||||
|
|
@ -1,15 +0,0 @@
|
|||||||
* Code simplifications and refactoring:
|
|
||||||
|
|
||||||
- Make connection_printf_to_buf's behaviour sane. Its callers
|
|
||||||
expect it to emit a CRLF iff the format string ends with CRLF;
|
|
||||||
it actually emits a CRLF iff (a) the format string ends with
|
|
||||||
CRLF or (b) the resulting string is over 1023 characters long or
|
|
||||||
(c) the format string does not end with CRLF ''and'' the
|
|
||||||
resulting string is 1021 characters long or longer. Bugfix on
|
|
||||||
0.1.1.9-alpha; fixes part of bug 3407.
|
|
||||||
|
|
||||||
- Make send_control_event_impl's behaviour sane. Its callers
|
|
||||||
expect it to always emit a CRLF at the end of the string; it
|
|
||||||
might emit extra control characters as well. Bugfix on
|
|
||||||
0.1.1.9-alpha; fixes another part of bug 3407.
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Update to the July 1 2011 Maxmind GeoLite Country database.
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Update to the June 1 2011 Maxmind GeoLite Country database.
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
|||||||
o Minor features:
|
|
||||||
- Update to the May 1 2011 Maxmind GeoLite Country database.
|
|
||||||
|
|
@ -1,6 +0,0 @@
|
|||||||
o Minor bugfixes
|
|
||||||
- Avoid a bug that would keep us from replacing a microdescriptor
|
|
||||||
cache on Windows. (We would try to replace the file while still
|
|
||||||
holding it open. That's fine on Unix, but Windows doesn't let us
|
|
||||||
do that.) Bugfix on 0.2.2.6-alpha; bug found by wanoskarnet.
|
|
||||||
|
|
@ -1,5 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Avoid a possible null-pointer dereference when rebuilding the mdesc
|
|
||||||
cache without actually having any descriptors to cache. Bugfix on
|
|
||||||
0.2.2.6-alpha. Issue discovered using clang's static analyzer.
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
|||||||
o Minor bugfixes:
|
|
||||||
- Fix a memory leak when receiving a descriptor for a hidden
|
|
||||||
service we didn't ask for. Found by Coverity; CID#30. Bugfix on
|
|
||||||
0.2.2.26-beta.
|
|
Loading…
Reference in New Issue
Block a user