tor/changes
Nick Mathewson d8cfa2ef4e Avoid free()ing from an mmap on corrupted microdesc cache
The 'body' field of a microdesc_t holds a strdup()'d value if the
microdesc's saved_location field is SAVED_IN_JOURNAL or
SAVED_NOWHERE, and holds a pointer to the middle of an mmap if the
microdesc is SAVED_IN_CACHE.  But we weren't setting that field
until a while after we parsed the microdescriptor, which left an
interval where microdesc_free() would try to free() the middle of
the mmap().

This patch also includes a regression test.

This is a fix for #10409; bugfix on 0.2.2.6-alpha.
2013-12-16 13:06:00 -05:00
..
bug5650 Avoid busy-looping on WANTREAD within connection_handle_write 2013-04-12 01:11:31 -04:00
bug6024 Clarify that hidden services are TCP only 2012-09-19 08:19:21 -04:00
bug6043 changelog for bug6043 2012-07-31 11:49:20 -04:00
bug6218 Fix port range in parse_port_range(). 2012-07-06 08:02:14 -04:00
bug6244_part_c Fix wildcarded address mappings from the control port 2012-08-15 17:59:30 -04:00
bug6251 Quiet "Set buildtimeout to low val" warnings: make them info 2012-08-27 16:37:09 -04:00
bug6252_again Have the bug6252 commit message reflect its on-again/off-again status 2012-07-18 10:24:17 -04:00
bug6271 Fix a bug handling SENDME cells on nonexistent streams. 2012-07-06 07:29:54 -04:00
bug6274 Better handling of server managed proxies when Tor is not a relay. 2012-07-18 20:01:02 +02:00
bug6274_2 Better handling of server managed proxies when Tor is not a relay. 2012-07-18 20:01:02 +02:00
bug6296 On windows, ENOBUFS starts with WSA. #6296. Fix on 0.2.18-rc 2012-07-05 05:01:00 -04:00
bug6341 Check ewma_enabled before doing circ-has-become-inactive check 2012-07-18 10:28:55 -04:00
bug6377 Allow TestingTorNetwork when alternate dir and bridge authorities are set. 2012-07-17 09:35:38 -04:00
bug6379 Fix warnings and 64-bit problems in openbsd-malloc code 2012-08-15 19:26:53 -04:00
bug6387 Improve Alternate*Authority docs. Bug 6387. 2012-07-16 11:21:20 -04:00
bug6397 Refer to the correct variable in a loop when parsing entry guard state 2012-07-16 11:49:45 -04:00
bug6404 Update description of what we did to upper limit on md size 2012-08-14 03:10:14 -04:00
bug6423 Consider IPv6 OR ports when deciding whether a routerinfo change is cosmetic. 2012-08-17 15:59:13 -04:00
bug6436 changes file for bug 6436. 2012-07-20 09:50:19 -04:00
bug6472 When iterating over connections pending DNS, skip marked ones 2012-08-17 16:46:11 -04:00
bug6475 Address Nick's comments from code review. 2012-08-16 16:29:19 -07:00
bug6480 Avoid hard (impossible?)-to-trigger double-free in dns_resolve() 2012-07-31 17:19:17 -04:00
bug6490 Warn when accounting is used in a way likely to link hidden services 2012-07-31 10:28:16 -04:00
bug6500 Fix some manpage typos 2012-07-31 10:16:03 -04:00
bug6507 Reject attempts to say FooPort and FooPort 0 in the same cfg domain 2012-08-09 16:13:03 -04:00
bug6514 Defensive programming: clear rs_out between iterations. 2012-08-01 17:25:34 -04:00
bug6530 Clarify security impact of bug 6530 2012-08-03 11:16:13 -04:00
bug6690 Do not assert when comparing a null address/port against a policy 2012-08-27 12:04:55 -04:00
bug6710 Fix changes file for 6710: before 0.0.8pre1, you couldn't extend to 2012-08-27 12:29:04 -04:00
bug6732 Document consensus and microdesc files 2012-08-31 11:35:47 -04:00
bug6743 Make begindir_cutoff the same as general_cutoff 2012-09-01 01:25:17 -04:00
bug6774 Avoid segfault if EntryGuardPathBias precedes EntryGuard 2012-09-05 13:27:54 -04:00
bug6801 Avoid segfault when reading state file from ancient tor 2012-09-10 10:35:18 -04:00
bug6811 Fix assertion failure in tor_timegm. 2012-09-11 13:13:07 -04:00
bug6827 mention the bug number in the 6827 changes file 2012-09-13 10:07:06 -04:00
bug6844 Use file-size-fixup code on cygwin too. 2012-09-14 12:39:18 -04:00
bug6866 Bug 6866: Convert pathbias asserts into log messages. 2012-09-17 18:25:28 -07:00
bug6979 Fix an assert when disabling ORPort with accounting disabled. 2013-09-18 10:26:32 -04:00
bug7014 Don't call fmt_addr() twice in a parameter list. 2012-10-09 23:46:04 -04:00
bug7022 properly free the return values of rate_limit_log() 2012-10-03 13:15:27 -04:00
bug7037 Refuse extra create cells with reason "resource limit" 2012-10-03 20:17:37 -04:00
bug7139 Disable TLS Session Tickets, which we were apparently getting for free 2012-10-19 00:54:51 -04:00
bug7190 Let 0.2.3 clients exit to internal addresses if they want 2012-10-23 17:18:01 -04:00
bug7191 Add a changes file for bug 7191. 2012-10-23 21:35:30 -04:00
bug7192 Fix parse_short_policy (bug 7192.) 2012-10-23 13:49:48 -04:00
bug7352 Add and use and unlikely-to-be-eliminated memwipe() 2012-11-08 16:44:50 -05:00
bug7464 use a more logical operator 2012-11-12 23:47:21 -05:00
bug7889 Reject create/begin/etc cells with {circ,stream}ID 0. 2013-01-14 14:02:13 -05:00
bug8208 Check whether ei is non-NULL before altering it. 2013-02-11 16:05:03 -05:00
bug8377 Make sure that [::1] is recognized as a private address 2013-03-01 12:22:57 -05:00
bug8844 Don't run off the end of the array-of-freelists 2013-05-09 13:10:48 -04:00
bug9002 Limit hidden service descriptors to at most 10 guard nodes. 2013-06-16 20:24:48 -04:00
bug9017 Fix (Open?)BSD fast-connect bug with optimistic data. 2013-06-10 12:14:49 -04:00
bug9063 Don't queue more cells as a middle relay than the spec allows to be in flight 2013-06-13 21:39:04 -07:00
bug9063_redux Implement a real OOM-killer for too-long circuit queues. 2013-06-18 10:15:16 -04:00
bug9072 Disable middle relay queue overfill detection code due to possible guard discovery attack 2013-06-15 02:16:00 -07:00
bug9093 Improved circuit queue out-of-memory handler 2013-11-07 12:15:30 -05:00
bug9546 Make bridges send AUTH_CHALLENGE cells 2013-08-21 11:28:58 -04:00
bug9564 Replace return with continue in update_consensus_networkstatus_downloads 2013-08-22 10:00:37 -04:00
bug9671_023 use !cbt_disabled in place of LearnCBT to avoid needless circs 2013-09-04 15:54:05 -04:00
bug9928 Give credit to bug reporter for 9928 2013-10-08 12:06:06 -04:00
bug10409 Avoid free()ing from an mmap on corrupted microdesc cache 2013-12-16 13:06:00 -05:00
cov709056 Coverity 709056: Check return value on fputs in tor-gencert 2012-07-16 11:38:39 -04:00
cve-2012-2249 Discard extraneous renegotiation attempts in the v3 link protocol 2012-10-17 19:18:16 -04:00
dirserv-BUGGY-a Don't serve or accept v2 HS descs over a DirPort 2012-10-19 02:56:25 -04:00
disable_pathbias_messages Downgrade path-bias warning messages to INFO for now. 2012-08-27 16:18:35 -04:00
geoip-apr2013 Update to the April 2013 GeoIP database. 2013-04-08 12:18:40 +02:00
geoip-august2013 Update to the August 2013 GeoIP database. 2013-08-12 15:26:36 +02:00
geoip-dec2012 Update to the December 2012 GeoIP database. 2012-12-13 08:44:30 +01:00
geoip-feb2013 Update to the February 2013 GeoIP database. 2013-02-08 14:39:25 +01:00
geoip-jan2013 Update to the January 2013 GeoIP database. 2013-01-05 08:18:26 +01:00
geoip-july2013 Update to the July 2013 GeoIP database. 2013-07-08 10:21:28 +02:00
geoip-june2013 Update to the June 2013 GeoIP database. 2013-06-05 08:43:03 +02:00
geoip-mar2013 Update to the March 2013 GeoIP database. 2013-03-07 20:58:31 +01:00
geoip-may2013 Update to the May 2013 GeoIP database. 2013-05-13 15:37:43 +02:00
geoip-nov2012 Update to the November 2012 GeoIP database. 2012-12-13 08:44:20 +01:00
geoip-october2013 Update to the October 2013 GeoIP database. 2013-10-11 13:36:30 +02:00
geoip-september2013 Update to the September 2013 GeoIP database. 2013-09-10 15:00:06 +02:00
link_negotiation_assert Fix a remotely triggerable assertion failure (CVE-2012-2250) 2012-10-23 22:58:38 -04:00
pathsel-BUGGY-a Try to clarify impact of bug 6537 2012-08-03 11:54:11 -04:00
port_doc Improve message on spurious SOCKSListenAddress 2012-07-17 12:02:55 -04:00
revert-geoip-may2012 Revert to the May 2012 geoip db 2012-07-06 16:29:51 -04:00
smartlist_foreach Tweaks to 6400 changes file and docs as suggested by arma 2012-07-18 10:12:19 -04:00
ticket5749 add faravahar as our ninth v3 dir auth 2012-09-22 09:10:37 -04:00