Loading ChangeLog +16 −17 Original line number Diff line number Diff line Loading @@ -22,7 +22,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Major bugfixes (security, pointers): - Avoid a difficult-to-trigger heap corruption attack when extending a smartlist to contain over 16GB of pointers. Fixes bug 18162; bugfix on Tor 0.1.1.11-alpha, which fixed a related bug bugfix on 0.1.1.11-alpha, which fixed a related bug incompletely. Reported by Guido Vranken. o Major bugfixes (bridges, pluggable transports): Loading @@ -37,13 +37,15 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 use of _FORTIFY_SOURCE would conflict with clang's address sanitizer. Fixes bug 14821; bugfix on 0.2.5.4-alpha. o Major bugfixes (crash on shutdown): o Major bugfixes (crash on startup): - Fix a segfault during startup: If a Unix domain socket was configured as listener (such as a ControlSocket or a SocksPort "unix:" socket), and tor was started as root but not configured to switch to another user, tor would segfault while trying to string compare a NULL value. Fixes bug 18261; bugfix on 0.2.8.1-alpha. Patch by weasel. o Major bugfixes (crash on shutdown): - Correctly handle detaching circuits from muxes when shutting down. Fixes bug 18116; bugfix on 0.2.8.1-alpha. - Fix an assert-on-exit bug related to counting memory usage in Loading @@ -60,7 +62,8 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 patch by teor. o Major bugfixes (voting): - Actually enable Ed25519-based directory collation. Previously, the - Actually enable support for authorities to match routers by their Ed25519 identities. Previously, the code had been written, but some debugging code that had accidentally been left in the codebase made it stay turned off. Fixes bug 17702; bugfix on 0.2.7.2-alpha. Loading @@ -87,7 +90,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Minor features (build): - Detect systems with FreeBSD-derived kernels (such as GNU/kFreeBSD) as having possible IPfW support. Closes ticket 18448. Patch from as having possible IPFW support. Closes ticket 18448. Patch from Steven Chamberlain. o Minor features (code hardening): Loading @@ -96,10 +99,6 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 terminate. Part of ticket 17852. Patch from 'jsturgix'. Found with Flawfinder. o Minor features (compilation): - Note our minimum required autoconf/automake versions in the appropriate locations. Closes ticket 17732. o Minor features (crypto): - Validate the hard-coded Diffie-Hellman parameters and ensure that p is a safe prime, and g is a suitable generator. Closes Loading Loading @@ -148,12 +147,12 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 - Refresh an exit relay's exit policy when interface addresses change. Previously, tor only refreshed the exit policy when the configured external address changed. Fixes bug 18208; bugfix on tor 0.2.7.3. Patch by "teor". 0.2.7.3-rc. Patch by "teor". o Minor bugfixes (security, hidden services): - Prevent hidden services connecting to client-supplied rendezvous addresses that are reserved as internal or multicast. Fixes bug 8976; bugfix on b7c172c9e in tor-0.2.3.21. Patch by "dgoulet" 8976; bugfix on 0.2.3.21-rc. Patch by "dgoulet" and "teor". o Minor bugfixes (build): Loading @@ -164,7 +163,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 exit(0) in TOR_SEARCH_LIBRARY. Fixes bug 18625; bugfix on 0.2.0.1-alpha. Patch from "cypherpunks". - Silence spurious clang-scan warnings in the ed25519_donna code by explicitly initialising some objects. Fixes bug 18384; bugfix on explicitly initializing some objects. Fixes bug 18384; bugfix on 0f3eeca9 in 0.2.7.2-alpha. Patch by "teor". o Minor bugfixes (client, bootstrap): Loading Loading @@ -215,7 +214,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 all current directory connections asking for the hidden service. The solution here is to not close the connections if we have pending directory fetches. Fixes bug 15937; bugfix on tor-0.2.7.1-alpha. on 0.2.7.1-alpha. o Minor bugfixes (hidden service, control port): - Add the onion address to the HS_DESC event for the UPLOADED action Loading @@ -230,7 +229,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 - Avoid a 10-second delay when starting as a client with "Sandbox 1" enabled and no DNS resolvers configured. This should help TAILS start up faster. Fixes bug 18548; bugfix on 0.2.5.1-alpha. - Fix the sandbox's interoprability with unix domain sockets under - Fix the sandbox's interoperability with unix domain sockets under setuid. Fixes bug 18253; bugfix on 0.2.8.1-alpha. - Allow the setrlimit syscall, and the prlimit and prlimit64 syscalls, which some libc implementations use under the hood. Loading @@ -240,7 +239,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 - When logging information about an unparsable networkstatus vote or consensus, do not say "vote" when we mean consensus. Fixes bug 18368; bugfix on 0.2.0.8-alpha. - Scrub service in from "unrecognized service ID" log messages. - Scrub service name in "unrecognized service ID" log messages. Fixes bug 18600; bugfix on 0.2.4.11-alpha. - Downgrade logs and backtraces about IP versions to info-level. Only log backtraces once each time tor runs. Assists in diagnosing Loading @@ -250,10 +249,10 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Minor bugfixes (memory safety): - Avoid freeing an uninitialized pointer when opening a socket fails in get_interface_addresses_ioctl. Fixes bug 18454; bugfix on 9f06ec0c in tor-0.2.3.11-alpha. Reported by "toralf" and 0.2.3.11-alpha. Reported by "toralf" and "cypherpunks", patch by "teor". - Correctly duplicate addresses in get_interface_address6_list. Fixes bug 18454; bugfix on 110765f5 in tor-0.2.8.1-alpha. Reported Fixes bug 18454; bugfix on 0.2.8.1-alpha. Reported by "toralf", patch by "cypherpunks". - Fix a memory leak in tor-gencert. Fixes part of bug 18672; bugfix on 0.2.0.1-alpha. Loading @@ -262,7 +261,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Minor bugfixes (private directory): - Prevent a race condition when creating private directories. Fixes part of bug 17852; bugfix on 0.2pre13. Part of ticket 17852. Patch part of bug 17852; bugfix on 0.0.2pre13. Part of ticket 17852. Patch from 'jsturgix'. Found with Flawfinder. o Minor bugfixes (test networks, IPv6): Loading
ChangeLog +16 −17 Original line number Diff line number Diff line Loading @@ -22,7 +22,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Major bugfixes (security, pointers): - Avoid a difficult-to-trigger heap corruption attack when extending a smartlist to contain over 16GB of pointers. Fixes bug 18162; bugfix on Tor 0.1.1.11-alpha, which fixed a related bug bugfix on 0.1.1.11-alpha, which fixed a related bug incompletely. Reported by Guido Vranken. o Major bugfixes (bridges, pluggable transports): Loading @@ -37,13 +37,15 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 use of _FORTIFY_SOURCE would conflict with clang's address sanitizer. Fixes bug 14821; bugfix on 0.2.5.4-alpha. o Major bugfixes (crash on shutdown): o Major bugfixes (crash on startup): - Fix a segfault during startup: If a Unix domain socket was configured as listener (such as a ControlSocket or a SocksPort "unix:" socket), and tor was started as root but not configured to switch to another user, tor would segfault while trying to string compare a NULL value. Fixes bug 18261; bugfix on 0.2.8.1-alpha. Patch by weasel. o Major bugfixes (crash on shutdown): - Correctly handle detaching circuits from muxes when shutting down. Fixes bug 18116; bugfix on 0.2.8.1-alpha. - Fix an assert-on-exit bug related to counting memory usage in Loading @@ -60,7 +62,8 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 patch by teor. o Major bugfixes (voting): - Actually enable Ed25519-based directory collation. Previously, the - Actually enable support for authorities to match routers by their Ed25519 identities. Previously, the code had been written, but some debugging code that had accidentally been left in the codebase made it stay turned off. Fixes bug 17702; bugfix on 0.2.7.2-alpha. Loading @@ -87,7 +90,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Minor features (build): - Detect systems with FreeBSD-derived kernels (such as GNU/kFreeBSD) as having possible IPfW support. Closes ticket 18448. Patch from as having possible IPFW support. Closes ticket 18448. Patch from Steven Chamberlain. o Minor features (code hardening): Loading @@ -96,10 +99,6 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 terminate. Part of ticket 17852. Patch from 'jsturgix'. Found with Flawfinder. o Minor features (compilation): - Note our minimum required autoconf/automake versions in the appropriate locations. Closes ticket 17732. o Minor features (crypto): - Validate the hard-coded Diffie-Hellman parameters and ensure that p is a safe prime, and g is a suitable generator. Closes Loading Loading @@ -148,12 +147,12 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 - Refresh an exit relay's exit policy when interface addresses change. Previously, tor only refreshed the exit policy when the configured external address changed. Fixes bug 18208; bugfix on tor 0.2.7.3. Patch by "teor". 0.2.7.3-rc. Patch by "teor". o Minor bugfixes (security, hidden services): - Prevent hidden services connecting to client-supplied rendezvous addresses that are reserved as internal or multicast. Fixes bug 8976; bugfix on b7c172c9e in tor-0.2.3.21. Patch by "dgoulet" 8976; bugfix on 0.2.3.21-rc. Patch by "dgoulet" and "teor". o Minor bugfixes (build): Loading @@ -164,7 +163,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 exit(0) in TOR_SEARCH_LIBRARY. Fixes bug 18625; bugfix on 0.2.0.1-alpha. Patch from "cypherpunks". - Silence spurious clang-scan warnings in the ed25519_donna code by explicitly initialising some objects. Fixes bug 18384; bugfix on explicitly initializing some objects. Fixes bug 18384; bugfix on 0f3eeca9 in 0.2.7.2-alpha. Patch by "teor". o Minor bugfixes (client, bootstrap): Loading Loading @@ -215,7 +214,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 all current directory connections asking for the hidden service. The solution here is to not close the connections if we have pending directory fetches. Fixes bug 15937; bugfix on tor-0.2.7.1-alpha. on 0.2.7.1-alpha. o Minor bugfixes (hidden service, control port): - Add the onion address to the HS_DESC event for the UPLOADED action Loading @@ -230,7 +229,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 - Avoid a 10-second delay when starting as a client with "Sandbox 1" enabled and no DNS resolvers configured. This should help TAILS start up faster. Fixes bug 18548; bugfix on 0.2.5.1-alpha. - Fix the sandbox's interoprability with unix domain sockets under - Fix the sandbox's interoperability with unix domain sockets under setuid. Fixes bug 18253; bugfix on 0.2.8.1-alpha. - Allow the setrlimit syscall, and the prlimit and prlimit64 syscalls, which some libc implementations use under the hood. Loading @@ -240,7 +239,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 - When logging information about an unparsable networkstatus vote or consensus, do not say "vote" when we mean consensus. Fixes bug 18368; bugfix on 0.2.0.8-alpha. - Scrub service in from "unrecognized service ID" log messages. - Scrub service name in "unrecognized service ID" log messages. Fixes bug 18600; bugfix on 0.2.4.11-alpha. - Downgrade logs and backtraces about IP versions to info-level. Only log backtraces once each time tor runs. Assists in diagnosing Loading @@ -250,10 +249,10 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Minor bugfixes (memory safety): - Avoid freeing an uninitialized pointer when opening a socket fails in get_interface_addresses_ioctl. Fixes bug 18454; bugfix on 9f06ec0c in tor-0.2.3.11-alpha. Reported by "toralf" and 0.2.3.11-alpha. Reported by "toralf" and "cypherpunks", patch by "teor". - Correctly duplicate addresses in get_interface_address6_list. Fixes bug 18454; bugfix on 110765f5 in tor-0.2.8.1-alpha. Reported Fixes bug 18454; bugfix on 0.2.8.1-alpha. Reported by "toralf", patch by "cypherpunks". - Fix a memory leak in tor-gencert. Fixes part of bug 18672; bugfix on 0.2.0.1-alpha. Loading @@ -262,7 +261,7 @@ Changes in version 0.2.8.2-alpha - 2016-03-28 o Minor bugfixes (private directory): - Prevent a race condition when creating private directories. Fixes part of bug 17852; bugfix on 0.2pre13. Part of ticket 17852. Patch part of bug 17852; bugfix on 0.0.2pre13. Part of ticket 17852. Patch from 'jsturgix'. Found with Flawfinder. o Minor bugfixes (test networks, IPv6):
