February 2016 - tor-commits - lists.torproject.org

[tor/master] use sortChanges to fold changes files into changelog. No additional editing or formatting yet.
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit f09d03c384b85d64dfe2abca156cd63bf7597979 Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 16:56:20 2016 -0500 use sortChanges to fold changes files into changelog. No additional editing or formatting yet. --- ChangeLog | 429 +++++++++++++++++++++++++++ changes/11150 | 6 - changes/17004 | 3 - changes/17075 | 3 - changes/17078 | 3 - changes/17082 | 3 - changes/17084 | 3 - changes/17573 | 4 - changes/17826 | 5 - changes/17926 | 3 - changes/17944 | 3 - changes/7419 | 6 - changes/bug15638 | 2 - changes/bug16382 | 3 - changes/bug16563 | 6 - changes/bug16651 | 6 - changes/bug16794_ed | 3 - changes/bug17003 | 3 - changes/bug17026 | 5 - changes/bug17027-reject-private-bind-port | 6 - changes/bug17194 | 7 - changes/bug17347 | 4 - changes/bug17419 | 3 - changes/bug17544 | 4 - changes/bug17549 | 3 - changes/bug17562-DataDirectoryGroupReadable | 5 - changes/bug17562-allow-root-group-read | 7 - changes/bug17562-defer-unix-socket-creation | 5 - changes/bug17572-fallback-by-digest | 5 - changes/bug17583 | 4 - changes/bug17589 | 7 - changes/bug17632-no-ipv4-no-localhost | 5 - changes/bug17638-ipv6-ersatz-socketpair | 5 - changes/bug17675 | 4 - changes/bug17683 | 3 - changes/bug17686 | 4 - changes/bug17694_strongest | 6 - changes/bug17753 | 4 - changes/bug17778 | 3 - changes/bug17791 | 4 - changes/bug17804 | 3 - changes/bug17818 | 3 - changes/bug17819 | 4 - changes/bug17827 | 3 - changes/bug17843 | 3 - changes/bug17876 | 5 - changes/bug17892 | 4 - changes/bug17893 | 4 - changes/bug17906 | 4 - changes/bug17923 | 4 - changes/bug17924 | 4 - changes/bug18050 | 7 - changes/bug18089 | 5 - changes/bug4483-multiple-consensus-downloads | 9 - changes/bug6027 | 4 - changes/check-crypto-errors | 4 - changes/cleanup_17587 | 3 - changes/decouple_circuit_mark | 6 - changes/decouple_conn_attach | 6 - changes/doc17392 | 4 - changes/feature12538 | 6 - changes/feature13696 | 3 - changes/feature14846 | 4 - changes/feature15775-fallback | 19 -- changes/feature16774 | 3 - changes/feature17076 | 3 - changes/feature17327 | 5 - changes/feature17576-UseDefaultFallbackDirs | 4 - changes/feature17608 | 4 - changes/feature17663 | 3 - changes/feature17796 | 6 - changes/feature17863 | 6 - changes/feature17864 | 5 - changes/feature17950 | 5 - changes/feature17951 | 6 - changes/feature17986 | 3 - changes/feature8195 | 6 - changes/feature8961-replaycache-sha256 | 4 - changes/first-hop-no-private | 6 - changes/geoip-january2016 | 4 - changes/getinfo-private-exitpolicy | 6 - changes/laplace-edge-cases | 9 - changes/log_heartbeat_test | 6 - changes/rand-failure-modes | 5 - changes/routerset-parse-IPv6-literals | 3 - changes/sha-unit-tests | 3 - changes/test16831 | 3 - changes/ticket15989 | 9 - changes/ticket17158 | 4 - changes/warn-when-time-goes-backwards | 5 - scripts/maint/sortChanges.py | 28 +- 91 files changed, 456 insertions(+), 416 deletions(-) diff --git a/ChangeLog b/ChangeLog index b59ec43..d76d134 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,432 @@ +Changes in version 0.2.8.1-alpha - 2016-02-0? + XXXX Blurb goes here XXXX + + o Major features (consensus downloads): + - Schedule multiple in-progress consensus downloads during client + bootstrap. Use the first one that starts downloading, close the + rest. This reduces failures when authorities are slow or down. + Together with the code for feature 15775, it reduces failures due to fallback churn. + Implements ticket 4483 (reduce failures when authorities are down). + Patch by "teor". + Implements IPv4 portions of proposal 210 by "mikeperry" and + "teor". + + o Major features (controller): + - New "GETINFO hs/service/desc/id/" command to retrieve a hidden service + descriptor from a service's local hidden service descriptor cache. + Closes ticket 14846. + + o Major features (directory mirrors): + - Include an opt-in trial list of Default Fallback Directories in + add_default_fallback_dir_servers(). + "Tor has included a feature to fetch the initial consensus from nodes + other than the authorities for a while now. We just haven't shipped a + list of alternate locations for clients to go to yet. + Reasons why we might want to ship tor with a list of additional places + where clients can find the consensus is that it makes authority + reachability and BW less important. + We want them to have been around and using their current key, address, + and port for a while now (120 days), and have been running, a guard, + and a v2 directory mirror for most of that time." + We exclude BadExits and tor versions that aren't recommended. + We include an IPv6 address for each FallbackDir (see ticket 8374). + (Tor might not use IPv6 fallbacks until ticket the code for ticket6027 is merged.) + The unit test ensures that we successfully load all included + default fallback directories. + Closes ticket 15775. Patch by "teor". + OnionOO script by "weasel", "teor", "gsathya", and "karsten". + + o Major features (relay): + - When Tor is started as root on Linux and told to switch user ID, it + can now retain the capabilitity to bind to low ports. By default, + Tor will do this only when it's switching user ID and some low + ports have been configured. You can change this behavior with + the new option KeepBindCapabilities. Closes ticket 8195. + + o Minor feature (crypto): + - Add SHA512 support to crypto.c. Closes ticket 17663; patch from + George Tankersley. + + o Minor feature (directory downloads): + - Wait for busy authorities and fallbacks to become non-busy when + bootstrapping. (A similar change was made in 6c443e987d for + directory servers chosen from the consensus.) + Closes ticket 17864; patch by "teor". + + o Minor feature (fallback directories): + - Add UseDefaultFallbackDirs, which enables any hard-coded fallback + directory mirrors. Default is 1, set it to 0 to disable fallbacks. + Implements ticket 17576. Patch by "teor". + + o Minor feature (IPv6): + - Add a flag ipv6=address:orport to the DirAuthority and FallbackDir torrc + options. Add hard-coded ipv6 addresses for directory authorities with + ipv6 lines in their descriptors. + Closes ticket 17327; patch from Nick Mathewson / "teor". + - Add address policy assume_action support for IPv6 addresses. + - Limit IPv6 mask bits to 128. + - Warn when comparing against an AF_UNSPEC address in a policy, + it's almost always a bug. + Closes ticket 17863; patch by "teor". + + o Minor feature (logging): + - When logging to syslog, allow a tag to be added to the syslog + identity ("Tor"), i.e. the string prepended to every log message. + The tag can be configured by setting SyslogIdentityTag and defaults + to none. Setting it to "foo" will cause logs to be tagged as + "Tor-foo". Closes ticket 17194. + + o Minor feature (refactoring): + - Move logging of redundant policy entries in + policies_parse_exit_policy_internal into its own function. + Closes ticket 17608; patch from "juce". + + o Minor features (accounting): + - Added two modes to AccountingRule in torrc for + limiting just input or just output. + Closes ticket 15989; patch from "unixninja92". + + o Minor features (authorities): + - Update the V3 identity key for dannenberg: it was changed on + 18 November 2015. + Closes task 17906. Patch by "teor". + + o Minor features (build): + - Since our build process now uses 'make distcheck', we no longer force + "make dist" to depend on "make check". Closes ticket 17893; + patch from "cypherpunks." + + o Minor features (compilation): + - Repair some compilation issues with some recent (unreleased, alpha) + vesions of OpenSSL 1.1. Closes ticket 17549. + + o Minor features (controller): + - Adds FallbackDir entries to 'GETINFO config/defaults'. Closes tickets + 16774 and 17817. Patch by George Tankersley. + + o Minor features (crypto): + - When allocating a digest state object, allocate no more space than we + actually need. Previously, we were allocating as much space as the + state for the largest algorithm would need. This change saves up to + 672 bytes per circuit. Closes ticket 17796. + + o Minor features (directory system): + Previously only relays who explicitly opened a directory port (DirPort) + accepted directory requests from clients. Now all relays, with and without + a DirPort, who do not disable the DirCache option accept and serve + directory requests sent (tunnelled) through their ORPort. + Closes ticket 12538. + + o Minor features (exit policies, controllers): + - Add controller getinfo exit-policy/reject-private/[default,relay] + for the reject rules added by ExitPolicyRejectPrivate. This makes + it easier for stem to display exit policies. + - Add unit tests for getinfo exit-policy/*. + Finishes implementation for ticket 17183. Patch by "teor". + + o Minor features (fallback directories): + - Add a set of default fallback directories for the 0.2.8 alpha releases. + Closes ticket 17158. + Patch by "teor". + + o Minor features (geoip): + - Update geoip and geoip6 to the January 5 2016 Maxmind GeoLite2 + Country database. + + o Minor features (IPv6 support): + - Allow users to configure directory authorities and fallback + directory servers with IPv6 addresses and ORPorts. Resolves + ticket 6027. + + o Minor features (portability): + - Use timingsafe_memcmp() where available. Closes ticket 17944; + patch from <logan(a)hackers.mu>. + + o Minor features (relay, address discovery): + - Add a family argument to get_interface_addresses_raw() and + subfunctions to make network interface address interogation more + efficient. Now Tor can specifically ask for IPv4, IPv6 or both + types of interfaces from the operating system. Resolves ticket 17950. + - When get_interface_address6_list(.,AF_UNSPEC,.) is called and fails + to enumerate interface addresses using the platform-specific API, + have it rely on the UDP socket fallback technique to try and find + out what IP addresses (both IPv4 and IPv6) our machine has. Resolves + ticket 17951. + + o Minor features (replaycache): + - The replay cache now uses SHA256 instead of SHA1. + Implements feature 8961. + Patch by "teor", issue reported by "rransom". + + o Minor features (security): + - Adjust Tor's use of OpenSSL's RNG APIs so that they absolutely, + positively are not allowed to fail. Previously we depended on + internals about OpenSSL behavior. Closes ticket 17686. + - Never use the system entropy output directly for anything besides + seeding the PRNG. When we want to generate important keys, instead + of using system entropy directly, hash it with the PRNG stream. + This may help resist certain attacks based on broken OS entropy + implementations. Closes part of ticket 17694. + - Set unused entires in a smartlist to NULL. This helped catch a + (harmless) bug, and shouldn't affect performance too much. + Implements ticket 17026. + - Use SecureMemoryWipe() function to securely clean memory on + Windows. Implements feature 17986. + - Use explicit_bzero or memset_s when present. Previously, we'd use + OpenSSL's OPENSSL_cleanse() function. + Closes ticket 7419; patches from <logan(a)hackers.mu> and <selven(a)hackers.mu>. + + o Minor features (security, clock): + - Warn when the system clock is set back in time (when the + state file was last written in the future). Tor doesn't know + that consensuses have expired if the clock is in the past. + Patch by "teor". Implements ticket 17188. + + o Minor features (security, cryptography): + - Use modern system calls to generate strong entropy on platforms that + provide them. Closes ticket 13696. + + o Minor features (testing): + - Log more information when the backtrace tests fail. + Closes ticket 17892. Patch from "cypherpunks." + + o Minor features (unit tests, random number generation): + - Add unit tests that check for common RNG failure modes, such as + returning all zeroes, identical values, or incrementing values + (OpenSSL's rand_predictable feature). + Patch by "teor". + + o Minor features (unix permissions): + - Defer creation of Unix sockets until after setuid. This avoids needing + CAP_CHOWN and CAP_FOWNER when using systemd's CapabilityBoundingSet, or + chown and fowner when using SELinux. + Implements part of ticket 17562. Patch from Jamie Nguyen. + - If any directory created by Tor is marked as group readable, the + filesystem group is allowed to be either the default GID or the root + user. Allowing root to read the DataDirectory prevents the need for + CAP_READ_SEARCH when using systemd's CapabilityBoundingSet, or + dac_read_search when using SELinux. + Implements part of ticket 17562. Patch from Jamie Nguyen. + - Introduce DataDirectoryGroupReadable boolean. If set to 1, the + DataDirectory will be made readable by the default GID. + Implements part of ticket 17562. Patch from Jamie Nguyen. + + o Minor bugfix (crypto): + - Check the return value of HMAC and assert on failure. + Fixes bug 17658; bugfix on 0.2.3.6-alpha. + Patch by "teor". + + o Minor bugfix (fallback directories): + - Mark fallbacks as "too busy" when they return a 503 response, + rather than just marking authorities. + Fixes bug 17572; bugfix on 5c51b3f1f0d4 released in 0.2.4.7-alpha. + Patch by "teor". + + o Minor bugfix (IPv6 compatibility, unit tests): + - Make tor_ersatz_socketpair work on IPv6-only systems. + Fixes bug 17638; bugfix on 0.0.2pre8. + Patch by "teor". + + o Minor bugfix (relays, hidden services): + - Refuse connection requests to private OR addresses unless + ExtendAllowPrivateAddresses is set. Previously, tor would + connect, then refuse to send any cells to a private address. + Fixes bugs 17674 and 8976; bugfix on 0.2.3.21-rc. + Patch by "teor". + + o Minor bugfix (SipHash-2-4 performance): + - Improve performance when hashing non-multiple of 8 sized buffers, + based on Andrew Moon's Public Domain SipHash-2-4 implementation. + Fixes bug 17544; bugfix on 0.2.5.3-alpha. + + o Minor bugfix (testing): + - The test for log_heartbeat was incorrectly failing in timezones + with non-integer offsets. Instead of comparing the end of the + time string against a constant, compare it to the output of + format_local_iso_time when given the correct input. + Fixes bug 18039; bugfix on 0.2.5.4-alpha. + + o Minor bugfix (unit tests): + - Make unit tests pass on IPv6-only systems, and systems without + localhost addresses (like some FreeBSD jails). + Fixes bug 17632; bugfix on 0.2.7.3-rc. + Patch by "teor". + + o Minor bugfixes (accounting): + - The max bandwidth when using AccountRule sum + is now correctly logged. Fixes bug 18024; bugfix on 0.2.6.1-alpha. + Patch from "unixninja92". + + o Minor bugfixes (build): + - Mark all object files that include micro-revision.i as depending on + it, so as to make our build more reliable with parallel builds. + Fixes bug 17826; bugfix on 0.2.5.1-alpha. + + o Minor bugfixes (client, correctness): + - When closing an entry connection, generate a warning if we should + have sent an end cell for it but we haven't. Fixes bug 17876; + bugfix on 0.2.3.2-alpha. + + o Minor bugfixes (code correctness): + - Assert that allocated memory held by the reputation code is freed + according to its internal counters. Fixes bug 17753; bugfix on + tor-0.1.1.1-alpha. + + o Minor bugfixes (compilation): + - Don't try to use the pthrad_condattr_setclock() function unless + it actually exists. Fixes compilation on NetBSD-6.x. Fixes bug + 17819; bugfix on 0.2.6.3-alpha. + - Fix backtrace compilation on FreeBSD. Fixes bug 17827; bugfix on + tor-0.2.5.2-alpha. + - Fix compilation of sandbox.c with musl-libc. + Fixes bug 17347; bugfix on 0.2.5.1-alpha. + Patch from 'jamestk'. + - Fix search for libevent libraries on OpenBSD (and similar systems + which install libevent 1 and libevent 2 in parallel). Fixes bug + 16651; bugfix on 0.1.0.7-rc. + Patch from "rubiate". + - Isolate environment variables meant for tests from the rest of the + build system. Fixes bug 17818; bugfix on tor-0.2.7.3-rc. + - Replace usage of 'INLINE' with 'inline'. Fixes bug 17804; bugfix + on tor-0.0.2pre8. + + o Minor bugfixes (IPv6): + - Update the limits in max_dl_per_request for IPv6 address + length. Fixes bug 17573; bugfix on 0.2.1.5-alpha. + + o Minor bugfixes (linux seccomp2 sandbox): + - Fix a crash when using offline master ed25519 keys with the + Linux seccomp2 sandbox enabled. Fixes bug 17675; bugfix on + 0.2.7.3-alpha. + + o Minor bugfixes (logging): + - In log messages that include a function name, use __FUNCTION__ instead + of __PRETTY_FUNCTION__. In GCC, these are synonymous, but with clang + __PRETTY_FUNCTION__ has extra information we don't need. + Fixes bug 16563; bugfix on 0.0.2pre8. Fix by Tom van der Woerdt. + - Remove needless quotes from a log message about unparseable addresses. + Fixes bug 17843; bugfix on 0.2.3.3-alpha. + + o Minor bugfixes (makefile): + - Remove config.log only from make distclean, not from + make clean. Fixes bug 17924; bugfix on 0.2.4.1-alpha. + + o Minor bugfixes (portability): + - Remove an #endif from configure.ac so that we correctly detect + the presence of in6_addr.s6_addr32. Fixes bug 17923; bugfix on + 0.2.0.13-alpha. + + o Minor bugfixes (relays): + - Check that both the ORPort and DirPort (if present) are reachable + before publishing a relay descriptor. Otherwise, relays publish a + descriptor with DirPort 0 when the DirPort reachability test takes + longer than the ORPort reachability test. + Fixes bug 18050; bugfix on 0.1.0.1-rc. + Reported by "starlight", patch by "teor". + + o Minor bugfixes (routersets, IPv6): + - routerset_parse now accepts IPv6 literal addresses. + Fixes bug 17060; bugfix on 0.2.1.3-alpha. Patch by "teor". + + o Minor bugfixes (safe logging): + - When logging a malformed hostname received through socks4, scrub it + if SafeLogging says we should. Fixes bug 17419; bugfix on 0.1.1.16-rc. + + o Minor bugfixes (security): + - Make memwipe() do nothing when passed a NULL pointer + or zero size. Check size argument to memwipe() for underflow. + Fixes bug 18089; bugfix on 0.2.3.25 and 0.2.4.6-alpha. + Reported by "gk", patch by "teor". + + o Minor bugfixes (security, exit policies): + - ExitPolicyRejectPrivate rejects more private addresses by default. + Specifically, it rejects + the relay's outbound bind addresses (if configured), and + the relay's configured port addresses (such as ORPort and DirPort). + Fixes bug 17027; bugfix on 0.2.0.11-alpha. Patch by "teor". + + o Minor bugfixes (statistics code): + - Consistently check for overflow in round_*_to_next_multiple_of + functions, and add unit tests with additional and maximal values. + Fixes part of bug 13192; bugfix on 0.2.2.1-alpha. + - Handle edge cases in the laplace functions: avoid division by zero, + avoid taking the log of zero, and silence clang type conversion + warnings using round and trunc. Add unit tests for edge cases with + maximal values. Fixes part of bug 13192; bugfix on 0.2.6.2-alpha. + + o Minor bugfixes (tests): + - Fix a memory leak in the ntor test. Fixes bug 17778; bugfix on + 0.2.4.8-alpha. + + o Minor bugfixes (TLS context): + - Assert when the TLS contexts fail to initialize. Fixes bug 17683; + bugfix on 0.0.6. + + o Minor bugfixes (unit tests): + - Check the full results of SHA256 and SHA512 digests in the + unit tests. Bugfix on 0.2.2.4-alpha. Patch by "teor". + + o Code simplification and refactoring: + - Extract the more complicated parts of circuit_mark_for_close into + a new function run periodically before connections are freed. + This change removes more than half of the functions currently + in the "blob". + Closes ticket 17218. + - Clean up a little duplicated code in crypto_expand_key_material_TAP. + Closes ticket 17587; patch from "pfrankw". + - Decouple the list of streams needing to be attached to circuits + from the overall connection list. This change makes it possible to + attach streams quickly while both simplifying Tor's callgraph and + avoiding O(N) scans of the entire connection list. Closes ticket + 17590. + - When a direct directory request fails immediately on launch, + instead of relaunching that request from inside the code that + launches it, instead mark the connection for teardown. This + change simplifies Tor's callback and prevents the directory- + request launching code from invoking itself recursively. + Closes ticket 17589. + + o Documentation: + - Add a description of the correct use of the '--keygen' command-line + option. Closes ticket 17583; based on text by 's7r'. + - Document the minimum HeartbeatPeriod value. Closes ticket 15638. + - Explain actual minima for BandwidthRate. Closes ticket 16382. + - Fix a minor formatting typo in the manpage. Closes ticket + 17791. + - Mention torspec URL in the manpage and point the reader to it + whenever we mention a document that belongs in torspce. + Fixes issue 17392. + + o Removed features: + - Remove client-side support for connecting to Tor servers running + versions of Tor before 0.2.3.6-alpha. These servers didn't + support the v3 TLS handshake protocol, and are no longer allowed + on the Tor network. Implements the client side of ticket + 11150. Based on patches by Tom van der Woerdt. + - Remove code for OpenSSL dynamic locks; OpenSSL doesn't use them. + Closes ticket 17926. + + o Testing: + - Always test both ed25519 backends, so that we can be sure that + our batch-open replacement code works. Part of ticket 16794. + - Cover dns_resolve_impl() in dns.c with unit tests. Implements a + portion of ticket 16831. + - More unit tests for compat_libevent.c. Closes ticket 17075. + Patch from Ola Bini. + - More unit tests for procmon.c. Closes ticket 17078. + Patch from Ola Bini. + - More unit tests for tortls.c. Closes ticket 17082. + Patch from Ola Bini. + - More unit tests for util_format.c. Closes ticket 17084. + Patch from Ola Bini. + - New tests for directory.c functions. Closes ticket 17003. Patch + from Ola Bini. + - New tests for options_validate. Closes ticket 17076. Patch from + Ola Bini. + - Unit tests for directory_handle_command_get. Closes ticket 17004. + Patch from Reinaldo de Souza Jr. + + Changes in version 0.2.7.6 - 2015-12-10 Tor version 0.2.7.6 fixes a major bug in entry guard selection, as well as a minor bug in hidden service reliability. diff --git a/changes/11150 b/changes/11150 deleted file mode 100644 index b4d40ed..0000000 --- a/changes/11150 +++ /dev/null @@ -1,6 +0,0 @@ - o Removed features: - - Remove client-side support for connecting to Tor servers running - versions of Tor before 0.2.3.6-alpha. These servers didn't - support the v3 TLS handshake protocol, and are no longer allowed - on the Tor network. Implements the client side of ticket - 11150. Based on patches by Tom van der Woerdt. diff --git a/changes/17004 b/changes/17004 deleted file mode 100644 index 1dc9a23..0000000 --- a/changes/17004 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - Unit tests for directory_handle_command_get. Closes ticket 17004. - Patch from Reinaldo de Souza Jr. diff --git a/changes/17075 b/changes/17075 deleted file mode 100644 index a91ac67..0000000 --- a/changes/17075 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for compat_libevent.c. Closes ticket 17075. - Patch from Ola Bini. diff --git a/changes/17078 b/changes/17078 deleted file mode 100644 index af02877..0000000 --- a/changes/17078 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for procmon.c. Closes ticket 17078. - Patch from Ola Bini. diff --git a/changes/17082 b/changes/17082 deleted file mode 100644 index 30ed014..0000000 --- a/changes/17082 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for tortls.c. Closes ticket 17082. - Patch from Ola Bini. diff --git a/changes/17084 b/changes/17084 deleted file mode 100644 index 361e26f..0000000 --- a/changes/17084 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - More unit tests for util_format.c. Closes ticket 17084. - Patch from Ola Bini. diff --git a/changes/17573 b/changes/17573 deleted file mode 100644 index 95ef15a..0000000 --- a/changes/17573 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (IPv6): - - Update the limits in max_dl_per_request for IPv6 address - length. Fixes bug 17573; bugfix on 0.2.1.5-alpha. - diff --git a/changes/17826 b/changes/17826 deleted file mode 100644 index 7d0a17a..0000000 --- a/changes/17826 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (build): - - Mark all object files that include micro-revision.i as depending on - it, so as to make our build more reliable with parallel builds. - Fixes bug 17826; bugfix on 0.2.5.1-alpha. - diff --git a/changes/17926 b/changes/17926 deleted file mode 100644 index ee47db6..0000000 --- a/changes/17926 +++ /dev/null @@ -1,3 +0,0 @@ - o Removed features: - - Remove code for OpenSSL dynamic locks; OpenSSL doesn't use them. - Closes ticket 17926. diff --git a/changes/17944 b/changes/17944 deleted file mode 100644 index 0d8ed0a..0000000 --- a/changes/17944 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (portability): - - Use timingsafe_memcmp() where available. Closes ticket 17944; - patch from <logan(a)hackers.mu>. diff --git a/changes/7419 b/changes/7419 deleted file mode 100644 index 1073d95..0000000 --- a/changes/7419 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (security): - - Use explicit_bzero or memset_s when present. Previously, we'd use - OpenSSL's OPENSSL_cleanse() function. - Closes ticket 7419; patches from <logan(a)hackers.mu> and <selven(a)hackers.mu>. - - diff --git a/changes/bug15638 b/changes/bug15638 deleted file mode 100644 index cf5d469..0000000 --- a/changes/bug15638 +++ /dev/null @@ -1,2 +0,0 @@ - o Documentation: - - Document the minimum HeartbeatPeriod value. Closes ticket 15638. diff --git a/changes/bug16382 b/changes/bug16382 deleted file mode 100644 index 8faee98..0000000 --- a/changes/bug16382 +++ /dev/null @@ -1,3 +0,0 @@ - o Documentation: - - Explain actual minima for BandwidthRate. Closes ticket 16382. - diff --git a/changes/bug16563 b/changes/bug16563 deleted file mode 100644 index 19e59b3..0000000 --- a/changes/bug16563 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (logging): - - In log messages that include a function name, use __FUNCTION__ instead - of __PRETTY_FUNCTION__. In GCC, these are synonymous, but with clang - __PRETTY_FUNCTION__ has extra information we don't need. - Fixes bug 16563; bugfix on 0.0.2pre8. Fix by Tom van der Woerdt. - \ No newline at end of file diff --git a/changes/bug16651 b/changes/bug16651 deleted file mode 100644 index 1b8bd03..0000000 --- a/changes/bug16651 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (compilation): - - - Fix search for libevent libraries on OpenBSD (and similar systems - which install libevent 1 and libevent 2 in parallel). Fixes bug - 16651; bugfix on 0.1.0.7-rc. - Patch from "rubiate". diff --git a/changes/bug16794_ed b/changes/bug16794_ed deleted file mode 100644 index a43c401..0000000 --- a/changes/bug16794_ed +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - Always test both ed25519 backends, so that we can be sure that - our batch-open replacement code works. Part of ticket 16794. diff --git a/changes/bug17003 b/changes/bug17003 deleted file mode 100644 index 8125f0e..0000000 --- a/changes/bug17003 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - New tests for directory.c functions. Closes ticket 17003. Patch - from Ola Bini. diff --git a/changes/bug17026 b/changes/bug17026 deleted file mode 100644 index 30e75c2..0000000 --- a/changes/bug17026 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (security): - - Set unused entires in a smartlist to NULL. This helped catch a - (harmless) bug, and shouldn't affect performance too much. - Implements ticket 17026. - diff --git a/changes/bug17027-reject-private-bind-port b/changes/bug17027-reject-private-bind-port deleted file mode 100644 index e0c222a..0000000 --- a/changes/bug17027-reject-private-bind-port +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (security, exit policies): - - ExitPolicyRejectPrivate rejects more private addresses by default. - Specifically, it rejects - the relay's outbound bind addresses (if configured), and - the relay's configured port addresses (such as ORPort and DirPort). - Fixes bug 17027; bugfix on 0.2.0.11-alpha. Patch by "teor". diff --git a/changes/bug17194 b/changes/bug17194 deleted file mode 100644 index d717489..0000000 --- a/changes/bug17194 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor feature (logging): - - When logging to syslog, allow a tag to be added to the syslog - identity ("Tor"), i.e. the string prepended to every log message. - The tag can be configured by setting SyslogIdentityTag and defaults - to none. Setting it to "foo" will cause logs to be tagged as - "Tor-foo". Closes ticket 17194. - diff --git a/changes/bug17347 b/changes/bug17347 deleted file mode 100644 index 487b132..0000000 --- a/changes/bug17347 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Fix compilation of sandbox.c with musl-libc. - Fixes bug 17347; bugfix on 0.2.5.1-alpha. - Patch from 'jamestk'. diff --git a/changes/bug17419 b/changes/bug17419 deleted file mode 100644 index 00fde90..0000000 --- a/changes/bug17419 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (safe logging): - - When logging a malformed hostname received through socks4, scrub it - if SafeLogging says we should. Fixes bug 17419; bugfix on 0.1.1.16-rc. diff --git a/changes/bug17544 b/changes/bug17544 deleted file mode 100644 index 4316d07..0000000 --- a/changes/bug17544 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfix (SipHash-2-4 performance): - - Improve performance when hashing non-multiple of 8 sized buffers, - based on Andrew Moon's Public Domain SipHash-2-4 implementation. - Fixes bug 17544; bugfix on 0.2.5.3-alpha. diff --git a/changes/bug17549 b/changes/bug17549 deleted file mode 100644 index f0bb690..0000000 --- a/changes/bug17549 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (compilation): - - Repair some compilation issues with some recent (unreleased, alpha) - vesions of OpenSSL 1.1. Closes ticket 17549. diff --git a/changes/bug17562-DataDirectoryGroupReadable b/changes/bug17562-DataDirectoryGroupReadable deleted file mode 100644 index 2299148..0000000 --- a/changes/bug17562-DataDirectoryGroupReadable +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (unix permissions): - - Introduce DataDirectoryGroupReadable boolean. If set to 1, the - DataDirectory will be made readable by the default GID. - Implements part of ticket 17562. Patch from Jamie Nguyen. - diff --git a/changes/bug17562-allow-root-group-read b/changes/bug17562-allow-root-group-read deleted file mode 100644 index 29978fa..0000000 --- a/changes/bug17562-allow-root-group-read +++ /dev/null @@ -1,7 +0,0 @@ - o Minor features (unix permissions): - - If any directory created by Tor is marked as group readable, the - filesystem group is allowed to be either the default GID or the root - user. Allowing root to read the DataDirectory prevents the need for - CAP_READ_SEARCH when using systemd's CapabilityBoundingSet, or - dac_read_search when using SELinux. - Implements part of ticket 17562. Patch from Jamie Nguyen. diff --git a/changes/bug17562-defer-unix-socket-creation b/changes/bug17562-defer-unix-socket-creation deleted file mode 100644 index 3e21d35..0000000 --- a/changes/bug17562-defer-unix-socket-creation +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (unix permissions): - - Defer creation of Unix sockets until after setuid. This avoids needing - CAP_CHOWN and CAP_FOWNER when using systemd's CapabilityBoundingSet, or - chown and fowner when using SELinux. - Implements part of ticket 17562. Patch from Jamie Nguyen. diff --git a/changes/bug17572-fallback-by-digest b/changes/bug17572-fallback-by-digest deleted file mode 100644 index 3fba123..0000000 --- a/changes/bug17572-fallback-by-digest +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfix (fallback directories): - - Mark fallbacks as "too busy" when they return a 503 response, - rather than just marking authorities. - Fixes bug 17572; bugfix on 5c51b3f1f0d4 released in 0.2.4.7-alpha. - Patch by "teor". diff --git a/changes/bug17583 b/changes/bug17583 deleted file mode 100644 index d77d467..0000000 --- a/changes/bug17583 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation: - - Add a description of the correct use of the '--keygen' command-line - option. Closes ticket 17583; based on text by 's7r'. - diff --git a/changes/bug17589 b/changes/bug17589 deleted file mode 100644 index 4144af7..0000000 --- a/changes/bug17589 +++ /dev/null @@ -1,7 +0,0 @@ - o Code simplification and refactoring: - - When a direct directory request fails immediately on launch, - instead of relaunching that request from inside the code that - launches it, instead mark the connection for teardown. This - change simplifies Tor's callback and prevents the directory- - request launching code from invoking itself recursively. - Closes ticket 17589. \ No newline at end of file diff --git a/changes/bug17632-no-ipv4-no-localhost b/changes/bug17632-no-ipv4-no-localhost deleted file mode 100644 index 99a2e2c..0000000 --- a/changes/bug17632-no-ipv4-no-localhost +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfix (unit tests): - - Make unit tests pass on IPv6-only systems, and systems without - localhost addresses (like some FreeBSD jails). - Fixes bug 17632; bugfix on 0.2.7.3-rc. - Patch by "teor". diff --git a/changes/bug17638-ipv6-ersatz-socketpair b/changes/bug17638-ipv6-ersatz-socketpair deleted file mode 100644 index 90a74f4..0000000 --- a/changes/bug17638-ipv6-ersatz-socketpair +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfix (IPv6 compatibility, unit tests): - - Make tor_ersatz_socketpair work on IPv6-only systems. - Fixes bug 17638; bugfix on 0.0.2pre8. - Patch by "teor". - diff --git a/changes/bug17675 b/changes/bug17675 deleted file mode 100644 index 8326a0b..0000000 --- a/changes/bug17675 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (linux seccomp2 sandbox): - - Fix a crash when using offline master ed25519 keys with the - Linux seccomp2 sandbox enabled. Fixes bug 17675; bugfix on - 0.2.7.3-alpha. diff --git a/changes/bug17683 b/changes/bug17683 deleted file mode 100644 index e9d4751..0000000 --- a/changes/bug17683 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (TLS context): - - Assert when the TLS contexts fail to initialize. Fixes bug 17683; - bugfix on 0.0.6. diff --git a/changes/bug17686 b/changes/bug17686 deleted file mode 100644 index 78e6c8f..0000000 --- a/changes/bug17686 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (security): - - Adjust Tor's use of OpenSSL's RNG APIs so that they absolutely, - positively are not allowed to fail. Previously we depended on - internals about OpenSSL behavior. Closes ticket 17686. diff --git a/changes/bug17694_strongest b/changes/bug17694_strongest deleted file mode 100644 index 0a8954a..0000000 --- a/changes/bug17694_strongest +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (security): - - Never use the system entropy output directly for anything besides - seeding the PRNG. When we want to generate important keys, instead - of using system entropy directly, hash it with the PRNG stream. - This may help resist certain attacks based on broken OS entropy - implementations. Closes part of ticket 17694. \ No newline at end of file diff --git a/changes/bug17753 b/changes/bug17753 deleted file mode 100644 index 918712f..0000000 --- a/changes/bug17753 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (code correctness): - - Assert that allocated memory held by the reputation code is freed - according to its internal counters. Fixes bug 17753; bugfix on - tor-0.1.1.1-alpha. diff --git a/changes/bug17778 b/changes/bug17778 deleted file mode 100644 index 9844969..0000000 --- a/changes/bug17778 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (tests): - - Fix a memory leak in the ntor test. Fixes bug 17778; bugfix on - 0.2.4.8-alpha. diff --git a/changes/bug17791 b/changes/bug17791 deleted file mode 100644 index f191012..0000000 --- a/changes/bug17791 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation: - - Fix a minor formatting typo in the manpage. Closes ticket - 17791. - diff --git a/changes/bug17804 b/changes/bug17804 deleted file mode 100644 index bd2a3cb..0000000 --- a/changes/bug17804 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (compilation): - - Replace usage of 'INLINE' with 'inline'. Fixes bug 17804; bugfix - on tor-0.0.2pre8. diff --git a/changes/bug17818 b/changes/bug17818 deleted file mode 100644 index 3d9afe3..0000000 --- a/changes/bug17818 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (compilation): - - Isolate environment variables meant for tests from the rest of the - build system. Fixes bug 17818; bugfix on tor-0.2.7.3-rc. diff --git a/changes/bug17819 b/changes/bug17819 deleted file mode 100644 index 45c55f7..0000000 --- a/changes/bug17819 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (compilation): - - Don't try to use the pthrad_condattr_setclock() function unless - it actually exists. Fixes compilation on NetBSD-6.x. Fixes bug - 17819; bugfix on 0.2.6.3-alpha. diff --git a/changes/bug17827 b/changes/bug17827 deleted file mode 100644 index 04cd3b5..0000000 --- a/changes/bug17827 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (compilation): - - Fix backtrace compilation on FreeBSD. Fixes bug 17827; bugfix on - tor-0.2.5.2-alpha. diff --git a/changes/bug17843 b/changes/bug17843 deleted file mode 100644 index 6cb16a0..0000000 --- a/changes/bug17843 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (logging): - - Remove needless quotes from a log message about unparseable addresses. - Fixes bug 17843; bugfix on 0.2.3.3-alpha. diff --git a/changes/bug17876 b/changes/bug17876 deleted file mode 100644 index 7446336..0000000 --- a/changes/bug17876 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (client, correctness): - - When closing an entry connection, generate a warning if we should - have sent an end cell for it but we haven't. Fixes bug 17876; - bugfix on 0.2.3.2-alpha. - diff --git a/changes/bug17892 b/changes/bug17892 deleted file mode 100644 index 73c26e9..0000000 --- a/changes/bug17892 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (testing): - - Log more information when the backtrace tests fail. - Closes ticket 17892. Patch from "cypherpunks." - diff --git a/changes/bug17893 b/changes/bug17893 deleted file mode 100644 index 06808c0..0000000 --- a/changes/bug17893 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (build): - - Since our build process now uses 'make distcheck', we no longer force - "make dist" to depend on "make check". Closes ticket 17893; - patch from "cypherpunks." diff --git a/changes/bug17906 b/changes/bug17906 deleted file mode 100644 index b9174c3..0000000 --- a/changes/bug17906 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (authorities): - - Update the V3 identity key for dannenberg: it was changed on - 18 November 2015. - Closes task 17906. Patch by "teor". diff --git a/changes/bug17923 b/changes/bug17923 deleted file mode 100644 index d828520..0000000 --- a/changes/bug17923 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (portability): - - Remove an #endif from configure.ac so that we correctly detect - the presence of in6_addr.s6_addr32. Fixes bug 17923; bugfix on - 0.2.0.13-alpha. diff --git a/changes/bug17924 b/changes/bug17924 deleted file mode 100644 index aa5cf58..0000000 --- a/changes/bug17924 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfixes (makefile): - - Remove config.log only from make distclean, not from - make clean. Fixes bug 17924; bugfix on 0.2.4.1-alpha. - diff --git a/changes/bug18050 b/changes/bug18050 deleted file mode 100644 index 4457ed2..0000000 --- a/changes/bug18050 +++ /dev/null @@ -1,7 +0,0 @@ - o Minor bugfixes (relays): - - Check that both the ORPort and DirPort (if present) are reachable - before publishing a relay descriptor. Otherwise, relays publish a - descriptor with DirPort 0 when the DirPort reachability test takes - longer than the ORPort reachability test. - Fixes bug 18050; bugfix on 0.1.0.1-rc. - Reported by "starlight", patch by "teor". diff --git a/changes/bug18089 b/changes/bug18089 deleted file mode 100644 index b1ebd45..0000000 --- a/changes/bug18089 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bugfixes (security): - - Make memwipe() do nothing when passed a NULL pointer - or zero size. Check size argument to memwipe() for underflow. - Fixes bug 18089; bugfix on 0.2.3.25 and 0.2.4.6-alpha. - Reported by "gk", patch by "teor". diff --git a/changes/bug4483-multiple-consensus-downloads b/changes/bug4483-multiple-consensus-downloads deleted file mode 100644 index 7e8bcc2..0000000 --- a/changes/bug4483-multiple-consensus-downloads +++ /dev/null @@ -1,9 +0,0 @@ - o Major features (consensus downloads): - - Schedule multiple in-progress consensus downloads during client - bootstrap. Use the first one that starts downloading, close the - rest. This reduces failures when authorities are slow or down. - Together with the code for feature 15775, it reduces failures due to fallback churn. - Implements ticket 4483 (reduce failures when authorities are down). - Patch by "teor". - Implements IPv4 portions of proposal 210 by "mikeperry" and - "teor". diff --git a/changes/bug6027 b/changes/bug6027 deleted file mode 100644 index 65be544..0000000 --- a/changes/bug6027 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (IPv6 support): - - Allow users to configure directory authorities and fallback - directory servers with IPv6 addresses and ORPorts. Resolves - ticket 6027. diff --git a/changes/check-crypto-errors b/changes/check-crypto-errors deleted file mode 100644 index b3da7a1..0000000 --- a/changes/check-crypto-errors +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bugfix (crypto): - - Check the return value of HMAC and assert on failure. - Fixes bug 17658; bugfix on 0.2.3.6-alpha. - Patch by "teor". diff --git a/changes/cleanup_17587 b/changes/cleanup_17587 deleted file mode 100644 index a2cecdd..0000000 --- a/changes/cleanup_17587 +++ /dev/null @@ -1,3 +0,0 @@ - o Code simplification and refactoring: - - Clean up a little duplicated code in crypto_expand_key_material_TAP. - Closes ticket 17587; patch from "pfrankw". diff --git a/changes/decouple_circuit_mark b/changes/decouple_circuit_mark deleted file mode 100644 index a852f48..0000000 --- a/changes/decouple_circuit_mark +++ /dev/null @@ -1,6 +0,0 @@ - o Code simplification and refactoring: - - Extract the more complicated parts of circuit_mark_for_close into - a new function run periodically before connections are freed. - This change removes more than half of the functions currently - in the "blob". - Closes ticket 17218. diff --git a/changes/decouple_conn_attach b/changes/decouple_conn_attach deleted file mode 100644 index 8619c4d..0000000 --- a/changes/decouple_conn_attach +++ /dev/null @@ -1,6 +0,0 @@ - o Code simplification and refactoring: - - Decouple the list of streams needing to be attached to circuits - from the overall connection list. This change makes it possible to - attach streams quickly while both simplifying Tor's callgraph and - avoiding O(N) scans of the entire connection list. Closes ticket - 17590. diff --git a/changes/doc17392 b/changes/doc17392 deleted file mode 100644 index 3c93497..0000000 --- a/changes/doc17392 +++ /dev/null @@ -1,4 +0,0 @@ - o Documentation: - - Mention torspec URL in the manpage and point the reader to it - whenever we mention a document that belongs in torspce. - Fixes issue 17392. diff --git a/changes/feature12538 b/changes/feature12538 deleted file mode 100644 index 4e7ea9f..0000000 --- a/changes/feature12538 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (directory system): - Previously only relays who explicitly opened a directory port (DirPort) - accepted directory requests from clients. Now all relays, with and without - a DirPort, who do not disable the DirCache option accept and serve - directory requests sent (tunnelled) through their ORPort. - Closes ticket 12538. diff --git a/changes/feature13696 b/changes/feature13696 deleted file mode 100644 index 21c2188..0000000 --- a/changes/feature13696 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (security, cryptography): - - Use modern system calls to generate strong entropy on platforms that - provide them. Closes ticket 13696. diff --git a/changes/feature14846 b/changes/feature14846 deleted file mode 100644 index 4668761..0000000 --- a/changes/feature14846 +++ /dev/null @@ -1,4 +0,0 @@ - o Major features (controller): - - New "GETINFO hs/service/desc/id/" command to retrieve a hidden service - descriptor from a service's local hidden service descriptor cache. - Closes ticket 14846. diff --git a/changes/feature15775-fallback b/changes/feature15775-fallback deleted file mode 100644 index 3a0ff23..0000000 --- a/changes/feature15775-fallback +++ /dev/null @@ -1,19 +0,0 @@ - o Major features (directory mirrors): - - Include an opt-in trial list of Default Fallback Directories in - add_default_fallback_dir_servers(). - "Tor has included a feature to fetch the initial consensus from nodes - other than the authorities for a while now. We just haven't shipped a - list of alternate locations for clients to go to yet. - Reasons why we might want to ship tor with a list of additional places - where clients can find the consensus is that it makes authority - reachability and BW less important. - We want them to have been around and using their current key, address, - and port for a while now (120 days), and have been running, a guard, - and a v2 directory mirror for most of that time." - We exclude BadExits and tor versions that aren't recommended. - We include an IPv6 address for each FallbackDir (see ticket 8374). - (Tor might not use IPv6 fallbacks until ticket the code for ticket6027 is merged.) - The unit test ensures that we successfully load all included - default fallback directories. - Closes ticket 15775. Patch by "teor". - OnionOO script by "weasel", "teor", "gsathya", and "karsten". diff --git a/changes/feature16774 b/changes/feature16774 deleted file mode 100644 index dc9c329..0000000 --- a/changes/feature16774 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (controller): - - Adds FallbackDir entries to 'GETINFO config/defaults'. Closes tickets - 16774 and 17817. Patch by George Tankersley. diff --git a/changes/feature17076 b/changes/feature17076 deleted file mode 100644 index 50ebc96..0000000 --- a/changes/feature17076 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - New tests for options_validate. Closes ticket 17076. Patch from - Ola Bini. diff --git a/changes/feature17327 b/changes/feature17327 deleted file mode 100644 index 2fab099..0000000 --- a/changes/feature17327 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor feature (IPv6): - - Add a flag ipv6=address:orport to the DirAuthority and FallbackDir torrc - options. Add hard-coded ipv6 addresses for directory authorities with - ipv6 lines in their descriptors. - Closes ticket 17327; patch from Nick Mathewson / "teor". diff --git a/changes/feature17576-UseDefaultFallbackDirs b/changes/feature17576-UseDefaultFallbackDirs deleted file mode 100644 index 68843c4..0000000 --- a/changes/feature17576-UseDefaultFallbackDirs +++ /dev/null @@ -1,4 +0,0 @@ - o Minor feature (fallback directories): - - Add UseDefaultFallbackDirs, which enables any hard-coded fallback - directory mirrors. Default is 1, set it to 0 to disable fallbacks. - Implements ticket 17576. Patch by "teor". diff --git a/changes/feature17608 b/changes/feature17608 deleted file mode 100644 index d56bb7d..0000000 --- a/changes/feature17608 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor feature (refactoring): - - Move logging of redundant policy entries in - policies_parse_exit_policy_internal into its own function. - Closes ticket 17608; patch from "juce". diff --git a/changes/feature17663 b/changes/feature17663 deleted file mode 100644 index baad943..0000000 --- a/changes/feature17663 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor feature (crypto): - - Add SHA512 support to crypto.c. Closes ticket 17663; patch from - George Tankersley. diff --git a/changes/feature17796 b/changes/feature17796 deleted file mode 100644 index d96daed..0000000 --- a/changes/feature17796 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (crypto): - - When allocating a digest state object, allocate no more space than we - actually need. Previously, we were allocating as much space as the - state for the largest algorithm would need. This change saves up to - 672 bytes per circuit. Closes ticket 17796. - diff --git a/changes/feature17863 b/changes/feature17863 deleted file mode 100644 index 86c4e2c..0000000 --- a/changes/feature17863 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor feature (IPv6): - - Add address policy assume_action support for IPv6 addresses. - - Limit IPv6 mask bits to 128. - - Warn when comparing against an AF_UNSPEC address in a policy, - it's almost always a bug. - Closes ticket 17863; patch by "teor". diff --git a/changes/feature17864 b/changes/feature17864 deleted file mode 100644 index 1cf1562..0000000 --- a/changes/feature17864 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor feature (directory downloads): - - Wait for busy authorities and fallbacks to become non-busy when - bootstrapping. (A similar change was made in 6c443e987d for - directory servers chosen from the consensus.) - Closes ticket 17864; patch by "teor". diff --git a/changes/feature17950 b/changes/feature17950 deleted file mode 100644 index bc255a7..0000000 --- a/changes/feature17950 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (relay, address discovery): - - Add a family argument to get_interface_addresses_raw() and - subfunctions to make network interface address interogation more - efficient. Now Tor can specifically ask for IPv4, IPv6 or both - types of interfaces from the operating system. Resolves ticket 17950. diff --git a/changes/feature17951 b/changes/feature17951 deleted file mode 100644 index 67a6a8f..0000000 --- a/changes/feature17951 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (relay, address discovery): - - When get_interface_address6_list(.,AF_UNSPEC,.) is called and fails - to enumerate interface addresses using the platform-specific API, - have it rely on the UDP socket fallback technique to try and find - out what IP addresses (both IPv4 and IPv6) our machine has. Resolves - ticket 17951. diff --git a/changes/feature17986 b/changes/feature17986 deleted file mode 100644 index 8039701..0000000 --- a/changes/feature17986 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features (security): - - Use SecureMemoryWipe() function to securely clean memory on - Windows. Implements feature 17986. diff --git a/changes/feature8195 b/changes/feature8195 deleted file mode 100644 index 5c9a367..0000000 --- a/changes/feature8195 +++ /dev/null @@ -1,6 +0,0 @@ - o Major features (relay): - - When Tor is started as root on Linux and told to switch user ID, it - can now retain the capabilitity to bind to low ports. By default, - Tor will do this only when it's switching user ID and some low - ports have been configured. You can change this behavior with - the new option KeepBindCapabilities. Closes ticket 8195. diff --git a/changes/feature8961-replaycache-sha256 b/changes/feature8961-replaycache-sha256 deleted file mode 100644 index c761aa8..0000000 --- a/changes/feature8961-replaycache-sha256 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (replaycache): - - The replay cache now uses SHA256 instead of SHA1. - Implements feature 8961. - Patch by "teor", issue reported by "rransom". diff --git a/changes/first-hop-no-private b/changes/first-hop-no-private deleted file mode 100644 index 4cef638..0000000 --- a/changes/first-hop-no-private +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfix (relays, hidden services): - - Refuse connection requests to private OR addresses unless - ExtendAllowPrivateAddresses is set. Previously, tor would - connect, then refuse to send any cells to a private address. - Fixes bugs 17674 and 8976; bugfix on 0.2.3.21-rc. - Patch by "teor". diff --git a/changes/geoip-january2016 b/changes/geoip-january2016 deleted file mode 100644 index 0d94665..0000000 --- a/changes/geoip-january2016 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (geoip): - - Update geoip and geoip6 to the January 5 2016 Maxmind GeoLite2 - Country database. - diff --git a/changes/getinfo-private-exitpolicy b/changes/getinfo-private-exitpolicy deleted file mode 100644 index 29b3d76..0000000 --- a/changes/getinfo-private-exitpolicy +++ /dev/null @@ -1,6 +0,0 @@ - o Minor features (exit policies, controllers): - - Add controller getinfo exit-policy/reject-private/[default,relay] - for the reject rules added by ExitPolicyRejectPrivate. This makes - it easier for stem to display exit policies. - - Add unit tests for getinfo exit-policy/*. - Finishes implementation for ticket 17183. Patch by "teor". diff --git a/changes/laplace-edge-cases b/changes/laplace-edge-cases deleted file mode 100644 index b83346e..0000000 --- a/changes/laplace-edge-cases +++ /dev/null @@ -1,9 +0,0 @@ - o Minor bugfixes (statistics code): - - Handle edge cases in the laplace functions: avoid division by zero, - avoid taking the log of zero, and silence clang type conversion - warnings using round and trunc. Add unit tests for edge cases with - maximal values. Fixes part of bug 13192; bugfix on 0.2.6.2-alpha. - - Consistently check for overflow in round_*_to_next_multiple_of - functions, and add unit tests with additional and maximal values. - Fixes part of bug 13192; bugfix on 0.2.2.1-alpha. - diff --git a/changes/log_heartbeat_test b/changes/log_heartbeat_test deleted file mode 100644 index 7bcc53f..0000000 --- a/changes/log_heartbeat_test +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfix (testing): - - The test for log_heartbeat was incorrectly failing in timezones - with non-integer offsets. Instead of comparing the end of the - time string against a constant, compare it to the output of - format_local_iso_time when given the correct input. - Fixes bug 18039; bugfix on 0.2.5.4-alpha. diff --git a/changes/rand-failure-modes b/changes/rand-failure-modes deleted file mode 100644 index cc6ef47..0000000 --- a/changes/rand-failure-modes +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (unit tests, random number generation): - - Add unit tests that check for common RNG failure modes, such as - returning all zeroes, identical values, or incrementing values - (OpenSSL's rand_predictable feature). - Patch by "teor". diff --git a/changes/routerset-parse-IPv6-literals b/changes/routerset-parse-IPv6-literals deleted file mode 100644 index 52026f3..0000000 --- a/changes/routerset-parse-IPv6-literals +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (routersets, IPv6): - - routerset_parse now accepts IPv6 literal addresses. - Fixes bug 17060; bugfix on 0.2.1.3-alpha. Patch by "teor". diff --git a/changes/sha-unit-tests b/changes/sha-unit-tests deleted file mode 100644 index 437bff3..0000000 --- a/changes/sha-unit-tests +++ /dev/null @@ -1,3 +0,0 @@ - o Minor bugfixes (unit tests): - - Check the full results of SHA256 and SHA512 digests in the - unit tests. Bugfix on 0.2.2.4-alpha. Patch by "teor". diff --git a/changes/test16831 b/changes/test16831 deleted file mode 100644 index 7db2d14..0000000 --- a/changes/test16831 +++ /dev/null @@ -1,3 +0,0 @@ - o Testing: - - Cover dns_resolve_impl() in dns.c with unit tests. Implements a - portion of ticket 16831. diff --git a/changes/ticket15989 b/changes/ticket15989 deleted file mode 100644 index a0a904b..0000000 --- a/changes/ticket15989 +++ /dev/null @@ -1,9 +0,0 @@ - o Minor features (accounting): - - Added two modes to AccountingRule in torrc for - limiting just input or just output. - Closes ticket 15989; patch from "unixninja92". - - o Minor bugfixes (accounting): - - The max bandwidth when using AccountRule sum - is now correctly logged. Fixes bug 18024; bugfix on 0.2.6.1-alpha. - Patch from "unixninja92". diff --git a/changes/ticket17158 b/changes/ticket17158 deleted file mode 100644 index 6332248..0000000 --- a/changes/ticket17158 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor features (fallback directories): - - Add a set of default fallback directories for the 0.2.8 alpha releases. - Closes ticket 17158. - Patch by "teor". diff --git a/changes/warn-when-time-goes-backwards b/changes/warn-when-time-goes-backwards deleted file mode 100644 index 8a9485b..0000000 --- a/changes/warn-when-time-goes-backwards +++ /dev/null @@ -1,5 +0,0 @@ - o Minor features (security, clock): - - Warn when the system clock is set back in time (when the - state file was last written in the future). Tor doesn't know - that consensuses have expired if the clock is in the past. - Patch by "teor". Implements ticket 17188. diff --git a/scripts/maint/sortChanges.py b/scripts/maint/sortChanges.py index 7e25cef..d6ec0e2 100755 --- a/scripts/maint/sortChanges.py +++ b/scripts/maint/sortChanges.py @@ -16,10 +16,36 @@ def fetch(fn): s = "%s\n" % s.rstrip() return s +CSR='Code simplification and refactoring' + +REPLACEMENTS = { + # plurals + 'Minor bugfix' : 'Minor bugfixes', + 'Major bugfix' : 'Major bugfixes', + 'Minor feature' : 'Minor features', + 'Major feature' : 'Major features', + 'Removed feature' : 'Removed features', + 'Code simplification and refactorings' : CSR, + 'Code simplifications and refactoring' : CSR, + 'Code simplifications and refactorings' : CSR, + + # wrong words + 'Minor fix' : 'Minor bugfixes', + 'Major fix' : 'Major bugfixes', + 'Minor fixes' : 'Minor bugfixes', + 'Major fixes' : 'Major bugfixes', + 'Minor enhancement' : 'Minor features', + 'Minor enhancements' : 'Minor features', + 'Major enhancement' : 'Major features', + 'Major enhancements' : 'Major features', +} + def score(s,fname=None): m = re.match(r'^ +o ([^\n]*)\n(.*)', s, re.M|re.S) if not m: print >>sys.stderr, "Can't score %r from %s"%(s,fname) + heading = m.group(1) + heading = REPLACEMENTS.get(heading, heading) lw = m.group(1).lower() if lw.startswith("major feature"): score = 0 @@ -36,7 +62,7 @@ def score(s,fname=None): else: score = 100 - return (score, lw, m.group(1), m.group(2)) + return (score, lw, heading, m.group(2)) def splitChanges(s): this_entry = []

1 0

[tor/master] We can't do subbullets in changes files
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit d7a713a41e2b115e8aabe9744e8010000bec202a Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 16:49:06 2016 -0500 We can't do subbullets in changes files --- changes/bug17027-reject-private-bind-port | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/changes/bug17027-reject-private-bind-port b/changes/bug17027-reject-private-bind-port index 7d8f023..e0c222a 100644 --- a/changes/bug17027-reject-private-bind-port +++ b/changes/bug17027-reject-private-bind-port @@ -1,5 +1,6 @@ o Minor bugfixes (security, exit policies): - - ExitPolicyRejectPrivate rejects more private addresses by default: - * the relay's outbound bind addresses (if configured), and - * the relay's configured port addresses (such as ORPort and DirPort). + - ExitPolicyRejectPrivate rejects more private addresses by default. + Specifically, it rejects + the relay's outbound bind addresses (if configured), and + the relay's configured port addresses (such as ORPort and DirPort). Fixes bug 17027; bugfix on 0.2.0.11-alpha. Patch by "teor".

1 0

[tor/master] mention lintChanges.py in the coding standards
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit 311a13220cc511a9214cca3b4523b80600288c3b Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 16:47:47 2016 -0500 mention lintChanges.py in the coding standards --- doc/HACKING/CodingStandards.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/doc/HACKING/CodingStandards.md b/doc/HACKING/CodingStandards.md index bec0765..4aafa5d 100644 --- a/doc/HACKING/CodingStandards.md +++ b/doc/HACKING/CodingStandards.md @@ -80,6 +80,11 @@ When we go to make a release, we will concatenate all the entries in changes to make a draft changelog, and clear the directory. We'll then edit the draft changelog into a nice readable format. +To make sure that stuff is in the right format, we use +scripts/maint/lintChanges.py to check the changes files for +(superficial) validity. You can run this script on your own changes +files! + What needs a changes file? * A not-exhaustive list: Anything that might change user-visible

1 0

[tor/master] Make "lintchanges.py" pass on maint-0.2.7
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit 6352dde2a69631c32038f9a0b6422a5df6135b88 Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 15:53:44 2016 -0500 Make "lintchanges.py" pass on maint-0.2.7 --- changes/bug17906 | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/changes/bug17906 b/changes/bug17906 index fff76d1..b9174c3 100644 --- a/changes/bug17906 +++ b/changes/bug17906 @@ -1,4 +1,4 @@ o Minor features (authorities): - - Update the V3 identity key for dannenberg, it was changed on + - Update the V3 identity key for dannenberg: it was changed on 18 November 2015. - Closes task #17906. Patch by "teor". + Closes task 17906. Patch by "teor".

1 0

[tor/master] Fix all the warnings from lintChanges.py
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit deea08c13f9d6a3dc8eca612ddf09436da1af4f8 Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 16:46:29 2016 -0500 Fix all the warnings from lintChanges.py --- changes/17573 | 5 +++-- changes/17926 | 2 +- changes/7419 | 11 +++++------ changes/bug16651 | 5 +++-- changes/bug17026 | 2 +- changes/bug17027-reject-private-bind-port | 6 ++---- changes/bug17194 | 4 ++-- changes/bug17419 | 3 +-- changes/bug17549 | 6 +++--- changes/bug17562-DataDirectoryGroupReadable | 4 +++- changes/bug17562-allow-root-group-read | 3 ++- changes/bug17562-defer-unix-socket-creation | 3 ++- changes/bug17589 | 2 +- changes/bug17632-no-ipv4-no-localhost | 4 +--- changes/bug17638-ipv6-ersatz-socketpair | 4 ++-- changes/bug17686 | 2 +- changes/bug17753 | 2 +- changes/bug17876 | 2 +- changes/bug17923 | 2 +- changes/bug18050 | 6 +++--- changes/bug18089 | 7 +++---- changes/bug4483-multiple-consensus-downloads | 6 +++--- changes/bug6027 | 2 +- changes/check-crypto-errors | 3 +-- changes/cleanup_17587 | 2 +- changes/decouple_circuit_mark | 2 +- changes/decouple_conn_attach | 2 +- changes/feature15775-fallback | 6 +++--- changes/feature16774 | 6 +++--- changes/feature17950 | 2 +- changes/feature17951 | 2 +- changes/feature17986 | 2 +- changes/feature8195 | 2 +- changes/feature8961-replaycache-sha256 | 4 ++-- changes/first-hop-no-private | 4 +--- changes/geoip-january2016 | 2 +- changes/getinfo-private-exitpolicy | 2 +- changes/laplace-edge-cases | 5 +++-- changes/log_heartbeat_test | 2 +- changes/routerset-parse-IPv6-literals | 6 ++---- changes/sha-unit-tests | 4 +--- changes/ticket15989 | 4 ++-- changes/ticket17158 | 7 ++----- changes/warn-when-time-goes-backwards | 2 +- scripts/maint/lintChanges.py | 24 +++++++++++++++++++++++- 45 files changed, 100 insertions(+), 88 deletions(-) diff --git a/changes/17573 b/changes/17573 index fe1fd1c..95ef15a 100644 --- a/changes/17573 +++ b/changes/17573 @@ -1,3 +1,4 @@ - o Minor bigfixes (IPv6): + o Minor bugfixes (IPv6): - Update the limits in max_dl_per_request for IPv6 address - length. Closes ticket 17573. + length. Fixes bug 17573; bugfix on 0.2.1.5-alpha. + diff --git a/changes/17926 b/changes/17926 index 09bdbbe..ee47db6 100644 --- a/changes/17926 +++ b/changes/17926 @@ -1,3 +1,3 @@ - o Removed code: + o Removed features: - Remove code for OpenSSL dynamic locks; OpenSSL doesn't use them. Closes ticket 17926. diff --git a/changes/7419 b/changes/7419 index b792e8f..1073d95 100644 --- a/changes/7419 +++ b/changes/7419 @@ -1,7 +1,6 @@ - o Minor enhancement (security): - - Use explicit_bzero when present - from <logan(a)hackers.mu>. - - Use memset_s when present - from <selven(a)hackers.mu> + o Minor features (security): + - Use explicit_bzero or memset_s when present. Previously, we'd use + OpenSSL's OPENSSL_cleanse() function. + Closes ticket 7419; patches from <logan(a)hackers.mu> and <selven(a)hackers.mu>. + - 625538405474972d627b26d7a250ea36 (: diff --git a/changes/bug16651 b/changes/bug16651 index 096daea..1b8bd03 100644 --- a/changes/bug16651 +++ b/changes/bug16651 @@ -1,5 +1,6 @@ o Minor bugfixes (compilation): - Fix search for libevent libraries on OpenBSD (and similar systems - which install libevent 1 and libevent 2 in parallel). Resolves - ticket 16651. Patch from "rubiate". + which install libevent 1 and libevent 2 in parallel). Fixes bug + 16651; bugfix on 0.1.0.7-rc. + Patch from "rubiate". diff --git a/changes/bug17026 b/changes/bug17026 index 8b1ce3c..30e75c2 100644 --- a/changes/bug17026 +++ b/changes/bug17026 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (security): - Set unused entires in a smartlist to NULL. This helped catch a (harmless) bug, and shouldn't affect performance too much. Implements ticket 17026. diff --git a/changes/bug17027-reject-private-bind-port b/changes/bug17027-reject-private-bind-port index abc1431..7d8f023 100644 --- a/changes/bug17027-reject-private-bind-port +++ b/changes/bug17027-reject-private-bind-port @@ -1,7 +1,5 @@ - o Minor bug fixes (security, exit policies): + o Minor bugfixes (security, exit policies): - ExitPolicyRejectPrivate rejects more private addresses by default: * the relay's outbound bind addresses (if configured), and * the relay's configured port addresses (such as ORPort and DirPort). - Resolves ticket 17027. Patch by "teor". - Patch on 42b8fb5a1523 (11 Nov 2007), released in 0.2.0.11-alpha, - and on 0.2.7.3-rc. + Fixes bug 17027; bugfix on 0.2.0.11-alpha. Patch by "teor". diff --git a/changes/bug17194 b/changes/bug17194 index 26549b3..d717489 100644 --- a/changes/bug17194 +++ b/changes/bug17194 @@ -1,7 +1,7 @@ - o Minor feature: + o Minor feature (logging): - When logging to syslog, allow a tag to be added to the syslog identity ("Tor"), i.e. the string prepended to every log message. The tag can be configured by setting SyslogIdentityTag and defaults to none. Setting it to "foo" will cause logs to be tagged as - "Tor-foo". + "Tor-foo". Closes ticket 17194. diff --git a/changes/bug17419 b/changes/bug17419 index 8ad8edd..00fde90 100644 --- a/changes/bug17419 +++ b/changes/bug17419 @@ -1,4 +1,3 @@ - - o Minor bugfixes: + o Minor bugfixes (safe logging): - When logging a malformed hostname received through socks4, scrub it if SafeLogging says we should. Fixes bug 17419; bugfix on 0.1.1.16-rc. diff --git a/changes/bug17549 b/changes/bug17549 index 3650608..f0bb690 100644 --- a/changes/bug17549 +++ b/changes/bug17549 @@ -1,3 +1,3 @@ - o Minor bugfixes (compilation): - - Repair compilation with the most recent (unreleased, alpha) - vesions of OpenSSL 1.1. Fixes bug 17549. + o Minor features (compilation): + - Repair some compilation issues with some recent (unreleased, alpha) + vesions of OpenSSL 1.1. Closes ticket 17549. diff --git a/changes/bug17562-DataDirectoryGroupReadable b/changes/bug17562-DataDirectoryGroupReadable index 524e5ef..2299148 100644 --- a/changes/bug17562-DataDirectoryGroupReadable +++ b/changes/bug17562-DataDirectoryGroupReadable @@ -1,3 +1,5 @@ - o Minor bug fixes: + o Minor features (unix permissions): - Introduce DataDirectoryGroupReadable boolean. If set to 1, the DataDirectory will be made readable by the default GID. + Implements part of ticket 17562. Patch from Jamie Nguyen. + diff --git a/changes/bug17562-allow-root-group-read b/changes/bug17562-allow-root-group-read index 7a0903c..29978fa 100644 --- a/changes/bug17562-allow-root-group-read +++ b/changes/bug17562-allow-root-group-read @@ -1,6 +1,7 @@ - o Minor bug fixes: + o Minor features (unix permissions): - If any directory created by Tor is marked as group readable, the filesystem group is allowed to be either the default GID or the root user. Allowing root to read the DataDirectory prevents the need for CAP_READ_SEARCH when using systemd's CapabilityBoundingSet, or dac_read_search when using SELinux. + Implements part of ticket 17562. Patch from Jamie Nguyen. diff --git a/changes/bug17562-defer-unix-socket-creation b/changes/bug17562-defer-unix-socket-creation index f1896c0..3e21d35 100644 --- a/changes/bug17562-defer-unix-socket-creation +++ b/changes/bug17562-defer-unix-socket-creation @@ -1,4 +1,5 @@ - o Minor bug fixes: + o Minor features (unix permissions): - Defer creation of Unix sockets until after setuid. This avoids needing CAP_CHOWN and CAP_FOWNER when using systemd's CapabilityBoundingSet, or chown and fowner when using SELinux. + Implements part of ticket 17562. Patch from Jamie Nguyen. diff --git a/changes/bug17589 b/changes/bug17589 index 9110327..4144af7 100644 --- a/changes/bug17589 +++ b/changes/bug17589 @@ -1,4 +1,4 @@ - o Code simplificiation and refactoring: + o Code simplification and refactoring: - When a direct directory request fails immediately on launch, instead of relaunching that request from inside the code that launches it, instead mark the connection for teardown. This diff --git a/changes/bug17632-no-ipv4-no-localhost b/changes/bug17632-no-ipv4-no-localhost index 0462207..99a2e2c 100644 --- a/changes/bug17632-no-ipv4-no-localhost +++ b/changes/bug17632-no-ipv4-no-localhost @@ -1,7 +1,5 @@ o Minor bugfix (unit tests): - Make unit tests pass on IPv6-only systems, and systems without localhost addresses (like some FreeBSD jails). - Fixes bug #17632; bugfix on unit tests in 0.2.7.3-rc. - c464a367728d was a partial fix for this issue in #17255; - it was released in unit tests in 0.2.7.4-rc. + Fixes bug 17632; bugfix on 0.2.7.3-rc. Patch by "teor". diff --git a/changes/bug17638-ipv6-ersatz-socketpair b/changes/bug17638-ipv6-ersatz-socketpair index 6193065..90a74f4 100644 --- a/changes/bug17638-ipv6-ersatz-socketpair +++ b/changes/bug17638-ipv6-ersatz-socketpair @@ -1,5 +1,5 @@ o Minor bugfix (IPv6 compatibility, unit tests): - Make tor_ersatz_socketpair work on IPv6-only systems. - Fixes bug #17638; bugfix on a very early tor version, - earlier than 22dba27d8dd5 (23 Nov 2004) / svn:r2943. + Fixes bug 17638; bugfix on 0.0.2pre8. Patch by "teor". + diff --git a/changes/bug17686 b/changes/bug17686 index 8fa16c7..78e6c8f 100644 --- a/changes/bug17686 +++ b/changes/bug17686 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (security): - Adjust Tor's use of OpenSSL's RNG APIs so that they absolutely, positively are not allowed to fail. Previously we depended on internals about OpenSSL behavior. Closes ticket 17686. diff --git a/changes/bug17753 b/changes/bug17753 index 7d227d8..918712f 100644 --- a/changes/bug17753 +++ b/changes/bug17753 @@ -1,4 +1,4 @@ - o Minor bugfixes (code correctness) + o Minor bugfixes (code correctness): - Assert that allocated memory held by the reputation code is freed according to its internal counters. Fixes bug 17753; bugfix on tor-0.1.1.1-alpha. diff --git a/changes/bug17876 b/changes/bug17876 index 1bd3dd7..7446336 100644 --- a/changes/bug17876 +++ b/changes/bug17876 @@ -1,4 +1,4 @@ - o Minor bugfixes: + o Minor bugfixes (client, correctness): - When closing an entry connection, generate a warning if we should have sent an end cell for it but we haven't. Fixes bug 17876; bugfix on 0.2.3.2-alpha. diff --git a/changes/bug17923 b/changes/bug17923 index ea39960..d828520 100644 --- a/changes/bug17923 +++ b/changes/bug17923 @@ -1,4 +1,4 @@ - o Minor bugfixes: + o Minor bugfixes (portability): - Remove an #endif from configure.ac so that we correctly detect the presence of in6_addr.s6_addr32. Fixes bug 17923; bugfix on 0.2.0.13-alpha. diff --git a/changes/bug18050 b/changes/bug18050 index ce24a77..4457ed2 100644 --- a/changes/bug18050 +++ b/changes/bug18050 @@ -1,7 +1,7 @@ - o Minor fixes (relays): + o Minor bugfixes (relays): - Check that both the ORPort and DirPort (if present) are reachable before publishing a relay descriptor. Otherwise, relays publish a descriptor with DirPort 0 when the DirPort reachability test takes longer than the ORPort reachability test. - Closes bug #18050. Reported by "starlight", patch by "teor". - Bugfix on 0.1.0.1-rc, commit a1f1fa6ab on 27 Feb 2005. + Fixes bug 18050; bugfix on 0.1.0.1-rc. + Reported by "starlight", patch by "teor". diff --git a/changes/bug18089 b/changes/bug18089 index c1fb342..b1ebd45 100644 --- a/changes/bug18089 +++ b/changes/bug18089 @@ -1,6 +1,5 @@ - o Minor fixes (security): + o Minor bugfixes (security): - Make memwipe() do nothing when passed a NULL pointer or zero size. Check size argument to memwipe() for underflow. - Closes bug #18089. Reported by "gk", patch by "teor". - Bugfix on 0.2.3.25 and 0.2.4.6-alpha (#7352), - commit 49dd5ef3 on 7 Nov 2012. + Fixes bug 18089; bugfix on 0.2.3.25 and 0.2.4.6-alpha. + Reported by "gk", patch by "teor". diff --git a/changes/bug4483-multiple-consensus-downloads b/changes/bug4483-multiple-consensus-downloads index 23d22a8..7e8bcc2 100644 --- a/changes/bug4483-multiple-consensus-downloads +++ b/changes/bug4483-multiple-consensus-downloads @@ -2,8 +2,8 @@ - Schedule multiple in-progress consensus downloads during client bootstrap. Use the first one that starts downloading, close the rest. This reduces failures when authorities are slow or down. - With #15775, it reduces failures due to fallback churn. - Implements #4483 (reduce failures when authorities are down). + Together with the code for feature 15775, it reduces failures due to fallback churn. + Implements ticket 4483 (reduce failures when authorities are down). Patch by "teor". - Implements IPv4 portions of proposal #210 by "mikeperry" and + Implements IPv4 portions of proposal 210 by "mikeperry" and "teor". diff --git a/changes/bug6027 b/changes/bug6027 index 5233876..65be544 100644 --- a/changes/bug6027 +++ b/changes/bug6027 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (IPv6 support): - Allow users to configure directory authorities and fallback directory servers with IPv6 addresses and ORPorts. Resolves ticket 6027. diff --git a/changes/check-crypto-errors b/changes/check-crypto-errors index e41862c..b3da7a1 100644 --- a/changes/check-crypto-errors +++ b/changes/check-crypto-errors @@ -1,5 +1,4 @@ o Minor bugfix (crypto): - Check the return value of HMAC and assert on failure. - Fixes bug #17658; bugfix on commit in fdbb9cdf746b (11 Oct 2011) - in tor version 0.2.3.5-alpha-dev. + Fixes bug 17658; bugfix on 0.2.3.6-alpha. Patch by "teor". diff --git a/changes/cleanup_17587 b/changes/cleanup_17587 index 05e00fd..a2cecdd 100644 --- a/changes/cleanup_17587 +++ b/changes/cleanup_17587 @@ -1,3 +1,3 @@ - o Code simplifications and refactorings: + o Code simplification and refactoring: - Clean up a little duplicated code in crypto_expand_key_material_TAP. Closes ticket 17587; patch from "pfrankw". diff --git a/changes/decouple_circuit_mark b/changes/decouple_circuit_mark index 4b7ed77..a852f48 100644 --- a/changes/decouple_circuit_mark +++ b/changes/decouple_circuit_mark @@ -3,4 +3,4 @@ a new function run periodically before connections are freed. This change removes more than half of the functions currently in the "blob". - Closes ticket #17218. + Closes ticket 17218. diff --git a/changes/decouple_conn_attach b/changes/decouple_conn_attach index 6167b4e..8619c4d 100644 --- a/changes/decouple_conn_attach +++ b/changes/decouple_conn_attach @@ -1,4 +1,4 @@ - o Code simplification and refactorings: + o Code simplification and refactoring: - Decouple the list of streams needing to be attached to circuits from the overall connection list. This change makes it possible to attach streams quickly while both simplifying Tor's callgraph and diff --git a/changes/feature15775-fallback b/changes/feature15775-fallback index 567d01c..3a0ff23 100644 --- a/changes/feature15775-fallback +++ b/changes/feature15775-fallback @@ -11,9 +11,9 @@ and port for a while now (120 days), and have been running, a guard, and a v2 directory mirror for most of that time." We exclude BadExits and tor versions that aren't recommended. - We include an IPv6 address for each FallbackDir (#8374). - (Tor might not use IPv6 fallbacks until #6027 is merged.) + We include an IPv6 address for each FallbackDir (see ticket 8374). + (Tor might not use IPv6 fallbacks until ticket the code for ticket6027 is merged.) The unit test ensures that we successfully load all included default fallback directories. - Closes ticket #15775. Patch by "teor". + Closes ticket 15775. Patch by "teor". OnionOO script by "weasel", "teor", "gsathya", and "karsten". diff --git a/changes/feature16774 b/changes/feature16774 index 87ba488..dc9c329 100644 --- a/changes/feature16774 +++ b/changes/feature16774 @@ -1,3 +1,3 @@ - o Minor enhancement: - - Adds FallbackDir entries to 'GETINFO config/defaults'. Closes ticket - #16774 and 17817. Patch by George Tankersley. + o Minor features (controller): + - Adds FallbackDir entries to 'GETINFO config/defaults'. Closes tickets + 16774 and 17817. Patch by George Tankersley. diff --git a/changes/feature17950 b/changes/feature17950 index 5ea83ec..bc255a7 100644 --- a/changes/feature17950 +++ b/changes/feature17950 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (relay, address discovery): - Add a family argument to get_interface_addresses_raw() and subfunctions to make network interface address interogation more efficient. Now Tor can specifically ask for IPv4, IPv6 or both diff --git a/changes/feature17951 b/changes/feature17951 index 42ec32a..67a6a8f 100644 --- a/changes/feature17951 +++ b/changes/feature17951 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (relay, address discovery): - When get_interface_address6_list(.,AF_UNSPEC,.) is called and fails to enumerate interface addresses using the platform-specific API, have it rely on the UDP socket fallback technique to try and find diff --git a/changes/feature17986 b/changes/feature17986 index ef82bd3..8039701 100644 --- a/changes/feature17986 +++ b/changes/feature17986 @@ -1,3 +1,3 @@ - o Minor features: + o Minor features (security): - Use SecureMemoryWipe() function to securely clean memory on Windows. Implements feature 17986. diff --git a/changes/feature8195 b/changes/feature8195 index cb81f2e..5c9a367 100644 --- a/changes/feature8195 +++ b/changes/feature8195 @@ -1,4 +1,4 @@ - o Major features: + o Major features (relay): - When Tor is started as root on Linux and told to switch user ID, it can now retain the capabilitity to bind to low ports. By default, Tor will do this only when it's switching user ID and some low diff --git a/changes/feature8961-replaycache-sha256 b/changes/feature8961-replaycache-sha256 index c5b5c85..c761aa8 100644 --- a/changes/feature8961-replaycache-sha256 +++ b/changes/feature8961-replaycache-sha256 @@ -1,4 +1,4 @@ - o Minor enhancement (replaycache): + o Minor features (replaycache): - The replay cache now uses SHA256 instead of SHA1. - Implements feature #8961. + Implements feature 8961. Patch by "teor", issue reported by "rransom". diff --git a/changes/first-hop-no-private b/changes/first-hop-no-private index e8d0684..4cef638 100644 --- a/changes/first-hop-no-private +++ b/changes/first-hop-no-private @@ -2,7 +2,5 @@ - Refuse connection requests to private OR addresses unless ExtendAllowPrivateAddresses is set. Previously, tor would connect, then refuse to send any cells to a private address. - Fixes bugs 17674 and 8976; bugfix on b7c172c9ec76 (28 Aug 2012) - Original bug 6710, released in 0.2.3.21-rc and an 0.2.2 maint - release. + Fixes bugs 17674 and 8976; bugfix on 0.2.3.21-rc. Patch by "teor". diff --git a/changes/geoip-january2016 b/changes/geoip-january2016 index fe2d5c7..0d94665 100644 --- a/changes/geoip-january2016 +++ b/changes/geoip-january2016 @@ -1,4 +1,4 @@ - o Minor features: + o Minor features (geoip): - Update geoip and geoip6 to the January 5 2016 Maxmind GeoLite2 Country database. diff --git a/changes/getinfo-private-exitpolicy b/changes/getinfo-private-exitpolicy index e834516..29b3d76 100644 --- a/changes/getinfo-private-exitpolicy +++ b/changes/getinfo-private-exitpolicy @@ -3,4 +3,4 @@ for the reject rules added by ExitPolicyRejectPrivate. This makes it easier for stem to display exit policies. - Add unit tests for getinfo exit-policy/*. - Completes ticket #17183. Patch by "teor". + Finishes implementation for ticket 17183. Patch by "teor". diff --git a/changes/laplace-edge-cases b/changes/laplace-edge-cases index 6c8c77b..b83346e 100644 --- a/changes/laplace-edge-cases +++ b/changes/laplace-edge-cases @@ -1,8 +1,9 @@ - o Code simplifications and unit tests: + o Minor bugfixes (statistics code): - Handle edge cases in the laplace functions: avoid division by zero, avoid taking the log of zero, and silence clang type conversion warnings using round and trunc. Add unit tests for edge cases with - maximal values. + maximal values. Fixes part of bug 13192; bugfix on 0.2.6.2-alpha. - Consistently check for overflow in round_*_to_next_multiple_of functions, and add unit tests with additional and maximal values. + Fixes part of bug 13192; bugfix on 0.2.2.1-alpha. diff --git a/changes/log_heartbeat_test b/changes/log_heartbeat_test index 7db97ed..7bcc53f 100644 --- a/changes/log_heartbeat_test +++ b/changes/log_heartbeat_test @@ -3,4 +3,4 @@ with non-integer offsets. Instead of comparing the end of the time string against a constant, compare it to the output of format_local_iso_time when given the correct input. - Fixes bug 18039. + Fixes bug 18039; bugfix on 0.2.5.4-alpha. diff --git a/changes/routerset-parse-IPv6-literals b/changes/routerset-parse-IPv6-literals index c80c82c..52026f3 100644 --- a/changes/routerset-parse-IPv6-literals +++ b/changes/routerset-parse-IPv6-literals @@ -1,5 +1,3 @@ - o Minor bug fixes (routersets, IPv6): + o Minor bugfixes (routersets, IPv6): - routerset_parse now accepts IPv6 literal addresses. - Fix for ticket 17060. Patch by "teor". - Patch on 3ce6e2fba290 (24 Jul 2008), and related commits, - released in 0.2.1.3-alpha. + Fixes bug 17060; bugfix on 0.2.1.3-alpha. Patch by "teor". diff --git a/changes/sha-unit-tests b/changes/sha-unit-tests index 457578d..437bff3 100644 --- a/changes/sha-unit-tests +++ b/changes/sha-unit-tests @@ -1,5 +1,3 @@ o Minor bugfixes (unit tests): - Check the full results of SHA256 and SHA512 digests in the - unit tests. - Bugfix on a tor version before the refactoring in git commit - cea12251995d (23 Sep 2009). Patch by "teor". + unit tests. Bugfix on 0.2.2.4-alpha. Patch by "teor". diff --git a/changes/ticket15989 b/changes/ticket15989 index e90d0cf..a0a904b 100644 --- a/changes/ticket15989 +++ b/changes/ticket15989 @@ -1,9 +1,9 @@ - o Minor enhancement (accounting): + o Minor features (accounting): - Added two modes to AccountingRule in torrc for limiting just input or just output. Closes ticket 15989; patch from "unixninja92". - o Minor bugfixe (accounting): + o Minor bugfixes (accounting): - The max bandwidth when using AccountRule sum is now correctly logged. Fixes bug 18024; bugfix on 0.2.6.1-alpha. Patch from "unixninja92". diff --git a/changes/ticket17158 b/changes/ticket17158 index f65053d..6332248 100644 --- a/changes/ticket17158 +++ b/changes/ticket17158 @@ -1,7 +1,4 @@ - o Minor fixes (fallback directories): - - Fix a display issue in updateFallbackDirs.py output. - Patch by "teor". Not in any released version of tor. - o Minor features (fallback directories): - - Add default fallback directories for the 0.2.8 alpha releases. + - Add a set of default fallback directories for the 0.2.8 alpha releases. + Closes ticket 17158. Patch by "teor". diff --git a/changes/warn-when-time-goes-backwards b/changes/warn-when-time-goes-backwards index d7e584d..8a9485b 100644 --- a/changes/warn-when-time-goes-backwards +++ b/changes/warn-when-time-goes-backwards @@ -2,4 +2,4 @@ - Warn when the system clock is set back in time (when the state file was last written in the future). Tor doesn't know that consensuses have expired if the clock is in the past. - Patch by "teor". Implements ticket #17188. + Patch by "teor". Implements ticket 17188. diff --git a/scripts/maint/lintChanges.py b/scripts/maint/lintChanges.py index c2fc01d..a73110d 100755 --- a/scripts/maint/lintChanges.py +++ b/scripts/maint/lintChanges.py @@ -7,6 +7,20 @@ import re import os +KNOWN_GROUPS=set([ + "Minor bugfix", + "Minor bugfixes", + "Major bugfix", + "Major bugfixes", + "Minor feature", + "Minor features", + "Major feature", + "Major features", + "Testing", + "Documentation", + "Code simplification and refactoring", + "Removed features"]) + def lintfile(fname): have_warned = [] @@ -31,8 +45,16 @@ def lintfile(fname): lines = contents.split("\n") isBug = ("bug" in lines[0] or "fix" in lines[0]) - if not re.match(r'^[ ]{2}o (.*)', contents): + m = re.match(r'^[ ]{2}o ([^\(:]*)([^:]*):', contents) + if not m: warn("header not in format expected") + elif m.group(1).strip() not in KNOWN_GROUPS: + warn("Weird header: %r"%m.group(1)) + elif ( ("bugfix" in m.group(1) or "feature" in m.group(1)) and + ("Removed" not in m.group(1)) and + '(' not in m.group(2)): + warn("Missing subcategory on %s"%m.group(1)) + contents = " ".join(contents.split())

1 0

[tor/master] We don't include fixes for non-released bugs in the changelog
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit 8ea48a59195b68c95261d2df3cdfacf12a6418d6 Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 16:06:55 2016 -0500 We don't include fixes for non-released bugs in the changelog --- changes/bug17724 | 4 ---- changes/bug17763 | 5 ----- changes/bug17776 | 6 ------ changes/bug17887 | 6 ------ changes/bug17888 | 6 ------ changes/bug18035 | 6 ------ 6 files changed, 33 deletions(-) diff --git a/changes/bug17724 b/changes/bug17724 deleted file mode 100644 index 7ace99e..0000000 --- a/changes/bug17724 +++ /dev/null @@ -1,4 +0,0 @@ - o Minor bug fixes (unit tests, hidden services): - - Avoid relying on malloc internals in test_rend_cache_purge. - Closes ticket 17724. Bug fix on ade5005853c1 and 5e9f2384cf0f, - not in any released version of Tor. Patch by "teor". diff --git a/changes/bug17763 b/changes/bug17763 deleted file mode 100644 index d565d13..0000000 --- a/changes/bug17763 +++ /dev/null @@ -1,5 +0,0 @@ - o Minor bug fixes (exit policies): - - Consistently ignore multicast addresses when automatically - generating reject private exit policies. - Closes ticket 17763. Bug fix on 10a6390deb3c9, - not in any released version of Tor. Patch by "teor". diff --git a/changes/bug17776 b/changes/bug17776 deleted file mode 100644 index a949625..0000000 --- a/changes/bug17776 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor bugfixes (tests): - - Fix buffer over-reads in the directory tests. Fixes bug 17776; not in any - released version of Tor. - - Fix buffer over-reads in the rendcache tests. Fixes bug 17776; not in any - released version of Tor. - diff --git a/changes/bug17887 b/changes/bug17887 deleted file mode 100644 index 423c298..0000000 --- a/changes/bug17887 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor fixes (fallback directories): - - Allow cached or outdated Onionoo data to be used to choose - fallback directories, as long as it's less than a day old. - Modify last modified date checks in preparation for Onionoo change - #16907. Closes ticket #17887. Patch by "teor". Not in any released - version of tor. diff --git a/changes/bug17888 b/changes/bug17888 deleted file mode 100644 index 04e40b1..0000000 --- a/changes/bug17888 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor fixes (fallback directories): - - When selecting exits as fallback directories, don't reduce - their weights. (Several operators report having exits with - spare capacity.) - Closes ticket #17888. Patch by "teor". Not in any released - version of tor. diff --git a/changes/bug18035 b/changes/bug18035 deleted file mode 100644 index 31889f5..0000000 --- a/changes/bug18035 +++ /dev/null @@ -1,6 +0,0 @@ - o Minor fixes (fallback directories): - - Work around an issue where OnionOO supplies the entire history, - rather than the requested 120 days. Activate debug logging by - default. Fix other minor calculation and compatibility issues. - Closes ticket #18035. Patch by "starlight", merge fixes by - "teor". Not in any released version of tor.

1 0

[tor/master] Merge branch 'maint-0.2.7'
by nickm＠torproject.org 01 Feb '16

01 Feb '16

commit 93f3f4ae7ad37ad634c6b210753f940d257942a6 Merge: c6fa55d 6352dde Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 1 15:53:54 2016 -0500 Merge branch 'maint-0.2.7' changes/bug17906 | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-)

1 0

[tor-messenger-build/master] Remove the SPI cert file
by sukhbir＠torproject.org 01 Feb '16

01 Feb '16

commit 12a11b7d16954e907d2c91b98ff0699fac61f88a Author: Sukhbir Singh <sukhbir(a)torproject.org> Date: Mon Feb 1 16:17:51 2016 -0500 Remove the SPI cert file --- projects/instantbird/spi-cacert.der | 223 ------------------------------------ 1 file changed, 223 deletions(-) diff --git a/projects/instantbird/spi-cacert.der b/projects/instantbird/spi-cacert.der deleted file mode 100644 index 4b8bd47..0000000 --- a/projects/instantbird/spi-cacert.der +++ /dev/null @@ -1,223 +0,0 @@ - -# -# Certificate "SPI Root Certificate (spi-inc.org)" -# -# Issuer: E=hostmaster(a)spi-inc.org,CN=Certificate Authority,OU=hostmaster,O=Software in the Public Interest,L=Indianapolis,ST=Indiana,C=US -# Serial Number:00:e8:8e:b6:c9:f8:2a:14:28 -# Subject: E=hostmaster(a)spi-inc.org,CN=Certificate Authority,OU=hostmaster,O=Software in the Public Interest,L=Indianapolis,ST=Indiana,C=US -# Not Valid Before: Tue May 13 08:07:56 2008 -# Not Valid After : Fri May 11 08:07:56 2018 -# Fingerprint (SHA-256): 80:B1:D6:EC:2D:4C:B6:84:64:01:33:CF:37:22:C5:40:DB:2B:6C:C9:3E:EC:A4:F0:2B:A1:2A:6A:27:72:1A:2C -# Fingerprint (SHA1): AF:70:88:43:83:82:02:15:CD:61:C6:BC:EC:FD:37:24:A9:90:43:1C -CKA_CLASS CK_OBJECT_CLASS CKO_CERTIFICATE -CKA_TOKEN CK_BBOOL CK_TRUE -CKA_PRIVATE CK_BBOOL CK_FALSE -CKA_MODIFIABLE CK_BBOOL CK_FALSE -CKA_LABEL UTF8 "SPI Root Certificate (spi-inc.org)" -CKA_CERTIFICATE_TYPE CK_CERTIFICATE_TYPE CKC_X_509 -CKA_SUBJECT MULTILINE_OCTAL -\060\201\274\061\013\060\011\006\003\125\004\006\023\002\125\123 -\061\020\060\016\006\003\125\004\010\023\007\111\156\144\151\141 -\156\141\061\025\060\023\006\003\125\004\007\023\014\111\156\144 -\151\141\156\141\160\157\154\151\163\061\050\060\046\006\003\125 -\004\012\023\037\123\157\146\164\167\141\162\145\040\151\156\040 -\164\150\145\040\120\165\142\154\151\143\040\111\156\164\145\162 -\145\163\164\061\023\060\021\006\003\125\004\013\023\012\150\157 -\163\164\155\141\163\164\145\162\061\036\060\034\006\003\125\004 -\003\023\025\103\145\162\164\151\146\151\143\141\164\145\040\101 -\165\164\150\157\162\151\164\171\061\045\060\043\006\011\052\206 -\110\206\367\015\001\011\001\026\026\150\157\163\164\155\141\163 -\164\145\162\100\163\160\151\055\151\156\143\056\157\162\147 -END -CKA_ID UTF8 "0" -CKA_ISSUER MULTILINE_OCTAL -\060\201\274\061\013\060\011\006\003\125\004\006\023\002\125\123 -\061\020\060\016\006\003\125\004\010\023\007\111\156\144\151\141 -\156\141\061\025\060\023\006\003\125\004\007\023\014\111\156\144 -\151\141\156\141\160\157\154\151\163\061\050\060\046\006\003\125 -\004\012\023\037\123\157\146\164\167\141\162\145\040\151\156\040 -\164\150\145\040\120\165\142\154\151\143\040\111\156\164\145\162 -\145\163\164\061\023\060\021\006\003\125\004\013\023\012\150\157 -\163\164\155\141\163\164\145\162\061\036\060\034\006\003\125\004 -\003\023\025\103\145\162\164\151\146\151\143\141\164\145\040\101 -\165\164\150\157\162\151\164\171\061\045\060\043\006\011\052\206 -\110\206\367\015\001\011\001\026\026\150\157\163\164\155\141\163 -\164\145\162\100\163\160\151\055\151\156\143\056\157\162\147 -END -CKA_SERIAL_NUMBER MULTILINE_OCTAL -\002\011\000\350\216\266\311\370\052\024\050 -END -CKA_VALUE MULTILINE_OCTAL -\060\202\010\016\060\202\005\366\240\003\002\001\002\002\011\000 -\350\216\266\311\370\052\024\050\060\015\006\011\052\206\110\206 -\367\015\001\001\005\005\000\060\201\274\061\013\060\011\006\003 -\125\004\006\023\002\125\123\061\020\060\016\006\003\125\004\010 -\023\007\111\156\144\151\141\156\141\061\025\060\023\006\003\125 -\004\007\023\014\111\156\144\151\141\156\141\160\157\154\151\163 -\061\050\060\046\006\003\125\004\012\023\037\123\157\146\164\167 -\141\162\145\040\151\156\040\164\150\145\040\120\165\142\154\151 -\143\040\111\156\164\145\162\145\163\164\061\023\060\021\006\003 -\125\004\013\023\012\150\157\163\164\155\141\163\164\145\162\061 -\036\060\034\006\003\125\004\003\023\025\103\145\162\164\151\146 -\151\143\141\164\145\040\101\165\164\150\157\162\151\164\171\061 -\045\060\043\006\011\052\206\110\206\367\015\001\011\001\026\026 -\150\157\163\164\155\141\163\164\145\162\100\163\160\151\055\151 -\156\143\056\157\162\147\060\036\027\015\060\070\060\065\061\063 -\060\070\060\067\065\066\132\027\015\061\070\060\065\061\061\060 -\070\060\067\065\066\132\060\201\274\061\013\060\011\006\003\125 -\004\006\023\002\125\123\061\020\060\016\006\003\125\004\010\023 -\007\111\156\144\151\141\156\141\061\025\060\023\006\003\125\004 -\007\023\014\111\156\144\151\141\156\141\160\157\154\151\163\061 -\050\060\046\006\003\125\004\012\023\037\123\157\146\164\167\141 -\162\145\040\151\156\040\164\150\145\040\120\165\142\154\151\143 -\040\111\156\164\145\162\145\163\164\061\023\060\021\006\003\125 -\004\013\023\012\150\157\163\164\155\141\163\164\145\162\061\036 -\060\034\006\003\125\004\003\023\025\103\145\162\164\151\146\151 -\143\141\164\145\040\101\165\164\150\157\162\151\164\171\061\045 -\060\043\006\011\052\206\110\206\367\015\001\011\001\026\026\150 -\157\163\164\155\141\163\164\145\162\100\163\160\151\055\151\156 -\143\056\157\162\147\060\202\002\042\060\015\006\011\052\206\110 -\206\367\015\001\001\001\005\000\003\202\002\017\000\060\202\002 -\012\002\202\002\001\000\334\066\346\107\102\302\304\121\165\051 -\207\100\303\330\216\041\006\322\030\116\353\357\040\275\220\074 -\205\020\023\214\051\133\224\143\366\364\055\361\006\102\221\271 -\031\304\102\151\010\277\213\066\105\352\050\005\063\111\110\240 -\047\103\223\065\212\101\330\170\263\360\357\263\156\055\335\321 -\313\175\352\364\165\046\323\076\220\072\356\327\347\054\004\265 -\174\341\365\174\305\116\357\167\275\134\242\223\063\222\316\175 -\201\110\317\153\265\042\054\010\203\375\323\325\317\073\055\375 -\265\111\220\133\366\255\115\023\312\336\323\246\235\123\121\161 -\143\106\370\112\026\134\230\356\055\155\232\026\241\166\220\342 -\140\103\231\326\211\326\154\056\172\230\262\013\003\054\343\172 -\117\307\335\343\314\343\112\152\215\171\122\372\364\301\257\056 -\217\052\010\313\033\051\202\222\162\103\274\316\210\251\252\247 -\212\121\103\125\205\232\067\003\170\223\310\360\275\264\101\310 -\007\102\232\313\065\227\172\212\201\145\336\035\124\010\001\361 -\144\134\267\027\032\121\274\036\303\131\207\166\030\026\230\356 -\277\366\147\201\213\006\065\305\113\155\131\031\307\322\306\110 -\276\156\024\050\203\112\020\234\033\365\157\274\251\216\365\151 -\376\262\301\125\314\347\024\311\371\133\024\123\121\007\352\316 -\075\344\117\050\037\074\141\011\327\063\322\156\247\156\324\307 -\023\011\157\153\135\024\356\235\211\033\245\152\362\366\370\320 -\162\216\352\162\037\057\064\152\051\012\305\012\354\034\100\205 -\022\367\246\245\323\117\255\300\205\214\114\174\163\040\314\123 -\030\361\262\130\114\001\365\277\352\144\325\134\071\305\316\154 -\314\123\132\126\272\101\017\045\337\153\120\266\307\212\240\275 -\002\302\305\073\125\245\262\144\042\204\121\050\126\256\061\356 -\136\373\013\026\115\106\005\221\200\104\355\254\155\360\127\250 -\372\353\141\110\240\313\033\263\037\216\315\305\041\167\003\204 -\036\374\254\243\103\010\143\214\355\371\047\357\264\260\135\147 -\326\117\355\320\213\076\135\133\311\221\275\226\002\204\075\305 -\115\274\102\077\164\375\074\135\254\134\110\066\136\207\061\057 -\030\154\304\150\356\241\213\311\131\320\030\343\000\200\263\124 -\047\056\231\360\025\123\002\003\001\000\001\243\202\002\017\060 -\202\002\013\060\035\006\003\125\035\016\004\026\004\024\064\161 -\321\070\327\025\066\203\107\153\327\067\144\102\073\216\215\122 -\235\253\060\201\361\006\003\125\035\043\004\201\351\060\201\346 -\200\024\064\161\321\070\327\025\066\203\107\153\327\067\144\102 -\073\216\215\122\235\253\241\201\302\244\201\277\060\201\274\061 -\013\060\011\006\003\125\004\006\023\002\125\123\061\020\060\016 -\006\003\125\004\010\023\007\111\156\144\151\141\156\141\061\025 -\060\023\006\003\125\004\007\023\014\111\156\144\151\141\156\141 -\160\157\154\151\163\061\050\060\046\006\003\125\004\012\023\037 -\123\157\146\164\167\141\162\145\040\151\156\040\164\150\145\040 -\120\165\142\154\151\143\040\111\156\164\145\162\145\163\164\061 -\023\060\021\006\003\125\004\013\023\012\150\157\163\164\155\141 -\163\164\145\162\061\036\060\034\006\003\125\004\003\023\025\103 -\145\162\164\151\146\151\143\141\164\145\040\101\165\164\150\157 -\162\151\164\171\061\045\060\043\006\011\052\206\110\206\367\015 -\001\011\001\026\026\150\157\163\164\155\141\163\164\145\162\100 -\163\160\151\055\151\156\143\056\157\162\147\202\011\000\350\216 -\266\311\370\052\024\050\060\017\006\003\125\035\023\001\001\377 -\004\005\060\003\001\001\377\060\021\006\011\140\206\110\001\206 -\370\102\001\001\004\004\003\002\000\007\060\011\006\003\125\035 -\022\004\002\060\000\060\056\006\011\140\206\110\001\206\370\102 -\001\015\004\041\026\037\123\157\146\164\167\141\162\145\040\151 -\156\040\164\150\145\040\120\165\142\154\151\143\040\111\156\164 -\145\162\145\163\164\060\060\006\011\140\206\110\001\206\370\102 -\001\004\004\043\026\041\150\164\164\160\163\072\057\057\143\141 -\056\163\160\151\055\151\156\143\056\157\162\147\057\143\141\055 -\143\162\154\056\160\145\155\060\062\006\011\140\206\110\001\206 -\370\102\001\003\004\045\026\043\150\164\164\160\163\072\057\057 -\143\141\056\163\160\151\055\151\156\143\056\157\162\147\057\143 -\145\162\164\055\143\162\154\056\160\145\155\060\041\006\003\125 -\035\021\004\032\060\030\201\026\150\157\163\164\155\141\163\164 -\145\162\100\163\160\151\055\151\156\143\056\157\162\147\060\016 -\006\003\125\035\017\001\001\377\004\004\003\002\001\006\060\015 -\006\011\052\206\110\206\367\015\001\001\005\005\000\003\202\002 -\001\000\264\315\275\340\271\352\262\003\053\176\062\351\336\162 -\077\311\113\202\136\235\342\257\125\011\242\014\124\350\317\030 -\074\050\040\035\251\273\003\002\057\122\071\042\371\027\317\255 -\147\220\263\003\177\330\025\343\153\176\273\233\126\001\257\065 -\324\332\271\307\147\027\233\324\325\016\067\263\040\101\056\014 -\001\304\133\371\145\076\302\141\350\322\360\152\225\160\303\306 -\157\325\065\244\254\131\162\341\211\337\241\240\235\044\275\051 -\171\351\141\052\331\323\036\311\106\244\010\170\101\222\162\017 -\253\024\165\355\011\360\242\360\134\357\303\012\142\040\267\302 -\050\146\256\114\057\056\217\105\143\046\226\360\356\061\346\213 -\125\233\252\072\371\202\071\035\210\074\342\007\165\032\341\017 -\261\060\274\161\062\322\072\376\372\241\211\363\103\054\326\162 -\304\171\247\025\110\005\300\330\055\162\002\343\313\075\026\152 -\272\311\270\021\020\342\111\205\314\226\107\140\005\045\056\357 -\165\131\063\365\107\031\026\357\332\154\137\007\310\246\120\266 -\035\313\146\064\045\374\146\203\353\305\266\060\101\370\106\104 -\142\250\301\014\124\346\352\114\132\050\346\256\306\267\376\177 -\073\226\250\056\356\307\150\076\335\000\075\051\257\052\143\253 -\137\356\111\052\055\305\334\373\321\306\323\321\227\126\122\206 -\266\224\353\324\140\121\267\374\036\233\314\002\233\324\037\217 -\371\112\217\266\056\050\073\027\314\305\246\005\343\322\323\265 -\306\003\311\341\110\102\233\313\077\344\027\340\376\015\001\225 -\011\272\270\015\161\344\011\160\167\102\330\115\341\102\251\140 -\203\327\027\211\103\322\324\335\247\030\266\253\324\044\045\207 -\265\324\342\374\056\042\151\275\255\150\054\377\162\265\230\252 -\006\234\347\052\152\270\241\223\166\316\260\363\177\234\341\340 -\117\270\330\206\106\245\063\002\054\045\141\067\052\222\310\254 -\201\164\150\143\207\063\166\275\005\177\136\325\325\002\155\275 -\257\377\052\132\252\111\354\230\171\107\123\221\366\016\064\132 -\311\245\306\353\262\343\305\254\266\240\160\065\273\310\121\151 -\320\362\265\242\062\156\274\077\240\067\071\174\161\066\246\005 -\337\014\022\344\026\247\305\326\313\143\243\225\160\077\346\004 -\243\140 -END - -# Trust for "SPI Root Certificate (spi-inc.org)" -# Issuer: E=hostmaster(a)spi-inc.org,CN=Certificate Authority,OU=hostmaster,O=Software in the Public Interest,L=Indianapolis,ST=Indiana,C=US -# Serial Number:00:e8:8e:b6:c9:f8:2a:14:28 -# Subject: E=hostmaster(a)spi-inc.org,CN=Certificate Authority,OU=hostmaster,O=Software in the Public Interest,L=Indianapolis,ST=Indiana,C=US -# Not Valid Before: Tue May 13 08:07:56 2008 -# Not Valid After : Fri May 11 08:07:56 2018 -# Fingerprint (SHA-256): 80:B1:D6:EC:2D:4C:B6:84:64:01:33:CF:37:22:C5:40:DB:2B:6C:C9:3E:EC:A4:F0:2B:A1:2A:6A:27:72:1A:2C -# Fingerprint (SHA1): AF:70:88:43:83:82:02:15:CD:61:C6:BC:EC:FD:37:24:A9:90:43:1C -CKA_CLASS CK_OBJECT_CLASS CKO_NSS_TRUST -CKA_TOKEN CK_BBOOL CK_TRUE -CKA_PRIVATE CK_BBOOL CK_FALSE -CKA_MODIFIABLE CK_BBOOL CK_FALSE -CKA_LABEL UTF8 "SPI Root Certificate (spi-inc.org)" -CKA_CERT_SHA1_HASH MULTILINE_OCTAL -\257\160\210\103\203\202\002\025\315\141\306\274\354\375\067\044 -\251\220\103\034 -END -CKA_CERT_MD5_HASH MULTILINE_OCTAL -\052\107\237\140\273\203\164\157\001\003\327\013\015\366\015\170 -END -CKA_ISSUER MULTILINE_OCTAL -\060\201\274\061\013\060\011\006\003\125\004\006\023\002\125\123 -\061\020\060\016\006\003\125\004\010\023\007\111\156\144\151\141 -\156\141\061\025\060\023\006\003\125\004\007\023\014\111\156\144 -\151\141\156\141\160\157\154\151\163\061\050\060\046\006\003\125 -\004\012\023\037\123\157\146\164\167\141\162\145\040\151\156\040 -\164\150\145\040\120\165\142\154\151\143\040\111\156\164\145\162 -\145\163\164\061\023\060\021\006\003\125\004\013\023\012\150\157 -\163\164\155\141\163\164\145\162\061\036\060\034\006\003\125\004 -\003\023\025\103\145\162\164\151\146\151\143\141\164\145\040\101 -\165\164\150\157\162\151\164\171\061\045\060\043\006\011\052\206 -\110\206\367\015\001\011\001\026\026\150\157\163\164\155\141\163 -\164\145\162\100\163\160\151\055\151\156\143\056\157\162\147 -END -CKA_SERIAL_NUMBER MULTILINE_OCTAL -\002\011\000\350\216\266\311\370\052\024\050 -END -CKA_TRUST_SERVER_AUTH CK_TRUST CKT_NSS_TRUSTED_DELEGATOR -CKA_TRUST_EMAIL_PROTECTION CK_TRUST CKT_NSS_TRUSTED_DELEGATOR -CKA_TRUST_CODE_SIGNING CK_TRUST CKT_NSS_TRUSTED_DELEGATOR -CKA_TRUST_STEP_UP_APPROVED CK_BBOOL CK_FALSE

1 0

[tor-messenger-build/master] Update to Tor Browser 5.5
by sukhbir＠torproject.org 01 Feb '16

01 Feb '16

commit a1c06b684fd0cabedc4154a92e948a6e3f474e3b Author: Sukhbir Singh <sukhbir(a)torproject.org> Date: Mon Feb 1 15:51:15 2016 -0500 Update to Tor Browser 5.5 --- projects/tor-browser/config | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/projects/tor-browser/config b/projects/tor-browser/config index 3a65750..2712b90 100644 --- a/projects/tor-browser/config +++ b/projects/tor-browser/config @@ -1,5 +1,5 @@ # vim: filetype=yaml sw=2 -version: 5.0.4 +version: 5.5 filename: 'tor-browser-[% c("version") %]-[% c("var/osname") %].[% c("var/extension") %]' input_files:

1 0

[tor-messenger-build/master] Remove SPI root certificate as Debian no longer ships it (#13795)
by sukhbir＠torproject.org 01 Feb '16

01 Feb '16

commit eff31e3a9673ba2561b94f66e4d98431b51b0742 Author: Sukhbir Singh <sukhbir(a)torproject.org> Date: Mon Feb 1 15:50:58 2016 -0500 Remove SPI root certificate as Debian no longer ships it (#13795) --- ChangeLog | 4 ++++ projects/instantbird/build | 1 - projects/instantbird/config | 1 - 3 files changed, 4 insertions(+), 2 deletions(-) diff --git a/ChangeLog b/ChangeLog index 7cc9673..c78ed29 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,7 @@ +Tor Messenger -- + * All Platforms + * Remove SPI root certificate because Debian no longer ships it (#13795) + Tor Messenger 0.1.0b4 -- November 22 2015 * All Platforms * Bug 17492: Include default bridges configuration diff --git a/projects/instantbird/build b/projects/instantbird/build index 3bd8af9..1828857 100644 --- a/projects/instantbird/build +++ b/projects/instantbird/build @@ -51,7 +51,6 @@ for patch in $(ls -1 $rootdir/branding/*.patch | sort) do patch -p1 < $patch done -cat $rootdir/spi-cacert.der >> mozilla/security/nss/lib/ckfw/builtins/certdata.txt [% IF c("var/osx") -%] cp $rootdir/cert_override.txt im/app/profile diff --git a/projects/instantbird/config b/projects/instantbird/config index 868a3b8..213e413 100644 --- a/projects/instantbird/config +++ b/projects/instantbird/config @@ -55,7 +55,6 @@ input_files: - name: mozilla-src project: mozilla pkg_type: src - - filename: spi-cacert.der - filename: preferences.patch - filename: irc-default-server.patch - filename: top-protocols.patch

1 0