Tor 0.2.8.6 is released!
|
|
时间:2016-08-09 来源:torproject.org 作者:nickm
条评论
|
- Check that both the ORPort and DirPort (if present) are reachable before publishing a relay descriptor. Otherwise, relays publish a descriptor with DirPort 0 when the DirPort reachability test takes longer than the ORPort reachability test. Fixes bug 18050; bugfix on 0.1.0.1-rc. Reported by “starlight”, patch by teor.
- Resolve some edge cases where we might launch an ORPort reachability check even when DisableNetwork is set. Noticed while fixing bug 18616; bugfix on 0.2.3.9-alpha.
Minor bugfixes (relays, hidden services):
- Refuse connection requests to private OR addresses unless ExtendAllowPrivateAddresses is set. Previously, tor would connect, then refuse to send any cells to a private address. Fixes bugs 17674 and 8976; bugfix on 0.2.3.21-rc. Patch by teor.
Minor bugfixes (security, hidden services):
- Prevent hidden services connecting to client-supplied rendezvous addresses that are reserved as internal or multicast. Fixes bug 8976; bugfix on 0.2.3.21-rc. Patch by dgoulet and teor.
Minor bugfixes (statistics):
- Consistently check for overflow in round_*_to_next_multiple_of functions, and add unit tests with additional and maximal values. Fixes part of bug 13192; bugfix on 0.2.2.1-alpha.
- Handle edge cases in the laplace functions: avoid division by zero, avoid taking the log of zero, and silence clang type conversion warnings using round and trunc. Add unit tests for edge cases with maximal values. Fixes part of bug 13192; bugfix on 0.2.6.2-alpha.
- We now include consensus downloads via IPv6 in our directory- request statistics. Fixes bug 18460; bugfix on 0.2.3.14-alpha.
Minor bugfixes (test networks, IPv6):
- Allow internal IPv6 addresses in descriptors in test networks. Fixes bug 17153; bugfix on 0.2.3.16-alpha. Patch by teor, reported by karsten.
Minor bugfixes (testing):
- Check the full results of SHA256 and SHA512 digests in the unit tests. Bugfix on 0.2.2.4-alpha. Patch by teor.
- Fix a memory leak in the ntor test. Fixes bug17778; bugfix on 0.2.4.8-alpha.
- Fix a small memory leak that would occur when the TestingEnableCellStatsEvent option was turned on. Fixes bug 18673; bugfix on 0.2.5.2-alpha.
- Make unit tests pass on IPv6-only systems, and systems without localhost addresses (like some FreeBSD jails). Fixes bug 17632; bugfix on 0.2.7.3-rc. Patch by teor.
- The test for log_heartbeat was incorrectly failing in timezones with non-integer offsets. Instead of comparing the end of the time string against a constant, compare it to the output of format_local_iso_time when given the correct input. Fixes bug 18039; bugfix on 0.2.5.4-alpha.
- We no longer disable assertions in the unit tests when coverage is enabled. Instead, we require you to say –disable-asserts-in-tests to the configure script if you need assertions disabled in the unit tests (for example, if you want to perform branch coverage). Fixes bug 18242; bugfix on 0.2.7.1-alpha.
Minor bugfixes (time handling):
- When correcting a corrupt ‘struct tm’ value, fill in the tm_wday field. Otherwise, our unit tests crash on Windows. Fixes bug 18977; bugfix on 0.2.2.25-alpha.
- Avoid overflow in tor_timegm when parsing dates in and after 2038 on platforms with 32-bit time_t. Fixes bug 18479; bugfix on 0.0.2pre14. Patch by teor.
Minor bugfixes (tor-gencert):
- Correctly handle the case where an authority operator enters a passphrase but sends an EOF before sending a newline. Fixes bug 17443; bugfix on 0.2.0.20-rc. Found by junglefowl.
Code simplification and refactoring:
- Clean up a little duplicated code in crypto_expand_key_material_TAP(). Closes ticket17587; patch from “pfrankw”.
- Decouple the list of streams waiting to be attached to circuits from the overall connection list. This change makes it possible to attach streams quickly while simplifying Tor’s callgraph and avoiding O(N) scans of the entire connection list. Closes ticket 17590.
- Extract the more complicated parts of circuit_mark_for_close() into a new function that we run periodically before circuits are freed. This change removes more than half of the functions currently in the “blob”. Closes ticket 17218.
- Move logging of redundant policy entries in policies_parse_exit_policy_internal into its own function. Closes ticket 17608; patch from “juce”.
- Quote all the string interpolations inconfigure.ac — even those which we are pretty sure can’t contain spaces. Closes ticket 17744. Patch from zerosion.
- Remove code for configuring OpenSSL dynamic locks; OpenSSL doesn’t use them. Closes ticket 17926.
- Remove specialized code for non-inplace AES_CTR. 99% of our AES is inplace, so there’s no need to have a separate implementation for the non-inplace code. Closes ticket 18258. Patch from Malek.
- Simplify return types for some crypto functions that can’t actually fail. Patch from Hassan Alsibyani. Closes ticket 18259.
- When a direct directory request fails immediately on launch, instead of relaunching that request from inside the code that launches it, instead mark the connection for teardown. This change simplifies Tor’s callback and prevents the directory-request launching code from invoking itself recursively. Closes ticket 17589.
Documentation:
- Add a description of the correct use of the ‘–keygen’ command- line option. Closes ticket 17583; based on text by ‘s7r’.
- Change build messages to refer to “Fedora” instead of “Fedora Core”, and “dnf” instead of “yum”. Closes tickets 18459 and 18426. Patches from “icanhasaccount” and “cypherpunks”.
- Document the contents of the ‘datadir/keys’ subdirectory in the manual page. Closes ticket17621
6/7 首页 上一页 4 5 6 7 下一页 尾页
|
|
|
|
