Fixes bug 18348; bugfix on 0.2.8.1-alpha. Reported by sysrqb,
patch by teor.
- o Minor features:
- - Update geoip and geoip6 to the February 2 2016 Maxmind GeoLite2
- Country database.
+ o Major bugfixes (voting):
+ - Actually enable Ed25519-based directory collation. Previously, the
+ code had been written, but some debugging code that had
+ accidentally been left in the codebase made it stay turned off.
+ Fixes bug 17702; bugfix on 0.2.7.2-alpha.
+ - When collating votes by Ed25519 identities, authorities now
+ include a "NoEdConsensus" flag if the ed25519 value (or lack
+ thereof) for a server does not reflect the majority consensus.
+ Related to bug 17668; bugfix on 0.2.7.2-alpha.
+ - When generating a vote with keypinning disabled, never include two
+ entries for the same ed25519 identity. This bug was causing
+ authorities to generate votes that they could not parse when a
+ router violated key pinning by changing its RSA identity but
+ keeping its Ed25519 identity. Fixes bug 17668; fixes part of bug
+ 18318. Bugfix on 0.2.7.2-alpha.
o Minor feature (IPv6):
- Add ClientPreferIPv6DirPort, which is set to 0 by default. If set
- Update geoip and geoip6 to the March 3 2016 Maxmind GeoLite2
Country database.
+ o Minor features (linux seccomp2 sandbox):
+ - Detect and reject attempts to change our Address with "Sandbox 1"
+ enabled. Changing Address with Sandbox turned on would never
+ actually work, but previously it would fail in strange and
+ confusing ways. Found while fixing 18548.
+
o Minor features (robustness):
- Exit immediately with an error message if the code attempts to use
libevent without having initialized it. This should resolve some
both on success or failure. It was previously hardcoded with
UNKNOWN. Fixes bug 16023; bugfix on 0.2.7.2-alpha.
+ o Minor bugfixes (linux seccomp2 sandbox):
+ - Avoid a 10-second delay when starting as a client with "Sandbox 1"
+ enabled and no DNS resolvers configured. This should help TAILS
+ start up faster. Fixes bug 18548; bugfix on 0.2.5.1-alpha.
+ - Fix the sandbox's interoprability with unix sockets under setuid.
+ Fixes bug 18253; bugfix on 0.2.8.1-alpha.
+ - Allow the setrlimit syscall, and the prlimit and prlimit64
+ syscalls, which some libc implementations use under the hood.
+ Fixes bug 15221; bugfix on 0.2.5.1-alpha.
+
o Minor bugfixes (logging):
+ - When logging information about an unparseable networkstatus vote
+ or consensus, do not say "vote" when we mean consensus. Fixes bug
+ 18368; bugfix on 0.2.0.8-alpha.
- Scrub service in from "unrecognized service ID" log messages.
Fixes bug 18600; bugfix on 0.2.4.11-alpha.
part of bug 17852; bugfix on 0.2pre13. Part of ticket 17852. Patch
from 'jsturgix'. Found with Flawfinder.
- o Minor bugfixes (sandbox):
- - Allow the setrlimit syscall, and the prlimit and prlimit64
- syscalls, which some libc implementations use under the hood.
- Fixes bug 15221; bugfix on 0.2.5.1-alpha.
-
o Minor bugfixes (test networks, IPv6):
- Allow internal IPv6 addresses in descriptors in test networks.
Fixes bug 17153; bugfix on 6b4af1071 in 0.2.3.16-alpha. Patch by
unit tests (for example, if you want to perform branch coverage).
Fixes bug 18242; bugfix on 0.2.7.1-alpha.
+ o Minor bugfixes (tor-gencert):
+ - Correctly handle the case where an authority operator enters a
+ passphrase but sends an EOF before sending a newline. Fixes bug
+ 17443; bugfix on 0.2.0.20-rc. Found by "junglefowl".
+
o Code simplification and refactoring:
- Quote all the string interpolations in configure.ac -- even those
which we are pretty sure can't contain spaces. Closes ticket
projects / thirdparty / tor.git / commitdiff
