+INSERT SUMMARY BLURP
+
+Changes in version 0.4.5.13 - 2022-08-11
+ o Major bugfixes (relay):
+ - Remove OR connections btrack subsystem entries when the
+ connections closes normally. Before this, we would only close it
+ on error and thus leaking memory for each normal OR connections.
+ Fixes bug 40604; bugfix on 0.4.0.1-alpha.
+ - Stop sending TRUNCATED cell and instead close the circuits which
+ sends a DESTROY cell so every relay in the circuit path can stop
+ queuing cells. Fixes bug 40623; bugfix on 0.1.0.2-rc.
+
+ o Minor features (fallbackdir):
+ - Regenerate fallback directories generated on August 11, 2022.
+
+ o Minor features (geoip data):
+ - Update the geoip files to match the IPFire Location Database, as
+ retrieved on 2022/08/11.
+
+ o Minor features (linux seccomp2 sandbox):
+ - Permit the clone3 syscall, which is apparently used in glibc-2.34
+ and later. Closes ticket 40590.
+
+ o Minor bugfixes (controller, path bias):
+ - When a circuit's path is specified, in full or in part, from the
+ controller API, do not count that circuit towards our path-bias
+ calculations. (Doing so was incorrect, since we cannot tell
+ whether the controller is selecting relays randomly.) Resolves a
+ "Bug" warning. Fixes bug 40515; bugfix on 0.2.4.10-alpha.
+
+ o Minor bugfixes (defense in depth):
+ - Change a test in the netflow padding code to make it more
+ _obviously_ safe against remotely triggered crashes. (It was safe
+ against these before, but not obviously so.) Fixes bug 40645;
+ bugfix on 0.3.1.1-alpha.
+
+ o Minor bugfixes (linux seccomp2 sandbox):
+ - Allow the rseq system call in the sandbox. This solves a crash
+ issue with glibc 2.35 on Linux. Patch from pmu-ipf. Fixes bug
+ 40601; bugfix on 0.3.5.11.
+
+ o Minor bugfixes (metrics port, onion service):
+ - Fix the metrics with a port label to be unique. Before this, all
+ ports of an onion service would be on the same line which violates
+ the Prometheus rules of unique labels. Fixes bug 40581; bugfix
+ on 0.4.5.1-alpha.
+
+ o Minor bugfixes (onion service, client):
+ - Fix a fatal assert due to a guard subsystem recursion triggered by
+ the onion service client. Fixes bug 40579; bugfix on 0.3.5.1-alpha.
+
+ o Minor bugfixes (performance, DoS):
+ - Fix one case of a not-especially viable denial-of-service attack
+ found by OSS-Fuzz in our consensus-diff parsing code. This attack
+ causes a lot small of memory allocations and then immediately
+ frees them: this is only slow when running with all the sanitizers
+ enabled. Fixes one case of bug 40472; bugfix on 0.3.1.1-alpha.
+
+ o Minor bugfixes (relay):
+ - Do not propagate either forward or backward a DESTROY remote
+ reason when closing a circuit so to avoid a possible side channel.
+ Fixes bug 40649; bugfix on 0.1.2.4-alpha.
+
+
Changes in version 0.4.5.12 - 2022-02-04
This version contains mostly minor bugfixes for which you can find the
details below. The previous release (0.4.5.11) was suppose to update the
release of Tor. If you want to see more detailed descriptions of the
changes in each development snapshot, see the ChangeLog file.
+INSERT SUMMARY BLURP
+
+Changes in version 0.4.5.13 - 2022-08-11
+ o Major bugfixes (relay):
+ - Remove OR connections btrack subsystem entries when the
+ connections closes normally. Before this, we would only close it
+ on error and thus leaking memory for each normal OR connections.
+ Fixes bug 40604; bugfix on 0.4.0.1-alpha.
+ - Stop sending TRUNCATED cell and instead close the circuits which
+ sends a DESTROY cell so every relay in the circuit path can stop
+ queuing cells. Fixes bug 40623; bugfix on 0.1.0.2-rc.
+
+ o Minor features (fallbackdir):
+ - Regenerate fallback directories generated on August 11, 2022.
+
+ o Minor features (geoip data):
+ - Update the geoip files to match the IPFire Location Database, as
+ retrieved on 2022/08/11.
+
+ o Minor features (linux seccomp2 sandbox):
+ - Permit the clone3 syscall, which is apparently used in glibc-2.34
+ and later. Closes ticket 40590.
+
+ o Minor bugfixes (controller, path bias):
+ - When a circuit's path is specified, in full or in part, from the
+ controller API, do not count that circuit towards our path-bias
+ calculations. (Doing so was incorrect, since we cannot tell
+ whether the controller is selecting relays randomly.) Resolves a
+ "Bug" warning. Fixes bug 40515; bugfix on 0.2.4.10-alpha.
+
+ o Minor bugfixes (defense in depth):
+ - Change a test in the netflow padding code to make it more
+ _obviously_ safe against remotely triggered crashes. (It was safe
+ against these before, but not obviously so.) Fixes bug 40645;
+ bugfix on 0.3.1.1-alpha.
+
+ o Minor bugfixes (linux seccomp2 sandbox):
+ - Allow the rseq system call in the sandbox. This solves a crash
+ issue with glibc 2.35 on Linux. Patch from pmu-ipf. Fixes bug
+ 40601; bugfix on 0.3.5.11.
+
+ o Minor bugfixes (metrics port, onion service):
+ - Fix the metrics with a port label to be unique. Before this, all
+ ports of an onion service would be on the same line which violates
+ the Prometheus rules of unique labels. Fixes bug 40581; bugfix
+ on 0.4.5.1-alpha.
+
+ o Minor bugfixes (onion service, client):
+ - Fix a fatal assert due to a guard subsystem recursion triggered by
+ the onion service client. Fixes bug 40579; bugfix on 0.3.5.1-alpha.
+
+ o Minor bugfixes (performance, DoS):
+ - Fix one case of a not-especially viable denial-of-service attack
+ found by OSS-Fuzz in our consensus-diff parsing code. This attack
+ causes a lot small of memory allocations and then immediately
+ frees them: this is only slow when running with all the sanitizers
+ enabled. Fixes one case of bug 40472; bugfix on 0.3.1.1-alpha.
+
+ o Minor bugfixes (relay):
+ - Do not propagate either forward or backward a DESTROY remote
+ reason when closing a circuit so to avoid a possible side channel.
+ Fixes bug 40649; bugfix on 0.1.2.4-alpha.
+
+
Changes in version 0.4.5.12 - 2022-02-04
This version contains mostly minor bugfixes for which you can find the
details below. The previous release (0.4.5.11) was suppose to update the
+++ /dev/null
- o Minor bugfixes (performance, DoS):
- - Fix one case of a not-especially viable denial-of-service attack found
- by OSS-Fuzz in our consensus-diff parsing code. This attack causes a
- lot small of memory allocations and then immediately frees them: this
- is only slow when running with all the sanitizers enabled. Fixes one
- case of bug 40472; bugfix on 0.3.1.1-alpha.
+++ /dev/null
- o Minor bugfixes (controller, path bias):
- - When a circuit's path is specified, in full or in part, from the
- controller API, do not count that circuit towards our path-bias
- calculations. (Doing so was incorrect, since we cannot tell whether
- the controller is selecting relays randomly.) Resolves a "Bug"
- warning. Fixes bug 40515; bugfix on 0.2.4.10-alpha.
+++ /dev/null
- o Minor bugfixes (defense in depth):
- - Change a test in the netflow padding code to make it more
- _obviously_ safe against remotely triggered crashes.
- (It was safe against these before, but not obviously so.)
- Fixes bug 40645; bugfix on 0.3.1.1-alpha.
+++ /dev/null
- o Minor features (linux seccomp2 sandbox):
- - Permit the clone3 syscall, which is apparently used in glibc-2.34 and
- later. Closes ticket 40590.
+++ /dev/null
- o Minor features (fallbackdir):
- - Regenerate fallback directories generated on August 11, 2022.
+++ /dev/null
- o Minor features (geoip data):
- - Update the geoip files to match the IPFire Location Database,
- as retrieved on 2022/08/11.
+++ /dev/null
- o Minor bugfixes (onion service, client):
- - Fix a fatal assert due to a guard subsystem recursion triggered by the
- onion service client. Fixes bug 40579; bugfix on 0.3.5.1-alpha.
+++ /dev/null
- o Minor bugfixes (metrics port, onion service):
- - Fix the metrics with a port label to be unique. Before this, all ports of
- an onion service would be on the same line which violates the Prometheus
- rules of unique labels. Fixes bug 40581; bugfix on 0.4.5.1-alpha.
+++ /dev/null
- o Minor bugfixes (linux seccomp2 sandbox):
- - Allow the rseq system call in the sandbox. This solves a crash issue with
- glibc 2.35 on Linux. Patch from pmu-ipf. Fixes bug 40601; bugfix on
- 0.3.5.11.
+++ /dev/null
- o Major bugfixes (relay):
- - Remove OR connections btrack subsystem entries when the connections
- closes normally. Before this, we would only close it on error and thus
- leaking memory for each normal OR connections. Fixes bug 40604; bugfix
- on 0.4.0.1-alpha.
+++ /dev/null
- o Major bugfixes (relay):
- - Stop sending TRUNCATED cell and instead close the circuits which sends a
- DESTROY cell so every relay in the circuit path can stop queuing cells.
- Fixes bug 40623; bugfix on 0.1.0.2-rc.
+++ /dev/null
- o Minor bugfixes (relay):
- - Do not propagate either forward or backward a DESTROY remote reason when
- closing a circuit so to avoid a possible side channel. Fixes bug 40649;
- bugfix on 0.1.2.4-alpha.
projects / thirdparty / tor.git / commitdiff
