bump to 0.2.2.39

schedule another release for this coming week

changes/abandon-rend-circs-on-newnym

@@ -1,8 +0,0 @@
-  o Security fixes:
-    - Don't attach new streams to old rendezvous circuits after SIGNAL
-      NEWNYM.  Previously, we would keep using an existing rendezvous
-      circuit if it remained open (i.e. if it were kept open by a
-      long-lived stream or if a new stream were attached to it before
-      Tor could notice that it was old and no longer in use and close
-      it).  Bugfix on 0.1.1.15-rc; fixes bug 3375.
-

changes/bridgepassword

@@ -1,11 +0,0 @@
-  o Security fixes:
-    - When using the debuging BridgePassword field, a bridge authority
-      now compares alleged passwords by hashing them, then comparing
-      the result to a digest of the expected authenticator. This avoids
-      a potential side-channel attack in the previous code, which
-      had foolishly used strcmp().  Fortunately, the BridgePassword field
-      *is not in use*, but if it had been, the timing
-      behavior of strcmp() might have allowed an adversary to guess the
-      BridgePassword value, and enumerate the bridges. Bugfix on
-      0.2.0.14-alpha. Fixes bug 5543.
-

changes/buffer_bug

@@ -1,7 +0,0 @@
-
-  o Major bugfixes:
-    - Fix a heap overflow bug that could occur when trying to pull
-      data into the first chunk of a buffer, when that chunk had
-      already had some data drained from it. Fixes CVE-2011-2778;
-      bugfix on 0.2.0.16-alpha. Reported by "Vektor".
-

changes/bug1240

@@ -1,8 +0,0 @@
-  o Minor bugfixes:
-    - When running with an older Linux kernel that erroneously responds
-      to strange nmap behavior by having accept() return successfully
-      with a zero-length socket, just close the connection. Previously,
-      we would try harder to learn the remote address: but there was no
-      such remote address to learn, and our method for trying to learn
-      it was incorrect. Fixes bugs #1240, #4745, and #4747. Bugfix on
-      0.1.0.3-rc. Reported and diagnosed by "r1eo".

changes/bug1297a

@@ -1,16 +0,0 @@
-  o Major bugfixes:
-    - Apply circuit timeouts to opened hidden-service-related circuits
-      based on the correct start time.  Previously, we would apply the
-      circuit build timeout based on time since the circuit's
-      creation; it was supposed to be applied based on time since the
-      circuit entered its current state.  Bugfix on 0.0.6; fixes part
-      of bug 1297.
-    - Use the same circuit timeout for client-side introduction
-      circuits as for other four-hop circuits.  Previously,
-      client-side introduction circuits were closed after the same
-      timeout as single-hop directory-fetch circuits; this was
-      appropriate with the static circuit build timeout in 0.2.1.x and
-      earlier, but caused many hidden service access attempts to fail
-      with the adaptive CBT introduced in 0.2.2.2-alpha.  Bugfix on
-      0.2.2.2-alpha; fixes another part of bug 1297.
-

changes/bug1345

@@ -1,13 +0,0 @@
-  o Minor bugfixes:
-    - On SIGHUP, do not clear out all TrackHostExits mappings, client DNS
-      cache entries, and virtual address mappings: that's what NEWNYM is
-      for.  Bugfix on Tor 0.1.0.1-rc; fixes bug 1345.
-    - When TrackHostExits is changed from a controller, remove any
-      mappings for hosts that should no longer have their exits tracked.
-      Bugfix on Tor 0.1.0.1-rc.
-    - When VirtualAddrNetwork option is changed from a controller,
-      remove any mappings for hosts that were automapped to
-      that network.  Bugfix on 0.1.1.19-rc.
-    - When one of the AutomapHosts* options is changed from a
-      controller, remove any mappings for hosts that should no longer be
-      automapped.  Bugfix on 0.2.0.1-alpha.

changes/bug1352

@@ -1,4 +0,0 @@
-  o Minor features
-    - Rate-limit a warning about failures to download v2 networkstatus
-      documents.  Resolves part of bug 1352.
-

changes/bug1810

@@ -1,6 +0,0 @@
-  o Major bugfixes:
-    - Don't decide to make a new descriptor when receiving a HUP signal.
-      This bug has caused a lot of relays to disappear from the consensus
-      periodically. Fixes the most common case of triggering bug 1810;
-      bugfix on 0.2.2.7-alpha.
-

changes/bug2355

@@ -1,8 +0,0 @@
-  o Major features:
-    - If "UseBridges 1" is set and no bridges are configured, Tor will
-      now refuse to build any circuits until some bridges are set.
-      If "UseBridges auto" is set, Tor will use bridges if they are
-      configured and we are not running as a server, but otherwise
-      will make circuits as usual. The new default is "auto". Patch
-      by anonym.
-

changes/bug2355_revert

@@ -1,7 +0,0 @@
-  o Minor bugfixes:
-    - Revert the UseBridges option to its behavior before 0.2.2.28-beta.
-      When we changed the default behavior to "use bridges if any are
-      listed in the torrc", we broke a number of users who had bridges
-      in their torrc files but who didn't actually want to use them.
-      Partial resolution for bug 3354.
-

changes/bug2442

@@ -1,8 +0,0 @@
-  * Minor bugfixes:
-
-    - Demote the 'replay detected' log message emitted when a hidden
-      service receives the same Diffie-Hellman public key in two
-      different INTRODUCE2 cells to info level.  A normal Tor client
-      can cause that log message during its normal operation.  Bugfix
-      on 0.2.1.6-alpha; fixes part of bug 2442.
-

changes/bug2442b

@@ -1,8 +0,0 @@
-  * Minor bugfixes:
-
-    - Demote the 'INTRODUCE2 cell is too {old,new}' log message to
-      info level.  There is nothing that a hidden service's operator
-      can do to fix its clients' clocks.  Bugfix on 0.2.1.6-alpha;
-      fixes part of bug 2442.
-
-

changes/bug2503

@@ -1,4 +0,0 @@
-  o Minor features:
-    - When an HTTPS proxy reports "403 Forbidden", we now explain
-      what it means rather than calling it an unexpected status code.
-      Closes bug 2503.  Patch from "mikey". 

changes/bug2574

@@ -1,3 +0,0 @@
-  o Minor features:
-    - Allow nameservers with IPv6 address. Fixes bug 2574.
-

changes/bug2649a

@@ -1,5 +0,0 @@
-  o Minor features:
-    - Add a VoteOnHidServDirectoriesV2 configuration option to allow
-      directory authorities to abstain from voting on assignment of
-      the HSDir consensus flag.  Related to bug 2649.
-

changes/bug2649b

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Change the default required uptime for a relay to be accepted as
-      a HSDir from 24 hours to 25 hours.  Bugfix on 0.2.0.10-alpha;
-      fixes bug 2649.
-

changes/bug2732-simple

@@ -1,7 +0,0 @@
-  o Minor bugfixes
-    - Do not reject hidden service descriptors simply because we don't
-      think we have not been assigned the HSDir flag.  Clients and
-      hidden services can have a more up-to-date view of the network
-      consensus, and if they think that the directory authorities
-      list us a HSDir, we might actually be one.  Related to bug 2732;
-      bugfix on 0.2.0.10-alpha.

changes/bug2748

@@ -1,10 +0,0 @@
-  o Minor bugfixes
-    - Remove dead code from rend_cache_lookup_v2_desc_as_dir.  Fixes
-      part of bug 2748; bugfix on 0.2.0.10-alpha.
-    - Log malformed requests for rendezvous descriptors as protocol
-      warnings, not warnings.  Also, use a more informative log
-      message in case someone sees it at log level warning without
-      prior info-level messages.  Fixes the other part of bug 2748;
-      bugfix on 0.2.0.10-alpha.
-
-

changes/bug2752

@@ -1,5 +0,0 @@
-  o Minor features:
-    - Tor used to limit HttpProxyAuthenticator values to 48 characters.
-    Changed the limit to 512 characters by removing base64 newlines.
-    Fixes bug 2752.  Fix by Michael Yakubovich.
-

changes/bug2792_checkdir

@@ -1,8 +0,0 @@
-  o Minor features:
-    - Tor now refuses to create a ControlSocket in a directory that is
-      world-readable (or group-readable if ControlSocketsGroupWritable
-      is 0).  This is necessary because some operating systems do not
-      check the permissions on an AF_UNIX socket when programs try to
-      connect to it.  Checking permissions on the directory holding
-      the socket, however, seems to work everywhere.
-

changes/bug2850

@@ -1,5 +0,0 @@
-  - Minor features
-    o Set SO_REUSEADDR on all sockets, not just listeners.  This should
-      help busy exit nodes avoid running out of useable ports just because
-      all the ports have been used in the near past.  Resolves issue 2850.
-

changes/bug2972

@@ -1,5 +0,0 @@
-  o Minor features:
-    - Allow ControlSockets to be group-writable when the
-      ControlSocksGroupWritable configuration option is turned on. Patch
-      by Jérémy Bobbio; implements ticket 2972.
-

changes/bug3019

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - Do not reset the bridge descriptor download status every time we
-      re-parse our configuration or get a configuration change.  Fixes
-      bug 3019; bugfix on Tor 0.2.0.3-alpha.

changes/bug3022

@@ -1,6 +0,0 @@
-  o Removed features
-    - Caches no longer download and serve v2 networkstatus documents
-      unless FetchV2Networkstatus flag is set: these documents haven't
-      haven't been used by clients or relays since 0.2.0.x.  Resolves
-      bug 3022.
-

changes/bug3026

@@ -1,4 +0,0 @@
-  o Minor bugfixes (directory authority)
-    - Do not upload our own vote or signature set to ourself.  It would
-      tell us nothing new.  Also, as of Tor 0.2.2.24-alpha, we started
-      to warn about receiving duplicate votes.  Resolves bug 3026.

changes/bug3045

@@ -1,6 +0,0 @@
-  o Minor features:
-    - Revise most log messages that refer to nodes by nickname to
-      instead use the "$key=nickname at address" format.  This should be
-      more useful, especially since nicknames are less and less likely
-      to be unique.  Fixes bug 3045.
-

changes/bug3122_memcmp

@@ -1,7 +0,0 @@
-  o Security fixes
-    - Replace all potentially sensitive memory comparison operations
-      with versions whose runtime does not depend on the data being
-      compared. This will help resist a class of attacks where an
-      adversary can use variations in timing information to learn
-      sensitive data.  Fix for one case of bug 3122.  (Safe memcmp
-      implementation by Robert Ransom based partially on code by DJB.)

changes/bug3135

@@ -1,6 +0,0 @@
-  o Minor bugfixes
-    - Do not crash when our configuration file becomes unreadable
-      (usually due to a permissions change) between when we start
-      up and when a controller calls SAVECONF.  Fixes bug 3135;
-      bugfix on 0.0.9pre6.
-

changes/bug3175

@@ -1,7 +0,0 @@
-  o Minor bugfixes:
-    - Resolve an untriggerable issue in smartlist_string_num_isin(),
-      where if the function had ever in the future been used to check
-      for the presence of a too-large number, it would have given an
-      incorrect result.  (Fortunately, we only used it for 16-bit
-      values.)  Fixes bug 3175; bugfix on Tor 0.1.0.1-rc.
-

changes/bug3198

@@ -1,4 +0,0 @@
-  o Major bugfixes:
-    - When we configure a new bridge via the controller, don't wait up
-      to ten seconds before trying to fetch its descriptor. Bugfix on
-      0.2.0.3-alpha; fixes bug 3198 (suggested by 2355).

changes/bug3200

@@ -1,6 +0,0 @@
-  o Minor bugfixes:
-    - When a client starts or stops using bridges, never use a circuit
-      that was built before the configuration change. This behavior could
-      put at risk a user who uses bridges to ensure that her traffic
-      only goes to the chosen addresses. Bugfix on 0.2.0.3-alpha; fixes
-      bug 3200.

changes/bug3207

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - Require that onion keys have exponent 65537 in microdescriptors too.
-      Fixes part of bug 3207; bugfix on 0.2.2.25-alpha
-

changes/bug3208

@@ -1,6 +0,0 @@
-  o Removed options:
-    - Remove undocumented option "-F" from tor-resolve: it hasn't done
-      anything since 0.2.1.16-rc.
-
-  o Minor bugfixes:
-    - Fix warnings from GCC 4.6's "-Wunused-but-set-variable" option.

changes/bug3213

@@ -1,4 +0,0 @@
-  o Major bugfixes:
-    - Fix a crash bug when changing bridges in a running Tor process.
-      Fixes bug 3213; bugfix on 0.2.2.26-beta.
-

changes/bug3216

@@ -1,4 +0,0 @@
-  o Major bugfixes:
-    - Don't try to build descriptors if "ORPort auto" is set and we
-      don't know our actual ORPort yet.  Fix for bug 3216; bugfix on
-      0.2.2.26-beta.

changes/bug3228

@@ -1,3 +0,0 @@
-  o Major bugfixes:
-    - Resolve a crash that occured when setting BridgeRelay to 1 with
-      accounting enabled. Fixes bug 3228; bugfix on 0.2.2.18-alpha.

changes/bug3252

@@ -1,4 +0,0 @@
-  o Minor features:
-    - Relays now log the reason for publishing a new relay descriptor,
-      so we have a better chance of hunting down the root cause of bug
-      1810. Resolves ticket 3252.

changes/bug3270

@@ -1,4 +0,0 @@
-  o Minor bugfixes
-    - Use a wide type to hold sockets when built for 64-bit Windows builds.
-      Fixes bug 3270.
-

changes/bug3289

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Warn when the user configures two HiddenServiceDir lines that point
-      to the same directory. Bugfix on 0.0.6 (the version introducing
-      HiddenServiceDir); fixes bug 3289.
-

changes/bug3306

@@ -1,9 +0,0 @@
-  o Minor bugfixes:
-    - Make our crypto_rand_int() function check the value of its input
-      correctly. Previously, it accepted values up to UINT_MAX, but
-      could return a negative number if given a value above INT_MAX+1.
-      Found by George Kadianakis. Fixes bug 3306; bugfix on 0.2.2pre14.
-
-    - Avoid a segfault when reading a malformed circuit build state
-      with more than INT_MAX entries. Found by wanoskarnet. Bugfix on
-      0.2.2.4-alpha.

changes/bug3309

@@ -1,13 +0,0 @@
-  o Minor bugfixes:
-    - Clear the table recording the time of the last request for each
-      hidden service descriptor from each HS directory on SIGNAL
-      NEWNYM.  Previously, we would clear our HS descriptor cache on
-      SIGNAL NEWNYM, but if we had previously retrieved a descriptor
-      (or tried to) from every directory responsible for it, we would
-      refuse to fetch it again for up to 15 minutes.  Bugfix on
-      0.2.2.25-alpha; fixes bug 3309.
-
-  o Minor features:
-    - Log (at info level) when purging pieces of hidden-service-client
-      state on SIGNAL NEWNYM.
-

changes/bug3318

@@ -1,7 +0,0 @@
-  o Minor bugfixes:
-    - Fix a log message that said "bits" while displaying a value in
-      bytes. Found by wanoskarnet. Fixes bug 3318; bugfix on
-      0.2.0.1-alpha.
-    - When checking for 1024-bit keys, check for 1024 bits, not 128
-      bytes. This allows Tor to correctly discard keys of length
-      1017 through 1023. Bugfix on 0.0.9pre5.

changes/bug3321

@@ -1,7 +0,0 @@
-  o Minor bugfixes:
-    - In bug 2511 we fixed a case where you could use an unconfigured
-      bridge if you had configured it as a bridge the last time you ran
-      Tor. Now fix another edge case: if you had configured it as a bridge
-      but then switched to a different bridge via the controller, you
-      would still be willing to use the old one. Bugfix on 0.2.0.1-alpha;
-      fixes bug 3321.

changes/bug3369

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - When asked about a DNS record type we don't support via a
-      client DNSPort, reply with NOTIMPL rather than an empty
-      reply. Patch by intrigeri. Fixes bug 3369; bugfix on 2.0.1-alpha.

changes/bug3393

@@ -1,5 +0,0 @@
- o Minor bugfixes:
-   - Fix a bug when using ControlSocketsGroupWritable with User. The
-     directory's group would be checked against the current group, not
-     the configured group. Patch by Jérémy Bobbio. Fixes bug3393; bugfix
-     on Tor 0.2.2.26-beta.

changes/bug3465-022

@@ -1,6 +0,0 @@
-  o Minor bugfixes:
-
-    - Add BUILDTIMEOUT_SET to the list returned by the 'GETINFO
-      events/names' control-port command.  Bugfix on 0.2.2.9-alpha;
-      fixes part of bug 3465.
-

changes/bug3536

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Send a SUCCEEDED stream event to the controller when a reverse
-      resolve succeeded. Fixes bug 3536; bugfix on 0.0.8pre1. Issue
-      discovered by katmagic.
-

changes/bug3577

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - Allow GETINFO fingerprint to return a fingerprint even when
-      we have not yet built a router descriptor. Fixes bug 3577;
-      bugfix on 0.2.0.1-alpha.

changes/bug3607

@@ -1,15 +0,0 @@
-  o Minor bugfixes:
-
-    - Write several files in text mode, on OSes that distinguish text
-      mode from binary mode (namely, Windows).  These files are:
-      buffer-stats, dirreq-stats, and entry-stats on relays that collect
-      those statistics; client_keys and hostname files for hidden
-      services that use authentication; and (in the tor-gencert utility)
-      newly generated identity and signing keys.  Previously, we
-      wouldn't specify text mode or binary mode, leading to an assertion
-      failure.  Fixes bug 3607.  Bugfix on 0.2.1.1-alpha (when the
-      DirRecordUsageByCountry option which would have triggered the
-      assertion failure was added), although this assertion failure
-      would have occurred in tor-gencert on Windows in 0.2.0.1-alpha.
-
-

changes/bug3643

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - Selectively disable deprecation warnings on OS X because Lion started
-      deprecating the shipped copy of openssl. Fixes bug 3643.
-

changes/bug3732

@@ -1,7 +0,0 @@
-  o Major bugfixes:
-
-    - Remove an extra pair of quotation marks around the error
-      message in control-port STATUS_GENERAL BUG events.  Bugfix on
-      0.1.2.6-alpha; fixes bug 3732.
-
-

changes/bug3747

@@ -1,6 +0,0 @@
-  o Major bugfixes:
-    - Write control ports to disk only after switching UID and
-      creating the data directory. This way, we don't fail when
-      starting up with a nonexistant DataDirectory and a
-      ControlPortWriteToFile setting based on that directory. Fixes
-      bug 3747; bugfix on Tor 0.2.2.26-beta.

changes/bug3894

@@ -1,4 +0,0 @@
-  o Build fixes:
-    - Clean up some code issues that prevented Tor from building on older
-      BSDs.  Fixes bug 3894; reported by grarpamp.
-      

changes/bug3898a

@@ -1,6 +0,0 @@
-  o Minor bugfixes:
-    - Correct the man page to explain that HashedControlPassword and
-      CookieAuthentication can both be set, in which case either method
-      is sufficient to authenticate to Tor. Bugfix on 0.2.0.7-alpha,
-      when we decided to allow these config options to both be set. Issue
-      raised by bug 3898.

changes/bug3909

@@ -1,3 +0,0 @@
-  o Build fixes:
-    - Search for a platform-specific version of "ar" when cross-compiling.
-      Should fix builds on iOS. Found by Marco Bonetti.

changes/bug3923

@@ -1,5 +0,0 @@
-  o Major bugfies:
-    - Avoid an assertion failure when reloading a configuration with
-      TrackExitHosts changes.  Found and fixed by 'laruldan'. Fixes
-      bug 3923; bugfix on 0.2.2.25-alpha.
-

changes/bug3963

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - When configuring, starting, or stopping an NT service, stop
-      immediately after the service configuration attempt has succeeded
-      or failed. Fixes bug3963; bugfix on 0.2.0.7-alpha.
-

changes/bug4012_022

@@ -1,3 +0,0 @@
-  o Minor bugfixes (documentation):
-    - Document the GiveGuardFlagTo_CVE_2011_2768_VulnerableRelays
-      directory authority option (introduced in Tor 0.2.2.34).

changes/bug4014

@@ -1,3 +0,0 @@
-  o Minor features:
-    - Adjust the expiration time on our SSL session certificates to
-      better match SSL certs seen in the wild. Resolves ticket 4014.

changes/bug4059

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Change an integer overflow check in the OpenBSD_Malloc code so
-      that GCC is less likely to eliminate it as impossible. Patch
-      from Mansour Moufid. Fixes bug 4059.
-

changes/bug4115

@@ -1,7 +0,0 @@
-  o Security fixes:
-    - Bridge relays now do their directory fetches inside Tor TLS
-      connections, like all the other clients do, rather than connecting
-      directly to the DirPort like public relays do. Removes another
-      avenue for enumerating bridges. Fixes part of bug 4115; bugfix
-      on 0.2.0.35.
-

changes/bug4124

@@ -1,6 +0,0 @@
-  o Security fixes:
-    - Bridges relays now build circuits for themselves in a more similar
-      way to how clients build them. Removes another avenue for
-      enumerating bridges. Fixes bug 4124; bugfix on 0.2.0.3-alpha,
-      when bridges were introduced.
-

changes/bug4201

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Bridges now skip DNS self-tests, to act a little more stealthily.
-      Fixes bug 4201; bugfix on 0.2.0.3-alpha, which first introduced
-      bridges. Patch by "warms0x".
-

changes/bug4212

@@ -1,13 +0,0 @@
-  o Major bugfixes:
-
-    - Don't launch a useless circuit after failing to use one of a
-      hidden service's introduction points.  Previously, we would
-      launch a new introduction circuit, but not set the hidden
-      service which that circuit was intended to connect to, so it
-      would never actually be used.  A different piece of code would
-      then create a new introduction circuit correctly, so this bug
-      was harmless until it caused an assertion in the client-side
-      part of the #3825 fix to fail.  Bug reported by katmagic and
-      found by Sebastian Hahn.  Bugfix on 0.2.1.13-alpha; fixes bug
-      4212.
-

changes/bug4230

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Resolve an integer overflow bug in smartlist_ensure_capacity.
-      Fixes bug 4230; bugfix on Tor 0.1.0.1-rc. Based on a patch by 
-      Mansour Moufid.
-

changes/bug4251

@@ -1,8 +0,0 @@
-  o Minor bugfixes:
-
-    - When a hidden service turns an extra service-side introduction
-      circuit into a general-purpose circuit, free the rend_data and
-      intro_key fields first, so they won't be leaked if the circuit
-      is cannibalized for use as another service-side introduction
-      circuit.  Bugfix on 0.2.1.7-alpha; fixes bug 4251.
-

changes/bug4259

@@ -1,4 +0,0 @@
-  o Major bugfixes:
-    - Fix a crash bug when changing node restrictions while a DNS lookup
-      is in-progress. Fixes bug 4259; bugfix on 0.2.2.25-alpha. Bugfix
-      by "Tey'".

changes/bug4299

@@ -1,5 +0,0 @@
-  o Major bugfix:
-    - Do not process cells on a marked-for-close connection. We previously
-      avoided this by not calling read handlers on marked connections, but
-      that's not adequate for the case when cells are very small. Fixes
-      bug 4299; bugfix on 0.2.0.20-rc which first made small cells possible.

changes/bug4309

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Remove a confusing dollar sign from the example fingerprint in the
-      man page, and also make example fingerprint a valid one. Fixes bug
-      4309; bugfix on 0.2.1.3-alpha.
-

changes/bug4331

@@ -1,4 +0,0 @@
-  o Trivial fixes:
-    - Fixed a typo in a hibernation-related log message. Fixes bug 4331;
-      bugfix on 0.2.2.23-alpha; found by "tmpname0901".
-

changes/bug4340

@@ -1,5 +0,0 @@
-  o Major bugfixes:
-    - Don't crash when we're running as a relay and don't have a geoip
-    file. Bugfix on tor-0.2.2.34; fixes bug 4340. This backports a fix
-    we've had in master already.
-

changes/bug4349

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - When sending a NETINFO cell, include the original address
-      received for the other side, not its canonical address.  Found
-      by "troll_un"; fixes bug 4349; bugfix on 0.2.0.10-alpha.

changes/bug4353

@@ -1,7 +0,0 @@
-  o Minor bugfixes:
-    - When running as client without a geoip database, do not print a
-      misleading (and plain wrong) log message that we're collecting
-      dirreq statistics - we're not collecting statistics as clients.
-      Also don't create a useless (because empty) stats file in the
-      stats/ directory. Fixes bug 4353, bugfix on 0.2.2.34.
-

changes/bug4383

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Fix a memleak in launch_direct_bridge_descriptor_fetch() that
-      occured when a client tried to fetch a descriptor for a bridge
-      in ExcludeNodes. Fixes #4383; bugfix on 0.2.2.25-alpha.
-

changes/bug4410

@@ -1,5 +0,0 @@
-  o Major bugfixes:
-    - Correctly sanity-check that we don't underflow on a memory allocation
-      for introduction point decryption. Bug discovered by Dan Rosenberg.
-      Fixes bug 4410; bugfix on 0.2.1.5-alpha.
-

changes/bug4424

@@ -1,6 +0,0 @@
-  o Major bugfixes
-
-    - Don't leak memory when we check whether a hidden service
-      descriptor has any usable introduction points left.  Fixes bug
-      4424.  Bugfix on 0.2.2.25-alpha.
-

changes/bug4426

@@ -1,8 +0,0 @@
-  o Minor features:
-
-    - When Tor ignores a hidden service specified in its
-      configuration, include the hidden service's directory in the
-      warning message.  Previously, we would only tell the user that
-      some hidden service was ignored.  Bugfix on 0.0.6; fixes bug
-      4426.
-

changes/bug4437

@@ -1,5 +0,0 @@
-  o Minor bugfixes:
-    - Don't warn about unused log_mutex in log.c when building with
-      --disable-threads using a recent GCC. Fixes bug 4437; bugfix on
-      0.1.0.6-rc which introduced --disable-threads.
-

changes/bug4457

@@ -1,9 +0,0 @@
-  o Minor bugfixes:
-    - Initialize Libevent with the EVENT_BASE_FLAG_NOLOCK flag enabled, so
-      that it doesn't attempt to allocate a socketpair. This could cause
-      some problems on windows systems with overzealous firewalls. Fix for
-      bug 4457; workaround for Libevent versions 2.0.1-alpha through
-      2.0.15-stable.
-
-    - Detect failure to initialize Libevent. Better detection for bug 4457.
-

changes/bug4518

@@ -1,4 +0,0 @@
-  o Minor bugfixes (performance):
-    - Avoid frequent calls to the fairly expensive cull_wedged_cpuworkers
-      function. This was eating up hideously large amounts of time on some
-      busy servers. Fixes bug 4518.

changes/bug4521

@@ -1,3 +0,0 @@
-  o Minor bugfixes:
-    - Backport fixes for a pair of compilation warnings on Windows.
-      Fixes bug 4521; bugfix on 0.2.2.28-beta and on 0.2.2.29-beta.

changes/bug4529

@@ -1,5 +0,0 @@
-  o Minor bufixes:
-    - If we had ever tried to call tor_addr_to_str on an address of
-      unknown type, we would have done a strdup on an uninitialized
-      buffer. Now we won't. Fixes bug 4529; bugfix on 0.2.1.3-alpha.
-      Reported by "troll_un".

changes/bug4530

@@ -1,6 +0,0 @@
-  o Minor bugfixes:
-
-    - Correctly detect and handle transient lookup failures from
-      tor_addr_lookup. Fixes bug 4530; bugfix on 0.2.1.5-alpha.
-      Reported by "troll_un".
-

changes/bug4531

@@ -1,4 +0,0 @@
-  o Major bugfixes:
-    - Fix null-pointer access that could occur if TLS allocation failed.
-      Fixes bug 4531; bugfix on 0.2.0.20-rc. Found by "troll_un".
-

changes/bug4533_part2

@@ -1,5 +0,0 @@
-  o Major bugfixes:
-    - Fix the SOCKET_OK test that we use to tell when socket
-      creation fails so that it works on Win64. Fixes part of bug
-      4533; bugfix on 0.2.2.29-beta. Bug found by wanoskarnet.
-

changes/bug4535

@@ -1,3 +0,0 @@
-  o Minor bugfixes:
-    - Use tor_socket_t type for listener argument to accept(). Fixes bug
-      4535; bugfix on 0.2.2.28-beta. Found by "troll_un".

changes/bug4786

@@ -1,9 +0,0 @@
-  - Feature removal:
-    - When sending or relaying a RELAY_EARLY cell, we used to convert
-      it to a RELAY cell if the connection was using the v1 link
-      protocol. This was a workaround for older versions of Tor, which
-      didn't handle RELAY_EARLY cells properly. Now that all supported
-      versions can handle RELAY_EARLY cells, and now that we're
-      enforcing the "no RELAY_EXTEND commands except in RELAY_EARLY
-      cells" rule, we're removing this workaround. Addresses bug 4786.
-

changes/bug4788

@@ -1,6 +0,0 @@
-  o Minor features (directory server):
-    - Directory servers now reject versions of Tor older than 0.2.1.30,
-      and Tor versions between 0.2.2.1-alpha and 0.2.2.20-alpha
-      (inclusive). These versions accounted for only a small fraction of
-      the Tor network, and have numerous known security issues. Resolves
-      issue #4788.

changes/bug4803

@@ -1,4 +0,0 @@
-  o Minor bugfixes:
-    - Correctly spell "connect" in a log message when creating a controlsocket
-      fails. Fixes bug 4803; bugfix on 0.2.2.26-beta/0.2.3.2-alpha.
-

changes/bug4822

@@ -1,13 +0,0 @@
-  o Major security workaround:
-    - When building or running with any version of OpenSSL earlier
-      than 0.9.8s or 1.0.0f, disable SSLv3 support. These versions had
-      a bug (CVE-2011-4576) in which their block cipher padding
-      included uninitialized data, potentially leaking sensitive
-      information to any peer with whom they made a SSLv3
-      connection. Tor does not use SSL v3 by default, but a hostile
-      client or server could force an SSLv3 connection in order to
-      gain information that they shouldn't have been able to get. The
-      best solution here is to upgrade to OpenSSL 0.9.8s or 1.0.0f (or
-      later). But when building or running with a non-upgraded
-      OpenSSL, we should instead make sure that the bug can't happen
-      by disabling SSLv3 entirely.

changes/bug4856

@@ -1,3 +0,0 @@
-  o Trivial bugfixes
-    - Fix a typo in a log message in rend_service_rendezvous_has_opened().
-      Fixes bug 4856; bugfix on Tor 0.0.6.

changes/bug5005

@@ -1,3 +0,0 @@
-  o Minor bugfixes:
-    - Update "ClientOnly" man page entry to explain that there isn't
-      really any point to messing with it. Resolves ticket 5005.

changes/bug5065

@@ -1,5 +0,0 @@
-  o Major bugfixes:
-    - Fix build if path to sed, openssl or sha1sum contains spaces.
-      This is pretty common on Windows. Fixes bug 5065; bugfix on
-      0.2.2.1-alpha.
-

changes/bug5067

@@ -1,5 +0,0 @@
-  o Minor bugfixes (usability):
-    - Downgrade the "We're missing a certificate" message from notice
-      to info: people kept mistaking it for a real problem, whereas it
-      is only a problem when we are failing to bootstrap. Fixes bug
-      5067; bugfix on 0.2.10-alpha.

changes/bug5090

@@ -1,7 +0,0 @@
-  o Minor bugfixes:
-    - Detect and reject certain misformed escape sequences in configuration
-      values. Previously, these values would cause us to crash if received
-      in a torrc file or over an (authenticated) control port. Bug found by
-      Esteban Manchado Velázquez. Patch by Alexander Schrijver. Fix for
-      bug 5090; bugfix on 0.2.0.16-alpha.
- 

changes/bug5259

@@ -1,3 +0,0 @@
-  o Documentation fixes:
-    - Clarify the behavior of MaxCircuitDirtiness with hidden service
-      circuits. Fix for issue 5259.

changes/bug5283

@@ -1,6 +0,0 @@
-  o Major bugfixes:
-    - Fix an edge case where if we fetch or publish a hidden service
-      descriptor, we might build a 4-hop circuit and then use that circuit
-      for exiting afterwards -- even if the new last hop doesn't obey our
-      ExitNodes config option. Fixes bug 5283; bugfix on 0.2.0.10-alpha.
-

changes/bug5340

@@ -1,3 +0,0 @@
-  o Minor bugfixes:
-    - Fix a compile warning when using the --enable-openbsd-malloc configure
-      option. Fixes bug 5340; bugfix on 0.2.0.20-rc.