head 1.7; access; symbols pkgsrc-2013Q2:1.7.0.10 pkgsrc-2013Q2-base:1.7 pkgsrc-2012Q4:1.7.0.8 pkgsrc-2012Q4-base:1.7 pkgsrc-2011Q4:1.7.0.6 pkgsrc-2011Q4-base:1.7 pkgsrc-2011Q2:1.7.0.4 pkgsrc-2011Q2-base:1.7 pkgsrc-2009Q4:1.7.0.2 pkgsrc-2009Q4-base:1.7 pkgsrc-2008Q4:1.5.0.6 pkgsrc-2008Q4-base:1.5 pkgsrc-2008Q3:1.5.0.4 pkgsrc-2008Q3-base:1.5 cube-native-xorg:1.5.0.2 cube-native-xorg-base:1.5 pkgsrc-2008Q2:1.4.0.10 pkgsrc-2008Q2-base:1.4 cwrapper:1.4.0.8 pkgsrc-2008Q1:1.4.0.6 pkgsrc-2008Q1-base:1.4 pkgsrc-2007Q4:1.4.0.4 pkgsrc-2007Q4-base:1.4 pkgsrc-2007Q3:1.4.0.2 pkgsrc-2007Q3-base:1.4 pkgsrc-2007Q2:1.3.0.10 pkgsrc-2007Q2-base:1.3 pkgsrc-2007Q1:1.3.0.8 pkgsrc-2007Q1-base:1.3 pkgsrc-2006Q4:1.3.0.6 pkgsrc-2006Q4-base:1.3 pkgsrc-2006Q3:1.3.0.4 pkgsrc-2006Q3-base:1.3 pkgsrc-2006Q2:1.3.0.2 pkgsrc-2006Q2-base:1.3 pkgsrc-2006Q1:1.2.0.6 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.2.0.4 pkgsrc-2005Q4-base:1.2 pkgsrc-2005Q3:1.2.0.2 pkgsrc-2005Q3-base:1.2 pkgsrc-2005Q2:1.1.0.4 pkgsrc-2005Q2-base:1.1 pkgsrc-2005Q1:1.1.0.2 pkgsrc-2005Q1-base:1.1; locks; strict; comment @# @; 1.7 date 2009.02.15.07.59.02; author obache; state dead; branches; next 1.6; 1.6 date 2009.01.22.12.46.51; author drochner; state Exp; branches; next 1.5; 1.5 date 2008.08.01.17.23.21; author wiz; state dead; branches 1.5.6.1; next 1.4; 1.4 date 2007.08.09.19.33.58; author drochner; state Exp; branches; next 1.3; 1.3 date 2006.05.26.02.21.42; author jschauma; state Exp; branches; next 1.2; 1.2 date 2005.08.04.10.55.31; author drochner; state Exp; branches 1.2.6.1; next 1.1; 1.1 date 2005.02.13.20.27.54; author jschauma; state Exp; branches 1.1.4.1; next ; 1.5.6.1 date 2009.01.27.13.14.37; author tron; state Exp; branches; next 1.5.6.2; 1.5.6.2 date 2009.02.15.11.45.00; author tron; state dead; branches; next ; 1.2.6.1 date 2006.05.30.22.58.11; author salo; state Exp; branches; next ; 1.1.4.1 date 2005.08.09.16.18.32; author snj; state Exp; branches; next ; desc @@ 1.7 log @Update tor to 0.2.0.34. Patch provided by Christian Sturm and back to maintainer. Changes in version 0.2.0.34 - 2009-02-08 o Security fixes: - Fix an infinite-loop bug on handling corrupt votes under certain circumstances. Bugfix on 0.2.0.8-alpha. - Fix a temporary DoS vulnerability that could be performed by a directory mirror. Bugfix on 0.2.0.9-alpha; reported by lark. - Avoid a potential crash on exit nodes when processing malformed input. Remote DoS opportunity. Bugfix on 0.2.0.33. - Do not accept incomplete ipv4 addresses (like 192.168.0) as valid. Spec conformance issue. Bugfix on Tor 0.0.2pre27. o Minor bugfixes: - Fix compilation on systems where time_t is a 64-bit integer. Patch from Matthias Drochner. - Don't consider expiring already-closed client connections. Fixes bug 893. Bugfix on 0.0.2pre20. @ text @$NetBSD: patch-ac,v 1.6 2009/01/22 12:46:51 drochner Exp $ --- ./src/common/torint.h.orig 2009-01-22 12:02:50.000000000 +0100 +++ ./src/common/torint.h @@@@ -290,6 +290,8 @@@@ typedef uint32_t uintptr_t; #define TIME_MAX ((time_t)INT_MAX) #elif (SIZEOF_TIME_T == SIZEOF_LONG) #define TIME_MAX ((time_t)LONG_MAX) +#elif (SIZEOF_TIME_T == 8) +#define TIME_MAX ((time_t)INT64_MAX) #else #error "Can't define (signed) TIME_MAX" #endif @ 1.6 log @make this build with 64-bit time_t (There are some unclean typecasts in the code, but the cases I've seen are harmless -- as long as poll intervals, cert lifetimes etc don't reach into y2037 which would be problematic in any case.) @ text @d1 1 a1 1 $NetBSD$ @ 1.5 log @Update to current stable version, tor-0.2.0.30, based on wip/tor. Thanks to athaba, netcap, and tvierling. Changes in version 0.2.0.30 - 2008-07-15 This new stable release switches to a more efficient directory distribution design, adds features to make connections to the Tor network harder to block, allows Tor to act as a DNS proxy, adds separate rate limiting for relayed traffic to make it easier for clients to become relays, fix a variety of potential anonymity problems, and includes the usual huge pile of other features and bug fixes. @ text @d1 1 a1 1 $NetBSD: patch-ac,v 1.4 2007/08/09 19:33:58 drochner Exp $ d3 11 a13 11 --- contrib/Makefile.in.orig 2007-05-25 02:52:01.000000000 +0200 +++ contrib/Makefile.in @@@@ -176,7 +176,7 @@@@ SUBDIRS = osx suse DIST_SUBDIRS = osx suse confdir = $(sysconfdir)/tor EXTRA_DIST = exitlist tor-tsocks.conf torify.1 TorControl.py tor.nsi.in tor.sh torctl rc.subr ExerciseServer.py PathDemo.py cross.sh tor-mingw.nsi.in package_nsis-mingw.sh tor.ico -conf_DATA = tor-tsocks.conf +#conf_DATA = tor-tsocks.conf bin_SCRIPTS = torify man_MANS = torify.1 all: all-recursive @ 1.5.6.1 log @Pullup ticket #2656 - requested by drochner tor: security update Revisions pulled up: - net/tor/Makefile 1.61 - net/tor/distinfo 1.32-1.33 - net/tor/patches/patch-ac 1.6 --- Module Name: pkgsrc Committed By: drochner Date: Thu Jan 22 12:46:51 UTC 2009 Modified Files: pkgsrc/net/tor: distinfo Added Files: pkgsrc/net/tor/patches: patch-ac Log Message: make this build with 64-bit time_t (There are some unclean typecasts in the code, but the cases I've seen are harmless -- as long as poll intervals, cert lifetimes etc don't reach into y2037 which would be problematic in any case.) --- Module Name: pkgsrc Committed By: drochner Date: Thu Jan 22 12:50:57 UTC 2009 Modified Files: pkgsrc/net/tor: Makefile distinfo Log Message: update to 0.2.0.33 changes: -Security fix: Fix a heap-corruption bug that may be remotely triggerable on some platforms. -many bugfixes @ text @d1 1 a1 1 $NetBSD$ d3 11 a13 11 --- ./src/common/torint.h.orig 2009-01-22 12:02:50.000000000 +0100 +++ ./src/common/torint.h @@@@ -290,6 +290,8 @@@@ typedef uint32_t uintptr_t; #define TIME_MAX ((time_t)INT_MAX) #elif (SIZEOF_TIME_T == SIZEOF_LONG) #define TIME_MAX ((time_t)LONG_MAX) +#elif (SIZEOF_TIME_T == 8) +#define TIME_MAX ((time_t)INT64_MAX) #else #error "Can't define (signed) TIME_MAX" #endif @ 1.5.6.2 log @Pullup ticket #2699 - requested by obache tor: security update Revisions pulled up: - net/tor/Makefile 1.62 - net/tor/distinfo 1.34 - net/tor/patches/patch-ac delete --- Module Name: pkgsrc Committed By: obache Date: Sun Feb 15 07:59:02 UTC 2009 Modified Files: pkgsrc/net/tor: Makefile distinfo Removed Files: pkgsrc/net/tor/patches: patch-ac Log Message: Update tor to 0.2.0.34. Patch provided by Christian Sturm and back to maintainer. Changes in version 0.2.0.34 - 2009-02-08 o Security fixes: - Fix an infinite-loop bug on handling corrupt votes under certain circumstances. Bugfix on 0.2.0.8-alpha. - Fix a temporary DoS vulnerability that could be performed by a directory mirror. Bugfix on 0.2.0.9-alpha; reported by lark. - Avoid a potential crash on exit nodes when processing malformed input. Remote DoS opportunity. Bugfix on 0.2.0.33. - Do not accept incomplete ipv4 addresses (like 192.168.0) as valid. Spec conformance issue. Bugfix on Tor 0.0.2pre27. o Minor bugfixes: - Fix compilation on systems where time_t is a 64-bit integer. Patch from Matthias Drochner. - Don't consider expiring already-closed client connections. Fixes bug 893. Bugfix on 0.0.2pre20. @ text @d1 1 a1 1 $NetBSD: patch-ac,v 1.5.6.1 2009/01/27 13:14:37 tron Exp $ @ 1.4 log @Update to 0.1.2.16, which is the top of the new 0.1.2.x stable branch. Too many changes to list here; most are not visible to client-only users anyway. I've tested client and anymous service functions. Couldn't test server myself. Since noone responded when I asked for testers I'm committing the update anyway, also because security flaws were reported without telling whether they apply to the old 0.1.1 branch. @ text @d1 1 a1 1 $NetBSD$ @ 1.3 log @- Update tor to latest stable version 0.1.1.20 via files from pkgsrc-wip - maintainer -> tv Changes (summary): some major security fixes, including entry guards to protect the beginning of the circuit, exit enclaves to protect the end, and better firewall support; a new directory protocol that improves bandwidth use and keeps clients more up to date; two new directory authorities; a new ascii-based controller protocol that lets people easily write applications to interact with Tor; and many scalability and performance improvements Full changes available at http://archives.seul.org/or/announce/May-2006/msg00000.html: @ text @d3 1 a3 1 --- contrib/Makefile.in.orig 2006-05-23 13:08:04.000000000 -0400 d5 4 a8 4 @@@@ -81,7 +81,7 @@@@ confdir = $(sysconfdir)/tor EXTRA_DIST = exitlist tor-tsocks.conf torify.1 TorControl.py tor.nsi.in tor.sh torctl rc.subr ExerciseServer.py PathDemo.py a10 1 d12 2 a13 1 @ 1.2 log @update to 0.1.0.12 This is a major update, too many improvements to list here, see the ChangeLog in the distribution for details. pkgsrc changes: -remove dependency on tsocks; this is just one possible way to make applications use SOCKS; add a hint to MESSAGE -use the pkgsrc libevent - the NetBSD builtin is old, and tor complains loudly if it doesn't like the libevent version -make the rc.d script executable @ text @d3 1 a3 1 --- contrib/Makefile.in.orig 2005-07-18 21:11:02.000000000 +0200 d5 1 a5 1 @@@@ -78,7 +78,7 @@@@ confdir = $(sysconfdir)/tor d7 1 a7 1 EXTRA_DIST = exitlist tor-tsocks.conf torify.1 TorControl.py tor.nsi tor.sh torctl ExerciseServer.py PathDemo.py @ 1.2.6.1 log @Pullup ticket 1676 - requested by jschauma security update for tor Revisions pulled up: - pkgsrc/net/tor/MESSAGE 1.4 - pkgsrc/net/tor/Makefile 1.29 - pkgsrc/net/tor/distinfo 1.17 - pkgsrc/net/tor/patches/patch-ac 1.3 - pkgsrc/net/tor/patches/patch-ad 1.2 Module Name: pkgsrc Committed By: jschauma Date: Fri May 26 02:21:42 UTC 2006 Modified Files: pkgsrc/net/tor: MESSAGE Makefile distinfo pkgsrc/net/tor/patches: patch-ac patch-ad Log Message: - Update tor to latest stable version 0.1.1.20 via files from pkgsrc-wip - maintainer -> tv Changes (summary): some major security fixes, including entry guards to protect the beginning of the circuit, exit enclaves to protect the end, and better firewall support; a new directory protocol that improves bandwidth use and keeps clients more up to date; two new directory authorities; a new ascii-based controller protocol that lets people easily write applications to interact with Tor; and many scalability and performance improvements Full changes available at http://archives.seul.org/or/announce/May-2006/msg00000.html @ text @d1 1 a1 1 $NetBSD: patch-ac,v 1.3 2006/05/26 02:21:42 jschauma Exp $ d3 1 a3 1 --- contrib/Makefile.in.orig 2006-05-23 13:08:04.000000000 -0400 d5 1 a5 1 @@@@ -81,7 +81,7 @@@@ confdir = $(sysconfdir)/tor d7 1 a7 1 EXTRA_DIST = exitlist tor-tsocks.conf torify.1 TorControl.py tor.nsi.in tor.sh torctl rc.subr ExerciseServer.py PathDemo.py @ 1.1 log @Update tor to 0.0.9.4. pkgsrc changes: - depend on tsocks to allow torification of other applications - create a user for this application to run as - install a suitable rc script ChangeLog says: o Bugfixes on 0.0.9: - Fix an assert bug that took down most of our servers: when a server claims to have 500 GB of bandwidthburst, don't freak out. - Don't crash as badly if we have spawned the max allowed number of dnsworkers, or we're out of file descriptors. - Block more file-sharing ports in the default exit policy. - MaxConn is now automatically set to the hard limit of max file descriptors we're allowed (ulimit -n), minus a few for logs, etc. - Give a clearer message when servers need to raise their ulimit -n when they start running out of file descriptors. - SGI Compatibility patches from Jan Schaumann. - Tolerate a corrupt cached directory better. - When a dirserver hasn't approved your server, list which one. - Go into soft hibernation after 95% of the bandwidth is used, not 99%. This is especially important for daily hibernators who have a small accounting max. Hopefully it will result in fewer cut connections when the hard hibernation starts. - Load-balance better when using servers that claim more than 800kB/s of capacity. - Make NT services work (experimental, only used if compiled in). @ text @d1 1 a1 1 $NetBSD: $ d3 3 a5 3 --- contrib/Makefile.in.orig 2005-02-13 15:07:56.000000000 -0500 +++ contrib/Makefile.in 2005-02-13 15:08:23.000000000 -0500 @@@@ -75,7 +75,7 @@@@ d7 1 a7 1 EXTRA_DIST = tor-tsocks.conf torify.1 tor-control.py tor.nsi tor.sh torctl @ 1.1.4.1 log @Pullup ticket 670 - requested by Lubomir Sedlacik security update for tor Revisions pulled up: - pkgsrc/net/tor/MESSAGE 1.2 - pkgsrc/net/tor/Makefile 1.15-1.17 - pkgsrc/net/tor/distinfo 1.11-1.13 - pkgsrc/net/tor/patches/patch-ac 1.2 - pkgsrc/net/tor/patches/patch-ad 1.1 Module Name: pkgsrc Committed By: drochner Date: Thu Aug 4 10:55:31 UTC 2005 Modified Files: pkgsrc/net/tor: MESSAGE Makefile distinfo pkgsrc/net/tor/patches: patch-ac Added Files: pkgsrc/net/tor/patches: patch-ad Log Message: update to 0.1.0.12 This is a major update, too many improvements to list here, see the ChangeLog in the distribution for details. pkgsrc changes: -remove dependency on tsocks; this is just one possible way to make applications use SOCKS; add a hint to MESSAGE -use the pkgsrc libevent - the NetBSD builtin is old, and tor complains loudly if it doesn't like the libevent version -make the rc.d script executable ---- Module Name: pkgsrc Committed By: jschauma Date: Fri Aug 5 01:44:00 UTC 2005 Modified Files: pkgsrc/net/tor: Makefile distinfo Log Message: Update to 0.1.0.13: - Fix a critical bug in the security of our crypto handshakes. - Fix a size_t underflow in smartlist_join_strings2() that made it do bad things when you hand it an empty smartlist. - Fix Windows installer to ship Tor license (thanks to Aphex for pointing out this oversight) and put a link to the doc directory in the start menu. - Explicitly set no-unaligned-access for sparc: it turns out the new gcc's let you compile broken code, but that doesn't make it not-broken ---- Module Name: pkgsrc Committed By: drochner Date: Tue Aug 9 09:01:08 UTC 2005 Modified Files: pkgsrc/net/tor: Makefile distinfo Log Message: update to tor-0.1.0.14 Tor 0.1.0.14 fixes the second half of an important bug in the security of our crypto handshakes. This time for sure. :) All clients should upgrade. o Bugfixes on 0.1.0.x: - Fix the other half of the bug with crypto handshakes. - Fix an assert trigger if you send a 'signal term' via the controller when it's listening for 'event info' messages. @ text @d1 1 a1 1 $NetBSD: patch-ac,v 1.2 2005/08/04 10:55:31 drochner Exp $ d3 3 a5 3 --- contrib/Makefile.in.orig 2005-07-18 21:11:02.000000000 +0200 +++ contrib/Makefile.in @@@@ -78,7 +78,7 @@@@ confdir = $(sysconfdir)/tor d7 1 a7 1 EXTRA_DIST = exitlist tor-tsocks.conf torify.1 TorControl.py tor.nsi tor.sh torctl ExerciseServer.py PathDemo.py @