Subject: CVS commit: pkgsrc/net/tor
From: Thomas Klausner
Date: 2022-04-27 23:02:18
Message id: 20220427210218.414F2FB1A@cvs.NetBSD.org

Log Message:
tor: update to 0.4.7.7.

Changes in version 0.4.7.7 - 2022-04-27
  This is the first stable version of the 0.4.7.x series. This series includes
  several major bugfixes from previous series and one massive new feature:
  congestion control.

  Congestion control should improve traffic speed and stability on the network
  once a majority of Exit upgrade. You can find more details about it in
  proposal 324 in the torspec.git repository.

  For a complete list of changes since 0.4.6.10, see the ReleaseNotes file.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on April 27, 2022.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2022/04/27.

  o Minor bugfixes (congestion control, client side logs):
    - Demote a warn about 1-hop circuits using congestion control down to
      info; Demote the 4-hop case to notice. Fixes bug 40598; bugfix on
      0.4.5-alpha.

Changes in version 0.4.7.6-rc - 2022-04-07
  This is the first release candidate of the 0.4.7.x series. Only one minor
  bugfix went in since the last alpha couple weeks ago. We strongly recommend
  anyone running an alpha version to upgrade to this version. Unless major
  problems are found, the next release will finally be the stable!

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on April 07, 2022.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2022/04/07.

  o Minor features (linux seccomp2 sandbox):
    - Permit the clone3 syscall, which is apparently used in glibc-2.34
      and later. Closes ticket 40590.

Changes in version 0.4.7.5-alpha - 2022-03-25
  This version contains, of what we hope, the final work for congestion
  control paving the way to the stable version. We expect this to be the last
  alpha version of the 0.4.7.x series. Mostly minor bugfixes except one major
  bugfix that changes how Tor behaves with DNS timeouts for Exit relays. As
  always with an alpha, we recommend all relay operators to upgrade from
  previous alpha to this one.

  o Major bugfixes (onion service, congestion control):
    - Fix the onion service upload case where the congestion control
      parameters were not added to the right object. Fixes bug 40586;
      bugfix on 0.4.7.4-alpha.

  o Major bugfixes (relay, DNS):
    - Lower the DNS timeout from 3 attempts at 5 seconds each to 2
      attempts at 1 seconds each. Two new consensus parameters were
      added to control these values. This change should improve observed
      performance under DNS load; see ticket for more details. Fixes bug
      40312; bugfix on 0.3.5.1-alpha.

  o Minor features (control port):
    - Provide congestion control fields on CIRC_BW and STREAM control
      port events, for use by sbws. Closes ticket 40568.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on March 25, 2022.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2022/03/25.

  o Minor bugfixes (DNSPort, dormant mode):
    - A request on the DNSPort now wakes up a dormant tor. Fixes bug
      40577; bugfix on 0.3.5.1-alpha.

  o Minor bugfixes (metrics port, onion service):
    - Fix the metrics with a port label to be unique. Before this, all
      ports of an onion service would be on the same line which violates
      the Prometheus rules of unique labels. Fixes bug 40581; bugfix
      on 0.4.5.1-alpha.

  o Minor bugfixes (onion service congestion control):
    - Avoid a non-fatal assertion failure in the case where we fail to
      set up congestion control on a rendezvous circuit. This could
      happen naturally if a cache entry expired at an unexpected time.
      Fixes bug 40576; bugfix on 0.4.7.4-alpha.

  o Minor bugfixes (onion service, client):
    - Fix a rare but fatal assertion failure due to a guard subsystem
      recursion triggered by the onion service client. Fixes bug 40579;
      bugfix on 0.3.5.1-alpha.

  o Minor bugfixes (relay, overload):
    - Decide whether to signal overload based on a fraction and
      assessment period of ntor handshake drops. Previously, a single
      drop could trigger an overload state, which caused many false
      positives. Fixes bug 40560; bugfix on 0.4.7.1-alpha.

Changes in version 0.4.7.4-alpha - 2022-02-25
  This version contains the negotiation congestion control work which is the
  final part needed before going stable. There are also various bugfixes
  including two major ones detailed below. Last, the Exit notice page layout
  has been modernized but the text is unchanged. We recommend that all relay
  operators running any previous alpha upgrade to this one.

  o Major features (relay, client, onion services):
    - Implement RTT-based congestion control for exits and onion
      services, from Proposal 324. Disabled by default. Enabled by the
      'cc_alg' consensus parameter. Closes ticket 40444.

  o Major bugfixes (client):
    - Stop caching TCP connect failures to relays/bridges when we
      initiated the connection as a client. Now we only cache connect
      failures as a relay or bridge when we initiated them because of an
      EXTEND request. Declining to re-attempt the client-based
      connections could cause problems when we lose connectivity and try
      to reconnect. Fixes bug 40499; bugfix on 0.3.3.4-alpha.

  o Major bugfixes (relay, overload):
    - Do not trigger a general overload on DNS timeout. Even after
      fixing 40527, some code remained that triggered the overload.
      Fixes bug 40564; bugfix on 0.4.7.1-alpha.

  o Minor feature (authority, relay):
    - Reject End-Of-Life relays running version 0.3.5.x. Closes
      ticket 40559.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on February 25, 2022.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2022/02/25.

  o Minor bugfix (logging):
    - Update a log notice dead URL to a working one. Fixes bug 40544;
      bugfix on 0.3.5.1-alpha.

  o Minor bugfix (relay):
    - Remove the HSDir and HSIntro onion service v2 protocol versions so
      relay stop advertising that they support them. Fixes bug 40509;
      bugfix on 0.3.5.17.

  o Minor bugfixes (cell scheduling):
    - Avoid writing empty payload with NSS write.
    - Don't attempt to write 0 bytes after a cell scheduling loop. No
      empty payload was put on the wire. Fixes bug 40548; bugfix
      on 0.3.5.1-alpha.

  o Minor bugfixes (compilation):
    - Resume being able to build on old / esoteric gcc versions. Fixes
      bug 40550; bugfix on 0.4.7.1-alpha.

  o Minor bugfixes (compiler warnings):
    - Fix couple compiler warnings on latest Ubuntu Jammy. Fixes bug
      40516; bugfix on 0.3.5.1-alpha.

  o Documentation:
    - Provide an improved version of the tor-exit-notice.html file for
      exit relays to use as a landing page. The text is unchanged, but
      the page design and layout are significantly modernized, and
      several links are fixed. Patch from "n_user"; closes ticket 40529.

Files:
RevisionActionfile
1.178modifypkgsrc/net/tor/Makefile
1.124modifypkgsrc/net/tor/distinfo