diff mbox series

Tor: Update to 0.4.8.21

Message ID eec3c801-f3cf-4ac5-95c1-f5dfe17d3ffd@ipfire.org
State Staged
Commit ef72d807aaf7e778cc4cc8e4126f1d9823ebe12c
Headers
Series Tor: Update to 0.4.8.21 |

Commit Message

Peter Müller 5 Jan 2026, 3:56 p.m. UTC 
Changes in version 0.4.8.21 - 2025-11-17
  This release is a continuation of the previous one and addresses additional
  Conflux-related issues identified through further testing and feedback from
  relay operators. We strongly recommend upgrading as soon as possible.

  o Major bugfixes (conflux, exit):
    - When dequeuing out-of-order conflux cells, the circuit could be
      close in between two dequeue which could lead to a mishandling of
      a NULL pointer. Fixes bug 41162; bugfix on 0.4.8.4.

  o Minor feature (compiler flag):
    - Add -mbranch-protection=standard for arm64.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on November 17, 2025.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2025/11/17.

  o Minor bugfixes (bridges, pluggable transport):
    - Fix a bug causing the initial tor process to hang intead of
      exiting with RunAsDaemon, when pluggable transports are used.
      Fixes bug 41088; bugfix on 0.4.8.1-alpha.

Changes in version 0.4.8.20 - 2025-11-10
  This release fixes several bugfixes related to Conflux edge cases as well as
  adding a new hardening compiler flag if supported. We strongly recommend to
  upgrade as soon as possible.

  o Minor feature (compiler flag):
    - Add -fcf-protection=full if supported by the compiler.
      Fixes 41139.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on October 06, 2025.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2025/11/10.

  o Minor bugfixes (conflux fragile asserts):
    - Fix the root cause of some conflux fragile asserts when a control
      port listener is attached. Fixes bug 41037; bugfix on 0.4.8.16.

  o Minor bugfixes (conflux, relay):
    - Fix a series of conflux edge cases about sequence number
      arithmetic and OOM handler kicking in under heavy memory pressure.
      Fixes bug 41155; bugfix on 0.4.8.4.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
---
 lfs/tor | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)
diff mbox series

Patch

diff --git a/lfs/tor b/lfs/tor
index 350f721ac..f77e25bd7 100644
--- a/lfs/tor
+++ b/lfs/tor
@@ -1,7 +1,7 @@ 
 ###############################################################################
 #                                                                             #
 # IPFire.org - A linux based firewall                                         #
-# Copyright (C) 2007-2025  IPFire Team  <info@ipfire.org>                     #
+# Copyright (C) 2007-2026  IPFire Team  <info@ipfire.org>                     #
 #                                                                             #
 # This program is free software: you can redistribute it and/or modify        #
 # it under the terms of the GNU General Public License as published by        #
@@ -26,7 +26,7 @@  include Config
 
 SUMMARY    = Anonymizing overlay network for TCP (The onion router)
 
-VER        = 0.4.8.19
+VER        = 0.4.8.21
 
 THISAPP    = tor-$(VER)
 DL_FILE    = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@  DL_FROM    = $(URL_IPFIRE)
 DIR_APP    = $(DIR_SRC)/$(THISAPP)
 TARGET     = $(DIR_INFO)/$(THISAPP)
 PROG       = tor
-PAK_VER    = 92
+PAK_VER    = 93
 
 DEPS       =
 
@@ -48,7 +48,7 @@  objects = $(DL_FILE)
 
 $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
 
-$(DL_FILE)_BLAKE2 = 298612a737a3c035de266549cae911ba709f8c261fe8856f9eff6b7a72b7a71d99e91d1d20dbb6f1c10c9c8d42778423d7a96348303006987dd43fa3888699d8
+$(DL_FILE)_BLAKE2 = 1b7d786a7ec5a3e5967d8ce214f8a2aef10f8ba10791bc45d42a322bf4107c0a1962b80368e043ee1b239a8367660fdf810d05f00a010d9e69d024e1042217e8
 
 install : $(TARGET)