commit tor for openSUSE:Factory

2020-09-23 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-09-23 18:41:49

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.4249 (New)


Package is "tor"

Wed Sep 23 18:41:49 2020 rev:85 rq:836122 version:0.4.4.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-08-20 22:31:07.872045933 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.4249/tor.changes2020-09-23 
18:43:04.665469074 +0200
@@ -1,0 +2,7 @@
+Tue Sep 15 14:51:40 UTC 2020 - Bernhard Wiedemann 
+
+- tor 0.4.4.5
+  * Improve guard selection
+  * IPv6 improvements
+
+---

Old:

  tor-0.4.3.6.tar.gz
  tor-0.4.3.6.tar.gz.asc

New:

  tor-0.4.4.5.tar.gz
  tor-0.4.4.5.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.LkOja2/_old  2020-09-23 18:43:07.153471363 +0200
+++ /var/tmp/diff_new_pack.LkOja2/_new  2020-09-23 18:43:07.157471367 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.3.6
+Version:0.4.4.5
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.4.3.6.tar.gz -> tor-0.4.4.5.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.3.6.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.4249/tor-0.4.4.5.tar.gz differ: char 30, 
line 1

commit tor for openSUSE:Factory

2020-08-20 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-08-20 22:31:01

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.3399 (New)


Package is "tor"

Thu Aug 20 22:31:01 2020 rev:84 rq:828027 version:0.4.3.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-07-10 15:30:34.486762503 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.3399/tor.changes2020-08-20 
22:31:07.872045933 +0200
@@ -1,0 +2,5 @@
+Wed Aug 19 09:49:51 UTC 2020 - Dominique Leuenberger 
+
+- Use %{_tmpfilesdir} instead of abusing %{_libexecdir}/tmpfiles.d.
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.r3DyKt/_old  2020-08-20 22:31:09.324046613 +0200
+++ /var/tmp/diff_new_pack.r3DyKt/_new  2020-08-20 22:31:09.328046614 +0200
@@ -106,8 +106,8 @@
 install -m 644 -D %{SOURCE3} %{buildroot}/%{_unitdir}/%{name}.service
 install -m 644 -D %{SOURCE6} %{buildroot}/%{_unitdir}/%{name}-master.service
 install -m 644 %{SOURCE5} %{buildroot}%{_datadir}/tor/defaults-torrc
-install -d -m 0755 %{buildroot}%{_libexecdir}/tmpfiles.d/
-install -m 0644 %{SOURCE4} %{buildroot}%{_libexecdir}/tmpfiles.d/%{name}.conf
+install -d -m 0755 %{buildroot}%{_tmpfilesdir}/
+install -m 0644 %{SOURCE4} %{buildroot}%{_tmpfilesdir}/%{name}.conf
 ln -s -f service %{buildroot}%{_sbindir}/rc%{name}
 
 # sample config files
@@ -134,7 +134,7 @@
 %post
 %fillup_only
 %service_add_post tor.service
-systemd-tmpfiles --create %{_libexecdir}/tmpfiles.d/tor.conf || :
+systemd-tmpfiles --create %{_tmpfilesdir}/tor.conf || :
 
 %preun
 %service_del_preun tor.service
@@ -158,7 +158,7 @@
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}
 %{_unitdir}/%{name}.service
 %{_unitdir}/%{name}-master.service
-%{_libexecdir}/tmpfiles.d/%{name}.conf
+%{_tmpfilesdir}/%{name}.conf
 %{_sbindir}/rc%{name}
 
 %changelog

commit tor for openSUSE:Factory

2020-07-10 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-07-10 15:30:24

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.3060 (New)


Package is "tor"

Fri Jul 10 15:30:24 2020 rev:83 rq:819777 version:0.4.3.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-07-06 16:37:03.428594660 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.3060/tor.changes2020-07-10 
15:30:34.486762503 +0200
@@ -1,0 +2,7 @@
+Thu Jul  9 17:27:13 UTC 2020 - Bernhard Wiedemann 
+
+- tor 0.4.3.6
+  * Fix a crash due to an out-of-bound memory access (CVE-2020-15572)
+  * Some minor fixes
+
+---

Old:

  tor-0.4.3.5.tar.gz
  tor-0.4.3.5.tar.gz.asc

New:

  tor-0.4.3.6.tar.gz
  tor-0.4.3.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.UHu2PC/_old  2020-07-10 15:30:36.370768703 +0200
+++ /var/tmp/diff_new_pack.UHu2PC/_new  2020-07-10 15:30:36.374768715 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.3.5
+Version:0.4.3.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.4.3.5.tar.gz -> tor-0.4.3.6.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.3.5.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.3060/tor-0.4.3.6.tar.gz differ: char 13, 
line 1

commit tor for openSUSE:Factory

2020-07-06 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-07-06 16:34:27

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.3060 (New)


Package is "tor"

Mon Jul  6 16:34:27 2020 rev:82 rq:818991 version:0.4.3.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-06-23 21:04:47.493880427 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.3060/tor.changes2020-07-06 
16:37:03.428594660 +0200
@@ -1,0 +2,5 @@
+Mon Jun 29 08:57:42 UTC 2020 - Bernhard Wiedemann 
+
+- Fix logrotate to not fail when tor is stopped (boo#1164275)
+
+---



Other differences:
--
++ tor-0.2.5.x-logrotate.patch ++
--- /var/tmp/diff_new_pack.UH18Ms/_old  2020-07-06 16:37:04.176596962 +0200
+++ /var/tmp/diff_new_pack.UH18Ms/_new  2020-07-06 16:37:04.176596962 +0200
@@ -24,6 +24,6 @@
sharedscripts
postrotate
 -  /etc/init.d/tor reload > /dev/null
-+  /usr/sbin/service tor reload > /dev/null
++  /usr/bin/systemctl try-reload-or-restart tor
endscript
  }

commit tor for openSUSE:Factory

2020-06-23 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-06-23 21:04:26

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.2956 (New)


Package is "tor"

Tue Jun 23 21:04:26 2020 rev:81 rq:808310 version:0.4.3.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-03-21 00:02:25.821133192 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.2956/tor.changes2020-06-23 
21:04:47.493880427 +0200
@@ -1,0 +2,13 @@
+Fri May 15 18:58:11 UTC 2020 - Andreas Stieger 
+
+- tor 0.4.3.5:
+  * first stable release in the 0.4.3.x series
+  * implement functionality needed for OnionBalance with v3 onion
+services
+  * significant refactoring of our configuration and controller
+functionality
+  * Add support for banning a relay's ed25519 keys in the
+approved-routers file in support for migrating away from RSA
+  * support OR connections through a HAProxy server
+
+---

Old:

  tor-0.4.2.7.tar.gz
  tor-0.4.2.7.tar.gz.asc

New:

  tor-0.4.3.5.tar.gz
  tor-0.4.3.5.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.9kcypl/_old  2020-06-23 21:04:48.325883115 +0200
+++ /var/tmp/diff_new_pack.9kcypl/_new  2020-06-23 21:04:48.325883115 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.2.7
+Version:0.4.3.5
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -50,7 +50,7 @@
 Requires:   logrotate
 Requires(post): %fillup_prereq
 Recommends: torsocks
-%{systemd_ordering}
+%systemd_ordering
 
 %description
 Tor is a connection-based low-latency anonymous communication system.
@@ -120,7 +120,7 @@
 
 %check
 %ifnarch ppc ppc64 ppc64le aarch64 armv7l
-make %{?_smp_mflags} check || (
+%make_build check || (
find -type f -name test-suite.log -print -exec cat {} \;
exit 42
 )

++ tor-0.4.2.7.tar.gz -> tor-0.4.3.5.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.2.7.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.2956/tor-0.4.3.5.tar.gz differ: char 13, 
line 1

commit tor for openSUSE:Factory

2020-03-20 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-03-20 23:58:18

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.3160 (New)


Package is "tor"

Fri Mar 20 23:58:18 2020 rev:80 rq:786716 version:0.4.2.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-01-31 23:58:59.491704480 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.3160/tor.changes2020-03-21 
00:02:25.821133192 +0100
@@ -1,0 +2,9 @@
+Wed Mar 18 20:52:20 UTC 2020 - Bernhard Wiedemann 
+
+- tor 0.4.2.7
+  * CVE-2020-10592: CPU consumption DoS and timing patterns (boo#1167013)
+  * CVE-2020-10593: circuit padding memory leak (boo#1167014)
+  * Directory authorities now signal bandwidth pressure to clients
+  * Avoid excess logging on bug when flushing a buffer to a TLS connection
+
+---

Old:

  tor-0.4.2.6.tar.gz
  tor-0.4.2.6.tar.gz.asc

New:

  tor-0.4.2.7.tar.gz
  tor-0.4.2.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.lxUSBL/_old  2020-03-21 00:02:27.757134252 +0100
+++ /var/tmp/diff_new_pack.lxUSBL/_new  2020-03-21 00:02:27.761134255 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.2.6
+Version:0.4.2.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.4.2.6.tar.gz -> tor-0.4.2.7.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.2.6.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.3160/tor-0.4.2.7.tar.gz differ: char 13, 
line 1

commit tor for openSUSE:Factory

2020-01-31 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-01-31 23:57:35

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.26092 (New)


Package is "tor"

Fri Jan 31 23:57:35 2020 rev:79 rq:769011 version:0.4.2.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2020-01-09 22:51:51.914747433 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.26092/tor.changes   2020-01-31 
23:58:59.491704480 +0100
@@ -1,0 +2,10 @@
+Fri Jan 31 08:32:28 UTC 2020 - Bernhard Wiedemann 
+
+- tor 0.4.2.6
+  * Correct how we use libseccomp
+  * Fix crash when reloading logging configuration while the
+experimental sandbox is enabled
+  * Avoid a possible crash when logging an assertion
+about mismatched magic numbers
+
+---

Old:

  tor-0.4.2.5.tar.gz
  tor-0.4.2.5.tar.gz.asc

New:

  tor-0.4.2.6.tar.gz
  tor-0.4.2.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.527QOL/_old  2020-01-31 23:59:00.491704998 +0100
+++ /var/tmp/diff_new_pack.527QOL/_new  2020-01-31 23:59:00.491704998 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.2.5
+Version:0.4.2.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.4.2.5.tar.gz -> tor-0.4.2.6.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.2.5.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.26092/tor-0.4.2.6.tar.gz differ: char 13, 
line 1

commit tor for openSUSE:Factory

2020-01-09 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2020-01-09 22:50:58

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.6675 (New)


Package is "tor"

Thu Jan  9 22:50:58 2020 rev:78 rq:761967 version:0.4.2.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-12-10 22:44:11.201769862 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.6675/tor.changes2020-01-09 
22:51:51.914747433 +0100
@@ -1,0 +2,16 @@
+Tue Jan  7 11:21:02 UTC 2020 - Bernhard Wiedemann 
+
+- Update tor.service and add defaults-torrc
+  to work without dropped torctl (boo#1072274)
+- Add tor-master.service to allow handling multiple tor daemons
+
+---
+Sat Dec 14 20:35:25 UTC 2019 - Andreas Stieger 
+
+- tor 0.4.2.5:
+  * first stable release in the 0.4.2.x series
+  * improves reliability and stability
+  * several stability and correctness improvements for onion services
+  *  fixes many smaller bugs present in previous series
+
+---

Old:

  tor-0.4.1.7.tar.gz
  tor-0.4.1.7.tar.gz.asc

New:

  defaults-torrc
  tor-0.4.2.5.tar.gz
  tor-0.4.2.5.tar.gz.asc
  tor-master.service



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.nmqMvY/_old  2020-01-09 22:51:53.122748038 +0100
+++ /var/tmp/diff_new_pack.nmqMvY/_new  2020-01-09 22:51:53.126748041 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.1.7
+Version:0.4.2.5
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -31,6 +31,8 @@
 Source2:tor.keyring
 Source3:tor.service
 Source4:tor.tmpfiles
+Source5:defaults-torrc
+Source6:tor-master.service
 Patch0: tor-0.2.5.x-logrotate.patch
 Patch1: fix-test.patch
 BuildRequires:  openssl-devel >= 1.0.1
@@ -102,13 +104,12 @@
 %{buildroot}/%{_sbindir}
 
 install -m 644 -D %{SOURCE3} %{buildroot}/%{_unitdir}/%{name}.service
+install -m 644 -D %{SOURCE6} %{buildroot}/%{_unitdir}/%{name}-master.service
+install -m 644 %{SOURCE5} %{buildroot}%{_datadir}/tor/defaults-torrc
 install -d -m 0755 %{buildroot}%{_libexecdir}/tmpfiles.d/
 install -m 0644 %{SOURCE4} %{buildroot}%{_libexecdir}/tmpfiles.d/%{name}.conf
 ln -s -f service %{buildroot}%{_sbindir}/rc%{name}
 
-# control script
-install -p -m 755 contrib/dist/torctl %{buildroot}/%{_bindir}
-
 # sample config files
 install -p -m 644 -D src/config/torrc.{sample,minimal} 
%{buildroot}/%{_sysconfdir}/%{name}
 install -p -m 644 src/config/torrc.minimal 
%{buildroot}/%{_sysconfdir}/%{name}/torrc
@@ -148,6 +149,7 @@
 %{_bindir}/*
 %dir %{_datadir}/%{name}
 %{_datadir}/%{name}/geoip*
+%{_datadir}/%{name}/defaults-torrc
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}
 %dir %attr(0755,root,%{torgroup}) %{_sysconfdir}/%{name}
 %config(noreplace) %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/torrc
@@ -155,6 +157,7 @@
 %attr(0700,%{toruser},%{torgroup}) %dir %{_localstatedir}/lib/%{name}
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}
 %{_unitdir}/%{name}.service
+%{_unitdir}/%{name}-master.service
 %{_libexecdir}/tmpfiles.d/%{name}.conf
 %{_sbindir}/rc%{name}
 

++ defaults-torrc ++
DataDirectory /var/lib/tor
PidFile /var/run/tor/tor.pid
User tor
Log notice file /var/log/tor/tor.log
#Log notice syslog

ControlSocket /var/run/tor/control GroupWritable RelaxDirModeCheck
ControlSocketsGroupWritable 1
SocksPort unix:/var/run/tor/socks WorldWritable
SocksPort 9050

CookieAuthentication 1
CookieAuthFileGroupReadable 1
CookieAuthFile /var/run/tor/control.authcookie
++ tor-0.4.1.7.tar.gz -> tor-0.4.2.5.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.1.7.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.6675/tor-0.4.2.5.tar.gz differ: char 12, 
line 1

++ tor-master.service ++
# Use tor-master.service to restart/reload/stop the main tor.service and
# all instances of tor@.service that are running.
#
# systemd targets cannot be reloaded so this is a service instead.

[Unit]
Description=Anonymizing overlay network for TCP (multi-instance master)

[Service]
Type=oneshot
RemainAfterExit=yes
ExecStart=/bin/true
ExecReload=/bin/true

[Install]
WantedBy=multi-user.target
++ tor.service ++
--- /var/tmp/diff_new_pack.nmqMvY/_old  2020-01-09 22:51:53.778748367 +0100
+++ /var/tmp/diff_new_pack.nmqMvY/_new  2020-01-09 22:51:53.802748379 +0100
@@ -1,15 +1,35 @@
 [Unit]
-Description = Anonymizing overlay network for TCP
-After

commit tor for openSUSE:Factory

2019-12-10 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-12-10 22:43:55

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.4691 (New)


Package is "tor"

Tue Dec 10 22:43:55 2019 rev:77 rq:755515 version:0.4.1.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-10-08 19:59:43.419875246 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.4691/tor.changes2019-12-10 
22:44:11.201769862 +0100
@@ -1,0 +2,7 @@
+Tue Dec 10 08:27:14 UTC 2019 - Andreas Stieger 
+
+- tor 0.4.1.7:
+  * several bugfixes to improve stability and correctness
+  * fixes for relays relying on AccountingMax
+
+---

Old:

  tor-0.4.1.6.tar.gz
  tor-0.4.1.6.tar.gz.asc

New:

  tor-0.4.1.7.tar.gz
  tor-0.4.1.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.YkV2JE/_old  2019-12-10 22:44:12.245769475 +0100
+++ /var/tmp/diff_new_pack.YkV2JE/_new  2019-12-10 22:44:12.249769474 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.1.6
+Version:0.4.1.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.4.1.6.tar.gz -> tor-0.4.1.7.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.1.6.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.4691/tor-0.4.1.7.tar.gz differ: char 5, 
line 1

commit tor for openSUSE:Factory

2019-10-08 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-10-08 19:59:43

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.2352 (New)


Package is "tor"

Tue Oct  8 19:59:43 2019 rev:76 rq:736066 version:0.4.1.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-09-26 20:46:55.185630981 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.2352/tor.changes2019-10-08 
19:59:43.419875246 +0200
@@ -1,0 +2,8 @@
+Mon Oct  7 13:16:38 UTC 2019 - Martin Pluskal 
+
+- Update dependnecnies:
+  * python3 instead of python
+  * add libpcap and seccomp
+- Use more suitable macros for building and systemd dependencies
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.RzT3Wq/_old  2019-10-08 19:59:44.631871617 +0200
+++ /var/tmp/diff_new_pack.RzT3Wq/_new  2019-10-08 19:59:44.631871617 +0200
@@ -24,7 +24,6 @@
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
-Group:  Productivity/Networking/Security
 URL:https://www.torproject.org/
 Source0:https://www.torproject.org/dist/%{name}-%{version}.tar.gz
 Source1:https://www.torproject.org/dist/%{name}-%{version}.tar.gz.asc
@@ -37,9 +36,11 @@
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
-BuildRequires:  python-base
+BuildRequires:  python3-base
+BuildRequires:  pkgconfig(libcap)
 BuildRequires:  pkgconfig(libevent) >= 2.0.10
 BuildRequires:  pkgconfig(liblzma)
+BuildRequires:  pkgconfig(libseccomp)
 BuildRequires:  pkgconfig(libsystemd)
 BuildRequires:  pkgconfig(libzstd)
 BuildRequires:  pkgconfig(systemd)
@@ -47,7 +48,7 @@
 Requires:   logrotate
 Requires(post): %fillup_prereq
 Recommends: torsocks
-%{?systemd_requires}
+%{systemd_ordering}
 
 %description
 Tor is a connection-based low-latency anonymous communication system.
@@ -86,7 +87,7 @@
--enable-unittests \
--enable-gcc-warnings-advisory \
--docdir=%{_docdir}/%{name}
-make %{?_smp_mflags}
+%make_build
 
 %install
 %make_install

commit tor for openSUSE:Factory

2019-09-26 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-09-26 20:46:49

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.2352 (New)


Package is "tor"

Thu Sep 26 20:46:49 2019 rev:75 rq:733468 version:0.4.1.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-08-22 10:54:07.577685763 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.2352/tor.changes2019-09-26 
20:46:55.185630981 +0200
@@ -1,0 +2,13 @@
+Thu Sep 19 13:02:59 UTC 2019 - Bernhard Wiedemann 
+
+- update to 0.4.1.6
+  * Tolerate systems (including some Linux installations) where
+madvise MADV_DONTFORK / MADV_DONTDUMP are available at build-time,
+but not at run time.
+  * Do not include the deprecated  on Linux
+  * Fix the MAPADDRESS controller command to accept one or more arguments
+  * Always retry v2+v3 single onion service intro and rendezvous circuits
+with a 3-hop path
+  * Use RFC 2397 data URL scheme to embed an image into tor-exit-notice.html
+
+---

Old:

  tor-0.4.1.5.tar.gz
  tor-0.4.1.5.tar.gz.asc

New:

  tor-0.4.1.6.tar.gz
  tor-0.4.1.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.VEU0B1/_old  2019-09-26 20:46:56.497627476 +0200
+++ /var/tmp/diff_new_pack.VEU0B1/_new  2019-09-26 20:46:56.517627422 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.1.5
+Version:0.4.1.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.4.1.5.tar.gz -> tor-0.4.1.6.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.4.1.5.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.2352/tor-0.4.1.6.tar.gz differ: char 5, 
line 1

commit tor for openSUSE:Factory

2019-08-22 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-08-22 10:54:02

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.22127 (New)


Package is "tor"

Thu Aug 22 10:54:02 2019 rev:74 rq:725000 version:0.4.1.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-05-21 10:40:51.287068771 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.22127/tor.changes   2019-08-22 
10:54:07.577685763 +0200
@@ -1,0 +2,38 @@
+Tue Aug 20 15:43:45 UTC 2019 - Bernhard Wiedemann 
+
+- update to 0.4.1.5
+  * Onion service clients now add padding cells at the start of their
+INTRODUCE and RENDEZVOUS circuits to make it look like
+Exit traffic
+  * Add a generic publish-subscribe message-passing subsystem
+  * Controller commands are now parsed using a generalized parsing
+subsystem
+  * Implement authenticated SENDMEs as detailed in proposal 289
+  * Our node selection algorithm now excludes nodes in linear time
+  * Construct a fast secure pseudorandom number generator for
+each thread, to use when performance is critical
+  * Consider our directory information to have changed when our list
+of bridges changes
+  * Do not count previously configured working bridges towards our
+total of working bridges
+  * When considering upgrading circuits from "waiting for guard" to
+"open", always ignore circuits that are marked for close
+  * Properly clean up the introduction point map when circuits change
+purpose
+  * Fix an unreachable bug in which an introduction point could try to
+send an INTRODUCE_ACK
+  * Clients can now handle unknown status codes from INTRODUCE_ACK
+cells
+- Remove upstreamed tor-0.3.5.8-no-ssl-version-warning.patch
+- Compile without -Werror to build with LTO (boo#1146548)
+- Add fix-test.patch to workaround a LTO-induced test-failure
+
+---
+Fri Jul 26 12:23:05 UTC 2019 - matthias.gerst...@suse.com
+
+- removal of SuSEfirewall2 service, since SuSEfirewall2 has been replaced by
+  firewalld, see [1].
+
+  [1]: https://lists.opensuse.org/opensuse-factory/2019-01/msg00490.html
+
+---

Old:

  tor-0.3.5.8-no-ssl-version-warning.patch
  tor-0.4.0.5.tar.gz
  tor-0.4.0.5.tar.gz.asc
  tor.firewall

New:

  fix-test.patch
  tor-0.4.1.5.tar.gz
  tor-0.4.1.5.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Wdv4cI/_old  2019-08-22 10:54:08.841685594 +0200
+++ /var/tmp/diff_new_pack.Wdv4cI/_new  2019-08-22 10:54:08.845685593 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.4.0.5
+Version:0.4.1.5
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -32,9 +32,8 @@
 Source2:tor.keyring
 Source3:tor.service
 Source4:tor.tmpfiles
-Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-Patch2: tor-0.3.5.8-no-ssl-version-warning.patch
+Patch1: fix-test.patch
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
@@ -76,7 +75,7 @@
 %prep
 %setup -q
 %patch0 -p1
-%patch2 -p1
+%patch1 -p1
 
 %build
 %configure \
@@ -85,7 +84,6 @@
--with-tor-group=%{torgroup} \
--enable-systemd \
--enable-unittests \
-   --enable-gcc-warnings \
--enable-gcc-warnings-advisory \
--docdir=%{_docdir}/%{name}
 make %{?_smp_mflags}
@@ -107,9 +105,6 @@
 install -m 0644 %{SOURCE4} %{buildroot}%{_libexecdir}/tmpfiles.d/%{name}.conf
 ln -s -f service %{buildroot}%{_sbindir}/rc%{name}
 
-# firewall config
-install -m 644 -D %{SOURCE5} 
%{buildroot}/%{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/%{name}
-
 # control script
 install -p -m 755 contrib/dist/torctl %{buildroot}/%{_bindir}
 
@@ -156,7 +151,6 @@
 %dir %attr(0755,root,%{torgroup}) %{_sysconfdir}/%{name}
 %config(noreplace) %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/torrc
 %config %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/torrc.*
-%config(noreplace) %attr(0644,root,root) 
%{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/%{name}
 %attr(0700,%{toruser},%{torgroup}) %dir %{_localstatedir}/lib/%{name}
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}
 %{_unitdir}/%{name}.service

++ fix-test.patch ++
commit 0384f5b3efbb041e2bc0080a6b6259e1b96815af
Author: Bernhard M. Wiedemann 
Date:   Wed Aug 21 11:36:05 2019 +0200

Workaround a LTO-induced test-failure

commit tor for openSUSE:Factory

2019-05-21 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-05-21 10:40:22

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.5148 (New)


Package is "tor"

Tue May 21 10:40:22 2019 rev:73 rq:704260 version:0.4.0.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-05-13 14:52:02.491015664 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new.5148/tor.changes2019-05-21 
10:40:51.287068771 +0200
@@ -1,0 +2,5 @@
+Mon May 20 12:55:12 UTC 2019 - Christophe Giboudeaux 
+
+- Add the missing zlib requirement.
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Std9ol/_old  2019-05-21 10:40:53.475067351 +0200
+++ /var/tmp/diff_new_pack.Std9ol/_new  2019-05-21 10:40:53.475067351 +0200
@@ -44,6 +44,7 @@
 BuildRequires:  pkgconfig(libsystemd)
 BuildRequires:  pkgconfig(libzstd)
 BuildRequires:  pkgconfig(systemd)
+BuildRequires:  pkgconfig(zlib)
 Requires:   logrotate
 Requires(post): %fillup_prereq
 Recommends: torsocks

commit tor for openSUSE:Factory

2019-05-13 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-05-13 14:51:57

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.5148 (New)


Package is "tor"

Mon May 13 14:51:57 2019 rev:72 rq:702484 version:0.4.0.5

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-02-26 22:21:33.850083977 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.5148/tor.changes2019-05-13 
14:52:02.491015664 +0200
@@ -1,0 +2,17 @@
+Fri May 10 09:46:26 UTC 2019 - Andreas Stieger 
+
+- tor 0.4.0.5:
+  * new stable branch, but not a long-term support branch
+  * improvements for power management and bootstrap reporting
+  * preliminary backend support for circuit padding to prevent some
+kinds of traffic analysis
+  * refactoring for long-term maintainability
+- drop upstreamed tor-0.3.5.8-nonetwork.patch
+
+---
+Mon Apr 15 12:24:02 UTC 2019 - Bernhard Wiedemann 
+
+- Add tor-0.3.5.8-no-ssl-version-warning.patch (boo#1129411)
+- Update tor.tmpfiles to use /run instead of /var/run
+
+---

Old:

  tor-0.3.5.8-nonetwork.patch
  tor-0.3.5.8.tar.gz
  tor-0.3.5.8.tar.gz.asc

New:

  tor-0.3.5.8-no-ssl-version-warning.patch
  tor-0.4.0.5.tar.gz
  tor-0.4.0.5.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.7P7uxL/_old  2019-05-13 14:52:03.407017970 +0200
+++ /var/tmp/diff_new_pack.7P7uxL/_new  2019-05-13 14:52:03.411017981 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.5.8
+Version:0.4.0.5
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -34,7 +34,7 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-Patch1: tor-0.3.5.8-nonetwork.patch
+Patch2: tor-0.3.5.8-no-ssl-version-warning.patch
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
@@ -75,7 +75,7 @@
 %prep
 %setup -q
 %patch0 -p1
-%patch1 -p1
+%patch2 -p1
 
 %build
 %configure \

++ tor-0.3.5.8-no-ssl-version-warning.patch ++
https://trac.torproject.org/projects/tor/ticket/30190
commit 3a44597b89e290e76cb20275660896cc5f178c9a
Author: Bernhard M. Wiedemann 
Date:   Mon Apr 15 13:57:24 2019 +0200

Do not warn about compatible OpenSSL upgrades

When releasing OpenSSL patch-level maintenance updates,
we do not want to rebuild binaries using it.
And since they guarantee ABI stability, we do not have to.

Without this patch, warning messages were produced
that confused users:
https://bugzilla.opensuse.org/show_bug.cgi?id=1129411

Signed-off-by: Bernhard M. Wiedemann 

diff --git a/src/lib/crypt_ops/crypto_openssl_mgt.c 
b/src/lib/crypt_ops/crypto_openssl_mgt.c
index 60e4ea795..c97815f9a 100644
--- a/src/lib/crypt_ops/crypto_openssl_mgt.c
+++ b/src/lib/crypt_ops/crypto_openssl_mgt.c
@@ -213,6 +213,14 @@ crypto_openssl_early_init(void)
 !strcmp(version_str, OPENSSL_VERSION_TEXT)) {
   log_info(LD_CRYPTO, "OpenSSL version matches version from headers "
  "(%lx: %s).", version_num, version_str);
+} else if ((version_num & 0x) ==
+   (OPENSSL_VERSION_NUMBER & 0x)) {
+  log_notice(LD_CRYPTO,
+   "We compiled with OpenSSL %lx: %s and we "
+   "are running with OpenSSL %lx: %s. "
+   "These two versions should be binary compatible.",
+   (unsigned long)OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT,
+   version_num, version_str);
 } else {
   log_warn(LD_CRYPTO, "OpenSSL version from headers does not match the "
"version we're running with. If you get weird crashes, that "
++ tor-0.3.5.8.tar.gz -> tor-0.4.0.5.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.5.8.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.5148/tor-0.4.0.5.tar.gz differ: char 5, 
line 1

++ tor.tmpfiles ++
--- /var/tmp/diff_new_pack.7P7uxL/_old  2019-05-13 14:52:03.515018243 +0200
+++ /var/tmp/diff_new_pack.7P7uxL/_new  2019-05-13 14:52:03.515018243 +0200
@@ -1 +1 @@
-D /var/run/tor 0755 tor tor -
+D /run/tor 0755 tor tor -

commit tor for openSUSE:Factory

2019-02-26 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-02-26 22:20:08

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.28833 (New)


Package is "tor"

Tue Feb 26 22:20:08 2019 rev:71 rq:678960 version:0.3.5.8

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2019-01-10 15:21:12.398463109 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.28833/tor.changes   2019-02-26 
22:21:33.850083977 +0100
@@ -1,0 +2,18 @@
+Mon Feb 25 15:55:39 UTC 2019 - bwiedem...@suse.com
+
+- Add tor-0.3.5.8-nonetwork.patch to fix test failures
+  without network
+
+---
+Fri Feb 22 15:04:30 UTC 2019 - bwiedem...@suse.com
+
+- tor 0.3.5.8:
+  * CVE-2019-8955 prevent attackers from making tor run
+out of memory and crash
+  * Allow SOCKS5 with empty username+password
+  * Update geoip and geoip6 to the February 5 2019 Maxmind
+GeoLite2 Country database
+  * Select guards even if the consensus has expired, as long
+as the consensus is still reasonably live
+
+---

Old:

  tor-0.3.5.7.tar.gz
  tor-0.3.5.7.tar.gz.asc

New:

  tor-0.3.5.8-nonetwork.patch
  tor-0.3.5.8.tar.gz
  tor-0.3.5.8.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.CR1mJf/_old  2019-02-26 22:21:34.538083732 +0100
+++ /var/tmp/diff_new_pack.CR1mJf/_new  2019-02-26 22:21:34.542083732 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.5.7
+Version:0.3.5.8
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -34,6 +34,7 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
+Patch1: tor-0.3.5.8-nonetwork.patch
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
@@ -74,6 +75,7 @@
 %prep
 %setup -q
 %patch0 -p1
+%patch1 -p1
 
 %build
 %configure \

++ tor-0.3.5.8-nonetwork.patch ++
commit d32e4079761f0076cd9e704a7f9996aa5b599f60
Author: Nick Mathewson 
Date:   Tue Feb 19 14:02:32 2019 -0500

Downgrade some LOG_ERR messages in the address/* tests to warnings

Fixes bug 29530, where the LOG_ERR messages were occurring when
we had no configured network, and so we were failing the unit tests
because of the recently-merged #28668.

Bug not in any released Tor.

diff --git a/src/test/test_address.c b/src/test/test_address.c
index d9304a0cf..bf9ca047d 100644
--- a/src/test/test_address.c
+++ b/src/test/test_address.c
@@ -746,7 +746,7 @@ test_address_get_if_addrs_list_internal(void *arg)
 
   (void)arg;
 
-  results = get_interface_address_list(LOG_ERR, 1);
+  results = get_interface_address_list(LOG_WARN, 1);
 
   tt_ptr_op(results, OP_NE, NULL);
   /* When the network is down, a system might not have any non-local
@@ -777,7 +777,7 @@ test_address_get_if_addrs_list_no_internal(void *arg)
 
   (void)arg;
 
-  results = get_interface_address_list(LOG_ERR, 0);
+  results = get_interface_address_list(LOG_WARN, 0);
 
   tt_ptr_op(results, OP_NE, NULL);
   /* Work even on systems with only internal IPv4 addresses */
@@ -988,7 +988,7 @@ test_address_get_if_addrs(void *arg)
 
   (void)arg;
 
-  rv = get_interface_address(LOG_ERR, _h);
+  rv = get_interface_address(LOG_WARN, _h);
 
   /* When the network is down, a system might not have any non-local
* non-multicast IPv4 addresses, not even internal ones.
++ tor-0.3.5.7.tar.gz -> tor-0.3.5.8.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.5.7.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.28833/tor-0.3.5.8.tar.gz differ: char 5, 
line 1

commit tor for openSUSE:Factory

2019-01-10 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2019-01-10 15:20:49

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new.28833 (New)


Package is "tor"

Thu Jan 10 15:20:49 2019 rev:70 rq:663471 version:0.3.5.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-11-06 14:35:39.324934674 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new.28833/tor.changes   2019-01-10 
15:21:12.398463109 +0100
@@ -1,0 +2,20 @@
+Mon Jan  7 23:16:55 UTC 2019 - astie...@suse.com
+
+- tor 0.3.5.7:
+  * first stable release in 0.3.5.x LTS branch
+  * support client authorization for v3 onion services
+  * cleanups to bootstrap reporting
+  * support for improved bandwidth measurement tools
+  * the default version for newly created onion services is now v3
+(HiddenServiceVersion option can be used to override)
+  * If stem is used, an update of stem mey be required
+
+---
+Mon Jan  7 23:01:18 UTC 2019 - astie...@suse.com
+
+- tor 0.3.4.10:
+  * OpenSSL compatibility fixes
+  * Fixes for relay bugs
+  * update fallback directory list
+
+---

Old:

  tor-0.3.4.9.tar.gz
  tor-0.3.4.9.tar.gz.asc

New:

  tor-0.3.5.7.tar.gz
  tor-0.3.5.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.m5ddXu/_old  2019-01-10 15:21:14.338461097 +0100
+++ /var/tmp/diff_new_pack.m5ddXu/_new  2019-01-10 15:21:14.370461064 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -12,7 +12,7 @@
 # license that conforms to the Open Source Definition (Version 1.9)
 # published by the Open Source Initiative.
 
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
 #
 
 
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.4.9
+Version:0.3.5.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -146,11 +146,7 @@
 %license LICENSE
 %doc README ChangeLog doc/HACKING doc/*.html
 %{_mandir}/man*/*
-%{_bindir}/%{name}
-%{_bindir}/%{name}ctl
-%{_bindir}/%{name}ify
-%{_bindir}/%{name}-gencert
-%{_bindir}/%{name}-resolve
+%{_bindir}/*
 %dir %{_datadir}/%{name}
 %{_datadir}/%{name}/geoip*
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}

++ tor-0.3.4.9.tar.gz -> tor-0.3.5.7.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.4.9.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new.28833/tor-0.3.5.7.tar.gz differ: char 5, 
line 1

commit tor for openSUSE:Factory

2018-11-06 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-11-06 14:33:57

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Tue Nov  6 14:33:57 2018 rev:69 rq:646176 version:0.3.4.9

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-09-15 15:37:33.792933241 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-11-06 
14:35:39.324934674 +0100
@@ -1,0 +2,7 @@
+Sat Nov  3 08:45:43 UTC 2018 - astie...@suse.com
+
+- tor 0.3.4.9:
+  * Various bug fixes, including a bandwidth management bug that
+was causing memory exhaustion on relays
+
+---

Old:

  tor-0.3.4.8.tar.gz
  tor-0.3.4.8.tar.gz.asc

New:

  tor-0.3.4.9.tar.gz
  tor-0.3.4.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.69Nu95/_old  2018-11-06 14:35:45.724924994 +0100
+++ /var/tmp/diff_new_pack.69Nu95/_new  2018-11-06 14:35:45.724924994 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.4.8
+Version:0.3.4.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.4.8.tar.gz -> tor-0.3.4.9.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.4.8.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new/tor-0.3.4.9.tar.gz differ: char 5, line 1

commit tor for openSUSE:Factory

2018-07-17 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-07-17 09:41:22

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Tue Jul 17 09:41:22 2018 rev:67 rq:622849 version:0.3.3.9

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-07-10 16:17:50.365312409 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-07-17 
09:41:26.497500692 +0200
@@ -1,0 +2,8 @@
+Sat Jul 14 18:31:57 UTC 2018 - astie...@suse.com
+
+- tor 0.3.3.9:
+  * move to a new bridge authority
+  * backport some bug fixes
+- refresh upstream signing keyring
+  
+---

Old:

  tor-0.3.3.8.tar.gz
  tor-0.3.3.8.tar.gz.asc

New:

  tor-0.3.3.9.tar.gz
  tor-0.3.3.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Eo25QU/_old  2018-07-17 09:41:27.157498270 +0200
+++ /var/tmp/diff_new_pack.Eo25QU/_new  2018-07-17 09:41:27.161498255 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.3.8
+Version:0.3.3.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.3.8.tar.gz -> tor-0.3.3.9.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.3.8.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new/tor-0.3.3.9.tar.gz differ: char 5, line 1

++ tor.keyring ++
 3123 lines (skipped)
 between /work/SRC/openSUSE:Factory/tor/tor.keyring
 and /work/SRC/openSUSE:Factory/.tor.new/tor.keyring

commit tor for openSUSE:Factory

2018-07-10 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-07-10 16:16:51

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Tue Jul 10 16:16:51 2018 rev:66 rq:621774 version:0.3.3.8

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-06-19 11:57:13.852362432 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-07-10 
16:17:50.365312409 +0200
@@ -1,0 +2,7 @@
+Mon Jul  9 19:38:14 UTC 2018 - astie...@suse.com
+
+- tor 0.3.3.8:
+  * directory authority memory leak fix
+  * various minor bug fixes
+
+---

Old:

  tor-0.3.3.7.tar.gz
  tor-0.3.3.7.tar.gz.asc

New:

  tor-0.3.3.8.tar.gz
  tor-0.3.3.8.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.GTgDfY/_old  2018-07-10 16:17:51.281310993 +0200
+++ /var/tmp/diff_new_pack.GTgDfY/_new  2018-07-10 16:17:51.285310987 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.3.7
+Version:0.3.3.8
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.3.7.tar.gz -> tor-0.3.3.8.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.3.7.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new/tor-0.3.3.8.tar.gz differ: char 5, line 1

commit tor for openSUSE:Factory

2018-06-19 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-06-19 11:57:12

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Tue Jun 19 11:57:12 2018 rev:65 rq:616357 version:0.3.3.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-05-29 10:48:20.644911566 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-06-19 
11:57:13.852362432 +0200
@@ -1,0 +2,10 @@
+Tue Jun 12 16:59:58 UTC 2018 - astie...@suse.com
+
+- tor 0.3.3.7:
+  * Add an IPv6 address for the "dannenberg" directory authority
+  * Improve accuracy of the BUILDTIMEOUT_SET control port event's
+TIMEOUT_RATE and CLOSE_RATE fields
+  * Only select relays when tor has descriptors that it prefers to
+use for them, avoiding nonfatal errors later
+
+---

Old:

  tor-0.3.3.6.tar.gz
  tor-0.3.3.6.tar.gz.asc

New:

  tor-0.3.3.7.tar.gz
  tor-0.3.3.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.cnvPjQ/_old  2018-06-19 11:57:14.648332877 +0200
+++ /var/tmp/diff_new_pack.cnvPjQ/_new  2018-06-19 11:57:14.652332728 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.3.6
+Version:0.3.3.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.3.6.tar.gz -> tor-0.3.3.7.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.3.6.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new/tor-0.3.3.7.tar.gz differ: char 5, line 1

commit tor for openSUSE:Factory

2018-05-29 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-05-29 10:48:18

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Tue May 29 10:48:18 2018 rev:64 rq:612507 version:0.3.3.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-03-09 10:37:15.578852223 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-05-29 
10:48:20.644911566 +0200
@@ -1,0 +2,12 @@
+Sun May 27 11:33:54 UTC 2018 - astie...@suse.com
+
+- tor 0.3.3.6:
+  * new stable release series
+  * controller support and other improvements for v3 onion services
+  * official support for embedding Tor within other application
+  * Improvements to IPv6 support
+  * Relay option ReducedExitPolicy to configure a reasonable default
+  * Revent DoS via malicious protocol version string (boo#1094283)
+  * Many other other bug fixes and improvements
+
+---

Old:

  tor-0.3.2.10.tar.gz
  tor-0.3.2.10.tar.gz.asc

New:

  tor-0.3.3.6.tar.gz
  tor-0.3.3.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.GrljYI/_old  2018-05-29 10:48:21.516879394 +0200
+++ /var/tmp/diff_new_pack.GrljYI/_new  2018-05-29 10:48:21.516879394 +0200
@@ -20,12 +20,12 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.2.10
+Version:0.3.3.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
 Group:  Productivity/Networking/Security
-Url:https://www.torproject.org/
+URL:https://www.torproject.org/
 Source0:https://www.torproject.org/dist/%{name}-%{version}.tar.gz
 Source1:https://www.torproject.org/dist/%{name}-%{version}.tar.gz.asc
 # https://www.torproject.org/docs/signing-keys.html.en
@@ -143,7 +143,8 @@
 %service_del_postun tor.service
 
 %files
-%doc LICENSE README ChangeLog doc/HACKING doc/*.html
+%license LICENSE
+%doc README ChangeLog doc/HACKING doc/*.html
 %{_mandir}/man*/*
 %{_bindir}/%{name}
 %{_bindir}/%{name}ctl

++ tor-0.3.2.10.tar.gz -> tor-0.3.3.6.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.2.10.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new/tor-0.3.3.6.tar.gz differ: char 5, line 1

commit tor for openSUSE:Factory

2018-03-09 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-03-09 10:37:12

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Mar  9 10:37:12 2018 rev:63 rq:582239 version:0.3.2.10

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2018-01-19 11:54:42.447412994 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-03-09 
10:37:15.578852223 +0100
@@ -1,0 +2,10 @@
+Sat Mar  3 18:39:39 UTC 2018 - astie...@suse.com
+
+- tor 0.3.2.10:
+  * CVE-2018-0490: remote crash vulnerability against directory
+authorities (boo#1083845, TROVE-2018-001)
+  * CVE-2018-0491: remote relay crash (boo#1083846, TROVE-2018-002)
+  * New system for improved resistance to DoS attacks against relays
+  * Various other bug fixes
+
+---

Old:

  tor-0.3.2.9.tar.gz
  tor-0.3.2.9.tar.gz.asc

New:

  tor-0.3.2.10.tar.gz
  tor-0.3.2.10.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.peVb5V/_old  2018-03-09 10:37:16.450820827 +0100
+++ /var/tmp/diff_new_pack.peVb5V/_new  2018-03-09 10:37:16.450820827 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.2.9
+Version:0.3.2.10
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.2.9.tar.gz -> tor-0.3.2.10.tar.gz ++
/work/SRC/openSUSE:Factory/tor/tor-0.3.2.9.tar.gz 
/work/SRC/openSUSE:Factory/.tor.new/tor-0.3.2.10.tar.gz differ: char 5, line 1

commit tor for openSUSE:Factory

2018-01-19 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2018-01-19 11:53:55

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Jan 19 11:53:55 2018 rev:62 rq:567207 version:0.3.2.9

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-12-18 08:57:25.104851086 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2018-01-19 
11:54:42.447412994 +0100
@@ -1,0 +2,9 @@
+Wed Jan 10 21:33:45 UTC 2018 - astie...@suse.com
+
+- tor 0.3.2.9:
+  * new onion service design (v3), not default
+  * new circuit scheduler algorithm for improved performance
+  * directory authority updates
+  * many other updates and improvements
+
+---

Old:

  tor-0.3.1.9.tar.gz
  tor-0.3.1.9.tar.gz.asc

New:

  tor-0.3.2.9.tar.gz
  tor-0.3.2.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.AtCYr3/_old  2018-01-19 11:54:44.595311776 +0100
+++ /var/tmp/diff_new_pack.AtCYr3/_new  2018-01-19 11:54:44.595311776 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.1.9
+Version:0.3.2.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.1.9.tar.gz -> tor-0.3.2.9.tar.gz ++
 154680 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-12-17 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-12-18 08:57:22

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Mon Dec 18 08:57:22 2017 rev:61 rq:547269 version:0.3.1.9

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-10-26 18:44:33.667455576 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-12-18 
08:57:25.104851086 +0100
@@ -1,0 +2,11 @@
+Fri Dec  1 20:33:08 UTC 2017 - astie...@suse.com
+
+- tor 0.3.1.9 with the following security fixes that prevent some
+  traffic confirmation, DoS and other problems (bsc#1070849):
+  * CVE-2017-8819: Replay-cache ineffective for v2 onion services
+  * CVE-2017-8820: Remote DoS attack against directory authorities
+  * CVE-2017-8821: An attacker can make Tor ask for a password
+  * CVE-2017-8822: Relays can pick themselves in a circuit path
+  * CVE-2017-8823: Use-after-free in onion service v2
+
+---

Old:

  tor-0.3.1.8.tar.gz
  tor-0.3.1.8.tar.gz.asc

New:

  tor-0.3.1.9.tar.gz
  tor-0.3.1.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.UJtF4s/_old  2017-12-18 08:57:25.804817296 +0100
+++ /var/tmp/diff_new_pack.UJtF4s/_new  2017-12-18 08:57:25.808817103 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.1.8
+Version:0.3.1.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.1.8.tar.gz -> tor-0.3.1.9.tar.gz ++
 19619 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-10-26 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-10-26 18:44:32

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Thu Oct 26 18:44:32 2017 rev:60 rq:536570 version:0.3.1.8

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-09-21 12:35:31.453531366 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-10-26 
18:44:33.667455576 +0200
@@ -1,0 +2,12 @@
+Wed Oct 25 15:05:45 UTC 2017 - astie...@suse.com
+
+- tor 0.3.1.8:
+  * Add "Bastet" as a ninth directory authority to the default list
+  * The directory authority "Longclaw" has changed its IP address
+  * Fix a timing-based assertion failure that could occur when the
+circuit out-of-memory handler freed a connection's output buffer
+  * Update geoip and geoip6 to the October 4 2017 Maxmind GeoLite2
+Country database
+- drop tor-0.3.1.7-fix-zstd-i586.patch, upstreamed
+
+---
@@ -4 +16 @@
-- tor 0.3.7.1:
+- tor 0.3.1.7:

Old:

  tor-0.3.1.7-fix-zstd-i586.patch
  tor-0.3.1.7.tar.gz
  tor-0.3.1.7.tar.gz.asc

New:

  tor-0.3.1.8.tar.gz
  tor-0.3.1.8.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.SkWKPj/_old  2017-10-26 18:44:34.651409654 +0200
+++ /var/tmp/diff_new_pack.SkWKPj/_new  2017-10-26 18:44:34.655409468 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.1.7
+Version:0.3.1.8
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -34,7 +34,6 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-Patch1: tor-0.3.1.7-fix-zstd-i586.patch
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
@@ -75,7 +74,6 @@
 %prep
 %setup -q
 %patch0 -p1
-%patch1 -p1
 
 %build
 %configure \

++ tor-0.3.1.7.tar.gz -> tor-0.3.1.8.tar.gz ++
 17792 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-09-21 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-09-21 12:35:12

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Thu Sep 21 12:35:12 2017 rev:59 rq:527563 version:0.3.1.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-08-04 12:00:59.018047128 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-09-21 
12:35:31.453531366 +0200
@@ -1,0 +2,23 @@
+Wed Sep 20 14:44:09 UTC 2017 - astie...@suse.com
+
+- tor 0.3.7.1:
+  * Serve and download directory information in more compact
+formats
+  * New padding padding system to resist netflow-based traffic
+analysis
+  * Improve protection against identification of tor traffic by ISP
+via ConnectionPadding option
+  * Reduce the number of long-term connections open between relays
+- add tor-0.3.1.7-fix-zstd-i586.patch to fix 32 bit build with zstd
+
+---
+Mon Sep 18 16:38:59 UTC 2017 - astie...@suse.com
+
+- tor 0.3.0.11:
+  * CVE-2017-0380: hidden services with the SafeLogging option
+disabled could disclose the stack TROVE-2017-008, boo#1059194
+  * Update geoip and geoip6 to the September 6 2017 Maxmind GeoLite2
+Country database.
+  * drop tor-0.3.0.7-gcc7-fallthrough.patch, now upstream
+
+---

Old:

  tor-0.3.0.10.tar.gz
  tor-0.3.0.10.tar.gz.asc
  tor-0.3.0.7-gcc7-fallthrough.patch

New:

  tor-0.3.1.7-fix-zstd-i586.patch
  tor-0.3.1.7.tar.gz
  tor-0.3.1.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.L0jIyL/_old  2017-09-21 12:35:32.501383908 +0200
+++ /var/tmp/diff_new_pack.L0jIyL/_new  2017-09-21 12:35:32.501383908 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.0.10
+Version:0.3.1.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -34,19 +34,19 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-Patch1: tor-0.3.0.7-gcc7-fallthrough.patch
+Patch1: tor-0.3.1.7-fix-zstd-i586.patch
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
 BuildRequires:  python-base
 BuildRequires:  pkgconfig(libevent) >= 2.0.10
+BuildRequires:  pkgconfig(liblzma)
 BuildRequires:  pkgconfig(libsystemd)
+BuildRequires:  pkgconfig(libzstd)
 BuildRequires:  pkgconfig(systemd)
-BuildRequires:  pkgconfig(zlib) >= 1.2
 Requires:   logrotate
 Requires(post): %fillup_prereq
 Recommends: torsocks
-BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 %{?systemd_requires}
 
 %description
@@ -145,7 +145,6 @@
 %service_del_postun tor.service
 
 %files
-%defattr(-,root,root)
 %doc LICENSE README ChangeLog doc/HACKING doc/*.html
 %{_mandir}/man*/*
 %{_bindir}/%{name}

++ tor-0.3.1.7-fix-zstd-i586.patch ++
>From 427c2cc9e8f640769a7f8771c42b89948e78028e Mon Sep 17 00:00:00 2001
From: Andreas Stieger 
Date: Mon, 18 Sep 2017 21:15:52 +0200
Subject: in zstd compression, fix 32 bit build
References: https://trac.torproject.org/projects/tor/ticket/23568 
https://gitweb.torproject.org/tor.git/commit/?id=427c2cc9e8f640769a7f8771c42b89948e78028e

format '%lu' expects argument of type 'long unsigned int', but argument ... has 
type 'size_t'

Closes ticket 23568.
---
 src/common/compress_zstd.c | 8 
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/common/compress_zstd.c b/src/common/compress_zstd.c
index 0808bcd..63e92ed 100644
--- a/src/common/compress_zstd.c
+++ b/src/common/compress_zstd.c
@@ -62,10 +62,10 @@ tor_zstd_get_version_str(void)
 
   version_number = ZSTD_versionNumber();
   tor_snprintf(version_str, sizeof(version_str),
-   "%lu.%lu.%lu",
-   version_number / 1 % 100,
-   version_number / 100 % 100,
-   version_number % 100);
+   "%d.%d.%d",
+   (int) version_number / 1 % 100,
+   (int) version_number / 100 % 100,
+   (int) version_number % 100);
 
   return version_str;
 #else
-- 
cgit v1.1
++ tor-0.3.0.10.tar.gz -> tor-0.3.1.7.tar.gz ++
 101847 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-08-04 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-08-04 12:00:15

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Aug  4 12:00:15 2017 rev:58 rq:514239 version:0.3.0.10

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-06-30 18:43:53.789181802 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-08-04 
12:00:59.018047128 +0200
@@ -1,0 +2,9 @@
+Thu Aug  3 11:26:00 UTC 2017 - jloe...@suse.com
+
+- tor 0.3.0.10
+  * Fix a typo that had prevented TPROXY-based transparent proxying
+from working under Linux.
+  * Avoid an assertion failure bug affecting our implementation of
+inet_pton(AF_INET6) on certain OpenBSD systems.
+
+---

Old:

  tor-0.3.0.9.tar.gz
  tor-0.3.0.9.tar.gz.asc

New:

  tor-0.3.0.10.tar.gz
  tor-0.3.0.10.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.aLvpDz/_old  2017-08-04 12:01:00.285868176 +0200
+++ /var/tmp/diff_new_pack.aLvpDz/_new  2017-08-04 12:01:00.301865918 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.0.9
+Version:0.3.0.10
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.0.9.tar.gz -> tor-0.3.0.10.tar.gz ++
 21361 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-06-30 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-06-30 18:43:17

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Jun 30 18:43:17 2017 rev:57 rq:507338 version:0.3.0.9

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-06-09 15:57:38.113739764 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-06-30 
18:43:53.789181802 +0200
@@ -1,0 +2,14 @@
+Fri Jun 30 11:53:59 UTC 2017 - astie...@suse.com
+
+- tor 0.3.0.9:
+  * CVE-2017-0377: Fix path selection bug that would allow a client
+to use a guard that was in the same network family as a chosen
+exit relay (bsc#1046845)
+  * Don't block bootstrapping when a primary bridge is offline and
+tor cannot get its descriptor
+  * When starting with an old consensus, do not add new entry guards
+unless the consensus is "reasonably live" (under 1 day old).
+  * Update geoip and geoip6 to the June 8 2017 Maxmind GeoLite2
+Country database.
+
+---

Old:

  tor-0.3.0.8.tar.gz
  tor-0.3.0.8.tar.gz.asc

New:

  tor-0.3.0.9.tar.gz
  tor-0.3.0.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.4Bftky/_old  2017-06-30 18:43:54.509080544 +0200
+++ /var/tmp/diff_new_pack.4Bftky/_new  2017-06-30 18:43:54.513079981 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.0.8
+Version:0.3.0.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.0.8.tar.gz -> tor-0.3.0.9.tar.gz ++
 14307 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-06-09 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-06-09 15:57:36

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Jun  9 15:57:36 2017 rev:56 rq:502413 version:0.3.0.8

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-06-01 16:33:45.958390567 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-06-09 
15:57:38.113739764 +0200
@@ -1,0 +2,21 @@
+Thu Jun  8 18:47:31 UTC 2017 - astie...@suse.com
+
+- tor 0.3.0.8 fixing a pair of bugs that would allow an attacker to
+  remotely crash a hidden service with an assertion failure
+  * CVE-2017-0375: remotely triggerable assertion failure when a
+hidden service handles a malformed BEGIN cell (bsc#1043455)
+  * CVE-2017-0376: remotely triggerable assertion failure caused by
+receiving a BEGIN_DIR cell on a hidden service rendezvous
+circuit (bsc#1043456)
+- further bug fixes:
+  * link handshake fixes when changing x509 certificates
+  * Regenerate link and authentication certificates whenever the key
+that signs them changes; also, regenerate link certificates
+whenever the signed key changes
+  * When sending an Ed25519 signing->link certificate in a CERTS cell,
+send the certificate that matches the x509 certificate that was
+used on the TLS connection
+  * Stop rejecting v3 hidden service descriptors because their size
+did not match an old padding rule
+
+---

Old:

  tor-0.3.0.7.tar.gz
  tor-0.3.0.7.tar.gz.asc

New:

  tor-0.3.0.8.tar.gz
  tor-0.3.0.8.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.xaNRgN/_old  2017-06-09 15:57:39.753508325 +0200
+++ /var/tmp/diff_new_pack.xaNRgN/_new  2017-06-09 15:57:39.757507760 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.0.7
+Version:0.3.0.8
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.0.7.tar.gz -> tor-0.3.0.8.tar.gz ++
 1698 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-06-01 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-06-01 16:33:43

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Thu Jun  1 16:33:43 2017 rev:55 rq:500053 version:0.3.0.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-05-20 10:13:30.229234944 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-06-01 
16:33:45.958390567 +0200
@@ -1,0 +2,6 @@
+Wed May 31 10:01:51 UTC 2017 - astie...@suse.com
+
+- fix build with GCC 7: warning-errors on implicit fallthrough
+  add tor-0.3.0.7-gcc7-fallthrough.patch bsc#1041262
+
+---

New:

  tor-0.3.0.7-gcc7-fallthrough.patch



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.PSTdfe/_old  2017-06-01 16:33:46.726282245 +0200
+++ /var/tmp/diff_new_pack.PSTdfe/_new  2017-06-01 16:33:46.726282245 +0200
@@ -34,6 +34,7 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
+Patch1: tor-0.3.0.7-gcc7-fallthrough.patch
 BuildRequires:  openssl-devel >= 1.0.1
 BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  pwdutils
@@ -74,6 +75,7 @@
 %prep
 %setup -q
 %patch0 -p1
+%patch1 -p1
 
 %build
 %configure \

++ tor-0.3.0.7-gcc7-fallthrough.patch ++
fix -Wimplicit-fallthrough in GCC 7 on master, by adding magic comments
recognized bu -Wimplicit-fallthrough=3, or break, as required.

https://trac.torproject.org/projects/tor/ticket/22446

>From a7400446b76977bb84b9b00fd92bd49a0694d028 Mon Sep 17 00:00:00 2001
From: Andreas Stieger 
Date: Sun, 28 May 2017 22:08:56 +0200
Subject: [PATCH] Fix implicit fallthrough warning in GCC 7 in
 tor_gzip_compress, tor_gzip_uncompress

---
 src/common/torgzip.c | 2 ++
 1 file changed, 2 insertions(+)

Index: tor-0.3.0.7/src/common/torgzip.c
===
--- tor-0.3.0.7.orig/src/common/torgzip.c   2017-04-24 21:34:15.0 
+0200
+++ tor-0.3.0.7/src/common/torgzip.c2017-05-31 11:56:22.864546296 +0200
@@ -181,6 +181,7 @@ tor_gzip_compress(char **out, size_t *ou
 /* In case zlib doesn't work as I think  */
 if (stream->avail_out >= stream->avail_in+16)
   break;
+/* falls through */
   case Z_BUF_ERROR:
 offset = stream->next_out - ((unsigned char*)*out);
 old_size = out_size;
@@ -319,6 +320,7 @@ tor_gzip_uncompress(char **out, size_t *
 /* In case zlib doesn't work as I think */
 if (stream->avail_out >= stream->avail_in+16)
   break;
+/* Falls through */
   case Z_BUF_ERROR:
 if (stream->avail_out > 0) {
   log_fn(protocol_warn_level, LD_PROTOCOL,
Index: tor-0.3.0.7/src/ext/csiphash.c
===
--- tor-0.3.0.7.orig/src/ext/csiphash.c 2017-04-24 21:34:15.0 +0200
+++ tor-0.3.0.7/src/ext/csiphash.c  2017-05-31 11:56:22.864546296 +0200
@@ -122,13 +122,13 @@ uint64_t siphash24(const void *src, unsi
}
 
switch (src_sz - blocks) {
-   case 7: last7 |= (uint64_t)m[i + 6] << 48;
-   case 6: last7 |= (uint64_t)m[i + 5] << 40;
-   case 5: last7 |= (uint64_t)m[i + 4] << 32;
-   case 4: last7 |= (uint64_t)m[i + 3] << 24;
-   case 3: last7 |= (uint64_t)m[i + 2] << 16;
-   case 2: last7 |= (uint64_t)m[i + 1] <<  8;
-   case 1: last7 |= (uint64_t)m[i + 0]  ;
+   case 7: last7 |= (uint64_t)m[i + 6] << 48; /* Falls through. */
+   case 6: last7 |= (uint64_t)m[i + 5] << 40; /* Falls through. */
+   case 5: last7 |= (uint64_t)m[i + 4] << 32; /* Falls through. */
+   case 4: last7 |= (uint64_t)m[i + 3] << 24; /* Falls through. */
+   case 3: last7 |= (uint64_t)m[i + 2] << 16; /* Falls through. */
+   case 2: last7 |= (uint64_t)m[i + 1] <<  8; /* Falls through. */
+   case 1: last7 |= (uint64_t)m[i + 0]  ; /* Falls through. */
case 0:
default:;
}
Index: tor-0.3.0.7/src/ext/ed25519/donna/modm-donna-64bit.h
===
--- tor-0.3.0.7.orig/src/ext/ed25519/donna/modm-donna-64bit.h   2017-03-05 
01:44:57.0 +0100
+++ tor-0.3.0.7/src/ext/ed25519/donna/modm-donna-64bit.h2017-05-31 
11:56:22.864546296 +0200
@@ -294,10 +294,10 @@ sub256_modm_batch(bignum256modm out, con
size_t i = 0;
bignum256modm_element_t carry = 0;
switch (limbsize) {
-

commit tor for openSUSE:Factory

2017-05-20 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-05-20 10:13:27

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Sat May 20 10:13:27 2017 rev:54 rq:495128 version:0.3.0.7

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-04-28 09:14:17.341742448 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-05-20 
10:13:30.229234944 +0200
@@ -1,0 +2,16 @@
+Tue May 16 00:26:43 UTC 2017 - astie...@suse.com
+
+- tor 0.3.0.7: 
+  * Fix an assertion failure in the hidden service directory code,
+which could be used by an attacker to remotely cause a Tor
+relay process to exit. TROVE-2017-002 bsc#1039211
+  * Update geoip and geoip6 to the May 2 2017 Maxmind GeoLite2
+Country database.
+  * Tor no longer refuses to download microdescriptors or
+descriptors if they are listed as "published in the future"
+  * The getpid() system call is now permitted under the Linux
+seccomp2 sandbox, to avoid crashing with versions of OpenSSL
+(and other libraries) that attempt to learn the process's PID
+by using the syscall rather than the VDSO code
+
+---

Old:

  tor-0.3.0.6.tar.gz
  tor-0.3.0.6.tar.gz.asc

New:

  tor-0.3.0.7.tar.gz
  tor-0.3.0.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.xBRpMt/_old  2017-05-20 10:13:30.981128708 +0200
+++ /var/tmp/diff_new_pack.xBRpMt/_new  2017-05-20 10:13:30.985128143 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.3.0.6
+Version:0.3.0.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.3.0.6.tar.gz -> tor-0.3.0.7.tar.gz ++
 13886 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-04-28 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-04-28 09:14:13

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Apr 28 09:14:13 2017 rev:53 rq:491410 version:0.3.0.6

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-03-03 17:53:42.495380925 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-04-28 
09:14:17.341742448 +0200
@@ -1,0 +2,13 @@
+Thu Apr 27 06:23:44 UTC 2017 - astie...@suse.com
+
+- tor 0.3.0.6:
+  * clients and relays now use Ed25519 keys to authenticate their
+link connections to relays, rather than the old RSA1024 keys
+that they used before.
+  * replace the guard selection and replacement algorithm to behave
+more robustly in the presence of unreliable networks, and to
+resist guard-capture attacks.
+  * numerous other small features and bugfixes
+  * groundwork for the upcoming hidden-services revamp
+
+---

Old:

  tor-0.2.9.10.tar.gz
  tor-0.2.9.10.tar.gz.asc

New:

  tor-0.3.0.6.tar.gz
  tor-0.3.0.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.qFUyxH/_old  2017-04-28 09:14:18.481581710 +0200
+++ /var/tmp/diff_new_pack.qFUyxH/_new  2017-04-28 09:14:18.481581710 +0200
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.9.10
+Version:0.3.0.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.9.10.tar.gz -> tor-0.3.0.6.tar.gz ++
 90764 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-03-03 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-03-03 17:53:41

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Fri Mar  3 17:53:41 2017 rev:52 rq:461735 version:0.2.9.10

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-01-24 10:43:18.845949495 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-03-03 
17:53:42.495380925 +0100
@@ -1,0 +2,24 @@
+Wed Mar  1 22:45:42 UTC 2017 - astie...@suse.com
+
+- tor 0.2.9.10:
+  * directory authority: During voting, when marking a relay as a
+probable sybil, do not clear its BadExit flag: sybils can still
+be bad in other ways too.
+  * IPv6 Exits: Stop rejecting all IPv6 traffic on Exits whose exit
+policy rejects any IPv6 addresses. Instead, only reject a port
+over IPv6 if the exit policy rejects that port on more than an
+IPv6 /16 of addresses.
+  * parsing: Fix an integer underflow bug when comparing malformed
+Tor versions. This bug could crash Tor when built with
+--enable-expensive-hardening, or on Tor 0.2.9.1-alpha through
+Tor 0.2.9.8, which were built with -ftrapv by default. In other
+cases it was harmless. Part of TROVE-2017-001 boo#1027539
+  * Directory authorities now reject descriptors that claim to be
+malformed versions of Tor
+  * Reject version numbers with components that exceed INT32_MAX.
+  * Update geoip and geoip6 to the February 8 2017 Maxmind GeoLite2
+Country database.
+  * The tor-resolve command line tool now rejects hostnames over 255
+characters in length
+
+---

Old:

  tor-0.2.9.9.tar.gz
  tor-0.2.9.9.tar.gz.asc

New:

  tor-0.2.9.10.tar.gz
  tor-0.2.9.10.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.4oRos6/_old  2017-03-03 17:53:43.339261733 +0100
+++ /var/tmp/diff_new_pack.4oRos6/_new  2017-03-03 17:53:43.343261168 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.9.9
+Version:0.2.9.10
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.9.9.tar.gz -> tor-0.2.9.10.tar.gz ++
 27074 lines of diff (skipped)

commit tor for openSUSE:Factory

2017-01-24 Thread root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2017-01-24 10:43:17

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2017-01-04 19:39:27.198808300 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2017-01-24 
10:43:18.845949495 +0100
@@ -1,0 +2,13 @@
+Tue Jan 24 06:19:19 UTC 2017 - astie...@suse.com
+
+- tor 0.2.9.9:
+  * Downgrade the "-ftrapv" option from "always on" to "only on
+when --enable-expensive-hardening is provided." This hardening
+option, like others, can turn survivable bugs into crashes --
+and having it on by default made a (relatively harmless)
+integer overflow bug into a denial-of-service bug
+  * Fix a client-side onion service reachability bug
+  * Update geoip and geoip6 to the January 4 2017 Maxmind GeoLite2
+Country database.
+
+---

Old:

  tor-0.2.9.8.tar.gz
  tor-0.2.9.8.tar.gz.asc

New:

  tor-0.2.9.9.tar.gz
  tor-0.2.9.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.udndwb/_old  2017-01-24 10:43:19.525852958 +0100
+++ /var/tmp/diff_new_pack.udndwb/_new  2017-01-24 10:43:19.529852390 +0100
@@ -20,7 +20,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.9.8
+Version:0.2.9.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.9.8.tar.gz -> tor-0.2.9.9.tar.gz ++
 9742 lines of diff (skipped)

commit tor for openSUSE:Factory

2016-12-03 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2016-12-03 18:27:55

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2016-10-20 23:10:05.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2016-12-03 
18:27:56.0 +0100
@@ -1,0 +2,13 @@
+Fri Dec  2 16:58:06 UTC 2016 - astie...@suse.com
+
+- tor 0.2.8.10:
+  * When Tor leaves standby because of a new application request,
+open circuits as needed to serve that request
+  * Clients now respond to new application stream requests
+immediately when they arrive, rather than waiting up to one
+second before starting to handle them
+  * small portability and memory handling issues
+  * Update geoip and geoip6 to the November 3 2016 Maxmind GeoLite2
+Country database.
+
+---

Old:

  tor-0.2.8.9.tar.gz
  tor-0.2.8.9.tar.gz.asc

New:

  tor-0.2.8.10.tar.gz
  tor-0.2.8.10.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Ds0iEi/_old  2016-12-03 18:27:58.0 +0100
+++ /var/tmp/diff_new_pack.Ds0iEi/_new  2016-12-03 18:27:58.0 +0100
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.8.9
+Version:0.2.8.10
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.8.9.tar.gz -> tor-0.2.8.10.tar.gz ++
 14105 lines of diff (skipped)

commit tor for openSUSE:Factory

2016-10-20 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2016-10-20 23:09:35

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2016-09-25 14:45:11.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2016-10-20 
23:10:05.0 +0200
@@ -1,0 +2,9 @@
+Wed Oct 19 09:08:12 UTC 2016 - astie...@suse.com
+
+- tor 0.2.8.9:
+  * security fix: prevent remote DoS TROVE-2016-10-001 boo#1005292
+  * Update geoip and geoip6 to the October 4 2016 Maxmind GeoLite2
+Country database.
+  * Update signing key
+
+---

Old:

  tor-0.2.8.8.tar.gz
  tor-0.2.8.8.tar.gz.asc

New:

  tor-0.2.8.9.tar.gz
  tor-0.2.8.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.SKQNwW/_old  2016-10-20 23:10:06.0 +0200
+++ /var/tmp/diff_new_pack.SKQNwW/_new  2016-10-20 23:10:06.0 +0200
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.8.8
+Version:0.2.8.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.8.8.tar.gz -> tor-0.2.8.9.tar.gz ++
 97914 lines of diff (skipped)

++ tor.keyring ++
 5898 lines (skipped)
 between tor.keyring
 and /work/SRC/openSUSE:Factory/.tor.new/tor.keyring

commit tor for openSUSE:Factory

2016-09-25 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2016-09-25 14:45:07

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2016-08-25 09:58:24.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2016-09-25 
14:45:11.0 +0200
@@ -1,0 +2,11 @@
+Sat Sep 24 13:52:20 UTC 2016 - astie...@suse.com
+
+- tor 0.2.8.8:
+  * fixes some crash bugs when using bridges
+  * fixes a timing-dependent assertion
+  * removes broken fallbacks from the hard-coded fallback directory
+list
+  * Updates geoip and geoip6 to the September 6 2016 Maxmind
+GeoLite2 Country database
+
+---

Old:

  tor-0.2.8.7.tar.gz
  tor-0.2.8.7.tar.gz.asc

New:

  tor-0.2.8.8.tar.gz
  tor-0.2.8.8.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.qDhmCi/_old  2016-09-25 14:45:13.0 +0200
+++ /var/tmp/diff_new_pack.qDhmCi/_new  2016-09-25 14:45:13.0 +0200
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.8.7
+Version:0.2.8.8
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -38,6 +38,7 @@
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
 BuildRequires:  openssl-devel >= 1.0.0a
+BuildRequires:  pkgconfig
 BuildRequires:  pwdutils
 BuildRequires:  python-base
 Requires:   logrotate
@@ -53,10 +54,9 @@
 %{?systemd_requires}
 %endif
 %if 0%{with_systemd_notifications}
-BuildRequires:  pkg-config >= 0.9.0
+BuildRequires:  pkgconfig >= 0.9.0
 BuildRequires:  systemd-devel >= 209
 %endif
-#
 
 %description
 Tor is a connection-based low-latency anonymous communication system.

++ tor-0.2.8.7.tar.gz -> tor-0.2.8.8.tar.gz ++
 57598 lines of diff (skipped)

commit tor for openSUSE:Factory

2016-08-25 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2016-08-25 09:58:22

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2016-08-15 10:31:50.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2016-08-25 
09:58:24.0 +0200
@@ -1,0 +2,11 @@
+Wed Aug 24 21:01:13 UTC 2016 - astie...@suse.com
+
+- tor 0.2.8.7:
+  * The "Tonga" bridge authority has been retired; the new bridge
+authority is "Bifroest"
+  * Only use the ReachableAddresses option to restrict the first
+hop in a path. In earlier versions of 0.2.8.x, it would apply
+to every hop in the path, with a possible degradation in
+anonymity for anyone using an uncommon ReachableAddress setting
+
+---

Old:

  tor-0.2.8.6.tar.gz
  tor-0.2.8.6.tar.gz.asc

New:

  tor-0.2.8.7.tar.gz
  tor-0.2.8.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.xg6kxa/_old  2016-08-25 09:58:25.0 +0200
+++ /var/tmp/diff_new_pack.xg6kxa/_new  2016-08-25 09:58:25.0 +0200
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.8.6
+Version:0.2.8.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.8.6.tar.gz -> tor-0.2.8.7.tar.gz ++
 31611 lines of diff (skipped)

commit tor for openSUSE:Factory

2016-08-15 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2016-08-15 10:31:47

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2016-03-26 15:24:52.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2016-08-15 
10:31:50.0 +0200
@@ -1,0 +2,8 @@
+Sat Aug 13 17:44:24 UTC 2016 - astie...@suse.com
+
+- tor 0.2.8.6:
+  * improve client bootstrapping performance
+  * improved identity keys for relays (authority side)
+  * numerous bug fixes and performance improvements
+
+---

Old:

  tor-0.2.7.6.tar.gz
  tor-0.2.7.6.tar.gz.asc

New:

  tor-0.2.8.6.tar.gz
  tor-0.2.8.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.zTW568/_old  2016-08-15 10:31:52.0 +0200
+++ /var/tmp/diff_new_pack.zTW568/_new  2016-08-15 10:31:52.0 +0200
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.7.6
+Version:0.2.8.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -37,7 +37,7 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-BuildRequires:  openssl-devel >= 1.0.0
+BuildRequires:  openssl-devel >= 1.0.0a
 BuildRequires:  pwdutils
 BuildRequires:  python-base
 Requires:   logrotate

++ tor-0.2.7.6.tar.gz -> tor-0.2.8.6.tar.gz ++
 24 lines of diff (skipped)

commit tor for openSUSE:Factory

2016-03-26 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2016-03-26 15:24:50

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-12-16 17:42:39.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2016-03-26 
15:24:52.0 +0100
@@ -1,0 +2,5 @@
+Mon Mar 21 08:17:17 UTC 2016 - astie...@suse.com
+
+- adjust nologin shell for tor user boo#971872
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.aLFezB/_old  2016-03-26 15:24:53.0 +0100
+++ /var/tmp/diff_new_pack.aLFezB/_new  2016-03-26 15:24:53.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -37,12 +37,12 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
+BuildRequires:  openssl-devel >= 1.0.0
 BuildRequires:  pwdutils
 BuildRequires:  python-base
 Requires:   logrotate
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 PreReq(post):  %fillup_prereq
-BuildRequires:  openssl-devel >= 1.0.0
 %if %{?suse_version} > 1210
 BuildRequires:  pkgconfig(libevent)
 %else
@@ -103,7 +103,7 @@
 make %{?_smp_mflags} V=1
 
 %install
-make DESTDIR=%{buildroot} install %{?_smp_mflags}
+make %{?_smp_mflags} DESTDIR=%{buildroot} install
 
 # missing dirs
 install -d -m 700 \
@@ -149,7 +149,7 @@
 
 %pre
 getent group %{torgroup} >/dev/null || groupadd -r %{torgroup}
-getent passwd %{toruser} >/dev/null || useradd -r -g %{torgroup} -d 
%{home_dir} -s /sbin/false -c "User to ru %{name}" %{toruser}
+getent passwd %{toruser} >/dev/null || useradd -r -g %{torgroup} -d 
%{home_dir} -s /sbin/nologin -c "User for %{name}" %{toruser}
 %if 0%{?with_systemd}
 %service_add_pre tor.service
 %endif

commit tor for openSUSE:Factory

2015-12-16 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-12-16 17:42:35

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-11-26 17:04:21.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-12-16 
17:42:39.0 +0100
@@ -1,0 +2,18 @@
+Fri Dec 11 14:41:37 UTC 2015 - mplus...@suse.com
+
+- Make building more verbose
+- Remove useless conditon for libevent, there is dependency for it 
+  anyway
+
+---
+Fri Dec 11 13:35:32 UTC 2015 - astie...@suse.com
+
+- skip tests on ports
+
+---
+Fri Dec 11 07:43:48 UTC 2015 - astie...@suse.com
+
+- tor 0.2.7.6 fixes a major bug in entry guard selection, as well
+  as a minor bug in hidden service reliability. [boo#958729]
+
+---

Old:

  tor-0.2.7.5.tar.gz
  tor-0.2.7.5.tar.gz.asc

New:

  tor-0.2.7.6.tar.gz
  tor-0.2.7.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.hTbvV4/_old  2015-12-16 17:42:41.0 +0100
+++ /var/tmp/diff_new_pack.hTbvV4/_new  2015-12-16 17:42:41.0 +0100
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.7.5
+Version:0.2.7.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -37,15 +37,12 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-BuildRequires:  openssl-devel >= 1.0.0
 BuildRequires:  pwdutils
 BuildRequires:  python-base
 Requires:   logrotate
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 PreReq(post):  %fillup_prereq
-%if %{with bufferevents}
-BuildRequires:  pkgconfig(libevent) >= 2.0.13
-%endif # with bufferevents
+BuildRequires:  openssl-devel >= 1.0.0
 %if %{?suse_version} > 1210
 BuildRequires:  pkgconfig(libevent)
 %else
@@ -103,7 +100,7 @@
--enable-gcc-warnings-advisory \
--docdir=%{_docdir}/%{name}
 
-make %{?_smp_mflags}
+make %{?_smp_mflags} V=1
 
 %install
 make DESTDIR=%{buildroot} install %{?_smp_mflags}
@@ -143,7 +140,12 @@
 install -D -m 644 contrib/operator-tools/tor.logrotate 
%{buildroot}/%{_sysconfdir}/logrotate.d/%{name}
 
 %check
-make %{?_smp_mflags} check
+%ifnarch ppc ppc64 ppc64le aarch64 armv7l
+make %{?_smp_mflags} check || (
+   find -type f -name test-suite.log -print -exec cat {} \;
+   exit 42
+)
+%endif
 
 %pre
 getent group %{torgroup} >/dev/null || groupadd -r %{torgroup}

++ tor-0.2.7.5.tar.gz -> tor-0.2.7.6.tar.gz ++
 15872 lines of diff (skipped)

commit tor for openSUSE:Factory

2015-11-26 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-11-26 17:04:17

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-10-20 00:05:14.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-11-26 
17:04:21.0 +0100
@@ -1,0 +2,15 @@
+Tue Nov 24 20:35:59 UTC 2015 - astie...@suse.com
+
+- 0.2.7.5:
+  * More secure identity key type for relays
+  * Improve cryptography performance
+  * Resolve several longstanding hidden-service performance issues
+  * Improve controller support for hidden services
+- Features removed:
+  * tor-fw-helper is no longer part of thie packaged, it was
+re-implemented as a separate project
+- Packaging changes:
+  * drop upstreamed patch
+tor-0.2.6.10-malformed-hostname-safe-logging.patch
+
+---

Old:

  tor-0.2.6.10-malformed-hostname-safe-logging.patch
  tor-0.2.6.10.tar.gz
  tor-0.2.6.10.tar.gz.asc

New:

  tor-0.2.7.5.tar.gz
  tor-0.2.7.5.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.xd5x6R/_old  2015-11-26 17:04:22.0 +0100
+++ /var/tmp/diff_new_pack.xd5x6R/_new  2015-11-26 17:04:22.0 +0100
@@ -18,13 +18,12 @@
 
 %define with_systemd 0%{?suse_version} > 1140
 %define with_systemd_notifications 0%{?suse_version} > 1310
-%define with_upnp 0%{?suse_version} >= 1220 && 0%{?suse_version} != 1315
 %define toruser %{name}
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.6.10
+Version:0.2.7.5
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -38,24 +37,19 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
-Patch1: tor-0.2.6.10-malformed-hostname-safe-logging.patch
-BuildRequires:  openssl-devel
+BuildRequires:  openssl-devel >= 1.0.0
 BuildRequires:  pwdutils
 BuildRequires:  python-base
 Requires:   logrotate
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 PreReq(post):  %fillup_prereq
-%if %{with_upnp}
-BuildRequires:  libminiupnpc-devel
-%endif
-#
 %if %{with bufferevents}
 BuildRequires:  pkgconfig(libevent) >= 2.0.13
 %endif # with bufferevents
 %if %{?suse_version} > 1210
 BuildRequires:  pkgconfig(libevent)
 %else
-BuildRequires:  libevent-devel
+BuildRequires:  libevent-devel >= 1.3e
 %endif
 %if 0%{with_systemd}
 BuildRequires:  pkgconfig(systemd)
@@ -93,15 +87,11 @@
 %prep
 %setup -q
 %patch0 -p1
-%patch1 -p1
 
 %build
 %configure \
--with-tor-user=%{toruser} \
--with-tor-group=%{torgroup} \
-%if %{with_upnp}
-   --enable-upnp \
-%endif
 %if %{with bufferevents}
--enable-bufferevents \
 %endif
@@ -195,9 +185,6 @@
 %{_bindir}/%{name}ify
 %{_bindir}/%{name}-gencert
 %{_bindir}/%{name}-resolve
-%if %{with_upnp}
-%{_bindir}/%{name}-fw-helper
-%endif
 %dir %{_datadir}/%{name}
 %{_datadir}/%{name}/geoip*
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}

++ tor-0.2.6.10.tar.gz -> tor-0.2.7.5.tar.gz ++
 95729 lines of diff (skipped)

commit tor for openSUSE:Factory

2015-10-19 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-10-19 22:51:18

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is "tor"

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-08-28 08:27:13.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-10-20 
00:05:14.0 +0200
@@ -1,0 +2,5 @@
+Wed Oct 14 10:59:41 UTC 2015 - astie...@suse.com
+
+- fix Factory build (ignore missing systemd-tmpfiles)
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.7BWSZf/_old  2015-10-20 00:05:15.0 +0200
+++ /var/tmp/diff_new_pack.7BWSZf/_new  2015-10-20 00:05:15.0 +0200
@@ -166,7 +166,7 @@
 %if 0%{?with_systemd}
 %fillup_only
 %service_add_post tor.service
-systemd-tmpfiles --create %{_libexecdir}/tmpfiles.d/tor.conf
+systemd-tmpfiles --create %{_libexecdir}/tmpfiles.d/tor.conf || :
 %else
 %fillup_and_insserv tor
 %endif

commit tor for openSUSE:Factory

2015-08-28 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-08-28 08:26:58

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-07-14 17:45:45.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-08-28 
08:27:13.0 +0200
@@ -1,0 +2,7 @@
+Wed Aug 26 20:02:21 UTC 2015 - astie...@suse.com
+
+- Malformed hostnames in socks5 requests were written to the log
+  regardless of SafeLogging option (CWE-532) [boo#943362]
+  add tor-0.2.6.10-malformed-hostname-safe-logging.patch
+
+---

New:

  tor-0.2.6.10-malformed-hostname-safe-logging.patch



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.13jrKO/_old  2015-08-28 08:27:14.0 +0200
+++ /var/tmp/diff_new_pack.13jrKO/_new  2015-08-28 08:27:14.0 +0200
@@ -38,6 +38,7 @@
 Source4:tor.tmpfiles
 Source5:tor.firewall
 Patch0: tor-0.2.5.x-logrotate.patch
+Patch1: tor-0.2.6.10-malformed-hostname-safe-logging.patch
 BuildRequires:  openssl-devel
 BuildRequires:  pwdutils
 BuildRequires:  python-base
@@ -92,6 +93,7 @@
 %prep
 %setup -q
 %patch0 -p1
+%patch1 -p1
 
 %build
 %configure \
@@ -187,7 +189,7 @@
 %files
 %defattr(-,root,root)
 %doc LICENSE README ChangeLog doc/HACKING doc/*.html
-%doc %{_mandir}/man*/*
+%{_mandir}/man*/*
 %{_bindir}/%{name}
 %{_bindir}/%{name}ctl
 %{_bindir}/%{name}ify

++ tor-0.2.6.10-malformed-hostname-safe-logging.patch ++
From 19df037e53331ae528b876f225be08f198e0f8b6 Mon Sep 17 00:00:00 2001
From: Andreas Stieger astie...@suse.com
Date: Mon, 24 Aug 2015 01:04:44 +0200
Subject: Log malformed hostnames in socks5 request respecting SafeLogging


diff --git a/changes/malformed-hostname-safe-logging 
b/changes/malformed-hostname-safe-logging
new file mode 100644
index 000..9300726
--- /dev/null
+++ b/changes/malformed-hostname-safe-logging
@@ -0,0 +1,3 @@
+  o Minor bugfixes:
+- When logging malformed hostnames in socks5 requests, respect
+  SafeLogging configuration
diff --git a/src/or/buffers.c b/src/or/buffers.c
index 2d7dd93..85fcbc6 100644
--- a/src/or/buffers.c
+++ b/src/or/buffers.c
@@ -1842,7 +1842,7 @@ parse_socks(const char *data, size_t datalen, 
socks_request_t *req,
 log_warn(LD_PROTOCOL,
  Your application (using socks5 to port %d) gave Tor 
  a malformed hostname: %s. Rejecting the connection.,
- req-port, escaped(req-address));
+ req-port, escaped_safe_str_client(req-address));
 return -1;
   }
   if (log_sockstype)
-- 
cgit v0.10.2

commit tor for openSUSE:Factory

2015-06-15 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-06-15 17:48:48

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-05-24 19:34:07.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-06-15 
17:48:52.0 +0200
@@ -1,0 +2,10 @@
+Thu Jun 11 18:55:44 UTC 2015 - astie...@suse.com
+
+- tor 0.2.6.9:
+  Clients using circuit isolation should upgrade; 
+  all directory authorities should upgrade.
+  * fixes a regression in the circuit isolation code
+  * increases the requirements for receiving an HSDir flag
+  * addresses some small bugs in the systemd and sandbox code.
+
+---

Old:

  tor-0.2.6.8.tar.gz
  tor-0.2.6.8.tar.gz.asc

New:

  tor-0.2.6.9.tar.gz
  tor-0.2.6.9.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.glQDau/_old  2015-06-15 17:48:53.0 +0200
+++ /var/tmp/diff_new_pack.glQDau/_new  2015-06-15 17:48:53.0 +0200
@@ -24,7 +24,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.6.8
+Version:0.2.6.9
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.6.8.tar.gz - tor-0.2.6.9.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/tor-0.2.6.8/ChangeLog new/tor-0.2.6.9/ChangeLog
--- old/tor-0.2.6.8/ChangeLog   2015-05-19 21:09:31.0 +0200
+++ new/tor-0.2.6.9/ChangeLog   2015-06-10 20:07:50.0 +0200
@@ -1,4 +1,43 @@
-Changes in version 0.2.6.8 - 2015-05-2?
+Changes in version 0.2.6.9 - 2015-06-11
+  Tor 0.2.6.9 fixes a regression in the circuit isolation code, increases the
+  requirements for receiving an HSDir flag, and addresses some other small
+  bugs in the systemd and sandbox code. Clients using circuit isolation
+  should upgrade; all directory authorities should upgrade.
+
+  o Major bugfixes (client-side privacy):
+- Properly separate out each SOCKSPort when applying stream
+  isolation. The error occurred because each port's session group was
+  being overwritten by a default value when the listener connection
+  was initialized. Fixes bug 16247; bugfix on 0.2.6.3-alpha. Patch
+  by jojelino.
+
+  o Minor feature (directory authorities, security):
+- The HSDir flag given by authorities now requires the Stable flag.
+  For the current network, this results in going from 2887 to 2806
+  HSDirs. Also, it makes it harder for an attacker to launch a sybil
+  attack by raising the effort for a relay to become Stable which
+  takes at the very least 7 days to do so and by keeping the 96
+  hours uptime requirement for HSDir. Implements ticket 8243.
+
+  o Minor bugfixes (compilation):
+- Build with --enable-systemd correctly when libsystemd is
+  installed, but systemd is not. Fixes bug 16164; bugfix on
+  0.2.6.3-alpha. Patch from Peter Palfrader.
+
+  o Minor bugfixes (Linux seccomp2 sandbox):
+- Fix sandboxing to work when running as a relaymby renaming of
+  secret_id_key, and allowing the eventfd2 and futex syscalls. Fixes
+  bug 16244; bugfix on 0.2.6.1-alpha. Patch by Peter Palfrader.
+- Allow systemd connections to work with the Linux seccomp2 sandbox
+  code. Fixes bug 16212; bugfix on 0.2.6.2-alpha. Patch by
+  Peter Palfrader.
+
+  o Minor bugfixes (tests):
+- Fix a crash in the unit tests when built with MSVC2013. Fixes bug
+  16030; bugfix on 0.2.6.2-alpha. Patch from NewEraCracker.
+
+
+Changes in version 0.2.6.8 - 2015-05-21
   Tor 0.2.6.8 fixes a bit of dodgy code in parsing INTRODUCE2 cells, and
   fixes an authority-side bug in assigning the HSDir flag. All directory
   authorities should upgrade.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/tor-0.2.6.8/Makefile.in new/tor-0.2.6.9/Makefile.in
--- old/tor-0.2.6.8/Makefile.in 2015-05-19 20:50:01.0 +0200
+++ new/tor-0.2.6.9/Makefile.in 2015-06-10 20:01:31.0 +0200
@@ -1003,6 +1003,8 @@
 LDFLAGS = @LDFLAGS@
 LIBOBJS = @LIBOBJS@
 LIBS = @LIBS@
+LIBSYSTEMD209_CFLAGS = @LIBSYSTEMD209_CFLAGS@
+LIBSYSTEMD209_LIBS = @LIBSYSTEMD209_LIBS@
 LOCALSTATEDIR = @LOCALSTATEDIR@
 LOGFACILITY = @LOGFACILITY@
 LTLIBOBJS = @LTLIBOBJS@
@@ -1028,8 +1030,6 @@
 SHA1SUM = @SHA1SUM@
 SHELL = @SHELL@
 STRIP = @STRIP@
-SYSTEMD209_CFLAGS = @SYSTEMD209_CFLAGS@
-SYSTEMD209_LIBS = @SYSTEMD209_LIBS@
 SYSTEMD_CFLAGS =

commit tor for openSUSE:Factory

2015-05-24 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-05-24 19:34:05

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-04-07 09:30:28.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-05-24 
19:34:07.0 +0200
@@ -1,0 +2,17 @@
+Sat May 23 18:59:14 UTC 2015 - astie...@suse.com
+
+- tor 0.2.6.8:
+  This release fixes a bit of dodgy code in parsing INTRODUCE2 cells,
+  and fixes an authority-side bug in assigning the HSDir flag. All
+  directory authorities should upgrade.
+  - Revert commit that made directory authorities assign the HSDir
+flag to relay without a DirPort; this was bad because such relays
+can't handle BEGIN_DIR cells.
+  - Fix an out-of-bounds read when parsing invalid INTRODUCE2 cells
+on a client authorized hidden service.
+  - Update geoip to the April 8 2015 Maxmind GeoLite2 Country
+database.
+  - Update geoip6 to the April 8 2015 Maxmind GeoLite2
+Country database.
+
+---

Old:

  tor-0.2.6.7.tar.gz
  tor-0.2.6.7.tar.gz.asc

New:

  tor-0.2.6.8.tar.gz
  tor-0.2.6.8.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.84TcMf/_old  2015-05-24 19:34:08.0 +0200
+++ /var/tmp/diff_new_pack.84TcMf/_new  2015-05-24 19:34:08.0 +0200
@@ -24,7 +24,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.6.7
+Version:0.2.6.8
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.6.7.tar.gz - tor-0.2.6.8.tar.gz ++
 19815 lines of diff (skipped)

commit tor for openSUSE:Factory

2015-04-07 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-04-07 09:30:14

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-03-30 19:33:40.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-04-07 
09:30:28.0 +0200
@@ -1,0 +2,24 @@
+Mon Apr  6 18:56:30 UTC 2015 - astie...@suse.com
+
+- tor 0.2.6.7
+  This releases fixes two security issues that could be used by an
+  attacker to crash hidden services, or crash clients visiting
+  hidden services. Hidden services should upgrade as soon as
+  possible. [boo#926097]
+  This release also contains two simple improvements to make hidden
+  services a bit less vulnerable to denial-of-service attacks.
+  - Fix an issue that would allow a malicious client to trigger an
+assertion failure and halt a hidden service. CVE-2015-2928
+  - Fix a bug that could cause a client to crash with an assertion
+failure when parsing a malformed hidden service descriptor.
+CVE-2015-2929
+  - Introduction points no longer allow multiple INTRODUCE1 cells
+to arrive on the same circuit. This should make it more
+expensive for attackers to overwhelm hidden services with
+introductions.
+  - Decrease the amount of reattempts that a hidden service
+performs when its rendezvous circuits fail. This reduces the
+computational cost for running a hidden service under heavy
+load. 
+
+---

Old:

  tor-0.2.6.6.tar.gz
  tor-0.2.6.6.tar.gz.asc

New:

  tor-0.2.6.7.tar.gz
  tor-0.2.6.7.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.WvLa7N/_old  2015-04-07 09:30:29.0 +0200
+++ /var/tmp/diff_new_pack.WvLa7N/_new  2015-04-07 09:30:29.0 +0200
@@ -24,7 +24,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.6.6
+Version:0.2.6.7
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.6.6.tar.gz - tor-0.2.6.7.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/tor-0.2.6.6/ChangeLog new/tor-0.2.6.7/ChangeLog
--- old/tor-0.2.6.6/ChangeLog   2015-03-24 15:23:38.0 +0100
+++ new/tor-0.2.6.7/ChangeLog   2015-04-06 16:03:08.0 +0200
@@ -1,3 +1,31 @@
+Changes in version 0.2.6.7 - 2015-04-06
+  Tor 0.2.6.7 fixes two security issues that could be used by an
+  attacker to crash hidden services, or crash clients visiting hidden
+  services. Hidden services should upgrade as soon as possible; clients
+  should upgrade whenever packages become available.
+
+  This release also contains two simple improvements to make hidden
+  services a bit less vulnerable to denial-of-service attacks.
+
+  o Major bugfixes (security, hidden service):
+- Fix an issue that would allow a malicious client to trigger an
+  assertion failure and halt a hidden service. Fixes bug 15600;
+  bugfix on 0.2.1.6-alpha. Reported by disgleirio.
+- Fix a bug that could cause a client to crash with an assertion
+  failure when parsing a malformed hidden service descriptor. Fixes
+  bug 15601; bugfix on 0.2.1.5-alpha. Found by DonnchaC.
+
+  o Minor features (DoS-resistance, hidden service):
+- Introduction points no longer allow multiple INTRODUCE1 cells to
+  arrive on the same circuit. This should make it more expensive for
+  attackers to overwhelm hidden services with introductions.
+  Resolves ticket 15515.
+- Decrease the amount of reattempts that a hidden service performs
+  when its rendezvous circuits fail. This reduces the computational
+  cost for running a hidden service under heavy load. Resolves
+  ticket 11447.
+
+
 Changes in version 0.2.6.6 - 2015-03-24
   Tor 0.2.6.6 is the first stable release in the 0.2.6 series.
 
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/tor-0.2.6.6/ReleaseNotes new/tor-0.2.6.7/ReleaseNotes
--- old/tor-0.2.6.6/ReleaseNotes2015-03-24 15:23:38.0 +0100
+++ new/tor-0.2.6.7/ReleaseNotes2015-04-06 16:03:08.0 +0200
@@ -4,6 +4,34 @@
 each development snapshot, see the ChangeLog file.
 
 
+Changes in version 0.2.6.7 - 2015-04-06
+  Tor 0.2.6.7 fixes two security issues that could be used by an
+  attacker to crash hidden services, or crash clients visiting hidden
+  services. Hidden services should upgrade as soon as possible; clients
+  should upgrade

commit tor for openSUSE:Factory

2015-03-30 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-03-30 19:33:38

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-03-23 12:17:22.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-03-30 
19:33:40.0 +0200
@@ -1,0 +2,25 @@
+Sun Mar 29 11:51:09 UTC 2015 - astie...@suse.com
+
+- tor 0.2.6.6, the first stable release in the 0.2.6 series:
+  * safety/security improvements
+  * correctness improvements
+  * performance improvements
+  * Client programs can be configured to use more kinds of sockets
+  * AutomapHosts works better
+  * multithreading backend is improved
+  * cell transmission is refactored
+  * test coverage is much higher
+  * more denial-of-service attacks are handled
+  * guard selection is improved to handle long-term guards better
+  * pluggable transports should work a bit better
+  * some annoying hidden service performance bugs addressed
+- new minimal configuration file installed as active configuration
+  allows daemon to be run right after package installation
+- build with systemd notifications where supported
+
+---
+Wed Mar 25 08:05:24 UTC 2015 - astie...@suse.com
+
+- add CVE IDs for 0.2.5.11 release
+
+---
@@ -8 +33 @@
-  * relay crashes trough assertion
+  * relay crashes trough assertion (CVE-2015-2688)
@@ -9,0 +35 @@
+(CVE-2015-2689)

Old:

  tor-0.2.5.11.tar.gz
  tor-0.2.5.11.tar.gz.asc

New:

  tor-0.2.6.6.tar.gz
  tor-0.2.6.6.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.KVAt7H/_old  2015-03-30 19:33:41.0 +0200
+++ /var/tmp/diff_new_pack.KVAt7H/_new  2015-03-30 19:33:41.0 +0200
@@ -17,13 +17,14 @@
 
 
 %define with_systemd 0%{?suse_version}  1140
+%define with_systemd_notifications 0%{?suse_version}  1310
 %define with_upnp 0%{?suse_version} = 1220  0%{?suse_version} != 1315
 %define toruser %{name}
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.5.11
+Version:0.2.6.6
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -55,10 +56,14 @@
 %else
 BuildRequires:  libevent-devel
 %endif
-%if 0%{?with_systemd}
+%if 0%{with_systemd}
 BuildRequires:  pkgconfig(systemd)
 %{?systemd_requires}
 %endif
+%if 0%{with_systemd_notifications}
+BuildRequires:  pkg-config = 0.9.0
+BuildRequires:  systemd-devel = 209
+%endif
 #
 
 %description
@@ -98,7 +103,12 @@
 %if %{with bufferevents}
--enable-bufferevents \
 %endif
+%if 0%{with_systemd_notifications}
+   --enable-systemd \
+%endif
--enable-unittests \
+   --enable-gcc-warnings \
+   --enable-gcc-warnings-advisory \
--docdir=%{_docdir}/%{name}
 
 make %{?_smp_mflags}
@@ -132,8 +142,9 @@
 # control script
 install -p -m 755 contrib/dist/torctl %{buildroot}/%{_bindir}
 
-# sample config file
-install -p -m 644 src/config/torrc.sample 
%{buildroot}/%{_sysconfdir}/%{name}/torrc.sample
+# sample config files
+install -p -m 644 -D src/config/torrc.{sample,minimal} 
%{buildroot}/%{_sysconfdir}/%{name}
+install -p -m 644 src/config/torrc.minimal 
%{buildroot}/%{_sysconfdir}/%{name}/torrc
 
 # logrotate conf
 sed -i -e s|_tor|tor|g contrib/operator-tools/tor.logrotate
@@ -189,7 +200,8 @@
 %{_datadir}/%{name}/geoip*
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}
 %dir %attr(0755,root,%{torgroup}) %{_sysconfdir}/%{name}
-%config(noreplace) %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/*
+%config(noreplace) %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/torrc
+%config %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/torrc.*
 %config(noreplace) %attr(0644,root,root) 
%{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/%{name}
 %attr(0700,%{toruser},%{torgroup}) %dir %{_localstatedir}/lib/%{name}
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}

++ tor-0.2.5.11.tar.gz - tor-0.2.6.6.tar.gz ++
 85162 lines of diff (skipped)

commit tor for openSUSE:Factory

2015-03-23 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-03-23 12:17:21

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2015-02-01 12:29:59.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-03-23 
12:17:22.0 +0100
@@ -1,0 +2,17 @@
+Thu Mar 19 21:36:34 UTC 2015 - astie...@suse.com
+
+- tor 0.2.5.11 [boo#923284]:
+  Contains several medium-level security fixes for relays and exit
+  nodes and also updates the list of directory authorities.
+  * Directory authority updates
+  * relay crashes trough assertion
+  * exit node crash through assertion under high DNS load
+  * do not crash when receiving SIGHUP with the seccomp2 sandbox on
+  * do not crash sh during attempts to call wait4
+  * new GETINFO bw-event-cache for controllers
+  * update geoip/geoip6 to the March 3 2015
+  * Avoid crashing on malformed VirtualAddrNetworkIPv[4|6] config
+  * Fix a memory leak when using AutomapHostsOnResolve
+  * Allow directory authorities to fetch more data from one another
+
+---

Old:

  tor-0.2.5.10.tar.gz
  tor-0.2.5.10.tar.gz.asc

New:

  tor-0.2.5.11.tar.gz
  tor-0.2.5.11.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.qQhvyf/_old  2015-03-23 12:17:23.0 +0100
+++ /var/tmp/diff_new_pack.qQhvyf/_new  2015-03-23 12:17:23.0 +0100
@@ -23,7 +23,7 @@
 %define home_dir %{_localstatedir}/lib/empty
 %bcond_with bufferevents
 Name:   tor
-Version:0.2.5.10
+Version:0.2.5.11
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.5.10.tar.gz - tor-0.2.5.11.tar.gz ++
 60865 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2015-02-01 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2015-02-01 12:29:57

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-10-29 21:09:35.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2015-02-01 
12:29:59.0 +0100
@@ -1,0 +2,5 @@
+Fri Jan 23 22:04:27 UTC 2015 - andreas.stie...@gmx.de
+
+- fix build for SLE 12, libminiupnpc-devel not available
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.r3DZoE/_old  2015-02-01 12:30:00.0 +0100
+++ /var/tmp/diff_new_pack.r3DZoE/_new  2015-02-01 12:30:00.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 %define with_systemd 0%{?suse_version}  1140
-%define with_upnp 0%{?suse_version} = 1220
+%define with_upnp 0%{?suse_version} = 1220  0%{?suse_version} != 1315
 %define toruser %{name}
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-10-24 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-10-24 10:48:11

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-09-26 11:21:18.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-10-24 
10:48:23.0 +0200
@@ -1,0 +2,12 @@
+Thu Oct 23 20:35:26 UTC 2014 - andreas.stie...@gmx.de
+
+- tor 0.2.4.25 [boo#902476]
+  Disables SSL3 in response to the recent POODLE attack (even
+  though POODLE does not affect Tor).
+  It also works around a crash bug caused by some operating systems'
+  response to the POODLE attack (which does affect Tor).
+  - Disable support for SSLv3.
+  - Avoid crashing when using OpenSSL version 0.9.8zc, 1.0.0o, or
+1.0.1j, built with the 'no-ssl3' configuration option.
+
+---

Old:

  tor-0.2.4.24.tar.gz
  tor-0.2.4.24.tar.gz.asc

New:

  tor-0.2.4.25.tar.gz
  tor-0.2.4.25.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.AUsSV3/_old  2014-10-24 10:48:25.0 +0200
+++ /var/tmp/diff_new_pack.AUsSV3/_new  2014-10-24 10:48:25.0 +0200
@@ -23,7 +23,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.4.24
+Version:0.2.4.25
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.4.24.tar.gz - tor-0.2.4.25.tar.gz ++
 6087 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-09-26 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-09-26 10:51:59

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-09-22 09:23:58.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-09-26 
11:21:18.0 +0200
@@ -1,0 +2,16 @@
+Wed Sep 24 17:52:08 UTC 2014 - andreas.stie...@gmx.de
+
+- tor 0.2.4.24 [bnc#898268]
+  Fixes a bug that affects consistency and speed when connecting to
+  hidden services, and it updates the location of one of the
+  directory authorities.
+- Major bugfixes:
+  * Clients now send the correct address for their chosen rendezvous
+point when trying to access a hidden service.
+- Directory authority changes:
+  * Change IP address for gabelmoo (v3 directory authority).
+- Minor features (geoip):
+  * Update geoip and geoip6 to the August 7 2014 Maxmind GeoLite2
+Country database.
+
+---

Old:

  tor-0.2.4.23.tar.gz
  tor-0.2.4.23.tar.gz.asc

New:

  tor-0.2.4.24.tar.gz
  tor-0.2.4.24.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.XL4EDV/_old  2014-09-26 11:21:20.0 +0200
+++ /var/tmp/diff_new_pack.XL4EDV/_new  2014-09-26 11:21:20.0 +0200
@@ -23,7 +23,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.4.23
+Version:0.2.4.24
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.4.23.tar.gz - tor-0.2.4.24.tar.gz ++
 13778 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-09-22 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-09-22 09:23:57

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-08-27 07:46:50.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-09-22 
09:23:58.0 +0200
@@ -1,0 +2,5 @@
+Sat Sep 20 13:05:50 UTC 2014 - andreas.stie...@gmx.de
+
+- disable build with experimental feature bufferevents [bnc#897113]
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Mx0izV/_old  2014-09-22 09:23:59.0 +0200
+++ /var/tmp/diff_new_pack.Mx0izV/_new  2014-09-22 09:23:59.0 +0200
@@ -16,7 +16,7 @@
 #
 
 
-%define with_bufferevents 0%{?suse_version}  1220
+%bcond_with bufferevents
 %define with_systemd 0%{?suse_version}  1140
 %define with_upnp 0%{?suse_version} = 1220 
 %define toruser %{name}
@@ -46,9 +46,9 @@
 PreReq(post):  %fillup_prereq 
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 #
-%if %{with_bufferevents}
+%if %{with bufferevents}
 BuildRequires:  pkgconfig(libevent) = 2.0.13
-%endif # with_bufferevents
+%endif # with bufferevents
 %if %{?suse_version}  1210
 BuildRequires:  pkgconfig(libevent)
 %else
@@ -94,7 +94,7 @@
 %if %{with_upnp}
--enable-upnp \
 %endif
-%if %{with_bufferevents}
+%if %{with bufferevents}
--enable-bufferevents \
 %endif
--docdir=%{_docdir}/%{name}


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-08-26 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-08-27 07:46:24

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-07-31 07:42:11.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-08-27 
07:46:50.0 +0200
@@ -1,0 +2,5 @@
+Mon Aug 18 09:54:00 UTC 2014 - wagner-tho...@gmx.at
+
+- Added config file for firewall
+
+---

New:

  tor.firewall



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.O37Tkb/_old  2014-08-27 07:46:51.0 +0200
+++ /var/tmp/diff_new_pack.O37Tkb/_new  2014-08-27 07:46:51.0 +0200
@@ -35,6 +35,7 @@
 Source2:tor.keyring
 Source3:tor.service
 Source4:tor.tmpfiles
+Source5:tor.firewall
 Patch0: tor-0.2.4.x-logrotate.patch
 %if %{with_upnp}
 BuildRequires:  libminiupnpc-devel
@@ -123,6 +124,9 @@
 ln -s -f ../..%{_initddir}/%{name} %{buildroot}%{_sbindir}/rc%{name}
 %endif
 
+# firewall config
+install -m 644 -D %{SOURCE5} 
%{buildroot}/%{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/%{name}
+
 # control script
 install -p -m 755 contrib/torctl %{buildroot}/%{_bindir}
 
@@ -181,6 +185,7 @@
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}
 %dir %attr(0755,root,%{torgroup}) %{_sysconfdir}/%{name}
 %config(noreplace) %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/*
+%config(noreplace) %attr(0644,root,root) 
%{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/%{name}
 %attr(0700,%{toruser},%{torgroup}) %dir %{_localstatedir}/lib/%{name}
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}
 %if 0%{?with_systemd}


++ tor.firewall ++
## Name: tor proxy
## Description: opens ports for tor in order to allow socks connection

# space separated list of allowed TCP ports
TCP=9050

# space separated list of allowed UDP ports
UDP=

# space separated list of allowed RPC services
RPC=

# space separated list of allowed IP protocols
IP=

# space separated list of allowed UDP ports that accept broadcasts
BROADCAST=

### variables below are only needed in very special cases

# space separated list of net,protocol[,sport[,dport]]
# see FW_SERVICES_ACCEPT_RELATED_EXT
# net 0/0 means IPv4 and IPv6. If this sevice should only work for
# IPv4 use 0.0.0.0/0
RELATED=

# additional kernel modules needed for this service
# see FW_LOAD_MODULES
MODULES=
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-07-30 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-07-31 07:41:56

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-06-10 14:38:29.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-07-31 
07:42:11.0 +0200
@@ -1,0 +2,32 @@
+Wed Jul 30 22:52:17 UTC 2014 - andreas.stie...@gmx.de
+
+- Tor 0.2.4.23 [bnc#889688] [CVE-2014-5117]
+  Slows down the risk from guard rotation and backports several
+  important fixes from the Tor 0.2.5 alpha release series.
+- Major features:
+  - Clients now look at the usecreatefast consensus parameter to
+decide whether to use CREATE_FAST or CREATE cells for the first hop
+of their circuit. This approach can improve security on connections
+where Tor's circuit handshake is stronger than the available TLS
+connection security levels, but the tradeoff is more computational
+load on guard relays.
+  - Make the number of entry guards configurable via a new
+NumEntryGuards consensus parameter, and the number of directory
+guards configurable via a new NumDirectoryGuards consensus
+parameter.
+- Major bugfixes:
+  - Fix a bug in the bounds-checking in the 32-bit curve25519-donna
+implementation that caused incorrect results on 32-bit
+implementations when certain malformed inputs were used along with
+a small class of private ntor keys.
+- Minor bugfixes:
+  - Warn and drop the circuit if we receive an inbound 'relay early'
+cell. 
+  - Correct a confusing error message when trying to extend a circuit
+via the control protocol but we don't know a descriptor or
+microdescriptor for one of the specified relays.
+  - Avoid an illegal read from stack when initializing the TLS module
+using a version of OpenSSL without all of the ciphers used by the
+v2 link handshake.
+
+---

Old:

  tor-0.2.4.22.tar.gz
  tor-0.2.4.22.tar.gz.asc

New:

  tor-0.2.4.23.tar.gz
  tor-0.2.4.23.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.LOEz0P/_old  2014-07-31 07:42:13.0 +0200
+++ /var/tmp/diff_new_pack.LOEz0P/_new  2014-07-31 07:42:13.0 +0200
@@ -23,7 +23,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.4.22
+Version:0.2.4.23
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause

++ tor-0.2.4.22.tar.gz - tor-0.2.4.23.tar.gz ++
 58180 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-06-10 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-06-10 14:38:28

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-05-18 21:37:04.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-06-10 
14:38:29.0 +0200
@@ -1,0 +2,5 @@
+Fri Jun  6 18:51:36 UTC 2014 - andreas.stie...@gmx.de
+
+- do not own /var/run/tor for pid file, fixing Factory build
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.6qYtgN/_old  2014-06-10 14:38:30.0 +0200
+++ /var/tmp/diff_new_pack.6qYtgN/_new  2014-06-10 14:38:30.0 +0200
@@ -109,7 +109,6 @@
 %{buildroot}%{_localstatedir}/tmp/%{name}
 
 install -d -m 755 \
-%{buildroot}%{_localstatedir}/run/%{name} \
 %{buildroot}%{_localstatedir}/log/%{name} \
 %{buildroot}/%{_sbindir}
 
@@ -183,7 +182,6 @@
 %dir %attr(0755,root,%{torgroup}) %{_sysconfdir}/%{name}
 %config(noreplace) %attr(0644,root,%{torgroup}) %{_sysconfdir}/%{name}/*
 %attr(0700,%{toruser},%{torgroup}) %dir %{_localstatedir}/lib/%{name}
-%ghost %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/run/%{name}
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}
 %if 0%{?with_systemd}
 %{_unitdir}/%{name}.service


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-05-18 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-05-18 21:37:01

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-04-20 11:37:21.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-05-18 
21:37:04.0 +0200
@@ -1,0 +2,27 @@
+Sat May 17 23:13:54 UTC 2014 - andreas.stie...@gmx.de
+
+- tor 0.2.4.22: 
+  Backports numerous high-priority fixes. These include blocking
+  all authority signing keys that may have been affected by the
+  OpenSSL heartbleed bug, choosing a far more secure set of TLS
+  ciphersuites by default, closing a couple of memory leaks that
+  could be used to run a target relay out of RAM.
+- Major features (security)
+  - Block authority signing keys that were used on authorities
+vulnerable to the heartbleed bug in OpenSSL (CVE-2014-0160).
+- Major bugfixes (security, OOM):
+  - Fix a memory leak that could occur if a microdescriptor parse
+fails during the tokenizing step.
+- Major bugfixes (TLS cipher selection):
+  - The relay ciphersuite list is now generated automatically based
+on uniform criteria, and includes all OpenSSL ciphersuites with
+acceptable strength and forward secrecy.
+  - Relays now trust themselves to have a better view than clients
+of which TLS ciphersuites are better than others.
+  - Clients now try to advertise the same list of ciphersuites as
+Firefox 28.
+- further minor bug fixes, see ChangeLog
+- fix logrotate on systemd-only setups without init scripts,
+  work tor-0.2.2.37-logrotate.patch to tor-0.2.4.x-logrotate.patch
+
+---

Old:

  tor-0.2.2.37-logrotate.patch
  tor-0.2.4.21.tar.gz
  tor-0.2.4.21.tar.gz.asc

New:

  tor-0.2.4.22.tar.gz
  tor-0.2.4.22.tar.gz.asc
  tor-0.2.4.x-logrotate.patch



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.XIw2uQ/_old  2014-05-18 21:37:05.0 +0200
+++ /var/tmp/diff_new_pack.XIw2uQ/_new  2014-05-18 21:37:05.0 +0200
@@ -23,7 +23,7 @@
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.4.21
+Version:0.2.4.22
 Release:0
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
@@ -35,8 +35,7 @@
 Source2:tor.keyring
 Source3:tor.service
 Source4:tor.tmpfiles
-# PATCH-FIX-UPSTREAM tor-0.2.2.37-logrotate.patch -- add su to logrotate 
config to fix W: suse-logrotate-user-writable-log-dir
-Patch0: tor-0.2.2.37-logrotate.patch
+Patch0: tor-0.2.4.x-logrotate.patch
 %if %{with_upnp}
 BuildRequires:  libminiupnpc-devel
 %endif
@@ -54,11 +53,6 @@
 %else
 BuildRequires:  libevent-devel
 %endif
-#
-%if 0%{?suse_version} = 1230
-BuildRequires:  gpg-offline
-%endif
-#
 %if 0%{?with_systemd}
 BuildRequires:  pkgconfig(systemd)
 %{?systemd_requires}
@@ -89,9 +83,8 @@
 for high-stakes anonymity.
 
 %prep
-%{?gpg_verify: %gpg_verify %{SOURCE1}}
 %setup -q
-%patch0
+%patch0 -p1
 
 %build
 %configure \

++ tor-0.2.4.21.tar.gz - tor-0.2.4.22.tar.gz ++
 6947 lines of diff (skipped)

++ tor-0.2.4.x-logrotate.patch ++
From: Andreas Stieger andreas.stie...@gmx.de
Subject: openSUSE specific logrotate fixes
Date: Sun, 18 May 2014 00:10:32 +0100
Upstream: no
References:

* add su to logrotate config to fix W: suse-logrotate-user-writable-log-dir
* use service tor instead of /etc/init.d/tor to reload after logrotate 
  to fix logrotate on systemd-only setups without init script (by seife)

---
 contrib/tor.logrotate.in |3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

Index: tor-0.2.4.22/contrib/tor.logrotate.in
===
--- tor-0.2.4.22.orig/contrib/tor.logrotate.in  2013-01-16 06:47:59.0 
+
+++ tor-0.2.4.22/contrib/tor.logrotate.in   2014-05-18 00:09:09.0 
+0100
@@ -7,8 +7,9 @@
notifempty
# you may need to change the username/groupname below
create 0640 _tor _tor
+   su _tor _tor
sharedscripts
postrotate
-   /etc/init.d/tor reload  /dev/null
+   /usr/sbin/service tor reload  /dev/null
endscript
 }
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-04-20 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-04-20 11:37:20

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-03-09 20:27:18.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-04-20 
11:37:21.0 +0200
@@ -1,0 +2,5 @@
+Sat Apr 19 02:54:55 UTC 2014 - mook.moz+com.nov...@gmail.com
+
+- Add tor-fw-helper for UPnP port forwarding; not used by default
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.HMWl2z/_old  2014-04-20 11:37:22.0 +0200
+++ /var/tmp/diff_new_pack.HMWl2z/_new  2014-04-20 11:37:22.0 +0200
@@ -18,6 +18,7 @@
 
 %define with_bufferevents 0%{?suse_version}  1220
 %define with_systemd 0%{?suse_version}  1140
+%define with_upnp 0%{?suse_version} = 1220 
 %define toruser %{name}
 %define torgroup %{name}
 %define home_dir %{_localstatedir}/lib/empty
@@ -36,6 +37,9 @@
 Source4:tor.tmpfiles
 # PATCH-FIX-UPSTREAM tor-0.2.2.37-logrotate.patch -- add su to logrotate 
config to fix W: suse-logrotate-user-writable-log-dir
 Patch0: tor-0.2.2.37-logrotate.patch
+%if %{with_upnp}
+BuildRequires:  libminiupnpc-devel
+%endif
 BuildRequires:  openssl-devel
 BuildRequires:  pwdutils
 Requires:   logrotate
@@ -93,6 +97,9 @@
 %configure \
--with-tor-user=%{toruser} \
--with-tor-group=%{torgroup} \
+%if %{with_upnp}
+   --enable-upnp \
+%endif
 %if %{with_bufferevents}
--enable-bufferevents \
 %endif
@@ -174,6 +181,9 @@
 %{_bindir}/%{name}ify
 %{_bindir}/%{name}-gencert
 %{_bindir}/%{name}-resolve
+%if %{with_upnp} 
+%{_bindir}/%{name}-fw-helper
+%endif
 %dir %{_datadir}/%{name}
 %{_datadir}/%{name}/geoip*
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2014-03-09 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-03-09 20:27:16

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2014-01-23 15:57:21.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-03-09 
20:27:18.0 +0100
@@ -1,0 +2,22 @@
+Thu Mar  6 08:02:15 UTC 2014 - andreas.stie...@gmx.de
+
+- tor 0.2.4.21
+  Further improves security against potential adversaries who find
+  breaking 1024-bit crypto doable, and backports several stability
+  and robustness patches from the 0.2.5 branch.
+- Major features (client security):
+  - When we choose a path for a 3-hop circuit, make sure it contains
+at least one relay that supports the NTor circuit extension
+handshake. Otherwise, there is a chance that we're building
+a circuit that's worth attacking by an adversary who finds
+breaking 1024-bit crypto doable, and that chance changes the game
+theory.
+- Major bugfixes:
+  - Do not treat streams that fail with reason
+END_STREAM_REASON_INTERNAL as indicating a definite circuit failure,
+since it could also indicate an ENETUNREACH connection error
+- packaging changes:
+  - remove init script shadowing systemd unit
+  - general cleanup
+
+---

Old:

  tor-0.2.4.20.tar.gz
  tor-0.2.4.20.tar.gz.asc

New:

  tor-0.2.4.21.tar.gz
  tor-0.2.4.21.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.cfcWWx/_old  2014-03-09 20:27:19.0 +0100
+++ /var/tmp/diff_new_pack.cfcWWx/_new  2014-03-09 20:27:19.0 +0100
@@ -17,11 +17,13 @@
 
 
 %define with_bufferevents 0%{?suse_version}  1220
-
+%define with_systemd 0%{?suse_version}  1140
+%define toruser %{name}
+%define torgroup %{name}
+%define home_dir %{_localstatedir}/lib/empty
 Name:   tor
-Version:0.2.4.20
+Version:0.2.4.21
 Release:0
-BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
 Group:  Productivity/Networking/Security
@@ -34,33 +36,30 @@
 Source4:tor.tmpfiles
 # PATCH-FIX-UPSTREAM tor-0.2.2.37-logrotate.patch -- add su to logrotate 
config to fix W: suse-logrotate-user-writable-log-dir
 Patch0: tor-0.2.2.37-logrotate.patch
-Requires:   logrotate
 BuildRequires:  openssl-devel
 BuildRequires:  pwdutils
+Requires:   logrotate
+PreReq(post):  %fillup_prereq 
+BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 #
-%if %with_bufferevents
-BuildRequires:  libevent-devel = 2.0.13
+%if %{with_bufferevents}
+BuildRequires:  pkgconfig(libevent) = 2.0.13
+%endif # with_bufferevents
+%if %{?suse_version}  1210
+BuildRequires:  pkgconfig(libevent)
 %else
-%if 0%{?suse_version}  1100
 BuildRequires:  libevent-devel
-%else
-BuildRequires:  libevent
-%endif
 %endif
-
+#
 %if 0%{?suse_version} = 1230
 BuildRequires:  gpg-offline
 %endif
-
-%if 0%{?suse_version}  1140
+#
+%if 0%{?with_systemd}
 BuildRequires:  pkgconfig(systemd)
 %{?systemd_requires}
-%define has_systemd 1
 %endif
-
-%define toruser %{name}
-%define torgroup %{name}
-%define home_dir /var/lib/empty
+#
 
 %description
 Tor is a connection-based low-latency anonymous communication system.
@@ -86,7 +85,7 @@
 for high-stakes anonymity.
 
 %prep
-%{?gpg_verify: %gpg_verify %{S:1}}
+%{?gpg_verify: %gpg_verify %{SOURCE1}}
 %setup -q
 %patch0
 
@@ -94,74 +93,76 @@
 %configure \
--with-tor-user=%{toruser} \
--with-tor-group=%{torgroup} \
-%if %with_bufferevents
+%if %{with_bufferevents}
--enable-bufferevents \
 %endif
--docdir=%{_docdir}/%{name}
 
-%__make %{?jobs:-j%{jobs}}
+make %{?_smp_mflags}
 
 %install
-%makeinstall
+make DESTDIR=%{buildroot} install %{?_smp_mflags}
 
 # missing dirs
-%{__install} -d -m 700 \
-%{buildroot}/var/lib/%{name} \
-%{buildroot}/var/tmp/%{name}
-
-%{__install} -d -m 755 \
-%{buildroot}/var/run/%{name} \
-%{buildroot}/var/log/%{name} \
+install -d -m 700 \
+%{buildroot}%{_localstatedir}/lib/%{name} \
+%{buildroot}%{_localstatedir}/tmp/%{name}
+
+install -d -m 755 \
+%{buildroot}%{_localstatedir}/run/%{name} \
+%{buildroot}%{_localstatedir}/log/%{name} \
 %{buildroot}/%{_sbindir}
 
-%if 0%{?has_systemd}
-install -m 644 -D %{S:3} $RPM_BUILD_ROOT/%{_unitdir}/%{name}.service
-%{__install} -d -m 0755 %{buildroot}/usr/lib/tmpfiles.d/
-%{__install} -m 0644 %{S:4} %{buildroot}/usr/lib/tmpfiles.d/%{name}.conf
+%if 0%{?with_systemd}
+install -m 644

commit tor for openSUSE:Factory

2014-01-23 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2014-01-21 07:02:18

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2013-12-30 10:46:56.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2014-01-23 
15:57:21.0 +0100
@@ -1,0 +2,5 @@
+Mon Jan 20 19:46:02 UTC 2014 - andreas.stie...@gmx.de
+
+- redaction of 0.2.4.20 changelog to include bug and CVE references
+
+---
@@ -14,0 +20 @@
+  [bnc#859421] [CVE-2013-7295]



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Rq0VKL/_old  2014-01-23 15:57:21.0 +0100
+++ /var/tmp/diff_new_pack.Rq0VKL/_new  2014-01-23 15:57:21.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2013-12-30 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2013-12-30 10:46:55

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2013-12-16 07:15:01.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2013-12-30 
10:46:56.0 +0100
@@ -1,0 +2,37 @@
+Fri Dec 27 20:55:26 UTC 2013 - andreas.stie...@gmx.de
+
+- tor 0.2.4.20
+  fixes potentially poor random number generation for users who 
+  1) use OpenSSL 1.0.0 or later, 
+  2) set HardwareAccel 1 in their torrc file, 
+  3) have Sandy Bridge or Ivy Bridge Intel processors
+  and 
+  4) have no state file in their DataDirectory (as would happen on
+  first start). 
+  Users who generated relay or hidden service identity keys in such
+  a situation should discard them and generate new ones.
+  No 2 is not the default configuration for openSUSE.
+  This release also fixes a logic error that caused Tor clients to build
+  many more preemptive circuits than they actually need.
+- Major bugfixes:
+  - Do not allow OpenSSL engines to replace the PRNG, even when
+HardwareAccel is set. The only default builtin PRNG engine uses
+the Intel RDRAND instruction to replace the entire PRNG, and
+ignores all attempts to seed it with more entropy. That's
+cryptographically stupid: the right response to a new alleged
+entropy source is never to discard all previously used entropy
+sources. Fixes bug 10402; works around behavior introduced in
+OpenSSL 1.0.0.
+  - Fix assertion failure when AutomapHostsOnResolve yields an IPv6
+address.
+  - Avoid launching spurious extra circuits when a stream is pending.
+This fixes a bug where any circuit that _wasn't_ unusable for new
+streams would be treated as if it were, causing extra circuits to
+be launched.
+- Minor bugfixes:
+  - Avoid a crash bug when starting with a corrupted microdescriptor
+cache file.
+  - If we fail to dump a previously cached microdescriptor to disk, avoid
+freeing duplicate data later on.
+
+---

Old:

  tor-0.2.4.19.tar.gz
  tor-0.2.4.19.tar.gz.asc

New:

  tor-0.2.4.20.tar.gz
  tor-0.2.4.20.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.jl3hSf/_old  2013-12-30 10:46:57.0 +0100
+++ /var/tmp/diff_new_pack.jl3hSf/_new  2013-12-30 10:46:57.0 +0100
@@ -19,7 +19,7 @@
 %define with_bufferevents 0%{?suse_version}  1220
 
 Name:   tor
-Version:0.2.4.19
+Version:0.2.4.20
 Release:0
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 Summary:Anonymizing overlay network for TCP (The onion router)

++ tor-0.2.4.19.tar.gz - tor-0.2.4.20.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/tor-0.2.4.19/ChangeLog new/tor-0.2.4.20/ChangeLog
--- old/tor-0.2.4.19/ChangeLog  2013-12-10 23:08:26.0 +0100
+++ new/tor-0.2.4.20/ChangeLog  2013-12-23 06:35:55.0 +0100
@@ -1,3 +1,39 @@
+Changes in version 0.2.4.20 - 2013-12-22
+  Tor 0.2.4.20 fixes potentially poor random number generation for users
+  who 1) use OpenSSL 1.0.0 or later, 2) set HardwareAccel 1 in their
+  torrc file, 3) have Sandy Bridge or Ivy Bridge Intel processors,
+  and 4) have no state file in their DataDirectory (as would happen on
+  first start). Users who generated relay or hidden service identity
+  keys in such a situation should discard them and generate new ones.
+
+  This release also fixes a logic error that caused Tor clients to build
+  many more preemptive circuits than they actually need.
+
+  o Major bugfixes:
+- Do not allow OpenSSL engines to replace the PRNG, even when
+  HardwareAccel is set. The only default builtin PRNG engine uses
+  the Intel RDRAND instruction to replace the entire PRNG, and
+  ignores all attempts to seed it with more entropy. That's
+  cryptographically stupid: the right response to a new alleged
+  entropy source is never to discard all previously used entropy
+  sources. Fixes bug 10402; works around behavior introduced in
+  OpenSSL 1.0.0. Diagnosis and investigation thanks to coderman
+  and rl1987.
+- Fix assertion failure when AutomapHostsOnResolve yields an IPv6
+  address. Fixes bug 10465; bugfix on 0.2.4.7-alpha.
+- Avoid launching spurious extra circuits when a stream is pending.
+  This fixes a bug where any circuit that _wasn't_ unusable for new
+  streams would be treated as if it were, causing extra circuits to
+  be launched.

commit tor for openSUSE:Factory

2013-12-15 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2013-12-16 07:14:59

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2013-12-08 19:49:58.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2013-12-16 
07:15:01.0 +0100
@@ -1,0 +2,22 @@
+Sat Dec 14 17:43:22 UTC 2013 - andreas.stie...@gmx.de
+
+- Tor 0.2.4.19, the first stable release in the 0.2.4 branch, features
+  a new circuit handshake and link encryption that use ECC to provide
+  better security and efficiency; makes relays better manage circuit
+  creation requests; uses directory guards to reduce client enumeration
+  risks; makes bridges collect and report statistics about the pluggable
+  transports they support; cleans up and improves our geoip database;
+  gets much closer to IPv6 support for clients, bridges, and relays; makes
+  directory authorities use measured bandwidths rather than advertised
+  ones when computing flags and thresholds; disables client-side DNS
+  caching to reduce tracking risks; and fixes a big bug in bridge
+  reachability testing. This release introduces two new design
+  abstractions in the code: a new channel abstraction between circuits
+  and or_connections to allow for implementing alternate relay-to-relay
+  transports, and a new circuitmux abstraction storing the queue of
+  circuits for a channel. The release also includes many stability,
+  security, and privacy fixes.
+- full changelog relative to 0.2.3.x and 0.2.4.x RC series: 
+  
https://gitweb.torproject.org/tor.git?a=blob_plain;hb=release-0.2.4;f=ReleaseNotes
+
+---

Old:

  tor-0.2.4.18-rc.tar.gz
  tor-0.2.4.18-rc.tar.gz.asc

New:

  tor-0.2.4.19.tar.gz
  tor-0.2.4.19.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.9kVKWw/_old  2013-12-16 07:15:01.0 +0100
+++ /var/tmp/diff_new_pack.9kVKWw/_new  2013-12-16 07:15:01.0 +0100
@@ -19,15 +19,15 @@
 %define with_bufferevents 0%{?suse_version}  1220
 
 Name:   tor
-Version:0.2.4.18
+Version:0.2.4.19
 Release:0
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
 Group:  Productivity/Networking/Security
 Url:https://www.torproject.org/
-Source0:https://www.torproject.org/dist/%{name}-%{version}-rc.tar.gz
-Source1:
https://www.torproject.org/dist/%{name}-%{version}-rc.tar.gz.asc
+Source0:https://www.torproject.org/dist/%{name}-%{version}.tar.gz
+Source1:https://www.torproject.org/dist/%{name}-%{version}.tar.gz.asc
 # https://www.torproject.org/docs/signing-keys.html.en
 Source2:tor.keyring
 Source3:tor.service
@@ -87,7 +87,7 @@
 
 %prep
 %{?gpg_verify: %gpg_verify %{S:1}}
-%setup -q -n %{name}-%{version}-rc
+%setup -q
 %patch0
 
 %build

++ tor-0.2.4.18-rc.tar.gz - tor-0.2.4.19.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/tor-0.2.4.18-rc/ChangeLog new/tor-0.2.4.19/ChangeLog
--- old/tor-0.2.4.18-rc/ChangeLog   2013-11-16 19:07:50.0 +0100
+++ new/tor-0.2.4.19/ChangeLog  2013-12-10 23:08:26.0 +0100
@@ -1,3 +1,30 @@
+Changes in version 0.2.4.19 - 2013-12-11
+  The Tor 0.2.4 release series is dedicated to the memory of Aaron Swartz
+  (1986-2013). Aaron worked on diverse projects including helping to guide
+  Creative Commons, playing a key role in stopping SOPA/PIPA, bringing
+  transparency to the U.S government's PACER documents, and contributing
+  design and development for Tor and Tor2Web. Aaron was one of the latest
+  martyrs in our collective fight for civil liberties and human rights,
+  and his death is all the more painful because he was one of us.
+
+  Tor 0.2.4.19, the first stable release in the 0.2.4 branch, features
+  a new circuit handshake and link encryption that use ECC to provide
+  better security and efficiency; makes relays better manage circuit
+  creation requests; uses directory guards to reduce client enumeration
+  risks; makes bridges collect and report statistics about the pluggable
+  transports they support; cleans up and improves our geoip database;
+  gets much closer to IPv6 support for clients, bridges, and relays; makes
+  directory authorities use measured bandwidths rather than advertised
+  ones when computing flags and thresholds; disables client-side DNS
+  caching to reduce tracking risks; and fixes a big bug in bridge
+

commit tor for openSUSE:Factory

2013-12-08 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2013-12-08 19:49:57

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2013-10-14 09:31:14.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2013-12-08 
19:49:58.0 +0100
@@ -1,0 +2,17 @@
+Sat Dec  7 12:04:08 UTC 2013 - andreas.stie...@gmx.de
+
+- tor-0.2.4.18-rc, improves stability, performance, and better
+  handling of edge cases.
+- Major features:
+  - Re-enable TLS 1.1 and 1.2 when built with OpenSSL 1.0.1e or later.
+- Major bugfixes:
+  - No longer stop reading or writing on cpuworker connections when
+our rate limiting buckets go empty.
+  - If we are unable to save a microdescriptor to the journal, do not
+drop it from memory and then reattempt downloading it.
+  - Stop trying to bootstrap all our directory information from
+only our first guard.
+  - The new channel code sometimes lost track of in-progress circuits,
+causing long-running clients to stop building new circuits.
+
+---

Old:

  tor-0.2.4.17-rc.tar.gz
  tor-0.2.4.17-rc.tar.gz.asc

New:

  tor-0.2.4.18-rc.tar.gz
  tor-0.2.4.18-rc.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.j7sZok/_old  2013-12-08 19:49:59.0 +0100
+++ /var/tmp/diff_new_pack.j7sZok/_new  2013-12-08 19:49:59.0 +0100
@@ -19,7 +19,7 @@
 %define with_bufferevents 0%{?suse_version}  1220
 
 Name:   tor
-Version:0.2.4.17
+Version:0.2.4.18
 Release:0
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 Summary:Anonymizing overlay network for TCP (The onion router)

++ tor-0.2.4.17-rc.tar.gz - tor-0.2.4.18-rc.tar.gz ++
 33123 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2013-10-14 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2013-10-14 09:31:13

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2013-06-05 13:20:47.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2013-10-14 
09:31:14.0 +0200
@@ -1,0 +2,12 @@
+Sat Oct  5 13:18:55 UTC 2013 - andreas.stie...@gmx.de
+
+- tor-0.2.4.17-rc
+- major features in 0.2.4.x:
+  - improved client resilience
+  - support better link encryption with forward secrecy
+  - new NTor circuit handshake
+  - change relay queue for circuit create requests from size-based
+limit to time-based limit
+  - many bug fixes and minor features
+
+---

Old:

  tor-0.2.3.25.tar.gz
  tor-0.2.3.25.tar.gz.asc

New:

  tor-0.2.4.17-rc.tar.gz
  tor-0.2.4.17-rc.tar.gz.asc



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.gD6pA6/_old  2013-10-14 09:31:15.0 +0200
+++ /var/tmp/diff_new_pack.gD6pA6/_new  2013-10-14 09:31:15.0 +0200
@@ -19,15 +19,15 @@
 %define with_bufferevents 0%{?suse_version}  1220
 
 Name:   tor
-Version:0.2.3.25
+Version:0.2.4.17
 Release:0
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 Summary:Anonymizing overlay network for TCP (The onion router)
 License:BSD-3-Clause
 Group:  Productivity/Networking/Security
 Url:https://www.torproject.org/
-Source0:https://www.torproject.org/dist/%{name}-%{version}.tar.gz
-Source1:https://www.torproject.org/dist/%{name}-%{version}.tar.gz.asc
+Source0:https://www.torproject.org/dist/%{name}-%{version}-rc.tar.gz
+Source1:
https://www.torproject.org/dist/%{name}-%{version}-rc.tar.gz.asc
 # https://www.torproject.org/docs/signing-keys.html.en
 Source2:tor.keyring
 Source3:tor.service
@@ -87,7 +87,7 @@
 
 %prep
 %{?gpg_verify: %gpg_verify %{S:1}}
-%setup -q
+%setup -q -n %{name}-%{version}-rc
 %patch0
 
 %build
@@ -166,7 +166,7 @@
 
 %files
 %defattr(-,root,root)
-%doc LICENSE README ChangeLog doc/HACKING doc/TODO doc/*.html
+%doc LICENSE README ChangeLog doc/HACKING doc/*.html
 %doc %{_mandir}/man*/*
 %{_bindir}/%{name}
 %{_bindir}/%{name}ctl
@@ -175,7 +175,7 @@
 %{_bindir}/%{name}-resolve
 %{_sbindir}/rc%{name}
 %dir %{_datadir}/%{name}
-%{_datadir}/%{name}/geoip
+%{_datadir}/%{name}/geoip*
 %config %{_initrddir}/%{name}
 %config(noreplace) %attr(0644,root,root) %{_sysconfdir}/logrotate.d/%{name}
 %dir %attr(0755,root,%{torgroup}) %{_sysconfdir}/%{name}

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2013-06-05 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2013-06-05 13:20:46

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2012-11-28 17:04:59.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2013-06-05 
13:20:47.0 +0200
@@ -1,0 +2,6 @@
+Fri May 24 22:51:24 UTC 2013 - andreas.stie...@gmx.de
+
+- add systemd support
+- verify source tarball signature
+
+---

New:

  tor-0.2.3.25.tar.gz.asc
  tor.keyring
  tor.service
  tor.tmpfiles



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.Dh1Goj/_old  2013-06-05 13:20:48.0 +0200
+++ /var/tmp/diff_new_pack.Dh1Goj/_new  2013-06-05 13:20:48.0 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -26,12 +26,18 @@
 License:BSD-3-Clause
 Group:  Productivity/Networking/Security
 Url:https://www.torproject.org/
-Source: https://www.torproject.org/dist/%{name}-%{version}.tar.gz
+Source0:https://www.torproject.org/dist/%{name}-%{version}.tar.gz
+Source1:https://www.torproject.org/dist/%{name}-%{version}.tar.gz.asc
+# https://www.torproject.org/docs/signing-keys.html.en
+Source2:tor.keyring
+Source3:tor.service
+Source4:tor.tmpfiles
 # PATCH-FIX-UPSTREAM tor-0.2.2.37-logrotate.patch -- add su to logrotate 
config to fix W: suse-logrotate-user-writable-log-dir
 Patch0: tor-0.2.2.37-logrotate.patch
 Requires:   logrotate
 BuildRequires:  openssl-devel
-
+BuildRequires:  pwdutils
+#
 %if %with_bufferevents
 BuildRequires:  libevent-devel = 2.0.13
 %else
@@ -42,6 +48,16 @@
 %endif
 %endif
 
+%if 0%{?suse_version} = 1230
+BuildRequires:  gpg-offline
+%endif
+
+%if 0%{?suse_version}  1140
+BuildRequires:  pkgconfig(systemd)
+%{?systemd_requires}
+%define has_systemd 1
+%endif
+
 %define toruser %{name}
 %define torgroup %{name}
 %define home_dir /var/lib/empty
@@ -70,6 +86,7 @@
 for high-stakes anonymity.
 
 %prep
+%{?gpg_verify: %gpg_verify %{S:1}}
 %setup -q
 %patch0
 
@@ -97,6 +114,12 @@
 %{buildroot}/var/log/%{name} \
 %{buildroot}/%{_sbindir}
 
+%if 0%{?has_systemd}
+install -m 644 -D %{S:3} $RPM_BUILD_ROOT/%{_unitdir}/%{name}.service
+%{__install} -d -m 0755 %{buildroot}/usr/lib/tmpfiles.d/
+%{__install} -m 0644 %{S:4} %{buildroot}/usr/lib/tmpfiles.d/%{name}.conf
+%endif
+
 # control script
 %__install -p -m 755 contrib/torctl %{buildroot}/%{_bindir}
 
@@ -115,18 +138,31 @@
 %__rm -rf %{buildroot}
 
 %pre
-/usr/sbin/groupadd -r %{torgroup} /dev/null || :
-/usr/sbin/useradd -g %{torgroup} -s /bin/false -r -c User to run %{name} -d 
%{home_dir} %{toruser} /dev/null || :
+getent group %{torgroup} /dev/null || groupadd -r %{torgroup}
+getent passwd %{toruser} /dev/null || useradd -r -g %{torgroup} -d 
%{home_dir} -s /sbin/false -c User to ru %{name} %{toruser}
+%if 0%{?has_systemd}
+%service_add_pre tor.service
+%endif
 
 %post
 %fillup_and_insserv tor
+%if 0%{?has_systemd}
+%service_add_post tor.service
+systemd-tmpfiles --create /usr/lib/tmpfiles.d/tor.conf
+%endif
 
 %preun
 %stop_on_removal tor
+%if 0%{?has_systemd}
+%service_del_preun tor.service
+%endif
 
 %postun
-%insserv_cleanup
 %restart_on_update tor
+%insserv_cleanup
+%if 0%{?has_systemd}
+%service_del_postun tor.service
+%endif
 
 %files
 %defattr(-,root,root)
@@ -147,5 +183,9 @@
 %attr(0700,%{toruser},%{torgroup}) %dir %{_localstatedir}/lib/%{name}
 %ghost %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/run/%{name}
 %attr(0750,%{toruser},%{torgroup}) %dir %{_localstatedir}/log/%{name}
+%if 0%{?has_systemd}
+%{_unitdir}/%{name}.service
+/usr/lib/tmpfiles.d/%{name}.conf
+%endif
 
 %changelog

++ tor.keyring ++
 3019 lines (skipped)

++ tor.service ++
[Unit]
Description = Anonymizing overlay network for TCP
After = syslog.target network.target nss-lookup.target

[Service]
Type=forking
ExecStart=/usr/bin/torctl start
ExecReload=/usr/bin/torctl reload
ExecStop=/usr/bin/torctl stop
TimeoutSec=30
Restart=on-failure
LimitNOFILE=32768

[Install]
WantedBy=multi-user.target
++ tor.tmpfiles ++
D /var/run/tor 0755 tor tor -
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail:

commit tor for openSUSE:Factory

2012-11-28 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2012-11-28 17:04:55

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor, Maintainer is 

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2012-11-22 14:31:58.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2012-11-28 
17:04:59.0 +0100
@@ -1,0 +2,23 @@
+Tue Nov 27 21:46:02 UTC 2012 - andreas.stie...@gmx.de
+
+- update to 0.2.3.25, the first stable release in the 0.2.3 branch
+  + significantly reduced directory overhead (via microdescriptors)
+  + enormous crypto performance improvements for fast relays on new
+ enough hardware
+  + new v3 TLS handshake protocol that can better resist 
+fingerprinting
+  + support for protocol obfuscation plugins (pluggable transports)
+  + better scalability for hidden services
+  + IPv6 support for bridges
+  + performance improvements 
+  + new stream isolation design to isolate different applications 
+on different circuits
+  + many stability, security, and privacy fixes
+  + Complete list of changes enumerated in:
+https://lists.torproject.org/pipermail/tor-talk/2012-November/026554.html
+
https://gitweb.torproject.org/tor.git/blob/267c0e5aa14deeb2ca0d7997b4ef5a5c2bbf5fd4:/ReleaseNotes
+  + Tear down the circuit when receiving an unexpected SENDME cell.
+[bnc#791374] CVE-2012-5573
+- build using --enable-bufferevents provided by Libevent 2.0.13
+ 
+---

Old:

  tor-0.2.2.39.tar.gz

New:

  tor-0.2.3.25.tar.gz



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.80TSa4/_old  2012-11-28 17:05:03.0 +0100
+++ /var/tmp/diff_new_pack.80TSa4/_new  2012-11-28 17:05:03.0 +0100
@@ -16,8 +16,10 @@
 #
 
 
+%define with_bufferevents 0%{?suse_version}  1220
+
 Name:   tor
-Version:0.2.2.39
+Version:0.2.3.25
 Release:0
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 Summary:Anonymizing overlay network for TCP (The onion router)
@@ -29,11 +31,16 @@
 Patch0: tor-0.2.2.37-logrotate.patch
 Requires:   logrotate
 BuildRequires:  openssl-devel
+
+%if %with_bufferevents
+BuildRequires:  libevent-devel = 2.0.13
+%else
 %if 0%{?suse_version}  1100
 BuildRequires:  libevent-devel
 %else
 BuildRequires:  libevent
 %endif
+%endif
 
 %define toruser %{name}
 %define torgroup %{name}
@@ -70,6 +77,9 @@
 %configure \
--with-tor-user=%{toruser} \
--with-tor-group=%{torgroup} \
+%if %with_bufferevents
+   --enable-bufferevents \
+%endif
--docdir=%{_docdir}/%{name}
 
 %__make %{?jobs:-j%{jobs}}

++ tor-0.2.2.39.tar.gz - tor-0.2.3.25.tar.gz ++
 83076 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2012-11-22 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2012-11-22 14:31:57

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor, Maintainer is 

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2012-09-20 15:48:39.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2012-11-22 
14:31:58.0 +0100
@@ -1,0 +2,6 @@
+Tue Nov 20 09:07:23 UTC 2012 - dims...@opensuse.org
+
+- Fix useradd invocation: -o is useless without -u and newer
+  versions of pwdutils/shadowutils fail on this now.
+
+---



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.yhv0lV/_old  2012-11-22 14:32:00.0 +0100
+++ /var/tmp/diff_new_pack.yhv0lV/_new  2012-11-22 14:32:00.0 +0100
@@ -106,7 +106,7 @@
 
 %pre
 /usr/sbin/groupadd -r %{torgroup} /dev/null || :
-/usr/sbin/useradd -o -g %{torgroup} -s /bin/false -r -c User to run %{name} 
-d %{home_dir} %{toruser} /dev/null || :
+/usr/sbin/useradd -g %{torgroup} -s /bin/false -r -c User to run %{name} -d 
%{home_dir} %{toruser} /dev/null || :
 
 %post
 %fillup_and_insserv tor

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2012-09-20 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2012-09-20 15:48:36

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor, Maintainer is 

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2012-09-16 23:48:15.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2012-09-20 
15:48:39.0 +0200
@@ -4 +4 @@
-- update to 0.2.2.39 [bnc#780620] CVE-2012-4419
+- update to 0.2.2.39 [bnc#780620]
@@ -11,0 +12 @@
+  CVE-2012-4922
@@ -15,0 +17 @@
+  CVE-2012-4419



Other differences:
--
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2012-06-18 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2012-06-18 14:57:34

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor, Maintainer is 

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2012-06-14 22:26:46.0 
+0200
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2012-06-18 
14:57:35.0 +0200
@@ -1,0 +2,6 @@
+Fri Jun 15 19:45:01 UTC 2012 - andreas.stie...@gmx.de
+
+- add tor-0.2.2.37-logrotate.patch : add su option to logrotate to
+  fix W: suse-logrotate-user-writable-log-dir in Factory
+
+---

New:

  tor-0.2.2.37-logrotate.patch



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.D6097E/_old  2012-06-18 14:57:37.0 +0200
+++ /var/tmp/diff_new_pack.D6097E/_new  2012-06-18 14:57:37.0 +0200
@@ -25,6 +25,8 @@
 Group:  Productivity/Networking/Security
 Url:https://www.torproject.org/
 Source: https://www.torproject.org/dist/%{name}-%{version}.tar.gz
+# PATCH-FIX-UPSTREAM tor-0.2.2.37-logrotate.patch -- add su to logrotate 
config to fix W: suse-logrotate-user-writable-log-dir
+Patch0: tor-0.2.2.37-logrotate.patch
 Requires:   logrotate
 BuildRequires:  openssl-devel
 %if 0%{?suse_version}  1100
@@ -62,6 +64,7 @@
 
 %prep
 %setup -q
+%patch0
 
 %build
 %configure \

++ tor-0.2.2.37-logrotate.patch ++
Index: contrib/tor.logrotate.in
===
--- contrib/tor.logrotate.in.orig   2012-05-10 21:00:16.0 +0100
+++ contrib/tor.logrotate.in2012-06-15 20:06:22.0 +0100
@@ -7,6 +7,7 @@
notifempty
# you may need to change the username/groupname below
create 0640 _tor _tor
+   su _tor _tor
sharedscripts
postrotate
/etc/init.d/tor reload  /dev/null
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

commit tor for openSUSE:Factory

2012-06-10 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2012-06-10 20:20:07

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor, Maintainer is 

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2012-02-14 19:09:18.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2012-06-10 
21:52:34.0 +0200
@@ -1,0 +2,139 @@
+Wed Jun  6 20:46:46 UTC 2012 - andreas.stie...@gmx.de
+
+- update to 0.2.2.36
+
+  Changes in version 0.2.2.36 - 2012-05-24
+  o Directory authority changes:
+- Change IP address for maatuska (v3 directory authority).
+- Change IP address for ides (v3 directory authority), and rename
+  it to turtles.
+
+  o Security fixes:
+- When building or running with any version of OpenSSL earlier
+  than 0.9.8s or 1.0.0f, disable SSLv3 support. These OpenSSL
+  versions have a bug (CVE-2011-4576) in which their block cipher
+  padding includes uninitialized data, potentially leaking sensitive
+  information to any peer with whom they make a SSLv3 connection. Tor
+  does not use SSL v3 by default, but a hostile client or server
+  could force an SSLv3 connection in order to gain information that
+  they shouldn't have been able to get. The best solution here is to
+  upgrade to OpenSSL 0.9.8s or 1.0.0f (or later). But when building
+  or running with a non-upgraded OpenSSL, we disable SSLv3 entirely
+  to make sure that the bug can't happen.
+- Never use a bridge or a controller-supplied node as an exit, even
+  if its exit policy allows it. Found by wanoskarnet. Fixes bug
+  5342. Bugfix on 0.1.1.15-rc (for controller-purpose descriptors)
+  and 0.2.0.3-alpha (for bridge-purpose descriptors).
+- Only build circuits if we have a sufficient threshold of the total
+  descriptors that are marked in the consensus with the Exit
+  flag. This mitigates an attack proposed by wanoskarnet, in which
+  all of a client's bridges collude to restrict the exit nodes that
+  the client knows about. Fixes bug 5343.
+- Provide controllers with a safer way to implement the cookie
+  authentication mechanism. With the old method, if another locally
+  running program could convince a controller that it was the Tor
+  process, then that program could trick the controller into telling
+  it the contents of an arbitrary 32-byte file. The new SAFECOOKIE
+  authentication method uses a challenge-response approach to prevent
+  this attack. Fixes bug 5185; implements proposal 193.
+
+  o Major bugfixes:
+- Avoid logging uninitialized data when unable to decode a hidden
+  service descriptor cookie. Fixes bug 5647; bugfix on 0.2.1.5-alpha.
+- Avoid a client-side assertion failure when receiving an INTRODUCE2
+  cell on a general purpose circuit. Fixes bug 5644; bugfix on
+  0.2.1.6-alpha.
+- Fix builds when the path to sed, openssl, or sha1sum contains
+  spaces, which is pretty common on Windows. Fixes bug 5065; bugfix
+  on 0.2.2.1-alpha.
+- Correct our replacements for the timeradd() and timersub() functions
+  on platforms that lack them (for example, Windows). The timersub()
+  function is used when expiring circuits, while timeradd() is
+  currently unused. Bug report and patch by Vektor. Fixes bug 4778;
+  bugfix on 0.2.2.24-alpha.
+- Fix the SOCKET_OK test that we use to tell when socket
+  creation fails so that it works on Win64. Fixes part of bug 4533;
+  bugfix on 0.2.2.29-beta. Bug found by wanoskarnet.
+
+  o Minor bugfixes:
+- Reject out-of-range times like 23:59:61 in parse_rfc1123_time().
+  Fixes bug 5346; bugfix on 0.0.8pre3.
+- Make our number-parsing functions always treat too-large values
+  as an error, even when those values exceed the width of the
+  underlying type. Previously, if the caller provided these
+  functions with minima or maxima set to the extreme values of the
+  underlying integer type, these functions would return those
+  values on overflow rather than treating overflow as an error.
+  Fixes part of bug 5786; bugfix on 0.0.9.
+- Older Linux kernels erroneously respond to strange nmap behavior
+  by having accept() return successfully with a zero-length
+  socket. When this happens, just close the connection. Previously,
+  we would try harder to learn the remote address: but there was
+  no such remote address to learn, and our method for trying to
+  learn it was incorrect. Fixes bugs 1240, 4745, and 4747. Bugfix
+  on 0.1.0.3-rc. Reported and diagnosed by r1eo.
+- Correct parsing of certain date types in parse_http_time().
+  Without this patch,

commit tor for openSUSE:Factory

2012-02-14 Thread h_root 
Hello community,

here is the log from the commit of package tor for openSUSE:Factory checked in 
at 2012-02-14 19:09:16

Comparing /work/SRC/openSUSE:Factory/tor (Old)
 and  /work/SRC/openSUSE:Factory/.tor.new (New)


Package is tor, Maintainer is 

Changes:

--- /work/SRC/openSUSE:Factory/tor/tor.changes  2011-12-21 10:04:05.0 
+0100
+++ /work/SRC/openSUSE:Factory/.tor.new/tor.changes 2012-02-14 
19:09:18.0 +0100
@@ -1,0 +2,5 @@
+Mon Jan  2 16:51:20 UTC 2012 - andreas.stie...@gmx.de
+
+- add CVE references in changelog, fixing bug #739133
+
+---
@@ -33,0 +39,2 @@
+- fixes CVE-2011-4895 Tor Bridge circuit building information disclosure
+- fixes CVE-2011-4894 Tor DirPort information disclosure
@@ -221,0 +229,2 @@
+- fixes CVE-2011-4897 Tor Nickname information disclosure
+- fixes CVE-2011-4896 Tor Bridge information disclosure



Other differences:
--
++ tor.spec ++
--- /var/tmp/diff_new_pack.zB08mm/_old  2012-02-14 19:09:20.0 +0100
+++ /var/tmp/diff_new_pack.zB08mm/_new  2012-02-14 19:09:20.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package tor
 #
-# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -15,17 +15,14 @@
 # Please submit bugfixes or comments via http://bugs.opensuse.org/
 #
 
-# norootforbuild
-
-
 Name:   tor
 Version:0.2.2.35
-Release:1
+Release:0
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
-License:BSD-3-Clause
 Summary:Anonymizing overlay network for TCP (The onion router)
-Url:https://www.torproject.org/
+License:BSD-3-Clause
 Group:  Productivity/Networking/Security
+Url:https://www.torproject.org/
 Source: %{name}-%{version}.tar.bz2
 Requires:   logrotate
 BuildRequires:  openssl-devel

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org