aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
* first pass: obey log conventionRoger Dingledine2003-09-26
| | | | | | | | | | | | | | | | | | | | | ERR is if something fatal just happened WARNING is something bad happened, but we're still running. The bad thing is either a bug in the code, an attack or buggy protocol/implementation of the remote peer, etc. The operator should examine the bad thing and try to correct it. (No error or warning messages should be expected. I expect most people to run on -l warning eventually.) NOTICE is never ever used. INFO means something happened (maybe bad, maybe ok), but there's nothing you need to (or can) do about it. DEBUG is for everything louder than INFO. svn:r486
* update TODO to reflect our progressRoger Dingledine2003-09-25
| | | | svn:r485
* various bugfixes and updatesRoger Dingledine2003-09-25
| | | | | | | | | | | | | | | | | | | | redo all the config files for the new format (we'll redo them again soon) fix (another! yuck) segfault in log_fn when input is too large tor_tls_context_new() returns -1 for error, not NULL fix segfault in check_conn_marked() on conn's that die during tls handshake make ORs also initialize conn from router when we're the receiving node make non-dirserver ORs upload descriptor to every dirserver on startup add our local address to the descriptor add Content-Length field to POST command revert the Content-Length search in fetch_from_buf_http() to previous code fix segfault in memmove in fetch_from_buf_http() raise maximum allowed headers/body size in directory.c svn:r484
* Refactor buffers; implement descriptors.Nick Mathewson2003-09-25
| | | | | | | | | | | | | | | | | 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483
* a few todo things doneRoger Dingledine2003-09-24
| | | | svn:r482
* cleanups, bugfixes, more verbose logsRoger Dingledine2003-09-24
| | | | | | | | | | | | | | | | | | | Fixed up the assert_*_ok funcs some (more work remains) Changed config so it reads either /etc/torrc or the -f arg, never both Finally tracked down a nasty bug with our use of tls: It turns out that if you ask SSL_read() for no more than n bytes, it will read the entire record from the network (and maybe part of the next record, I'm not sure), give you n bytes of it, and keep the remaining bytes internally. This is fine, except our poll-for-read looks at the network, and there are no bytes pending on the network, so we never know to ask SSL_read() for more bytes. Currently I've hacked it so if we ask for n bytes and it returns n bytes, then it reads again right then. This will interact poorly with our rate limiting; we need a cleaner solution. svn:r481
* bugfix: we weren't looking for sys/stat.hRoger Dingledine2003-09-23
| | | | svn:r480
* integrate assert_connection_ok() checksRoger Dingledine2003-09-23
| | | | svn:r479
* call it tor, not orRoger Dingledine2003-09-22
| | | | svn:r478
* it's safe to do parallel directory fetches/uploadsRoger Dingledine2003-09-22
| | | | svn:r477
* get network/host order working right again for socks4Roger Dingledine2003-09-21
| | | | svn:r476
* bugfixes and note missing featuresRoger Dingledine2003-09-21
| | | | | | | | | | | | | deal with content-length headers better when reading http don't assume struct socks4_info is a packed struct fail the socks handshake if destip is zero flesh out conn_state_to_string() for dir conn fix typo (bug) in connection_handle_read() directory get is now called fetch, post is now upload reopen logs on sighup svn:r475
* add a lot of todo entries, from today's meetingRoger Dingledine2003-09-20
| | | | svn:r474
* fix a segfault on truncated log linesRoger Dingledine2003-09-19
| | | | svn:r473
* leave the socks handshake on the inbuf until it's completeRoger Dingledine2003-09-18
| | | | | | | | | | | this paves the way for supporting socks5 and other handshakes it also removes those pesky AP-only variables from connection_t also hacked a fix for a bug where some streams weren't ending properly -- maybe because marked connections weren't flushing properly? svn:r472
* add in directory 'post' supportRoger Dingledine2003-09-17
| | | | svn:r471
* phase out non-tls handshake, now that tls is stable.Roger Dingledine2003-09-16
| | | | svn:r470
* bugfixes and refactoringsRoger Dingledine2003-09-16
| | | | svn:r468
* More fine-grained logging messages on ZeroReturn/Syscall error casesNick Mathewson2003-09-16
| | | | svn:r467
* Make sequential ACI selection logic handle HIGHER/LOWERNick Mathewson2003-09-16
| | | | svn:r466
* Use EXIT properly in assert_connection_okNick Mathewson2003-09-16
| | | | svn:r465
* Add first cut of assert_*_ok functionsNick Mathewson2003-09-16
| | | | svn:r464
* Add backend support for multiple logfiles, including console logs.Nick Mathewson2003-09-16
| | | | | | | | | Also optimize logging by formatting messages in memory before sending them through stdio. (It turns out (according to gprof) that logging performance matters.) svn:r463
* Add #ifdef'd code (on by default) to allocate ACIs sequentially.Nick Mathewson2003-09-16
| | | | svn:r462
* clean up exported api'sRoger Dingledine2003-09-16
| | | | svn:r461
* refactor connects into connection_connect()Roger Dingledine2003-09-16
| | | | svn:r460
* Cipher lists need to be colon separated. Also make initialization more ↵Nick Mathewson2003-09-15
| | | | | | bulletproof svn:r459
* Fix TLS error loggingNick Mathewson2003-09-15
| | | | svn:r458
* Log protocol errorsNick Mathewson2003-09-15
| | | | svn:r457
* bugfix: onion pending queue now worksRoger Dingledine2003-09-14
| | | | | | | and fixed recent memory leak svn:r456
* finally tracked down the seg faultRoger Dingledine2003-09-14
| | | | svn:r455
* fix the cpuworker circ-had-vanished bug (maybe)Roger Dingledine2003-09-14
| | | | | | | still several (many) tls-related bugs outstanding. svn:r454
* let tor compile with tls on rh9Roger Dingledine2003-09-14
| | | | | | | | | | nick: is this the right way to do the autoconf stuff? what happens when /usr/kerberos/include/ doesn't exist? an alternate way is to add `pkg-config --cflags openssl` to CFLAGS, but it seems that command only works on rh9. yay portability issues. svn:r453
* fix two more bugsRoger Dingledine2003-09-13
| | | | svn:r452
* reshuffle functions for cleaner organizationRoger Dingledine2003-09-12
| | | | svn:r451
* tls works between routers now tooRoger Dingledine2003-09-12
| | | | | | | things are still a bit shaky svn:r450
* tls works with onion proxies now.Roger Dingledine2003-09-12
| | | | svn:r449
* serious bug in cpuworker. need to think about redesign or how to handle it.Roger Dingledine2003-09-12
| | | | svn:r448
* Fix bugs in certificate generation and SSL context creation. Both seem to ↵Nick Mathewson2003-09-11
| | | | | | work now. svn:r447
* update onion router configs for tlsRoger Dingledine2003-09-11
| | | | svn:r446
* check for funny business from the remote peerRoger Dingledine2003-09-11
| | | | svn:r445
* Non-debugging messages are nice to log tooNick Mathewson2003-09-11
| | | | svn:r444
* Resolve XXXXs in tortls.cNick Mathewson2003-09-11
| | | | svn:r443
* Simplify some code paths in TLS; cut down on memory leaks; useNick Mathewson2003-09-11
| | | | | | | reasonable ciphers if not everyone has OpenSSL 0.9.7. svn:r442
* Add router_get_by_pk function; use in connection_tls_finish_handshake.Nick Mathewson2003-09-11
| | | | svn:r441
* fix typo that's been bugging meRoger Dingledine2003-09-11
| | | | svn:r440
* collect info from peer we just handshaked withRoger Dingledine2003-09-11
| | | | svn:r439
* Add certificate verification functionsNick Mathewson2003-09-10
| | | | svn:r438
* Make crypto structures private to crypto.cNick Mathewson2003-09-10
| | | | svn:r437
* Add prototypes for functions to check whether the peer certificate isNick Mathewson2003-09-10
| | | | | | | | valid (if it is present); and to get a public key from a peer certificate (in order to identify the peer). svn:r436