aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Fix leaks in tests related to setting options->DataDirectoryNick Mathewson2014-04-29
| | | | | We pre-populate that value in main(), and we weren't freeing it before overriding it.
* Fix memory leaks in test_status.cNick Mathewson2014-04-29
|
* Fix leaks in dir voting testsNick Mathewson2014-04-29
|
* Fix leaks in test_oom.cNick Mathewson2014-04-26
|
* Fix leaks in test_dir_formatsNick Mathewson2014-04-26
|
* Fix numerous leaks in test_pt.cNick Mathewson2014-04-26
| | | | | I didn't find a managed_proxy_free() function any place; shouldn't there be one?
* test_cntev_append_cell_stats now no longer leaksNick Mathewson2014-04-26
|
* Fix leaks in test_exit_policy_dump_to_stringNick Mathewson2014-04-26
|
* Memory leaks in test_config_addressmapNick Mathewson2014-04-26
|
* Fix a leak in test_buffer_allocation_trackingNick Mathewson2014-04-26
|
* Fix memory leak in unittest helper function.Nick Mathewson2014-04-26
|
* Fix memory leak in test_util_asprintfNick Mathewson2014-04-26
|
* Fix memory leaks in test_cntev_append_cell_statsNick Mathewson2014-04-26
|
* fix uninitialized memory reads from test_geoip_with_pt. Found with valgrindNick Mathewson2014-04-26
|
* Fix memory leak in test_geoipNick Mathewson2014-04-26
|
* Fix memory leak in test_onion_queuesNick Mathewson2014-04-26
|
* Fix memory leaks in test_circuit_timeoutNick Mathewson2014-04-26
| | | | Found with valgrind.
* Fix hyphen handling in format_changelogNick Mathewson2014-04-25
|
* reflow changelog.Nick Mathewson2014-04-25
|
* place the cherries on top and call it doneRoger Dingledine2014-04-25
|
* promote two stanzas; shuffle around two moreRoger Dingledine2014-04-25
|
* touchups on upcoming changelogRoger Dingledine2014-04-25
|
* resolve a typo: sanboxing->sandboxing.Nick Mathewson2014-04-25
|
* two changelog tweaks suggested by AndreaNick Mathewson2014-04-25
|
* Write a release blurbNick Mathewson2014-04-25
|
* Re-order and combine changelog sectionsNick Mathewson2014-04-25
|
* Integrate another entry to the changelog; twiddle changelog moreNick Mathewson2014-04-25
| | | | | Work on style, add some sentences to blurb, explain that 10468 is more general than had been described, etc etc
* format_changelog.py now formats the first section, in-place.Nick Mathewson2014-04-25
|
* Bump version to 0.2.5.4-alpha.Nick Mathewson2014-04-25
| | | | Probably releasing within ~22 hours, pending testing
* fix memory leak in dump_exit_policy_to_string testsNick Mathewson2014-04-25
|
* Include the scan-build.sh script I used for 8793Nick Mathewson2014-04-25
| | | | | Otherwise we'll never remember what to re-run before each release, or whether we tried a given checker.
* Merge branch 'scanbuild_fixes'Nick Mathewson2014-04-25
|\
| * Changes file for scan-build fixes (#8793)Nick Mathewson2014-04-25
| |
| * scan-build: memarea_strndup() undefined behaviorNick Mathewson2014-04-19
| | | | | | | | | | | | | | | | The memarea_strndup() function would have hit undefined behavior by creating an 'end' pointer off the end of a string if it had ever been given an 'n' argument bigger than the length of the memory ares that it's scanning. Fortunately, we never did that except in the unit tests. But it's not a safe behavior to leave lying around.
| * scan-build: avoid undef behaior in tor_inet_ptonNick Mathewson2014-04-19
| | | | | | | | | | | | | | | | | | | | | | | | | | If we had an address of the form "1.2.3.4" and we tried to pass it to tor_inet_pton with AF_INET6, it was possible for our 'eow' pointer to briefly move backwards to the point before the start of the string, before we moved it right back to the start of the string. C doesn't allow that, and though we haven't yet hit a compiler that decided to nuke us in response, it's best to fix. So, be more explicit about requiring there to be a : before any IPv4 address part of the IPv6 address. We would have rejected addresses without a : for not being IPv6 later on anyway.
| * scan-build: sizeof(ptr*) in a debugging log in ext_orport.cNick Mathewson2014-04-19
| | | | | | | | | | | | Instead of taking the length of a buffer, we were taking the length of a pointer, so that our debugging log would cover only the first sizeof(void*) bytes of the client nonce.
| * scan-build: Fix harmless sizeof(ptr) in test_oom.cNick Mathewson2014-04-19
| | | | | | | | | | We meant to using random bytes to fill a buffer, up to 3000 at a time. Instead we were taking them sizeof(void*) at a time.
| * scan-build: close stdio FILEs on error in tor-gencertNick Mathewson2014-04-19
| | | | | | | | | | This is harmless, since tor-gencert exits right afterwards, but it's best to clean up after ourselves.
| * scan-build: truncate tinytest hexified outputs to 1024 bytes.Nick Mathewson2014-04-19
| | | | | | | | | | | | scan-build didn't like the unlimited version since we might need to overflow size_t to hexify a string that took up half our address space. (!)
| * scan-build: limit hashtable size so it always fits in SSIZE_MAXNick Mathewson2014-04-19
| | | | | | | | | | | | | | | | | | | | | | | | scan-build recognizes that in theory there could be a numeric overflow here. This can't numeric overflow can't trigger IRL, since in order to fill a hash table with more than P=402653189 buckets with a reasonable load factor of 0.5, we'd first have P/2 malloced objects to put in it--- and each of those would have to take take at least sizeof(void*) worth of malloc overhead plus sizeof(void*) content, which would run you out of address space anyway on a 32-bit system.
| * scan-build: bulletproof last-chance errormsg generation in rendservice.cNick Mathewson2014-04-18
| | | | | | | | | | | | | | If 'intro' is NULL in these functions, I'm pretty sure that the error message must be set before we hit the end. But scan-build doesn't notice that, and is worried that we'll do a null-pointer dereference in the last-chance errormsg generation.
| * scan-build: Have clear_pending_onions walk the lists more obviouslyNick Mathewson2014-04-18
| | | | | | | | | | | | | | As it stands, it relies on the fact that onion_queue_entry_remove will magically remove each onionskin from the right list. This patch changes the logic to be more resilient to possible bugs in onion_queue_entry_remove, and less confusing to static analysis tools.
| * scan-build: in cpuworker, initialize tv_startNick Mathewson2014-04-18
| | | | | | | | | | | | | | scan-build doesn't realize that a request can't be timed at the end unless it's timed at the start, and so it's not possible for us to be subtracting start from end without start being set. Nevertheless, let's not confuse it.
| * scan-build: get_proxy_addrport should always set its outputsNick Mathewson2014-04-18
| | | | | | | | | | | | | | When get_proxy_addrport returned PROXY_NONE, it would leave addr/port unset. This is inconsistent, and could (if we used the function in a stupid way) lead to undefined behavior. Bugfix on 5b050a9b0, though I don't think it affects tor-as-it-is.
| * scan-build: when logging a path length, check build_state.Nick Mathewson2014-04-18
| | | | | | | | | | | | Throughout circuituse, when we log about a circuit, we log its desired path length from build_state. scan-build is irrationally concerned that build_state might be NULL.
| * scan-build: Be consistent with a needless check in circuitmux.cNick Mathewson2014-04-18
| | | | | | | | | | | | | | | | | | In circuitmux_detach_all_circuits, we check whether an HT iterator gives us NULL. That should be impossible for an HT iterator. But our checking it has confused scan-build (justly) into thinking that our later use of HT_NEXT_RMV might not be kosher. I'm taking the coward's route here and strengthening the check. Bugfix on fd31dd44. (Not a real bug though)
| * scan-build: fix a crash-on-fail possibility in test_policy.cNick Mathewson2014-04-18
| |
| * scan-build: Avoid crashing on BUG in circuit_get_by_rend_token_and_purposeNick Mathewson2014-04-18
| | | | | | | | | | | | | | If we fail in circuit_get_by_rend_token_and_purpose because the circuit has no rend_info, don't try to reference fiends from its rend_info when logging an error. Bugfix on 8b9a2cb68, which is going into Tor 0.2.5.4-alpha.
| * scan-build: circuit_cpath_support_ntor had a dead initializationNick Mathewson2014-04-18
| | | | | | | | We were initializing cpath twice, which doesn't make sense.
| * scan-build: check impossible null-pointer case in buffers.cNick Mathewson2014-04-18
| | | | | | | | | | | | When maintaining buffer freelists, we don't skip more than there are, so (*chp) can't be null to begin with. scan-build has no way to know that.