aboutsummaryrefslogtreecommitdiff
path: root/changes
Commit message (Expand)AuthorAge
...
| * | | | | | | | | Warn and ignore the MyFamily setting if BridgeRelay is also set•••Roger explains at http://archives.seul.org/tor/talk/Nov-2011/msg00209.html : "If you list your bridge as part of your family in the relay descriptor, then everybody can learn your bridge fingerprint, and they can look up your bridge's descriptor (and thus location) at the bridge directory authority." Now, we can't stop relays from listing bridges, but we can warn when we notice a bridge listing anybody, which might help some. This fixes bug 4657; it's a fix on 0.2.0.3-alpha, where bridges were first introduced. Nick Mathewson2012-05-24
| |/ / / / / / / /
* | | | | | | | | Merge remote-tracking branch 'public/bug4710'Nick Mathewson2012-06-05
|\ \ \ \ \ \ \ \ \
| * | | | | | | | | Report EADDRNOTAVAIL and EADDRINUSE as RESOURCELIMIT•••These errors usually mean address exhaustion; reporting them as such lets clients adjust their load to try other exits. Fix for bug 4710; bugfix on 0.1.0.1-rc, which started using END_STREAM_REASON_RESOURCELIMIT. Nick Mathewson2012-05-16
| |/ / / / / / / /
* | | | | | | | | Merge origin/maint-0.2.2 for 6007_strict•••This code shouldn't have any effect in 0.2.3, since we already accept (and handle) data received while we are expecting a renegotiation. (That's because the 0.2.3.x handshake _does_ have data there instead of the renegotiation.) I'm leaving it in anyway, since if it breaks anything, we'll want it broken in master too so we can find out about it. I added an XXX023 comment so that we can come back later and fix that. Nick Mathewson2012-06-04
|\ \ \ \ \ \ \ \ \ | | |_|/ / / / / / | |/| | | | | | |
| * | | | | | | | Merge remote-tracking branch 'public/bug6007_strict_squashed' into maint-0.2.2Nick Mathewson2012-06-04
| |\ \ \ \ \ \ \ \
| | * | | | | | | | Kill non-open OR connections with any data on their inbufs.•••This fixes a DoS issue where a client could send so much data in 5 minutes that they exhausted the server's RAM. Fix for bug 5934 and 6007. Bugfix on 0.2.0.20-rc, which enabled the v2 handshake. Nick Mathewson2012-06-04
* | | | | | | | | | Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson2012-06-04
|\| | | | | | | | | | |_|_|/ / / / / / |/| | | | | | | |
| * | | | | | | | Merge remote-tracking branch 'public/bug6033' into maint-0.2.2Nick Mathewson2012-06-04
| |\ \ \ \ \ \ \ \
| | * | | | | | | | Work around a bug in OpenSSL 1.0.1's TLS 1.1 and TLS 1.2 support•••It appears that when OpenSSL negotiates a 1.1 or 1.2 connection, and it decides to renegotiate, the client will send a record with version "1.0" rather than with the current TLS version. This would cause the connection to fail whenever both sides had OpenSSL 1.0.1, and the v2 Tor handshake was in use. As a workaround, disable TLS 1.1 and TLS 1.2. When a later version of OpenSSL is released, we can make this conditional on running a fixed version of OpenSSL. Alternatively, we could disable TLS 1.1 and TLS 1.2 only on the client side. But doing it this way for now means that we not only fix TLS with patched clients; we also fix TLS when the server has this patch and the client does not. That could be important to keep the network running well. Fixes bug 6033. Nick Mathewson2012-06-02
| | | |/ / / / / / | | |/| | | | | |
* | | | | | | | | Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson2012-05-31
|\| | | | | | | |
| * | | | | | | | add changes file for bug 5283•••I called it a bugfix on 0.2.0.10-alpha, since git commit e5885deab is where we introduced anonymized begin_dir connections. Roger Dingledine2012-05-31
| | |/ / / / / / | |/| | | | | |
* | | | | | | | Merge remote-tracking branch 'public/bug5089'•••Conflicts: src/test/test_util.c Merge the unit tests; I added some when I did this branch against 0.2.2, and then the test format changed and master added more tests. Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \
| * | | | | | | | Have get_parent_directory() handle "/foo" and "/" correctly.•••The parent of "/foo" is "/"; and "/" is its own parent. This would cause Tor to fail if you tried to have a PF_UNIX control socket in the root directory. That would be a stupid thing to do for other reasons, but there's no reason to fail like _this_. Bug found by Esteban Manchado Velázquez. Fix for bug 5089; bugfix on Tor 0.2.2.26-beta. Unit test included. Nick Mathewson2012-05-24
| | |/ / / / / / | |/| | | | | |
* | | | | | | | Merge remote-tracking branch 'public/bug5374'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \
| * | | | | | | | Delay getsockname() call until after connect() is done•••On Windows, getsockname() on a nonblocking apparently won't work until the connection is done connecting. On XP, it seems to fail by reporting success and declaring that your address is INADDR_ANY. On the Win8 preview, though, it fails more loudly and says WSAEINVAL. Fix for bug 5374; bugfix on 0.1.1.14-alpha. Nick Mathewson2012-05-24
| |/ / / / / / /
* | | | | | | | Merge remote-tracking branch 'linus/bug4873_ln'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \
| * | | | | | | | Change an assertion into a warning in connection_or_handle_event_cb()•••Possibly addresses bug 4873, though IMO that's likely not a real bug: it seems likely to have been an ssl version mismatch. Nick Mathewson2012-05-24
* | | | | | | | | Merge remote-tracking branch 'public/bug5541_v2'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \
| * | | | | | | | | Prevent an (impossible) null-pointer dereference in connection_edge_process_r...•••This would happen if the deliver window could become negative because of an nonexistent connection. (Fortunately, _that_ can't occur, thanks to circuit_consider_sending_sendme. Still, if we change our windowing logic at all, we won't want this to become triggerable.) Fix for bug 5541. Bugfix on 4a66865d, back from 0.0.2pre14. asn found this. Nice catch, asn! Nick Mathewson2012-05-15
* | | | | | | | | | Merge remote-tracking branch 'public/close_file_mapping'•••Conflicts: src/common/compat.h Conflict was between replacement of MS_WINDOWS with _WIN32 in master, and with removal of file_handle from tor_mmap_t struct in close_file_mapping branch (for bug 5951 fix). Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | Close the windows file handle after CreateFileMapping; it isn't needed•••I did the changes file; the rest came pseudonymously Nick Mathewson2012-05-23
| | |_|/ / / / / / / | |/| | | | | | | |
* | | | | | | | | | Merge remote-tracking branch 'linus/bug5355_ln'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | Stop using MAX_PATH, it might not be defined•••This broke compilation on Hurd Sebastian Hahn2012-03-10
* | | | | | | | | | | Merge remote-tracking branch 'public/bug1938'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | When downloading bridge descs from a bridge authority, always be anonymousNick Mathewson2012-04-27
* | | | | | | | | | | | Merge remote-tracking branch 'public/bug2954_more'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | Abort writing cached-microdescs if a failed write has occurred.•••Bug 2954; fix on 0.2.2.6-alpha. Nick Mathewson2012-05-24
| | |_|_|_|/ / / / / / / | |/| | | | | | | | | |
* | | | | | | | | | | | Merge remote-tracking branch 'public/bug3196'Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | Raise thresholds for declaring bootstrapping complete.•••This patch changes the total serverdesc threshold from 25% to 75% and the exit threshold from 33% to 50%. The goal is to make initially constructed circuits less horrible, and to make initial less awful (since fetching directory information in parallel with whatever the user is trying to do can hurt their performance). Implements ticket 3196. Nick Mathewson2012-05-11
| | |_|_|_|_|_|_|_|_|/ / | |/| | | | | | | | | |
* | | | | | | | | | | | Merge remote-tracking branch 'origin/maint-0.2.2'•••(For bug 5969 fix) Nick Mathewson2012-05-31
|\ \ \ \ \ \ \ \ \ \ \ \ | | |_|_|_|_|_|/ / / / / | |/| | | | | | | | | |
| * | | | | | | | | | | Add __attribute__(format)s for our varargs printf/scanf wrappers•••It turns out that if you set the third argument of __attribute__(format) to 0, GCC and Clang will check the format argument without expecting to find variadic arguments. This is the correct behavior for vsnprintf, vasprintf, and vscanf. I'm hoping this will fix bug 5969 (a clang warning) by telling clang that the format argument to tor_vasprintf is indeed a format string. Nick Mathewson2012-05-30
| | |_|_|_|/ / / / / / | |/| | | | | | | | |
* | | | | | | | | | | Merge branch 'bug5604'Nick Mathewson2012-05-30
|\ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | If DisableNetwork, don't even try to open non-controller listeners•••Fix for 5604; bugfix on 0.2.3.9-alpha, which introduced DisableNetwork. Nick Mathewson2012-04-18
* | | | | | | | | | | | Merge remote-tracking branch 'public/bug5954'Nick Mathewson2012-05-30
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | New "GETINFO dormant" to report whether Tor has gone idle•••Torbutton needs this; see bug 5954 and 4718. Nick Mathewson2012-05-24
| | |/ / / / / / / / / / | |/| | | | | | | | | |
* | | | | | | | | | | | Merge remote-tracking branch 'linus/bug4369'Nick Mathewson2012-05-30
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | Close OR connections that send junk before AUTHORIZE/VERSIONS•••Fix for 4369. Nick Mathewson2012-04-27
| | |_|_|_|/ / / / / / / | |/| | | | | | | | | |
* | | | | | | | | | | | Fix clang 3.1 compile warning in crypto.c•••(Tweaked by nickm) Sebastian Hahn2012-05-30
* | | | | | | | | | | | Fix a typo in changes/bug5916Nick Mathewson2012-05-30
* | | | | | | | | | | | Fix a hard-to-trigger memory leak in launch_resolve•••To hit this leak, you need to be a relay that gets a RESOLVE request or an exit node getting a BEGIN or RESOLVE request. You must either have unconfigured (and unconfigurable) nameservers, or you must have somehow set DisableNetwork after a network request arrived but before you managed to process it. So, I doubt this is reached often. Still, a leak's a leak. Fix for bug 5916; bugfix on 0.2.3.9-alpha and 0.1.2.1-alpha. Nick Mathewson2012-05-18
| |_|_|_|/ / / / / / / |/| | | | | | | | | |
* | | | | | | | | | | Ignore unknown lines from managed proxies.George Kadianakis2012-05-18
* | | | | | | | | | | Document that the ORPort flags apply to DirPort too. (thanks, Roger.)Nick Mathewson2012-05-16
* | | | | | | | | | | 5597: document new ORPort optionsNick Mathewson2012-05-16
* | | | | | | | | | | Clarify SessionGroup documentation. Bug 5437.Nick Mathewson2012-05-16
* | | | | | | | | | | Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson2012-05-16
|\ \ \ \ \ \ \ \ \ \ \ | | |/ / / / / / / / / | |/| | | | | | | | |
| * | | | | | | | | | Remove more dubiosity in struct tm handling. related to bug5346Nick Mathewson2012-05-16
| * | | | | | | | | | changes file for branch bug5346Nick Mathewson2012-05-16
* | | | | | | | | | | Merge remote-tracking branch 'public/bug5139'Nick Mathewson2012-05-16
|\ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | Bridges should never set the send_unencrypted flag on any of their descs•••Fix for bug 5139. Nick Mathewson2012-04-27
| | |/ / / / / / / / / | |/| | | | | | | | |
* | | | | | | | | | | Add changes file for bug 4108Nick Mathewson2012-05-16
generated by cgit v1.2.3 (git 2.48.1) at 2025-04-04 18:55:26 +0000