| Commit message (Expand) | Author | Age |
|---|
| * | Merge remote-tracking branch 'public/easy_ratelim'•••Conflicts:
src/or/connection.c
| Nick Mathewson | 2013-02-07 |
| |\ |
|
| | * | Wrapper function for the common rate-limited-log pattern. | Nick Mathewson | 2012-12-26 |
| * | | Merge remote-tracking branch 'public/bug7816_023'•••Conflicts:
src/common/util.c
| Nick Mathewson | 2013-02-07 |
| |\ \ |
|
| | * | | Fix various small leaks on error cases•••Spotted by coverity, bug 7816, bugfix on various versions.
| Nick Mathewson | 2012-12-28 |
| * | | | Tolerate curve25519 backends where the high bit of the pk isn't ignored•••Right now, all our curve25519 backends ignore the high bit of the
public key. But possibly, others could treat the high bit of the
public key as encoding out-of-bounds values, or as something to be
preserved. This could be used to distinguish clients with different
backends, at the cost of killing a circuit.
As a workaround, let's just clear the high bit of each public key
indiscriminately before we use it. Fix for bug 8121, reported by
rransom. Bugfix on 0.2.4.8-alpha.
| Nick Mathewson | 2013-02-07 |
| * | | | Fix compilation with --disable-curve25519 option•••The fix is to move the two functions to format/parse base64
curve25519 public keys into a new "crypto_format.c" file. I could
have put them in crypto.c, but that's a big file worth splitting
anyway.
Fixes bug 8153; bugfix on 0.2.4.8-alpha where I did the fix for 7869.
| Nick Mathewson | 2013-02-04 |
| * | | | fix wide lines from tor_log rename | Nick Mathewson | 2013-02-01 |
| * | | | Fix a silly mistake in the tor_mathlog() documentation. Give it a unit test. | Nick Mathewson | 2013-02-01 |
| * | | | Remove old wrapper code and defines for keeping log() and log(3) apart•••This is the non-automated portion of bug 7599.
| Nick Mathewson | 2013-02-01 |
| * | | | Rename log() to tor_log() for logging•••This is meant to avoid conflict with the built-in log() function in
math.h. It resolves ticket 7599. First reported by dhill.
This was generated with the following perl script:
#!/usr/bin/perl -w -i -p
s/\blog\(LOG_(ERR|WARN|NOTICE|INFO|DEBUG)\s*,\s*/log_\L$1\(/g;
s/\blog\(/tor_log\(/g;
| Nick Mathewson | 2013-02-01 |
| * | | | typo in crypto_curve25519.c comment, spotted by rransom | Nick Mathewson | 2013-01-31 |
| * | | | whitespace fix | Nick Mathewson | 2013-01-31 |
| * | | | Detect platforms where memset(0) doesn't set doubles to 0.0.•••This is allowed by the C statndard, which permits you to represent
doubles any way you like, but in practice we have some code that
assumes that memset() clears doubles in structs. Noticed as part of
7802 review; see 8081 for more info.
| Nick Mathewson | 2013-01-29 |
| * | | | More of b30d06255c24165 for #6826: fix compat_libevent compilation•••It looks like there was a compilation error for 6826 on some
platforms. Removing even more now-uncallable code to handle detecting
libevent versions before 1.3e.
Fixes bug 8012; bug not in any released Tor.
| Nick Mathewson | 2013-01-21 |
| * | | | Replace base-{16,32,64} with base{16,32,64} in the code•••Patch from onizuka generated with
find ./ -type f -perm -u+rw -exec sed -ri 's/(Base)-(16|32|64)/\1\2/gi' {} \;
Fixes issue 6875 on Tor.
| Nick Mathewson | 2013-01-17 |
| * | | | Add ntor-related modules to the Makefiles.nmake | Nick Mathewson | 2013-01-17 |
| * | | | Even more code-removal for 6826•••(Pull on a thread and the whole sweater unravels.)
| Nick Mathewson | 2013-01-17 |
| * | | | Merge branch 'bug6826_squashed' | Nick Mathewson | 2013-01-17 |
| |\ \ \ |
|
| | * | | | Drop detection logic for pre-1.3 busted libevents•••This won't actually break them any worse than they were broken before:
it just removes a set of warnings that nobody was actually seeing, I
hope.
Closes 6826
| Nick Mathewson | 2013-01-17 |
| * | | | | Merge remote-tracking branch 'public/bug6302' | Nick Mathewson | 2013-01-17 |
| |\ \ \ \ |
|
| | * | | | | Refactor: Use SOCK_ERRNO to avoid some #ifdef _WIN32s•••Fixes ticket 6302
| Nick Mathewson | 2013-01-16 |
| | |/ / / |
|
| * | | | | Merge branch '024_msvc_squashed'•••Conflicts:
src/or/or.h
srcwin32/orconfig.h
| Nick Mathewson | 2013-01-16 |
| |\ \ \ \ |
|
| | * | | | | Fix an instance of snprintf; don't use _snprintf directly | Nick Mathewson | 2013-01-16 |
| | * | | | | When building with MSVC, call every enum bitfield unsigned•••Fixes bug 7305.
| Nick Mathewson | 2013-01-16 |
| | * | | | | Fix a const warning under msvc | Nick Mathewson | 2013-01-16 |
| | * | | | | Add clean target and test subdir to makefile.nmake | Nick Mathewson | 2013-01-16 |
| | * | | | | Add missing includes and libs to makefile.nmake•••Fixes bugs 7312 and 7310.
| Nick Mathewson | 2013-01-16 |
| | * | | | | Define SIZEOF_INTPTR_T when defining replacement intptr_t•••Fixes bug 7669
| Nick Mathewson | 2013-01-16 |
| * | | | | | Rename *_isin to *_contains•••This is an automatically generated commit, from the following perl script,
run with the options "-w -i -p".
s/smartlist_string_num_isin/smartlist_contains_int_as_string/g;
s/smartlist_string_isin((?:_case)?)/smartlist_contains_string$1/g;
s/smartlist_digest_isin/smartlist_contains_digest/g;
s/smartlist_isin/smartlist_contains/g;
s/digestset_isin/digestset_contains/g;
| Nick Mathewson | 2013-01-16 |
| | |/ / /
|/| | | |
|
| * | | | | Check for nacl headers in nacl/ subdir•••Fix for bug 7972
| Nick Mathewson | 2013-01-16 |
| * | | | | Update the copyright date to 201. | Nick Mathewson | 2013-01-16 |
| * | | | | Clean up odds and ends | Roger Dingledine | 2013-01-15 |
| * | | | | Merge branch 'bug7869' | Nick Mathewson | 2013-01-14 |
| |\ \ \ \ |
|
| | * | | | | Make the = at the end of ntor-onion-key optional.•••Makes bug 7869 more easily fixable if we ever choose to do so.
| Nick Mathewson | 2013-01-05 |
| * | | | | | Handle EWOULDBLOCK as EAGAIN if they happen to be different.•••Fixes bug 7935. Reported by 'oftc_must_be_destroyed'.
| Nick Mathewson | 2013-01-11 |
| |/ / / / |
|
| * | | | | Merge branch 'ntor-resquashed'•••Conflicts:
src/or/cpuworker.c
src/or/or.h
src/test/bench.c
| Nick Mathewson | 2013-01-03 |
| |\ \ \ \ |
|
| | * | | | | Check all crypto_rand return values for ntor. | Nick Mathewson | 2013-01-03 |
| | * | | | | Use safe_mem_is_zero for checking curve25519 output for 0-ness•••This should make the intent more explicit. Probably needless, though.
| Nick Mathewson | 2013-01-03 |
| | * | | | | Implement a constant-time safe_mem_is_zero. | Nick Mathewson | 2013-01-03 |
| | * | | | | Make libcurve25519_donna get built as a .a•••This lets us give it compiler flags differing from the rest of
libor-crypto.a
| Nick Mathewson | 2013-01-03 |
| | * | | | | Move curve25519 keypair type to src/common; give it functions•••This patch moves curve25519_keypair_t from src/or/onion_ntor.h to
src/common/crypto_curve25519.h, and adds new functions to generate,
load, and store keypairs.
| Nick Mathewson | 2013-01-02 |
| | * | | | | Refactor strong os-RNG into its own function•••Previously, we only used the strong OS entropy source as part of
seeding OpenSSL's RNG. But with curve25519, we'll have occasion to
want to generate some keys using extremely-good entopy, as well as the
means to do so. So let's!
This patch refactors the OS-entropy wrapper into its own
crypto_strongest_rand() function, and makes our new
curve25519_secret_key_generate function try it as appropriate.
| Nick Mathewson | 2013-01-02 |
| | * | | | | Add a wrapper around, and test and build support for, curve25519.•••We want to use donna-c64 when we have a GCC with support for
64x64->uint128_t multiplying. If not, we want to use libnacl if we
can, unless it's giving us the unsafe "ref" implementation. And if
that isn't going to work, we'd like to use the
portable-and-safe-but-slow 32-bit "donna" implementation.
We might need more library searching for the correct libnacl,
especially once the next libnacl release is out -- it's likely to have
bunches of better curve25519 implementations.
I also define a set of curve25519 wrapper functions, though it really
shouldn't be necessary.
We should eventually make the -donna*.c files get build with
-fomit-frame-pointer, since that can make a difference.
| Nick Mathewson | 2013-01-02 |
| | * | | | | Add a data-invariant linear-search map structure•••I'm going to use this for looking op keys server-side for ntor.
| Nick Mathewson | 2013-01-02 |
| | * | | | | Implement HKDF from RFC5869•••This is a customizable extract-and-expand HMAC-KDF for deriving keys.
It derives from RFC5869, which derives its rationale from Krawczyk,
H., "Cryptographic Extraction and Key Derivation: The HKDF Scheme",
Proceedings of CRYPTO 2010, 2010, <http://eprint.iacr.org/2010/264>.
I'm also renaming the existing KDF, now that Tor has two of them.
This is the key derivation scheme specified in ntor.
There are also unit tests.
| Nick Mathewson | 2012-12-06 |
| | * | | | | Add a crypto_dh_dup, for benchmark support | Nick Mathewson | 2012-12-06 |
| * | | | | | Fix a couple of harmless clang3.2 warnings | Sebastian Hahn | 2012-12-31 |
| | |_|_|/
|/| | | |
|
| * | | | | One last fix for a warning on non-EC systems | Nick Mathewson | 2012-12-25 |
| * | | | | Be more noncomittal about performance improvement of uint128 backend. | Nick Mathewson | 2012-12-25 |
| * | | | | Make ECDHE group configurable: 224 for public, 256 for bridges (default) | Nick Mathewson | 2012-12-25 |