| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| |\ \ \
| |/ /
|/| /
| |/ |
|
| | |
| |
| |
| | |
Bugfix on 0.2.2.29-beta; partial fix for 4533; found by wanoskarnet
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
These were found by looking for tor_snprintf() instances that were
preceeded closely by tor_malloc(), though I probably converted some
more snprintfs as well.
(In every case, make sure that the length variable (if any) is
removed, renamed, or lowered, so that anything else that might have
assumed a longer buffer doesn't exist.)
|
| | | |
|
| | |
| |
| |
| | |
fixes 4837
|
| |\ \
| | |
| | |
| | |
| | | |
Conflicts:
src/or/rendclient.c
|
| | | | |
|
| |\ \ \
| | |/
| |/| |
|
| | |\ \ |
|
| | | | | |
|
| |\ \ \ \ |
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Also, have tor_disable_debugger_attach() return a tristate of
success/failure/don't-know-how , and only log appropriately.
|
| | | | | | |
|
| |\ \ \ \ \ |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
To solve bug 4779, we want to avoid OpenSSL 1.0.0's counter mode.
But Fedora (and maybe others) lie about the actual OpenSSL version,
so we can't trust the header to tell us if it's safe.
Instead, let's do a run-time test to see whether it's safe, and if
not, use our built-in version.
fermenthor contributed a pretty essential fixup to this patch. Thanks!
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
We require openssl 0.9.7 or later, and RAND_poll() was first added in
openssl 0.9.6.
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
It's a pain to convert 0x0090813f to and from 0.9.8s-release on the
fly, so these macros should help.
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
MAX_DNS_LABEL_SIZE was only defined for old versions of openssl, which
broke the build. Spotted by xiando. Fixes bug 4413; not in any released
version.
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
The thing that's limited to 63 bytes is a "label", not a hostname.
Docment input constraints and behavior on bogus inputs.
Generally it's better to check for overflow-like conditions before
than after. In this case, it's not a true overflow, so we're okay,
but let's be consistent.
pedantic less->fewer in the documentation
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Fixes bug 4413; bugfix on xxxx.
Hostname components cannot be larger than 63 characters.
This simple check makes certain randlen cannot overflow rand_bytes_len.
|
| |\ \ \ \ \ \
| | |_|/ / /
| |/| | | | |
|
| | | | | | | |
|
| |\| | | | | |
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
he disagrees about what the code that we decided not to use would do
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
ssl_state_to_string() function.
|
| |\| | | | | |
|
| | |\ \ \ \ \
| | | |_|/ /
| | |/| | | |
|
| | | | | | | |
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
This is to address bug 4822, and CVE-2011-4576.
|
| | |_|_|/ /
|/| | | | |
|
| | | | | |
| | | | |
| | | | |
| | | | | |
Also fix a comment typo
|
| | | | | | |
|
| | | | | | |
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This resolves bug1827, and lets us avoid freaking people out.
Later, we can use it to get a complete list of our interfaces.
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Previously we required 1.0.0, but there was a bug in the 1.0.0 counter
mode. Found by Pascal. Fixes bug 4779.
A more elegant solution would be good here if somebody has time to code
one.
|
| |\| | | | |
|
| | | | | |
| | | | |
| | | | |
| | | | | |
Bug caught and patch provided by Vektor. Fixes bug 4778.t
|
| | |_|/ /
|/| | |
| | | |
| | | |
| | | | |
Modifies filenames which do not start with '/' or '.' on non-Windows
platforms; uses _fullpath on Windows.
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
If a relay is dormant at startup, it will call init_keys before
crypto_set_tls_dh_prime. This is bad. Let's make it not so bad, because
someday it *will* happen again.
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This re-applies a check-spaces fix that was part of
7920ea55b8d994268d2b07f27316b0f34d8f27e5 and got reverted along with the
rest of that commit in df1f72329acf5f555618a5309f2621e584c0d763.
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This re-applies 40a87c4c08be0cdd87a3df283f285b3c2a0c8445 which got
accidentally reverted in 75134c6c86e54c10fd9e11c4345aadcdabc0f8fb.
Thanks asn for spotting this.
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This re-applies f77f9bddb8bf0dd6e9c3e0d94269aa23f459a272 which got
accidentally reverted in 53f535aeb863204470379b2da4631770fa10b13f.
Thanks asn for spotting this.
|
| | | | |
| | | |
| | | |
| | | | |
This reverts commit 69a821ea1c9357acdd5aa1c9e23fd030b01cb5a9.
|
| | | | |
| | | |
| | | |
| | | | |
This reverts commit 4fd79f9def28996552b5739792f428c2514de1f6.
|
| | | | |
| | | |
| | | |
| | | | |
This reverts commit ecd239e3b577705e0669d47293a2e755cf93cec0.
|
| | | | |
| | | |
| | | |
| | | | |
This reverts commit 340809dd224b244675496e301d3ba154a6fe68d0.
|
| | | | |
| | | |
| | | |
| | | | |
This reverts commit e2b3527106e0747f652e2f28fa087d9874e0e2ce.
|