| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
| |
Patch from Fabian Keil: Fix return statement in get_pf_socket()
svn:r9020
|
| |
|
|
| |
svn:r9015
|
| |
|
|
|
|
|
|
| |
Tweaks to test-connection patch: use ".noconnect" instead of ".test" (since there are lots of ways to test things). Use a regular sequence of STREAM events (NEW followed by CLOSED) instead of a new event type. Make the function that checks the address be static and use const and strcasecmpend properly.
svn:r8959
|
| |
|
|
|
|
|
|
|
|
|
| |
Check in an implementation of "test" connections from Scott Squires:
these connections immediately close upon reaching Tor. They're useful
for apps that want to check whether they're talking to the same Tor as
a given controller. (I'll be tweaking this a bit before I push.)
svn:r8958
|
| |
|
|
|
|
|
| |
Patch from Zajcev Evgeny to make natd work properly (we needed to allow extra characters after the port number).
svn:r8952
|
| |
|
|
|
|
|
| |
Whitespace fixes, and clean up code from last natd patch.
svn:r8947
|
| |
|
|
|
|
|
|
|
|
| |
Add support for (Free?)BSD's natd, which was an old way to let you
have your firewall automatically redirect traffic. (Original patch
from Zajcev Evgeny, updated for 0.1.2.x by tup.)
svn:r8946
|
| |
|
|
|
|
|
| |
Patch from tup based on patch from Zajcev Evgeny: Make TransPort work even when the server wants to talk before the client.
svn:r8945
|
| |
|
|
| |
svn:r8780
|
| |
|
|
|
|
|
| |
Have connection_about_to_close use an end_reason field in edge_connection_t to tell what reason to tell the controller for closing the stream. Set end_reason in connection_edge_end, connection_mark_unattached_ap, and everwhere we set edge_has_sent_end. Add a changelog entry.
svn:r8779
|
| |
|
|
|
|
|
| |
Enable reasons for stream events in all cases but CLOSED in about_to_close_connection. That one will take a little longer.
svn:r8778
|
| |
|
|
|
|
|
| |
Start implementing reason extension for stream events to match the one one used by circuit events. (Not a complete implementation yet; actual reasons are not passed to control.c)
svn:r8777
|
| |
|
|
|
|
|
| |
Weasel correctly notes that we should not discard the return value from connection_exit_begin_con. Right now, the return value is always discardable, so this does not actually cause a bug, but it might later. So fix it.
svn:r8774
|
| |
|
|
|
|
|
| |
Fix longstanding bug in connection_exit_begin_conn(): Since connection_edge_end() exits when the connection is unattached, we were never sending RELAY_END cells back for failed RELAY_BEGIN attempts. Fix this. This might make clients that were otherwise timing out either fail faster or retry faster, which is good news for us.
svn:r8770
|
| |
|
|
|
|
|
|
| |
When the user sends a NEWNYM signal, clear the client-side DNS
cache too. Otherwise we continue to act on previous information.
svn:r8679
|
| |
|
|
|
|
|
| |
The otherwise regrettable MIPSpro C compiler warns about values set but never used, and about mixing enums and ints; these are good warnings, and so should be fixed. This removes some dead code and some potential bugs. Thanks to pnx.
svn:r8664
|
| |
|
|
| |
svn:r8633
|
| |
|
|
| |
svn:r8622
|
| |
|
|
| |
svn:r8599
|
| |
|
|
|
|
|
| |
Make a field longer to accomodate verbose nicknames; note that verbose nicknames will never reach this point.
svn:r8583
|
| |
|
|
|
|
|
| |
Fix bug 303: reject attempts to use Tor as a one-hop proxy.
svn:r8566
|
| |
|
|
|
|
|
| |
not mandatory that we use that enclave, stop wanting it.
svn:r8559
|
| |
|
|
|
|
|
| |
Differentiate more duplicated log entries
svn:r8542
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
[Needs review.] Add a BEGIN_DIR relay cell type for an easier
in-protocol way to connect to directory servers through Tor.
Previously, clients could only connect to director servers over Tor
from exit nodes, but couldn't get directory information anonymously
from a non-exit cache without getting a directory server involved.
This needs testing, and needs client-side code to actually exercise it.
svn:r8527
|
| |
|
|
|
|
|
|
|
|
| |
client asks us to resolve (not connect to) an address, and we have a
cached answer, give them the cached answer. Previously, we would give
them no answer at all.
svn:r8478
|
| |
|
|
|
|
|
| |
Debug client-side reverse dns code.
svn:r8452
|
| |
|
|
|
|
|
| |
Specify and implement SOCKS5 interface for reverse hostname lookup.
svn:r8451
|
| |
|
|
| |
svn:r8450
|
| |
|
|
|
|
|
| |
Consider non-exit servers unsuitable for RESOLVE commands.
svn:r8442
|
| |
|
|
|
|
|
| |
Fix bug 314: Instead of checking address_in_virtualrange, check addressmap_have_mapping(). This should be more accurate. [Rename to addressmap_have_mapping() from addressmap_already_mapped().]
svn:r8226
|
| |
|
|
|
|
|
|
| |
the idioms of other compare functions. hopefully i didn't
break it?
svn:r7048
|
| |
|
|
| |
svn:r7044
|
| |
|
|
|
|
|
| |
Fix verbose compilation errors; make sure transparent proxy fails when no method is configured.
svn:r7012
|
| |
|
|
|
|
|
| |
whitespace fixes
svn:r7011
|
| |
|
|
|
|
|
| |
Only open /dev/pf once.
svn:r7009
|
| |
|
|
|
|
|
| |
Distinguish netfilter vs pf at configure time based on headers, not on OS.
svn:r7008
|
| |
|
|
|
|
|
| |
Patch from Tup to add support for transparent AP connections: this basically bundles the functionality of trans-proxy-tor into the tor mainline. Now hosts with compliant pf/netfilter implementations can redirect TCP connections straight to Tor without diverting through SOCKS.
svn:r7007
|
| |
|
|
| |
svn:r6939
|
| |
|
|
|
|
|
| |
Rename some fields, compress a bitfield, and document some structs and fields
svn:r6919
|
| |
|
|
|
|
|
| |
Clean up wide lines from last patch.
svn:r6907
|
| |
|
|
|
|
|
| |
Refactor connection_t into edge, or, dir, control, and base subtypes. This might save some RAM on busy exit servers, but really matters most in terms of correctness.
svn:r6906
|
| |
|
|
|
|
|
| |
Move rend_query to origin_circuit_t where it belongs; save another 17 bytes per OR circuit.
svn:r6903
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
circuit_t into origin_circuit_t and or_circuit_t. I fixed some
segaults; there may be more. We still need to move more rendezvous
stuff into subtypes.
This is a trial run for splitting up connection_t; if the approach is
insane, please say so soon so we can do something smarter.
Also, this discards the old HALF_OPEN code, which nobody seems to
want.
svn:r6817
|
| |
|
|
| |
svn:r6791
|
| |
|
|
|
|
|
|
|
|
|
|
| |
application connections. Rather than waiting a fixed amount of
time between each retry, we wait only 5 seconds for the first,
10 seconds for the second, and 15 seconds for each retry after
that. Hopefully this will improve the expected experience.
Addresses bug 297.
svn:r6790
|
| |
|
|
|
|
|
|
| |
its webserver is misconfigured to not listen on localhost, then back
off and try connecting from somewhere else before we fail.
svn:r6783
|
| |
|
|
| |
svn:r6763
|
| |
|
|
|
|
|
| |
the node operator, since he can't do anything about it.
svn:r6733
|
| |
|
|
|
|
|
|
|
|
| |
connection_add being called with socket = -1. The only places I can see
where that happen would be if our tor_socketpair succeeds but it hands
back negative values for some of its file descriptors. Perhaps this will
produce more useful assert errors next time.
svn:r6550
|
| |
|
|
|
|
| |
minimum.
svn:r6527
|