| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| |
|
|
|
|
|
| |
jake through socks4 and socks5 failure codes
svn:r16651
|
| |
|
|
| |
svn:r16474
|
| |
|
|
|
|
|
| |
Fix more compile errors on BSD pf stuff. How about now?
svn:r16472
|
| |
|
|
|
|
| |
linux/netfilter_ipv4.h header properly, since we needed to have in_addr and in6_addr and __u32 defined before trying to include it. Fix that.
svn:r16460
|
| |
|
|
|
|
|
| |
Make the TransPort input code handle IPv6 addresses, I hope. This code may not compile. Possibly fix bug 796.
svn:r16459
|
| |
|
|
|
|
|
| |
Patch from Christopher Davis: open /dev/pf before dropping privileges. Fixes bug 782. Backport candidate.
svn:r16450
|
| |
|
|
|
|
|
| |
Initial conversion of uint32_t addr to tor_addr_t addr in connection_t and related types. Most of the Tor wire formats using these new types are in, but the code to generate and use it is not. This is a big patch. Let me know what it breaks for you.
svn:r16435
|
| |
|
|
|
|
|
| |
Make circid_t and streamid_t get used instead of uint16_t; it is possible we will soon want to make circid_t change to uint32_t.
svn:r16155
|
| |
|
|
|
|
|
| |
In connection_edge_destroy, send a stream status control event when we have an AP connection. Previously, we would send an event when the connection was AP and non-AP at the same time. This didn't work so well. Patch from Anonymous Remailer (Austria). Backport candidate.
svn:r16143
|
| |
|
|
|
|
|
|
|
| |
their responses even for begin_dir conns. Now clients who only ever use
begin_dir connections still have a way to learn their IP address. Should
fix bug 737. Reported by goldy.
svn:r15571
|
| |
|
|
| |
svn:r15434
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
If you have more than one bridge but don't know their keys,
you would only learn a request for the descriptor of the first one
on your list. (Tor considered launching requests for the others, but
found that it already had a connection on the way for $0000...0000
so it didn't open another.)
If you have more than one bridge but don't know their keys, and the
connection to one of the bridges failed, you would cancel all
pending bridge connections. (After all, they all have the same
digest.)
svn:r15366
|
| |
|
|
|
|
|
|
| |
> ah.
> yes, i think you're right. i was thinking 3-hop, but i think it is 1-hop.
svn:r15235
|
| |
|
|
|
|
|
| |
reaching relays.
svn:r15116
|
| |
|
|
| |
svn:r15115
|
| |
|
|
| |
svn:r15112
|
| |
|
|
|
|
| |
regardless of the setting for LeaveStreamsUnattached
svn:r14750
|
| |
|
|
|
|
|
| |
Apply patch from mwenge to fix bug 646: makes stream events for dns requests get generated more consistently.
svn:r14413
|
| |
|
|
| |
svn:r14377
|
| |
|
|
|
|
|
| |
Fix bug 641 and 650, I think.
svn:r14297
|
| |
|
|
| |
svn:r14281
|
| |
|
|
|
|
|
|
|
| |
streams. so they waited 120 seconds before timing out. this
was particularly bad during bootstrapping, if an authority is
down or not answering right.
svn:r14163
|
| |
|
|
|
|
|
| |
Fix the other lingering part of bug 617: make ClientDNSRejectInternalAddresses actually work.
svn:r14107
|
| |
|
|
|
|
|
| |
Part of fix for bug 617: allow connection_ap_handshake_attach_circuit() to mark connections, to avoid double-mark warnings. Note that this is an incomplete refactoring.
svn:r14066
|
| |
|
|
|
|
|
| |
More 64-to-32 fixes. Partial backport candidate. still not done.
svn:r13680
|
| |
|
|
| |
svn:r13663
|
| |
|
|
|
|
|
| |
Do the last part of arma's fix for bug 437: Track the origin of every addrmap, and use this info so we can remove all the trackhostexits-originated mappings for a given exit.
svn:r13660
|
| |
|
|
|
|
|
|
| |
five circuit attempts fail for a given stream. part of the fix
for bug 437. still an XXX020rc remaining.
svn:r13648
|
| |
|
|
|
|
|
| |
Resolve all DOCDOC issues, and document some other undocumented code, and fix a changelog entry.
svn:r13638
|
| |
|
|
|
|
|
|
|
| |
would stop building circuits and start refusing connections after
24 hours, since we false believed that Tor was dormant. Reported
by nwf; bugfix on 0.1.2.x.
svn:r13583
|
| |
|
|
|
|
|
| |
Fix all but 2 DOCDOC items; defer many XXX020s (particularly those where fixing them would fix no bugs at the risk of introducing some bugs).
svn:r13529
|
| |
|
|
|
|
|
| |
Re-tune mempool parametes based on testing on peacetime: use smaller chuncks, free them a little more aggressively, and try very hard to concentrate allocations on fuller chunks. Also, lots of new documentation.
svn:r13484
|
| |
|
|
|
|
|
| |
Add a bunch more code documentation; change the interface of fetch_var_cell_from_buf() so it takes the current link protocol into account and can't get confused by weird command bytes on v1 connections.
svn:r13430
|
| |
|
|
| |
svn:r13412
|
| |
|
|
|
|
|
|
|
|
| |
Tor can warn and/or refuse connections to ports commonly used with
vulnerable-plaintext protocols.
We still need to figure out some good defaults for them.
svn:r13198
|
| |
|
|
| |
svn:r13190
|
| |
|
|
|
|
|
| |
Fixes to more anonymously-reported typos and logic errors.
svn:r13136
|
| |
|
|
| |
svn:r12786
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
on but your ORPort is off.
Add a new config option BridgeRelay that specifies you want to
be a bridge relay. Right now the only difference is that it makes
you answer begin_dir requests, and it makes you cache dir info,
even if your DirPort isn't on.
Refactor directory_caches_dir_info() into some more functions.
svn:r12668
|
| |
|
|
| |
svn:r12657
|
| |
|
|
| |
svn:r12621
|
| |
|
|
| |
svn:r12607
|
| |
|
|
|
|
|
| |
Clients download and cache new hidden descriptor format.
svn:r12302
|
| |
|
|
|
|
|
|
|
|
|
|
| |
edge_connection_t: want_onehop if it must attach to a circuit with
only one hop (e.g. for the current tunnelled connections that use
begin_dir), and use_begindir if we mean to use a BEGIN_DIR relay
command to establish the stream rather than the normal BEGIN. Now
we can make anonymized begin_dir connections for (e.g.) more secure
hidden service posting and fetching.
svn:r12244
|
| |
|
|
|
|
|
| |
Turn all "Is DirPort nonzero? Because if it is, we must be a directory" logic into calls to dirserver_mode().
svn:r11817
|
| |
|
|
|
|
|
| |
Make some functions static; remove some dead code.
svn:r11750
|
| |
|
|
| |
svn:r11658
|
| |
|
|
|
|
|
|
| |
them anyway, and the code has probably rotted by now. Based on
patch from Karsten Loesing.
svn:r11496
|
| |
|
|
|
|
|
| |
Make controllers accept LF as well as CRLF. Update spec to reflect this. Remove now-dead code. Make controller warning about v0 protocol more accurate.
svn:r11299
|
| |
|
|
|
|
|
| |
Add a new ClientDNSRejectInternalAddresses option (default: on) to refuse to believe that any address can map to or from an internal address. This blocks some kinds of potential browser-based attacks, especially on hosts using DNSPort. Also clarify behavior in some comments. Backport candiate?
svn:r11287
|