aboutsummaryrefslogtreecommitdiff
path: root/src/or/dirserv.c
Commit message (Expand)AuthorAge
* Triage the XXX023 and XXX022 comments: postpone many.Nick Mathewson2012-06-15
* Merge remote-tracking branch 'arma/bug3886'•••Conflicts: src/or/dirserv.c Nick Mathewson2012-06-07
|\
| * let private tor networks more reliably handle hidden services•••this is a tweak on the fix in f87c6f100d (see also #2088) Roger Dingledine2011-09-01
* | Merge remote-tracking branch 'public/format_doubles'•••Conflicts: src/or/geoip.c Nick Mathewson2012-06-05
|\ \
| * | Use %f, not %lf when formatting doubles•••%f is correct; %lf is only needed with scanf. Apparently, on some old BSDs, %lf is deprecated. Didn't we do this before? Yes, we did. But we only got the instances of %lf, not more complicated things like %.5lf . This patch tries to get everything. Based on a patch for 3894 by grarpamp. Nick Mathewson2012-05-16
* | | Update copyright dates to 2012; add a few missing copyright statementsNick Mathewson2012-06-04
* | | Add about 60 more DOCDOC comments to 0.2.3•••Also, try to resolve some doxygen issues. First, define a magic "This is doxygen!" macro so that we take the correct branch in various #if/#else/#endifs in order to get the right documentation. Second, add in a few grouping @{ and @} entries in order to get some variables and fields to get grouped together. Nick Mathewson2012-06-04
* | | Merge remote-tracking branch 'public/bug2297'Nick Mathewson2012-05-16
|\ \ \
| * | | Exits don't need to fetch certs for unknown authorities•••When we started RefuseUnknownExits back in 0.2.2.11-alpha, we started making exits act like they cache directory info (since they need an up-to-date idea of who is really a router). But this included fetching needless (unrecognized) authorities' certs, which doesn't make any sense for them. This is related to, but not necessarily the same as, the issue that Ian reported for bug #2297. (This patch is based on a patch from a user who I believe has asked not to be named. If I'm wrong about that, please add the appropriate name onto the changelog.) Nick Mathewson2012-03-30
* | | | peel off some unnecessary parensRoger Dingledine2012-04-24
* | | | Obsolete GiveGuardFlagTo_CVE_2011_2768_VulnerableRelays•••Closes ticket 4572. Nick Mathewson2012-04-11
|/ / /
* | | Move router lookup to _after_ we assert that its argument is set•••A previous commit in the 5527 branch had moved router_get_mutable_by_digest(digest_rcvd) to happen before we did tor_assert(digest_rcvd), which would have defeated the purpose of the assert. Nick Mathewson2012-03-30
* | | checking "same addr/port but with nonmatching keys" is obsolete•••Specifically, I believe it dates back to when extend cells had address:port but no digest in them. The special edge case is certainly not worth the complexity these days. Roger Dingledine2012-03-29
* | | simplify furtherRoger Dingledine2012-03-29
* | | Refactor dirserv_orconn_tls_done().•••Look up the router using the digest instead of looping over all routers. Linus Nordberg2012-03-29
* | | Rename nonconformant identifiers.•••Fixes bug 4893. These changes are pure mechanical, and were generated with this perl script: /usr/bin/perl -w -i.bak -p s/crypto_pk_env_t/crypto_pk_t/g; s/crypto_dh_env_t/crypto_dh_t/g; s/crypto_cipher_env_t/crypto_cipher_t/g; s/crypto_digest_env_t/crypto_digest_t/g; s/aes_free_cipher/aes_cipher_free/g; s/crypto_free_cipher_env/crypto_cipher_free/g; s/crypto_free_digest_env/crypto_digest_free/g; s/crypto_free_pk_env/crypto_pk_free/g; s/_crypto_dh_env_get_dh/_crypto_dh_get_dh/g; s/_crypto_new_pk_env_rsa/_crypto_new_pk_from_rsa/g; s/_crypto_pk_env_get_evp_pkey/_crypto_pk_get_evp_pkey/g; s/_crypto_pk_env_get_rsa/_crypto_pk_get_rsa/g; s/crypto_new_cipher_env/crypto_cipher_new/g; s/crypto_new_digest_env/crypto_digest_new/g; s/crypto_new_digest256_env/crypto_digest256_new/g; s/crypto_new_pk_env/crypto_pk_new/g; s/crypto_create_crypto_env/crypto_cipher_new/g; s/connection_create_listener/connection_listener_new/g; s/smartlist_create/smartlist_new/g; s/transport_create/transport_new/g; Nick Mathewson2012-01-18
* | | Convert instances of tor_snprintf+strdup into tor_asprintf•••These were found by looking for tor_snprintf() instances that were followed closely by tor_strdup(), though I probably converted some other snprintfs as well. Nick Mathewson2012-01-16
* | | Provide consensus params to constrain the threshold for Fast•••resolves ticket 3946 Nick Mathewson2012-01-16
* | | Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson2011-12-28
|\| |
| * | Authorities reject insecure Tors.•••This patch should make us reject every Tor that was vulnerable to CVE-2011-0427. Additionally, it makes us reject every Tor that couldn't handle RELAY_EARLY cells, which helps with proposal 110 (#4339). Nick Mathewson2011-12-27
| * | Fix a compile warning on 64bit OS X•••Backport of 68475fc5c5a806ebbb5657de1667dab2c3e09b7c which accidentally only made it into master. Fixes bug 4547. Bug isn't in any released version. Sebastian Hahn2011-11-23
* | | Initial hacking for proposal 186.•••This code handles the new ORPort options, and incidentally makes all remaining port types use the new port configuration systems. There are some rough edges! It doesn't do well in the case where your Address says one thing but you say to Advertise another ORPort. It doesn't handle AllAddrs. It doesn't actually advertise anything besides the first listed advertised IPv4 ORPort and DirPort. It doesn't do port forwarding to them either. It's not tested either, it needs more documentation, and it probably forgets to put the milk back in the refrigerator. Nick Mathewson2011-11-30
* | | Add the ability to append and clear linelist options from cmdline•••This will be important for getting stuff to work right across zones. Nick Mathewson2011-11-27
* | | Fix a compile warning on 64bit OS XSebastian Hahn2011-11-23
* | | apparently or_options_t likes being a const in masterRoger Dingledine2011-11-21
* | | Merge branch 'maint-0.2.2'•••Conflicts: src/or/dirserv.c Roger Dingledine2011-11-21
|\| |
| * | parameterize bw cutoffs to guarantee Fast and Guard flags•••Now it will be easier for researchers to simulate Tor networks with different values. Resolves ticket 4484. Roger Dingledine2011-11-21
* | | trivial code cleanup in generate_v2_networkstatus_opinion()Roger Dingledine2011-11-16
* | | Fix a check-spaces complaintSebastian Hahn2011-11-02
* | | Resolve a crash when running as dirauth•••When we're asked for our own descriptor, don't crash. Sebastian Hahn2011-11-02
* | | Merge branch 'maint-0.2.2_secfix' into master_secfix•••Conflicts: src/common/tortls.c src/or/connection_or.c src/or/dirserv.c src/or/or.h Sebastian Hahn2011-10-27
|\| |
| * | Add option to give guard flag to relays without the CVE-2011-2768 fix•••This way, all of the DA operators can upgrade immediately, without nuking every client's set of entry guards as soon as a majority of them upgrade. Until enough guards have upgraded, a majority of dirauths should set this config option so that there are still enough guards in the network. After a few days pass, all dirauths should use the default. Robert Ransom2011-10-26
| * | Don't give the Guard flag to relays without the CVE-2011-2768 fixRobert Ransom2011-10-26
* | | Add percentiles to the desc stats reporting•••To get a better idea what's going on on Tonga, add some code to report how often the most and least frequently fetched descriptor was fetched, as well as 25, 50, 75 percentile. Also ensure we only count bridge descriptors here. Sebastian Hahn2011-10-25
* | | Add new stats type: descriptor fetch stats•••This is used for the bridge authority currently, to get a better intuition on how many descriptors are actually fetched from it and how many fetches happen in total. Implements ticket 4200. Sebastian Hahn2011-10-21
* | | remove code related to tracking descriptor serving times•••This had broken due to bitrot - it doesn't know about microdescriptors at all, and afaik hasn't generally been used in ages. Sebastian Hahn2011-10-21
* | | Fix names of functions that convert strings to addrs•••Now let's have "lookup" indicate that there can be a hostname resolution, and "parse" indicate that there wasn't. Previously, we had one "lookup" function that did resolution; four "parse" functions, half of which did resolution; and a "from_str()" function that didn't do resolution. That's confusing and error-prone! The code changes in this commit are exactly the result of this perl script, run under "perl -p -i.bak" : s/tor_addr_port_parse/tor_addr_port_lookup/g; s/parse_addr_port(?=[^_])/addr_port_lookup/g; s/tor_addr_from_str/tor_addr_parse/g; This patch leaves aton and pton alone: their naming convention and behavior is is determined by the sockets API. More renaming may be needed. Nick Mathewson2011-10-11
* | | Merge remote-tracking branch 'origin/maint-0.2.2'•••Conflicts: src/or/dirserv.c src/or/networkstatus.c Conflicts were related to routerinfo->node shift. Nick Mathewson2011-09-07
|\| |
| * | Merge remote-tracking branch 'public/bug2649_squashed' into maint-0.2.2Nick Mathewson2011-09-07
| |\ \ | | |/ | |/|
| | * Add a VoteOnHidServDirectoriesV2 configuration optionRobert Ransom2011-06-03
* | | Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson2011-07-01
|\| |
| * | Use strlcpy when copying node IDs into measured_bw_line_t•••We were using strncpy before, which isn't our style for stuff like this. This isn't a bug, though: before calling strncpy, we were checking that strlen(src) was indeed == HEX_DIGEST_LEN, which is less than sizeof(dst), so there was no way we could fail to NUL-terminate. Still, strncpy(a,b,sizeof(a)) is an idiom that we ought to squash everyplace. Fixes CID #427. Nick Mathewson2011-07-01
| |/
* | Make the get_options() return const•••This lets us make a lot of other stuff const, allows the compiler to generate (slightly) better code, and will make me get slightly fewer patches from folks who stick mutable stuff into or_options_t. const: because not every input is an output! Nick Mathewson2011-06-14
* | Merge remote-tracking branch 'origin/maint-0.2.2'•••Conflicts: src/or/dirserv.c Nick Mathewson2011-06-02
|\|
| * Fix unit test failure in dir/formats•••options->DirPort is 0 in the unit tests, so router_get_advertised_dir_port() would return 0 so we wouldn't pick a dirport. This isn't what we want for the unit tests. Fixes bug introduced in 95ac3ea5946. Sebastian Hahn2011-06-02
* | Merge remote-tracking branch 'origin/maint-0.2.2'•••The conflicts were mainly caused by the routerinfo->node transition. Conflicts: src/or/circuitbuild.c src/or/command.c src/or/connection_edge.c src/or/directory.c src/or/dirserv.c src/or/relay.c src/or/rendservice.c src/or/routerlist.c Nick Mathewson2011-05-30
|\|
| * Log descriptions of nodes, not just nicknames.•••This patch introduces a few new functions in router.c to produce a more helpful description of a node than its nickame, and then tweaks nearly all log messages taking a nickname as an argument to call these functions instead. There are a few cases where I left the old log messages alone: in these cases, the nickname was that of an authority (whose nicknames are useful and unique), or the message already included an identity and/or an address. I might have missed a couple more too. This is a fix for bug 3045. Nick Mathewson2011-05-15
* | Merge remote-tracking branch 'origin/maint-0.2.2'•••Conflicts: src/or/config.c src/or/dirserv.c src/or/or.h Nick Mathewson2011-05-13
|\|
| * Advertise correct DirPort/ORPort when configured with "auto"•••We'll eventually want to do more work here to make sure that the ports are stable over multiple invocations. Otherwise, turning your node on and off will get you a new DirPort/ORPort needlessly. Nick Mathewson2011-05-13
* | Merge remote-tracking branch 'public/bug3122_memcmp_022' into bug3122_memcmp_023•••Conflicts in various places, mainly node-related. Resolved them in favor of HEAD, with copying of tor_mem* operations from bug3122_memcmp_022. src/common/Makefile.am src/or/circuitlist.c src/or/connection_edge.c src/or/directory.c src/or/microdesc.c src/or/networkstatus.c src/or/router.c src/or/routerlist.c src/test/test_util.c Nick Mathewson2011-05-11
|\|
generated by cgit v1.2.3 (git 2.48.1) at 2025-04-09 09:20:39 +0000