| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
| |
It's a bit confusing to have a loop where another function,
confusingly named "*_free", is responsible for advancing the loop
variable (or rather, for altering a structure so that the next time
the loop variable's initializer is evaluated it evaluates to something
different.)
Not only has this confused people: it's also confused coverity scan.
Let's fix that.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The OutboundBindAddress option is useful for making sure that all of
your outbond connections use a given interface. But when connecting
to 127.0.0.1 (or ::1 even) it's important to actually have the
connection come _from_ localhost, since lots of programs running on
localhost use the source address to authenticate that the connection
is really coming from the same host.
Our old code always bound to OutboundBindAddress, whether connecting
to localhost or not. This would potentially break DNS servers on
localhost, and socks proxies on localhost. This patch changes the
behavior so that we only look at OutboundBindAddress when connecting
to a non-loopback address.
|
| |
|
|
|
|
|
| |
This shouldn't be necessary, but apparently the Android cross-compiler
doesn't respect -I as well as it should. (-I is supposed to add to the
*front* of the search path. Android's gcc wrapper apparently likes to add to
the end. This is broken, but we need to work around it.)
|
| |\ |
|
| | |
| |
| |
| | |
Big thanks to nickm and arma for helping me with this!
|
| | | |
|
| |\| |
|
| | |
| |
| |
| |
| | |
Fixed bug 1022; This isn't actually a live bug in Tor, since in Tor
we never generate large DNS replies.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This patch adds a new compat_libevent.[ch] set of files, and moves our
Libevent compatibility and utilitity functions there. We build them
into a separate .a so that nothing else in src/commmon depends on
Libevent (partially fixing bug 507).
Also, do not use our own built-in evdns copy when we have Libevent
2.0, whose evdns is finally good enough (thus fixing Bug 920).
|
| |\|
| |
| |
| |
| |
| |
| |
| | |
Conflicts:
ChangeLog
configure.in
contrib/tor-mingw.nsi.in
src/win32/orconfig.h
|
| | | |
|
| |/
|
|
|
|
|
|
|
| |
Really, our idiocy was that we were calling event_set() on the same
event more than once, which sometimes led to us calling event_set() on
an event that was already inserted, thus making it look uninserted.
With this patch, we just initialize the timeout events when we create
the requests and nameservers, and we don't need to worry about
double-add and double-del cases at all.
|
| |
|
|
|
|
| |
Basically, all this means is downgrading our warning messages to debug
messages, since the bug workaround code here is adequate to stop the
bug.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
If we ever add an event, then set it, then add it again, there will be
now two pointers to the event in the event base. If we delete one and
free it, the first pointer will still be there, and possibly cause a
crash later.
This patch adds detection for this case to the code paths in
eventdns.c, and works around it. If the warning message ever
displays, then a cleverer fix is in order.
{I am not too confident that this *is* the fix, since bug 957 is very
tricky. If it is, it is a bugfix on 0.2.0.}
|
| |
|
|
| |
svn:r18683
|
| |
|
|
| |
svn:r18682
|
| |
|
|
|
|
| |
explain why it was erroneous.
svn:r18494
|
| |
|
|
|
|
| |
because it was meant to make them more detectable. Change it to change stuff to garbage rather than to 0. If no bugs turn up, we can remove it in 0.2.2.x
svn:r18493
|
| |
|
|
| |
svn:r18492
|
| |
|
|
| |
svn:r18422
|
| |
|
|
| |
svn:r18421
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This resolves bug 526, wherein we would crash if the following
events occurred in this order:
A: We're an OR, and one of our nameservers goes down.
B: We launch a probe to it to see if it's up again. (We do this hourly
in steady-state.)
C: Before the probe finishes, we reconfigure our nameservers,
usually because we got a SIGHUP and the resolve.conf file changed.
D: The probe reply comes back, or times out. (There is a five-second
window for this, after B has happens).
IOW, if one of our nameservers is down and our nameserver
configuration has changed, there were 5 seconds per hour where HUPing
the server was unsafe.
Bugfix on 0.1.2.1-alpha. Too obscure to backport.
svn:r18306
|
| |
|
|
| |
svn:r18099
|
| |
|
|
|
|
| |
Fixes the bug part of bug 789.
svn:r17983
|
| |
|
|
|
|
|
|
| |
The subversion $Id$ fields made every commit force a rebuild of
whatever file got committed. They were not actually useful for
telling the version of Tor files in the wild.
svn:r17867
|
| |
|
|
| |
svn:r17851
|
| |
|
|
|
|
| |
we set sockaddr_len. Conceivably a backport candidate, though nothing has yet been sen to break.
svn:r17849
|
| |
|
|
|
|
| |
eventdns.c
svn:r17826
|
| |
|
|
| |
svn:r17825
|
| |
|
|
|
|
| |
apparently the compiler cares about there.
svn:r17808
|
| |
|
|
|
|
| |
code that does it elsewhere. Incidentally, this lets exit servers answer requests for ip6.arpa addresses.
svn:r17707
|
| |
|
|
| |
svn:r17680
|
| |
|
|
| |
svn:r17662
|
| |
|
|
|
|
| |
configured DNS server. Bugfix on 0.2.1.5-alpha. Possible fix for part of 813/868. Spotted by coderman
svn:r17569
|
| |
|
|
|
|
| |
nameserver can be added. Log more useful info about what exactly is failing when we fail to add a nameserver.
svn:r17368
|
| |
|
|
|
|
| |
when resolving large names. Add a cfg option to disable it, since apparently 3/10 of a percent of servers get it wrong.
svn:r17171
|
| |
|
|
| |
svn:r17050
|
| |
|
|
|
|
| |
_questions_ section of the replies. Rejecting answers whether the _answers_ section did not match made us reject A records waiting at the end of a CNAME record. Bug 823.
svn:r16933
|
| |
|
|
| |
svn:r16759
|
| |
|
|
| |
svn:r16674
|
| |
|
|
| |
svn:r16627
|
| |
|
|
|
|
|
| |
Make dns resolver code more robust: handle nameservers with IPv6 addresses, make sure names in replies match requested names, make sure origin address of reply matches the address we asked.
svn:r16621
|
| |
|
|
|
|
|
| |
Fix the last of the -Wshorten-64-to-32 warnings.
svn:r13696
|
| |
|
|
|
|
|
| |
Fix all -Wshorten-64-to-32 warnings that appear on my macbook.
svn:r13662
|
| |
|
|
|
|
|
| |
Oops. not supposed to use tor_assert() in eventdns.c
svn:r13622
|
| |
|
|
|
|
|
| |
Make the last of the veracode warning issues get fixed.
svn:r13620
|
| |
|
|
|
|
|
| |
Fix all but 2 DOCDOC items; defer many XXX020s (particularly those where fixing them would fix no bugs at the risk of introducing some bugs).
svn:r13529
|
| |
|
|
|
|
|
| |
Fix some warnings identified by building with -D_FORTIFY_SOURCE=2. Remove a redundant (and nuts) definition of _FORTIFY_SOURCE from eventdns.c.
svn:r13424
|
| |
|
|
|
|
|
| |
Remove or downgrade some XXX020 items.
svn:r13388
|
| |
|
|
|
|
|
| |
Fixes to more anonymously-reported typos and logic errors.
svn:r13136
|