| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
| |
Consider non-exit servers unsuitable for RESOLVE commands.
svn:r8442
|
| |
|
|
|
|
|
| |
Resolve bug 330: detect ISPs that want to hijack failing DNS requests and basically domain-squat the entire internet.
svn:r8440
|
| |
|
|
|
|
|
| |
Rename and document SearchDomains and ResolvConf options; warn if ServerDNSResolvConfFile is given but eventdns isnt enabled.
svn:r8439
|
| |
|
|
|
|
|
| |
Implement server-side reverse DNS using eventdns. Add an option to routerdescs so we can tell which servers have eventdns enabled.
svn:r8437
|
| |
|
|
|
|
| |
routers (on router insert): we already have a map for that. (We need to add an index field to routerinfo_t so we can figure out which point in the routerlist to replace.) Also, add a comment to routerlist.c; arma, please advise?
svn:r8432
|
| |
|
|
| |
svn:r8400
|
| |
|
|
|
|
|
|
| |
we're reachable. Spread them over 4 circuits, so hopefully a few will
be fast. This exercises our bandwidth and bootstraps us quicker.
svn:r8399
|
| |
|
|
|
|
|
|
|
|
|
|
| |
router_set_networkstatus() gets a list of status documents we asked for from
connection_dir_client_reached_eof(). However, as a cache we (sometimes?) just
ask for "all". router_set_networkstatus() would freak out over that, meaning
it would log a warning and drop the status document instead of caching it
as it is supposed to. Now we let router_set_networkstatus() know if the
data comes from an all-request so it can do the right thing.
svn:r8398
|
| |
|
|
|
|
|
| |
House style for no-args functions is old-style C, not C++
svn:r8388
|
| |
|
|
|
|
|
|
| |
Refactor dirserv_parse_fingerprint_file(fname) into dirserv_load_fingerprint_file():
There is not need to put together the path to the approved-routers file in more than one place.
svn:r8386
|
| |
|
|
| |
svn:r8354
|
| |
|
|
| |
svn:r8353
|
| |
|
|
|
|
|
| |
Make tor build with -O0
svn:r8352
|
| |
|
|
| |
svn:r8338
|
| |
|
|
|
|
|
|
| |
usb keys and other media that degrades when you write.
not implemented yet, so just a reminder.
svn:r8331
|
| |
|
|
|
|
|
|
|
| |
hang up five minutes after they begin. but directory servers
should still hang up after 5 minutes of failing to deliver
any bytes.
svn:r8271
|
| |
|
|
|
|
|
| |
Make it possible to change nameserver options while Tor is running.
svn:r8255
|
| |
|
|
|
|
|
| |
Change configuration strategy for eventdns. Instead of elaborate option set, just allow the user to specify another resolv.conf to use.
svn:r8254
|
| |
|
|
|
|
|
| |
Fix bug 314: Instead of checking address_in_virtualrange, check addressmap_have_mapping(). This should be more accurate. [Rename to addressmap_have_mapping() from addressmap_already_mapped().]
svn:r8226
|
| |
|
|
|
|
|
| |
patch suggested by Karsten Loesing: respond to SIGNAL command before we execute the signal, in case the signal shuts us down.
svn:r7072
|
| |
|
|
|
|
|
| |
Make it possible for dns_init() to fail; note failure of eventdns configuratoin.
svn:r7059
|
| |
|
|
|
|
|
| |
Shortening fields is only one part of making structs shorter. You must also consider alignment padding. Whee.
svn:r7045
|
| |
|
|
| |
svn:r7044
|
| |
|
|
| |
svn:r7042
|
| |
|
|
|
|
|
| |
Add more warnings to the list of those we tolerate. Start using GCC attributes more, for better error checking and better code generation.
svn:r7020
|
| |
|
|
|
|
|
| |
Distinguish netfilter vs pf at configure time based on headers, not on OS.
svn:r7008
|
| |
|
|
|
|
|
| |
Patch from Tup to add support for transparent AP connections: this basically bundles the functionality of trans-proxy-tor into the tor mainline. Now hosts with compliant pf/netfilter implementations can redirect TCP connections straight to Tor without diverting through SOCKS.
svn:r7007
|
| |
|
|
|
|
|
| |
Remove now-spurious size and data arguments from tor_mmap_file
svn:r6987
|
| |
|
|
|
|
|
| |
Oops. Fix downcast macro.
svn:r6985
|
| |
|
|
|
|
|
| |
Add an "mmap handle" type to encapsulate bookkeeping elements of mmap issues; add prelim win32 impl
svn:r6980
|
| |
|
|
|
|
|
|
| |
are attached to p_streams, the p_streams list can consist of both AP
and EXIT conns.
svn:r6945
|
| |
|
|
|
|
|
| |
Document split fields better. Now, I think we can take a break from type splitting for a bit.
svn:r6935
|
| |
|
|
|
|
|
| |
Shave another 8 bytes from connection_t: turn inbuf_reached_eof into a bit, and lower timestamp_lastempty to or_connection_t
svn:r6934
|
| |
|
|
|
|
|
| |
Identify some likely target fields for lowering; lower global_identifier (since we only use it for AP streams and origin circs).
svn:r6933
|
| |
|
|
|
|
|
| |
Rename some fields, compress a bitfield, and document some structs and fields
svn:r6919
|
| |
|
|
|
|
| |
the code that believed in those comments.
svn:r6918
|
| |
|
|
|
|
|
| |
Clean up wide lines from last patch.
svn:r6907
|
| |
|
|
|
|
|
| |
Refactor connection_t into edge, or, dir, control, and base subtypes. This might save some RAM on busy exit servers, but really matters most in terms of correctness.
svn:r6906
|
| |
|
|
|
|
|
| |
Realign circuit structs to avoid wasted space.
svn:r6905
|
| |
|
|
|
|
|
| |
No circuit can be both an intro point and a rend point, so we can merge both the cookie and the pk digest into one "rend_token" field for or circuits. This saves another 20 bytes per or circuit.
svn:r6904
|
| |
|
|
|
|
|
| |
Move rend_query to origin_circuit_t where it belongs; save another 17 bytes per OR circuit.
svn:r6903
|
| |
|
|
|
|
| |
mattered since 0.0.9. Perhaps we can special-case even more...
svn:r6898
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
circuit_t into origin_circuit_t and or_circuit_t. I fixed some
segaults; there may be more. We still need to move more rendezvous
stuff into subtypes.
This is a trial run for splitting up connection_t; if the approach is
insane, please say so soon so we can do something smarter.
Also, this discards the old HALF_OPEN code, which nobody seems to
want.
svn:r6817
|
| |
|
|
| |
svn:r6805
|
| |
|
|
|
|
|
|
|
|
|
|
| |
application connections. Rather than waiting a fixed amount of
time between each retry, we wait only 5 seconds for the first,
10 seconds for the second, and 15 seconds for each retry after
that. Hopefully this will improve the expected experience.
Addresses bug 297.
svn:r6790
|
| |
|
|
|
|
|
|
| |
its webserver is misconfigured to not listen on localhost, then back
off and try connecting from somewhere else before we fail.
svn:r6783
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
by asking the directory authorities. This code only kicks in when you
would normally have exited with a "no address" error.
This design is flawed, though, since the X-Your-Address-Is header is not
authenticated, and doing it this way introduces too many new attacks. The
right answer is to give IP address hints inside the HELLO cell; much of
this code can be reused when we switch.
svn:r6774
|
| |
|
|
| |
svn:r6765
|
| |
|
|
|
|
|
| |
IP addresses, not IPs.
svn:r6764
|
| |
|
|
|
|
| |
active, and make set of nameservers configurable from torrc.
svn:r6744
|