| Commit message (Expand) | Author | Age |
|---|
| * | Merge branch '024_msvc_squashed'•••Conflicts:
src/or/or.h
srcwin32/orconfig.h
| Nick Mathewson | 2013-01-16 |
| |\ |
|
| | * | Fix an instance of snprintf; don't use _snprintf directly | Nick Mathewson | 2013-01-16 |
| | * | When building with MSVC, call every enum bitfield unsigned•••Fixes bug 7305.
| Nick Mathewson | 2013-01-16 |
| * | | Update the copyright date to 201. | Nick Mathewson | 2013-01-16 |
| * | | Clean up odds and ends | Roger Dingledine | 2013-01-15 |
| * | | Bug 7691 review fixes.•••Also add in the random nonce generation.
| Mike Perry | 2013-01-08 |
| * | | Bug 7691: Send a probe cell down certain types of circs.•••In general, if we tried to use a circ for a stream, but then decided to place
that stream on a different circuit, we need to probe the original circuit
before deciding it was a "success".
We also need to do the same for cannibalized circuits that go unused.
| Mike Perry | 2013-01-08 |
| * | | Merge branch 'ntor-resquashed'•••Conflicts:
src/or/cpuworker.c
src/or/or.h
src/test/bench.c
| Nick Mathewson | 2013-01-03 |
| |\ \ |
|
| | * | | Enable the ntor handshake on the client side.•••"works for me"
| Nick Mathewson | 2013-01-03 |
| | * | | Use new wrappers for making,sending,processing create/extend cells | Nick Mathewson | 2013-01-03 |
| | * | | Teach cpuworker and others about create_cell_t and friends•••The unit of work sent to a cpuworker is now a create_cell_t; its
response is now a created_cell_t. Several of the things that call or
get called by this chain of logic now take create_cell_t or
created_cell_t too.
Since all cpuworkers are forked or spawned by Tor, they don't need a
stable wire protocol, so we can just send structs. This saves us some
insanity, and helps p
| Nick Mathewson | 2013-01-03 |
| | * | | Code to parse and format CREATE{,2,_FAST} cells and their allies•••As elsewhere, it makes sense when adding or extending a cell type to
actually make the code to parse it into a separate tested function.
This commit doesn't actually make anything use these new functions;
that's for a later commit.
| Nick Mathewson | 2013-01-03 |
| | * | | Rename handshake_digest to rend_circ_nonce•••The handshake_digest field was never meaningfully a digest *of* the
handshake, but rather is a digest *from* the handshake that we exapted
to prevent replays of ESTABLISH_INTRO cells. The ntor handshake will
generate it as more key material rather than taking it from any part
of the circuit handshake reply..
| Nick Mathewson | 2013-01-03 |
| | * | | Massive refactoring of the various handshake types•••The three handshake types are now accessed from a unified interface;
their state is abstracted from the rest of the cpath state, and so on.
| Nick Mathewson | 2013-01-03 |
| | * | | Refactor the CREATE_FAST handshake code to match the others. | Nick Mathewson | 2013-01-03 |
| | * | | Wrangle curve25519 onion keys: generate, store, load, publish, republish•••Here we try to handle curve25519 onion keys from generating them,
loading and storing them, publishing them in our descriptors, putting
them in microdescriptors, and so on.
This commit is untested and probably buggy like whoa
| Nick Mathewson | 2013-01-02 |
| * | | | Merge remote-tracking branch 'mikeperry/209-path-bias-changes' | Nick Mathewson | 2012-12-25 |
| |\ \ \ |
|
| | * | | | Tags on relay cells can result in certain reason codes.•••Close the circuit (it's probably junk anyways), and make sure we don't probe
it/count it as a success.
| Mike Perry | 2012-12-11 |
| | * | | | Rename first_hop to circ_attempt.•••Since we've generalized what we can count from (first or second hop), we
should generalize the variable and constant naming too.
| Mike Perry | 2012-12-09 |
| | * | | | Refactor path use bias code into own function.•••Also, improve and log some failure cases.
| Mike Perry | 2012-12-07 |
| | * | | | Document that care needs to be taken with any_streams_attached. | Mike Perry | 2012-12-07 |
| | * | | | Prop 209: Add in hidserv path bias counts for usage. | Mike Perry | 2012-12-07 |
| | * | | | Prop 209: Add path bias counts for timeouts and other mechanisms.•••Turns out there's more than one way to block a tagged circuit.
This seems to successfully handle all of the normal exit circuits. Hidden
services need additional tweaks, still.
| Mike Perry | 2012-12-07 |
| | * | | | Update with code review changes from Nick. | Mike Perry | 2012-12-07 |
| | * | | | Update pathbias parameters to match Proposal 209.•••Needs manpage update and testing still..
| Mike Perry | 2012-12-07 |
| | * | | | Add the ability to count circuit timeouts for guards.•••This is purely for informational reasons for debugging.
| Mike Perry | 2012-12-07 |
| * | | | | Add configuration options for directory guards•••In addition to all the other ways to make directory gurads not go,
you can now set UseEntryGuardsAsDirGuards to 0.
| Nick Mathewson | 2012-12-25 |
| * | | | | Make ECDHE group configurable: 224 for public, 256 for bridges (default) | Nick Mathewson | 2012-12-25 |
| | |_|/
|/| | |
|
| * | | | Add missing doxygen for DNS and automap code | Nick Mathewson | 2012-12-17 |
| * | | | Per-listener option to prefer IPv6 automaps when possible. | Nick Mathewson | 2012-12-17 |
| * | | | Build and test most of the machinery needed for IPv6 virtualaddrmaps•••With an IPv6 virtual address map, we can basically hand out a new
IPv6 address for _every_ address we connect to. That'll be cool, and
will let us maybe get around prop205 issues.
This uses some fancy logic to try to make the code paths in the ipv4
and the ipv6 case as close as possible, and moves to randomly
generated addresses so we don't need to maintain those stupid counters
that will collide if Tor restarts but apps don't.
Also has some XXXX items to fix to make this useful. More design
needed.
| Nick Mathewson | 2012-12-17 |
| * | | | Add options to turn DNS cache use on or off per client port.•••(This is part 1 of making DNS cache use enabled/disabled on a
per-client port basis. These options are shuffled around correctly,
but don't do anything yet.)
| Nick Mathewson | 2012-12-17 |
| * | | | Merge branch 'fallback_dirsource_v3' | Nick Mathewson | 2012-12-13 |
| |\ \ \
| |/ /
|/| | |
|
| | * | | Drop FallbackNetworkstatusFile; it never worked. | Nick Mathewson | 2012-12-06 |
| | * | | Add an option to weight down authorities when choosing a fallback | Nick Mathewson | 2012-12-06 |
| | * | | When choosing among dirserver_ts, consider their weights | Nick Mathewson | 2012-12-06 |
| | * | | New FallbackDir option to add extra directories for bootstraping•••This replaces the old FallbackConsensus notion, and should provide a
way -- assuming we pick reasonable nodes! -- to give clients
suggestions of placs to go to get their first consensus.
| Nick Mathewson | 2012-12-06 |
| | * | | Refactor add_trusted_dir_server•••Now creating a dir_server_t and adding it are separate functions, and
there are frontend functions for adding a trusted dirserver and a
fallback dirserver.
| Nick Mathewson | 2012-12-06 |
| | * | | Rename trusted_dir_server_t to dir_server_t. Automatic renaming. | Nick Mathewson | 2012-12-06 |
| | * | | Rename DirServer to DirAuthority | Nick Mathewson | 2012-12-06 |
| | * | | Start refactoring trusted_dir_servers into trusted and fallback lists•••We use trusted_dir_server_t for two pieces of functionality: a list of
all directory authorities, and a list of initial places to look for
a directory. With this patch we start to separate those two roles.
There is as of now no actual way to be a fallback directory without being
an authority.
| Nick Mathewson | 2012-12-06 |
| | |/ |
|
| * / | Bug 3443: Don't count ORconn setup in circuit build time.•••Also, add a hack Roger suggested where we're more patient if no circuits are
opened yet.
| Mike Perry | 2012-12-07 |
| |/ |
|
| * | Merge branch 'bug7013_take2_squashed' | Nick Mathewson | 2012-11-27 |
| |\ |
|
| | * | Add a torrc option to specify the bind address of managed proxies. | George Kadianakis | 2012-11-27 |
| * | | Add some missing doxygen for ipv6 exit code | Nick Mathewson | 2012-11-14 |
| * | | Implement a PreferIPv6 flag for SocksPorts | Nick Mathewson | 2012-11-14 |
| * | | Revise the DNS subsystem to handle IPv6 exits.•••Now, every cached_resolve_t can remember an IPv4 result *and* an IPv6
result. As a light protection against timing-based distinguishers for
IPv6 users (and against complexity!), every forward request generates
an IPv4 *and* an IPv6 request, assuming that we're an IPv6 exit. Once
we have answers or errors for both, we act accordingly.
This patch additionally makes some useful refactorings in the dns.c
code, though there is quite a bit more of useful refactoring that could
be done.
Additionally, have a new interface for the argument passed to the
evdns_callback function. Previously, it was just the original address
we were resolving. But it turns out that, on error, evdns doesn't
tell you the type of the query, so on a failure we didn't know whether
IPv4 or IPv6 queries were failing.
The new convention is to have the first byte of that argument include
the query type. I've refactored the code a bit to make that simpler.
| Nick Mathewson | 2012-11-14 |
| * | | Rename ipv{4,6}_only to bind_ipv{4,6}_only•••This is to avoid confusion with the ipv{4,6}_traffic flags.
| Nick Mathewson | 2012-11-14 |
| * | | Add {No,}IPv{4,6}Traffic options to SOCKSPort•••These options are for telling the SOCKSPort that it should allow or
not allow connections to IPv4/IPv6 addresses.
These aren't implemented yet; this is just the code to read the
options and get them into the entrey_connection_t.
| Nick Mathewson | 2012-11-14 |
| * | | Add an IPv6Exit configuration option•••Don't advertise an IPv6 exit policy, or accept IPv6 exit requests,
if IPv6Exit is not true.
| Nick Mathewson | 2012-11-14 |