aboutsummaryrefslogtreecommitdiff
path: root/src/or/or.h
Commit message (Expand)AuthorAge
...
* | Remove all instances of WIN32_WINNT (without leading _)•••We started adding it in 59e2c77824840f back in 2004, 8 years and 3 days ago. It's time to deprogram ourselves from this cargo cult. Nick Mathewson2012-05-14
|/
* Merge remote-tracking branch 'nickm/bug2497'Roger Dingledine2012-04-24
|\
| * Twiddle ROUTER_{MAX_COSMETIC_TIME_DIFFERENCE,MAX_AGE_TO_PUBLISH}•••This is ticket 2479. Roger's original explanation was: We have a series of bugs where relays publish a descriptor within 12 hours of their last descriptor, but the authorities drop it because it's not different "enough" from the last one and it's too close to the last one. The original goal of this idea was to a) reduce the number of new descriptors authorities accept (and thus have to store) and b) reduce the total number of descriptors that clients and mirrors fetch. It's a defense against bugs where relays publish a new descriptor every minute. Now that we're putting out one consensus per hour, we're doing better at the total damage that can be caused by 'b'. There are broader-scale design changes that would help here, and we've had a trac entry open for years about how relays should recognize that they're not in the consensus, or recognize when their publish failed, and republish sooner. In the mean time, I think we should change some of the parameters to make the problem less painful. Nick Mathewson2012-03-30
* | Obsolete GiveGuardFlagTo_CVE_2011_2768_VulnerableRelays•••Closes ticket 4572. Nick Mathewson2012-04-11
* | Merge branch 'maint-0.2.2'•••Conflicts: src/or/config.c Roger Dingledine2012-04-01
|\ \
| * | put a _ before or_options_t elements that aren't configurable•••it's fine with me if we change the current convention, but we should actually decide to change it if we want to. Roger Dingledine2012-04-01
* | | Merge remote-tracking branch 'origin/maint-0.2.2'•••Conflicts: src/or/config.c Conflict was in or_options_free, where two newly added fields had free calls in the same place. Nick Mathewson2012-04-01
|\| | | |/ |/|
| * Do not use strcmp() to compare an http authenticator to its expected value•••This fixes a side-channel attack on the (fortunately unused!) BridgePassword option for bridge authorities. Fix for bug 5543; bugfix on 0.2.0.14-alpha. Nick Mathewson2012-04-01
* | Merge remote-tracking branch 'origin/maint-0.2.2'•••Conflicts: src/or/control.c Nick Mathewson2012-03-26
|\|
| * Implement 'safe cookie authentication'Robert Ransom2012-02-22
* | Use the standard _WIN32, not the Torism MS_WINDOWS or deprecated WIN32•••This commit is completely mechanical; I used this perl script to make it: #!/usr/bin/perl -w -i.bak -p if (/^\s*\#/) { s/MS_WINDOWS/_WIN32/g; s/\bWIN32\b/_WIN32/g; } Nick Mathewson2012-01-31
* | update comment to reflect our TOR_INVALID_SOCKET conventionRoger Dingledine2012-01-22
* | Rename nonconformant identifiers.•••Fixes bug 4893. These changes are pure mechanical, and were generated with this perl script: /usr/bin/perl -w -i.bak -p s/crypto_pk_env_t/crypto_pk_t/g; s/crypto_dh_env_t/crypto_dh_t/g; s/crypto_cipher_env_t/crypto_cipher_t/g; s/crypto_digest_env_t/crypto_digest_t/g; s/aes_free_cipher/aes_cipher_free/g; s/crypto_free_cipher_env/crypto_cipher_free/g; s/crypto_free_digest_env/crypto_digest_free/g; s/crypto_free_pk_env/crypto_pk_free/g; s/_crypto_dh_env_get_dh/_crypto_dh_get_dh/g; s/_crypto_new_pk_env_rsa/_crypto_new_pk_from_rsa/g; s/_crypto_pk_env_get_evp_pkey/_crypto_pk_get_evp_pkey/g; s/_crypto_pk_env_get_rsa/_crypto_pk_get_rsa/g; s/crypto_new_cipher_env/crypto_cipher_new/g; s/crypto_new_digest_env/crypto_digest_new/g; s/crypto_new_digest256_env/crypto_digest256_new/g; s/crypto_new_pk_env/crypto_pk_new/g; s/crypto_create_crypto_env/crypto_cipher_new/g; s/connection_create_listener/connection_listener_new/g; s/smartlist_create/smartlist_new/g; s/transport_create/transport_new/g; Nick Mathewson2012-01-18
* | fix crash bug in original feature4207 branch•••PLURAL() assumes that the plural is the canonical name for the option, so now it is. Roger Dingledine2012-01-16
* | Comment fixups on 4207 suggested by armaNick Mathewson2012-01-16
* | Allow authorities to baddir/badexit/invalid/reject nodes by cc•••Implements ticket #4207 Nick Mathewson2012-01-13
* | Merge branch 'prop187_squashed'Nick Mathewson2012-01-11
|\ \
| * | Implement proposal 187: reserve a cell type for client authorization•••This needs a changes file and more testing. Nick Mathewson2012-01-11
* | | Merge branch 'feature3457-v4-nm-squashed'•••Conflicts: src/or/rendclient.c Nick Mathewson2012-01-11
|\ \ \ | |/ / |/| |
| * | Rename CIRC2 to CIRC_MINOR•••Also give the arguments to control_event_circuit_status_minor real names. Nick Mathewson2012-01-11
| * | Send CIRC2 event when a circuit is cannibalizedRobert Ransom2011-11-24
| * | Add CIRC2 control-port event, and send it when a circ's purpose changesRobert Ransom2011-11-24
* | | Don't remove rend cpath element from relaunched service-side rend circs•••Fixes bug 4842, not in any release. Robert Ransom2012-01-06
* | | Verbotify documentation comments for the #1297-fix flagsRobert Ransom2012-01-04
* | | Add an option to close HS service-side rend circs on timeoutRobert Ransom2011-12-27
* | | Don't close HS service-side rend circs on timeoutRobert Ransom2011-12-27
* | | Add an option to close 'almost-connected' HS client circs on timeoutRobert Ransom2011-12-27
* | | Don't close HS client circs which are 'almost connected' on timeoutRobert Ransom2011-12-27
* | | Adjust n_intro_points_wanted when a service's intro points are closedRobert Ransom2011-12-20
* | | Revert "Make pending libevent actions cancelable"•••This reverts commit aba25a6939a5907d40dbcff7433a8c130ffd12ad. Nick Mathewson2011-12-06
* | | Merge branch 'feature2553-v4-rebased'Nick Mathewson2011-11-30
|\ \ \
| * | | Add a compile-time #define to control whether Tor runs in 'tor2web mode'•••The Tor2webMode torrc option is still required to run a Tor client in 'tor2web mode', but now it can't be turned on at runtime in a normal build of Tor. (And a tor2web build of Tor can't be used as a normal Tor client, so we don't have to worry as much about someone distributing packages with this particular pistol accessible to normal users.) Robert Ransom2011-11-30
| * | | Add Tor2webMode configuration optionRobert Ransom2011-11-24
| |/ /
* | | appease "make check-spaces"Nick Mathewson2011-11-30
* | | First chunk of support for bridges on IPv6•••Comments below focus on changes, see diff for added code. New type tor_addr_port_t holding an IP address and a TCP/UDP port. New flag in routerinfo_t, ipv6_preferred. This should go in the node_t instead but not now. Replace node_get_addr() with - node_get_prim_addr() for primary address, i.e. IPv4 for now - node_get_pref_addr() for preferred address, IPv4 or IPv6. Rename node_get_addr_ipv4h() node_get_prim_addr_ipv4h() for consistency. The primary address will not allways be an IPv4 address. Same for node_get_orport() -> node_get_prim_orport(). Rewrite node_is_a_configured_bridge() to take all OR ports into account. Extend argument list to extend_info_from_node and extend_info_from_router with a flag indicating if we want to use the routers primary address or the preferred address. Use the preferred address in as few situtations as possible for allowing clients to connect to bridges over IPv6. Linus Nordberg2011-11-30
* | | Initial support for simplest use of prop186 or-address lines•••This lets a routerinfo_t have a single IPv6 or-address, and adds support for formatting and parsing those lines. Nick Mathewson2011-11-30
* | | Initial hacking for proposal 186.•••This code handles the new ORPort options, and incidentally makes all remaining port types use the new port configuration systems. There are some rough edges! It doesn't do well in the case where your Address says one thing but you say to Advertise another ORPort. It doesn't handle AllAddrs. It doesn't actually advertise anything besides the first listed advertised IPv4 ORPort and DirPort. It doesn't do port forwarding to them either. It's not tested either, it needs more documentation, and it probably forgets to put the milk back in the refrigerator. Nick Mathewson2011-11-30
* | | Merge remote-tracking branch 'rransom-tor/bug3460-v4'•••Conflicts: src/or/rendservice.c Nick Mathewson2011-11-29
|\ \ \
| * | | Correct documentation comments for fields formerly named accepted_introsRobert Ransom2011-11-27
| * | | Rename accepted_intros fieldsRobert Ransom2011-11-27
| * | | Reduce lifetime of DH public key replay-detection cache elementsRobert Ransom2011-10-31
| * | | Ignore timestamps of INTRODUCE2 cellsRobert Ransom2011-10-31
| * | | Move the real INTRODUCE2 replay-detection cache into rend_intro_point_tRobert Ransom2011-10-30
| * | | Make introduction points expireRobert Ransom2011-10-30
| * | | Allow intro points to expire somewhat gracefully•••The Right Way to expire an intro point is to establish a new one to replace it, publish a new descriptor that doesn't list any expiring intro points, and *then*, once our upload attempts for the new descriptor have ended (whether in success or failure), close the expiring intro points. Unfortunately, we can't find out when the new descriptor has actually been uploaded, so we'll have to settle for a five-minute timer. There should be no significant behaviour changes due to this commit (only a log-message change or two), despite the rather massive overhaul, so this commit doesn't include a changes/ file. (The commit that teaches intro_point_should_expire_now to return non-zero gets a changes/ file, though.) Robert Ransom2011-10-30
| * | | Record which intro points were listed in the last HS descRobert Ransom2011-10-30
| * | | Record the number of INTRODUCE2 cells each intro point has receivedRobert Ransom2011-10-30
| * | | Record the time at which each intro point was first publishedRobert Ransom2011-10-30
* | | | Merge remote-tracking branch 'asn-mytor/bug4548_take2'Nick Mathewson2011-11-29
|\ \ \ \
| * | | | Finishing touches.•••- Make check-spaces happy. - Remove a stray header from crypto.h George Kadianakis2011-11-25
generated by cgit v1.2.3 (git 2.47.1) at 2025-03-14 21:14:38 +0000