| Commit message (Expand) | Author | Age |
|---|
| * | Check transition of circuit purpose from INTRO->GENERAL if nodes are constrained•••This looked at first like another fun way around our node selection
logic: if we had introduction circuits, and we wound up building too
many, we would turn extras into general-purpose circuits. But when we
did so, we wouldn't necessarily check whether the general-purpose
circuits conformed to our node constraints. For example, the last
node could totally be in ExcludedExitNodes and we wouldn't have cared...
...except that the circuit should already be internal, so it won't get user
streams attached to it, so the transition should generally be allowed.
Add an assert to make sure we're right about this, and have it not
check whether ExitNodes is set, since that's irrelevant to internal
circuits.
| Nick Mathewson | 2011-04-26 |
| * | Note that circuit purpose changing can violate ExcludeNodes | Nick Mathewson | 2011-04-26 |
| * | refuse excluded hidserv nodes if strictnodes•••Make hidden services more flaky for people who set both ExcludeNodes
and StrictNodes. Not recommended, especially for hidden service operators.
| Roger Dingledine | 2011-04-26 |
| * | Make the DH parameter we use for TLS match the one from Apache's mod_ssl•••Our regular DH parameters that we use for circuit and rendezvous
crypto are unchanged. This is yet another small step on the path of
protocol fingerprinting resistance.
| Nick Mathewson | 2011-01-24 |
| * | Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2011-01-15 |
| |\ |
|
| | * | Fix a couple of non-cleared key issues in hidden services•••we need to do more hunting, but this fixes the ones mentioned in 2385.
| Nick Mathewson | 2011-01-15 |
| * | | Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2•••Conflicts:
src/or/config.c
src/or/networkstatus.c
src/or/rendcommon.c
src/or/routerparse.c
src/or/test.c
| Nick Mathewson | 2011-01-15 |
| |\| |
|
| | * | Fix a heap overflow found by debuger, and make it harder to make that mistake...•••Our public key functions assumed that they were always writing into a
large enough buffer. In one case, they weren't.
(Incorporates fixes from sebastian)
| Nick Mathewson | 2011-01-15 |
| * | | Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2•••Conflicts:
src/common/test.h
src/or/test.c
| Nick Mathewson | 2011-01-03 |
| |\| |
|
| | * | Bump copyright statements to 2011 | Nick Mathewson | 2011-01-03 |
| * | | Merge remote branch fix_security_bug_021 into fix_security_bug_022•••Conflicts:
src/common/memarea.c
src/or/or.h
src/or/rendclient.c
| Nick Mathewson | 2010-12-15 |
| |\| |
|
| | * | Make payloads into uint8_t.•••This will avoid some signed/unsigned assignment-related bugs.
| Nick Mathewson | 2010-12-15 |
| * | | Create routerparse.h | Sebastian Hahn | 2010-07-27 |
| * | | Create rephist.h | Sebastian Hahn | 2010-07-27 |
| * | | Create relay.h | Sebastian Hahn | 2010-07-27 |
| * | | Create networkstatus.h | Sebastian Hahn | 2010-07-27 |
| * | | Create directory.h | Sebastian Hahn | 2010-07-27 |
| * | | Create config.h | Sebastian Hahn | 2010-07-27 |
| * | | Create circuituse.h | Sebastian Hahn | 2010-07-27 |
| * | | Create circuitlist.h | Sebastian Hahn | 2010-07-27 |
| * | | Create circuitbuild.h | Sebastian Hahn | 2010-07-27 |
| * | | Create rendservice.h | Sebastian Hahn | 2010-07-27 |
| * | | Create rendclient.h | Sebastian Hahn | 2010-07-27 |
| * | | Create rendcommon.h | Sebastian Hahn | 2010-07-27 |
| * | | Create routerlist.h | Sebastian Hahn | 2010-07-27 |
| * | | Create router.h | Sebastian Hahn | 2010-07-27 |
| * | | Merge remote branch 'origin/maint-0.2.1'•••Conflicts:
src/common/test.h
src/or/test.c
| Nick Mathewson | 2010-02-27 |
| |\| |
|
| | * | Update Tor Project copyright years | Nick Mathewson | 2010-02-27 |
| | * | read the "circwindow" parameter from the consensus•••backport of c43859c5c12361fad505
backport of 0d13e0ed145f4c1b5bd1
| Roger Dingledine | 2009-10-14 |
| * | | Switch to a StrictNodes config option.•••This is step one of handling ExcludedNodes better. This first
step is just to make EntryNodes and ExitNodes do what they did
before.
| Roger Dingledine | 2009-12-21 |
| * | | Merge branch 'safelogging2'•••Conflicts:
ChangeLog
| Nick Mathewson | 2009-12-15 |
| |\ \ |
|
| | * | | Refactor the safe_str_*() API to make more sense.•••The new rule is: safe_str_X() means "this string is a piece of X
information; make it safe to log." safe_str() on its own means
"this string is a piece of who-knows-what; make it safe to log".
| Nick Mathewson | 2009-12-15 |
| | * | | Allow SafeLogging to exclude client related information | Sebastian Hahn | 2009-12-12 |
| * | | | Now that FOO_free(NULL) always works, remove checks before calling it. | Nick Mathewson | 2009-12-12 |
| * | | | *_free functions now accept NULL•••Some *_free functions threw asserts when passed NULL. Now all of them
accept NULL as input and perform no action when called that way.
This gains us consistence for our free functions, and allows some
code simplifications where an explicit null check is no longer necessary.
| Sebastian Hahn | 2009-12-12 |
| |/ / |
|
| * | | Improve log statement when publishing v2 hs desc. | Karsten Loesing | 2009-10-26 |
| * | | Reduce log level for someone else sending us weak DH keys.•••See task 1114. The most plausible explanation for someone sending us weak
DH keys is that they experiment with their Tor code or implement a new Tor
client. Usually, we don't care about such events, especially not on warn
level. If we really care about someone not following the Tor protocol, we
can set ProtocolWarnings to 1.
| Karsten Loesing | 2009-10-25 |
| * | | a mish-mash of stuff in my sandbox | Roger Dingledine | 2009-09-17 |
| * | | Merge commit 'karsten/no-time-maint-0.2.1' | Roger Dingledine | 2009-09-16 |
| |\ \ |
|
| | * | | Avoid calling time(NULL) too often.•••Found by "rotator".
| Karsten Loesing | 2009-09-03 |
| * | | | Merge commit 'origin/maint-0.2.1' | Nick Mathewson | 2009-09-15 |
| |\ \ \
| | |/
| |/| |
|
| | * | | Fix obscure 64-bit big-endian hidserv bug•••Fix an obscure bug where hidden services on 64-bit big-endian
systems might mis-read the timestamp in v3 introduce cells, and
refuse to connect back to the client. Discovered by "rotor".
Bugfix on 0.2.1.6-alpha.
| Roger Dingledine | 2009-09-02 |
| * | | | Read "circwindow=x" from the consensus and use it•••Tor now reads the "circwindow" parameter out of the consensus,
and uses that value for its circuit package window rather than the
default of 1000 cells. Begins the implementation of proposal 168.
| Roger Dingledine | 2009-09-15 |
| * | | | Merge commit 'origin/maint-0.2.1' | Nick Mathewson | 2009-09-01 |
| |\| | |
|
| | * | | Fix compile warnings on Snow Leopard•••Big thanks to nickm and arma for helping me with this!
| Sebastian Hahn | 2009-09-01 |
| | |/ |
|
| * | | Merge commit 'origin/maint-0.2.1' | Nick Mathewson | 2009-05-27 |
| |\| |
|
| | * | Spell-check Tor. | Nick Mathewson | 2009-05-27 |
| | * | Update copyright to 2009. | Karsten Loesing | 2009-05-04 |
| * | | Remove unused rendversion parameters. YAGNI. | Karsten Loesing | 2009-05-04 |
| * | | Clients do not request version 0 hidserv descs anymore. | Karsten Loesing | 2009-05-04 |