| Commit message (Expand) | Author | Age |
|---|
| * | Fix assertion failure in tor_timegm.•••Fixes bug 6811.
| Nick Mathewson | 2012-09-11 |
| * | Do not assert when comparing a null address/port against a policy•••This can create a remote crash opportunity for/against directory
authorities.
| Nick Mathewson | 2012-08-27 |
| * | Mitigate a side-channel leak of which relays Tor chooses for a circuit•••Tor's and OpenSSL's current design guarantee that there are other leaks,
but this one is likely to be more easily exploitable, and is easy to fix.
| Robert Ransom | 2012-08-03 |
| * | Avoid possible segfault when handling networkstatus vote with bad flavor•••Fix for 6530; fix on 0.2.2.6-alpha.
| Nick Mathewson | 2012-08-03 |
| * | Send a CRLF at the end of a STATUS_* event, not in the middle of it•••Fixes bug 6094; bugfix on commit 3a9351b57e528b1d0bd2e72bcf78db7c91b2ff8f.
| Robert Ransom | 2012-06-07 |
| * | Merge remote-tracking branch 'public/bug6007_strict_squashed' into maint-0.2.2 | Nick Mathewson | 2012-06-04 |
| |\ |
|
| | * | Kill non-open OR connections with any data on their inbufs.•••This fixes a DoS issue where a client could send so much data in 5
minutes that they exhausted the server's RAM. Fix for bug 5934 and
6007. Bugfix on 0.2.0.20-rc, which enabled the v2 handshake.
| Nick Mathewson | 2012-06-04 |
| * | | Make all begindir or one-hop circuits internal•••This solves bug 5283, where client traffic could get sent over the
same circuit as an anonymized connection to a directory, even if
that circuit used an exit node unsuitable for clients. By marking
the directory connection as needs_internal, we ensure that the
(non-internal!) client-traffic connection won't be sent over the
same circuit.
| Nick Mathewson | 2012-05-31 |
| |/ |
|
| * | Fix more clang format-nonliteral warnings (bug 5969) | Nick Mathewson | 2012-05-30 |
| * | Correct the bulletproofing of routerlist_insert()•••The original code updated some variables, but forgot to remove a
replaced old-routerdesc from rl->old_routers.
Related to bug 1776.
| Nick Mathewson | 2012-05-16 |
| * | Merge branch 'bug5796_022_squashed' into maint-0.2.2 | Nick Mathewson | 2012-05-15 |
| |\ |
|
| | * | Fix a crash bug on SETCIRCUITPURPOSE. | Nick Mathewson | 2012-05-15 |
| * | | fix over-wide line from f661747370 | Roger Dingledine | 2012-05-10 |
| * | | Add missing CRLFs to AUTHCHALLENGE failure replies•••Fix #5760
| Ravi Chandra Padmala | 2012-05-10 |
| |/ |
|
| * | Fix a log-uninitialized-buffer bug.•••Fix for 5647; bugfix on 0.2.1.5-alpha.
| Nick Mathewson | 2012-04-18 |
| * | rend_service_introduce(): do protocol violation check before anything else.•••(Cherry-picked from 6ba13e4 by nickm)
| George Kadianakis | 2012-04-18 |
| * | Include a Host: header with any HTTP/1.1 proxy request•••Bugfix on 0.2.2.1-alpha, which added the orginal HTTP proxy
authentication code. Fix for bug 5593.
| Nick Mathewson | 2012-04-10 |
| * | Wrap long line; strlen("ides")<strlen("turtles"). | Nick Mathewson | 2012-04-04 |
| * | ides has become turtles, and gotten a new IP address•••As per ticket 5569
| Sebastian Hahn | 2012-04-05 |
| * | put a _ before or_options_t elements that aren't configurable•••it's fine with me if we change the current convention, but we should
actually decide to change it if we want to.
| Roger Dingledine | 2012-04-01 |
| * | Do not use strcmp() to compare an http authenticator to its expected value•••This fixes a side-channel attack on the (fortunately unused!)
BridgePassword option for bridge authorities. Fix for bug 5543;
bugfix on 0.2.0.14-alpha.
| Nick Mathewson | 2012-04-01 |
| * | Merge remote-tracking branch 'rransom-tor/safecookie-022-v3' into maint-0.2.2 | Nick Mathewson | 2012-03-26 |
| |\ |
|
| | * | Implement 'safe cookie authentication' | Robert Ransom | 2012-02-22 |
| * | | Never choose a bridge as an exit. Bug 5342. | Nick Mathewson | 2012-03-09 |
| * | | Revise "sufficient exit nodes" check to work with restrictive ExitNodes•••If you set ExitNodes so that only 1 exit node is accepted, the
previous patch would have made you unable to build circuits.
| Nick Mathewson | 2012-03-09 |
| * | | Require a threshold of exit nodes before building circuits•••This mitigates an attack proposed by wanoskarnet, in which all of a
client's bridges collude to restrict the exit nodes that the client
knows about. Fixes bug 5343.
| Nick Mathewson | 2012-03-08 |
| * | | new ip address for maatuska | Roger Dingledine | 2012-02-29 |
| |/ |
|
| * | Properly protect paths to sed, sha1sum, openssl•••in Makefile.am, we used it without quoting it, causing build failure if
your openssl/sed/sha1sum happened to live in a directory with a space in
it (very common on windows)
| Sebastian Hahn | 2012-02-10 |
| * | Downgrade "missing a certificate" from notice to info•••It was apparently getting mistaken for a problem, even though it was
at notice.
Fixes 5067; fix on 0.2.0.10-alpha.
| Nick Mathewson | 2012-02-10 |
| * | Fix a trivial log message error in renservice.c•••Fixes bug 4856; bugfix on 0.0.6
This bug was introduced in 79fc5217, back in 2004.
| Nick Mathewson | 2012-01-09 |
| * | when the consensus fails, list which dir auths were in or out | Roger Dingledine | 2012-01-08 |
| * | nickname, not identity fingerprint, will help more | Roger Dingledine | 2012-01-08 |
| * | tell me who votes are actually for, not just where they're from | Roger Dingledine | 2012-01-08 |
| * | Fix spelling in a controlsocket log msg•••Fixes bug 4803.
| Sebastian Hahn | 2011-12-30 |
| * | Merge remote-tracking branch 'public/bug4788' into maint-0.2.2 | Nick Mathewson | 2011-12-28 |
| |\ |
|
| | * | Authorities reject insecure Tors.•••This patch should make us reject every Tor that was vulnerable to
CVE-2011-0427. Additionally, it makes us reject every Tor that couldn't
handle RELAY_EARLY cells, which helps with proposal 110 (#4339).
| Nick Mathewson | 2011-12-27 |
| * | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2011-12-28 |
| |\ \
| |/
|/| |
|
| | * | Bug 4786 fix: don't convert EARLY to RELAY on v1 connections•••We used to do this as a workaround for older Tors, but now it's never
the correct thing to do (especially since anything that didn't
understand RELAY_EARLY is now deprecated hard).
| Nick Mathewson | 2011-12-28 |
| * | | Do not even try to keep going on a socket with socklen==0•••Back in #1240, r1eo linked to information about how this could happen
with older Linux kernels in response to nmap. Bugs #4545 and #4547
are about how our approach to trying to deal with this condition was
broken and stupid. Thanks to wanoskarnet for reminding us about #1240.
This is a fix for the abovementioned bugs, and is a bugfix on
0.1.0.3-rc.
| Nick Mathewson | 2011-12-21 |
| * | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2011-12-15 |
| |\| |
|
| | * | Add a fix for the buf_pullup bug that Vektor reported | Nick Mathewson | 2011-12-15 |
| * | | Don't call tor_tls_set_logged_address till after checking conn->tls•••Fixes bug 4531; partial backport of e27a26d5.
| Nick Mathewson | 2011-12-02 |
| * | | Fix a compile warning on 64bit OS X•••Backport of 68475fc5c5a806ebbb5657de1667dab2c3e09b7c which accidentally
only made it into master. Fixes bug 4547. Bug isn't in any released
version.
| Sebastian Hahn | 2011-11-23 |
| * | | parameterize bw cutoffs to guarantee Fast and Guard flags•••Now it will be easier for researchers to simulate Tor networks with
different values. Resolves ticket 4484.
| Roger Dingledine | 2011-11-21 |
| * | | Merge branch 'bug4518' into maint-0.2.2 | Nick Mathewson | 2011-11-21 |
| |\ \ |
|
| | * | | Only call cull_wedged_cpuworkers once every 60 seconds.•••The function is over 10 or 20% on some of Moritz's profiles, depending
on how you could.
Since it's checking for a multi-hour timeout, this is safe to do.
Fixes bug 4518.
| Nick Mathewson | 2011-11-19 |
| * | | | Merge remote-tracking branch 'public/bug3963' into maint-0.2.2 | Nick Mathewson | 2011-11-21 |
| |\ \ \ |
|
| | * | | | All NT service configuration commands should make the process exit.•••Fixes bug 3963; fix on 0.2.0.7-alpha.
| Nick Mathewson | 2011-09-08 |
| * | | | | Don't log about stats when running as a client without geoip•••Completely disable stats if we aren't running as a relay. We won't
collect any anyway, so setting up the infrastructure for them and
logging about them is wrong. This also removes a confusing log
message that clients without a geoip db would have seen.
Fixes bug 4353.
| Sebastian Hahn | 2011-11-19 |
| | |/ /
|/| | |
|
| * | | | Use real_addr in send_netinfo•••Reported by "troll_un"; bugfix on 0.2.0.10-alpha; fixes bug 4349.
| Nick Mathewson | 2011-11-14 |