| Commit message (Expand) | Author | Age |
|---|
| ... | |
| | * | | | Triage the XXX023 and XXX022 comments: postpone many. | Nick Mathewson | 2012-06-15 |
| * | | | | Merge remote-tracking branch 'public/bug5932' | Nick Mathewson | 2012-06-15 |
| |\ \ \ \
| |/ / /
|/| | | |
|
| | * | | | Downgrade an eventdns warning to PROTOCOL_WARN. | Nick Mathewson | 2012-06-07 |
| * | | | | Downgrade log messages about cbt enabled/disabled. Bug 6169. | Nick Mathewson | 2012-06-15 |
| * | | | | bump to 0.2.3.17-beta-dev | Roger Dingledine | 2012-06-15 |
| * | | | | another little step at making debugging 5458 easier | Roger Dingledine | 2012-06-15 |
| * | | | | tab-man returneth (this time using the name 'rob') | Roger Dingledine | 2012-06-15 |
| * | | | | bump to 0.2.3.17-beta | Roger Dingledine | 2012-06-15 |
| * | | | | Lower the default path bias notice rate to 40%.•••I saw 72% on a test run with 26 circuits. 70% might be a little close to the
line. That, or min_circs is too low and we need to be more patient. We still
need to test/simulate more.
| Mike Perry | 2012-06-14 |
| * | | | | For now, never disable any guards. | Mike Perry | 2012-06-14 |
| * | | | | Defend against entry node path bias attacks•••The defense counts the circuit failure rate for each guard for the past N
circuits. Failure is defined as the ability to complete a first hop, but not
finish completing the circuit all the way to the exit.
If the failure rate exceeds a certain amount, a notice is emitted.
If it exceeds a greater amount, a warn is emitted and the guard is disabled.
These values are governed by consensus parameters which we intend to tune as
we perform experiments and statistical simulations.
| Mike Perry | 2012-06-14 |
| * | | | | Merge remote-tracking branch 'asn-mytor/bug5589_take2' | Nick Mathewson | 2012-06-14 |
| |\ \ \ \ |
|
| | * | | | | Remove validate_pluggable_transports_config(): redundant since 9d9b5ed0.•••The warning message of validate_pluggable_transports_config() is
superseded by the changes in the warning message of
connection_or_connect() when the proxy credentials can't be found.
| George Kadianakis | 2012-06-14 |
| * | | | | | Merge remote-tracking branch 'public/bug4663' | Nick Mathewson | 2012-06-13 |
| |\ \ \ \ \ |
|
| | * | | | | | Add a warning for using HTTPProxy with no other proxy.•••From what I can tell, this configuration is usually a mistake, and
leads people to think that all their traffic is getting proxied when
in fact practically none of it is. Resolves the issue behind "bug"
4663.
| Nick Mathewson | 2012-06-12 |
| | | |_|/ /
| |/| | | |
|
| * | | | | | One more fix for bug 5049. | Nick Mathewson | 2012-06-13 |
| * | | | | | Satisfy make check-spaces | Andrea Shepard | 2012-06-13 |
| * | | | | | Move cbt->liveness.timeouts_after_firsthop free code into its own function | Andrea Shepard | 2012-06-13 |
| * | | | | | Early exit from circuit_build_times_set_timeout() if adaptive timeouts are di... | Andrea Shepard | 2012-06-13 |
| * | | | | | Don't poll to see if we need to build circuits for timeout data if LearnCircu... | Andrea Shepard | 2012-06-13 |
| * | | | | | Use K&R style | Andrea Shepard | 2012-06-13 |
| * | | | | | Unconditionally use config CircuitBuildTimeout if LearnCircuitBuildTimeout is... | Andrea Shepard | 2012-06-13 |
| * | | | | | Don't track circuit timeout history unless we're actually using adaptive time... | Andrea Shepard | 2012-06-13 |
| * | | | | | Add debug logging to circuit_build_times_* of circuitbuild.c to trace queries... | Andrea Shepard | 2012-06-13 |
| * | | | | | Merge branch 'bug5263_023' | Nick Mathewson | 2012-06-13 |
| |\ \ \ \ \ |
|
| | * | | | | | Add rate-limited log message to bug5263 fix•••Initially I said, "I claim that we shouldn't be reading and marked;
let's see if I'm right." But Rob finds that it does.
| Nick Mathewson | 2012-06-13 |
| | * | | | | | Fix busy Libevent loops (infinite loops in Shadow)•••There is a bug causing busy loops in Libevent and infinite loops in
the Shadow simulator. A connection that is marked for close, wants
to flush, is held open to flush, but is rate limited (the token
bucket is empty) triggers the bug.
This commit fixes the bug. Details are below.
This currently happens on read and write callbacks when the active
socket is marked for close. In this case, Tor doesn't actually try
to complete the read or write (it returns from those methods when
marked), but instead tries to clear the connection with
conn_close_if_marked(). Tor will not close a marked connection that
contains data: it must be flushed first. The bug occurs when this
flush operation on the marked connection can not occur because the
connection is rate-limited (its write token bucket is empty).
The fix is to detect when rate limiting is preventing a marked
connection from properly flushing. In this case, it should be
flagged as read/write_blocked_on_bandwidth and the read/write events
de-registered from Libevent. When the token bucket gets refilled, it
will check the associated read/write_blocked_on_bandwidth flag, and
add the read/write event back to Libevent, which will cause it to
fire. This time, it will be properly flushed and closed.
The reason that both read and write events are both de-registered
when the marked connection can not flush is because both result in
the same behavior. Both read/write events on marked connections will
never again do any actual reads/writes, and are only useful to
trigger the flush and close the connection. By setting the
associated read/write_blocked_on_bandwidth flag, we ensure that the
event will get added back to Libevent, properly flushed, and closed.
Why is this important? Every Shadow event occurs at a discrete time
instant. If Tor does not properly deregister Libevent events that
fire but result in Tor essentially doing nothing, Libevent will
repeatedly fire the event. In Shadow this means infinite loop,
outside of Shadow this means wasted CPU cycles.
| Rob G. Jansen | 2012-06-13 |
| | |/ / / / |
|
| * | | | | | Change smartlist_create->smartlist_new in bug4744 branch as merged to master | Nick Mathewson | 2012-06-13 |
| * | | | | | Merge branch 'bug4744_squashed' | Nick Mathewson | 2012-06-13 |
| |\ \ \ \ \ |
|
| | * | | | | | Implement the client side of proposal 198•••This is a feature removal: we no longer fake any ciphersuite other
than the not-really-standard SSL_RSA_FIPS_WITH_3DES_EDE_CBC_SHA
(0xfeff). This change will let servers rely on our actually
supporting what we claim to support, and thereby let Tor migrate to
better TLS ciphersuites.
As a drawback, Tor instances that use old openssl versions and
openssl builds with ciphers disabled will no longer give the
"firefox" cipher list.
| Nick Mathewson | 2012-06-13 |
| | * | | | | | Change our ciphersuite list to match ff8 | Nick Mathewson | 2012-05-15 |
| | * | | | | | get_mozilla_ciphers: look at ssl3con.c, not sslenum.c | Nick Mathewson | 2012-03-14 |
| | * | | | | | get_mozilla_ciphers: output lowercase hex. | Nick Mathewson | 2012-03-14 |
| | * | | | | | Try to make get_mozilla_ciphers output the right macros in the right order | Nick Mathewson | 2012-03-14 |
| | * | | | | | Have get_mozilla_ciphers take sourcedirs as arguments | Nick Mathewson | 2012-03-14 |
| | * | | | | | Make get_mozilla_ciphers script a little more regexy and readable | Nick Mathewson | 2012-03-14 |
| | * | | | | | Script to generate ciphers.inc by Arturo | Nick Mathewson | 2012-03-14 |
| * | | | | | | Merge remote-tracking branch 'public/bug3940_redux' | Nick Mathewson | 2012-06-13 |
| |\ \ \ \ \ \ |
|
| | * | | | | | | fixup! An attempt at bug3940 and making AllowDotExit 0 work with MapAddress | Nick Mathewson | 2012-06-11 |
| | * | | | | | | Document ADDRMAPSRC_NONE. | Nick Mathewson | 2012-06-11 |
| | * | | | | | | Document the new exit_source_out argument to addressmap_rewrite | Nick Mathewson | 2012-06-04 |
| | * | | | | | | An attempt at bug3940 and making AllowDotExit 0 work with MapAddress•••This time, I follow grarpamp's suggestion and move the check for
.exit+AllowDotExit 0 to the top of connection_ap_rewrite_and_attach,
before any rewriting occurs. This way, .exit addresses are
forbidden as they arrive from a socks connection or a DNSPort
request, and not otherwise.
It _is_ a little more complicated than that, though. We need to
treat any .exit addresses whose source is TrackHostExits as meaning
that we can retry without that exit. We also need to treat any
.exit address that comes from an AutomapHostsOnResolve operation as
user-provided (and thus forbidden if AllowDotExits==0), so that
transitioning from AllowDotExits==1 to AllowDotExits==0 will
actually turn off automapped .exit addresses.
| Nick Mathewson | 2012-05-11 |
| * | | | | | | | Fix another clang compile warning•••We forgot this when we fixed 5969.
| Sebastian Hahn | 2012-06-13 |
| * | | | | | | | Fix integer overflow in cell stats spotted by atagar.•••Fixes #5849.
| Karsten Loesing | 2012-06-13 |
| | |_|_|/ / /
|/| | | | | |
|
| * | | | | | | Merge branch 'maint-0.2.2' | Roger Dingledine | 2012-06-13 |
| |\ \ \ \ \ \
| |_|_|/ / /
|/| | | | /
| | |_|_|/
| |/| | | |
|
| | * | | | | Update to the June 2012 GeoIP database.•••Manually removed range 0.116.0.0 to 0.119.255.255 which Maxmind says is
assigned to AT. This is very likely a bug in their database, because
0.0.0.0/8 is a reserved range.
| Karsten Loesing | 2012-06-13 |
| * | | | | | Merge branch 'bug5452' | Nick Mathewson | 2012-06-11 |
| |\ \ \ \ \ |
|
| | * | | | | | Make RECOMMENDED_MIN_CIRCUIT_BUILD_TIMEOUT warning tell the user how to fix it. | Andrea Shepard | 2012-06-11 |
| | * | | | | | Warn if the user has set CircuitBuildTimeout stupidly low and turned off Lear... | Andrea Shepard | 2012-06-08 |
| * | | | | | | Merge remote-tracking branch 'public/bug4592' | Nick Mathewson | 2012-06-11 |
| |\ \ \ \ \ \ |
|