| Commit message (Collapse) | Author | Age | ||
|---|---|---|---|---|
| ... | ||||
| * | | Merge branch 'bug5343' into maint-0.2.2 | Nick Mathewson | 2012-03-09 | |
| |\ \ | ||||
| | * | | Require a threshold of exit nodes before building circuits | Nick Mathewson | 2012-03-08 | |
| | | | | | | | | | | | | | | | | | | | This mitigates an attack proposed by wanoskarnet, in which all of a client's bridges collude to restrict the exit nodes that the client knows about. Fixes bug 5343. | |||
| * | | | Correctly handle broken escape sequences in torrc values | Nick Mathewson | 2012-03-09 | |
| |/ / | | | | | | | | | | | Previously, malformatted torrc values could crash us. Patch by Esteban Manchado. Fixes bug 5090; fix on 0.2.0.16-alpha. | |||
| * | | Fix compile warnings in openbsd malloc | Sebastian Hahn | 2012-03-08 | |
| | | | ||||
| * | | Merge remote-tracking branch 'karsten/geoip-march2012' into maint-0.2.2 | Nick Mathewson | 2012-03-08 | |
| |\ \ | ||||
| | * | | Update to the March 2012 GeoIP database. | Karsten Loesing | 2012-03-08 | |
| | | | | ||||
| * | | | new ip address for maatuska | Roger Dingledine | 2012-02-29 | |
| | |/ |/| | ||||
| * | | Properly protect paths to sed, sha1sum, openssl | Sebastian Hahn | 2012-02-10 | |
| | | | | | | | | | | | | | in Makefile.am, we used it without quoting it, causing build failure if your openssl/sed/sha1sum happened to live in a directory with a space in it (very common on windows) | |||
| * | | Downgrade "missing a certificate" from notice to info | Nick Mathewson | 2012-02-10 | |
| | | | | | | | | | | | | | | | It was apparently getting mistaken for a problem, even though it was at notice. Fixes 5067; fix on 0.2.0.10-alpha. | |||
| * | | Use correct CVE number for CVE-2011-4576. Found by fermenthor. bug 5066 | Nick Mathewson | 2012-02-10 | |
| | | | ||||
| * | | Merge branch 'maint-0.2.1' into maint-0.2.2 | Roger Dingledine | 2012-02-09 | |
| |\| | ||||
| | * | Update to the February 2012 GeoIP database. | Karsten Loesing | 2012-02-09 | |
| | | | ||||
| * | | Revert "add a "docs" to the manual URI as listed in torrc.sample.in" | Roger Dingledine | 2012-02-09 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 55e8cae81553678ec77ce6b8fb1bf2d5e483e0aa. The conversation from irc: > weasel: i had intended to leave torrc.sample.in alone in maint-0.2.2, since i don't want to make all your stable users have to deal with a torrc change. but nickm changed it. is it in fact the case that a change in that file means a change in the deb? <weasel> it means you'll prompt every single user who ever touched their torrc <weasel> and they will be asked if they like your new version better than what they have right now <weasel> so it's not great Instead I changed the website to redirect requests for the tor-manual URL listed in maint-0.2.2's torrc.sample.in so the link will still work. | |||
| * | | add a "docs" to the manual URI as listed in torrc.sample.in | Nick Mathewson | 2012-02-08 | |
| | | | ||||
| * | | Fix SOCKET_OK test on win64. | Nick Mathewson | 2012-01-18 | |
| | | | | | | | | | Bugfix on 0.2.2.29-beta; partial fix for 4533; found by wanoskarnet | |||
| * | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2012-01-11 | |
| |\| | ||||
| | * | Fix a compilation warning for our bug4822 fix on 64-bit linux | Nick Mathewson | 2012-01-11 | |
| | | | ||||
| * | | Fix comment about TLSv1_method() per comments by wanoskarnet | Nick Mathewson | 2012-01-09 | |
| | | | ||||
| * | | Fix a trivial log message error in renservice.c | Nick Mathewson | 2012-01-09 | |
| | | | | | | | | | | | | | Fixes bug 4856; bugfix on 0.0.6 This bug was introduced in 79fc5217, back in 2004. | |||
| * | | when the consensus fails, list which dir auths were in or out | Roger Dingledine | 2012-01-08 | |
| | | | ||||
| * | | nickname, not identity fingerprint, will help more | Roger Dingledine | 2012-01-08 | |
| | | | ||||
| * | | tell me who votes are actually for, not just where they're from | Roger Dingledine | 2012-01-08 | |
| | | | ||||
| * | | add a note from wanoskarnet | Roger Dingledine | 2012-01-08 | |
| | | | | | | | | | he disagrees about what the code that we decided not to use would do | |||
| * | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2012-01-05 | |
| |\| | ||||
| | * | Log at info level when disabling SSLv3 | Robert Ransom | 2012-01-05 | |
| | | | ||||
| | * | Disable SSLv3 when using a not-up-to-date openssl | Nick Mathewson | 2012-01-05 | |
| | | | | | | | | | This is to address bug 4822, and CVE-2011-4576. | |||
| * | | Merge branch 'maint-0.2.1' into maint-0.2.2 | Roger Dingledine | 2012-01-05 | |
| |\| | ||||
| | * | Update to the January 2012 GeoIP database. | Karsten Loesing | 2012-01-05 | |
| | | | ||||
| * | | Fix spelling in a controlsocket log msg | Sebastian Hahn | 2011-12-30 | |
| | | | | | | | | | Fixes bug 4803. | |||
| * | | Merge remote-tracking branch 'public/bug4788' into maint-0.2.2 | Nick Mathewson | 2011-12-28 | |
| |\ \ | ||||
| | * | | Authorities reject insecure Tors. | Nick Mathewson | 2011-12-27 | |
| | | | | | | | | | | | | | | | | | | | This patch should make us reject every Tor that was vulnerable to CVE-2011-0427. Additionally, it makes us reject every Tor that couldn't handle RELAY_EARLY cells, which helps with proposal 110 (#4339). | |||
| * | | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2011-12-28 | |
| |\ \ \ | |/ / |/| / | |/ | ||||
| | * | Bug 4786 fix: don't convert EARLY to RELAY on v1 connections | Nick Mathewson | 2011-12-28 | |
| | | | | | | | | | | | | | We used to do this as a workaround for older Tors, but now it's never the correct thing to do (especially since anything that didn't understand RELAY_EARLY is now deprecated hard). | |||
| * | | Provide correct timeradd/timersup replacements | Sebastian Hahn | 2011-12-25 | |
| | | | | | | | | | Bug caught and patch provided by Vektor. Fixes bug 4778.t | |||
| * | | Do not even try to keep going on a socket with socklen==0 | Nick Mathewson | 2011-12-21 | |
| | | | | | | | | | | | | | | | | | | | | | Back in #1240, r1eo linked to information about how this could happen with older Linux kernels in response to nmap. Bugs #4545 and #4547 are about how our approach to trying to deal with this condition was broken and stupid. Thanks to wanoskarnet for reminding us about #1240. This is a fix for the abovementioned bugs, and is a bugfix on 0.1.0.3-rc. | |||
| * | | Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2 | Nick Mathewson | 2011-12-15 | |
| |\| | ||||
| | * | Add a fix for the buf_pullup bug that Vektor reported | Nick Mathewson | 2011-12-15 | |
| | | | ||||
| * | | Merge branch 'maint-0.2.1' into maint-0.2.2 | Roger Dingledine | 2011-12-08 | |
| |\| | ||||
| | * | Update to the December 2011 GeoIP database. | Karsten Loesing | 2011-12-08 | |
| | | | ||||
| * | | Don't call tor_tls_set_logged_address till after checking conn->tls | Nick Mathewson | 2011-12-02 | |
| | | | | | | | | | Fixes bug 4531; partial backport of e27a26d5. | |||
| * | | tor_accept_socket() should take tor_addr_t for listener arg | Nick Mathewson | 2011-12-02 | |
| | | | | | | | | | Fixes bug 4535; bugfix on 0.2.2.28-beta; found by "troll_un" | |||
| * | | Fix bug 4530; check return val of tor_addr_lookup correctly | Nick Mathewson | 2011-12-02 | |
| | | | | | | | | | Fix on 0.2.1.5-alpha; reported by troll_un | |||
| * | | Detect tor_addr_to_str failure in tor_dup_addr. | Nick Mathewson | 2011-11-23 | |
| | | | | | | | | | | | | | This avoids a possible strdup of an uninitialized buffer. Fixes 4529; fix on 0.2.1.3-alpha; reported by troll_un. | |||
| * | | Merge remote-tracking branch 'public/bug4230' into maint-0.2.2 | Nick Mathewson | 2011-11-23 | |
| |\ \ | ||||
| | * | | Correct the handling of overflow behavior in smartlist_ensure_capacity | Nick Mathewson | 2011-11-09 | |
| | | | | | | | | | | | | | | | | | | | The old behavior was susceptible to the compiler optimizing out our assertion check, *and* could still overflow size_t on 32-bit systems even when it did work. | |||
| * | | | Fix a compile warning on 64bit OS X | Sebastian Hahn | 2011-11-23 | |
| | | | | | | | | | | | | | | | | | | | Backport of 68475fc5c5a806ebbb5657de1667dab2c3e09b7c which accidentally only made it into master. Fixes bug 4547. Bug isn't in any released version. | |||
| * | | | parameterize bw cutoffs to guarantee Fast and Guard flags | Roger Dingledine | 2011-11-21 | |
| | | | | | | | | | | | | | | | | Now it will be easier for researchers to simulate Tor networks with different values. Resolves ticket 4484. | |||
| * | | | Merge branch 'bug4518' into maint-0.2.2 | Nick Mathewson | 2011-11-21 | |
| |\ \ \ | ||||
| | * | | | Only call cull_wedged_cpuworkers once every 60 seconds. | Nick Mathewson | 2011-11-19 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The function is over 10 or 20% on some of Moritz's profiles, depending on how you could. Since it's checking for a multi-hour timeout, this is safe to do. Fixes bug 4518. | |||
| * | | | | Merge remote-tracking branch 'public/bug3963' into maint-0.2.2 | Nick Mathewson | 2011-11-21 | |
| |\ \ \ \ | ||||