aboutsummaryrefslogtreecommitdiff
path: root/src
Commit message (Collapse)AuthorAge
...
* comment choose_good_exit_serverNick Mathewson2003-11-17
| | | | svn:r822
* trivial bugfixesRoger Dingledine2003-11-17
| | | | svn:r821
* Fix a segfault caused by a weird logic error and masked by another.Nick Mathewson2003-11-17
| | | | svn:r820
* recognize in-progress circs and don't start redundant onesRoger Dingledine2003-11-17
| | | | | | | quickly notice streams that don't have a circ on the way, and start one svn:r819
* bugfixesRoger Dingledine2003-11-16
| | | | svn:r818
* change when circuits are built and expiredRoger Dingledine2003-11-16
| | | | | | | not quite happy with it yet svn:r817
* bugfix: if you recognize a relay cell, don't also pass it on.Roger Dingledine2003-11-16
| | | | svn:r816
* dump exit policies correctly to descriptorRoger Dingledine2003-11-16
| | | | svn:r815
* initial patches on patchesRoger Dingledine2003-11-16
| | | | svn:r814
* Finish implementing the rest of the exitpolicy stuff, except for ↵Nick Mathewson2003-11-16
| | | | | | automatically starting circuit builds. svn:r813
* Improved exit policy syntax; basic client-side DNS caching.Nick Mathewson2003-11-14
| | | | | | | | | | | | | | | | | | | | - Exit policies now support bitmasks (18.0.0.0/255.0.0.0) and bitcounts 18.0.0.0/8. Policies are parsed on startup, not when comparing to them. - desired_path_len is now part of an opaque cpath_build_state_t structure. - END_REASON_EXITPOLICY cells no longer include a port. - RELAY_COMMAND_CONNECTED cells now include the IP address we've connected to. - connection_edge now has a client_dns cache to remember resolved addresses. It gets populated by RELAY_COMMAND_CONNECTED cells and END_REASON_EXITPOLICY cells. It gets used by connection_ap_handshake_send_begin. We don't compare it to exit policies yet. svn:r812
* commencing the bughuntRoger Dingledine2003-11-14
| | | | svn:r811
* bump default pathlen to 3; clean up surrounding codeRoger Dingledine2003-11-13
| | | | svn:r810
* let getconfig survive repeated calls. now we call it again when we hup.Roger Dingledine2003-11-13
| | | | | | | | change RecommendedVersions into a config option, so dirservers can hup for a new one svn:r809
* fix trivial typoRoger Dingledine2003-11-13
| | | | svn:r808
* warn on startup that we don't provide anonymityRoger Dingledine2003-11-13
| | | | | | | make exit dns cache entries last 15 minutes svn:r807
* lay groundwork for EntryNodes and ExitNodesRoger Dingledine2003-11-12
| | | | svn:r805
* break out the string manipulation routinesRoger Dingledine2003-11-12
| | | | svn:r804
* make dir parsing robust to invalid but well-formed descriptorsRoger Dingledine2003-11-12
| | | | svn:r800
* Remove minor biasing problem from crypto_pseudo_rand_intNick Mathewson2003-11-12
| | | | svn:r799
* connection_ap_handshake_send_begin always succeedsRoger Dingledine2003-11-12
| | | | svn:r798
* Make crypto_pseudo_rand* never fail.Nick Mathewson2003-11-12
| | | | svn:r797
* Restore erroneously removed assertNick Mathewson2003-11-12
| | | | svn:r796
* Fix thinko: Failure and success are different things.Nick Mathewson2003-11-12
| | | | svn:r795
* Remove dead codeNick Mathewson2003-11-12
| | | | svn:r794
* Compute paths as we build them.Nick Mathewson2003-11-12
| | | | svn:r793
* Refactor onion_generate_cpath to build cpaths one hop at a time. ThisNick Mathewson2003-11-12
| | | | | | | | | | | is a the first step in computing hops one step at a time. Next, we move the responsibility for calling onion_extend_cpath into circuit.c (Later, we may want to special-case onion_extend_cpath to treat entry and exit routers differently.) svn:r792
* point out bugRoger Dingledine2003-11-11
| | | | svn:r791
* more cleanups and bugfixRoger Dingledine2003-11-11
| | | | svn:r790
* leave conn->socks_request around after the beginRoger Dingledine2003-11-11
| | | | | | | that way we can reuse it if we need to try another begin later svn:r788
* conn->socks_version is obsoleteRoger Dingledine2003-11-11
| | | | svn:r787
* respond to nick's questionsRoger Dingledine2003-11-11
| | | | svn:r786
* fix a bug in handling clock skewRoger Dingledine2003-11-11
| | | | svn:r785
* Rename aci to circ_id throughout.Nick Mathewson2003-11-11
| | | | svn:r784
* Make AP connections wait for a circuit if none exists.Nick Mathewson2003-11-11
| | | | | | | | | | | | | Also: - Refactor socks request into a separate struct - Add a separate 'waiting for circuit' state to AP connections between 'waiting for socks' and 'open'. Arma: can you check out the XXX's I've added to connection_edge? I may be mishandling some async and close logic. svn:r783
* client now survives going offline betterRoger Dingledine2003-11-10
| | | | | | | | | fix badness in usage() if neither socksport nor orrport is defined, quit obsolete connection_flush_buf() svn:r780
* Check in a working cross-platform timegmNick Mathewson2003-11-10
| | | | svn:r779
* Add lots of logging to dns.c; change behavior of often-failing assertionNick Mathewson2003-11-08
| | | | svn:r778
* bugfix for win32 with lots of usersRoger Dingledine2003-10-27
| | | | | | | plus general cleanup on switch_id() svn:r684
* remove obsolete config fileRoger Dingledine2003-10-27
| | | | svn:r681
* add DirBindAddress, parse the BindAddress's when you bindRoger Dingledine2003-10-25
| | | | | | | | | exit if bind fails add usage printfs rearrange config options for readability svn:r674
* Use daemon(3) function where available.Nick Mathewson2003-10-23
| | | | svn:r665
* resolve warningNick Mathewson2003-10-23
| | | | svn:r664
* Two-pronged attack at my overzealous skew fixes.Nick Mathewson2003-10-23
| | | | | | | | | | | | | | | The problem was that the fixes had us generating TLS certs with a 2-day lifetime on the assumption that we'd rotate fairly often. In fact, we never rotate our TLS keys. This patch fixes the situation in 2 ways: 1. It bumps the default lifetime back up to one year until we get rotation in place. 2. It changes tor_tls_context_new() so that it doesn't leak memory when you call it more than once. svn:r663
* switch_id() no longer tries to log the user name when it's calld onSteven Hazel2003-10-22
| | | | | | | | Windows, since we don't know whether it's the user or the group that was set. svn:r659
* Clock skew fixes.Nick Mathewson2003-10-22
| | | | | | | | | | | | | | | | | | | | | | | | | | Allow some slop (currently 3 minutes) when checking certificate validity. Change certificate lifetime from 1 year to 2 days. Since we regenerate regularly (we regenerate regularly, right??), this shouldn't be a problem. Have directories reject descriptors published too far in the future (currently 30 minutes). If dirservs don't do this: 0) Today is January 1, 2000. 1) A very skewed server publishes descriptor X with a declared publication time of August 1, 2000. 2) The directory includes X. 3) Because of certificate lifetime issues, nobody can use the skewed server. 4) The server fixes its skew, and goes to republish a new descriptor Y with publication time of January 1, 2000. 5) But because the directory already has a "more recent" descriptor X, it rejects descriptor "Y" as superseded! This patch should make step 2 go away. svn:r658
* - fixed a bug in the id switching code -- setgid has to happen beforeSteven Hazel2003-10-22
| | | | | | | | | | | | | | | setuid, because after we setuid we don't have the priviledges we need to setgid anymore, duh. merged switch_user() and switch_group() into switch_id(), since that code has to be wound together. - return -1 from switch_id() if it's not defined to do anything else. - moved daemoinize(), write_pidfile(), and switch_id() from main.c to util.c svn:r656
* play with connection_edge_send_commandRoger Dingledine2003-10-22
| | | | | | | maybe more robust now svn:r655
* move default exit policy into config filesRoger Dingledine2003-10-22
| | | | svn:r654
* make end relay cells have payloadsRoger Dingledine2003-10-22
| | | | | | | move default exit policy into config files svn:r653
generated by cgit v1.2.3 (git 2.48.1) at 2025-04-12 06:31:03 +0000