aboutsummaryrefslogtreecommitdiff
path: root/src
Commit message (Collapse)AuthorAge
* Merge remote-tracking branch 'houqp/hs_control'Nick Mathewson2014-02-03
|\
| * add test case for node_describe_by_idQingping Hou2014-01-29
| |
| * add test case for hidden service async eventsQingping Hou2014-01-29
| |
| * add hidden service descriptor async control eventQingping Hou2014-01-29
| |
* | slownacl's pure-python curve25519 lets us test ntor everywhere.Nick Mathewson2014-02-03
| | | | | | | | | | | | Improvement on f308adf8382bc7e61ea05a172, where we made the ntor unit tests run everywhere... so long as a python curve25519 module was installed. Now the unit tests don't require that module.
* | Merge remote-tracking branch 'public/bug10758'Nick Mathewson2014-02-03
|\ \
| * | Rip out all of the v2 directory code.Nick Mathewson2014-01-29
| |/ | | | | | | | | | | The remaining vestige is that we continue to publish the V2dir flag, and that, for the controller, we continue to emit v2 directory formats when requested.
* | Some anti-forensics paranoia...Florent Daigniere2014-02-03
| | | | | | | | sed -i 's/BN_free/BN_clear_free/g'
* | Add a sandbox rule to allow IP_TRANSPARENTNick Mathewson2014-02-02
| |
* | Move the friendly warning about TPROXY and root to EPERM timeNick Mathewson2014-02-02
| | | | | | | | | | | | | | | | I'm doing this because: * User doesn't mean you're running as root, and running as root doesn't mean you've set User. * It's possible that the user has done some other capability-based hack to retain the necessary privileges.
* | Add support for TPROXY via new TransTPRoxy optionNick Mathewson2014-01-31
|/ | | | Based on patch from "thomo" at #10582.
* whitespace fixesNick Mathewson2014-01-17
|
* Coverate in util.c: test that tor_parse_* rejects negative base.Nick Mathewson2014-01-17
|
* Add an --accel switch to run unit tests with crypto accelerationNick Mathewson2014-01-17
|
* Fix some seccomp2 issuesNick Mathewson2014-01-06
| | | | | Fix for #10563. This is a compatibility issue with libseccomp-2.1. I guess you could call it a bugfix on 0.2.5.1?
* Add explicit check for 0-length extend2 cellsNick Mathewson2014-01-03
| | | | | | This is harmless in the Tor of today, but important for correctness. Fixes bug 10536; bugfix on 0.2.4.8-alpha. Reported by "cypherpunks".
* Merge remote-tracking branch 'public/bug10485'Nick Mathewson2013-12-24
|\
| * Move onion-type stats message into heartbeatNick Mathewson2013-12-24
| | | | | | | | Fix for 10485. Fix on 0.2.4.17-alpha.
* | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-22
|\|
| * Fix automapping to ipv6Nick Mathewson2013-12-22
| | | | | | | | Bugfix on 0.2.4.7-alpha; fixes bug 10465.
* | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-21
|\|
| * Fix a logic error in circuit_stream_is_being_handled.Nick Mathewson2013-12-21
| | | | | | | | | | | | | | | | | | | | When I introduced the unusable_for_new_circuits flag in 62fb209d837f3f551, I had a spurious ! in the circuit_stream_is_being_handled loop. This made us decide that non-unusable circuits (that is, usable ones) were the ones to avoid, and caused it to launch a bunch of extra circuits. Fixes bug 10456; bugfix on 0.2.4.12-alpha.
* | Merge remote-tracking branch 'linus/bug10324'Nick Mathewson2013-12-20
|\ \
| * | Make tor-gencert create 2048 bit signing keys.Linus Nordberg2013-12-12
| | |
* | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-18
|\ \ \ | | |/ | |/| | | | | | | Conflicts: src/common/crypto.c
| * | Never allow OpenSSL engines to replace the RAND_SSLeay methodNick Mathewson2013-12-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes bug 10402, where the rdrand engine would use the rdrand instruction, not as an additional entropy source, but as a replacement for the entire userspace PRNG. That's obviously stupid: even if you don't think that RDRAND is a likely security risk, the right response to an alleged new alleged entropy source is never to throw away all previously used entropy sources. Thanks to coderman and rl1987 for diagnosing and tracking this down.
* | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-17
|\| |
| * | Merge branch 'bug10423' into maint-0.2.4Nick Mathewson2013-12-17
| |\ \
| | * | Avoid double-free on failure to dump_descriptor() a cached mdNick Mathewson2013-12-17
| | | | | | | | | | | | | | | | | | | | | | | | This is a fix for 10423, which was introducd in caa0d15c in 0.2.4.13-alpha. Spotted by bobnomnom.
* | | | Merge remote-tracking branch 'origin/maint-0.2.4'Nick Mathewson2013-12-17
|\| | | | |_|/ |/| | | | | | | | | | | | | | | | | Conflicts: src/or/microdesc.c Conflict because one change was on line adjacent to line where 01206893 got fixed.
| * | Merge remote-tracking branch 'public/bug10409_023' into maint-0.2.4Nick Mathewson2013-12-17
| |\ \ | | |/ | |/|
| | * Avoid free()ing from an mmap on corrupted microdesc cacheNick Mathewson2013-12-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The 'body' field of a microdesc_t holds a strdup()'d value if the microdesc's saved_location field is SAVED_IN_JOURNAL or SAVED_NOWHERE, and holds a pointer to the middle of an mmap if the microdesc is SAVED_IN_CACHE. But we weren't setting that field until a while after we parsed the microdescriptor, which left an interval where microdesc_free() would try to free() the middle of the mmap(). This patch also includes a regression test. This is a fix for #10409; bugfix on 0.2.2.6-alpha.
* | | Fix get_configured_bridge_by_addr_port_digest(.,.,NULL)rl19872013-12-09
| | | | | | | | | | | | | | | | | | The old behavior was that NULL matched only bridges without known identities; the correct behavior is that NULL should match all bridges (assuming that their addr:port matches).
* | | Merge remote-tracking branch 'public/bug10131_024'Nick Mathewson2013-12-09
|\ \ \
| * | | Remove a check in channeltls.c that could never fail.Nick Mathewson2013-12-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We were checking whether a 8-bit length field had overflowed a 503-byte buffer. Unless somebody has found a way to store "504" in a single byte, it seems unlikely. Fix for 10313 and 9980. Based on a pach by Jared L Wong. First found by David Fifield with STACK.
* | | | Set CREATE_NO_WINDOW in tor_spawn_background.David Fifield2013-12-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This flag prevents the creation of a console window popup on Windows. We need it for pluggable transport executables--otherwise you get blank console windows when you launch the 3.x browser bundle with transports enabled. http://msdn.microsoft.com/en-us/library/ms684863.aspx#CREATE_NO_WINDOW The browser bundles that used Vidalia used to set this flag when launching tor itself; it was apparently inherited by the pluggable transports launched by tor. In the 3.x bundles, tor is launched by some JavaScript code, which doesn't have the ability to set CREATE_NO_WINDOW. tor itself is now being compiled with the -mwindows option, so that it is a GUI application, not a console application, and doesn't show a console window in any case. This workaround doesn't work for pluggable transports, because they need to be able to write control messages to stdout. https://trac.torproject.org/projects/tor/ticket/9444#comment:30
* | | | Restore prop198 behavior from 4677 patchNick Mathewson2013-11-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The previous commit from piet would have backed out some of proposal 198 and made servers built without the V2 handshake not use the unrestricted cipher list from prop198. Bug not in any released Tor.
* | | | Restore ability to build with V2_HANDSHAKE_SERVERNick Mathewson2013-11-25
| | | | | | | | | | | | | | | | Fixes bug 4677; bugfix on 0.2.3.2-alpha. Fix by "piet".
* | | | Avoid warning about impossible check for flags & 0Nick Mathewson2013-11-22
| | | | | | | | | | | | | | | | Fixes CID 743381
* | | | Only update view of micrdescriptor pos if pos is fetchable.Nick Mathewson2013-11-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It's conceivable (but probably impossible given our code) that lseek could return -1 on an error; when that happens, we don't want off to become -1. Fixes CID 1035124.
* | | | Add checks to prevent memcmp(.,.,negative) in tests (CID 1064417)Nick Mathewson2013-11-22
| | | |
* | | | Fix another unit test memory leak. CID1087949,CID1087950.Nick Mathewson2013-11-22
| | | |
* | | | Fix a bunch of coverity-spotted unit test resource leaksNick Mathewson2013-11-22
| | | | | | | | | | | | | | | | CIDs: 1130994, 1130993, 1130992, 1130991
* | | | Remove needless fd var from test. CID 1130989.Nick Mathewson2013-11-22
| | | |
* | | | Handle unlikely negative time in tor_log_err_sigsafeNick Mathewson2013-11-22
| | | | | | | | | | | | | | | | Coverity wants this; CID 1130990.
* | | | Whitespace cleanupNick Mathewson2013-11-20
| | | |
* | | | Merge remote-tracking branch 'sysrqb/bug9859_5'Nick Mathewson2013-11-20
|\ \ \ \
| * | | | A Bridge Authority should compute flag thresholdsMatthew Finkel2013-10-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As a bridge authority, before we create our networkstatus document, we should compute the thresholds needed for the various status flags assigned to each bridge based on the status of all other bridges. We then add these thresholds to the networkstatus document for easy access. Fixes for #1117 and #9859.
* | | | | Fix crypto/digests testNick Mathewson2013-11-18
| | | | |
* | | | | Merge branch 'finish_prop157'Nick Mathewson2013-11-18
|\ \ \ \ \