summaryrefslogtreecommitdiff
path: root/src/or/config.c
diff options
context:
space:
mode:
authorRoger Dingledine <arma@torproject.org>2009-09-19 21:03:49 -0400
committerRoger Dingledine <arma@torproject.org>2009-12-21 03:52:32 -0500
commitc75a2eea60435dd078c6a8aaf20626162f7f8b27 (patch)
treeac82f0f278348df45e3478bab74ce2e89774199a /src/or/config.c
parentf2c51cb998bac9b240c3713f7230387c2e3698eb (diff)
downloadtor-c75a2eea60435dd078c6a8aaf20626162f7f8b27.tar.gz
tor-c75a2eea60435dd078c6a8aaf20626162f7f8b27.zip
Abandon circs if the user changes Exclude*Nodes
If ExcludeNodes or ExcludeExitNodes changes on a config reload, mark and discard all our origin circuits.
Diffstat (limited to 'src/or/config.c')
-rw-r--r--src/or/config.c29
1 files changed, 9 insertions, 20 deletions
diff --git a/src/or/config.c b/src/or/config.c
index 2e2c89a901..b67ed3f52e 100644
--- a/src/or/config.c
+++ b/src/or/config.c
@@ -1418,9 +1418,16 @@ options_act(or_options_t *old_options)
/* Check for transitions that need action. */
if (old_options) {
- if (options->UseEntryGuards && !old_options->UseEntryGuards) {
+
+ if ((options->UseEntryGuards && !old_options->UseEntryGuards) ||
+ (options->ExcludeNodes &&
+ !routerset_equal(old_options->ExcludeNodes,options->ExcludeNodes)) ||
+ (options->ExcludeExitNodes &&
+ !routerset_equal(old_options->ExcludeExitNodes,
+ options->ExcludeExitNodes))) {
log_info(LD_CIRC,
- "Switching to entry guards; abandoning previous circuits");
+ "Changed to using entry guards, or changed ExcludeNodes, or "
+ "changed ExcludeExitNodes. Abandoning previous circuits.");
circuit_mark_all_unused_circs();
circuit_expire_all_dirty_circs();
}
@@ -3204,24 +3211,6 @@ options_validate(or_options_t *old_options, or_options_t *options,
"features to be broken in unpredictable ways.");
}
-#if 0 /* for now, it's ok to set StrictNodes without setting any actual
- * preferences. It won't hurt anything. Eventually, either figure
- * out the logic for the right case to complain, or just delete. -RD */
- if (options->StrictExitNodes &&
- (!options->ExitNodes) &&
- (!old_options ||
- (old_options->StrictExitNodes != options->StrictExitNodes) ||
- (!routerset_equal(old_options->ExitNodes,options->ExitNodes))))
- COMPLAIN("StrictExitNodes set, but no ExitNodes listed.");
-
- if (options->StrictEntryNodes &&
- (!options->EntryNodes) &&
- (!old_options ||
- (old_options->StrictEntryNodes != options->StrictEntryNodes) ||
- (!routerset_equal(old_options->EntryNodes,options->EntryNodes))))
- COMPLAIN("StrictEntryNodes set, but no EntryNodes listed.");
-#endif
-
if (options->EntryNodes && !routerset_is_list(options->EntryNodes)) {
/* XXXX fix this; see entry_guards_prepend_from_config(). */
REJECT("IPs or countries are not yet supported in EntryNodes.");
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion