summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2020-04-09Merge remote-tracking branch 'tor-github/pr/1784' into maint-0.3.5teor
2020-03-25Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-20Appveyor: Copy required DLLs to test and appteor
Copy required DLLs to test and app, before running tor's tests. This ensures that tor.exe and test*.exe use the correct version of each DLL. This fix is not required, but we hope it will avoid DLL search issues in future. Closes bug 33673; bugfix on 0.3.4.2-alpha.
2020-03-20Merge branch 'maint-0.3.5' into release-0.3.5teor
2020-03-19Appveyor: disable crypto/openssl_versionNick Mathewson
2020-03-19Add a TOR_SKIP_TESTCASES environment variable for suppressing tests.Nick Mathewson
For example, "TOR_SKIP_TESTCASES=crypto/.. ./src/test/test" will run the tests and suppress all the "crypto/" tests. You could get the same effect by running "./src/test/test :crypto/..", but that can be harder to arrange from CI. Part of a fix/workaround for 33643.
2020-03-18Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-18Bump version to 0.3.5.10-devNick Mathewson
2020-03-18Pick release date, copy changelog to releasenotes.tor-0.3.5.10Nick Mathewson
2020-03-18Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-18Port rsa_private_key_too_long() to work on OpenSSL 1.1.0.Nick Mathewson
2020-03-17fold in changelog and blurb for trove-2020-002Nick Mathewson
2020-03-17Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-17Merge branch 'trove_2020_002_035' into maint-0.3.5Nick Mathewson
2020-03-17Initial changelog for 0.3.5.10Nick Mathewson
2020-03-17Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-17Fix TROVE-2020-003.George Kadianakis
Given that ed25519 public key validity checks are usually not needed and (so far) they are only necessary for onion addesses in the Tor protocol, we decided to fix this specific bug instance without modifying the rest of the codebase (see below for other fix approaches). In our minimal fix we check that the pubkey in hs_service_add_ephemeral() is valid and error out otherwise.
2020-03-17Trivial bugfixes found during TROVE investigation.George Kadianakis
2020-03-17Use >= consistently with max_bits.Nick Mathewson
2020-03-17Add off-by-one checks for key length.Nick Mathewson
2020-03-17Extract key length check into a new function, and check more fields.Nick Mathewson
In the openssl that I have, it should be safe to only check the size of n. But if I'm wrong, or if other openssls work differently, we should check whether any of the fields are too large. Issue spotted by Teor.
2020-03-16Merge branch 'maint-0.3.5' into release-0.3.5teor
2020-03-16Travis: Produce detailed chutney diagnosticsteor
When a Travis chutney job fails, use chutney's new "diagnostics.sh" tool to produce detailed diagnostic output. Closes ticket 32792.
2020-03-14Fix memory leak in crypto_pk_asn1_decode_private.Nick Mathewson
(Deep, deep thanks to Taylor for reminding me to test this!)
2020-03-14Add a test for crypto_pk_asn1_decode_private maxbits.Nick Mathewson
2020-03-14Revise TROVE-2020-002 fix to work on older OpenSSL versions.Nick Mathewson
Although OpenSSL before 1.1.1 is no longer supported, it's possible that somebody is still using it with 0.3.5, so we probably shouldn't break it with this fix.
2020-03-13Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-13Bump to 0.3.5.10Nick Mathewson
2020-03-13Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-03-13Merge remote-tracking branch 'tor-github/pr/1693/head' into maint-0.3.5Nick Mathewson
2020-03-13Merge branch 'maint-0.3.5' into release-0.3.5teor
2020-03-12Fix unit tests that look at contactinfo logs.Nick Mathewson
2020-03-12config: Warn if ContactInfo is not setDavid Goulet
Closes #33361 Signed-off-by: David Goulet <dgoulet@torproject.org>
2020-03-11pem_decode(): Tolerate CRLF line endingsNick Mathewson
Fixes bug 33032; bugfix on 0.3.5.1-alpha when we introduced our own PEM decoder.
2020-03-10dos: Pass transport name on new client connectionDavid Goulet
For a bridge configured with a pluggable transport, the transport name is used, with the IP address, for the GeoIP client cache entry. However, the DoS subsystem was not aware of it and always passing NULL when doing a lookup into the GeoIP cache. This resulted in bridges with a PT are never able to apply DoS defenses for newly created connections. Fixes #33491 Signed-off-by: David Goulet <dgoulet@torproject.org>
2020-02-13Travis: Sort jobs in order of speedteor
Putting the slowest jobs first takes full advantage of Travis concurrency. Closes 33194.
2020-02-13Travis: Remove a redundant distcheck jobteor
Part of 33194.
2020-02-13Travis: Require the macOS IPv6 chutney jobteor
The job was previously set to fast_finish / allow_failure, to speed up the build. Closes ticket 33195.
2020-02-12hs-v3: Remove BUG() that can occur normallyDavid Goulet
Fixes #28992 Signed-off-by: David Goulet <dgoulet@torproject.org>
2020-02-12Merge branch 'maint-0.3.5' into release-0.3.5teor
2020-02-12Lowercase the BridgeDistribution value from torrc in descriptors.Alexander Færøy
This patch ensures that we always lowercase the BridgeDistribution from torrc in descriptors before submitting it. See: https://bugs.torproject.org/32753
2020-02-12Merge remote-tracking branch 'tor-github/pr/1689' into maint-0.3.5teor
2020-02-10Merge branch 'maint-0.3.5' into release-0.3.5Nick Mathewson
2020-02-10Merge branch 'bug33212_035' into maint-0.3.5Nick Mathewson
2020-02-10Fix a Rust compilation warning; resolve bug 33212.Nick Mathewson
2020-02-05changes file for 33119 aka TROVE-2020-002Nick Mathewson
2020-02-05When parsing tokens, reject early on spurious keys.Nick Mathewson
2020-02-05When parsing, reject >1024-bit RSA private keys sooner.Nick Mathewson
Private-key validation is fairly expensive for long keys in openssl, so we need to avoid it sooner.
2020-01-30Merge branch 'maint-0.3.5' into release-0.3.5teor
2020-01-30Merge remote-tracking branch 'tor-github/pr/1614' into maint-0.3.5teor
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion