summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-12-23changes file for 21035.Nick Mathewson
2016-12-23Merge branch 'bug21035' into maint-0.2.9Nick Mathewson
2016-12-21Withstand failures in CLOCK_MONOTONIC_COARSENick Mathewson
This came up on #21035, where somebody tried to build on a linux system with kernel headers including CLOCK_MONOTONIC_COARSE, then run on a kernel that didn't support it. I've adopted a belt-and-suspenders approach here: we detect failures at initialization time, and we also detect (loudly) failures later on. Fixes bug 21035; bugfix on 0.2.9.1-alpha when we started using monotonic time.
2016-12-20Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
2016-12-20Merge branch 'maint-0.2.7' into maint-0.2.8Nick Mathewson
2016-12-20Merge branch 'maint-0.2.6' into maint-0.2.7Nick Mathewson
2016-12-20Add a one-word sentinel value of 0x0 at the end of each buf_t chunkNick Mathewson
This helps protect against bugs where any part of a buf_t's memory is passed to a function that expects a NUL-terminated input. It also closes TROVE-2016-10-001 (aka bug 20384).
2016-12-20Merge branch 'maint-0.2.5' into maint-0.2.6Nick Mathewson
("ours" merge because there is a separate 20384 patch for 026)
2016-12-20Add a one-word sentinel value of 0x0 at the end of each buf_t chunkNick Mathewson
This helps protect against bugs where any part of a buf_t's memory is passed to a function that expects a NUL-terminated input.
2016-12-20Merge branch 'maint-0.2.4' into maint-0.2.5Nick Mathewson
(ours merge -- there is a separate 0.2.5 patch for 20384.)
2016-12-20Add a one-word sentinel value of 0x0 at the end of each buf_t chunkNick Mathewson
This helps protect against bugs where any part of a buf_t's memory is passed to a function that expects a NUL-terminated input.
2016-12-20Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
2016-12-20Merge branch 'maint-0.2.7' into maint-0.2.8Nick Mathewson
2016-12-20Merge branch 'maint-0.2.6' into maint-0.2.7Nick Mathewson
2016-12-20Merge branch 'maint-0.2.5' into maint-0.2.6Nick Mathewson
2016-12-20Merge branch 'maint-0.2.4' into maint-0.2.5Nick Mathewson
2016-12-19Bump to 0.2.9.8-devNick Mathewson
2016-12-19Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
"Ours" merge to avoid version bump.
2016-12-19Bump to 0.2.8.12-devNick Mathewson
2016-12-19Bump to 0.2.9.8Nick Mathewson
2016-12-19Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
"ours" merge to avoid version bump.
2016-12-19Bump to 0.2.8.12Nick Mathewson
2016-12-19Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
2016-12-19Merge branch 'bug21018_024' into maint-0.2.8Nick Mathewson
2016-12-19Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
2016-12-19Merge remote-tracking branch 'teor/new-fallbacks-028-20161219' into maint-0.2.8Nick Mathewson
2016-12-19Update the fallback directory mirror list in December 2016teor
Replace the 81 remaining fallbacks of the 100 originally introduced in Tor 0.2.8.3-alpha in March 2016, with a list of 177 fallbacks (123 new, 54 existing, 27 removed) generated in December 2016. Resolves ticket 20170.
2016-12-18Make log message warn about detected attempts to exploit 21018.Nick Mathewson
2016-12-18Fix parsing bug with unecognized token at EOSNick Mathewson
In get_token(), we could read one byte past the end of the region. This is only a big problem in the case where the region itself is (a) potentially hostile, and (b) not explicitly nul-terminated. This patch fixes the underlying bug, and also makes sure that the one remaining case of not-NUL-terminated potentially hostile data gets NUL-terminated. Fix for bug 21018, TROVE-2016-12-002, and CVE-2016-1254
2016-12-12version bump: 0.2.9.7-rc-devNick Mathewson
2016-12-11Spell MAC_OS_X_VERSION_10_12 correctly.Nick Mathewson
Fixes 20935.
2016-12-11Bump version 0.2.9.7-rcNick Mathewson
2016-12-11Merge remote-tracking branch 'dgoulet/bug20938_029_01' into maint-0.2.9Nick Mathewson
2016-12-09test: fix memory leak in single onion poisoningDavid Goulet
Closes #20938 Signed-off-by: David Goulet <dgoulet@torproject.org>
2016-12-09Downgrade a harmless bug warning to info.Nick Mathewson
Makes 19926 less annoying in 0.2.9. In 0.3.0, we should actually fix this.
2016-12-09Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
2016-12-09Merge branch 'maint-0.2.7' into maint-0.2.8Nick Mathewson
2016-12-09Merge branch 'maint-0.2.6' into maint-0.2.7Nick Mathewson
2016-12-09Merge branch 'maint-0.2.5' into maint-0.2.6Nick Mathewson
2016-12-09Merge branch 'maint-0.2.4' into maint-0.2.5Nick Mathewson
2016-12-09router: Fix memory leak in signed_descriptor_move()David Goulet
The signed_descriptor_move() was not releasing memory inside the destination object before overwriting it with the source object. This commit adds a reset function that free that memory inside a signed descriptor object and zero it. Closes #20715. Signed-off-by: David Goulet <dgoulet@torproject.org>
2016-12-09Update geoip and geoip6 to the December 7 2016 database.Karsten Loesing
2016-12-08Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
"Ours" merge to avoid bumping version.
2016-12-08Bump to 0.2.8.11-devNick Mathewson
2016-12-08Merge remote-tracking branch 'origin/maint-0.2.8' into maint-0.2.8Nick Mathewson
2016-12-08Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
2016-12-08Bump to 0.2.8.11Nick Mathewson
2016-12-08Use the correct preprocessor macro for Linuxcypherpunks
Also combine all of the checks into one if-tree as only one of them should actually succeed.
2016-12-08Merge branch 'bug19960_2' into maint-0.2.9Nick Mathewson
2016-12-07Merge branch 'maint-0.2.8' into maint-0.2.9Nick Mathewson
(ours merge, to avoid taking 20865 fix)
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion