summaryrefslogtreecommitdiff
path: root/scripts
AgeCommit message (Collapse)Author
2019-06-19Make the great grand practracker happy...David Goulet
Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-06-06practracker: accept 3 extra lines in router_parse_entry_from_string()teor
practracker exception for bug 30781.
2019-06-05Regenerate practracker excpetions fileNick Mathewson
2019-06-05practracker updateNick Mathewson
2019-06-05Merge branch 'bug30286_2_squashed'Nick Mathewson
2019-06-05Document TOR_UPSTREAM_REMOTE_NAME env variablerl1987
2019-06-05Merge branch 'tor-github/pr/1072'George Kadianakis
2019-06-04update practrackerNick Mathewson
2019-05-31Practracker excpetions.Nick Mathewson
2019-05-29Merge branch 'tor-github/pr/1037'George Kadianakis
2019-05-28Merge branch 'tor-github/pr/1047'David Goulet
2019-05-27Make sure that we send at least some random data in RELAY_DATA cellsNick Mathewson
Proposal 289 prevents SENDME-flooding by requiring the other side to authenticate the data it has received. But this data won't actually be random if they are downloading a known resource. "No problem", we said, "let's fell the empty parts of our cells with some randomness!" and we did that in #26871. Unfortunately, if the relay data payloads are all completely full, there won't be any empty parts for us to randomize. Therefore, we now pick random "randomness windows" between CIRCWINDOW_INCREMENT/2 and CIRCWINDOW_INCREMENT. We remember whether we have sent a cell containing at least 16 bytes of randomness in that window. If we haven't, then when the window is exhausted, we send one. (This window approach is designed to lower the number of rng checks we have to do. The number 16 is pulled out of a hat to change the attacker's guessing difficulty to "impossible".) Implements 28646.
2019-05-23cov-test-determinism: use the same RNG seed as in travis.ymlNick Mathewson
We added this facility so that we could get deterministic PRNG behavior for coverage testing on tests that use a replaced PRNG. We need to have our coverage determinism tool test for this as well.
2019-05-22Merge branch 'ticket30428_041_02_squashed'Nick Mathewson
2019-05-22sendme: Properly record SENDMEs on both edgesDavid Goulet
Turns out that we were only recording the "b_digest" but to have bidirectionnal authenticated SENDMEs, we need to use the "f_digest" in the forward cell situation. Because of the cpath refactoring, this commit plays with the crypt_path_ and relay_crypto_t API a little bit in order to respect the abstractions. Previously, we would record the cell digest as the SENDME digest in the decrypt cell function but to avoid code duplication (both directions needs to record), we now do that right after iff the cell is recognized (at the edge). It is now done in circuit_receive_relay_cell() instead. We now also record the cell digest as the SENDME digest in both relay cell encryption functions since they are split depending on the direction. relay_encrypt_cell_outbound() and relay_encrypt_cell_inbound() need to consider recording the cell digest depending on their direction (f vs b digest). Fixes #30428 Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-05-22sendme: Record cell digest on both client and exitDavid Goulet
It turns out that only the exit side is validating the authenticated SENDME v1 logic and never the client side. Which means that if a client ever uploaded data towards an exit, the authenticated SENDME logic wouldn't apply. For this to work, we have to record the cell digest client side as well which introduced a new function that supports both type of edges. This also removes a test that is not valid anymore which was that we didn't allow cell recording on an origin circuit (client). Part of #30428 Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-05-20updateCopyright: look at the current year.Nick Mathewson
2019-05-20rectify_include_paths: warn instead of aborting on duplicate headersNick Mathewson
We have two sendme.h files at the moment; we should fix that, but not in this branch.
2019-05-16Yes, these functions really do have to be this long.Mike Perry
2019-05-15Merge branch 'tor-github/pr/1021'David Goulet
Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-05-15Merge branch 'bug28780-squashed3-rebased' into bug28780_rebaseGeorge Kadianakis
2019-05-15The practracker beatings will continue until the files get smaller.Mike Perry
2019-05-15Practracker beatings are even more fun when they get caused mid-PR due to a ↵Mike Perry
github auto-rebase of a PR Because github PRs choose the most recent origin/master at the time of the PR (and for any fixups pushed to a PR later to send to CI), there are tons of conflicts and unexpected practracker issues. This means CI can suddenly fail after fixups to a branch that pass locally. Then CI fails and we have to close and re-open the PR.
2019-05-14update practracker for tor_initNick Mathewson
2019-05-14Update practracker for 30452Nick Mathewson
2019-05-14Merge remote-tracking branch 'tor-github/pr/1004'Nick Mathewson
2019-05-13Merge branch 'bug28683_30173_29203_squashed'Nick Mathewson
2019-05-13The practracker beatings will continue until the functions get smaller.Mike Perry
2019-05-13Merge remote-tracking branch 'tor-github/pr/998'Nick Mathewson
2019-05-11pre-push.git-hook: Check remote name to see if it's upstreamrl1987
2019-05-10Merge branch 'tor-github/pr/973'George Kadianakis
2019-05-07Only call tor_addr_parse() in circuit_is_acceptable() when neededNeel Chauhan
2019-05-03Hiding crypt_path_t: Hide 'crypto' usage in sendme.cGeorge Kadianakis
2019-05-03Hiding crypt_path_t: Trivial changes to satisfy check-local.George Kadianakis
2019-05-03Merge branch 'tor-github/pr/984'David Goulet
Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-05-02Merge branch 'tor-github/pr/986'George Kadianakis
2019-05-02practracker updates.Nick Mathewson
2019-05-01The practracker beatings will continue until our files get smaller.Mike Perry
2019-05-01pre-push.git-hook: Allow fixup and squash commits when pushing to ↵rl1987
non-upstream branches
2019-04-30Coccinelle scripts for control.c refactorTaylor Yu
2019-04-30Split reply formatting out of control_fmt.cTaylor Yu
Split the core reply formatting code out of control_fmt.c into control_proto.c. The remaining code in control_format.c deals with specific subsystems and will eventually move to join those subsystems.
2019-04-30Merge branch 'tor-github/pr/936'George Kadianakis
2019-04-30Merge branch 'tor-github/pr/993'George Kadianakis
2019-04-30Merge branch 'tor-github/pr/983'George Kadianakis
2019-04-30Merge branch 'tor-github/pr/980'David Goulet
Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-04-30Move dirauth periodic events into dirauth module.Nick Mathewson
Closes ticket 30294.
2019-04-29practracker: Update exceptions for #26288David Goulet
Signed-off-by: David Goulet <dgoulet@torproject.org>
2019-04-26Make nodelist_get_list() return a const pointer.Nick Mathewson
2019-04-25Use parsing code for the simpler controller commands.Nick Mathewson
(This should be all of the command that work nicely with positional arguments only.) Some of these commands should probably treat extra arguments as incorrect, but for now I'm trying to be careful not to break any existing users.
2019-04-25When parsing a multiline controller command, be careful with linebreaksNick Mathewson
The first line break in particular was mishandled: it was discarded if no arguments came before it, which made it impossible to distinguish arguments from the first line of the body. To solve this, we need to allocate a copy of the command rather than using NUL to separate it, since we might have "COMMAND\n" as our input. Fixes ticket 29984.