| Age | Commit message (Collapse) | Author |
|---|
|
|
|
Now deprecated in libc >= 2.33
Closes #40309
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
These options are meant for testing builds only, and are likely to
cause trouble if used in a production environment.
Closes #18888.
|
|
At this commit, a new service registers to the module and a store is created.
It also remove itself from the metrics module if it goes away.
In order to hook into the metrics subsystem, this commit attaches the HS
subsystem into the subsystem global list so its get_metrics() call can be
accessible.
HS initialization is still _not_ done through the subsys module as it is
likely require much more testing.
Related to #40063
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
Related to #40063
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
Fixes #40163
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
no actual changes
|
|
|
|
|
|
Fix crash introduced in #40020. On startup, tor calls
check_private_dir on the data and key directories. This function
uses open instead of opendir on the received directory. Data and
key directoryes are only opened here, so the seccomp rule added
should be for open instead of opendir, despite the fact that they
are directories.
|
|
|
|
|
|
Different versions of glibc use either open or openat for the
opendir function. This commit adds logic to use the correct rule
for each glibc version, namely:
- Until 2.14 open is used
- From 2.15 to to 2.21 openat is used
- From 2.22 to 2.26 open is used
- From 2.27 onwards openat is used
|
|
|
|
Also adds the compiled and running glibc version when using the
--library-versions flag.
|
|
|
|
|
|
|
|
|
|
These are logically independent from the rest of rephist, and make
more sense in isolation. The next patch will rename them too.
|
|
Built in tracing should _not_ be run if it was not set on purpose. Warn as
loud as we can in order to inform the user that they are running a version
with tracing capabilities built in.
This commit also adds a subsys stub because utlimately the logging will happen
in the init phase but because the default log file is not set in the
sys_logging init function, the stub is not useful for now.
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
|
|
|
|
|
|
When it works, "non-builtin" doesn't do anything different from
"short". (When it doesn't work, it gives an assertion failure.)
Closes ticket #33398.
|
|
With prop312, we want to support IPv4 and IPv6 thus multiple Address statement
(up to 2) will be accepted.
For this, "Address" option becomes a LINELIST so we can properly process the
IPv4 or/and IPv6.
Part of #33233
Signed-off-by: David Goulet <dgoulet@torproject.org>
|
|
|
|
|
|
|
|
I'm prefixing this with --dbg-* because it is not meant to be used
externally.
|
|
|
|
|
|
Process uses evloop, and so should be initialized after it.
|
|
Pubsub events are not supposed to have their own subsystems; they're
supposed to be part of a parent subsystem.
|
|
This code was in our process module, but it doesn't belong there:
process is for launching and monitoring subprocesses, not for
hardening the current process.
This change lets us have our subsystem init order more closely match
our dependency order.
|
|
|
|
lib/log no longer uses lib/thread; lib/log only uses lib/lock, which
is at a lower level.
|
|
|
|
Fixes bug 32778; bugfix on 0.4.1.1-alpha.
|
|
This reverts commit 5c240db0bf7751d74ba438a1ca4ef0d051a53df7.
|
|
|
|
|
|
When we made these functions exist unconditionally (as macros on
non-windows platforms), we started to get a dead-code warning on
Coverity. We now use a macro to tell coverity not to worry about
this particular dead-code instance.
|
|
|
|
Closes ticket 32137.
|
|
|
|
This lets us simplify main.c a little, and avoid a practracker
exception.
Followup from #32883.
|
|
Followup for #32883.
|
|
These changes were created using the "make autostyle" from
32522, and then split into commits.
|
