summaryrefslogtreecommitdiff
path: root/src/common
AgeCommit message (Collapse)Author
2012-02-12Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
Conflicts: src/common/Makefile.am src/or/Makefile.am
2012-02-10Properly protect paths to sed, sha1sum, opensslSebastian Hahn
in Makefile.am, we used it without quoting it, causing build failure if your openssl/sed/sha1sum happened to live in a directory with a space in it (very common on windows)
2012-02-10Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
Conflicts: src/common/tortls.c Conflict on comment near use of the new OPENSSL_V macro
2012-02-10Use correct CVE number for CVE-2011-4576. Found by fermenthor. bug 5066Nick Mathewson
2012-01-31Fix straggling MS_WINDOWS issues; add a changes fileNick Mathewson
There was one MS_WINDOWS that remained because it wasn't on a macro line; a few remaining uses (and the definition!) in configure.in; and a now-nonsensical stanza of eventdns_tor.h that previously defined 'WIN32' if it didn't exist.
2012-01-31Use the standard _WIN32, not the Torism MS_WINDOWS or deprecated WIN32Nick Mathewson
This commit is completely mechanical; I used this perl script to make it: #!/usr/bin/perl -w -i.bak -p if (/^\s*\#/) { s/MS_WINDOWS/_WIN32/g; s/\bWIN32\b/_WIN32/g; }
2012-01-31Actually enable the windows absolute-path codeNick Mathewson
Checking for "WINDOWS" is wrong; our magic macro is MS_WINDOWS Fixes bug 4973; bugfix on 0.2.3.11-alpha.
2012-01-18Rename nonconformant identifiers.Nick Mathewson
Fixes bug 4893. These changes are pure mechanical, and were generated with this perl script: /usr/bin/perl -w -i.bak -p s/crypto_pk_env_t/crypto_pk_t/g; s/crypto_dh_env_t/crypto_dh_t/g; s/crypto_cipher_env_t/crypto_cipher_t/g; s/crypto_digest_env_t/crypto_digest_t/g; s/aes_free_cipher/aes_cipher_free/g; s/crypto_free_cipher_env/crypto_cipher_free/g; s/crypto_free_digest_env/crypto_digest_free/g; s/crypto_free_pk_env/crypto_pk_free/g; s/_crypto_dh_env_get_dh/_crypto_dh_get_dh/g; s/_crypto_new_pk_env_rsa/_crypto_new_pk_from_rsa/g; s/_crypto_pk_env_get_evp_pkey/_crypto_pk_get_evp_pkey/g; s/_crypto_pk_env_get_rsa/_crypto_pk_get_rsa/g; s/crypto_new_cipher_env/crypto_cipher_new/g; s/crypto_new_digest_env/crypto_digest_new/g; s/crypto_new_digest256_env/crypto_digest256_new/g; s/crypto_new_pk_env/crypto_pk_new/g; s/crypto_create_crypto_env/crypto_cipher_new/g; s/connection_create_listener/connection_listener_new/g; s/smartlist_create/smartlist_new/g; s/transport_create/transport_new/g;
2012-01-18Merge remote-tracking branch 'public/bug4533_part1'Nick Mathewson
Conflicts: src/common/compat.h
2012-01-18Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
2012-01-18Fix SOCKET_OK test on win64.Nick Mathewson
Bugfix on 0.2.2.29-beta; partial fix for 4533; found by wanoskarnet
2012-01-17Warn if sizeof(tor_socket_t) != sizeof(SOCKET)Nick Mathewson
2012-01-17Use SOCKET_OK macros in even more placesNick Mathewson
Add a TOR_INVALID_SOCKET macro to wrap -1/INVALID_SOCKET. Partial work for bug4533.
2012-01-16Convert instances of tor_malloc+tor_snprintf into tor_asprintfNick Mathewson
These were found by looking for tor_snprintf() instances that were preceeded closely by tor_malloc(), though I probably converted some more snprintfs as well. (In every case, make sure that the length variable (if any) is removed, renamed, or lowered, so that anything else that might have assumed a longer buffer doesn't exist.)
2012-01-16Rename smartlist_{v,}asprintf_add to smartlist_add_{v,}asprintfNick Mathewson
2012-01-11Make openssl 0.9.8l log message accurateNick Mathewson
fixes 4837
2012-01-11Merge branch 'feature3457-v4-nm-squashed'Nick Mathewson
Conflicts: src/or/rendclient.c
2012-01-11Use spaceless ISO8601 time format, not sec,usec.Nick Mathewson
2012-01-11Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
2012-01-11Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2012-01-11Fix a compilation warning for our bug4822 fix on 64-bit linuxNick Mathewson
2012-01-10Merge remote-tracking branch 'public/bug4650_nm_squashed'Nick Mathewson
2012-01-10whitespace and warning fixes for bug4746Nick Mathewson
2012-01-10Merge remote-tracking branch 'asn-mytor/bug4746'Nick Mathewson
2012-01-10Add missing documentation for counter-mode checksNick Mathewson
2012-01-10Clean up indentation in aes.cNick Mathewson
2012-01-10Test for broken counter-mode at runtimeNick Mathewson
To solve bug 4779, we want to avoid OpenSSL 1.0.0's counter mode. But Fedora (and maybe others) lie about the actual OpenSSL version, so we can't trust the header to tell us if it's safe. Instead, let's do a run-time test to see whether it's safe, and if not, use our built-in version. fermenthor contributed a pretty essential fixup to this patch. Thanks!
2012-01-10We no longer need to detect openssl without RAND_poll()Nick Mathewson
We require openssl 0.9.7 or later, and RAND_poll() was first added in openssl 0.9.6.
2012-01-10Add macros to construct openssl version numbersNick Mathewson
It's a pain to convert 0x0090813f to and from 0.9.8s-release on the fly, so these macros should help.
2012-01-10Make sure MAX_DNS_LABEL_SIZE is definedSebastian Hahn
MAX_DNS_LABEL_SIZE was only defined for old versions of openssl, which broke the build. Spotted by xiando. Fixes bug 4413; not in any released version.
2012-01-09Tweaks for bug4413 fixNick Mathewson
The thing that's limited to 63 bytes is a "label", not a hostname. Docment input constraints and behavior on bogus inputs. Generally it's better to check for overflow-like conditions before than after. In this case, it's not a true overflow, so we're okay, but let's be consistent. pedantic less->fewer in the documentation
2012-01-09Remove (untriggerable) overflow in crypto_random_hostname()Stephen Palmateer
Fixes bug 4413; bugfix on xxxx. Hostname components cannot be larger than 63 characters. This simple check makes certain randlen cannot overflow rand_bytes_len.
2012-01-09Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
2012-01-09Fix comment about TLSv1_method() per comments by wanoskarnetNick Mathewson
2012-01-08Merge branch 'maint-0.2.2'Roger Dingledine
2012-01-08add a note from wanoskarnetRoger Dingledine
he disagrees about what the code that we decided not to use would do
2012-01-06Change to use SSL_state_string_long() instead of homebrew ↵Emile Snyder
ssl_state_to_string() function.
2012-01-05Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
2012-01-05Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2012-01-05Log at info level when disabling SSLv3Robert Ransom
2012-01-05Disable SSLv3 when using a not-up-to-date opensslNick Mathewson
This is to address bug 4822, and CVE-2011-4576.
2012-01-05note some dead code. if i'm right, should this be removed?Roger Dingledine
2012-01-04Disallow disabling DisableDebuggerAttachment on runnning TorSebastian Hahn
Also, have tor_disable_debugger_attach() return a tristate of success/failure/don't-know-how , and only log appropriately.
2011-12-30Fix a check-spaces violation in compat.cSebastian Hahn
Also fix a comment typo
2011-12-28Add interface enumeration based on SIOCGIFCONF for older unixesNick Mathewson
2011-12-28Multicast addresses, if any were configured, would not be good if addrsNick Mathewson
2011-12-28Use getifaddrs, not connect+getsockname, to find our addressNick Mathewson
This resolves bug1827, and lets us avoid freaking people out. Later, we can use it to get a complete list of our interfaces.
2011-12-27Require openssl 1.0.0a for using openssl's ctr-mode implementationNick Mathewson
Previously we required 1.0.0, but there was a bug in the 1.0.0 counter mode. Found by Pascal. Fixes bug 4779. A more elegant solution would be good here if somebody has time to code one.
2011-12-26Merge remote-tracking branch 'origin/maint-0.2.2'Nick Mathewson
2011-12-25Provide correct timeradd/timersup replacementsSebastian Hahn
Bug caught and patch provided by Vektor. Fixes bug 4778.t
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion