| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-11-24 | Implement dynamic prime reading and storing to disk. | George Kadianakis | |
| 2011-11-24 | Make DynamicPrimes SIGHUP-able. | George Kadianakis | |
| Instead of passing the DynamicPrimes configuration option to crypto_global_init(), generate and set a new TLS DH prime when we read the torrc. | |||
| 2011-11-24 | Improve code in the dynamic primes realm. | George Kadianakis | |
| 2011-11-24 | Improve logging. | George Kadianakis | |
| 2011-11-24 | Make it compile. | George Kadianakis | |
| 2011-11-24 | Rename "Rakshasa" to "Dynamic Prime". | George Kadianakis | |
| 2011-11-24 | Introduce the DynamicPrimes configuration option. | George Kadianakis | |
| 2011-11-24 | Copy/Paste Jake's stuff. | George Kadianakis | |
| This commit copies parts of Jake's f3bb6846975193d9a6649c31f94bda47e4014070 commit verbatim to the current master. | |||
| 2011-11-24 | appease check-spaces | Sebastian Hahn | |
| 2011-11-24 | Fix compile warning in tor_inet_pton() (on 64bit) | Sebastian Hahn | |
| This slipped through into 0.2.3.8-alpha unfortunately. | |||
| 2011-11-23 | Merge remote-tracking branch 'origin/maint-0.2.2' | Nick Mathewson | |
| 2011-11-23 | Merge remote-tracking branch 'public/bug4230' into maint-0.2.2 | Nick Mathewson | |
| 2011-11-20 | Sockets are unsigned on windows | Sebastian Hahn | |
| this gets rid of a warning about signed/unsigned comparison This is a backport of 0a5338e03cdf14ef80584c6ff8adeb49200b8a76 that accidentally only went into master | |||
| 2011-11-20 | Get rid of an unused parameter warning on win | Sebastian Hahn | |
| This is a backport of bed79c47f4ec0ee72b19e2b81c54131d516d07ef which accidentally only went into master | |||
| 2011-11-19 | Minor tor_inet_pton bug fixes | Anders Sundman | |
| In particular: * Disallow "0x10::" * Don't blow up on ":" * Disallow "::10000" | |||
| 2011-11-16 | Merge branch 'bug4457_master' | Nick Mathewson | |
| 2011-11-16 | Fix a check-spaces complaint | Sebastian Hahn | |
| 2011-11-16 | Don't allow building on platforms where AF_UNSPEC != 0 | Sebastian Hahn | |
| 2011-11-15 | Make certificate skew into a protocol warning | Nick Mathewson | |
| 2011-11-15 | Allow up to a 30 days future skew, 48 hours past skew in certs. | Nick Mathewson | |
| 2011-11-15 | Fix compile warnings on windows | Sebastian Hahn | |
| 2011-11-14 | Disable IOCP and retry event_base_new_with_config once on failure | Nick Mathewson | |
| This is a fancier bug4457 workaround for 0.2.3. In 0.2.2, we could just tell Libevent "Don't enable locking!" so it wouldn't try to make the event_base notifiable. But for IOCP, we need a notifiable base. (Eventually, we'll want a notifiable base for other stuff, like multithreaded crypto.) So the solution is to try a full-featured initialization, and then retry with all the options turned off if that fails. | |||
| 2011-11-14 | Merge remote-tracking branch 'public/bug4457_022' into bug4457_master | Nick Mathewson | |
| Conflicts: src/common/compat_libevent.c Resolving conflict by not taking 7363eae13cb8 ("Use the EVENT_BASE_FLAG_NOLOCK flag to prevent socketpair() invocation"): in Tor 0.2.3.x, we _do_ sometimes use notifiable event bases. | |||
| 2011-11-14 | Detect failure from event_init() or event_base_new_with_config() | Nick Mathewson | |
| 2011-11-14 | Use the EVENT_BASE_FLAG_NOLOCK flag to prevent socketpair() invocation | Nick Mathewson | |
| In Tor 0.2.2, we never need the event base to be notifiable, since we don't call it from other threads. This is a workaround for bug 4457, which is not actually a Tor bug IMO. | |||
| 2011-11-14 | Merge remote-tracking branch '4ZM/topic/test/4433_address' | Nick Mathewson | |
| 2011-11-11 | Remove the torint.h include from aes.h | Sebastian Hahn | |
| This hasn't been needed for a while, there's nothing in aes.h now that would need uint* stuff. | |||
| 2011-11-11 | Remove vestiges of RIJNDAEL_COUNTER_OPTIMIZATION | Nick Mathewson | |
| 2011-11-11 | Stop using "u32" and "u8" in aes.c | Nick Mathewson | |
| 2011-11-11 | Dump our internal AES implementation | Nick Mathewson | |
| This thing was pretty pointless on versions of OpenSSL 0.9.8 and later, and almost totally pointless on OpenSSL 1.0.0. Also, favor EVP by default, since it lets us get hardware acceleration where present. (See issue 4442) | |||
| 2011-11-11 | Return value bugfix of tor_addr_to_PTR_name | Anders Sundman | |
| Returns value semantics was inconsitent between IPv4 and IPv6 | |||
| 2011-11-11 | Fixed buffer bounds check bug in tor_addr_to_str | Anders Sundman | |
| 2011-11-11 | Fixed of-by-one error in tor_inet_ntop | Anders Sundman | |
| The of-by-one error could lead to 1 byte buffer over runs IPv6 for addresses. | |||
| 2011-11-09 | Correct the handling of overflow behavior in smartlist_ensure_capacity | Nick Mathewson | |
| The old behavior was susceptible to the compiler optimizing out our assertion check, *and* could still overflow size_t on 32-bit systems even when it did work. | |||
| 2011-11-09 | Merge remote-tracking branch 'origin/maint-0.2.2' | Nick Mathewson | |
| 2011-11-09 | Don't warn when compiling with --disable-threads | Sebastian Hahn | |
| STMT_VOID semantics suggested by nick, thanks! | |||
| 2011-11-03 | Remove some duplicate includes | Andrea Gelmini | |
| 2011-10-28 | Fix a memory-poisoning memset in tortls.c | Nick Mathewson | |
| 2011-10-27 | Merge branch 'maint-0.2.2_secfix' into master_secfix | Sebastian Hahn | |
| Conflicts: src/common/tortls.c src/or/connection_or.c src/or/dirserv.c src/or/or.h | |||
| 2011-10-26 | Merge branch 'maint-0.2.1_secfix' into maint-0.2.2_secfix | Sebastian Hahn | |
| Conflicts: src/or/connection_or.c | |||
| 2011-10-26 | Don't send a certificate chain on outgoing TLS connections from non-relays | Nick Mathewson | |
| 2011-10-26 | Merge remote-tracking branch 'origin/maint-0.2.2' | Nick Mathewson | |
| 2011-10-26 | Properly refcount client_identity_key | Sebastian Hahn | |
| In a2bb0bf we started using a separate client identity key. When we are in "public server mode" (that means not a bridge) we will use the same key. Reusing the key without doing the proper refcounting leads to a segfault on cleanup during shutdown. Fix that. Also introduce an assert that triggers if our refcount falls below 0. That should never happen. | |||
| 2011-10-26 | Make crypto_free_pk_env tolerate NULL arg in 0.2.1. Error-proofing against ↵ | Nick Mathewson | |
| bug 988 backport | |||
| 2011-10-26 | Maintain separate server and client TLS contexts. | Robert Ransom | |
| Fixes bug #988. Conflicts: src/or/main.c src/or/router.c | |||
| 2011-10-26 | Refactor tor_tls_context_new: | Robert Ransom | |
| * Make tor_tls_context_new internal to tortls.c, and return the new tor_tls_context_t from it. * Add a public tor_tls_context_init wrapper function to replace it. Conflicts: src/or/main.c src/or/router.c | |||
| 2011-10-26 | Fix zlib macro brokenness on osx with zlib 1.2.4 and higher. | Nick Mathewson | |
| From the code: zlib 1.2.4 and 1.2.5 do some "clever" things with macros. Instead of saying "(defined(FOO) ? FOO : 0)" they like to say "FOO-0", on the theory that nobody will care if the compile outputs a no-such-identifier warning. Sorry, but we like -Werror over here, so I guess we need to define these. I hope that zlib 1.2.6 doesn't break these too. Possible fix for bug 1526. | |||
| 2011-10-23 | Fix a reference-leak in tor_tls_received_v3_certificate | Nick Mathewson | |
| We were calling SSL_get_peer_certificate but not X509_free. This is a major part of bug4252; the bug has been in no released version. | |||
| 2011-10-23 | Fix memory leak in prop176 code | Nick Mathewson | |
| This fixes part of bug4252. Bug not in any released version. | |||
| 2011-10-11 | Stop using addr_port_lookup as an address splitting function | Nick Mathewson | |
| It's too risky to have a function where if you leave one parameter NULL, it splits up address:port strings, but if you set it, it does hostname resolution. | |||
 |
index : tor | |
| Transit encryption and privacy out of the box | The Tor Project |
| summaryrefslogtreecommitdiff |