summaryrefslogtreecommitdiff
path: root/src/lib
AgeCommit message (Collapse)Author
2018-09-27Detect an unlikely integer overflow.Nick Mathewson
2018-09-27geoip: fix windows compilationNick Mathewson
2018-09-27Extract the non-stats part of geoip into a new src/lib/geoip.Nick Mathewson
2018-09-24Fix arm compilation with openssl <1.1Nick Mathewson
Bug 27781; bugfix on 0.3.5.1-alpha.
2018-09-20Fix an NSS socket leak-on-error found by dgouletNick Mathewson
2018-09-20Use the correct macro to detect an invalid socket in tortls_nss.cNick Mathewson
Fixes bug 27782; bugfix on 0.3.5.1-alpha
2018-09-20Release ownership of the dummy socket that tortls_nss.c will closeNick Mathewson
Related to #27795 -- since NSS will close the socket, we must not count it as owned by Tor.
2018-09-20Add a tor_release_socket_ownership() function.Nick Mathewson
2018-09-20Merge branch 'maint-0.3.4'Nick Mathewson
2018-09-18Fix minor memleak in edge-case of crypto_rsa.c function.George Kadianakis
2018-09-17Lower the maximum size of a private key file to 16 MBNick Mathewson
This shouldn't be a user-visible change: nobody has a 16 MB RSA key that they're trying to use with Tor. I'm doing this to fix CID 1439330 / ticket 27730, where coverity complains (on 64-bit) that we are making a comparison that is never true.
2018-09-16When Tor is compiled with NSS, don't claim support for LinkAuth=1Nick Mathewson
Closes ticket 27288
2018-09-14Add a missing function for windowsNick Mathewson
2018-09-14Explicitly ignore BIO_set_close() return val to fix #27711Nick Mathewson
2018-09-14Merge branch 'nss_countbytes_squashed'Nick Mathewson
2018-09-14Allow malloc includes in tls libraryNick Mathewson
2018-09-14Add support for lower-level byte counting with NSSNick Mathewson
This is harder than with OpenSSL, since OpenSSL counts the bytes on its own and NSS doesn't. To fix this, we need to define a new PRFileDesc layer that has its own byte-counting support. Closes ticket 27289.
2018-09-14Merge branch 'nss_27664'Nick Mathewson
2018-09-14Merge branch 'nss_27451'Nick Mathewson
2018-09-13Include torint.h in socketpair.c for intptr_t definition.Nick Mathewson
2018-09-13Fix a 32-bit off_t/size_t warning in crypto_rsa.cNick Mathewson
Bug not in any released Tor.
2018-09-13Merge remote-tracking branch 'UntoSten/inform-about-conf-includes'Nick Mathewson
2018-09-13Run crypto_prefork() before start_daemon().Nick Mathewson
Without this, RunAsDaemon breaks NSS. Fixes bug 27664; bug not in any released Tor.
2018-09-12Merge remote-tracking branch 'tor-github/pr/280'Nick Mathewson
2018-09-12Add a tor_tls_release_socket() function.Nick Mathewson
This function tells the underlying TLS object that it shouldn't close the fd on exit. Mostly, we hope not to have to use it, since the NSS implementation is kludgey, but it should allow us to fix
2018-09-12Merge remote-tracking branch 'tor-github/pr/298'Nick Mathewson
2018-09-12Merge remote-tracking branch 'tor-github/pr/318'Nick Mathewson
2018-09-09Refactor initialization in curve25519_basepoint_spot_checkNick Mathewson
This is an attempt to work around what I think may be a bug in OSS-Fuzz, which thinks that uninitialized data might be passed to the curve25519 functions.
2018-09-07Merge remote-tracking branch 'dgoulet/ticket20700_035_03'Nick Mathewson
2018-09-07test: Build an HSv3 descriptor with authorized clientSuphanat Chunhapanya
Signed-off-by: David Goulet <dgoulet@torproject.org>
2018-09-07Merge remote-tracking branch 'teor/bug27521'Nick Mathewson
2018-09-07Merge branch 'maint-0.3.4'Nick Mathewson
2018-09-07Comment: Fix typos in get_interface_addresses_win32()teor
Closes 27521.
2018-09-06Revert "Avoid double-close on TCP sockets under NSS."Nick Mathewson
This reverts commit b5fddbd24144a94580e50886cd07a82968a1b86c. The commit here was supposed to be a solution for #27451 (fd management with NSS), but instead it caused an assertion failure. Fixes bug 27500; but not in any released Tor.
2018-09-06Merge remote-tracking branch 'teor/ticket27467'Nick Mathewson
2018-09-06Remove GetAdaptersAddresses_fn_tteor
The code that used it was removed as part of the 26481 refactor. Closes ticket 27467.
2018-09-05Backport to older NSS, which does not have SEC_DerSignDataWithAlgorithmIDNick Mathewson
2018-09-05Fix checkspacesNick Mathewson
2018-09-05Suppress strict-prototypes warnings in one more batch of NSS headersNick Mathewson
2018-09-05Add a last-ditch memwipe() implementation for nss+old glibcNick Mathewson
On new glibc versions, there's an explicit_bzero(). With openssl, there's openssl_memwipe(). When no other approach works, use memwipe() and a memory barrier.
2018-09-05Fix a type, and hopefully the win64 builds.Nick Mathewson
2018-09-05Add note about use of tor_memcmp()Nick Mathewson
2018-09-05Fix a reverse-inull warning from coverity in new code.Nick Mathewson
2018-09-04Debug one last reference-counting issue that only appeared on openssl masterNick Mathewson
2018-09-04Merge branch 'nss_squashed' into nss_mergeNick Mathewson
2018-09-04Resolve openssl-only memory leaksNick Mathewson
2018-09-04Fix a pair of remaining leaks in tortls_nss.cNick Mathewson
Fun fact: PR_Close leaks memory if its socket is not valid.
2018-09-04Use FREE_AND_NULL for impl typesNick Mathewson
2018-09-04Port test_tortls_verify to not depend on openssl internalsNick Mathewson
2018-09-04Remove tor_tls_check_lifetime as unused.Nick Mathewson
Everything that might have used it, uses tor_tls_cert_is_valid() instead.
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion