| Age | Commit message (Collapse) | Author |
|---|
|
Increment failure counts only when circuits close without having been built.
Reset failure counts only on the second, and when circuits are done building.
svn:r847
|
|
bugfix: keep going when a circ fails in circuit_n_conn_open
(make circuit_enumerate_by_naddr_nport obsolete)
bugfix: make circuit_n_conn_open only look at circ's that start at us
bugfix: only try circuit_n_conn_open if we're an OP. Otherwise we
expect connections to always already be up.
bugfix: when choosing path length, pay attention to whether the directory
says a router is down.
bugfix: when picking good exit, skip routers which are known to be down
(more work needs to be done on this one)
svn:r838
|
|
expire circs that have been building for too long
svn:r835
|
|
quickly notice streams that don't have a circ on the way, and start one
svn:r819
|
|
svn:r818
|
|
not quite happy with it yet
svn:r817
|
|
svn:r814
|
|
automatically starting circuit builds.
svn:r813
|
|
- Exit policies now support bitmasks (18.0.0.0/255.0.0.0) and bitcounts
18.0.0.0/8. Policies are parsed on startup, not when comparing to them.
- desired_path_len is now part of an opaque cpath_build_state_t structure.
- END_REASON_EXITPOLICY cells no longer include a port.
- RELAY_COMMAND_CONNECTED cells now include the IP address we've connected
to.
- connection_edge now has a client_dns cache to remember resolved addresses.
It gets populated by RELAY_COMMAND_CONNECTED cells and END_REASON_EXITPOLICY
cells. It gets used by connection_ap_handshake_send_begin. We don't
compare it to exit policies yet.
svn:r812
|
|
svn:r810
|
|
change RecommendedVersions into a config option, so dirservers can hup
for a new one
svn:r809
|
|
svn:r805
|
|
svn:r794
|
|
svn:r793
|
|
is a the first step in computing hops one step at a time. Next, we move
the responsibility for calling onion_extend_cpath into circuit.c
(Later, we may want to special-case onion_extend_cpath to treat entry
and exit routers differently.)
svn:r792
|
|
svn:r787
|
|
svn:r784
|
|
Also:
- Refactor socks request into a separate struct
- Add a separate 'waiting for circuit' state to AP connections
between 'waiting for socks' and 'open'.
Arma: can you check out the XXX's I've added to connection_edge? I may
be mishandling some async and close logic.
svn:r783
|
|
fix badness in usage()
if neither socksport nor orrport is defined, quit
obsolete connection_flush_buf()
svn:r780
|
|
exit if bind fails
add usage printfs
rearrange config options for readability
svn:r674
|
|
maybe more robust now
svn:r655
|
|
move default exit policy into config files
svn:r653
|
|
setuid and setgid respectively, and die if it can't.
(If the User option is set, tor will setgid to the user's gid as well.)
This happens after the pidfile is created, so that in cases where tor
needs to be root to work with the pidfile, it will at least be able to
create it, although it won't be able to delete it. That sucks, but
it's somewhat better than not being able to create the pidfile in the
first place.
svn:r652
|
|
rename APPort to SocksPort
introduce new tor_free() macro
svn:r642
|
|
not when we're closing the stream.
this lets us put a payload in the end cell if we want to,
to describe why we're closing the stream.
there are still some places where we don't send the end cell
immediately. i need to track them down. but it's a low priority,
since i've made it send the end cell when we close the stream if
we haven't already sent it.
svn:r640
|
|
svn:r631
|
|
If DebugLogFile is specified, log to it at -l debug
If LogFile is specified, log to it at the -l from the commandline
(default info)
If no LogFile *and* not a Daemon, then log to stdout.
Make conn->s = -1 by default (this might break things)
When kill -USR1, prefer to log at INFO, but make sure they always see it.
svn:r596
|
|
svn:r593
|
|
svn:r583
|
|
(mainly doc and log changes)
svn:r579
|
|
svn:r569
|
|
(patch courtesy aaron turner)
svn:r565
|
|
svn:r564
|
|
svn:r560
|
|
svn:r555
|
|
our log() conflicts with log(3)
distribute only the correct files from doc/ and src/config/
sometimes laptops go back in time. i guess that's ok for now.
and bump the version number because we're live.
svn:r544
|
|
svn:r539
|
|
svn:r537
|
|
(or at least, we can talk to mozilla.)
svn:r536
|
|
svn:r533
|
|
ACIs are decided now by strcmp'ing nicknames, rather than comparing addr:port
svn:r529
|
|
svn:r528
|
|
svn:r527
|
|
svn:r523
|
|
svn:r519
|
|
Improve debugging output on fingerprint checking.
Make sure to add our own fingerprint to the fingerprint list _before_
adding our own descriptor, or else we'll reject ourself.
Don't call a directory invalid just because we have a newer descriptor
for some router.
Use router_get_dir_hash to generate hashes for signed directories.
Make sure we add our own descriptor successfully.
Don't fall-through on failed base64-endode.
svn:r514
|
|
(leave poll_array accessors in main.c)
svn:r512
|
|
svn:r510
|
|
we now add our own descriptor to the descriptor list
and we rebuild the directory (and dump to disk) after receiving a POST
svn:r509
|
|
svn:r503
|
