aboutsummaryrefslogtreecommitdiff
path: root/src/or/routerkeys.c
AgeCommit message (Collapse)Author
2017-01-30Merge branch 'combined-fuzzing-v4'Nick Mathewson
2017-01-30Make a bunch of signature/digest-checking functions mockableNick Mathewson
2017-01-17relay: Honor DataDirectoryGroupReadable at key initDavid Goulet
Our config code is checking correctly at DataDirectoryGroupReadable but then when we initialize the keys, we ignored that option ending up at setting back the DataDirectory to 0700 instead of 0750. Patch by "redfish". Fixes #19953 Signed-off-by: David Goulet <dgoulet@torproject.org>
2016-12-08Merge branch 'feature15056_v1_squashed'Nick Mathewson
2016-12-08Add a function to check whether a given ed id key is oursNick Mathewson
2016-12-01Fix compilationNick Mathewson
2016-11-27Improve log messages related to identity keys7r
Improve the messages logged when Tor wants or needs to load the master ed25519 identity key so the user is explicitly informed when further action is required or not. Fixes ticket #20650.
2016-11-03whitespace fixesNick Mathewson
2016-11-03Merge branch 'feature_15055_v2'Nick Mathewson
2016-11-03Mark some functions as needing documentation in src/or/routerkeys.c.Isis Lovecruft
2016-11-03Document two additional functions in src/or/routerkeys.c.Isis Lovecruft
Adds docstrings for generate_ed_link_cert() and should_make_new_ed_keys().
2016-11-03Unit tests for cert-chain-processing, including failed casesNick Mathewson
Check out the coverage!
2016-11-03For testing: function to construct (but not save) Ed keys and certsNick Mathewson
2016-11-03Free rsa_ed_crosscert at exit.Nick Mathewson
Fixes bug 17779; bugfix on 0.2.7.2-alpha.
2016-10-24Module-document dnsserv.c, policies.c, routerkeys.cNick Mathewson
2016-10-11Fix spurious compiler warning in do_getpass().Nick Mathewson
Some compilers apparently noticed that p2len was allowed to be equal to msg, and so maybe we would be doing memset(prompt2, ' ', 0), and decided that we probably meant to do memset(prompt2, 0, 0x20); instead. Stupid compilers, doing optimization before this kind of warning! My fix is to just fill the entire prompt2 buffer with spaces, because it's harmless. Bugfix on e59f0d4cb964387c5, not in any released Tor.
2016-10-10Fix non-triggerable heap corruption at do_getpass().George Kadianakis
2016-07-28Fix a huge pile of -Wshadow warnings.Nick Mathewson
These appeared on some of the Jenkins platforms. Apparently some GCCs care when you shadow globals, and some don't.
2016-07-28Fix all -Wshadow warnings on LinuxNick Mathewson
This is a partial fix for 18902.
2016-06-25Fix a typo in the getting passphrase prompt for the ed25519 identity keyPeter Palfrader
2016-04-01Merge branch 'bug18133_027' into maint-0.2.8Nick Mathewson
2016-04-01fix indentationNick Mathewson
2016-03-26Do not treat "DOCDOC" as doxygen.Nick Mathewson
2016-03-21Log a better message when OfflineMasterKey is set.Nick Mathewson
Fixes bug 18133; bugfix on 0.2.7.2-alpha.
2016-02-27Update the copyright year.Nick Mathewson
2016-02-27Make sure that every module in src/or has a brief description.Nick Mathewson
2016-02-10Rename crypto_digest_all, and digests_t.Nick Mathewson
They are no longer "all" digests, but only the "common" digests. Part of 17795. This is an automated patch I made with a couple of perl one-liners: perl -i -pe 's/crypto_digest_all/crypto_common_digests/g;' src/*/*.[ch] perl -i -pe 's/\bdigests_t\b/common_digests_t/g;' src/*/*.[ch]
2015-10-21Fix a memory leak in reading an expired ed signing key.Nick Mathewson
Closes 17403.
2015-09-22Merge branch 'feature16769_squashed'Nick Mathewson
2015-09-22Add a --master-key optionNick Mathewson
This lets the user override the default location for the master key when used with --keygen Part of 16769.
2015-09-22Add a new --newpass option to add or remove secret key passphrases.Nick Mathewson
2015-09-22Merge branch 'feature16944_v2'Nick Mathewson
2015-09-13Convince coverity that we do not have a particular memory leakNick Mathewson
2015-09-10Merge remote-tracking branch 'public/ed25519_hup_v2'Nick Mathewson
2015-09-04Never ever try to load the secret key if offline_master is setNick Mathewson
(Not even if we can't find the public key.)
2015-09-04Add "OfflineMasterKey" optionNick Mathewson
When this is set, and Tor is running as a relay, it will not generate or load its secret identity key. You can manage the secret identity key with --keygen. Implements ticket 16944.
2015-09-01Fix a false-positive in coverity scan with an assertionNick Mathewson
CID 1301373
2015-09-01Fix code for checking expired certificates on loadNick Mathewson
Fixes CID 1306915, which noticed that the check was dead.
2015-08-19Reload Ed25519 keys on sighup.Nick Mathewson
Closes ticket 16790.
2015-08-19More log messages for keygen problemsNick Mathewson
2015-08-19Explain better why we are about to load the master key.Nick Mathewson
2015-08-19When we infer the master key from the certificate, save it to disk.Nick Mathewson
2015-08-19Add test_keygen tests for all log outputs; improve keygen outputs.Nick Mathewson
2015-08-19Resolve failing test_keygen tests.Nick Mathewson
2015-08-19Checkpoint work on ed25519 keygen improvements.Nick Mathewson
Needs changes file, documentation, test integration, more tests.
2015-07-16Fix most check-spaces issuesNick Mathewson
2015-07-15Merge branches 'feature_16582' and 'feature_16581'Nick Mathewson
2015-07-15Don't allow INIT_ED_KEY_{NO_REPAIR,NEEDCERT} to be used together.Nick Mathewson
We haven't implemented NO_REPAIR for NEEDCERT, and we don't need it: but it's safest to stop any attempt to use it that way.
2015-07-15Add more EINVAL errno setting on key read failuresNick Mathewson
Teor found these. This is for part of #16582.
2015-07-14Add more consistency checks in load_ed_keysNick Mathewson
Make sure that signing certs are signed by the right identity key, to prevent a recurrence of #16530. Also make sure that the master identity key we find on disk matches the one we have in RAM, if we have one. This is for #16581.
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion