tor - Transit encryption and privacy out of the box

Age	Commit message (Collapse)	Author
2015-06-17	Correctly handle failed crypto_early_init	teor
	If crypto_early_init fails, a typo in a return value from tor_init means that tor_main continues running, rather than returning an error value. Fixes bug 16360; bugfix on d3fb846d8c98 in 0.2.5.2-alpha, introduced when implementing #4900. Patch by "teor".
2015-05-05	Fix out-of-bounds read in INTRODUCE2 client auth	John Brooks
	The length of auth_data from an INTRODUCE2 cell is checked when the auth_type is recognized (1 or 2), but not for any other non-zero auth_type. Later, auth_data is assumed to have at least REND_DESC_COOKIE_LEN bytes, leading to a client-triggered out of bounds read. Fixed by checking auth_len before comparing the descriptor cookie against known clients. Fixes #15823; bugfix on 0.2.1.6-alpha.
2015-04-06	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson

2015-04-06	Handle empty/zero length encoded intro points more gracefully.	Yawning Angel
	In theory these should never the triggered as the only caller now validates the parameters before this routine gets called.
2015-04-06	Treat empty introduction points sections as missing.	Yawning Angel
	Found by DonnchaC.
2015-04-06	Validate the RSA key size received when parsing INTRODUCE2 cells.	Yawning Angel
	Fixes bug 15600; reported by skruffy
2015-04-03	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson

2015-04-03	Merge branch 'bug15515_024' into maint-0.2.4	Nick Mathewson

2015-04-03	... and if we do get multiple INTRODUCE1s on a circuit, kill the circuit	George Kadianakis
	(Sending a nak would be pointless.) See ticket 15515 for discussion.
2015-04-03	Block multiple introductions on the same intro circuit.	George Kadianakis

2015-03-12	Revert "Make TransProxyType ipfw work correctly"	Nick Mathewson
	This reverts commit 681802817deb6fb93b95f8284856fd42f3556600. (I didn't mean to backport this, but somehow I had based my branch for #15205 on it.)
2015-03-12	Merge remote-tracking branch 'public/bug15205_025' into maint-0.2.5	Nick Mathewson

2015-03-09	Restore c89 in 0.2.5	Nick Mathewson

2015-03-09	Merge remote-tracking branch 'public/bug14261_025' into maint-0.2.5	Nick Mathewson

2015-03-09	GETINFO bw-event-cache to get information on recent BW events	Nick Mathewson
	Closes 14128; useful to regain functionality lost because of 13988.
2015-03-09	Merge remote-tracking branch 'public/bug13988_025' into maint-0.2.5	Nick Mathewson

2015-03-09	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson

2015-03-09	Merge remote-tracking branch 'origin/maint-0.2.3' into maint-0.2.4	Nick Mathewson

2015-03-04	Make TransProxyType ipfw work correctly	Nick Mathewson
	Fixes bug 15064; bugfix on 0.2.5.4-alpha.
2015-03-03	Make the assert related to 15083 a tiny bit more tolerant	Nick Mathewson

2015-03-03	Do not leave empty, invalid chunks in buffers during buf_pullup	Nick Mathewson
	This fixes an assertion failure bug in 15083; bugfix on 0.2.0.10-alpha. Patch from 'cypherpunks'
2015-02-24	Merge remote-tracking branch 'public/bug14129_024' into maint-0.2.4	Nick Mathewson

2015-02-20	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson

2015-02-16	Faravahar's New IP Address as of 2/20/2015	Sina Rabbani

2015-01-18	Increase limit for status vote download size by a factor of 5.	Nick Mathewson
	We've started to hit the limit here. We introduced the limit in 0.1.2.5-alpha. This fixes bug 14261, but we should have a smarter way to not actually do the behavior this permits. See #14267 for a ticket about fixing that.
2015-01-13	Remove needless strdup in addressmap_register_virtual_address()	Nick Mathewson
	Fixes bug 14195. Bugfix on 0.1.0.1-rc.
2015-01-12	Merge remote-tracking branch 'public/bug14129_024' into maint-0.2.5	Nick Mathewson

2015-01-11	Don't crash on torrc Vi[rtualAddrNetworkIPv[4\|6]] with no option value	teor
	Check for a missing option value in parse_virtual_addr_network before asserting on the NULL in tor_addr_parse_mask_ports. This avoids crashing on torrc lines like Vi[rtualAddrNetworkIPv[4\|6]] when no value follows the option. Bugfix on 0.2.3 (de4cc126cbb5 on 24 November 2012), fixes #14142.
2015-01-08	Avoid attempts to double-remove edge connections from the DNS resolver.	Nick Mathewson
	Also, avoid crashing when we attempt to double-remove an edge connection from the DNS resolver: just log a bug warning instead. Fixes bug 14129. Bugfix on 0d20fee2fbd48978, which was in 0.0.7rc1. jowr found the bug. cypherpunks wrote the fix. I added the log message and removed the assert.
2015-01-07	Enlarge the buffer for a line in a bw file	Sebastian Hahn

2014-12-22	Increase bandwidth usage report interval to 4 hours.	Nick Mathewson

2014-11-19	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson

2014-11-19	Update longclaw dirauth IP to be a more stable location	Micah Anderson

2014-11-12	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson
	Conflicts: src/or/config.c
2014-11-12	Remove turtles as a directory authority (#13296)	Micah Anderson

2014-11-12	Add longclaw as a directory authority (#13296)	Micah Anderson

2014-10-16	Downgrade 'unexpected sendme cell from client' to PROTOCOL_WARN	Nick Mathewson
	Closes 8093.
2014-09-20	Merge branch 'maint-0.2.4' into maint-0.2.5	Roger Dingledine
	Conflicts: src/or/config.c
2014-09-20	Merge branch 'maint-0.2.3' into maint-0.2.4	Roger Dingledine

2014-09-20	gabelmoo's IPv4 address changed	Sebastian Hahn

2014-09-16	Merge remote-tracking branch 'origin/maint-0.2.4' into maint-0.2.5	Nick Mathewson

2014-09-16	clients now send correct address for rendezvous point	Roger Dingledine
	Clients now send the correct address for their chosen rendezvous point when trying to access a hidden service. They used to send the wrong address, which would still work some of the time because they also sent the identity digest of the rendezvous point, and if the hidden service happened to try connecting to the rendezvous point from a relay that already had a connection open to it, the relay would reuse that connection. Now connections to hidden services should be more robust and faster. Also, this bug meant that clients were leaking to the hidden service whether they were on a little-endian (common) or big-endian (rare) system, which for some users might have reduced their anonymity. Fixes bug 13151; bugfix on 0.2.1.5-alpha.
2014-09-11	Reduce log severity for unused ClientTransportPlugin lines	Roger Dingledine
	Tor Browser includes several ClientTransportPlugin lines in its torrc-defaults file, leading every Tor Browser user who looks at her logs to see these notices and wonder if they're dangerous. Resolves bug 13124; bugfix on 0.2.5.3-alpha.
2014-09-10	In routerlist_assert_ok(), check r2 before taking &(r2->cache_info)	Nick Mathewson
	Technically, we're not allowed to take the address of a member can't exist relative to the null pointer. That makes me wonder how any sane compliant system implements the offsetof macro, but let's let sleeping balrogs lie. Fixes 13096; patch on 0.1.1.9-alpha; patch from "teor", who was using clang -fsanitize=undefined-trap -fsanitize-undefined-trap-on-error -ftrapv
2014-09-10	Merge remote-tracking branch 'public/bug12908_025' into maint-0.2.5	Nick Mathewson

2014-09-09	Merge remote-tracking branch 'andrea/bug12160_025' into maint-0.2.5	Nick Mathewson

2014-09-09	Merge remote-tracking branch 'public/bug12700_024' into maint-0.2.5	Nick Mathewson

2014-09-09	Clean up the MVSC nmake files so they work again.	Nick Mathewson
	Fixes bug 13081; bugfix on 0.2.5.1-alpha. Patch from "NewEraCracker."
2014-09-09	Add more escaped() calls in directory.c	Nick Mathewson
	Patch from teor to fix 13071.
2014-09-08	Expand the event_mask field in controller conns to 64 bits	Nick Mathewson
	Back in 078d6bcd, we added an event number 0x20, but we didn't make the event_mask field big enough to compensate. Patch by "teor". Fixes 13085; bugfix on 0.2.5.1-alpha.