summaryrefslogtreecommitdiff
path: root/src/or
AgeCommit message (Collapse)Author
2011-10-02Record intro point timeouts in rend_intro_point_tRobert Ransom
2011-10-02Refetch an HS's desc if we don't have a usable oneRobert Ransom
Previously, we wouldn't refetch an HS's descriptor unless we didn't have one at all. That was equivalent to refetching iff we didn't have a usable one, but the next commit will make us keep some non-usable HS descriptors around in our cache. Code bugfix on the release that introduced the v2 HS directory system, because rend_client_refetch_v2_renddesc's documentation comment should have described what it actually did, not what its behaviour happened to be equivalent to; no behaviour change in this commit.
2011-09-13Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine
Conflicts: src/or/main.c src/or/router.c
2011-09-13Generate our ssl session certs with a plausible lifetimeRoger Dingledine
Nobody but Tor uses certs on the wire with 2 hour lifetimes, and it makes us stand out. Resolves ticket 4014.
2011-09-10Demote 'INTRODUCE2 cell is too {old,new}' message to info levelRobert Ransom
2011-09-10Demote HS 'replay detected' log message for DH public keys to info levelRobert Ransom
2011-09-10Describe rend_service_descriptor_t more completelyRobert Ransom
2011-09-10Describe rend_intro_point_t more completelyRobert Ransom
2011-09-10Fix log message typo.Robert Ransom
2011-09-09Merge remote-tracking branch 'public/gcc-295-fix' into maint-0.2.2Nick Mathewson
2011-09-09Merge remote-tracking branch 'public/enhance_replay_detection' into maint-0.2.2Nick Mathewson
2011-09-09Check for replays in PK-encrypted part of intro cell, not just in the g^x valueNick Mathewson
2011-09-07Merge remote-tracking branch 'public/bug2649_squashed' into maint-0.2.2Nick Mathewson
2011-09-06Fix assertion in addressmap_clear_excluded_trackexithostsNick Mathewson
Fixes bug 3923; bugfix on 0.2.2.25-alpha; bugfix from 'laruldan' on trac.
2011-08-30Use %f with printf-style formatting, not %lfNick Mathewson
For printf, %f and %lf are synonymous, since floats are promoted to doubles when passed as varargs. It's only for scanf that we need to say "%lf" for doubles and "%f" for floats. Apparenly, some older compilers think it's naughty to say %lf and like to spew warnings about it. Found by grarpamp.
2011-08-30Switch a SMARTLIST_FOREACH in circuitbuild.c to BEGIN/ENDNick Mathewson
It had some cpp stuff inside, and older GCCs don't like preprocessor directives inside macro arguments. Found by grarpamp.
2011-08-17Don't write ControlPorts to disk till after we setuid and make datadirNick Mathewson
Fix for bug 3747; bugfix on 0.2.2.26-beta.
2011-08-15Remove extra quotation marks around the result of esc_for_logRobert Ransom
2011-07-19Specify text or binary mode in every start_writing_to_stdio_file callRobert Ransom
2011-07-14Improve error msg on failed getinfo fingerprintNick Mathewson
2011-07-13Change GETINFO fingerprint to look at server_mode, not my_descriptorNick Mathewson
It's possible for us to be a server and have a fingerprint without having yet generated a descriptor. Fixes bug 3577; bugfix on 0.2.0.1-alpha
2011-07-07Correctly send a SUCCEEDED event for rdns requestsSebastian Hahn
The issue was that we overlooked the possibility of reverse DNS success at the end of connection_ap_handshake_socks_resolved(). Issue discovered by katmagic, thanks!
2011-07-06appease check-spacesRoger Dingledine
2011-07-05Merge remote-tracking branch 'rransom-tor/bug3465-022' into maint-0.2.2Nick Mathewson
2011-07-01Merge branch 'cov217_022_squashed' into maint-0.2.2Nick Mathewson
2011-07-01Use strlcpy when copying node IDs into measured_bw_line_tNick Mathewson
We were using strncpy before, which isn't our style for stuff like this. This isn't a bug, though: before calling strncpy, we were checking that strlen(src) was indeed == HEX_DIGEST_LEN, which is less than sizeof(dst), so there was no way we could fail to NUL-terminate. Still, strncpy(a,b,sizeof(a)) is an idiom that we ought to squash everyplace. Fixes CID #427.
2011-07-01Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-07-01Use strlcpy in create_unix_sockaddr()Nick Mathewson
Using strncpy meant that if listenaddress were ever >= sizeof(sockaddr_un.sun_path), we would fail to nul-terminate sun_path. This isn't a big deal: we never read sun_path, and the kernel is smart enough to reject the sockaddr_un if it isn't nul-terminated. Nonetheless, it's a dumb failure mode. Instead, we should reject addresses that don't fit in sockaddr_un.sun_path. Coverity found this; it's CID 428. Bugfix on 0.2.0.3-alpha.
2011-07-01Fix a rare memory leak in rend_cache_storeNick Mathewson
When we rejected a descriptor for not being the one we wanted, we were letting the parsed descriptor go out of scope. Found by Coverity; CID # 30. Bugfix on 0.2.1.26. (No changes file yet, since this is not in any 0.2.1.x release.)
2011-06-25Add BUILDTIMEOUT_SET to the result of GETINFO events/namesRobert Ransom
2011-06-24Correct a commentRobert Ransom
2011-06-23Fix minor comment issuesRobert Ransom
2011-06-22Fix minor comment issuesRobert Ransom
2011-06-17Revert "Add an "auto" option to UseBridges"Nick Mathewson
This reverts commit 507c1257a4d9c629fefc2adbad8db73607749734.
2011-06-17Merge remote-tracking branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-06-17Abandon rendezvous circuits on SIGNAL NEWNYMRobert Ransom
2011-06-17Merge branch 'bug3407' into maint-0.2.2Nick Mathewson
2011-06-17Make send_control_event_impl's behaviour saneRobert Ransom
2011-06-17Fix comment typoRobert Ransom
2011-06-17Make connection_printf_to_buf's behaviour saneRobert Ransom
2011-06-17log when we finish ssl handshake and move to renegotiationRoger Dingledine
debug-level since it will be quite common. logged at both client and server side. this step should help us track what's going on with people filtering tor connections by our ssl habits.
2011-06-14Merge remote-tracking branch 'public/bug3369' into maint-0.2.2Nick Mathewson
2011-06-14Make ControlSocketsGroupWritable work with User.Jérémy Bobbio
Original message from bug3393: check_private_dir() to ensure that ControlSocketsGroupWritable is safe to use. Unfortunately, check_private_dir() only checks against the currently running user… which can be root until privileges are dropped to the user and group configured by the User config option. The attached patch fixes the issue by adding a new effective_user argument to check_private_dir() and updating the callers. It might not be the best way to fix the issue, but it did in my tests. (Code by lunar; changelog by nickm)
2011-06-13client-side DNS proxy server: reply NOTIMPL to unsupported queriesintrigeri
Fix for bug 3369.
2011-06-08Fix a rare memleak during stats writingSebastian Hahn
If rep_hist_buffer_stats_write() was called unitinitalized, we'd leak memory.
2011-06-08Don't use signed 1-bit bitfieldsSebastian Hahn
This was harmless, we never compared it to anything but itself or 0. But Coverity complained, and it had a point.
2011-06-08Comment out some obviously dead code.Sebastian Hahn
Coverity warned about it, it's harmless to comment out.
2011-06-08Remove a few dead assignments during router parsingSebastian Hahn
2011-06-08remove some dead code, found by coveritySebastian Hahn
2011-06-06Detect insanely large circuit build state; don't give its length to rand_intNick Mathewson
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion