summaryrefslogtreecommitdiff
path: root/src/or
AgeCommit message (Collapse)Author
2011-02-22Don't let bad DNS make exit policy and declared exit policy get out of syncNick Mathewson
Patch from "postman" on trac. Fixes bg 2366. Bug on 0.1.2.5-alpha.
2011-02-22Merge branch 'log_domains' into maint-0.2.2Nick Mathewson
2011-02-16Don't crash a bridge authority on SIGHUP if it's not in the consensusRobert Ransom
Fixes bug 2572.
2011-02-11Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine
2011-02-10fix the other half of bug 1074Roger Dingledine
2011-02-10Make the DH parameter we use for TLS match the one from Apache's mod_sslNick Mathewson
Our regular DH parameters that we use for circuit and rendezvous crypto are unchanged. This is yet another small step on the path of protocol fingerprinting resistance. (Backport from 0.2.2's 5ed73e3807d90dd0a3)
2011-02-09Merge branch 'bug2408-v2-021-common' into bug2408-v2-022Robert Ransom
2011-02-09Ignore and warn about "PublishServerDescriptor hidserv"Robert Ransom
Fixes #2408.
2011-02-08Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-02-07move the clause above the "if bw is too low" checkRoger Dingledine
2011-02-07dtrt when only relaybandwidthburst is setRoger Dingledine
fixes bug 2470
2011-02-07Merge branch 'bug2279' into maint-0.2.2Nick Mathewson
2011-02-07Some cleanups to bug2279 messages/docs from rransomNick Mathewson
2011-02-04Merge branch 'bug2203_rebased' into maint-0.2.2Nick Mathewson
2011-02-03Enable ASLR and permanent DEP for Windows executablesJohn Brooks
Fix for #2358
2011-02-03Merge remote branch 'public/bug2378' into maint-0.2.2Nick Mathewson
2011-01-26Merge branch 'bug2181' into maint-0.2.2Nick Mathewson
2011-01-26Add an option to disable the block-private-addresses featureNick Mathewson
Suggested by rransom. Probably necessary for testing network mode.
2011-01-26Merge branch 'bug2409' into maint-0.2.2Nick Mathewson
2011-01-26Merge branch 'bug2321' into maint-0.2.2Nick Mathewson
2011-01-26Avoid sketchy integer cast in cbt codeNick Mathewson
When calling circuit_build_times_shuffle_and_store_array, we were passing a uint32_t as an int. arma is pretty sure that this can't actually cause a bug, because of checks elsewhere in the code, but it's best not to pass a uint32_t as an int anyway. Found by doorss; fix on 0.2.2.4-alpha.
2011-01-25Add client code to detect attempts to connect to 127.0.0.1 etcNick Mathewson
We detect and reject said attempts if there is no chosen exit node or circuit: connecting to a private addr via a randomly chosen exit node will usually fail (if all exits reject private addresses), is always ill-defined (you're not asking for any particular host or service), and usually an error (you've configured all requests to go over Tor when you really wanted to configure all _remote_ requests to go over Tor). This can also help detect forwarding loop requests. Found as part of bug2279.
2011-01-25Fix double-mark bug when failing to init transparent connectionNick Mathewson
Fixes part of bug 2279. Bugfix on 0.1.2.1-alpha.
2011-01-25Log more about soft-hibernationNick Mathewson
2011-01-25Handle failing cases of DH allocationNick Mathewson
2011-01-25Comment remaining CBT functions.Mike Perry
Left circuit_build_times_get_bw_scale() uncommented because it is in the wrong place due to an improper bug2317 fix. It needs to be moved and renamed, as it is not a cbt parameter.
2011-01-25Fix authority side of 2203.Mike Perry
Do not add Exit bandwidth to E if BadExit is set.
2011-01-25Fix client side of 2203: Do not count BadExits as Exits.Mike Perry
2011-01-25Fix bug #2004 by demoting a log message.Mike Perry
To quote arma: "So instead of stopping your CBT from screaming, you're just going to throw it in the closet and hope you can't hear it?" Yep. The log message can happen because at 95% point on the curve, we can be way beyond the max timeout we've seen, if the curve has few points and is shallow. Also applied Nick's rule of thumb for rewriting some other notice log messages to read like how you would explain them to a raving lunatic on #tor who was shouting at you demanding what they meant. Hopefully the changes live up to that standard.
2011-01-25Fix bug in verifying directory signatures with short digestsNick Mathewson
If we got a signed digest that was shorter than the required digest length, but longer than 20 bytes, we would accept it as long enough.... and then immediately fail when we want to check it. Fixes bug 2409; bug in 0.2.2.20-alpha; found by piebeer.
2011-01-25Tell which geoip file we're parsingSebastian Hahn
2011-01-25Add a torrc option to report log domainsNick Mathewson
2011-01-25Fix assert for relay/bridge state changeSebastian Hahn
When we added support for separate client tls certs on bridges in a2bb0bfdd5 we forgot to correctly initialize this when changing from relay to bridge or vice versa while Tor is running. Fix that by always initializing keys when the state changes. Fixes bug 2433.
2011-01-24Make the DH parameter we use for TLS match the one from Apache's mod_sslNick Mathewson
Our regular DH parameters that we use for circuit and rendezvous crypto are unchanged. This is yet another small step on the path of protocol fingerprinting resistance.
2011-01-20Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-01-20Merge remote branch 'rransom/policy_summarize-assert' into maint-0.2.1Nick Mathewson
2011-01-20Fix bounds-checking in policy_summarizeRobert Ransom
Found by piebeer.
2011-01-19Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-01-19Oops; actually add the code to the last patch. :/Nick Mathewson
2011-01-15Merge commit 'sebastian/bug2317' into maint-0.2.2Roger Dingledine
2011-01-15Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-01-15Fix a couple of non-cleared key issues in hidden servicesNick Mathewson
we need to do more hunting, but this fixes the ones mentioned in 2385.
2011-01-15Tighten accepted circwindow parametersSebastian Hahn
Based on discussion in bug 2317, these values seem to be sane.
2011-01-15Provide constant limits for all consensus paramsSebastian Hahn
This addresses Nick's concern about doing non-constant bounds checking inside networkstatus_get_param().
2011-01-15Sanity-check consensus param valuesSebastian Hahn
We need to make sure that the worst thing that a weird consensus param can do to us is to break our Tor (and only if the other Tors are reliably broken in the same way) so that the majority of directory authorities can't pull any attacks that are worse than the DoS that they can trigger by simply shutting down. One of these worse things was the cbtnummodes parameter, which could lead to heap corruption on some systems if the value was sufficiently large. This commit fixes this particular issue and also introduces sanity checking for all consensus parameters.
2011-01-15Make get_net_param_from_list() staticSebastian Hahn
This prepares for making the accessor method for consensus parameters safer in the next commit.
2011-01-15Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
Conflicts: src/or/routerparse.c src/or/test.c
2011-01-15Merge branch 'bug2352_obsize' into maint-0.2.1Nick Mathewson
2011-01-15Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson
2011-01-15Add missing check for hostname answer_len in dnsserv sizeNick Mathewson
This is checked elsewhere too, but let's be RFC-conformant.
7apu2bq3rhoylwmucxizk54afw5jyda7pho4j5zdcqpwkufke7zdzwad.onion