Age | Commit message (Collapse) | Author | |
---|---|---|---|
2016-12-19 | for fuzzing: Add a function to make a buf with given contents | teor | |
(Teor wrote the code, nick extracted it into a smaller patch.) | |||
2016-12-19 | For fuzzing: Expose directory_handle_command. | teor | |
(Nick extracted this patch from a larger patch by Teor.) | |||
2016-12-19 | bump to 0.3.0.1-alpha-dev | Nick Mathewson | |
2016-12-19 | Bump to 0.3.0.1-alpha | Nick Mathewson | |
2016-12-19 | Don't warn about absent guard state when none expected. | Nick Mathewson | |
Self-testing circuits don't use guards, and nobody uses guards when UseEntryGuards is disabled. Fixes bug 21007; bug not in any released Tor. | |||
2016-12-19 | Merge branch 'maint-0.2.9' | Nick Mathewson | |
2016-12-19 | Merge branch 'maint-0.2.8' into maint-0.2.9 | Nick Mathewson | |
2016-12-19 | Merge branch 'bug21018_024' into maint-0.2.8 | Nick Mathewson | |
2016-12-19 | Merge branch 'maint-0.2.9' | Nick Mathewson | |
2016-12-19 | Merge branch 'maint-0.2.8' into maint-0.2.9 | Nick Mathewson | |
2016-12-19 | Merge remote-tracking branch 'teor/new-fallbacks-028-20161219' into maint-0.2.8 | Nick Mathewson | |
2016-12-19 | Update the fallback directory mirror list in December 2016 | teor | |
Replace the 81 remaining fallbacks of the 100 originally introduced in Tor 0.2.8.3-alpha in March 2016, with a list of 177 fallbacks (123 new, 54 existing, 27 removed) generated in December 2016. Resolves ticket 20170. | |||
2016-12-18 | Make log message warn about detected attempts to exploit 21018. | Nick Mathewson | |
2016-12-18 | Fix parsing bug with unecognized token at EOS | Nick Mathewson | |
In get_token(), we could read one byte past the end of the region. This is only a big problem in the case where the region itself is (a) potentially hostile, and (b) not explicitly nul-terminated. This patch fixes the underlying bug, and also makes sure that the one remaining case of not-NUL-terminated potentially hostile data gets NUL-terminated. Fix for bug 21018, TROVE-2016-12-002, and CVE-2016-1254 | |||
2016-12-18 | Revert ticket 20982 changes. | Nick Mathewson | |
They broke stem, and breaking application compatibility is usually a bad idea. This reverts commit 6e10130e18c80f4521e31b071455ae0b1bbea761, commit 78a13df15842e8ab262e17825160386fadb77056, and commit 62f52a888acc191bcb507d27d31d54e42e6effdd. We might re-apply this later, if all the downstream tools can handle it, and it turns out to be useful for some reason. | |||
2016-12-18 | fix typos and trivial syntax problems | Roger Dingledine | |
2016-12-18 | clarify debug-level log while initializing entropy | Roger Dingledine | |
I got confused when I saw my Tor saying it was opening a file that doesn't exist. It turns out it isn't opening it, it's just calling open() on it and then moving on when it's not there. | |||
2016-12-16 | Fix another pointless stack-protector warning. | Nick Mathewson | |
This is the same as we fixed in 39f455468731d4746adb729a67. | |||
2016-12-16 | Rename 'remove' -> 'rmv' to avoid shadowing a libc global | Nick Mathewson | |
2016-12-16 | Resolve some coverity complaints in test_entrynodes.c | Nick Mathewson | |
2016-12-16 | Resolve a division-by-zero complaint from coverity. CID 1397272 | Nick Mathewson | |
2016-12-16 | Revert "Stop checking whether environ is declared." | Nick Mathewson | |
This reverts commit 954eeda619a59dae76144ad69967f0ed7341b564. Apparently, OpenBSD is what expects you to declare environ yourself. So 19142 is a wontfix. | |||
2016-12-16 | Fix broken entrynodes/retry_unreachable test | Nick Mathewson | |
I broke this with 20292ec4974b777d430e7962cc38349c5f82b220 when I changed the primary guard retry schedule. | |||
2016-12-16 | Disable the legacy guard algorithm. Code isn't removed yet. | Nick Mathewson | |
(Keeping the code around in case I broke Tor in some unexpected way.) | |||
2016-12-16 | Merge branch 'ticket20831_v2' | Nick Mathewson | |
2016-12-16 | Make NumDirectoryGuards work with the new guard algorithm. | Nick Mathewson | |
Now that we support NumEntryGuards, NumDirectoryGuards is pretty easy to put back in. | |||
2016-12-16 | Make NumEntryGuards work as expected again. | Nick Mathewson | |
Further, add a "guard-n-primary-guards-to-use" parameter, defaulting to 1, for NumEntryGuards to override. | |||
2016-12-16 | 271: Algorithm tweak to allow multiple entry guards. | Nick Mathewson | |
Previously, we had NumEntryGuards kind of hardwired to 1. Now we have the code (but not the configuarability) to choose randomly from among the first N primary guards that would work, where N defaults to 1. Part of 20831 support for making NumEntryGuards work again. | |||
2016-12-16 | Respect GuardLifetime in prop271 code. | Nick Mathewson | |
It overrides both the GUARD_LIFETIME and the GUARD_CONFIRMED_MIN_LIFETIME options. | |||
2016-12-16 | Remove UseDirectoryGuards | Nick Mathewson | |
It is obsoleted in an always-on direction by prop271. | |||
2016-12-16 | Merge branch 'ticket20826_v2' | Nick Mathewson | |
2016-12-16 | Support restrictive ENTRYNODES configurations correctly. | Nick Mathewson | |
Since we already had a separate function for getting the universe of possible guards, all we had to do was tweak it to handle very the GS_TYPE_RESTRICTED case. | |||
2016-12-16 | guard->nickname is never NULL. | Nick Mathewson | |
2016-12-16 | Merge branch 'prop271_030_v1_squashed' | Nick Mathewson | |
2016-12-16 | Per suggestion, increase the retry frequency for primary guards. | Nick Mathewson | |
2016-12-16 | Rewrite state transition logic in entry_guards_note_success() | Nick Mathewson | |
asn found while testing that this function can be reached with GUARD_STATE_COMPLETE circuits; I believe this happens when cannibalization occurs. The added complexity of handling one more state made it reasonable to turn the main logic here into a switch statement. | |||
2016-12-16 | Add a separate, non-fractional, limit to the sampled guard set size. | Nick Mathewson | |
Letting the maximum sample size grow proportionally to the number of guards defeats its purpose to a certain extent. Noted by asn during code review. Fixes bug 20920; bug not in any released (or merged) version of Tor. | |||
2016-12-16 | Clean check for live consensus when updating the guard sample. | Nick Mathewson | |
The valid_until check was redundant. | |||
2016-12-16 | Move a TODO comment into doxygen comments. | Nick Mathewson | |
2016-12-16 | Easy code fixes. | George Kadianakis | |
- Correctly maintain the previous guard selection in choose_guard_selection(). - Print bridge identifier instead of nothing in entry_guard_describe()._ | |||
2016-12-16 | Trivial documentation improvements. | George Kadianakis | |
2016-12-16 | Wrap all of the legacy guard code, and its users, in #ifdefs | Nick Mathewson | |
This will make it easier to see what we remove down the line. | |||
2016-12-16 | Fix a signed/unsigned warning on 32-bit | Nick Mathewson | |
2016-12-16 | Tests for choosing which guard_selection to use | Nick Mathewson | |
2016-12-16 | Update node-selection tests to consider restrictions | Nick Mathewson | |
2016-12-16 | Tests for restricted-circuit cases of upgrade_waiting_circuits() | Nick Mathewson | |
2016-12-16 | Don't make $hexid nicknames persistent. | Nick Mathewson | |
(That's asking for trouble, and also totally completely redundant.) | |||
2016-12-16 | prop271: Tests for the highlevel or_state_t encode/decode functions | Nick Mathewson | |
2016-12-16 | Add a test for entry_guard_state_should_expire() | Nick Mathewson | |
2016-12-16 | Extract guard_selection_infer_type into its own function. | Nick Mathewson | |