| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-10-10 | Add some points to make it easy to turn off v3 support | Nick Mathewson | |
| 2011-10-10 | Quiet two notices, and spelling mistake cleanup | Sebastian Hahn | |
| 2011-10-10 | Fix a few 64bit compiler warnings | Sebastian Hahn | |
| 2011-10-10 | Add more log statements for protocol/internal failures | Nick Mathewson | |
| 2011-10-10 | Remove auth_challenge field from or_handshake_state_t | Nick Mathewson | |
| We didn't need to record this value; it was already recorded implicitly while computing cell digests for later examination in the authenticate cells. | |||
| 2011-10-10 | spec conformance: allow only one cert of each type | Nick Mathewson | |
| 2011-10-10 | Give tor_cert_get_id_digests() fail-fast behavior | Nick Mathewson | |
| Right now we can take the digests only of an RSA key, and only expect to take the digests of an RSA key. The old tor_cert_get_id_digests() would return a good set of digests for an RSA key, and an all-zero one for a non-RSA key. This behavior is too error-prone: it carries the risk that we will someday check two non-RSA keys for equality and conclude that they must be equal because they both have the same (zero) "digest". Instead, let's have tor_cert_get_id_digests() return NULL for keys we can't handle, and make its callers explicitly test for NULL. | |||
| 2011-10-10 | Fix some more issues wrt tor_cert_new found by asn | Nick Mathewson | |
| 2011-10-10 | Make more safe_str usage happen for new logs in command.c | Nick Mathewson | |
| 2011-10-10 | Set up network parameters on non-authenticated incoming connections | Nick Mathewson | |
| Also add some info log messages for the steps of the v3 handshake. Now my test network bootstraps! | |||
| 2011-10-10 | Make sure we stop putting cells into our hash at the right time. | Nick Mathewson | |
| 2011-10-10 | Bugfixes for authenticate handling and generation | Nick Mathewson | |
| 2011-10-10 | Fix log message about what cells we are sending | Nick Mathewson | |
| 2011-10-10 | more verbose log for recording an odd cell | Nick Mathewson | |
| 2011-10-10 | Actually accept cells in SERVER_RENEGOTIATING | Nick Mathewson | |
| 2011-10-10 | Generate certificates that enable v3 handshake | Nick Mathewson | |
| 2011-10-10 | Allow "finished flushing" during v3 handshake | Nick Mathewson | |
| 2011-10-10 | Hook up all of the prop176 code; allow v3 negotiations to actually work | Nick Mathewson | |
| 2011-10-10 | Remove a no-longer-relevant comment | Nick Mathewson | |
| 2011-10-10 | Make tor_tls_cert_is_valid check key lengths | Nick Mathewson | |
| 2011-10-10 | New functions to record digests of cells during v3 handshake | Nick Mathewson | |
| Also, free all of the new fields in or_handshake_state_t | |||
| 2011-10-10 | Implement cert/auth cell reading | Nick Mathewson | |
| 2011-10-10 | Basic function to write authenticate cells | Nick Mathewson | |
| Also, tweak the cert cell code to send auth certs | |||
| 2011-10-10 | Function to return peer cert as tor_tls_cert | Nick Mathewson | |
| 2011-10-10 | Add AUTH keys as specified in proposal 176 | Nick Mathewson | |
| Our keys and x.509 certs are proliferating here. Previously we had: An ID cert (using the main ID key), self-signed A link cert (using a shorter-term link key), signed by the ID key Once proposal 176 and 179 are done, we will also have: Optionally, a presentation cert (using the link key), signed by whomever. An authentication cert (using a shorter-term ID key), signed by the ID key. These new keys are managed as part of the tls context infrastructure, since you want to rotate them under exactly the same circumstances, and since they need X509 certificates. | |||
| 2011-10-10 | Functions to get a public RSA key from a cert | Nick Mathewson | |
| 2011-10-10 | Function to detect certificate types that signal v3 certificates | Nick Mathewson | |
| 2011-10-10 | Function to get digests of the certs and their keys | Nick Mathewson | |
| 2011-10-10 | More functions to manipulate certs received in cells | Nick Mathewson | |
| 2011-10-10 | Function to extract the TLSSECRETS field for v3 handshakes | Nick Mathewson | |
| 2011-10-10 | Functions to send cert and auth_challenge cells. | Nick Mathewson | |
| 2011-10-10 | Cell types and states for new OR handshake | Nick Mathewson | |
| Also, define all commands > 128 as variable-length when using v3 or later link protocol. Running into a var cell with an unrecognized type is no longer a bug. | |||
| 2011-10-10 | Add a sha256 hmac function, with tests | Nick Mathewson | |
| 2011-10-10 | Turn X509 certificates into a first-class type and add some functions | Nick Mathewson | |
| 2011-10-10 | New function to get all digests of a public key | Nick Mathewson | |
| 2011-10-10 | Merge remote-tracking branch 'origin/maint-0.2.2' | Nick Mathewson | |
| 2011-10-10 | Merge remote-tracking branch 'sebastian/osxcompile' | Nick Mathewson | |
| 2011-10-11 | Consider hibernation before dropping privs | Sebastian Hahn | |
| Without this patch, Tor wasn't sure whether it would be hibernating or not, so it postponed opening listeners until after the privs had been dropped. This doesn't work so well for low ports. Bug was introduced in the fix for bug 2003. Fixes bug 4217, reported by Zax and katmagic. Thanks! | |||
| 2011-10-11 | Fix a compile warning on OS X 10.6 and up | Sebastian Hahn | |
| 2011-10-10 | Add a missing comma in tor_check_port_forwarding | Nick Mathewson | |
| My fault; fix for bug 4213. | |||
| 2011-10-10 | Update documentation comment for rend_client_reextend_intro_circuit | Robert Ransom | |
| One of its callers assumes a non-zero result indicates a permanent failure (i.e. the current attempt to connect to this HS either has failed or is doomed). The other caller only requires that this function's result never equal -2. Bug reported by Sebastian Hahn. | |||
| 2011-10-10 | Don't launch a useless circuit in rend_client_reextend_intro_circuit | Robert Ransom | |
| Fixes bug 4212. Bug reported by katmagic and found by Sebastian. | |||
| 2011-10-07 | Merge remote-tracking branch 'karsten/feature3951' into maint-0.2.2 | Nick Mathewson | |
| 2011-10-07 | Merge remote-tracking branch 'public/bug2003_nm' | Nick Mathewson | |
| 2011-10-07 | reinstate a notice for the non-loopback socksport case | Nick Mathewson | |
| Thanks to prop171, it's no longer a crazy thing to do, but you should make sure that you really meant it! | |||
| 2011-10-07 | Merge remote-tracking branch 'rransom-tor/bug4018' | Nick Mathewson | |
| 2011-10-07 | Merge remote-tracking branch 'asn2/bug3656' | Nick Mathewson | |
| Conflicts: src/common/util.c src/common/util.h src/or/config.h src/or/main.c src/test/test_util.c | |||
| 2011-10-07 | Merge remote-tracking branch 'origin/maint-0.2.2' | Nick Mathewson | |
| 2011-10-07 | Avoid running DNS self-tests if we're operating as a bridge | warms0x | |
| 2011-10-07 | Revive our beautiful unit tests. | George Kadianakis | |
| They broke when the PT_PROTO_INFANT proxy state was added. | |||
 |
index : tor | |
| Transit encryption and privacy out of the box | The Tor Project |
| summaryrefslogtreecommitdiff |