| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-06-10 | Merge branch 'maint-0.4.4' into maint-0.4.5 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'maint-0.3.5' into maint-0.4.4 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'bug40391_035' into maint-0.3.5 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'maint-0.4.4' into maint-0.4.5 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'maint-0.3.5' into maint-0.4.4 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'bug40390_035_squashed' into maint-0.3.5 | Nick Mathewson | |
| 2021-06-10 | Assert on _all_ failures from RAND_bytes(). | Nick Mathewson | |
| Previously, we would detect errors from a missing RNG implementation, but not failures from the RNG code itself. Fortunately, it appears those failures do not happen in practice when Tor is using OpenSSL's default RNG implementation. Fixes bug 40390; bugfix on 0.2.8.1-alpha. This issue is also tracked as TROVE-2021-004. Reported by Jann Horn at Google's Project Zero. | |||
| 2021-06-10 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'maint-0.4.4' into maint-0.4.5 | Nick Mathewson | |
| 2021-06-10 | Merge branch 'maint-0.3.5' into maint-0.4.4 | Nick Mathewson | |
| 2021-06-10 | Update geoip files to match ipfire location db, 2021/06/10. | Nick Mathewson | |
| 2021-06-07 | Bump to 0.4.6.5 | Nick Mathewson | |
| 2021-06-07 | Bump to 0.4.5.9. | Nick Mathewson | |
| 2021-06-07 | Bump to 0.4.4.9 | Nick Mathewson | |
| 2021-06-07 | Bump to 0.3.5.15. | Nick Mathewson | |
| 2021-06-01 | Merge branch 'tor-gitlab/mr/393' into maint-0.4.6 | David Goulet | |
| 2021-05-28 | Bump to 0.4.6.4-rc-dev | Nick Mathewson | |
| 2021-05-28 | Bump to 0.4.6.4-rc. | Nick Mathewson | |
| 2021-05-27 | Upgrade and rate-limit compression failure message. | Nick Mathewson | |
| Without this message getting logged at 'WARN', it's hard to contextualize the messages we get about compression bombs, so this message should fix #40175. I'm rate-limiting this, however, since it _could_ get spammy if somebody on the network starts acting up. (Right now it should be very quiet; I've asked Sebastian to check it, and he says that he doesn't hit this message in practice.) Closes #40175. | |||
| 2021-05-27 | Merge branch 'tor-gitlab/mr/392' into maint-0.4.6 | David Goulet | |
| 2021-05-26 | Prefer mmap()ed consensus files over cached_dir_t entries. | Nick Mathewson | |
| Cached_dir_t is a somewhat "legacy" kind of storage when used for consensus documents, and it appears that there are cases when changing our settings causes us to stop updating those entries. This can cause trouble, as @arma found out in #40375, where he changed his settings around, and consensus diff application got messed up: consensus diffs were being _requested_ based on the latest consensus, but were being (incorrectly) applied to a consensus that was no longer the latest one. This patch is a minimal fix for backporting purposes: it has Tor do the same search when applying consensus diffs as we use to request them. This should be sufficient for correct behavior. There's a similar case in GETINFO handling; I've fixed that too. Fixes #40375; bugfix on 0.3.1.1-alpha. | |||
| 2021-05-25 | Merge branch 'maint-0.3.5' into maint-0.4.4 | Alexander Færøy | |
| 2021-05-25 | Merge branch 'maint-0.4.4' into maint-0.4.5 | Alexander Færøy | |
| 2021-05-25 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Alexander Færøy | |
| 2021-05-25 | Remove the function `tor_tls_assert_renegotiation_unblocked`. | Nick Mathewson | |
| It was used nowhere outside its own unit tests, and it was causing compilation issues with recent OpenSSL 3.0.0 alphas. Closes ticket 40399. | |||
| 2021-05-18 | Use a more secure hash function for the circuitmux hashtable. | Nick Mathewson | |
| Fixes bug 40931; bugfix on 0.2.4.4-alpha. Also tracked as TROVE-2021-005. This issue was reported by Jann Horn from Google's Project Zero. | |||
| 2021-05-17 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-05-17 | Merge remote-tracking branch 'tor-gitlab/mr/387' into maint-0.4.5 | Nick Mathewson | |
| 2021-05-17 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-05-17 | Make SAVECONF keep only one backup and add sandbox rules for it. #40317 | Daniel Pinto | |
| When seccomp sandbox is active, SAVECONF failed because it was not able to save the backup files for torrc. This commit simplifies the implementation of SAVECONF and sandbox by making it keep only one backup of the configuration file. | |||
| 2021-05-12 | conn: MetricsPort listener is a listener port | David Goulet | |
| The connection type for the listener part was missing from the "is connection a listener" function. This lead to our periodic event that retries our listeners to keep trying to bind() again on an already opened MetricsPort. Closes #40370 Signed-off-by: David Goulet <dgoulet@torproject.org> | |||
| 2021-05-10 | Merge branch 'ticket40374_046' into maint-0.4.6 | Nick Mathewson | |
| 2021-05-10 | Bump to 0.4.6.3-rc-dev | Nick Mathewson | |
| 2021-05-10 | Update to 0.4.5.8-dev | Nick Mathewson | |
| 2021-05-07 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-05-07 | Add a sandbox workaround for Glibc 2.33 | Nick Mathewson | |
| This change permits the newfstatat() system call, and fixes issues 40382 (and 40381). This isn't a free change. From the commit: // Libc 2.33 uses this syscall to implement both fstat() and stat(). // // The trouble is that to implement fstat(fd, &st), it calls: // newfstatat(fs, "", &st, AT_EMPTY_PATH) // We can't detect this usage in particular, because "" is a pointer // we don't control. And we can't just look for AT_EMPTY_PATH, since // AT_EMPTY_PATH only has effect when the path string is empty. // // So our only solution seems to be allowing all fstatat calls, which // means that an attacker can stat() anything on the filesystem. That's // not a great solution, but I can't find a better one. | |||
| 2021-05-07 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-05-07 | Merge branch 'maint-0.4.4' into maint-0.4.5 | Nick Mathewson | |
| 2021-05-07 | Merge branch 'maint-0.3.5' into maint-0.4.4 | Nick Mathewson | |
| 2021-05-07 | Reindent a few lines to fix a GCC warning. | Nick Mathewson | |
| As of GCC 11.1.1, the compiler warns us about code like this: if (a) b; c; and that's a good thing: we wouldn't want to "goto fail". But we had an instance if this in circuituse.c, which was making our compilation sad. Fixes bug 40380; bugfix on 0.3.0.1-alpha. | |||
| 2021-05-07 | Merge branch 'maint-0.4.5' into maint-0.4.6 | Nick Mathewson | |
| 2021-05-07 | Merge branch 'maint-0.4.4' into maint-0.4.5 | Nick Mathewson | |
| 2021-05-07 | Merge branch 'maint-0.3.5' into maint-0.4.4 | Nick Mathewson | |
| 2021-05-07 | Update geoip files to match ipfire location db, 2021/05/07. | Nick Mathewson | |
| 2021-05-07 | Bump to 0.4.6.3-rc | Nick Mathewson | |
| 2021-05-07 | Bump to 0.4.5.8. | Nick Mathewson | |
| 2021-05-07 | Log warning when connecting to soon-to-be-deprecated v2 onions. | George Kadianakis | |
| 2021-05-07 | Add warning when trying to connect to deprecated v2 onions. | George Kadianakis | |
| 2021-05-05 | Prepare for #40373: Re-introduce parsing for v2 onion addresses. | George Kadianakis | |
| Welcome back ONION_V2_HOSTNAME! :) | |||
 |
index : tor | |
| Transit encryption and privacy out of the box | The Tor Project |
| summaryrefslogtreecommitdiff |