summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
| | * | | | | | | | Add reporting of statistics for when the handshake fails.Isis Lovecruft2013-03-11
| | | | | | | | | |
| | * | | | | | | | Add reporting mechanisms to handshakeSucceeded() for storing the x509Isis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | certificate and chain in a way that YAML won't complain about. * TODO: we may want to look into a better method for serialising certificates that is compatible with YAML, rather than just storing them as PEM encoded certs in a string. * Also, pyOpenSSL will segfault if you try to check the cert. Added a warning in the docstring of method handshakeSucceeded() about that.
| | * | | | | | | | Add logging of undetermined states reported by OpenSSL's state machine toIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | doHandshake(). This should not ever occur, but just in case it does, we'll want to log it rather than throwing the Exception out.
| | * | | | | | | | Add check for handshake timeout by sending 3 bytes along the connection.Isis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Currently we send 'o\r\n'. TODO: we should look up a more common string that is sent, perhaps one for each of the major browsers, to emulate a more normal connection, and decrease fingerprintability. * Add calls to the SSL_ERROR_WANT_READ and SSL_ERROR_WANT_WRITE handlers, handleWantRead() and handleWantWrite(), to method doHandshake(). * Add timeout notice if repetitive want_writes occur in doHandshake(). * Add call to connectionRenegotiate() if multiple want_reads occur in method doHandshake().
| | * | | | | | | | Add method handleWantWrite() for resending already sent data over theIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | connection, if OpenSSL's memory BIO state machine reports this error, and also jump to the SSL_ERROR_WANT_READ handler if at any point that error is raised.
| | * | | | | | | | Add method connectionShutdown() for calling shutdown on the TLS/SSL handshake,Isis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | and the socket, and for handling instances where the connection has been halfway closed.
| | * | | | | | | | Add method handleWantRead() for handling SSL_ERROR_WANT_READ until OpenSSL'sIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | memory BIO state machine reports that it has been handled, and also jump to the SSL_ERROR_WANT_WRITE handler when/if that error occurs.
| | * | | | | | | | Add connectionRenegotiate() method for calling methods to either handleIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE, as may be the case.
| | * | | | | | | | In connectionFailed, handle an error from makeConnection() where on someIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | systems, /dev/random is apparently set to 0600 root:root, and also add handling for propagating errors due to the network/server being unreachable.
| | * | | | | | | | Change method makeConnection to use self.input as-is, and add docstring.Isis Lovecruft2013-03-11
| | | | | | | | | |
| | * | | | | | | | Add support for parsing the server certificate chain into a list of x509 certsIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | in method getPeerCert().
| | * | | | | | | | Change getContext() to only set the ciphersuite list, and add methodIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | getPeerCert() for dumping the server x509 certificate.
| | * | | | | | | | Set the default socket timeout to 30 seconds.Isis Lovecruft2013-03-11
| | | | | | | | | |
| | * | | | | | | | Fix the logic on detecting if we have a config setting.Isis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * We can't use hasattr(config.basic, 'foo') because this gives None if not set, which means the default in the test doesn't get set. Instead, we want to use: if getattr(config.basic, 'foo', None) is not None:
| | * | | | | | | | Switch to setting the TLS/SSL methods in setUp(), rather than in getContext().Isis Lovecruft2013-03-11
| | | | | | | | | |
| | * | | | | | | | Add notes explaining defaults chosen if no commandline options are chosen, andIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a note-to-self to explain to users that currently only one TLS/SSL context method can be chosen at a time. * TODO add support for looping through multiple TLS/SSL contexts.
| | * | | | | | | | Fix an error in the commandline options parsing which allowed commandline hostIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | IP:port inputs in addition to a file of inputs, which would throw off the input_id counter and mess up reporting.
| | * | | | | | | | Add Exception classes for conditions when the network is not reachable andIsis Lovecruft2013-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | when a TLS/SSL context was not chosen from the test commandline options.
| | * | | | | | | | Fix #8329, txscapy.PcapDummyWriter.write() has wrong signature method.Isis Lovecruft2013-03-11
| | | | | | | | | |
| | * | | | | | | | Ported tls_handshake.py to be a nettest, rather than an external script.Isis Lovecruft2013-03-11
| | | | | | | | | |
* | | | | | | | | | Swallow the report creation failure so that it does not propagateArturo Filastò2013-04-30
|/ / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes: https://trac.torproject.org/projects/tor/ticket/8803
* | | | | | | | | Merge pull request #64 from hellais/feature/task_manageraagbsn2013-04-29
|\ \ \ \ \ \ \ \ \ | | |_|_|_|_|_|/ / | |/| | | | | | | Improvements to feature/task manager
| * | | | | | | | Make how we keep track of successful reports more robust.Arturo Filastò2013-04-29
| | |_|_|_|_|/ / | |/| | | | | |
| * | | | | | | Disabled test_pushFilenameStack, because it's failing in travisArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Use absolute filepath instead of relativeArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Only run trial unittestsArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Fix typo in ooniprobe sample config fileArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Add libpcap-dev to dependenciesArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Install pyrex and python deps via pipArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Also run the unittestsArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Fix travis fileArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Further debugging and code robustnessArturo Filastò2013-04-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Make startup logic more robust * Use a deferred to keep track of director activity * Fix some typos
| * | | | | | | Set the tor_state GeoIP class attribute on startupArturo Filastò2013-04-22
| | | | | | | |
| * | | | | | | Bump version to 0.0.11Arturo Filastò2013-04-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Remove runner.py
| * | | | | | | Clean up tests for updated ooni codebaseArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Final cleanup and bugfixing for task_managerArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Pass the IP address of the probe instead of an objectArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Make reporting more robustArturo Filastò2013-04-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Get rid of ridiculous logic that uses a deferred list, instead keep track of the report task via a single deferred.
| * | | | | | | Make the starting of ooniprobe via cmd line more robustArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Parametrize task timeout and retry countArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Add option to disable the default collectorArturo Filastò2013-04-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * More robust startup process
| * | | | | | | Raise NoMoreReporters exception on failureArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Fix typo in test deck before_i_commitArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Fix so that parsing of test decks works properlyArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Update test decks with the proper keyArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Set the default collector via the command line optionArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Add more debugging to managersArturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Make the starting of tests more robust.Arturo Filastò2013-04-11
| | | | | | | |
| * | | | | | | Change how we pass arguments to the nettest loaderArturo Filastò2013-04-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Explicit the passing of the nettest file argument
| * | | | | | | Remove now superfluos runner unittestArturo Filastò2013-04-11
| | | | | | | |