stegotorus, branch master Steganographic stealth proxy for Tor Fix pgen_pcap.cc compile failure on Linux. 2012-07-16T22:36:18+00:00 Zack Weinberg zackw@cmu.edu 2012-07-16T22:36:18+00:00 a96d571658c89b40b1bb9829b0dcd24ce37187af Glibc's headers are not as promiscuous about including each other as OSX's are. Also, apparently there exist at least two incompatible definitions of 'struct tcphdr'. Down, not across. 
Glibc's headers are not as promiscuous about including each other as
OSX's are.  Also, apparently there exist at least two incompatible
definitions of 'struct tcphdr'.  Down, not across.
Don't allow connection count to grow without limit in HTTP steg. 2012-07-16T22:12:18+00:00 Zack Weinberg zackw@cmu.edu 2012-07-16T22:04:12+00:00 83648b9054337c6276077a342c7d7653a9daafca The fix involves two complementary changes: (1) restore the upper limit of 64 outstanding downstream connections per circuit; (2) HTTP steg needs to call ->cease_transmission() and ->expect_close() on its connections at the right times (for now, unconditionally; in the future, paying attention to the HTTP "Connection:" header). 
The fix involves two complementary changes: (1) restore the upper
limit of 64 outstanding downstream connections per circuit; (2) HTTP
steg needs to call ->cease_transmission() and ->expect_close() on its
connections at the right times (for now, unconditionally; in the
future, paying attention to the HTTP "Connection:" header).
Delete traces in 'make clean' if we generated them. 2012-07-14T16:42:40+00:00 Zack Weinberg zackw@cmu.edu 2012-07-14T16:42:40+00:00 e5429ffb1badee2547c685c62bef3685b7798c0b 






Add 'pgen_fake' payload generator, use it if traces aren't available.
2012-07-13T15:04:28+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-13T15:04:28+00:00

ddc1ab0525d718072ff0805490b09eb33d631ff1

 * src/pgen_fake.cc: New file.
 * Makefile.am: Build it.  Integrate it with 'make check'.

 * src/compression.cc: Distinguish an inflate failure due to inadequate
   output buffer space from other causes.
 * src/steg/swfSteg.cc: Enlarge the inflate output buffer as necessary.

 * src/pgen.h: Make internal padding in pentry_header explicit.
 * src/steg/payloads.cc: Remove overly chatty log_debug messages which
   were causing test_tl to deadlock.





 * src/pgen_fake.cc: New file.
 * Makefile.am: Build it.  Integrate it with 'make check'.

 * src/compression.cc: Distinguish an inflate failure due to inadequate
   output buffer space from other causes.
 * src/steg/swfSteg.cc: Enlarge the inflate output buffer as necessary.

 * src/pgen.h: Make internal padding in pentry_header explicit.
 * src/steg/payloads.cc: Remove overly chatty log_debug messages which
   were causing test_tl to deadlock.







Add Vinod's program for generating HTTP trace files from pcap files.
2012-07-12T14:28:09+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-12T14:24:20+00:00

949aa9547d89d4b2d463a0460941a0cc35cec56d

 * pgen.h, pgen_pcap.cc: New files.
 * util.cc: Split libevent-using routines to util-net.cc.
 * configure.ac: Detect availability of libpcap.
 * Makefile.am: Build pgen_pcap if we have libpcap.  Shuffle linkage
   variables around a little so each program is only linked against the
   libraries it needs.





 * pgen.h, pgen_pcap.cc: New files.
 * util.cc: Split libevent-using routines to util-net.cc.
 * configure.ac: Detect availability of libpcap.
 * Makefile.am: Build pgen_pcap if we have libpcap.  Shuffle linkage
   variables around a little so each program is only linked against the
   libraries it needs.







Three tiny bugfixes in the build system.
2012-07-08T18:36:27+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-08T18:36:27+00:00

542ed83ed4d63d9cee91155adf33bc93dc3d799e

 * Use quadrigraphs for "rm -f conft[ABC].o" in ranlib.m4 so they actually
   get deleted.
 * Stop using EXTRA_*_DEPENDENCIES which autoconf 1.11 doesn't support.
 * Make the spacing of the silent-mode custom printouts match autoconf 1.12
   (purely cosmetic).





 * Use quadrigraphs for "rm -f conft[ABC].o" in ranlib.m4 so they actually
   get deleted.
 * Stop using EXTRA_*_DEPENDENCIES which autoconf 1.11 doesn't support.
 * Make the spacing of the silent-mode custom printouts match autoconf 1.12
   (purely cosmetic).







Update some lists so 'make distcheck' succeeds.
2012-07-08T18:18:28+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-08T18:18:28+00:00

3624a2825d806507534a99367c3f9e39ae42263b












Stop half-closing downstream connections.
2012-07-08T18:14:11+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-08T18:14:11+00:00

9d42a1ad9962307c53079a8e30574ade4998d950

Up till now, when we were done writing to a downstream socket, we
would use shutdown() to send a TCP FIN immediately, even if there
might be data still to be _read_ from that socket.  This turns out to
be unreliable: on the far side, the FIN may cause libevent to signal
read EOF before we are completely done reading data from the network,
causing block loss.  (This is arguably a bug in libevent, but
shutdown() on socket bufferevents is not officially supported at
present, so we need to fix it on our side.)  Also, we have reason to
believe none of our intended cover protocols normally leave sockets
half-closed for any significant length of time, so this might be a
'tell.'  And it has been observed to confuse middleboxes to the point
where they won't pass our traffic at all.

Instead, on the receive side, take note of a half-closed connection if
the cover protocol provides an in-band indication of that fact
(e.g. 'Connection: close' in HTTP) (i.e. conn_t::expect_close() now
does something) but do not call shutdown() on the transmit side.

This exposes a race condition in connection-to-circuit association
which could cause a spurious fatal assertion, and allows us to
simplify the 'should we open new downstream connections?' logic
substantially.

We still half-close our *upstream* sockets when we're done writing to
them.  That should probably change too, but that may require changes
to tltester.





Up till now, when we were done writing to a downstream socket, we
would use shutdown() to send a TCP FIN immediately, even if there
might be data still to be _read_ from that socket.  This turns out to
be unreliable: on the far side, the FIN may cause libevent to signal
read EOF before we are completely done reading data from the network,
causing block loss.  (This is arguably a bug in libevent, but
shutdown() on socket bufferevents is not officially supported at
present, so we need to fix it on our side.)  Also, we have reason to
believe none of our intended cover protocols normally leave sockets
half-closed for any significant length of time, so this might be a
'tell.'  And it has been observed to confuse middleboxes to the point
where they won't pass our traffic at all.

Instead, on the receive side, take note of a half-closed connection if
the cover protocol provides an in-band indication of that fact
(e.g. 'Connection: close' in HTTP) (i.e. conn_t::expect_close() now
does something) but do not call shutdown() on the transmit side.

This exposes a race condition in connection-to-circuit association
which could cause a spurious fatal assertion, and allows us to
simplify the 'should we open new downstream connections?' logic
substantially.

We still half-close our *upstream* sockets when we're done writing to
them.  That should probably change too, but that may require changes
to tltester.







Break up chop.cc in preparation for adding more control blocks.
2012-07-08T16:39:39+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-08T16:39:39+00:00

17a1e39d73c4767bdc4c6a89a30b5378a4f0a0b9

All of the header formatting code and the reassembly queue move to their
own file.  Some of the low-level transmission and reception code may follow.
This will make it easier to add new types of control blocks (for retransmit,
in-band connection close, the long-awaited rekeying and handshake logic, etc)
and will also make it possible to unit test the separated code.





All of the header formatting code and the reassembly queue move to their
own file.  Some of the low-level transmission and reception code may follow.
This will make it easier to add new types of control blocks (for retransmit,
in-band connection close, the long-awaited rekeying and handshake logic, etc)
and will also make it possible to unit test the separated code.







Fix long-standing cut-and-paste error in name of one test.
2012-07-08T16:36:32+00:00

Zack Weinberg
zackw@cmu.edu

2012-07-08T16:36:32+00:00

f7ad87f180ea30777b4bc356dc444b53df3285a5