summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* accept4: Support it on all platforms except OS Xticket28538_01David Goulet2018-11-20
| | | | | | | | Simply put, OS X doesn't support it. Fixes #28538 Signed-off-by: David Goulet <dgoulet@torproject.org>
* Update version to v2.3.0David Goulet2018-11-19
| | | | Signed-off-by: David Goulet <dgoulet@torproject.org>
* Fix a bunch of stuff in the wrapper script, #24967Alex Xu (Hello71)2018-11-19
|
* gethostbyaddr_r: always assign resultDavid Goulet2018-11-19
| | | | | | | | | | Originating from: https://bugzilla.redhat.com/show_bug.cgi?id=1601259 Patch by "cHBWyJuH". Fixes #26794 Signed-off-by: David Goulet <dgoulet@torproject.org>
* log: Remove log line when logging is stoppedDavid Goulet2018-11-19
| | | | | | | It gets really noisy with mutt. Not sure why, I expect maybe multi thread/process makes it that everytime it dies, we get that log statement. Signed-off-by: David Goulet <dgoulet@torproject.org>
* gethostbyaddr_r: Don't put garbage in data->hostnameDavid Goulet2018-04-20
| | | | | | Fixes #25627 Signed-off-by: David Goulet <dgoulet@torproject.org>
* gethostbyaddr_r: Populate h_addrtype fieldDavid Goulet2018-04-20
| | | | | | Fixes #25586 Signed-off-by: David Goulet <dgoulet@torproject.org>
* log: Avoid crash or file corruption when closing logsDavid Goulet2018-04-20
| | | | | | Fixes #24081 Signed-off-by: David Goulet <dgoulet@torproject.org>
* connect: Always pass .onion IP cookie to connection objectDavid Goulet2018-04-20
| | | | | | Fixes #23876 Signed-off-by: David Goulet <dgoulet@torproject.org>
* Merge remote-tracking branch 'yawning/bug23715'David Goulet2018-04-20
|\
| * Bug 23715: Support memfd_create(2).Yawning Angel2017-09-30
| | | | | | | | | | | | Enough things use this now, that the syscall(2) wrapper should support it, since glibc doesn't provide a wrapper for it, and the documentation says to invoke it using syscall(2).
* | Make torsocks always connect to the configured Tor portDavid Goulet2018-04-20
| | | | | | | | | | | | | | Whatever we use IPv4 or IPv6, make torsocks use the configured SocksPort in the configuration. Signed-off-by: David Goulet <dgoulet@torproject.org>
* | test: Make getpeername test connect to moria1David Goulet2018-04-20
| | | | | | | | | | | | The other IP doesn't work anymore and I can't recall what it was ;). Signed-off-by: David Goulet <dgoulet@torproject.org>
* | socks5: Always use ATYP 0x03 for CONNECT commandDavid Goulet2018-04-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Because of the SafeSocks parameter of Tor, if set, we can't pass a raw IP address to Tor since it will believe we did a DNS resolution from the application. Now, thanks to #22461, Tor safely accepts an IPv4/IPv6 address withing a FQDN connect request which avoids the SafeSocks warnings. The #22461 wasn't backported which means that torsocks working with SafeSocks is only possible in tor >= 0.3.2 stable series. Fixes #23667 Signed-off-by: David Goulet <dgoulet@torproject.org>
* | Merge remote-tracking branch 'upstream/master'David Goulet2018-04-20
|\ \ | |/
| * test: Detect if tor is running in test_fd_passingDavid Goulet2017-08-04
| | | | | | | | | | | | Also, replace spaces for a tab. Signed-off-by: David Goulet <dgoulet@ev0ke.net>
| * No tab in the READMEDavid Goulet2017-08-04
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
| * Merge remote-tracking branch 'debian/bugfix/typo-subsytem'David Goulet2017-08-04
| |\
| | * Fix typo: subsytem → subsystem.intrigeri2016-10-19
| | |
| * | Merge remote-tracking branch 'debian/bugfix/typo-catched'David Goulet2017-08-04
| |\ \
| | * | Fix typo: catched → caught.intrigeri2016-01-12
| | | | | | | | | | | | | | | | Spotted by Lintian.
| * | | Merge remote-tracking branch 'debian/bugfix/typo-conect'David Goulet2017-08-04
| |\ \ \
| | * | | Fix typo: conect → connect.intrigeri2016-10-19
| | | |/ | | |/|
| * | | doc: Add autogen.sh step to READMEDavid Goulet2017-08-04
| | | | | | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | | doc: Clarify the libc limitation in READMEDavid Goulet2018-04-20
| | | | | | | | | | | | | | | | | | | | | | | | Fixes #22068 Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | | accept4: Initialize libc symbol earlyDavid Goulet2018-04-20
|/ / / | | | | | | | | | | | | | | | Fixes #17618 Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | Add a -q/--quiet to torsocksDavid Goulet2017-02-24
| | | | | | | | | | | | | | | | | | This option disables all logging by setting TORSOCKS_LOG_LEVEL=1. Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | tests: Add a check for a running TorDavid Goulet2017-02-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | With this check, we can skip tests that need a running tor when none is present. Also update the maatuska hostname for the DNS test. Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | Make cpp conditional for definition of handle_mmap match useTaylor R Campbell2017-02-24
| | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | utils: Add useful function for later useDavid Goulet2017-02-24
| | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | man: Some words were missingDavid Goulet2017-02-24
| | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | Remove clang warningsDavid Goulet2017-02-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The ht.h generated functions are now flagged with ATTR_UNUSED so the compiler knows to ignore the warnings if unused. Remove -fno-strict-overflow as well. Not needed for gcc and clang doesn't have it. Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | Add missing quotes to variable in torsocks.inDavid Goulet2017-02-24
| | | | | | | | | | | | | | | | | | Fixes #19376 Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | Fix check_addr() to return either 0 or 1David Goulet2017-02-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | This function is used by utils_is_address_ipv4/6 and has to return 0 on error or 1 on success. Fixes #20871 Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | Ignore stderr for getcap commandDavid Goulet2017-02-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | On a filesystem not supporting capabilities, an error is thrown out on stderr which is undesirable and confusing for the user. This commit throws stderr to /dev/null. The point of this getcap is to actually see if any capabilities are enabled or none. In the context of an error, there are none. Fixes #21088 Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | | syscall: Add seccomp, gettimeofday, clock_gettime, forkDavid Goulet2016-12-22
|/ / | | | | | | | | | | | | | | Whitelist those four syscalls for the syscall() function. Patch from "cypherpunks". Closes #21022 Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Update version to v2.2.0v2.2.0David Goulet2016-10-18
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Use xz for dist tarball nowDavid Goulet2016-10-18
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Remove TODO as we use the bugtracker for thoseDavid Goulet2016-10-18
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | execve: only include xattr.h for LinuxDavid Goulet2016-10-18
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | syscall: sched_getaffinity is only LinuxDavid Goulet2016-10-18
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | close: Prefix debug messages with [close]David Goulet2016-10-16
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Add check for Apple's System Integrity Protection.Alexander Færøy2016-10-16
| |
* | Quote the non-zero length check of $getcap.Alexander Færøy2016-10-16
| |
* | compat: Fix bad use of defined macro for OS XDavid Goulet2016-10-16
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Use AC_USE_SYSTEM_EXTENSIONS to try to use POSIX extensionsDavid Goulet2016-10-16
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | log: Fix whitespace in log.hDavid Goulet2016-10-16
| | | | | | | | Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | syscall: OS X doesn't support sched_getaffinity()David Goulet2016-10-16
| | | | | | | | | | | | Thanks to jcalvert for reporting this failure through my Github page. Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Fix memcpy buffer overrun in gethostbyaddr()David Goulet2016-08-21
| | | | | | | | | | | | | | | | | | Similar from the previous commit but heap memory was copied to a static stack buffer. This is not security critical but still we shouldn't make torsocks let store let's say a malicious payload on the stack. Reported-by: Guido Vranken <guidovranken@gmail.com> Signed-off-by: David Goulet <dgoulet@ev0ke.net>
* | Fix memcpy() buffer overrun in gethostbyname()David Goulet2016-08-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | An extra 12 bytes of uninitialized data from the stack was copied in the static tsocks_he_addr object which is then returned in the hostent object by gethostbyname(). First of all, this patch sets the right length to tsocks_he_addr which is 4 bytes that is the IPv4 address in network byte order. Second, gethostbyname can take a valid IPv4 so check that before trying to resolve so to speed up the call. Thanks to guido for reporting this through our Hackerone bug bounty program. Reported-by: Guido Vranken <guidovranken@gmail.com> Signed-off-by: David Goulet <dgoulet@ev0ke.net>
generated by cgit v1.2.1 (git 2.18.0) at 2024-02-02 09:42:44 +0000