summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
* | | | resolve a confusing typo about the v3 link handshakeRoger Dingledine2017-05-14
| | | | | | | | | | | | | | | | unless it was meant to be this way, and I'm the one who got confused?
* | | | Prop 278: Return a more standard HTTP status on failure.Yawning Angel2017-05-12
| | | | | | | | | | | | | | | | | | | | | | | | "406 Not Acceptable" is the status code that implementations are supposed to return when a request cannot be serviced due to `Accept-*` headers.
* | | | Merge remote-tracking branch 'dgoulet/ticket21871_01'Nick Mathewson2017-05-11
|\ \ \ \ | |_|_|/ |/| | |
| * | | prop224: Change how descriptor encode encryption keysticket21871_01David Goulet2017-04-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Every intro point, legacy or not, needs a ntor encryption key. However, in the case of a legacy introductin point, we need an extra RSA key so the IP can relay the INTRODUCE1 cell on the right circuit. We now only need the cross certificate for the encryption key because the signing-key extention make sure we have the actual key encoded in that certificate. The legacy key cross certificate doesn't support that extention so we need both the RSA key and the crosscert. Fixes #21871 Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | fix typos in proposal 275Roger Dingledine2017-05-10
| | | |
* | | | Merge remote-tracking branch 'dgoulet/ticket22060_01'Nick Mathewson2017-05-09
|\ \ \ \ | |_|/ / |/| | |
| * | | dir-spec: Add obsolete version for allow-single-hop-exitsticket22060_01David Goulet2017-04-25
| | | | | | | | | | | | | | | | | | | | | | | | We've rendered this option obsolete in 0.3.1.0-alpha. Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | small edits and tweaksNick Mathewson2017-05-09
| | | |
* | | | Merge remote-tracking branch 'chelseakomlo/glossary-term-additions'Nick Mathewson2017-05-09
|\ \ \ \
| * | | | adds more descriptive subsections, changes section organizationChelsea H. Komlo2017-05-07
| | | | |
* | | | | Merge remote-tracking branch 'mikeperry/padding_spec'Nick Mathewson2017-05-08
|\ \ \ \ \ | |/ / / / |/| | | |
| * | | | Update Prop254 to match implementation.Mike Perry2017-01-14
| | | | |
| * | | | At long last, a padding specification appears.Mike Perry2016-01-27
| | | | | | | | | | | | | | | | | | | | Baby steps. Crawl before you can walk. Walk before you can run.
* | | | | prop140: kill off digest prefixes.Nick Mathewson2017-05-04
| | | | |
* | | | | Explain the reasoning behind the "x-tor-lzma" name.Alexander Færøy2017-05-03
| | | | |
* | | | | We're using LZMA without the "xz" features for Tor.Alexander Færøy2017-05-03
| | | | | | | | | | | | | | | | | | | | Rename LZMA2 to LZMA in the proposal and rename x-lzma2 to x-tor-lzma.
* | | | | Correct a mistake in my last prop140 patchNick Mathewson2017-05-03
| | | | |
* | | | | Fix a security problem in prop140 related to signature encodingNick Mathewson2017-05-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The problem was that clients would, when contacting caches, identify consensuses by the sha3 digest of the entire consensus, including signatures. But there are multiple valid encodings for a set of signatures, meaning that a malicious cache could serve each client a different encoding, and recognize the clients using the sha3 digests in their requests. The first part of the solution is to fetch consensuses diffs based only on the consensus's digest-as-signed: the digest of the consensus with no signatures on it. The second part of the solution is to generate diffs using the <n>,$d format to first remove all trailing signatures, so that the diffs will apply to any valid consensus, no matter how the signatures are encoded.
* | | | | Merge branch 'ticket22042_01'Nick Mathewson2017-05-03
|\ \ \ \ \
| * | | | | control: Add to HS_DESC event the QUERY_NO_HSDIR reasonDavid Goulet2017-05-03
| | |/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It is possible that a descriptor fetch fails because there are no suitable HSDir that the client can pick. In this case, return the QUERY_NO_HSDIR reason which makes HsDir to become "UNKNOWN" both in the HS_DESC and HS_DESC_CONTENT event. Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | | fix trivial typoRoger Dingledine2017-05-02
|/ / / /
* | | | prop224: Be consistent with our concatenation symbol (|)David Goulet2017-04-19
| | | | | | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | prop224: Replace HMAC by a H constructionDavid Goulet2017-04-19
| | | | | | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | prop224: Use consistent notation of period_numDavid Goulet2017-04-19
| | | | | | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | prop224: Make ed25519 identity key mandatory for link specifiersDavid Goulet2017-04-19
| | | | | | | | | | | | | | | | Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | | fix two simple typosRoger Dingledine2017-04-16
| | | |
* | | | Prop #278: Be explicit about handling both ".z"-suffixes and "plaintext" files.Alexander Færøy2017-04-07
| | | |
* | | | Prop #278: Describe backwards compatibility for directory servers.Alexander Færøy2017-04-07
| | | |
* | | | Prop #278: Prefix our encoding with "x-" and use LZMA2 instead of xz.Alexander Færøy2017-04-07
| |/ / |/| |
* | | Run reindex.py for proposal279 (Name System API)George Kadianakis2017-03-29
| | |
* | | Introduce prop279: "A Name System API for Tor Onion Services"George Kadianakis2017-03-29
| | |
* | | Mark prop274 finished.Nick Mathewson2017-03-17
| | |
* | | Define some undefined variables.George Kadianakis2017-03-13
| | | | | | | | | | | | G_LEN and H_LEN were undefined.
* | | Update our MAC definition to include the key len.George Kadianakis2017-03-13
| | | | | | | | | | | | | | | | | | | | | It was recently changed to include the key len as first argument, but the spec was never updated. See the following gitlab review comment for more info: https://gitlab.com/asn/tor/merge_requests/7#note_19342504
* | | prop224: Fix typo in Appendix ADavid Goulet2017-03-09
| | | | | | | | | | | | | | | Reported-by: isis <isis@torproject.org> Signed-off-by: David Goulet <dgoulet@torproject.org>
* | | Merge proposal 204 into addr-spec.txtNick Mathewson2017-03-08
| | |
* | | reindex proposalsNick Mathewson2017-03-08
| | |
* | | Merge proposal 272 into dir-specNick Mathewson2017-03-08
| | |
* | | Merge 235-kill-named-flag.txt into dir-spec.txtNick Mathewson2017-03-08
| | |
* | | Fix an xxx in dir-spec.txtNick Mathewson2017-03-08
| | |
* | | Merge rest of proposal 237 (all relays as caches) into dirspecNick Mathewson2017-03-08
| | |
* | | Mark 236-single-guard-node as closed: this is superseded by 271Nick Mathewson2017-03-08
| | |
* | | Proposal 274: Accept keys for an additional onion-key-grace-period-days.Alexander Færøy2017-03-08
| | | | | | | | | | | | | | | | | | This patch changes the wording of proposal 274 such that relays should accept previous onion keys for an additional onion-key-grace-period-days and not an additional onion-key-rotation-days.
* | | small notes on prop140Nick Mathewson2017-03-07
| | |
* | | Add initial draft of #278: Directory Compression Scheme NegotiationAlexander Færøy2017-03-07
| | |
* | | Modernize proposal 140 a bitNick Mathewson2017-03-03
| | | | | | | | | | | | | | | | | | Update to new stats, note newer proposals, note flavors, add parameters to say how much to cache, restore diff-only URLs, say what "Digest" means. -nickm
* | | prop224: Rename some ntor variables for better readability.George Kadianakis2017-02-28
| | |
* | | prop224: Precisely specify the RENDEZVOUS1 verification procedure.George Kadianakis2017-02-28
| | |
* | | prop224: Improvements to HS ntor section.George Kadianakis2017-02-28
| | | | | | | | | | | | | | | - AUTH_KEYID is actually AUTH_KEY these days - Make it more clear that the result of the ntor handshake includes a MAC.
* | | I am told that prop#210 is actually superseded?Nick Mathewson2017-02-27
| | |
generated by cgit v1.2.1 (git 2.18.0) at 2024-02-08 07:41:46 +0000