summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
| | * | | | | | | | | | | fix the links in the exit-list notice we give out to users.Andrew Lewman2011-01-26
| | | | | | | | | | | | |
| * | | | | | | | | | | | Merge-forward our exit-notice backport (empty merge)Nick Mathewson2011-01-26
| |\ \ \ \ \ \ \ \ \ \ \ \ | | |/ / / / / / / / / / /
| | * | | | | | | | | | | Backport current tor-exit-notice to 0.2.1Nick Mathewson2011-01-26
| | | | | | | | | | | | |
* | | | | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-26
|\ \ \ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / / /
| * | | | | | | | | | | | Merge branch 'bug2409' into maint-0.2.2Nick Mathewson2011-01-26
| |\ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | Fix bug in verifying directory signatures with short digestsNick Mathewson2011-01-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we got a signed digest that was shorter than the required digest length, but longer than 20 bytes, we would accept it as long enough.... and then immediately fail when we want to check it. Fixes bug 2409; bug in 0.2.2.20-alpha; found by piebeer.
| * | | | | | | | | | | | | Merge branch 'bug2321' into maint-0.2.2Nick Mathewson2011-01-26
| |\ \ \ \ \ \ \ \ \ \ \ \ \ | | |_|_|/ / / / / / / / / / | |/| | | | | | | | | | | |
| | * | | | | | | | | | | | Avoid sketchy integer cast in cbt codeNick Mathewson2011-01-26
| | |/ / / / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When calling circuit_build_times_shuffle_and_store_array, we were passing a uint32_t as an int. arma is pretty sure that this can't actually cause a bug, because of checks elsewhere in the code, but it's best not to pass a uint32_t as an int anyway. Found by doorss; fix on 0.2.2.4-alpha.
* | | | | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-25
|\ \ \ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / / /
| * | | | | | | | | | | | Comment remaining CBT functions.Mike Perry2011-01-25
| | |_|_|/ / / / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Left circuit_build_times_get_bw_scale() uncommented because it is in the wrong place due to an improper bug2317 fix. It needs to be moved and renamed, as it is not a cbt parameter.
* | | | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-25
|\ \ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / /
| * | | | | | | | | | | Add changes file for bug2004Nick Mathewson2011-01-25
| | | | | | | | | | | |
| * | | | | | | | | | | Fix bug #2004 by demoting a log message.Mike Perry2011-01-25
| |/ / / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | To quote arma: "So instead of stopping your CBT from screaming, you're just going to throw it in the closet and hope you can't hear it?" Yep. The log message can happen because at 95% point on the curve, we can be way beyond the max timeout we've seen, if the curve has few points and is shallow. Also applied Nick's rule of thumb for rewriting some other notice log messages to read like how you would explain them to a raving lunatic on #tor who was shouting at you demanding what they meant. Hopefully the changes live up to that standard.
* | | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-25
|\ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: src/or/geoip.c
| * | | | | | | | | | Tell which geoip file we're parsingSebastian Hahn2011-01-25
| | |_|/ / / / / / / | |/| | | | | | | |
* | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-25
|\ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / /
| * | | | | | | | | Fix assert for relay/bridge state changeSebastian Hahn2011-01-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When we added support for separate client tls certs on bridges in a2bb0bfdd5 we forgot to correctly initialize this when changing from relay to bridge or vice versa while Tor is running. Fix that by always initializing keys when the state changes. Fixes bug 2433.
* | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-24
|\ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / /
| * | | | | | | | | Make the DH parameter we use for TLS match the one from Apache's mod_sslNick Mathewson2011-01-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Our regular DH parameters that we use for circuit and rendezvous crypto are unchanged. This is yet another small step on the path of protocol fingerprinting resistance.
* | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-20
|\ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / /
| * | | | | | | | | Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson2011-01-20
| |\ \ \ \ \ \ \ \ \ | | |/ / / / / / / /
| | * | | | | | | | Merge remote branch 'rransom/policy_summarize-assert' into maint-0.2.1Nick Mathewson2011-01-20
| | |\ \ \ \ \ \ \ \
| | | * | | | | | | | Fix bounds-checking in policy_summarizeRobert Ransom2011-01-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Found by piebeer.
* | | | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-19
|\ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / | | | | / / / / / / / | |_|_|/ / / / / / / |/| | | | | | | | |
| * | | | | | | | | Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson2011-01-19
| |\ \ \ \ \ \ \ \ \ | | |/ / / / / / / /
| | * | | | | | | | Oops; actually add the code to the last patch. :/Nick Mathewson2011-01-19
| | | | | | | | | |
| | * | | | | | | | Fix two more SIZE_T_CEILING issuesNick Mathewson2011-01-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch imposes (very long) limits on the length of a line in a directory document, and on the length of a certificate. I don't think it should actually be possible to overrun these remotely, since we already impose a maximum size on any directory object we're downloading, but a little defensive programming never hurt anybody. Roger emailed me that doorss reported these on IRC, but nobody seems to have put them on the bugtracker.
* | | | | | | | | | fix 0.2.2 changelog to match 0.2.1Roger Dingledine2011-01-18
| | | | | | | | | |
* | | | | | | | | | Merge branch 'maint-0.2.2'Roger Dingledine2011-01-18
|\ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / /
| * | | | | | | | | Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine2011-01-18
| |\ \ \ \ \ \ \ \ \ | | |/ / / / / / / /
| | * | | | | | | | be the winner, rewrite historyRoger Dingledine2011-01-18
| | |/ / / / / / /
* | | | | | | | | trivial make-signature.sh patchTaylor R Campbell2011-01-15
| | | | | | | | |
* | | | | | | | | forward-port that part of the changelogRoger Dingledine2011-01-15
| | | | | | | | |
* | | | | | | | | Merge branch 'maint-0.2.2'Roger Dingledine2011-01-15
|\ \ \ \ \ \ \ \ \ | |/ / / / / / / /
| * | | | | | | | Merge commit 'sebastian/bug2317' into maint-0.2.2Roger Dingledine2011-01-15
| |\ \ \ \ \ \ \ \
| | * | | | | | | | Update the spec with the new boundsSebastian Hahn2011-01-15
| | | | | | | | | |
| | * | | | | | | | Tighten accepted circwindow parametersSebastian Hahn2011-01-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Based on discussion in bug 2317, these values seem to be sane.
| | * | | | | | | | Provide constant limits for all consensus paramsSebastian Hahn2011-01-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This addresses Nick's concern about doing non-constant bounds checking inside networkstatus_get_param().
| | * | | | | | | | Fix a typo spotted by RogerSebastian Hahn2011-01-15
| | | | | | | | | |
| | * | | | | | | | Sanity-check consensus param valuesSebastian Hahn2011-01-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We need to make sure that the worst thing that a weird consensus param can do to us is to break our Tor (and only if the other Tors are reliably broken in the same way) so that the majority of directory authorities can't pull any attacks that are worse than the DoS that they can trigger by simply shutting down. One of these worse things was the cbtnummodes parameter, which could lead to heap corruption on some systems if the value was sufficiently large. This commit fixes this particular issue and also introduces sanity checking for all consensus parameters.
| | * | | | | | | | Make get_net_param_from_list() staticSebastian Hahn2011-01-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This prepares for making the accessor method for consensus parameters safer in the next commit.
* | | | | | | | | | some changelog entries for master tooRoger Dingledine2011-01-15
| | | | | | | | | |
* | | | | | | | | | Merge branch 'maint-0.2.2'Roger Dingledine2011-01-15
|\ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / /
| * | | | | | | | | Merge branch 'maint-0.2.1' into maint-0.2.2Roger Dingledine2011-01-15
| |\ \ \ \ \ \ \ \ \ | | | |/ / / / / / / | | |/| | | | | | |
| | * | | | | | | | 0.2.1.29 changelog and blurbRoger Dingledine2011-01-15
| | | |/ / / / / / | | |/| | | | | |
* | | | | | | | | Add a make-signature.sh script.Nick Mathewson2011-01-15
| | | | | | | | |
* | | | | | | | | Merge remote branch 'origin/maint-0.2.2'Nick Mathewson2011-01-15
|\ \ \ \ \ \ \ \ \ | |/ / / / / / / /
| * | | | | | | | Merge remote branch 'origin/maint-0.2.1' into maint-0.2.2Nick Mathewson2011-01-15
| |\ \ \ \ \ \ \ \ | | |/ / / / / / / | | | / / / / / / | | |/ / / / / / | |/| | | | | |
| | * | | | | | Fix a couple of non-cleared key issues in hidden servicesNick Mathewson2011-01-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | we need to do more hunting, but this fixes the ones mentioned in 2385.
| | * | | | | | Zero out some more key data before freeing itNick Mathewson2011-01-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Found by cypherpunks; fixes bug 2384.
generated by cgit v1.2.1 (git 2.18.0) at 2024-02-08 08:01:49 +0000