summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
| * | | | Make it more obvious for coverity that cid 404 is not dead codeSebastian Hahn2009-10-27
| | | | |
| * | | | crypto_cipher_set_key cannot failSebastian Hahn2009-10-27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In 5e4d53d535a3cc9903250b3df0caa829f1c5e4bf we made it so that crypto_cipher_set_key cannot fail. The call will now always succeed, to returning a boolean for success/failure makes no sense.
* | | | | Now that FOO_free(NULL) always works, remove checks before calling it.Nick Mathewson2009-12-12
| | | | |
* | | | | Make rend_cache_entry_free() typecheck when possible.Nick Mathewson2009-12-12
| | | | |
* | | | | *_free functions now accept NULLSebastian Hahn2009-12-12
| |/ / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | Some *_free functions threw asserts when passed NULL. Now all of them accept NULL as input and perform no action when called that way. This gains us consistence for our free functions, and allows some code simplifications where an explicit null check is no longer necessary.
* | | | add changelog entry for making openssl 0.9.8m workNick Mathewson2009-12-04
| | | |
* | | | Merge commit 'origin/maint-0.2.1'Nick Mathewson2009-12-04
|\ \ \ \ | | |/ / | |/| / | |_|/ |/| |
| * | Improved workaround for disabled OpenSSL renegotiation.Martin Peck2009-12-04
| | | | | | | | | | | | | | | | | | | | | | | | It turns out that OpenSSL 0.9.8m is likely to take a completely different approach for reenabling renegotiation than OpenSSL 0.9.8l did, so we need to work with both. :p Fixes bug 1158. (patch by coderman; commit message by nickm)
* | | Merge commit 'debian-tor-0.2.2.6-alpha-1'Roger Dingledine2009-11-23
|\ \ \
| * \ \ Merge branch 'debian-merge' into debianPeter Palfrader2009-11-23
| |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * debian-merge: (81 commits) Drop debian/patches/0a58567c-work-with-reneg-ssl.dpatch (part of upstream) New upstream version bump to 0.2.2.6-alpha remove the 0.2.1.20 debian changelog from master's changelog Not everybody likes debugging printfs as much as I add the 0.2.1.20 changelog blurb, plus update the releasenotes Do not report a partially-successful detached signature add as failed. only complain when rejecting a descriptor if it has contact info clean up changelog for the 0.2.2.6-alpha release Fix compilation with with bionic libc. New upstream version Fix a memory leak on directory authorities during voting Fix building from a separate build directory. Add changelog entry to 0.2.2.x about openssl 0.9.8l fix Make Tor work with OpenSSL 0.9.8l Fix a URL in a log message. Implement DisableAllSwap to avoid putting secret info in page files. Fix bug 1113. Improve log statement when publishing v2 hs desc. Fix bug 1042. ...
| | * | | Drop debian/patches/0a58567c-work-with-reneg-ssl.dpatch (part of upstream)Peter Palfrader2009-11-23
| | | | |
| | * | | New upstream versionPeter Palfrader2009-11-23
| | | | |
| | * | | Merge commit 'tor-0.2.2.6-alpha' into debian-mergePeter Palfrader2009-11-23
| | |\ \ \ | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit 'tor-0.2.2.6-alpha': (79 commits) bump to 0.2.2.6-alpha remove the 0.2.1.20 debian changelog from master's changelog Not everybody likes debugging printfs as much as I add the 0.2.1.20 changelog blurb, plus update the releasenotes Do not report a partially-successful detached signature add as failed. only complain when rejecting a descriptor if it has contact info clean up changelog for the 0.2.2.6-alpha release Fix compilation with with bionic libc. New upstream version Fix a memory leak on directory authorities during voting Fix building from a separate build directory. Add changelog entry to 0.2.2.x about openssl 0.9.8l fix Make Tor work with OpenSSL 0.9.8l Fix a URL in a log message. Implement DisableAllSwap to avoid putting secret info in page files. Fix bug 1113. Improve log statement when publishing v2 hs desc. Fix bug 1042. Fix an apparently bogus check; fortunately, it seems to be untriggered. Fix an accidentally removed free in 385853a282138a61, and repair a check. ...
* | | | | Merge commit 'origin/maint-0.2.1'Roger Dingledine2009-11-23
|\ \ \ \ \ | | |_|/ / | |/| | |
| * | | | fix race condition that can cause crashes at client or exit relayRoger Dingledine2009-11-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Avoid crashing if the client is trying to upload many bytes and the circuit gets torn down at the same time, or if the flip side happens on the exit relay. Bugfix on 0.2.0.1-alpha; fixes bug 1150.
* | | | | add a minimum for CircuitStreamTimeout, plus a man pageRoger Dingledine2009-11-22
| | | | | | | | | | | | | | | | | | | | | | | | | plus some other unrelated touchups that have been sitting in my sandbox
* | | | | New config option "CircuitStreamTimeout"Roger Dingledine2009-11-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | New config option "CircuitStreamTimeout" to override our internal timeout schedule for how many seconds until we detach a stream from a circuit and try a new circuit. If your network is particularly slow, you might want to set this to a number like 60.
* | | | | If somebody tries to overflow my dirport, don't log his IP by default.Roger Dingledine2009-11-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | aka Fix an instance where a Tor directory mirror might accidentally log the IP address of a misbehaving Tor client. Bugfix on 0.1.0.1-rc.
* | | | | clobber connections with different number than we clobber circuitsRoger Dingledine2009-11-21
| | | | |
* | | | | stop assuming that our downcasts have a struct offset of 0Roger Dingledine2009-11-21
| | | | | | | | | | | | | | | | | | | | shouldn't actually change anything, but who knows.
* | | | | bump to 0.2.2.6-alpha-devRoger Dingledine2009-11-21
| | | | |
* | | | | Use the same mlockall checks with tor_set_max_memlockNick Mathewson2009-11-20
| | | | |
* | | | | Fix compilation on OSX 10.3.Nick Mathewson2009-11-20
| |_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | On this OSX version, there is a stub mlockall() function that doesn't work, *and* the declaration for it is hidden by an '#ifdef _P1003_1B_VISIBLE'. This would make autoconf successfully find the function, but our code fail to build when no declaration was found. This patch adds an additional test for the declaration.
* | | | bump to 0.2.2.6-alphator-0.2.2.6-alphaRoger Dingledine2009-11-19
| | | |
* | | | remove the 0.2.1.20 debian changelog from master's changelogRoger Dingledine2009-11-19
| | | |
* | | | Not everybody likes debugging printfs as much as INick Mathewson2009-11-18
| | | |
* | | | Merge commit 'origin/maint-0.2.1'Roger Dingledine2009-11-17
|\ \ \ \ | |/ / / | | | | | | | | | | | | | | | | Conflicts: debian/changelog
| * | | add the 0.2.1.20 changelog blurb, plus update the releasenotesRoger Dingledine2009-11-17
| | | |
| * | | Merge commit 'debian-tor-0.2.1.20-1' into maint-0.2.1Nick Mathewson2009-11-13
| |\ \ \
| | * \ \ Merge branch 'debian-merge' into debian-0.2.1Peter Palfrader2009-11-13
| | |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * debian-merge: (37 commits) New upstream version bump to 0.2.1.20 Move moria1 and Tonga to alternate IP addresses. read the "circwindow" parameter from the consensus Code to parse and access network parameters. Revert "Teach connection_ap_can_use_exit about Exclude*Nodes" Work around a memory leak in openssl 0.9.8g (and maybe others) Teach connection_ap_can_use_exit about Exclude*Nodes make some bug 1090 warnings go away Fix a memory leak when parsing a ns Fix obscure 64-bit big-endian hidserv bug turns out the packaging changes aren't in 0.2.1.20 update changelog with bundle details Use an _actual_ fix for the byte-reverse warning. Use a simpler fix for the byte-reversing warning Fix compile warnings on Snow Leopard Add getinfo accepted-server-descriptor. Clean spec. Reduce log level for bug case that we now know really exists. Only send reachability status events on overall success/failure update the README instructions and OS X makefiles ...
| | | * | | New upstream versionPeter Palfrader2009-11-13
| | | | | |
| | | * | | Merge commit 'tor-0.2.1.20' into debian-mergePeter Palfrader2009-11-13
| | | |\ \ \ | | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit 'tor-0.2.1.20': (36 commits) bump to 0.2.1.20 Move moria1 and Tonga to alternate IP addresses. read the "circwindow" parameter from the consensus Code to parse and access network parameters. Revert "Teach connection_ap_can_use_exit about Exclude*Nodes" Work around a memory leak in openssl 0.9.8g (and maybe others) Teach connection_ap_can_use_exit about Exclude*Nodes make some bug 1090 warnings go away Fix a memory leak when parsing a ns Fix obscure 64-bit big-endian hidserv bug turns out the packaging changes aren't in 0.2.1.20 update changelog with bundle details Use an _actual_ fix for the byte-reverse warning. Use a simpler fix for the byte-reversing warning Fix compile warnings on Snow Leopard Add getinfo accepted-server-descriptor. Clean spec. Reduce log level for bug case that we now know really exists. Only send reachability status events on overall success/failure update the README instructions and OS X makefiles Avoid segfault when accessing hidden service. ...
* | | | | | Do not report a partially-successful detached signature add as failed.Nick Mathewson2009-11-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also, regenerate the detached-signature document whenever any signatures are successfully added.
* | | | | | only complain when rejecting a descriptor if it has contact infoRoger Dingledine2009-11-17
| | | | | |
* | | | | | clean up changelog for the 0.2.2.6-alpha releaseRoger Dingledine2009-11-17
| | | | | |
* | | | | | Merge commit 'debian-tor-0.2.2.5-alpha-1'Roger Dingledine2009-11-15
|\ \ \ \ \ \ | | |_|_|/ / | |/| | | |
| * | | | | Change the dependency on tsocks to torsocks | tsocks (see: #554717)Peter Palfrader2009-11-15
| | | | | |
| * | | | | Allegedly echo -e is a bashism. Remove it from debian/rules, we don't need ↵Peter Palfrader2009-11-15
| | | | | | | | | | | | | | | | | | | | | | | | it anyways (closes: #478631)
| * | | | | Change order of recommends from privoxy | polipo to polipo | privoxy.Peter Palfrader2009-11-15
| | | | | |
| * | | | | Build-Depend on libssl-dev >= 0.9.8k-6.Peter Palfrader2009-11-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | libssl 0.9.8k-6 disabled autorenegotation, and the -dev package introduced the SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION flag. Since we now set that flag if available we want to make sure that it *is* available when building. Therefore build-depend on libssl-dev >= 0.9.8k-6. If we build against earlier versions we will not work once libssl gets upgraded to a version that disabled renegotiations.
| * | | | | Pick 0a58567ce3418f410cf1dd0143dd3e56b4a4bd1f from master git treePeter Palfrader2009-11-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | work with libssl that has renegotiation disabled by default. (debian/patches/0a58567c-work-with-reneg-ssl.dpatch)
| * | | | | Merge branch 'debian-merge' into debianPeter Palfrader2009-11-15
| |\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * debian-merge: New upstream version fix compile on windows bump to 0.2.2.5-alpha Move dizum to an alternate IP address. Ship test.h in release
| | * | | | | New upstream versionPeter Palfrader2009-11-15
| | | | | | |
| | * | | | | Merge commit 'tor-0.2.2.5-alpha' into debian-mergePeter Palfrader2009-11-15
| | |\ \ \ \ \ | |/ / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit 'tor-0.2.2.5-alpha': fix compile on windows bump to 0.2.2.5-alpha Move dizum to an alternate IP address. Ship test.h in release
* | | | | | | Fix compilation with with bionic libc.Jacob Appelbaum2009-11-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes bug 1147: bionic doesn't have an actual implementation of mlockall(); mlockall() is merely in the headers but not actually in the library. This prevents Tor compilation with the bionic libc for Android handsets.
* | | | | | | Fix a memory leak on directory authorities during votingRoger Dingledine2009-11-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix a memory leak on directory authorities during voting that was introduced in 0.2.2.1-alpha. Found via valgrind.
* | | | | | | Fix building from a separate build directory.Nick Mathewson2009-11-08
| | | | | | |
* | | | | | | Add changelog entry to 0.2.2.x about openssl 0.9.8l fixNick Mathewson2009-11-06
| | | | | | |
* | | | | | | Merge commit 'origin/maint-0.2.1'Nick Mathewson2009-11-06
|\ \ \ \ \ \ \ | | |_|/ / / / | |/| | | | | | | | | | | | | | | | | | | Conflicts: src/common/tortls.c
| * | | | | | Make Tor work with OpenSSL 0.9.8lNick Mathewson2009-11-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | To fix a major security problem related to incorrect use of SSL/TLS renegotiation, OpenSSL has turned off renegotiation by default. We are not affected by this security problem, however, since we do renegotiation right. (Specifically, we never treat a renegotiated credential as authenticating previous communication.) Nevertheless, OpenSSL's new behavior requires us to explicitly turn renegotiation back on in order to get our protocol working again. Amusingly, this is not so simple as "set the flag when you create the SSL object" , since calling connect or accept seems to clear the flags. For belt-and-suspenders purposes, we clear the flag once the Tor handshake is done. There's no way to exploit a second handshake either, but we might as well not allow it.
generated by cgit v1.2.1 (git 2.18.0) at 2024-02-08 08:02:23 +0000