summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Add (SOCK_DGRAM, IPPROTO_UDP) sockets to the sandboxing whitelistbug19660Peter Palfrader2016-07-11
| | | | | | | | | | If we did not find a non-private IPaddress by iterating over interfaces, we would try to get one via get_interface_address6_via_udp_socket_hack(). This opens a datagram socket with IPPROTO_UDP. Previously all our datagram sockets (via libevent) used IPPROTO_IP, so we did not have that in the sandboxing whitelist. Add (SOCK_DGRAM, IPPROTO_UDP) sockets to the sandboxing whitelist. Fixes bug 19660.
* Bump maint-0.2.8 to 0.2.8.5-rc-devNick Mathewson2016-07-07
|
* When checking if a routerstatus is reachable, don't check the nodeteor (Tim Wilson-Brown)2016-07-06
| | | | | | | | This fixes #19608, allowing IPv6-only clients to use microdescriptors, while preserving the ability of bridge clients to have some IPv4 bridges and some IPv6 bridges. Fix on c281c036 in 0.2.8.2-alpha.
* Merge branch 'maint-0.2.7' into maint-0.2.8Nick Mathewson2016-07-05
|\
| * Merge branch 'maint-0.2.6' into maint-0.2.7Nick Mathewson2016-07-05
| |\
| | * Merge branch 'maint-0.2.5' into maint-0.2.6Nick Mathewson2016-07-05
| | |\
| | | * Merge branch 'maint-0.2.4' into maint-0.2.5Nick Mathewson2016-07-05
| | | |\
| | | | * whoops. changelog file for 19271.Nick Mathewson2016-07-05
| | | | |
* | | | | Update version to 0.2.8.5-rc. This is not yet a release.Nick Mathewson2016-07-05
| | | | |
* | | | | Appease lint-changes script.Nick Mathewson2016-07-05
| | | | |
* | | | | Repair unit test that assumed we have 9 dirauths.Nick Mathewson2016-07-05
| | | | |
* | | | | Merge remote-tracking branch 'weasel/bug19557' into maint-0.2.8Nick Mathewson2016-07-05
|\ \ \ \ \
| * | | | | sandboxing: allow writing to stats/hidserv-statsbug19557Peter Palfrader2016-07-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Our sandboxing code would not allow us to write to stats/hidserv-stats, causing tor to abort while trying to write stats. This was previously masked by bug#19556.
* | | | | | Merge remote-tracking branch 'weasel/bug19556' into maint-0.2.8Nick Mathewson2016-07-05
|\ \ \ \ \ \ | |/ / / / /
| * | | | | Note which bug this fixes in the changes entrybug19556Peter Palfrader2016-07-03
| | | | | |
| * | | | | sandboxing: allow open() of stats dirPeter Palfrader2016-07-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When sandboxing is enabled, we could not write any stats to disk. check_or_create_data_subdir("stats"), which prepares the private stats directory, calls check_private_dir(), which also opens and not just stats() the directory. Therefore, we need to also allow open() for the stats dir in our sandboxing setup.
* | | | | | Run asciidoc in UTC timezone for build reproducibility.intrigeri2016-07-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | asciidoc adds a timestamp at the end of a generated HTML file. This timestamp is based on the date of the file but it can change depending on the TZ environment variable.
* | | | | | Merge branch 'maint-0.2.7' into maint-0.2.8Nick Mathewson2016-07-05
|\ \ \ \ \ \ | |/ / / / / |/| / / / / | |/ / / /
| * | | | Merge branch 'maint-0.2.6' into maint-0.2.7Nick Mathewson2016-07-05
| |\ \ \ \ | | |/ / /
| | * | | Merge branch 'maint-0.2.5' into maint-0.2.6Nick Mathewson2016-07-05
| | |\ \ \ | | | |/ /
| | | * | Merge branch 'maint-0.2.4' into maint-0.2.5Nick Mathewson2016-07-05
| | | |\ \ | | | | |/
| | | | * Remove urras as a default trusted directory authoritySebastian Hahn2016-07-03
| | | | | | | | | | | | | | | | | | | | It had been a directory authority since 0.2.1.20.
* | | | | When tor can't find a directory, log lessteor (Tim Wilson-Brown)2016-07-01
| | | | |
* | | | | Merge branch 'bug19071-extra-squashed' into maint-0.2.8Nick Mathewson2016-06-28
|\ \ \ \ \
| * | | | | Comment-out fallbacks in a way the stem fallback parser understandsteor (Tim Wilson-Brown)2016-06-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we manually remove fallbacks in C by adding '/*' and '*/' on separate lines, stem still parses them as being present, because it only looks at the start of a line. Add a comment to this effect in the generated source code.
| * | | | | Whitelist a fallback's new IPv6 addressteor (Tim Wilson-Brown)2016-06-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The IPv4-only entry will be used for 0.2.8. The IPv4 and IPv6 entry will be considered in 0.2.9.
| * | | | | Remove a fallback that changed DirPortteor (Tim Wilson-Brown)2016-06-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The operator has confirmed that the DirPort change is perament. The relay will be reconsidered as a fallback in 0.2.9.
* | | | | | whitespace fixesNick Mathewson2016-06-28
| | | | | |
* | | | | | Merge remote-tracking branch 'teor/bug18812' into maint-0.2.8Nick Mathewson2016-06-28
|\ \ \ \ \ \
| * | | | | | Resolve bug18812 by logging fallback key changes at info levelteor (Tim Wilson-Brown)2016-06-28
| | | | | | |
| * | | | | | Make it clear that fallbacks include authoritiesteor (Tim Wilson-Brown)2016-06-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Comment-only change
| * | | | | | Refactor connection_or_client_learned_peer_id for bug18812teor (Tim Wilson-Brown)2016-06-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | No behavioural change. Also clarify some comments.
* | | | | | | Bug19499: Fix GCC warnings when building against bleeding edge OpenSSL.Yawning Angel2016-06-24
| |/ / / / / |/| | | | | | | | | | | | | | | | | | | | | | | The previous version of the new accessors didn't specify const but it was changed in master.
* | | | | | Changes file for 19071 and 19480teor (Tim Wilson-Brown)2016-06-22
| | | | | |
* | | | | | Remove and blacklist 3 fallbacks which disappearedteor (Tim Wilson-Brown)2016-06-22
| | | | | | | | | | | | | | | | | | | | | | | | Blacklist them in case they appear again.
* | | | | | Remove 2 fallbacks: one lost guard, the other had bad uptimeteor (Tim Wilson-Brown)2016-06-22
| | | | | | | | | | | | | | | | | | | | | | | | Leave these fallbacks in the whitelist, they may improve before 0.2.9.
* | | | | | Remove and blacklist 4 fallbacks which are unsuitableteor (Tim Wilson-Brown)2016-06-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Remove a fallback that changed its fingerprint after it was listed This happened after to a software update: https://lists.torproject.org/pipermail/tor-relays/2016-June/009473.html Remove a fallback that changed IPv4 address Remove two fallbacks that were slow to deliver consensuses, we can't guarantee they'll be fast in future. Blacklist all these fallbacks until operators confirm they're stable.
* | | | | | Update the fallback whitelist and blacklistteor (Tim Wilson-Brown)2016-06-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Operators have sent emails asking to have their relays added or removed from the fallback list. Since none of the blacklisted relays are in the hard-coded falback list, it does not need to be changed.
* | | | | | Avoid errors in updateFallbackDirs.py when there are no fallbacksteor (Tim Wilson-Brown)2016-06-22
| | | | | |
* | | | | | Document how to test the hard-coded fallback listteor (Tim Wilson-Brown)2016-06-22
| | | | | |
* | | | | | Remove useless message about nonexistent onion services after uploading a ↵Ivan Markin2016-06-21
| | | | | | | | | | | | | | | | | | | | | | | | descriptor
* | | | | | Fix bug when disabling heartbeats.George Kadianakis2016-06-21
| | | | | | | | | | | | | | | | | | | | | | | | Callbacks can't return 0.
* | | | | | Bump to 0.2.8.4-rc-devNick Mathewson2016-06-15
| | | | | |
* | | | | | bump version to 0.2.8.4-rcNick Mathewson2016-06-14
| | | | | |
* | | | | | Resolve the remaining openssl "-Wredundant-decls" warnings.Nick Mathewson2016-06-14
| | | | | | | | | | | | | | | | | | | | | | | | Another part of 19406
* | | | | | Suppress the Wredundant-decls warning in another set of openssl headersNick Mathewson2016-06-14
| | | | | |
* | | | | | Bug 19406: Add a changes file.Yawning Angel2016-06-14
| | | | | |
* | | | | | Bug 19406: Fix the unit tests to work with OpenSSL 1.1.xYawning Angel2016-06-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Just as it says on the tin. Don't need to fully disable any tests and reduce coverage either. Yay me.
* | | | | | Bug 19406: OpenSSL removed SSL_R_RECORD_TOO_LARGE in 1.1.0.Yawning Angel2016-06-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a logging onlu change, we were suppressing the severity down to INFO when it occured (treating it as "Mostly harmless"). Now it is no more.
* | | | | | Bug 19406: OpenSSL made RSA and DH opaque in 1.1.0.Yawning Angel2016-06-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | There's accessors to get at things, but it ends up being rather cumbersome. The only place where behavior should change is that the code will fail instead of attempting to generate a new DH key if our internal sanity check fails. Like the previous commit, this probably breaks snapshots prior to pre5.
generated by cgit v1.2.1 (git 2.18.0) at 2024-02-02 10:25:18 +0000