Nick Mathewson
29045d21b3
r15155@tombo: nickm | 2007-12-05 11:11:14 -0500
...
Add a missing "not" to check of whether to use revised handshake.
svn:r12678
2007-12-05 16:11:33 +00:00
Roger Dingledine
d46b8a3eac
Stop being so aggressive about fetching dir info if your DirPort is
...
on but your ORPort is off.
Add a new config option BridgeRelay that specifies you want to
be a bridge relay. Right now the only difference is that it makes
you answer begin_dir requests, and it makes you cache dir info,
even if your DirPort isn't on.
Refactor directory_caches_dir_info() into some more functions.
svn:r12668
2007-12-04 18:35:03 +00:00
Roger Dingledine
0000c7e6e9
weasel wanted us to log the source of v3 votes we don't like
...
svn:r12665
2007-12-04 15:54:14 +00:00
Nick Mathewson
593ab7e808
r15106@tombo: nickm | 2007-12-04 00:08:35 -0500
...
Change tor_addr_t to be a tagged union of in_addr and in6_addr, not of sockaddr_in and sockaddr_in6. It's hardly used in the main code as it is, but let's get it right before it gets popular.
svn:r12660
2007-12-04 05:19:56 +00:00
Roger Dingledine
ce2cf88ebf
Stop thinking that 0.1.2.x directory servers can handle "begin_dir"
...
requests. Should ease bugs 406 and 419 where 0.1.2.x relays are
crashing or mis-answering these requests.
svn:r12658
2007-12-03 22:31:59 +00:00
Roger Dingledine
3229117d3a
minor touchups
...
svn:r12657
2007-12-03 22:04:19 +00:00
Roger Dingledine
07dbaaac16
We were ignoring our RelayBandwidthRate for the first 30 seconds
...
after opening a circuit -- even relayed circuits. Bugfix on
0.2.0.3-alpha.
svn:r12638
2007-12-02 11:24:06 +00:00
Roger Dingledine
b54240d38f
Reject uploaded descriptors and extrainfo documents if they're
...
huge. Otherwise we'll cache them all over the network and it'll
clog everything up.
svn:r12633
2007-12-02 06:11:53 +00:00
Roger Dingledine
1a254477fc
minor cleanups
...
svn:r12631
2007-12-02 04:39:56 +00:00
Roger Dingledine
f901cd064c
clean up the dirserv_add_multiple_descriptors() api
...
svn:r12630
2007-12-02 02:47:42 +00:00
Roger Dingledine
9b1b8199df
backport candidate:
...
Start purging old entries from the "rephist" database, and the
hidden service descriptor databases, even when DirPort is zero.
svn:r12628
2007-12-01 22:38:58 +00:00
Roger Dingledine
77e607cc0d
Authorities and caches fetch the v2 networkstatus documents
...
less often, now that v3 is encouraged.
svn:r12627
2007-12-01 20:04:36 +00:00
Roger Dingledine
c26c54836f
download the (admittedly tiny) v1 dir blobs even less often.
...
we can't make them totally obsolete yet but we can get closer.
svn:r12626
2007-12-01 20:02:05 +00:00
Nick Mathewson
4a6d969139
r15094@tombo: nickm | 2007-12-01 03:46:07 -0500
...
server-side code (for when v2 negotiation occurred) to check for renegotiation and adjust client ID info accordingly. server-side of new TLS code is now implemented, but needs testing and debugging.
svn:r12624
2007-12-01 08:47:13 +00:00
Nick Mathewson
d8ad247dfd
r15088@tombo: nickm | 2007-11-30 23:47:29 -0500
...
Add support to get a callback invoked when the client renegotiate a connection. Also, make clients renegotiate. (not enabled yet, until they detect that the server acted like a v2 server)
svn:r12623
2007-12-01 08:09:48 +00:00
Nick Mathewson
1789f94668
r15087@tombo: nickm | 2007-11-30 22:32:26 -0500
...
Start getting freaky with openssl callbacks in tortls.c: detect client ciphers, and if the list doesn't look like the list current Tors use, present only a single cert do not ask for a client cert. Also, support for client-side renegotiation. None of this is enabled unless you define V2_HANDSHAKE_SERVER.
svn:r12622
2007-12-01 08:09:46 +00:00
Roger Dingledine
f8df8d791e
start to refactor dirserver_mode()
...
svn:r12621
2007-12-01 04:58:53 +00:00
Roger Dingledine
6d49465b69
fix two trivial potential onionkey leaks. neither of these
...
should happen in practice. but now they really won't.
svn:r12620
2007-12-01 04:40:12 +00:00
Roger Dingledine
c1b4bfdeac
karsten's bugfix on r12607
...
svn:r12619
2007-11-30 23:45:16 +00:00
Roger Dingledine
30e1a862e7
r12617 broke the compile
...
svn:r12618
2007-11-30 23:32:25 +00:00
Nick Mathewson
f061994487
r16881@catbus: nickm | 2007-11-30 15:07:42 -0500
...
Do not keep a string representation of every single addr_policy_t lying around. This might save a few hundred K.
svn:r12617
2007-11-30 20:09:09 +00:00
Roger Dingledine
ad0fcef576
other trivial tweaks
...
svn:r12614
2007-11-30 18:53:14 +00:00
Roger Dingledine
fea55c7c2d
two pieces of r12607 for karsten to look at closer
...
svn:r12609
2007-11-29 15:37:17 +00:00
Roger Dingledine
8ac5f24c33
easy tweaks on r12607
...
svn:r12608
2007-11-29 15:30:32 +00:00
Roger Dingledine
aaf35cccf7
karsten's second refactoring patch
...
svn:r12607
2007-11-29 15:25:04 +00:00
Roger Dingledine
0f22c584cd
doxygen tweaks
...
svn:r12606
2007-11-29 15:23:41 +00:00
Roger Dingledine
7f12ebc3fa
cleanups on r12579
...
svn:r12580
2007-11-27 21:17:43 +00:00
Roger Dingledine
466abecef4
Our new v2 hidden service descriptor format allows descriptors
...
that have no introduction points. But Tor crashed when we tried
to build a descriptor with no intro points (and it would have
crashed if we had tried to parse one). Bugfix on 0.2.0.x; patch
by Karsten Loesing.
svn:r12579
2007-11-27 21:06:34 +00:00
Roger Dingledine
b02e154470
minor cleanups
...
svn:r12571
2007-11-26 06:26:17 +00:00
Roger Dingledine
91bb09cb28
Only update guard status (usable / not usable) once we have
...
enough directory information. This was causing us to always pick
two new guards on startup (bugfix on 0.2.0.9-alpha), and it was
causing us to discard all our guards on startup if we hadn't been
running for a few weeks (bugfix on 0.1.2.x). Fixes bug 448.
svn:r12570
2007-11-26 02:18:57 +00:00
Roger Dingledine
2e40510f02
if we think our ip address just changed, log what we thought it
...
changed *to*.
svn:r12551
2007-11-22 01:38:54 +00:00
Roger Dingledine
aaefad64a1
stop lying in the config file comment we write out regarding
...
PublishServerDescriptor.
svn:r12550
2007-11-22 00:44:08 +00:00
Roger Dingledine
a54ce34e35
Don't crash if we get an unexpected value for the
...
PublishServerDescriptor config option. Reported by Matt Edman;
bugfix on 0.2.0.9-alpha.
svn:r12549
2007-11-22 00:43:22 +00:00
Roger Dingledine
094096d320
get rid of the __ConsiderAllRoutersAsHidServDirectories config option
...
svn:r12528
2007-11-17 12:28:18 +00:00
Roger Dingledine
d62ef13d0a
get rid of the separate reachability window for the hsdir flag.
...
svn:r12527
2007-11-17 12:15:32 +00:00
Roger Dingledine
b701583ffa
note a log message that might want to get quieter
...
svn:r12526
2007-11-17 12:11:00 +00:00
Roger Dingledine
c336dedd21
The fix in 0.2.0.12-alpha cleared the "hsdir" flag in v3 network
...
consensus documents when there are too many relays at a single
IP address. Now clear it in v2 network status documents too.
svn:r12522
2007-11-17 07:00:14 +00:00
Roger Dingledine
6514843026
cleanups, bump to 0.2.0.12-alpha
...
svn:r12516
2007-11-17 02:22:56 +00:00
Roger Dingledine
d6f8ba25c9
back out r12509 and fix a better bug instead:
...
When authorities detected more than two relays running on the same
IP address, they were clearing all the status flags but forgetting
to clear the "hsdir" flag. So clients were being told that a
given relay was the right choice for a v2 hsdir lookup, yet they
never had its descriptor because it was marked as 'not running'
in the consensus.
svn:r12515
2007-11-17 01:53:33 +00:00
Roger Dingledine
d09439872d
If we're using bridges or have strictentrynodes set, and our
...
chosen exit is in the same family as all our bridges/entry guards,
then be flexible about families.
svn:r12514
2007-11-16 07:37:49 +00:00
Roger Dingledine
b669fb7344
i'm a little teapot, ...
...
svn:r12513
2007-11-16 07:33:57 +00:00
Roger Dingledine
0871e02da8
If we're trying to fetch a bridge descriptor and there's no way
...
the bridge authority could help us (for example, we don't know
a digest, or there is no bridge authority), don't be so eager to
fall back to asking the bridge authority.
svn:r12512
2007-11-16 07:31:51 +00:00
Roger Dingledine
116a0f0f22
minor touchups on or.h
...
svn:r12511
2007-11-16 07:29:01 +00:00
Roger Dingledine
0e442e098c
Nov 16 02:20:50.089 [info] update_consensus_router_descriptor_downloads(): 0 router descriptors downloadable. 0 delayed; 1676 present (0 of those were in old_routers); 0 would_reject; 582 wouldnt_use, 0 in progress.
...
Nov 16 02:20:50.089 [info] launch_router_descriptor_downloads(): There are not many downloadable routerdescs, but we haven't tried downloading descriptors recently. Downloading.
Get rid of the second line.
svn:r12510
2007-11-16 07:23:25 +00:00
Roger Dingledine
60ee26c873
Karsten: you should look at this and decide if we should skip over
...
non-running hsdirs, or not give them the flag if they're not running,
or what.
When picking v2 hidden service directories, don't pick ones that
aren't listed as Running.
svn:r12509
2007-11-16 05:29:27 +00:00
Peter Palfrader
3e9369ebd9
Changing the ExitPolicyRejectPrivate setting should cause us to rebuild the
...
descriptor.
svn:r12507
2007-11-15 15:51:17 +00:00
Roger Dingledine
06a1e4124f
Fix a small memory leak whenever we decide against using a
...
newly picked entry guard. Reported by Mike Perry.
svn:r12506
2007-11-15 11:14:08 +00:00
Nick Mathewson
e843e05563
r16670@catbus: nickm | 2007-11-14 14:56:30 -0500
...
Initial phase of proposal 110: accept RELAY_EARLY cells, and turn them into RELAY cells when sending them on over a v1 OR connection.
svn:r12496
2007-11-14 20:01:15 +00:00
Nick Mathewson
d483d3144a
r16669@catbus: nickm | 2007-11-14 14:50:03 -0500
...
When we complete an OR handshake, set up all the internal fields and mark the connection as open.
svn:r12495
2007-11-14 20:01:12 +00:00
Nick Mathewson
bbb34846b4
r16665@catbus: nickm | 2007-11-14 13:36:11 -0500
...
Fix bug spotted by karsten: when we have no consensus, do not try to continue finding directories for a hidden service.
svn:r12493
2007-11-14 18:39:15 +00:00
Nick Mathewson
75922ff41f
r16663@catbus: nickm | 2007-11-13 21:51:28 -0500
...
Back out parts of r12376: replace file locations in scripts.
svn:r12490
2007-11-14 02:55:12 +00:00
Roger Dingledine
c23a22785d
make r12485 more likely to work on tonga too
...
svn:r12486
2007-11-12 19:01:28 +00:00
Nick Mathewson
f7c2d1522e
r16656@catbus: nickm | 2007-11-12 11:27:00 -0500
...
Possibly fix bug 548 by making the fix for bug 543 not get invoked on authorities. See changelog and bug 548 entry for rationale.
svn:r12485
2007-11-12 16:29:31 +00:00
Nick Mathewson
6deca312a7
r16654@catbus: nickm | 2007-11-12 10:43:45 -0500
...
Add explanatory comment. Does not fix bug 548.
svn:r12484
2007-11-12 15:46:38 +00:00
Roger Dingledine
609ceadd74
compiling is good too
...
svn:r12480
2007-11-11 18:46:16 +00:00
Roger Dingledine
7870964e0c
Don't reevaluate all the information from our consensus document
...
just because we've downloaded a v2 networkstatus that we intend
to cache. Fixes bug 545.
svn:r12479
2007-11-11 17:37:59 +00:00
Roger Dingledine
49e9c6d96b
tweak
...
svn:r12478
2007-11-11 17:20:30 +00:00
Roger Dingledine
1b00492c40
a potential solution for bug 549
...
svn:r12471
2007-11-11 04:36:31 +00:00
Roger Dingledine
0d21995956
another likelier candidate for mike's leak
...
svn:r12470
2007-11-11 04:19:11 +00:00
Roger Dingledine
2b2d111017
a log entry to help us find mike's memory leak
...
svn:r12469
2007-11-11 03:56:34 +00:00
Roger Dingledine
8ca51869fd
Allow people to say PreferTunnelledDirConns rather than
...
PreferTunneledDirConns, for those alternate-spellers out there.
svn:r12466
2007-11-11 01:06:16 +00:00
Roger Dingledine
42b8fb5a15
Exit policies now reject connections that are addressed to a
...
relay's public (external) IP address too, unless
ExitPolicyRejectPrivate is turned off. We do this because too
many relays are running nearby to services that trust them based
on network address.
svn:r12459
2007-11-10 21:17:51 +00:00
Roger Dingledine
7050df7245
bump to 0.2.0.10-alpha
...
svn:r12455
2007-11-10 07:26:56 +00:00
Nick Mathewson
1bdbd3b98e
r16582@catbus: nickm | 2007-11-08 13:14:16 -0500
...
Try to bulletproof the parse logic for router-stability.
svn:r12441
2007-11-08 18:15:49 +00:00
Nick Mathewson
e0b9c893bc
r16573@catbus: nickm | 2007-11-08 11:57:16 -0500
...
Mess with the formula for the Guard flag again. Now it requires that you be in the most familiar 7/8 of nodes, and have above median wfu for that 7/8th. See spec for details. Also, log thresholds better.
svn:r12440
2007-11-08 16:58:59 +00:00
Nick Mathewson
c3a745951b
r16570@catbus: nickm | 2007-11-08 11:04:20 -0500
...
Keep track, for each OR connection, of the last time we added a non-padding cell to its outbuf. Use this timestamp, not "lastwritten" to tell if it is time to close a circuitless connection. (We can'tuse lastwritten, since lastwritten is updated when ever the connection flushes anything, and by that point we can no longer tell what is a padding cell and what is not.)
svn:r12437
2007-11-08 16:19:07 +00:00
Nick Mathewson
17a34e4a43
r16569@catbus: nickm | 2007-11-08 10:51:11 -0500
...
More log messages about certificate downloads; try to track down bug 546.2
svn:r12436
2007-11-08 16:19:04 +00:00
Roger Dingledine
1d61b54227
make the complaints about missing v2hidserv directories quieter,
...
at least until we're *supposed* to have any of them.
svn:r12431
2007-11-08 04:21:35 +00:00
Roger Dingledine
e12cf29960
Don't stop fetching descriptors when FetchUselessDescriptors is
...
set, even if we stop asking for circuits. Bugfix on 0.1.2.x;
reported by tup and ioerror.
svn:r12430
2007-11-08 04:19:51 +00:00
Nick Mathewson
d279fb82e2
r16550@catbus: nickm | 2007-11-07 16:50:02 -0500
...
"And $499 for knowing where to hit it." Fix bug 546.
svn:r12425
2007-11-07 21:51:21 +00:00
Roger Dingledine
473a054b4c
Set up ides (run by Mike Perry) as the third v3 directory authority.
...
svn:r12423
2007-11-07 21:20:45 +00:00
Roger Dingledine
1621b1e09b
start hunting a bug where bridge users don't always put
...
their un-keyed connections onto the orconn_identity_map.
svn:r12418
2007-11-07 18:26:46 +00:00
Nick Mathewson
f18e94116b
r16533@catbus: nickm | 2007-11-07 12:42:58 -0500
...
Fix another "TLS error. breaking connection".~
svn:r12416
2007-11-07 17:44:15 +00:00
Nick Mathewson
45b0ee42a3
r16531@catbus: nickm | 2007-11-07 12:39:56 -0500
...
Initialize re-parsed routerinfos with routerlist_index -1, since they are not yet inserted into the routerlist. Fixes another crash.
svn:r12415
2007-11-07 17:41:14 +00:00
Nick Mathewson
dc2ab2f4e2
r16529@catbus: nickm | 2007-11-07 12:28:52 -0500
...
And make it compile too.
svn:r12414
2007-11-07 17:30:08 +00:00
Nick Mathewson
9b2d86d83d
r16527@catbus: nickm | 2007-11-07 12:27:59 -0500
...
Re-set all of the indices immediately after sorting old_routers. Fixes a crash.
svn:r12413
2007-11-07 17:29:16 +00:00
Nick Mathewson
bed01a9003
r16525@catbus: nickm | 2007-11-07 12:10:01 -0500
...
Clean up log messages from bug 543 fix, and make old_routers also keep track of their indices. This will probably crash some until all the bugs are fixed.
svn:r12412
2007-11-07 17:11:23 +00:00
Nick Mathewson
0e993e6008
r16523@catbus: nickm | 2007-11-07 11:35:49 -0500
...
Improve "tls error. breaking" message a little.
svn:r12411
2007-11-07 16:37:08 +00:00
Nick Mathewson
381619a973
Fix typo.
...
svn:r12409
2007-11-07 15:22:46 +00:00
Nick Mathewson
acaa9a7f69
r16518@catbus: nickm | 2007-11-07 10:18:31 -0500
...
First attempt at fixing bug 543. Needs testing. Too slow.
svn:r12408
2007-11-07 15:19:53 +00:00
Nick Mathewson
bc4cefcd7e
r16471@catbus: nickm | 2007-11-06 15:50:42 -0500
...
Detect whether any of the descriptors we want are in old_routers. Possibly useful in tracking down bug 543.
svn:r12404
2007-11-06 20:51:45 +00:00
Nick Mathewson
47fd6f7267
r16464@catbus: nickm | 2007-11-06 14:53:28 -0500
...
Also avoid overflow on or_conn->read_bucket
svn:r12401
2007-11-06 19:54:32 +00:00
Nick Mathewson
be1a5191f8
r16462@catbus: nickm | 2007-11-06 14:40:58 -0500
...
Fix bug 544: do not allow buckets to overflow. Backportable.
svn:r12400
2007-11-06 19:42:37 +00:00
Nick Mathewson
28dd56f982
r16459@catbus: nickm | 2007-11-06 13:26:11 -0500
...
Fix "0 request for 0 router" message.
svn:r12399
2007-11-06 18:27:14 +00:00
Nick Mathewson
6bc071f765
r16456@catbus: nickm | 2007-11-06 12:59:04 -0500
...
Fix a dumb bug in networkstatus_free_all()
svn:r12397
2007-11-06 18:00:09 +00:00
Nick Mathewson
e047f7f865
r16455@catbus: nickm | 2007-11-06 12:48:00 -0500
...
Parse CERT cells and act correctly when we get them.
svn:r12396
2007-11-06 18:00:07 +00:00
Nick Mathewson
af60d79f5d
r16452@catbus: nickm | 2007-11-06 09:20:08 -0500
...
Fix warning about overflow optimization.
svn:r12395
2007-11-06 14:21:08 +00:00
Nick Mathewson
95c7b8cc64
r14729@31-33-67: nickm | 2007-11-05 18:54:50 -0500
...
Send and Parse CERT cells correctly. Still need to understand the certs inside.
svn:r12392
2007-11-05 23:55:43 +00:00
Nick Mathewson
6fcda5299f
r14727@31-33-67: nickm | 2007-11-05 18:34:35 -0500
...
Make VERSIONS variable-length.
svn:r12391
2007-11-05 23:34:39 +00:00
Nick Mathewson
9a20a64b62
r16438@catbus: nickm | 2007-11-05 16:45:45 -0500
...
Initial code for variable-length cells. CERT and VERSIONS need to use them.
svn:r12390
2007-11-05 21:46:35 +00:00
Nick Mathewson
42f7ae3eae
r16435@catbus: nickm | 2007-11-05 14:23:07 -0500
...
Patch from karsten: tidy up v2 hidden service directory logic, and fix a few bugs.
svn:r12388
2007-11-05 19:23:57 +00:00
Nick Mathewson
dec5fcd611
r16434@catbus: nickm | 2007-11-05 14:22:40 -0500
...
Oops; fix compile
svn:r12387
2007-11-05 19:23:55 +00:00
Nick Mathewson
85654f4ab9
r16432@catbus: nickm | 2007-11-05 14:18:57 -0500
...
Send and parse link_auth cells properly.
svn:r12386
2007-11-05 19:19:46 +00:00
Nick Mathewson
44eab517fc
r16414@catbus: nickm | 2007-11-05 13:14:46 -0500
...
Function to process link auth cells; stub function for cert cell processing
svn:r12385
2007-11-05 18:15:56 +00:00
Nick Mathewson
ea1bea5830
r16411@catbus: nickm | 2007-11-05 11:27:37 -0500
...
Remember X509 certificates in the context. Store peer/self certificate digests in handshake state.
svn:r12382
2007-11-05 18:15:50 +00:00
Nick Mathewson
22c31d91ab
r16410@catbus: nickm | 2007-11-05 10:54:29 -0500
...
Code to remember client_random and server_random values, and to compute hmac using TLS master secret.
svn:r12381
2007-11-05 18:15:47 +00:00
Nick Mathewson
e94fad36ac
r16409@catbus: nickm | 2007-11-05 10:38:25 -0500
...
Split handshake state into its own structure. Revise versions and netinfo code to use this structure.
svn:r12380
2007-11-05 18:15:44 +00:00
Nick Mathewson
b4a50343d7
r16407@catbus: nickm | 2007-11-05 10:02:22 -0500
...
Add a log message when we start retrieving networkstatus
svn:r12378
2007-11-05 18:15:39 +00:00
Nick Mathewson
446c351393
r14702@tombo: nickm | 2007-11-04 15:48:56 -0500
...
Define SHARE_DATADIR, LOCALSTATEDIR, and BINDIR in Makefile.am as autoconf recommends. Do not move CONFDIR yet, since we seem to support overriding it in a weird way. Resolves bug 542.
svn:r12376
2007-11-04 20:49:02 +00:00
Roger Dingledine
735498cb27
add the other v3 dir bugfixes. my bridge is now working
...
again even when my datadir starts empty. phew.
svn:r12372
2007-11-04 02:36:09 +00:00