Commit Graph

9294 Commits

Author SHA1 Message Date
Roger Dingledine
d2a04d7e06 a new style file. and blow away a section that turned out to be dumb.
svn:r13223
2008-01-22 05:50:58 +00:00
Nick Mathewson
8505ee8310 r17723@catbus: nickm | 2008-01-22 00:14:57 -0500
Make idea proposal into proposal 130; answer question by sjmurdoch; mark 124 superseded; reindex


svn:r13222
2008-01-22 05:15:05 +00:00
Roger Dingledine
291c628c28 put the fallback-consensus file back into the tarball.
this should re-introduce bug 572, and maybe we'll get
some actual bug reports this time.


svn:r13221
2008-01-21 23:29:04 +00:00
Roger Dingledine
a9aa8917fc a changelog entry for r13218
svn:r13220
2008-01-21 22:42:16 +00:00
Roger Dingledine
750ed3d015 We accidentally enabled the under-development v2 TLS handshake
code, which is causing log entries like "TLS error while
renegotiating handshake". Disable it again. Resolves bug 590.


svn:r13219
2008-01-21 22:33:01 +00:00
Nick Mathewson
ddb753f87a r17717@catbus: nickm | 2008-01-21 17:09:23 -0500
Fix certificate leak.


svn:r13218
2008-01-21 22:09:42 +00:00
Roger Dingledine
a49f14d0d4 When we setconf ClientOnly to 1, close any current OR and Dir
listeners. Reported by mwenge.


svn:r13214
2008-01-21 21:21:19 +00:00
Roger Dingledine
b79850d574 Make "ClientOnly 1" config option disable directory ports too.
svn:r13213
2008-01-21 21:00:50 +00:00
Roger Dingledine
e7853ba3eb typo
svn:r13212
2008-01-21 20:59:51 +00:00
Roger Dingledine
e42a6794dc condense the rest of the discussion into proposal 129
svn:r13211
2008-01-21 17:36:47 +00:00
Roger Dingledine
10ed49643e proposal from Kevin Bauer & Damon McCoy to reject vulnerable-plaintext
ports (reformatted by me)


svn:r13210
2008-01-21 16:57:12 +00:00
Peter Palfrader
a4a802d31f Create logfiles in logrotate so that they come into the world with the correct
mode (o-r).


svn:r13209
2008-01-21 15:03:33 +00:00
Peter Palfrader
17d711e258 postinst: if we reboot between unpacking and configuring on some smart systems
this will mean that we just lost /var/run/tor - creating it in the maintainer
script if it doesn't exist.


svn:r13208
2008-01-21 15:00:34 +00:00
Peter Palfrader
d98d1ea0d9 postinst: We were only fixing the permissions of /var/{lib,run,log}/tor when we
were not upgrading.  Unfortunately the check doesn't work all that well usually
in cases where the package was removed (not purged) and then later re-installed
again.  Now we ensure proper ownership and modes for all the directories and
files below /var/{lib,run,log}/tor (the dirs themselves included) every time we
run postinst.


svn:r13207
2008-01-21 14:58:20 +00:00
Peter Palfrader
3d3dbe90ab Change wording if debian-tor's homedir is wrong, do not print anything if it is ok.
Whitespace nazi found out about debian/tor.postinst.

svn:r13206
2008-01-21 14:46:49 +00:00
Peter Palfrader
aa4f86dafa postinst: Remove the check that requires the debian-tor user to have a uid
between 100 and 999.  There is no good reason to require this.  If the local
admin moves the system users/uid-space to some other range then they probably
have a good reason for that.


svn:r13205
2008-01-21 14:44:56 +00:00
Roger Dingledine
ff62154ba3 New config options WarnPlaintextPorts and RejectPlaintextPorts so
Tor can warn and/or refuse connections to ports commonly used with
vulnerable-plaintext protocols.

We still need to figure out some good defaults for them.


svn:r13198
2008-01-20 05:54:15 +00:00
Roger Dingledine
a1f2817307 minor cleanups
svn:r13190
2008-01-19 20:00:53 +00:00
Roger Dingledine
250590b9e7 and add blurbs for 0.2.0.1[67]-alpha
svn:r13189
2008-01-19 18:05:19 +00:00
Roger Dingledine
1ee96aa48c and forward-port those
svn:r13188
2008-01-19 17:58:09 +00:00
Roger Dingledine
7dde7b02a2 try to grow a convention about where we put the time_to_foo and
FOO_INTERVAL declarations.


svn:r13177
2008-01-18 05:00:35 +00:00
Roger Dingledine
43dce232ad If we've gone 12 hours since our last bandwidth check, and we
estimate we have less than 50KB bandwidth capacity but we could
handle more, do another bandwidth test.


svn:r13176
2008-01-18 04:58:40 +00:00
Roger Dingledine
3d3663a123 Don't answer "/tor/networkstatus-bridges" directory requests if
the request isn't encrypted.


svn:r13175
2008-01-18 04:51:12 +00:00
Roger Dingledine
6228213647 minor typo
svn:r13174
2008-01-18 04:50:15 +00:00
Roger Dingledine
4682e5f924 when we're counting how many descriptors to not download, be a
little bit more accurate


svn:r13173
2008-01-18 04:47:03 +00:00
Roger Dingledine
06047bcec9 Avoid going directly to the directory authorities even if you're a
relay, if you haven't found yourself reachable yet or if you've
decided not to advertise your dirport yet. Addresses bug 556.


svn:r13172
2008-01-18 04:42:22 +00:00
Roger Dingledine
200ce2030c bump to 0.2.0.17-alpha-dev
svn:r13171
2008-01-18 04:27:16 +00:00
Peter Palfrader
272428727e New upstream version
svn:r13168
2008-01-17 21:15:07 +00:00
Peter Palfrader
92e4cfdeb4 Merge in 0.1.2.1[89]-1 changelog
svn:r13166
2008-01-17 20:36:29 +00:00
Roger Dingledine
b4b3472b9f Make the tor-gencert man page get included correctly in the tarball.
svn:r13163
2008-01-17 20:32:37 +00:00
Roger Dingledine
60a3df5a09 bump to 0.2.0.16-alpha
svn:r13160
2008-01-17 19:56:33 +00:00
Roger Dingledine
fe2f9a29f8 muck with the 0.2.0.16-alpha some more
svn:r13159
2008-01-17 19:56:21 +00:00
Roger Dingledine
8e601e0ae5 explain a bit about router descriptor purposes
svn:r13154
2008-01-17 05:47:44 +00:00
Roger Dingledine
55e052b0a5 Assert error introduced in r11957:
Fix an assert if we post a general-purpose descriptor via the
control port but that descriptor isn't mentioned in our current
network consensus. Bug reported by Jon McLachlan; bugfix on
0.2.0.9-alpha.


svn:r13153
2008-01-17 05:25:21 +00:00
Nick Mathewson
4a3b7496f0 r17639@catbus: nickm | 2008-01-15 19:09:21 -0500
Fix some hard to trigger but nonetheless real memory leaks spotted by an anonymous contributor.  Needs review.  Partial backport candidate.


svn:r13147
2008-01-16 05:27:19 +00:00
Nick Mathewson
24aae484c9 r17624@catbus: nickm | 2008-01-15 00:42:01 -0500
Fixes to more anonymously-reported typos and logic errors.


svn:r13136
2008-01-15 05:57:19 +00:00
Nick Mathewson
a984011814 r17623@catbus: nickm | 2008-01-15 00:22:04 -0500
bulletproof option_get_canonical_name()


svn:r13135
2008-01-15 05:57:14 +00:00
Nick Mathewson
89dfec02d8 r17614@catbus: nickm | 2008-01-14 13:55:25 -0500
Add a missing "goto err" when parsing v2 ns docs


svn:r13133
2008-01-14 19:00:33 +00:00
Nick Mathewson
d7fb8a34ac r17613@catbus: nickm | 2008-01-14 13:52:44 -0500
Do not segfault if symetric key generation somehow fails in crypto_hybrid_encrypt.


svn:r13132
2008-01-14 19:00:28 +00:00
Nick Mathewson
581ba51c5c r17612@catbus: nickm | 2008-01-14 13:46:04 -0500
Oops; fix compile


svn:r13131
2008-01-14 19:00:26 +00:00
Nick Mathewson
3b8f76aa51 r17611@catbus: nickm | 2008-01-14 13:44:16 -0500
add some missing checks for failing return values.


svn:r13130
2008-01-14 19:00:23 +00:00
Nick Mathewson
e49229caf8 r17610@catbus: nickm | 2008-01-14 13:20:49 -0500
Fix a bogus free() call on a base64 failure in router_append_dirobj_signature().


svn:r13129
2008-01-14 19:00:19 +00:00
Nick Mathewson
e1c9775517 r17584@catbus: nickm | 2008-01-12 18:52:01 -0500
Fix output of "tor-gencert --help"


svn:r13128
2008-01-14 19:00:13 +00:00
Peter Palfrader
af78168413 Fix error induced by timezone offset
svn:r13124
2008-01-13 00:26:44 +00:00
Peter Palfrader
388b2f6221 And fix the exit code for OK
svn:r13123
2008-01-13 00:21:08 +00:00
Nick Mathewson
edf5e70784 r15891@tombo: nickm | 2008-01-12 19:20:24 -0500
Basic hacks to get TLS handshakes working: remove dead code; fix post-handshake logic; keep servers from writing while the client is supposed to be renegotiating.  This may work.  Needs testing.


svn:r13122
2008-01-13 00:20:47 +00:00
Nick Mathewson
ae6df065ed r15890@tombo: nickm | 2008-01-12 17:19:51 -0500
Add a --disable-buffer-freelists configure argument to build without buffer RAM chunk freelists, so we can benchmark the impact of this.


svn:r13121
2008-01-13 00:20:44 +00:00
Nick Mathewson
1b4ef78f6a r15889@tombo: nickm | 2008-01-12 17:18:29 -0500
Stop trying to mess with version in tor-mingw.nsi.in when we reconfigure. This is a relic of our pre-mingw days, when we didn't use autoconf on windows.


svn:r13120
2008-01-13 00:20:41 +00:00
Peter Palfrader
1a07250730 nagios-check-tor-authority-cert - check certificate expiry time
svn:r13119
2008-01-13 00:15:08 +00:00
Nick Mathewson
cbf26037cb r17584@catbus: nickm | 2008-01-12 18:52:01 -0500
Fix output of "tor-gencert --help"


svn:r13118
2008-01-12 23:52:05 +00:00