Nick Mathewson
57bf8bb263
remove now-irrelevant XXX020 comments in configure.ac
...
They apply to ancient GCC versions and to an unknown set of
configuration options. Notabug.
2016-05-30 15:31:19 -04:00
Nick Mathewson
55b5e0076f
Add another 22 or so GCC warnings. None currently triggers for me.
2016-05-28 17:09:31 -04:00
Nick Mathewson
1e5ad15688
Merge remote-tracking branch 'arma/task19035-fixedup'
2016-05-27 13:22:16 -04:00
Nick Mathewson
617b920551
Merge remote-tracking branch 'public/hardening_flags_must_link'
2016-05-27 12:52:39 -04:00
Roger Dingledine
1ce1214d68
get rid of one more piece of --enable-instrument-downloads
2016-05-27 12:32:02 -04:00
cypherpunks
c404905822
Fix indentation and quotation of the headers
2016-05-27 11:56:34 -04:00
cypherpunks
ab8f1a9e9b
Do not warn on missing headers
2016-05-27 11:56:30 -04:00
Nick Mathewson
ce1dbbc4fd
Enable the -Waggregate-return warning
...
Suppress it in the one spot in the code where we actually do want to
allow an aggregate return in order to call the mallinfo() API.
2016-05-27 11:26:14 -04:00
Roger Dingledine
11d52a449c
Disable GET /tor/bytes.txt and GETINFO dir-usage
...
Remove support for "GET /tor/bytes.txt" DirPort request, and
"GETINFO dir-usage" controller request, which were only available
via a compile-time option in Tor anyway.
Feature was added in 0.2.2.1-alpha. Resolves ticket 19035.
2016-05-27 11:15:21 -04:00
Nick Mathewson
a0dd836098
Merge remote-tracking branch 'public/ticket19044'
2016-05-27 10:39:34 -04:00
Nick Mathewson
f25806409d
Bump to 0.2.8.3-alpha-dev
2016-05-26 21:09:01 -04:00
Nick Mathewson
0a74346fe4
Bump to 0.2.8.3-alpha
2016-05-26 12:29:45 -04:00
Nick Mathewson
44ea3dc331
Merge branch 'maint-0.2.8'
2016-05-25 10:21:15 -04:00
Nick Mathewson
be3875cda2
Make sure that libscrypt_scrypt actually exists before using it.
...
Previously, if the header was present, we'd proceed even if the
function wasn't there.
Easy fix for bug 19161. A better fix would involve trying harder to
find libscrypt_scrypt.
2016-05-24 10:31:02 -04:00
Nick Mathewson
2fa7a3af4c
Make advisory-warnings on by default.
...
Add --enable-fatal-warnings to control -Werror.
Closes ticket 19044.
2016-05-23 14:39:56 -04:00
Nick Mathewson
60ac07940f
Fix "conditional "ADD_MULODI4" was never defined".
2016-05-19 16:38:24 -04:00
Nick Mathewson
ae7e2b9a7c
add missing atoi for cosmetic reasons
2016-05-19 16:01:25 -04:00
Nick Mathewson
6d6c8287d5
Include __mulodi4 in libor_ctime when it fixes clang -m32 -ftrapv
...
We use a pretty specific pair of autoconf tests here to make sure
that we only add this code when:
a) a 64-bit signed multiply fails to link,
AND
b) the same 64-bit signed multiply DOES link correctly when
__mulodi4 is defined.
Closes ticket 19079.
2016-05-18 09:50:38 -04:00
Nick Mathewson
d9080f5d3a
Check linking of hardening options, give better warnings if it fails.
...
Previously we'd only check whether the hardening options succeeded
at the compile step. Now we'll try to link with them too, and tell
the user in advance if something seems likely to go wrong.
Closes ticket 18895.
2016-05-16 09:37:27 -04:00
Nick Mathewson
9abd7b8f90
Windows lacks truncate(3).
...
Fix the new crypto tests, which used truncate(3).
2016-05-16 09:25:19 -04:00
Nick Mathewson
607a9056d4
Merge branch 'ftrapv_v3'
...
There were some conflicts here, and some breakage to fix concerning
library link order in newer targets.
2016-05-12 13:00:45 -04:00
Nick Mathewson
a3615a988e
Prefer builtin true.
2016-05-12 12:54:15 -04:00
Nick Mathewson
ce854a8d22
Add -ftrapv to gcc-hardening ... mostly!
...
We know there are overflows in curve25519-donna-c32, so we'll have
to have that one be fwrapv.
Only apply the asan, ubsan, and trapv options to the code that does
not need to run in constant time. Those options introduce branches
to the code they instrument.
(These introduced branches should never actually be taken, so it
might _still_ be constant time after all, but branch predictors are
complicated enough that I'm not really confident here. Let's aim for
safety.)
Closes 17983.
2016-05-12 11:21:28 -04:00
Nick Mathewson
e31980f693
Merge branch 'maint-0.2.8'
2016-05-11 12:23:40 -04:00
Nick Mathewson
50249c7cd9
Merge branch 'maint-0.2.7' into maint-0.2.8
2016-05-11 12:23:20 -04:00
Nick Mathewson
039fc8427a
Merge branch 'bug18841_1_025' into maint-0.2.7
2016-05-11 12:22:36 -04:00
Nick Mathewson
c662bef455
Undefine _FORTIFY_SOURCE before defining it.
...
This makes our compilation options checks in autoconf work better on
systems that already define _FORTIFY_SOURCE.
Fixes at least one case of bug 18841; bugfix on 0.2.3.17-beta. Patch
from "trudokal".
2016-05-11 12:15:37 -04:00
Nick Mathewson
3220bd816b
Merge branch 'maint-0.2.8'
2016-03-28 16:14:21 -04:00
Nick Mathewson
c8eb39d67f
Remove a couple of redundant lines from the makefile
...
Fixes the last case of 17744.
2016-03-28 16:11:25 -04:00
Nick Mathewson
447b1c6b1d
Begin an 0.2.9 branch
2016-03-28 15:54:59 -04:00
Nick Mathewson
a3f36bfd81
and NOW the version is 0.2.8.2-alpha-dev
2016-03-28 15:53:17 -04:00
Nick Mathewson
5b12642d09
Bump version correctly this time
2016-03-28 11:22:20 -04:00
Nick Mathewson
fc877b3c9e
Bump the version number
2016-03-28 09:32:14 -04:00
Nick Mathewson
049445bca3
Merge branch 'bug18626_027'
2016-03-25 16:28:33 -04:00
Nick Mathewson
db1352703c
Remove spurious exit() calls from configure.ac
...
We added these a while ago, but they do no actual good, and
cause implicit declaration warnings in some situations. Rather than
just adding stdint.h, it's easier to remove the exit() calls
as redundant.
Fixes bug 18626; bugfix from "cypherpunks"
2016-03-25 16:26:13 -04:00
cypherpunks
25fa21802f
Move Automake options to configure.ac
...
This will centralize the version configuration in one file to simplify
future changes.
Also fixes some typos in the Automake options comments.
2016-03-11 10:08:53 -05:00
Nick Mathewson
31c7a65d89
Document required autotools versions
...
CentOS 6 is roughly the oldest thing we care about developers still
using, and it has autoconf 2.63 / automake 1.11. These are both
older than openssl 1.0.0, so anybody who can't upgrade past those
probably can't upgrade to a modern openssl either. And since only
people building from git or editing configure.ac/Makefile.am need to
use autotools, I'm not totally enthused about keeping support for
old ones anyway.
Closes ticket 17732.
2016-02-23 11:08:04 -05:00
zerosion
44ea7af686
Quotes added on configure script's string comparison.
...
Solves #17744
The syntax has been generalized too, so there are only double quotes.
Signed-off-by: zerosion <zerosion@protonmail.ch>
2016-02-10 15:46:39 -05:00
Nick Mathewson
69c47ab5fd
Merge remote-tracking branch 'sebastian/bug18242'
2016-02-10 15:38:52 -05:00
Nick Mathewson
4dc8dc4b89
Merge remote-tracking branch 'public/bug18184'
2016-02-10 15:36:48 -05:00
Sebastian Hahn
55d6fd27cb
Fix the --disable-asserts-in-tests configure option
2016-02-05 14:40:07 +01:00
Nick Mathewson
6149703089
Bump to 0.2.8.1-alpha-dev
2016-02-04 18:24:20 -05:00
Nick Mathewson
af116081f9
Make the no-assertions-during-coverage check into a configure option
...
Closes ticket 18242.
The rationale here is that I like having coverage on by default in my
own working directory, but I always want assertions turned on unless
I'm doing branch coverage specifically.
2016-02-04 12:51:52 -05:00
Nick Mathewson
5da517e689
Bump version. (This is not yet the release.)
2016-02-04 10:07:06 -05:00
Nick Mathewson
5f7df92571
Remove support for unsigned time_t
...
We've never actually tested this support, and we should probably assume
it's broken.
To the best of my knowledge, only OpenVMS has this, and even on
OpenVMS it's a compile-time option to disable it. And I don't think
we build on openvms anyway. (Everybody else seems to be working
around the 2038 problem by using a 64-bit time_t, which won't expire
for roughly 292 billion years.)
Closes ticket 18184.
2016-01-29 09:18:59 -05:00
Nick Mathewson
1d6dd288e1
Try a little harder to only use SecureZeroMemory when it's present
...
We could be using AC_CHECK_FUNC_DECL too, but it shouldn't be needed.
2016-01-11 09:02:42 -05:00
Nick Mathewson
3783046f3b
Use memset_s or explicit_bzero when available.
2016-01-07 12:53:24 -08:00
Nick Mathewson
de8110fba2
Explicitly test our get/set_uint{8,16,32,64}.
2016-01-03 08:27:54 -08:00
Nick Mathewson
bc2cd0ff2b
Use timingsafe_memcmp() where available.
...
See ticket 17944; patch from "logan".
2015-12-29 09:43:01 -05:00
Nick Mathewson
ff3e90070f
Merge branch 'maint-0.2.7'
2015-12-22 20:38:33 -05:00
Nick Mathewson
d0c209c51d
Remove extraneous #endif in configure.ac
...
This will fix the detection of struct in6_addr.s6_addr32 and others
Found and fixed by cypherpunks; bug 17923; bugfix on f948caad7b
2015-12-22 20:37:02 -05:00
Nick Mathewson
3317cd3a1f
Merge branch 'maint-0.2.7'
2015-12-16 09:24:40 -05:00
Nick Mathewson
33b5bfb948
Don't call pthread_condattr_setclock() unless it exists
...
Fixes bug 17819; bugfix on 0.2.6.3-alpha (specifically, d684dbb0
).
2015-12-16 09:23:44 -05:00
Nick Mathewson
aba39ea390
Merge branch 'feature8195_small_squashed'
2015-12-15 13:11:06 -05:00
Nick Mathewson
e8cc839e41
Add ability to keep the CAP_NET_BIND_SERVICE capability on Linux
...
This feature allows us to bind low ports when starting as root and
switching UIDs.
Based on code by David Goulet.
Implement feature 8195
2015-12-15 13:10:57 -05:00
Nick Mathewson
aa40f28962
bump to 0.2.7.6-dev
2015-12-10 14:24:55 -05:00
Nick Mathewson
7fb19f1ca8
bump maint version to 0.2.7.6
2015-12-10 10:04:59 -05:00
Nick Mathewson
13fee1baf7
Try to fix windows build more.
...
patch from rubiate on #16651
2015-12-09 11:38:41 -05:00
Nick Mathewson
2a965b7537
Try to fix windows build
...
patch from rubiate on #16651
2015-12-09 08:59:01 -05:00
Yawning Angel
353c71516e
Add support for getrandom() and getentropy() when available
...
Implements feature #13696 .
2015-12-08 12:34:53 -05:00
cypherpunks
4e3e526493
Quote variables in case they contain spaces
2015-11-26 09:30:50 -05:00
Nick Mathewson
5dff4ae0ad
Attempt to make openbsd compilation happier with libevent2 installed
...
Fix for bug 16651; patch from "rubiate".
2015-11-25 09:43:12 -05:00
Nick Mathewson
62aad9c0b6
Merge branch 'maint-0.2.7'
2015-11-25 09:28:44 -05:00
Nick Mathewson
232ccc18c4
Include netinet/in.h (if detected) in check for net/pfvar.h
...
Patch from rubiate; fixes bug 17551.
2015-11-25 09:27:52 -05:00
Nick Mathewson
18ee193ad1
bump version to 0.2.7-dev
2015-11-20 10:27:35 -05:00
Nick Mathewson
741d2dc685
Bump to 0.2.7.5
2015-11-13 08:41:30 -05:00
Nick Mathewson
8378a3310a
Bump version to 0.2.7.4-rc
2015-10-19 11:19:51 -04:00
Nick Mathewson
0d43a54d1c
Remove comment about a workaround for libevent versions we no longer work around. Fixes 16647
2015-09-30 09:29:33 -04:00
Nick Mathewson
3d8a045bd6
Merge remote-tracking branch 'origin/maint-0.2.7'
2015-09-29 10:12:05 +02:00
Marcin Cieślak
00e15ba477
FreeBSD needs -lexecinfo to get backtrace()
2015-09-29 10:04:30 +02:00
Nick Mathewson
551dba3290
Bump master to 0.2.8.0-alpha-dev
2015-09-25 09:27:39 -04:00
Nick Mathewson
4ce9b8f1ec
Bump to 0.2.7.3-rc-dev
2015-09-25 09:26:35 -04:00
Nick Mathewson
eb2188168e
Stop trying to generate test scripts via autoconf substitution.
...
Use environment variables instead. This repairs 'make distcheck',
which was running into trouble when it tried to chmod the generated
scripts.
Fixes 17148.
2015-09-24 15:07:39 -04:00
Nick Mathewson
744f8c8277
Increment version.
2015-09-24 12:19:33 -04:00
Sebastian Hahn
ae98dd255b
Check that openssl has ECC support during configure
...
This allows builds on machines with a crippled openssl to fail early
during configure. Bugfix on 0.2.7.1-alpha, which introduced the
requirement for ECC support. Fixes bug 17109.
2015-09-22 08:36:28 -04:00
teor (Tim Wilson-Brown)
c6383bf90b
Use : rather than /bin/true in configure.ac
...
Some platforms have true at different locations, like /usr/bin/true.
2015-09-10 17:33:59 +10:00
Nick Mathewson
b63034ce3e
Try to fix #16974 ; bug not in any released version
2015-09-03 14:42:50 -04:00
Nick Mathewson
b79e90f6ba
Fail in configure when openssl is too old. #16901 .
2015-09-01 09:02:12 -04:00
Nick Mathewson
50049df0d4
Add a compat function to check how much disk space is free.
...
Closes ticket 16734.
2015-08-05 14:01:49 -04:00
Nick Mathewson
9e07dfa34b
Merge remote-tracking branch 'public/bug13338'
2015-08-04 14:00:58 -04:00
Nick Mathewson
cedc651deb
Bump version to 0.2.7.2-alpha-dev
2015-07-27 13:59:49 -04:00
Nick Mathewson
a8accd55f2
Bump version (and explain how)
2015-07-23 13:48:13 -04:00
Nick Mathewson
d2cb923320
Remove tor-fw-helper code
...
It did a good idea, but the code-quality of libupnpc and libnatpnp
is so dodgy that I'm not really comfortable including them alongside
Tor proper. Instead, we'll recommend that people do the pure-go
reimplementation instead. Closes ticket 13338.
2015-07-14 14:48:22 -04:00
Nick Mathewson
db88d91ebe
Nth time is maybe the charm for fixing windows readpassword build errors
2015-07-12 14:34:11 -04:00
Nick Mathewson
d18215ed16
Try one more one more time to get tor-ci-windows working
...
Apparently its mingw headers are missing some stuff.
2015-07-10 09:59:29 -04:00
Nick Mathewson
0ca98c1ee5
Merge branch 'libscrypt_eq_openssl_squashed'
2015-07-09 16:31:42 -04:00
Nick Mathewson
4438b2a0e3
More windows header stuff. Will it work this time?
2015-07-09 14:58:16 -04:00
Nick Mathewson
f19a75e19b
Fix dumb windows compilation bug in d9052c62
2015-07-09 13:36:27 -04:00
rl1987
b74947d070
Check if OpenSSL includes scrypt.
2015-07-06 21:31:01 +03:00
Nick Mathewson
d9052c629b
Remove checks for visual C 6.
2015-06-29 12:55:03 -04:00
Nick Mathewson
b9b658e727
Add the openssh 6.8p1 readpassphrase implementation
...
This way glibc users don't have to fall back to getpass.
Windows users are still out of luck
2015-06-17 10:41:22 -04:00
Nick Mathewson
d68133c745
Merge branch '13642_offline_master_v2_squashed'
2015-06-17 10:12:37 -04:00
Nick Mathewson
cbdf2c5d8f
Add a tor_getpass to read passphrases. Needs better backend.
2015-06-17 10:11:18 -04:00
Nick Mathewson
e48f8e5e87
Merge remote-tracking branch 'public/bug15760_hard_026_v2'
2015-06-02 15:08:14 -04:00
Yawning Angel
8024f6a75f
A few more minor OpenSSL 1.1 fixes.
...
* Use `TLS_method()` instead of the deprecated `SSLv23_method()`
* Fix one missed conversion to `SSL_CIPHER_get_id()`
2015-06-02 15:04:20 -04:00
Nick Mathewson
0030765e04
Merge remote-tracking branch 'public/bug15760_hard_026_v2'
...
Conflicts:
src/common/tortls.c
2015-06-02 13:45:27 -04:00
Nick Mathewson
ff835e2328
Use autoconf, not OPENSSL_VERSION_NUMBER, to detect SSL_CIPHER_find
...
Repairs build with libressl
2015-06-02 13:38:27 -04:00
Nick Mathewson
9537596398
Stop looking at session->ciphers when possible
...
If the OpenSSL team accepts my patch to add an
SSL_get_client_ciphers function, this patch will make Tor use it
when available, thereby working better with openssl 1.1.
2015-05-26 11:05:36 -04:00
Nick Mathewson
115dd554c5
Merge remote-tracking branch 'origin/maint-0.2.6'
2015-05-26 09:41:30 -04:00
Nick Mathewson
08e8c21b1f
Fix --enable-systemd builds on systems with libsystemd but not systemd
...
Fixes bug 16164; bugfix on 0.2.6.3-alpha. Patch from Peter Palfrader.
2015-05-26 09:39:53 -04:00