Nick Mathewson
bbaf4d9643
Configure SSL context to know about using P-256 for ECDHE.
2012-12-25 20:14:03 -05:00
Roger Dingledine
747d284088
bump to 0.2.4.7-alpha-dev
2012-12-25 02:52:53 -05:00
Roger Dingledine
e46e1ed1bc
add a blurb for 0.2.4.7-alpha too
2012-12-24 04:19:18 -05:00
Roger Dingledine
d3c2254fda
bump to 0.2.4.7-alpha
2012-12-24 04:04:04 -05:00
Roger Dingledine
a1e2232ed1
fold in changes files so far
2012-12-24 04:01:44 -05:00
Nick Mathewson
8b5787ec0d
When there are no dir_server_ts to choose, don't crash
...
It's important not to call choose_array_element_by_weight and then
pass its return value unchecked to smartlist_get : it is allowed to
return -1.
Fixes bug 7756; bugfix on 4e3d07a6
(not in any released Tor)
2012-12-18 21:32:53 -05:00
Nick Mathewson
7a99d26c79
Add packaged cell fullness to the heartbeat message.
...
This is an attempt to diagnose the severity of bug 7743.
2012-12-18 15:16:35 -05:00
Nick Mathewson
a60680c226
Remove the obsolete doc/TODO.* files
...
Closes bug #7730 .
2012-12-17 22:26:05 -05:00
Nick Mathewson
9b9cc6774f
Merge branch 'ticket7570_7571'
...
Conflicts:
src/or/routerlist.c
2012-12-17 15:49:09 -05:00
Nick Mathewson
4a07ea4a8c
Drop the maximum attempts to get a virtual address to 1000.
...
This is good enough to give P_success >= 999,999,999/1,000,000,000 so
long as the address space is less than 97.95 full. It'd be ridiculous
for that to happen for IPv6, and usome reasonable assumptions, it
would also be pretty silly for IPv4.
2012-12-17 14:51:31 -05:00
Nick Mathewson
40a9842090
Describe IPv6 automap changes
2012-12-17 14:51:31 -05:00
Nick Mathewson
c1226cf4f9
Document PreferIPv6Automap in the manpage
2012-12-17 14:51:31 -05:00
Nick Mathewson
4ded40b0ca
Add missing doxygen for DNS and automap code
2012-12-17 14:51:31 -05:00
Nick Mathewson
8d080d0b01
Per-listener option to prefer IPv6 automaps when possible.
2012-12-17 14:51:30 -05:00
Nick Mathewson
de4cc126cb
Build and test most of the machinery needed for IPv6 virtualaddrmaps
...
With an IPv6 virtual address map, we can basically hand out a new
IPv6 address for _every_ address we connect to. That'll be cool, and
will let us maybe get around prop205 issues.
This uses some fancy logic to try to make the code paths in the ipv4
and the ipv6 case as close as possible, and moves to randomly
generated addresses so we don't need to maintain those stupid counters
that will collide if Tor restarts but apps don't.
Also has some XXXX items to fix to make this useful. More design
needed.
2012-12-17 14:51:29 -05:00
Nick Mathewson
963b3d1549
Refactor the code to check if an address is matched by automapsuffixes
2012-12-17 14:50:55 -05:00
Nick Mathewson
88d7312ff2
Fix another uninitialized var warning from GCC
2012-12-17 14:50:05 -05:00
Nick Mathewson
8969d9e0b6
Fixed an unused-variable warning
2012-12-17 14:50:05 -05:00
Nick Mathewson
8eb422e7bd
Don't use the cache when changing an IP address because of an exit policy
2012-12-17 14:50:05 -05:00
Nick Mathewson
593b235cc9
changes entry for disabling cache usage by default
2012-12-17 14:50:05 -05:00
Nick Mathewson
ac990aa44a
Turn off by-default use of client-side DNS cacheing.
2012-12-17 14:50:04 -05:00
Nick Mathewson
7315a67646
Refactor port_cfg_t creation into a port_cfg_new() function
...
This function gives us a single place to set reasonable default flags
for port_cfg_t entries, to avoid bugs like the one where we weren't
setting ipv4_traffic_ok to 1 on SocksPorts initialized in an older
way.
2012-12-17 14:50:03 -05:00
Nick Mathewson
522e90d661
Changes file for new DNS caching options
2012-12-17 14:49:38 -05:00
Nick Mathewson
bde6f2daba
Add documentation for the client-side DNS cache options
2012-12-17 14:49:32 -05:00
Nick Mathewson
7536c40e96
Implement option to turn off DNS cache modification by a client port
...
(This is part 3 of making DNS cache use enabled/disabled on a
per-client port basis. This implements the UseCacheIPv[46]DNS options)
2012-12-17 14:48:09 -05:00
Nick Mathewson
f33487668f
Implement option to turn off DNS cache use on a client port
...
(This is part 2 of making DNS cache use enabled/disabled on a
per-client port basis. This implements the CacheIPv[46]DNS options,
but not the UseCachedIPv[46] ones.)
2012-12-17 14:48:09 -05:00
Nick Mathewson
32219d8313
Oops: make the check for not adding ip->ip DNS maps correct
2012-12-17 14:48:09 -05:00
Nick Mathewson
d3e9e03cac
Add options to turn DNS cache use on or off per client port.
...
(This is part 1 of making DNS cache use enabled/disabled on a
per-client port basis. These options are shuffled around correctly,
but don't do anything yet.)
2012-12-17 14:48:08 -05:00
Nick Mathewson
44a9a47706
Oops; make DNSPort configuration take address family options
2012-12-17 14:48:08 -05:00
Nick Mathewson
3874e74b49
Avoid a 'may be used uninitialized' warning
...
Fixes bug 7746; bug not in any released version of Tor.
2012-12-17 11:14:12 -05:00
Nick Mathewson
b1ff8daeb5
Nuke uses of memcmp outside of unit tests
...
We want to be saying fast_mem{cmp,eq,neq} when we're doing a
comparison that's allowed to exit early, or tor_mem{cmp,eq,neq} when
we need a data-invariant timing. Direct use of memcmp tends to imply
that we haven't thought about the issue.
2012-12-13 17:34:05 -05:00
Nick Mathewson
579808d4cd
Merge remote-tracking branch 'origin/maint-0.2.3'
...
Conflicts:
src/config/geoip
2012-12-13 12:52:44 -05:00
Nick Mathewson
52bf1556b1
Merge remote-tracking branch 'origin/maint-0.2.2' into maint-0.2.3
2012-12-13 12:51:28 -05:00
Nick Mathewson
cfa07f397d
Note that fallback_dirsource was proposal 206, bug 572.
2012-12-13 12:47:46 -05:00
Nick Mathewson
6a468a1722
Fix two wide lines in config.c
2012-12-13 12:44:17 -05:00
Nick Mathewson
01ac961ca1
Merge branch 'fallback_dirsource_v3'
2012-12-13 12:42:29 -05:00
Karsten Loesing
6bdfa295b5
Add link explaining how the geoip file was created.
2012-12-13 08:45:25 +01:00
Karsten Loesing
c9a5d613a6
Update to the December 2012 GeoIP database.
2012-12-13 08:44:30 +01:00
Karsten Loesing
d2cfd52d2c
Update to the November 2012 GeoIP database.
2012-12-13 08:44:20 +01:00
Nick Mathewson
21b5d76aa5
Mention that dist-geoip6 was bug 7655
2012-12-11 18:11:49 -05:00
Nick Mathewson
c8056dcbbb
Fix some wide lines
2012-12-07 14:14:20 -05:00
Nick Mathewson
3fa9151f26
Merge branch 'win64-7260'
...
Conflicts:
src/or/dns.c
2012-12-07 14:12:17 -05:00
Nick Mathewson
cd4f56a37c
Fix infinite loop in circuit_expire_bulding
...
Fixes bug 7663; bug introduced in 42e3c04a7a
. Not in any
released version of Tor.
2012-12-07 14:08:07 -05:00
Nick Mathewson
504d4aa8c6
Expand the manpage to say: watch out for nonlocal socks
...
This clears up the remaining issue stopping me from closing bug 6297.
2012-12-07 12:42:55 -05:00
Nick Mathewson
f366b0112e
Merge remote-tracking branch 'karsten/task-6266'
2012-12-07 11:39:56 -05:00
Nick Mathewson
81fcebcd05
Merge branch 'bug7306'
2012-12-07 11:11:26 -05:00
Nick Mathewson
025dc19b63
Merge remote-tracking branch 'public/bug6887'
2012-12-07 11:02:27 -05:00
Nick Mathewson
f4f7e7a6f8
Merge branch 'bug3443_squashed'
2012-12-07 10:35:41 -05:00
Mike Perry
42e3c04a7a
Bug 3443: Don't count ORconn setup in circuit build time.
...
Also, add a hack Roger suggested where we're more patient if no circuits are
opened yet.
2012-12-07 10:34:09 -05:00
Nick Mathewson
f742b33d85
Drop FallbackNetworkstatusFile; it never worked.
2012-12-06 11:28:49 -05:00