nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-09-21 05:26:20 +02:00
Code Issues Packages Projects Releases Wiki Activity
mirror repository of the tor core protocol in case of issues
29,443 Commits 53 Branches 629 Tags 108 MiB
C 94.4%
Python 1.5%
C++ 1.1%
Shell 1.1%
M4 0.9%
Other 0.8%
a628e36024
Go to file
Tobias Stoeckmann a628e36024 Check return value of buf_move_to_buf for error. 
If the concatenation of connection buffer and the buffer of linked
connection exceeds INT_MAX bytes, then buf_move_to_buf returns -1 as an
error value.

This value is currently casted to size_t (variable n_read) and will
erroneously lead to an increasement of variable "max_to_read".

This in turn can be used to call connection_buf_read_from_socket to
store more data inside the buffer than expected and clogging the
connection buffer.

If the linked connection buffer was able to overflow INT_MAX, the call
of buf_move_to_buf would have previously internally triggered an integer
overflow, corrupting the state of the connection buffer.

Signed-off-by: Tobias Stoeckmann <tobias@stoeckmann.org>
2019-04-09 12:05:22 -04:00
changes Merge branch 'maint-0.2.9' into maint-0.3.4 2019-04-06 09:33:11 +10:00
contrib Bump to 0.3.4.11-dev 2019-02-21 13:23:46 -05:00
doc Merge branch 'maint-0.3.3' into maint-0.3.4 2018-11-15 16:47:25 -05:00
m4 Replace obsolete macros with modern equivalents 2016-12-23 10:34:11 -05:00
scripts Appveyor CI: always use HEAD for the short commit 2018-08-24 10:11:24 +10:00
src Check return value of buf_move_to_buf for error. 2019-04-09 12:05:22 -04:00
.appveyor.yml Explicitly specify path to OpenSSL for Appveyor. 2018-11-27 14:53:50 +01:00
.editorconfig Add .editorconfig to follow coding standards style 2018-06-17 19:24:40 -04:00
.gitignore Use a rust build script to set linker options correctly for tests. 2018-06-19 12:01:13 -04:00
.gitlab-ci.yml Fix spelling mistakes corresponding to ticket #23650 2018-02-07 10:41:57 -05:00
.gitmodules Update the .gitmodules to refer to project-level tor-rust-dependencies 2018-02-21 11:53:04 -05:00
.travis.yml Travis: merge before_cache from 29036 and 29962 2019-04-01 14:08:34 +10:00
acinclude.m4 Run the copyright update script. 2017-03-15 16:13:17 -04:00
autogen.sh Report errors when updating configuration files 2016-12-23 10:35:26 -05:00
ChangeLog copy 0.3.3.7 changelog forward to master 2018-06-12 12:06:26 -04:00
config.rust.in Use a rust build script to set linker options correctly for tests. 2018-06-19 12:01:13 -04:00
configure.ac Bump to 0.3.4.11-dev 2019-02-21 13:23:46 -05:00
CONTRIBUTING improve a URL 2018-05-11 18:00:30 -04:00
Doxyfile.in doxygen says these options are obsolete 2016-10-24 10:31:05 -04:00
INSTALL Small fixes for the 2702 implementation 2011-04-02 12:15:08 +02:00
LICENSE Run the copyright update script. 2017-03-15 16:13:17 -04:00
link_rust.sh.in Allow spaces in CCLD in linker.sh 2018-06-20 19:17:29 -04:00
Makefile.am Merge branch 'bug29036-029' into bug29036-29962-034 2019-04-05 12:58:16 +10:00
Makefile.nmake Clean up the MVSC nmake files so they work again. 2014-09-09 10:27:05 -04:00
README doc: Put the release timeline link in README 2017-11-08 10:44:00 -05:00
ReleaseNotes copy 0.3.3.7 changelog forward to master 2018-06-12 12:06:26 -04:00

README 

Tor protects your privacy on the internet by hiding the connection
between your Internet address and the services you use. We believe Tor
is reasonably secure, but please ensure you read the instructions and
configure it properly.

To build Tor from source:
        ./configure && make && make install

To build Tor from a just-cloned git repository:
        sh autogen.sh && ./configure && make && make install

Home page:
        https://www.torproject.org/

Download new versions:
        https://www.torproject.org/download/download.html

Documentation, including links to installation and setup instructions:
        https://www.torproject.org/docs/documentation.html

Making applications work with Tor:
        https://wiki.torproject.org/projects/tor/wiki/doc/TorifyHOWTO

Frequently Asked Questions:
        https://www.torproject.org/docs/faq.html


To get started working on Tor development:
        See the doc/HACKING directory.

Release timeline:
         https://trac.torproject.org/projects/tor/wiki/org/teams/NetworkTeam/CoreTorReleases