Obviously correct changes to already-reviewed code.

For example, "TOR_SKIP_TESTCASES=crypto/.. ./src/test/test" will run
the tests and suppress all the "crypto/" tests.  You could get the
same effect by running "./src/test/test :crypto/..", but that can be
harder to arrange from CI.

Part of a fix/workaround for 33643.

And consistently talk about extra-info document publishing.

Obviously correct documentation changes.

Obviously correct changes to already-reviewed code.

"ours" to avoid version bump.

"ours" to avoid version bump.

"ours" to avoid version bump.

George Kadianakis authored Feb 11, 2020 and Nick Mathewson committed Mar 17, 2020

This unittest currently fails on purpose (to demonstrate the bug) but it will
stop failing after the next commit (the bugfix).

George Kadianakis authored Feb 11, 2020 and Nick Mathewson committed Mar 17, 2020

Given that ed25519 public key validity checks are usually not needed
and (so far) they are only necessary for onion addesses in the Tor
protocol, we decided to fix this specific bug instance without
modifying the rest of the codebase (see below for other fix
approaches).

In our minimal fix we check that the pubkey in
hs_service_add_ephemeral() is valid and error out otherwise.

In the openssl that I have, it should be safe to only check the size
of n.  But if I'm wrong, or if other openssls work differently, we
should check whether any of the fields are too large.

Issue spotted by Teor.

Closes #33623
Signed-off-by: David Goulet <dgoulet@torproject.org>

This function does a nonfatal assertion to make sure that a machine
is not registered twice, but Tobias Pulls found a case where it
happens.  Instead, make the function exit early so that it doesn't
cause a remotely triggered memory leak.

Fixes bug 33619; bugfix on 0.4.0.1-alpha.  This is also tracked as
TROVE-2020-004.