- 26 Aug, 2020 3 commits
-
-
Alexander Færøy authored
-
Alexander Færøy authored
-
David Goulet authored
-
- 25 Aug, 2020 10 commits
-
-
George Kadianakis authored
-
David Goulet authored
Signed-off-by:
David Goulet <dgoulet@torproject.org>
-
Neel Chauhan authored
-
Nick Mathewson authored
Previously, we would treat *any* incoming circuit on a non-local channel as meaning that our ORPort was reachable. With this patch, we make sure that the address that the peer _says_ we have is the same as the one we're trying to advertise right now. Closes 20165. Bugfix on 4f5192b2 in 0.1.0.1-rc, when reachability self-tests were first introduced.
-
George Kadianakis authored
-
David Goulet authored
-
George Kadianakis authored
Fixes #40105.
-
George Kadianakis authored
-
George Kadianakis authored
-
George Kadianakis authored
-
- 23 Aug, 2020 1 commit
-
-
Neel Chauhan authored
-
- 20 Aug, 2020 2 commits
-
-
George Kadianakis authored
-
Neel Chauhan authored
-
- 19 Aug, 2020 4 commits
-
-
David Goulet authored
Turns out that the HS DoS defenses parameters were overwritten by the consensus parameters everytime a new consensus would arrive. This means that a service operator can still enable the defenses but as soon as the intro point relay would get a new consensus, they would be overwritten. And at this commit, the network is entirely disabling DoS defenses. Fix this by introducing an "explicit" flag that indicate if the ESTABLISH_INTRO cell DoS extension set those parameters or not. If set, avoid using the consenus at once. We are not bumping the protover HSIntro value for this because 0.4.2.x series is EOL in 1 month and thus 0.4.3.x would be the only series with this bug. We are confident that a backport and then upgrade path to the latest 0.4.4.x stable coming up soon is enough to mitigate this problem in the coming months. It avoids the upgrade path on the service side by keeping the requirement for protover HSIntro=5. Fixes #40109 Signed-off-by:
David Goulet <dgoulet@torproject.org>
-
George Kadianakis authored
-
George Kadianakis authored
-
Nick Mathewson authored
First, we introduce a flag to teach src/test/test to split its work into chunks. Then we replace our invocation of src/test/test in our "make check" target with a set of 8 scripts that invoke the first 8th of the tests, the second 8th, and so on. This change makes our "make -kj4 check" target in our hardened gitlab build more than twice as fast, since src/test/test was taking the longest to finish. Closes 40098.
-
- 18 Aug, 2020 3 commits
-
-
David Goulet authored
-
David Goulet authored
-
David Goulet authored
-
- 14 Aug, 2020 2 commits
-
-
Jigsaw52 authored
Split implementation of several command line options from options_init_from_torrc into smaller isolated functions.
-
Nick Mathewson authored
Closes #40101.
-
- 13 Aug, 2020 15 commits
-
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
"ours" to avoid version bump.
-
Nick Mathewson authored
-
Nick Mathewson authored
Previously the test relied on not being able to look inside 000 directories, which is a thing root _can_ do. Bug not in any released Tor version.
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-
Nick Mathewson authored
-