rebuild the descriptor.
- When picking v2 hidden service directories, don't pick ones that
aren't listed as Running.
+ - If we're trying to fetch a bridge descriptor and there's no way
+ the bridge authority could help us (for example, we don't know
+ a digest, or there is no bridge authority), don't be so eager to
+ fall back to asking the bridge authority.
o Minor features:
- When we negotiate a v2 OR connection (not yet implemented), accept
or_options_t *options = get_options();
int num_bridge_auths = get_n_authorities(BRIDGE_AUTHORITY);
int ask_bridge_directly;
+ int can_use_bridge_authority;
if (!bridge_list)
return;
in.s_addr = htonl(bridge->addr);
tor_inet_ntoa(&in, address_buf, sizeof(address_buf));
- ask_bridge_directly = tor_digest_is_zero(bridge->identity) ||
- !options->UpdateBridgesFromAuthority ||
- !num_bridge_auths;
+ can_use_bridge_authority = !tor_digest_is_zero(bridge->identity) &&
+ num_bridge_auths;
+ ask_bridge_directly = !can_use_bridge_authority ||
+ !options->UpdateBridgesFromAuthority;
log_debug(LD_DIR, "ask_bridge_directly=%d (%d, %d, %d)",
ask_bridge_directly, tor_digest_is_zero(bridge->identity),
!options->UpdateBridgesFromAuthority, !num_bridge_auths);
!fascist_firewall_allows_address_or(bridge->addr, bridge->port)) {
log_notice(LD_DIR, "Bridge at '%s:%d' isn't reachable by our "
"firewall policy. %s.", address_buf, bridge->port,
- num_bridge_auths ? "Asking bridge authority instead" :
- "Skipping");
- if (num_bridge_auths)
+ can_use_bridge_authority ?
+ "Asking bridge authority instead" : "Skipping");
+ if (can_use_bridge_authorit)
ask_bridge_directly = 0;
else
continue;
projects / thirdparty / tor.git / commitdiff
