Stop being so aggressive about fetching dir info if your DirPort is
on but your ORPort is off.
Add a new config option BridgeRelay that specifies you want to
be a bridge relay. Right now the only difference is that it makes
you answer begin_dir requests, and it makes you cache dir info,
even if your DirPort isn't on.
Refactor directory_caches_dir_info() into some more functions.
Nick Mathewson [Tue, 4 Dec 2007 05:19:56 +0000 (05:19 +0000)]
r15106@tombo: nickm | 2007-12-04 00:08:35 -0500
Change tor_addr_t to be a tagged union of in_addr and in6_addr, not of sockaddr_in and sockaddr_in6. It's hardly used in the main code as it is, but let's get it right before it gets popular.
Stop thinking that 0.1.2.x directory servers can handle "begin_dir"
requests. Should ease bugs 406 and 419 where 0.1.2.x relays are
crashing or mis-answering these requests.
Nick Mathewson [Sat, 1 Dec 2007 08:47:13 +0000 (08:47 +0000)]
r15094@tombo: nickm | 2007-12-01 03:46:07 -0500
server-side code (for when v2 negotiation occurred) to check for renegotiation and adjust client ID info accordingly. server-side of new TLS code is now implemented, but needs testing and debugging.
Nick Mathewson [Sat, 1 Dec 2007 08:09:48 +0000 (08:09 +0000)]
r15088@tombo: nickm | 2007-11-30 23:47:29 -0500
Add support to get a callback invoked when the client renegotiate a connection. Also, make clients renegotiate. (not enabled yet, until they detect that the server acted like a v2 server)
Nick Mathewson [Sat, 1 Dec 2007 08:09:46 +0000 (08:09 +0000)]
r15087@tombo: nickm | 2007-11-30 22:32:26 -0500
Start getting freaky with openssl callbacks in tortls.c: detect client ciphers, and if the list doesn't look like the list current Tors use, present only a single cert do not ask for a client cert. Also, support for client-side renegotiation. None of this is enabled unless you define V2_HANDSHAKE_SERVER.
Nick Mathewson [Fri, 30 Nov 2007 20:09:09 +0000 (20:09 +0000)]
r16881@catbus: nickm | 2007-11-30 15:07:42 -0500
Do not keep a string representation of every single addr_policy_t lying around. This might save a few hundred K.
Nick Mathewson [Fri, 30 Nov 2007 18:11:26 +0000 (18:11 +0000)]
r16874@catbus: nickm | 2007-11-30 13:11:09 -0500
When using dmalloc, dump the top ten memory consumers to the _DMALLOC_ logfile when we get a SIGUSR1. Hint: it is not what you would think.
Roger Dingledine [Thu, 29 Nov 2007 13:19:11 +0000 (13:19 +0000)]
fix some typos (i think) in the dir spec. also, note that you'd
better *not* publish a cosmetically similar descriptor within 12
hours of the last one.
Roger Dingledine [Tue, 27 Nov 2007 21:06:34 +0000 (21:06 +0000)]
Our new v2 hidden service descriptor format allows descriptors
that have no introduction points. But Tor crashed when we tried
to build a descriptor with no intro points (and it would have
crashed if we had tried to parse one). Bugfix on 0.2.0.x; patch
by Karsten Loesing.
Roger Dingledine [Mon, 26 Nov 2007 02:18:57 +0000 (02:18 +0000)]
Only update guard status (usable / not usable) once we have
enough directory information. This was causing us to always pick
two new guards on startup (bugfix on 0.2.0.9-alpha), and it was
causing us to discard all our guards on startup if we hadn't been
running for a few weeks (bugfix on 0.1.2.x). Fixes bug 448.
Roger Dingledine [Sat, 17 Nov 2007 07:00:14 +0000 (07:00 +0000)]
The fix in 0.2.0.12-alpha cleared the "hsdir" flag in v3 network
consensus documents when there are too many relays at a single
IP address. Now clear it in v2 network status documents too.
Roger Dingledine [Sat, 17 Nov 2007 01:53:33 +0000 (01:53 +0000)]
back out r12509 and fix a better bug instead:
When authorities detected more than two relays running on the same
IP address, they were clearing all the status flags but forgetting
to clear the "hsdir" flag. So clients were being told that a
given relay was the right choice for a v2 hsdir lookup, yet they
never had its descriptor because it was marked as 'not running'
in the consensus.
Roger Dingledine [Fri, 16 Nov 2007 07:37:49 +0000 (07:37 +0000)]
If we're using bridges or have strictentrynodes set, and our
chosen exit is in the same family as all our bridges/entry guards,
then be flexible about families.
Roger Dingledine [Fri, 16 Nov 2007 07:31:51 +0000 (07:31 +0000)]
If we're trying to fetch a bridge descriptor and there's no way
the bridge authority could help us (for example, we don't know
a digest, or there is no bridge authority), don't be so eager to
fall back to asking the bridge authority.
Roger Dingledine [Fri, 16 Nov 2007 07:23:25 +0000 (07:23 +0000)]
Nov 16 02:20:50.089 [info] update_consensus_router_descriptor_downloads(): 0 router descriptors downloadable. 0 delayed; 1676 present (0 of those were in old_routers); 0 would_reject; 582 wouldnt_use, 0 in progress.
Nov 16 02:20:50.089 [info] launch_router_descriptor_downloads(): There are not many downloadable routerdescs, but we haven't tried downloading descriptors recently. Downloading.
Nick Mathewson [Wed, 14 Nov 2007 20:01:15 +0000 (20:01 +0000)]
r16670@catbus: nickm | 2007-11-14 14:56:30 -0500
Initial phase of proposal 110: accept RELAY_EARLY cells, and turn them into RELAY cells when sending them on over a v1 OR connection.
Nick Mathewson [Wed, 14 Nov 2007 18:39:15 +0000 (18:39 +0000)]
r16665@catbus: nickm | 2007-11-14 13:36:11 -0500
Fix bug spotted by karsten: when we have no consensus, do not try to continue finding directories for a hidden service.
Nick Mathewson [Mon, 12 Nov 2007 16:29:31 +0000 (16:29 +0000)]
r16656@catbus: nickm | 2007-11-12 11:27:00 -0500
Possibly fix bug 548 by making the fix for bug 543 not get invoked on authorities. See changelog and bug 548 entry for rationale.
projects / thirdparty / tor.git / log
