mirrors/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2025-02-24 22:58:50 +01:00
Code Issues Projects Releases Wiki Activity
37071 commits 53 branches 632 tags 102 MiB
Commit graph

37071 commits

This branch
This branch
All branches
Author SHA1 Message Date
Roger Dingledine
72b04a5aa4 dirauth: rotate moria1 keys and ports 
Rotate the relay identity key and v3 identity key for moria1. They
have been online for more than a decade, there was a known potential
compromise, and anyway refreshing keys periodically is good practice.

Advertise new ports too, to avoid confusion.

Closes ticket 40722.
 2022-11-29 20:33:58 -05:00
David Goulet
efeef819f5 changes: Add file for ticket 40674 
Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-11-28 10:25:48 -05:00
Rasmus Dahlberg
15efc25fb5 dns: Make TTLs fuzzy at exit relays 
This change mitigates DNS-based website oracles by making the time that
a domain name is cached uncertain (+- 4 minutes of what's measurable).

Resolves TROVE-2021-009.

Fixes #40674
 2022-11-28 10:25:06 -05:00
Rasmus Dahlberg
be7afe658e Clip DNS TTL values once in event callback 
This change ensures that other parts of the code base always operate on
the same clipped TTL values, notably without being aware of clipping.
 2022-11-28 10:25:04 -05:00
Sam James
ee38514cc4 build: fix -Wstrict-prototypes (Clang 16) 
Clang 16 warns on -Wstrict-prototypes in preparation for C23 which can
among other things, lead to some configure tests silently failing/returning the wrong result.

Fixes this error:
```
-ignoreme: warning: a function declaration without a prototype is deprecated in all versions of C [-Wstrict-prototypes]
+ignoreme: error: a function declaration without a prototype is deprecated in all versions of C [-Werror,-Wstrict-prototypes]
 main ()
```

For more information, see LWN.net [0] or LLVM's Discourse [1], gentoo-dev@ [2],
or the (new) c-std-porting mailing list [3].

[0] https://lwn.net/Articles/913505/
[1] https://discourse.llvm.org/t/configure-script-breakage-with-the-new-werror-implicit-function-declaration/65213
[2] https://archives.gentoo.org/gentoo-dev/message/dd9f2d3082b8b6f8dfbccb0639e6e240
[3] hosted at lists.linux.dev.

Bug: https://bugs.gentoo.org/879747
Signed-off-by: Sam James <sam@gentoo.org>
---
 2022-11-09 11:46:55 -05:00
David Goulet
7a851e8983 Merge branch 'tor-gitlab/mr/631' into maint-0.4.5 2022-10-26 14:21:35 -04:00
David Goulet
efad436432 dirauth: Remove Faravahar 
Closes #40688

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-10-26 14:20:07 -04:00
David Goulet
938070f5c4 dirauth: Change dizum IP address 
Closes #40687

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-10-18 10:35:54 -04:00
Nick Mathewson
e531d4d1b9 Fix a completely wrong calculation in mach monotime_init_internal() 
Bug 1: We were purporting to calculate milliseconds per tick, when we
*should* have been computing ticks per millisecond.

Bug 2: Instead of computing either one of those, we were _actually_
computing femtoseconds per tick.

These two bugs covered for one another on x86 hardware, where 1 tick
== 1 nanosecond.  But on M1 OSX, 1 tick is about 41 nanoseconds,
causing surprising results.

Fixes bug 40684; bugfix on 0.3.3.1-alpha.
 2022-10-13 13:40:10 -04:00
Tor CI Release
d52a5f2181 version: Bump version to 0.4.5.14-dev 2022-08-12 10:54:19 -04:00
Tor CI Release
ecb194b9da version: Bump version to 0.4.5.14 2022-08-12 10:12:06 -04:00
David Goulet
bb88086c72 geoip: Update geoip files with August 9th, 2022 database 
Fixes #40658

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-08-12 09:56:50 -04:00
Tor CI Release
3b143927b3 version: Bump version to 0.4.5.13-dev 2022-08-11 11:14:20 -04:00
Tor CI Release
56152a1048 version: Bump version to 0.4.5.13 2022-08-11 09:50:20 -04:00
Tor CI Release
65ffb97c2f fallbackdir: Update list generated on August 11, 2022 2022-08-11 09:44:39 -04:00
Tor CI Release
f9acdd0630 Update geoip files to match ipfire location db, 2022/08/11. 2022-08-11 09:44:32 -04:00
David Goulet
362839a77d fallbackdirs: Update list from maint-0.4.7 
Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-08-10 13:59:14 -04:00
David Goulet
13d2d1246f geoip: Update files from maint-0.4.7 
Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-08-10 13:41:22 -04:00
David Goulet
10d755ead5 Merge branch 'tor-gitlab/mr/608' into maint-0.4.5 2022-08-02 16:13:58 -04:00
David Goulet
6fcae8e0d0 relay: Don't send DESTROY remote reason backward or forward 
Fixes #40649

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-08-02 15:53:31 -04:00
David Goulet
0c984e0ec2 conn: Notify btrack subsys on normal OR conn close 
Fixes #40604

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-08-01 10:58:40 -04:00
David Goulet
691e542fd5 Merge branch 'tor-gitlab/mr/605' into maint-0.4.5 2022-07-27 11:33:16 -04:00
Nick Mathewson
8e7bd96362 Fix a check, make a netflow padding function more safe. 
Previously, `channelpadding_get_netflow_inactive_timeout_ms` would
crash with an assertion failure if `low_timeout` was greater than
`high_timeout`. That wasn't possible in practice because of checks
in `channelpadding_update_padding_for_channel`, but it's better not
to have a function whose correctness is this tricky to prove.

Fixes #40645.  Bugfix on 0.3.1.1-alpha.
 2022-07-27 09:16:50 -04:00
David Goulet
dc13936f20 relay: Use remote reason when sending back a DESTROY 
Fix from previous commit where a DESTROY cell is sent instead of a
TRUNCATED.

Related to #40623

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-07-27 08:32:01 -04:00
David Goulet
8d8afc4efa relay: Send DESTROY cell instead of TRUNCATED cell 
Note that with this commit, TRUNCATED cells won't be used anymore that
is client and relays won't emit them.

Fixes #40623

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-07-26 14:01:21 -04:00
Alexander Færøy
c213c1b0d1 Add changes entry to tor!575. 
See: tpo/core/tor#40601.
 2022-05-09 14:35:42 +00:00
pmu-ipf
d422a66f87 sandbox: Permit rseq syscall as well 
This was found to be necessary in conjunction with glibc 2.35 on Linux. 

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
 2022-05-09 14:17:22 +00:00
David Goulet
dc90226cc3 Merge branch 'tor-gitlab/mr/491' into maint-0.4.5 2022-04-14 09:37:43 -04:00
David Goulet
9ac479ce1c Merge branch 'tor-gitlab/mr/497' into maint-0.4.5 2022-04-14 09:34:46 -04:00
David Goulet
b882b8d5d4 Merge branch 'tor-gitlab/mr/556' into maint-0.4.5 2022-03-28 09:44:31 -04:00
Nick Mathewson
de3872656a Sandbox: Permit the clone3 system call 
Apparently glibc-2.34 uses clone3, when previously it just used
clone.

Closes ticket #40590.
 2022-03-27 18:34:25 -04:00
David Goulet
3dee8a597f Merge branch 'tor-gitlab/mr/533' into maint-0.4.5 2022-03-16 13:27:27 -04:00
David Goulet
254b23ab9d hs: Schedule mainloop event on dirinfo change 
Due to a possible Guard subsystem recursion, when the HS client gets
notified that the directory information has changed, it must run it in a
seperate mainloop event to avoid such issue.

See the ticket for more information on the recursion. This also fixes a
fatal assert.

Fixes #40579

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-03-10 08:58:26 -05:00
David Goulet
9efb04bb3e hs: Fix multiple port label on single metric 
Prometheus needs unique labels and so this bug was causing an onion
service with multiple ports to have multiple "port=" label for the
metrics requiring a port label.

Fixes #40581

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-03-08 13:56:54 -05:00
Jérôme Charaoui
6ef6d36296 Add CI triggers for Debian package builds 
This enables on-demand debian packaging CI builds on maintenance
branches, to replace (often unnecessary) daily scheduled builds.
 2022-02-15 17:14:34 -05:00
Tor CI Release
92b4e4d041 version: Bump version to 0.4.5.12-dev 2022-02-04 12:36:01 -05:00
Tor CI Release
774374ebf5 version: Bump version to 0.4.5.12 2022-02-04 11:09:12 -05:00
Tor CI Release
6a6332a683 fallbackdir: Update list generated on February 04, 2022 2022-02-04 11:05:21 -05:00
Tor CI Release
5ab4fa9fd8 Update geoip files to match ipfire location db, 2022/02/04. 2022-02-04 11:05:13 -05:00
Tor CI Release
cfe022d01d Update geoip files to match ipfire location db, 2021/12/15. 2022-02-04 10:56:29 -05:00
Tor CI Release
f03cab5dbb fallbackdir: Update list generated on December 15, 2021 2022-02-04 10:17:10 -05:00
David Goulet
3c73622f27 hs: Double quote the metrics label value 
Fixes #40552

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-02-03 08:30:23 -05:00
David Goulet
1b58399b07 Merge branch 'maint-0.3.5' into maint-0.4.5 2022-01-24 10:49:32 -05:00
David Goulet
421ce94395 version: Bump version to 0.3.5.18 
Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-01-24 10:48:15 -05:00
David Goulet
28881d0a92 fallbackdir: Update list generated on January 24, 2022 
Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-01-24 10:35:18 -05:00
David Goulet
324ded93be geoip: Update to match ipfire location db, 2022/01/24. 
Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-01-24 10:31:43 -05:00
David Goulet
986730e82c test: Remove HSv2 protover specific test 
HSv2 is not advertised as a supported protocol version anymore.

This was introduced with the merge-forward of commit 72041c6306
which didn't fix the unit test.

Fixes #40549

Signed-off-by: David Goulet <dgoulet@torproject.org>
 2022-01-19 13:36:23 -05:00
David Goulet
4ab4521c31 Merge branch 'maint-0.3.5' into maint-0.4.5 2022-01-18 13:15:38 -05:00
David Goulet
501d8bbd4c Merge branch 'tor-gitlab/mr/511' into maint-0.3.5 2022-01-18 13:15:33 -05:00
David Goulet
49c758af47 Merge branch 'maint-0.3.5' into maint-0.4.5 2022-01-18 13:15:29 -05:00