tor-commits September 2011

tor-commits@lists.torproject.org

19 participants
865 discussions

[torflow/master] Removing deprecated HTMLTest
by mikeperry＠torproject.org 14 Sep '11

14 Sep '11

commit f3fefed7644f311b94fcd28cd57dda3e7c1eff1c Author: christian <christian(a)avtok.com> Date: Tue Aug 30 14:11:46 2011 -0400 Removing deprecated HTMLTest --- NetworkScanners/ExitAuthority/soat.py | 394 +-------------------------------- 1 files changed, 3 insertions(+), 391 deletions(-) diff --git a/NetworkScanners/ExitAuthority/soat.py b/NetworkScanners/ExitAuthority/soat.py index 4633dad..5bcf590 100755 --- a/NetworkScanners/ExitAuthority/soat.py +++ b/NetworkScanners/ExitAuthority/soat.py @@ -1464,354 +1464,6 @@ def is_script_mimetype(mime_type): break return is_script -class BaseHTMLTest(BaseHTTPTest): - def __init__(self): - BaseHTTPTest.__init__(self) - self.save_name = "HTMLTest" - self.proto = "HTML" #CA .. ? - - def depickle_upgrade(self): - if self._pickle_revision < 7: - self.httpcode_fails_per_exit = {} - Test.depickle_upgrade(self) - - def add_target(self, target): - """Avoid BaseHTTP.add_target which keys entries""" - Test.add_target(self, target) - - def run_test(self): - # A single test should have a single cookie jar - self.tor_cookie_jar = cookielib.MozillaCookieJar() - self.cookie_jar = cookielib.MozillaCookieJar() - self.headers = copy.copy(firefox_headers) - - use_referers = False - first_referer = None - if random.randint(1,100) < referer_chance_pct: - use_referers = True - # FIXME: Hrmm.. May want to do this a bit better.. - first_referer = random.choice(self.targets) - plog("INFO", "Chose random referer "+first_referer) - - self.tests_run += 1 - address = random.choice(self.targets) - - # Keep a trail log for this test and check for loops - fetched = set([]) - - self.fetch_queue.append(("html", address, first_referer)) - n_success = n_fail = n_inconclusive = 0 - while self.fetch_queue: - (test, url, referer) = self.fetch_queue.pop(0) - if url in fetched: - plog("INFO", "Already fetched "+url+", skipping") - continue - fetched.add(url) - if use_referers and referer: - self.headers.append(('Referer', referer)) - # Technically both html and js tests check and dispatch via mime types - # but I want to know when link tags lie - if test == "html" or test == "http": - result = self.check_html(url) - elif test == "js": - result = self.check_js(url) - elif test == "image": - accept_hdr = filter(lambda h: h[0] == "Accept", self.headers)[0] - orig_accept = accept_hdr[1] - accept_hdr[1] = image_accept_hdr - result = self.check_http(url) - accept_hdr[1] = orig_accept - else: - plog("WARN", "Unknown test type: "+test+" for "+url) - result = TEST_SUCCESS - if result == TEST_INCONCLUSIVE: - n_inconclusive += 1 - if result == TEST_FAILURE: - n_fail += 1 - if result == TEST_SUCCESS: - n_success += 1 - - # Need to clear because the cookiejars use locks... - self.tor_cookie_jar = None - self.cookie_jar = None - - if n_fail: - return TEST_FAILURE - elif 2*n_inconclusive > n_success: # > 33% inconclusive -> redo - return TEST_INCONCLUSIVE - else: - return TEST_SUCCESS - - def _add_recursive_targets(self, soup, orig_addr): - # Only pull at most one filetype from the list of 'a' links - targets = [] - got_type = {} - found_favicon = False - # Hrmm, if we recursively strained only these tags, this might be faster - for tag in tags_to_recurse: - tags = soup.findAll(tag) - for t in tags: - #plog("DEBUG", "Got tag: "+str(t)) - for a in t.attrs: - attr_name = a[0] - attr_tgt = a[1] - if attr_name in attrs_to_recurse: - if t.name in recurse_html: - targets.append(("html", urlparse.urljoin(orig_addr, attr_tgt))) - elif t.name in recurse_script: - if t.name == "link": - for a in t.attrs: - a = map(lambda x: x.lower(), a) - # Special case CSS and favicons - if (a[0] == "type" and a[1] == "text/css") or \ - ((a[0] == "rel" or a[0] == "rev") and a[1] == "stylesheet"): - plog("INFO", "Adding CSS of: "+str(t)) - targets.append(("http", urlparse.urljoin(orig_addr, attr_tgt))) - elif (a[0] == "rel" or a[0] == "rev") and \ - ("shortcut" in a[1] or "icon" in a[1]): - plog("INFO", "Adding favicon of: "+str(t)) - found_favicon = True - targets.append(("image", urlparse.urljoin(orig_addr, attr_tgt))) - elif a[0] == "type" and is_script_mimetype(a[1]): - plog("INFO", "Adding link script of: "+str(t)) - targets.append(("js", urlparse.urljoin(orig_addr, attr_tgt))) - else: - plog("INFO", "Adding script tag of: "+str(t)) - targets.append(("js", urlparse.urljoin(orig_addr, attr_tgt))) - elif t.name in recurse_image: - plog("INFO", "Adding image tag of: "+str(t)) - targets.append(("image", urlparse.urljoin(orig_addr, attr_tgt))) - elif t.name == 'a': - if attr_name == "href": - for f in self.scan_filetypes: - if f not in got_type and attr_tgt[-len(f):] == f: - got_type[f] = 1 - targets.append(("http", urlparse.urljoin(orig_addr, attr_tgt))) - else: - targets.append(("http", urlparse.urljoin(orig_addr, attr_tgt))) - - if not found_favicon: - targets.insert(0, ("image", urlparse.urljoin(orig_addr, "/favicon.ico"))) - - loaded = set([]) - - for i in targets: - if i[1] in loaded: - continue - loaded.add(i[1]) - if self._is_useable_url(i[1], html_schemes): - plog("NOTICE", "Adding "+i[0]+" target: "+i[1]) - self.fetch_queue.append((i[0], i[1], orig_addr)) - else: - plog("NOTICE", "Skipping "+i[0]+" target: "+i[1]) - - def check_js(self, address): - plog('INFO', 'Conducting a js test with destination ' + address) - - accept_hdr = filter(lambda h: h[0] == "Accept", self.headers)[0] - orig_accept = accept_hdr[1] - accept_hdr[1] = script_accept_hdr - ret = self.check_http_nodynamic(address) - accept_hdr[1] = orig_accept - - if type(ret) == int: - return ret - return self._check_js_worker(address, ret) - - def _check_js_worker(self, address, http_ret): - (mime_type, tor_js, tsha, orig_js, osha, new_js, nsha, exit_node) = http_ret - - if not is_script_mimetype(mime_type): - plog("WARN", "Non-script mime type "+mime_type+" fed to JS test for "+address) - - if is_html_mimetype(mime_type): - return self._check_html_worker(address, http_ret) - else: - return self._check_http_worker(address, http_ret) - - address_file = DataHandler.safeFilename(address.replace('http://','')) - content_prefix = http_content_dir+address_file - failed_prefix = http_failed_dir+address_file - - if os.path.exists(content_prefix+".jsdiff"): - plog("DEBUG", "Loading jsdiff for "+address) - jsdiff = SnakePickler.load(content_prefix+".jsdiff") - else: - plog("DEBUG", "No jsdiff for "+address+". Creating+dumping") - jsdiff = JSDiffer(orig_js) - - jsdiff.prune_differences(new_js) - SnakePickler.dump(jsdiff, content_prefix+".jsdiff") - - has_js_changes = jsdiff.contains_differences(tor_js) - - if not has_js_changes: - result = JsTestResult(self.node_map[exit_node[1:]], - address, TEST_SUCCESS) - self.register_success(result) - return TEST_SUCCESS - else: - exit_content_file = open(DataHandler.uniqueFilename(failed_prefix+'.'+exit_node[1:]+'.dyn-content'), 'w') - exit_content_file.write(tor_js) - exit_content_file.close() - - result = JsTestResult(self.node_map[exit_node[1:]], - address, TEST_FAILURE, FAILURE_DYNAMIC, - content_prefix+".content", exit_content_file.name, - content_prefix+'.content-old', - content_prefix+".jsdiff") - self.register_dynamic_failure(result) - return TEST_FAILURE - - def check_html(self, address): - plog('INFO', 'Conducting an html test with destination ' + address) - ret = self.check_http_nodynamic(address) - - if type(ret) == int: - return ret - - return self._check_html_worker(address, ret) - - def _check_html_worker(self, address, http_ret): - (mime_type,tor_html,tsha,orig_html,osha,new_html,nsha,exit_node)=http_ret - - if not is_html_mimetype(mime_type): - # XXX: Keep an eye on this logline. - plog("WARN", "Non-html mime type "+mime_type+" fed to HTML test for "+address) - if is_script_mimetype(mime_type): - return self._check_js_worker(address, http_ret) - else: - return self._check_http_worker(address, http_ret) - - # an address representation acceptable for a filename - address_file = DataHandler.safeFilename(address.replace('http://','')) - content_prefix = http_content_dir+address_file - failed_prefix = http_failed_dir+address_file - - orig_soup = FullyStrainedSoup(orig_html.decode('ascii', 'ignore')) - tor_soup = FullyStrainedSoup(tor_html.decode('ascii', 'ignore')) - - # Also find recursive urls - recurse_elements = SoupStrainer(lambda name, attrs: - name in tags_to_recurse and - len(set(map(lambda a: a[0], attrs)).intersection(set(attrs_to_recurse))) > 0) - self._add_recursive_targets(TheChosenSoup(tor_html.decode('ascii', - 'ignore'), recurse_elements), address) - - # compare the content - # if content matches, everything is ok - if str(orig_soup) == str(tor_soup): - plog("INFO", "Successful soup comparison after SHA1 fail for "+address+" via "+exit_node) - result = HtmlTestResult(self.node_map[exit_node[1:]], - address, TEST_SUCCESS) - self.register_success(result) - - return TEST_SUCCESS - - content_new = new_html.decode('ascii', 'ignore') - if not content_new: - plog("WARN", "Failed to re-frech "+address+" outside of Tor. Did our network fail?") - result = HtmlTestResult(self.node_map[exit_node[1:]], - address, TEST_INCONCLUSIVE, - INCONCLUSIVE_NOLOCALCONTENT) - if self.rescan_nodes: - result.from_rescan = True - self.results.append(result) - datahandler.saveResult(result) - return TEST_INCONCLUSIVE - - new_soup = FullyStrainedSoup(content_new) - - # compare the new and old content - # if they match, means the node has been changing the content - if str(orig_soup) == str(new_soup): - exit_content_file = open(DataHandler.uniqueFilename(failed_prefix+'.'+exit_node[1:]+'.content'), 'w') - exit_content_file.write(tor_html) - exit_content_file.close() - - result = HtmlTestResult(self.node_map[exit_node[1:]], - address, TEST_FAILURE, FAILURE_EXITONLY, - content_prefix+".content", exit_content_file.name) - self.register_exit_failure(result) - return TEST_FAILURE - - # Lets try getting just the tag differences - # 1. Take difference between old and new tags both ways - # 2. Make map of tags that change to their attributes - # 3. Compare list of changed tags for tor vs new and - # see if any extra tags changed or if new attributes - # were added to additional tags - if os.path.exists(content_prefix+".soupdiff"): - plog("DEBUG", "Loading soupdiff for "+address) - soupdiff = SnakePickler.load(content_prefix+".soupdiff") - soupdiff.prune_differences(new_soup) - else: - plog("DEBUG", "No soupdiff for "+address+". Creating+dumping") - soupdiff = SoupDiffer(orig_soup, new_soup) - - SnakePickler.dump(soupdiff, content_prefix+".soupdiff") - - more_tags = soupdiff.show_changed_tags(tor_soup) - more_attrs = soupdiff.show_changed_attrs(tor_soup) - more_content = soupdiff.show_changed_content(tor_soup) - - # Verify all of our changed tags are present here - if more_tags or more_attrs or (more_content and not soupdiff.content_changed): - false_positive = False - plog("NOTICE", "SoupDiffer finds differences for "+address) - plog("NOTICE", "New Tags:\n"+more_tags) - plog("NOTICE", "New Attrs:\n"+more_attrs) - if more_content and not soupdiff.content_changed: - plog("NOTICE", "New Content:\n"+more_content) - else: - plog("INFO", "SoupDiffer predicts false_positive") - false_positive = True - - if false_positive: - if os.path.exists(content_prefix+".jsdiff"): - plog("DEBUG", "Loading jsdiff for "+address) - jsdiff = SnakePickler.load(content_prefix+".jsdiff") - else: - plog("DEBUG", "No jsdiff for "+address+". Creating+dumping") - jsdiff = JSSoupDiffer(orig_soup) - - jsdiff.prune_differences(new_soup) - SnakePickler.dump(jsdiff, content_prefix+".jsdiff") - - differences = jsdiff.show_differences(tor_soup) - false_positive = not differences - plog("INFO", "JSSoupDiffer predicts false_positive="+str(false_positive)) - if not false_positive: - plog("NOTICE", "JSSoupDiffer finds differences: "+differences) - - if false_positive: - plog("NOTICE", "False positive detected for dynamic change at "+address+" via "+exit_node) - result = HtmlTestResult(self.node_map[exit_node[1:]], - address, TEST_SUCCESS) - self.register_success(result) - return TEST_SUCCESS - - exit_content_file = open(DataHandler.uniqueFilename(failed_prefix+'.'+exit_node[1:]+'.dyn-content'),'w') - exit_content_file.write(tor_html) - exit_content_file.close() - - if os.path.exists(content_prefix+".jsdiff"): - jsdiff_file = content_prefix+".jsdiff" - else: - jsdiff_file = None - if os.path.exists(content_prefix+".soupdiff"): - soupdiff_file = content_prefix+".soupdiff" - else: - soupdiff_file = None - - result = HtmlTestResult(self.node_map[exit_node[1:]], - address, TEST_FAILURE, FAILURE_DYNAMIC, - content_prefix+".content", exit_content_file.name, - content_prefix+'.content-old', - soupdiff_file, jsdiff_file) - self.register_dynamic_failure(result) - return TEST_FAILURE - class BaseSSLTest(Test): def __init__(self): Test.__init__(self, "SSL", 443) @@ -2041,15 +1693,6 @@ class FixedTargetHTTPTest(FixedTargetTest, BaseHTTPTest): def add_target(self, target): self.targets.add(target[0],[target[1]]) -class FixedTargetHTMLTest(FixedTargetTest, BaseHTMLTest): - def __init__(self, targets): - BaseHTMLTest.__init__(self) - utargets = [t for t in targets if self._is_useable_url(t, ['http'])] - FixedTargetTest.__init__(self, utargets) - def _add_recursive_targets(self, soup, orig_addr): - # Don't recurse for FixedTarget tests - pass - class FixedTargetSSLTest(FixedTargetTest, BaseSSLTest): def __init__(self, targets): BaseSSLTest.__init__(self) @@ -2236,25 +1879,6 @@ class SearchBasedHTTPTest(SearchBasedTest, BaseHTTPTest): HTTPTest = SearchBasedHTTPTest # For resuming from old HTTPTest.*.test files -class SearchBasedHTMLTest(SearchBasedTest, BaseHTMLTest): - def __init__(self, wordlist): - BaseHTMLTest.__init__(self) - SearchBasedTest.__init__(self, wordlist) - self.result_filetypes = ["any"] - - def depickle_upgrade(self): - if self._pickle_revision < 7: - self.result_filetypes = ["any"] - self.result_protocol = "http" - self.results_per_type = self.fetch_targets - BaseHTMLTest.depickle_upgrade(self) - - def rewind(self): - SearchBasedTest.rewind(self) - BaseHTMLTest.rewind(self) - -HTMLTest = SearchBasedHTMLTest # For resuming from old HTMLTest.*.test files - class SearchBasedSSLTest(SearchBasedTest, BaseSSLTest): def __init__(self, wordlist): BaseSSLTest.__init__(self) @@ -2991,7 +2615,6 @@ def main(argv): print '--rescan=<n>' print '--ssl' print '--http' - print '--html' # print '--ssh (doesn\'t work yet)' # print '--smtp (~works)' # print '--pop (~works)' @@ -3006,7 +2629,7 @@ def main(argv): TorUtil.read_config(data_dir+"/torctl.cfg") - opts = ['ssl','rescan', 'pernode=', 'resume=', 'html','http','ssh','smtp','pop','imap','dns','dnsrebind','policies','exit=','target=','loglevel='] + opts = ['ssl','rescan', 'pernode=', 'resume=','http','ssh','smtp','pop','imap','dns','dnsrebind','policies','exit=','target=','loglevel='] flags, trailer = getopt.getopt(argv[1:], [], opts) # get specific test types @@ -3014,7 +2637,6 @@ def main(argv): do_rescan = ('--rescan','') in flags do_ssl = ('--ssl','') in flags do_http = ('--http','') in flags - do_html = ('--html','') in flags #do_ssh = ('--ssh','') in flags #do_smtp = ('--smtp','') in flags #do_pop = ('--pop','') in flags @@ -3074,7 +2696,7 @@ def main(argv): scanhdlr.check_all_exits_port_consistency() # maybe only the consistency test was required - if not (do_ssl or do_html or do_http): + if not (do_ssl or do_http): plog('INFO', 'Done.') return @@ -3095,7 +2717,7 @@ def main(argv): ssl_data_dir = os.path.join(soat_dir, 'ssl') tocheck += [ssl_certs_dir] tocheck += [os.path.join(ssl_data_dir, r) for r in rsubdirs] - if do_html or do_http: + if do_http: tocheck += [http_content_dir] tocheck += [os.path.join(http_data_dir, r) for r in rsubdirs] if do_dns_rebind: @@ -3130,10 +2752,6 @@ def main(argv): tests["HTTP"] = datahandler.loadTest("HTTPTest", resume_run) plog("NOTICE", "Resuming previous HTTP run "+os.path.split(tests["HTTP"].filename)[-1]) - if do_html: - tests["HTML"] = datahandler.loadTest("HTMLTest", resume_run) - plog("NOTICE", "Resuming previous HTML run "+os.path.split(tests["HTML"].filename)[-1]) - elif fixed_targets: if do_ssl: tests["SSL"] = FixedTargetSSLTest(fixed_targets) @@ -3141,9 +2759,6 @@ def main(argv): if do_http: tests["HTTP"] = FixedTargetHTTPTest(fixed_targets) - if do_html: - tests["HTML"] = FixedTargetHTMLTest(fixed_targets) - else: if do_ssl: tests["SSL"] = SearchBasedSSLTest(ssl_wordlist_file) @@ -3151,9 +2766,6 @@ def main(argv): if do_http: tests["HTTP"] = SearchBasedHTTPTest(filetype_wordlist_file) - if do_html: - tests["HTML"] = SearchBasedHTMLTest(html_wordlist_file) - # maybe no tests could be initialized if not tests: plog('INFO', 'Done.')

1 0

r25067: {website} 0.2.3.4-alpha tarballs are up (website/trunk/include)
by Roger Dingledine 14 Sep '11

14 Sep '11

Author: arma Date: 2011-09-14 00:35:00 +0000 (Wed, 14 Sep 2011) New Revision: 25067 Modified: website/trunk/include/versions.wmi Log: 0.2.3.4-alpha tarballs are up Modified: website/trunk/include/versions.wmi =================================================================== --- website/trunk/include/versions.wmi 2011-09-13 19:28:18 UTC (rev 25066) +++ website/trunk/include/versions.wmi 2011-09-14 00:35:00 UTC (rev 25067) @@ -1,5 +1,5 @@ <define-tag version-stable whitespace=delete>0.2.2.32</define-tag> -<define-tag version-alpha whitespace=delete>0.2.3.3-alpha</define-tag> +<define-tag version-alpha whitespace=delete>0.2.3.4-alpha</define-tag> <define-tag version-win32-stable whitespace=delete>0.2.2.32</define-tag> <define-tag version-win32-alpha whitespace=delete>0.2.2.32</define-tag>

1 0

[tor/master] slight tweak to unify things
by arma＠torproject.org 14 Sep '11

14 Sep '11

commit 5f4f727d58daa194656ec43880a6151e88f5c0a2 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 20:26:32 2011 -0400 slight tweak to unify things --- ChangeLog | 4 ++-- 1 files changed, 2 insertions(+), 2 deletions(-) diff --git a/ChangeLog b/ChangeLog index 75a8759..5381cf8 100644 --- a/ChangeLog +++ b/ChangeLog @@ -33,7 +33,7 @@ Changes in version 0.2.3.4-alpha - 2011-09-13 consensus flag. Related to bug 2649. - Update to the September 6 2011 Maxmind GeoLite Country database. - o Minor bugfixes (also in 0.2.2.33): + o Minor bugfixes (also part of 0.2.2.33): - Demote the 'replay detected' log message emitted when a hidden service receives the same Diffie-Hellman public key in two different INTRODUCE2 cells to info level. A normal Tor client can cause that @@ -49,7 +49,7 @@ Changes in version 0.2.3.4-alpha - 2011-09-13 given the impression that every ASCII character between "+" and "_" was permitted. Now we say "[A-Za-z0-9+_-]". Bugfix on 0.2.1.5-alpha. - o Build fixes (also in 0.2.2.33): + o Build fixes (also part of 0.2.2.33): - Clean up some code issues that prevented Tor from building on older BSDs. Fixes bug 3894; reported by "grarpamp". - Search for a platform-specific version of "ar" when cross-compiling.

1 0

[tor/master] bump to 0.2.3.4-alpha
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit 0b0f7d792c02fdfc664f655b28ad25a4ece6baa1 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 19:59:06 2011 -0400 bump to 0.2.3.4-alpha --- configure.in | 2 +- contrib/tor-mingw.nsi.in | 2 +- src/win32/orconfig.h | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/configure.in b/configure.in index a449136..3659cd7 100644 --- a/configure.in +++ b/configure.in @@ -4,7 +4,7 @@ dnl Copyright (c) 2007-2008, The Tor Project, Inc. dnl See LICENSE for licensing information AC_INIT -AM_INIT_AUTOMAKE(tor, 0.2.3.3-alpha-dev) +AM_INIT_AUTOMAKE(tor, 0.2.3.4-alpha) AM_CONFIG_HEADER(orconfig.h) AC_CANONICAL_HOST diff --git a/contrib/tor-mingw.nsi.in b/contrib/tor-mingw.nsi.in index 137cb67..e6b2585 100644 --- a/contrib/tor-mingw.nsi.in +++ b/contrib/tor-mingw.nsi.in @@ -8,7 +8,7 @@ !include "LogicLib.nsh" !include "FileFunc.nsh" !insertmacro GetParameters -!define VERSION "0.2.3.3-alpha-dev" +!define VERSION "0.2.3.4-alpha" !define INSTALLER "tor-${VERSION}-win32.exe" !define WEBSITE "https://www.torproject.org/" !define LICENSE "LICENSE" diff --git a/src/win32/orconfig.h b/src/win32/orconfig.h index aed3002..e5c195b 100644 --- a/src/win32/orconfig.h +++ b/src/win32/orconfig.h @@ -234,7 +234,7 @@ #define USING_TWOS_COMPLEMENT /* Version number of package */ -#define VERSION "0.2.3.3-alpha-dev" +#define VERSION "0.2.3.4-alpha"

1 0

[tor/master] a blurb for 0.2.3.4-alpha
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit c133d71bddde8d7a00b08478344d8af0ef740677 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 19:56:59 2011 -0400 a blurb for 0.2.3.4-alpha --- ChangeLog | 97 +++++++++++++++++++++++++++++-------------- changes/bug2442 | 8 ---- changes/bug2442b | 8 ---- changes/bug3936 | 5 -- changes/bug4014 | 3 - changes/geoip-september2011 | 3 - changes/typo-fix-ohkah8Ah | 9 ---- 7 files changed, 65 insertions(+), 68 deletions(-) diff --git a/ChangeLog b/ChangeLog index 0566cf0..75a8759 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,19 +1,16 @@ -Changes in version 0.2.3.4-alpha - 2011-09-?? - o Major bugfixes: +Changes in version 0.2.3.4-alpha - 2011-09-13 + Tor 0.2.3.4-alpha includes the fixes from 0.2.2.33, including a slight + tweak to Tor's TLS handshake that makes relays and bridges that run + this new version reachable from Iran again. It also fixes a few new + bugs in 0.2.3.x, and teaches relays to recognize when they're not + listed in the network consensus and republish. + + o Major bugfixes (also part of 0.2.2.33): - Avoid an assertion failure when reloading a configuration with TrackExitHosts changes. Found and fixed by 'laruldan'. Fixes bug 3923; bugfix on 0.2.2.25-alpha. - o Major features: - - Relays now try regenerating and uploading their descriptor more - frequently if they are not listed in the consensus, or if the - version of their descriptor listed in the consensus is too - old. This fix should prevent situations where a server declines - to re-publish itself because it has done so too recently, even - though the authorities decided not to list its recent-enough - descriptor. Fix for bug 3327. - - o Minor features (security): + o Minor features (security, also part of 0.2.2.33): - Check for replays of the public-key encrypted portion of an INTRODUCE1 cell, in addition to the current check for replays of the g^x value. This prevents a possible class of active attacks @@ -25,37 +22,73 @@ Changes in version 0.2.3.4-alpha - 2011-09-?? but we'd rather block them off in case there are any classes of this attack that we missed. Reported by Willem Pinckaers. + o Minor features (also part of 0.2.2.33): + - Adjust the expiration time on our SSL session certificates to + better match SSL certs seen in the wild. Resolves ticket 4014. + - Change the default required uptime for a relay to be accepted as + a HSDir (hidden service directory) from 24 hours to 25 hours. + Improves on 0.2.0.10-alpha; resolves ticket 2649. + - Add a VoteOnHidServDirectoriesV2 config option to allow directory + authorities to abstain from voting on assignment of the HSDir + consensus flag. Related to bug 2649. + - Update to the September 6 2011 Maxmind GeoLite Country database. + + o Minor bugfixes (also in 0.2.2.33): + - Demote the 'replay detected' log message emitted when a hidden + service receives the same Diffie-Hellman public key in two different + INTRODUCE2 cells to info level. A normal Tor client can cause that + log message during its normal operation. Bugfix on 0.2.1.6-alpha; + fixes part of bug 2442. + - Demote the 'INTRODUCE2 cell is too {old,new}' log message to info + level. There is nothing that a hidden service's operator can do + to fix its clients' clocks. Bugfix on 0.2.1.6-alpha; fixes part + of bug 2442. + - Clarify a log message specifying the characters permitted in + HiddenServiceAuthorizeClient client names. Previously, the log + message said that "[A-Za-z0-9+-_]" were permitted; that could have + given the impression that every ASCII character between "+" and "_" + was permitted. Now we say "[A-Za-z0-9+_-]". Bugfix on 0.2.1.5-alpha. + + o Build fixes (also in 0.2.2.33): + - Clean up some code issues that prevented Tor from building on older + BSDs. Fixes bug 3894; reported by "grarpamp". + - Search for a platform-specific version of "ar" when cross-compiling. + Should fix builds on iOS. Resolves bug 3909, found by Marco Bonetti. + + o Major bugfixes: + - Fix a bug where the SocksPort option (for example) would get + ignored and replaced by the default if a SocksListenAddress + option was set. Bugfix on 0.2.3.3-alpha; fixes bug 3936. Fix by + Fabian Keil. + + o Major features: + - Relays now try regenerating and uploading their descriptor more + frequently if they are not listed in the consensus, or if the + version of their descriptor listed in the consensus is too + old. This fix should prevent situations where a server declines + to re-publish itself because it has done so too recently, even + though the authorities decided not to list its recent-enough + descriptor. Fix for bug 3327. + o Minor features: - - Add a VoteOnHidServDirectoriesV2 configuration option to allow - directory authorities to abstain from voting on assignment of - the HSDir consensus flag. Related to bug 2649. - Relays now include a reason for regenerating their descriptors - an HTTP header when uploading to the authorities. This will + in an HTTP header when uploading to the authorities. This will make it easier to debug descriptor-upload issues in the future. - When starting as root and then changing our UID via the User - control option, if we are running with ControlSocket, make sure + control option, and we have a ControlSocket configured, make sure that the ControlSocket is owned by the same account that Tor will run under. Implements ticket 3421; fix by Jérémy Bobbio. o Minor bugfixes: - - Change the default required uptime for a relay to be accepted as - a HSDir from 24 hours to 25 hours. Bugfix on 0.2.0.10-alpha; - fixes bug 2649. - Abort if tor_vasprintf fails in connection_printf_to_buf (a utility function used in the control-port code). This shouldn't - ever happen unless Tor is completely out of memory, but if it - did happen and Tor somehow recovered from it, Tor could have - sent a log message to a control port in the middle of a reply to - a controller command. Fixes part of bug 3428. + ever happen unless Tor is completely out of memory, but if it did + happen and Tor somehow recovered from it, Tor could have sent a log + message to a control port in the middle of a reply to a controller + command. Fixes part of bug 3428; bugfix on 0.1.2.3-alpha. - Make 'FetchUselessDescriptors' cause all descriptor types and - all consensus types to get fetched. Fixes bug 3851; bugfix on - 0.2.3.1-alpha. - - o Build fixes: - - Clean up some code issues that prevented Tor from building on older - BSDs. Fixes bug 3894; reported by "grarpamp". - - Search for a platform-specific version of "ar" when cross-compiling. - Should fix builds on iOS. Found by Marco Bonetti. + all consensus types (including microdescriptors) to get fetched. + Fixes bug 3851; bugfix on 0.2.3.1-alpha. o Code refactoring: - Make a new "entry connection" struct as an internal subtype of "edge diff --git a/changes/bug2442 b/changes/bug2442 deleted file mode 100644 index cbcc22b..0000000 --- a/changes/bug2442 +++ /dev/null @@ -1,8 +0,0 @@ - * Minor bugfixes: - - - Demote the 'replay detected' log message emitted when a hidden - service receives the same Diffie-Hellman public key in two - different INTRODUCE2 cells to info level. A normal Tor client - can cause that log message during its normal operation. Bugfix - on 0.2.1.6-alpha; fixes part of bug 2442. - diff --git a/changes/bug2442b b/changes/bug2442b deleted file mode 100644 index 02e1636..0000000 --- a/changes/bug2442b +++ /dev/null @@ -1,8 +0,0 @@ - * Minor bugfixes: - - - Demote the 'INTRODUCE2 cell is too {old,new}' log message to - info level. There is nothing that a hidden service's operator - can do to fix its clients' clocks. Bugfix on 0.2.1.6-alpha; - fixes part of bug 2442. - - diff --git a/changes/bug3936 b/changes/bug3936 deleted file mode 100644 index 55b13c0..0000000 --- a/changes/bug3936 +++ /dev/null @@ -1,5 +0,0 @@ - o Major bugfixes: - - Fix a bug where the SocksPort option (for example) would get - ignored and replaced by the default if a SocksListenAddress option - was set. Bugfix on 0.2.3.3-alpha; fixes bug 3936. Fix by Fabian Keil. - diff --git a/changes/bug4014 b/changes/bug4014 deleted file mode 100644 index 9c20c6c..0000000 --- a/changes/bug4014 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Adjust the expiration time on our SSL session certificates to - better match SSL certs seen in the wild. Resolves ticket 4014. diff --git a/changes/geoip-september2011 b/changes/geoip-september2011 deleted file mode 100644 index c41314b..0000000 --- a/changes/geoip-september2011 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Update to the September 6 2011 Maxmind GeoLite Country database. - diff --git a/changes/typo-fix-ohkah8Ah b/changes/typo-fix-ohkah8Ah deleted file mode 100644 index 9b4e5c0..0000000 --- a/changes/typo-fix-ohkah8Ah +++ /dev/null @@ -1,9 +0,0 @@ - * Minor bugfixes: - - - Clarify a log message specifying the characters permitted in - HiddenServiceAuthorizeClient client names. Previously, the log - message said that "[A-Za-z0-9+-_]" were permitted; that could - have given the impression that every ASCII character between "+" - and "_" was permitted. Now we say "[A-Za-z0-9+_-]". Bugfix on - 0.2.1.5-alpha. -

1 0

[tor/master] forward-port the 0.2.2.33 changelog
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit befaa435bd9ba60a10e1d796ad66f405a5889086 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 19:19:38 2011 -0400 forward-port the 0.2.2.33 changelog --- ChangeLog | 63 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ReleaseNotes | 63 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 126 insertions(+), 0 deletions(-) diff --git a/ChangeLog b/ChangeLog index 75db367..0566cf0 100644 --- a/ChangeLog +++ b/ChangeLog @@ -62,6 +62,69 @@ Changes in version 0.2.3.4-alpha - 2011-09-?? connection", to simplify the code and make exit connections smaller. +Changes in version 0.2.2.33 - 2011-09-13 + Tor 0.2.2.33 fixes several bugs, and includes a slight tweak to Tor's + TLS handshake that makes relays and bridges that run this new version + reachable from Iran again. + + o Major bugfixes: + - Avoid an assertion failure when reloading a configuration with + TrackExitHosts changes. Found and fixed by 'laruldan'. Fixes bug + 3923; bugfix on 0.2.2.25-alpha. + + o Minor features (security): + - Check for replays of the public-key encrypted portion of an + INTRODUCE1 cell, in addition to the current check for replays of + the g^x value. This prevents a possible class of active attacks + by an attacker who controls both an introduction point and a + rendezvous point, and who uses the malleability of AES-CTR to + alter the encrypted g^x portion of the INTRODUCE1 cell. We think + that these attacks are infeasible (requiring the attacker to send + on the order of zettabytes of altered cells in a short interval), + but we'd rather block them off in case there are any classes of + this attack that we missed. Reported by Willem Pinckaers. + + o Minor features: + - Adjust the expiration time on our SSL session certificates to + better match SSL certs seen in the wild. Resolves ticket 4014. + - Change the default required uptime for a relay to be accepted as + a HSDir (hidden service directory) from 24 hours to 25 hours. + Improves on 0.2.0.10-alpha; resolves ticket 2649. + - Add a VoteOnHidServDirectoriesV2 config option to allow directory + authorities to abstain from voting on assignment of the HSDir + consensus flag. Related to bug 2649. + - Update to the September 6 2011 Maxmind GeoLite Country database. + + o Minor bugfixes (documentation and log messages): + - Correct the man page to explain that HashedControlPassword and + CookieAuthentication can both be set, in which case either method + is sufficient to authenticate to Tor. Bugfix on 0.2.0.7-alpha, + when we decided to allow these config options to both be set. Issue + raised by bug 3898. + - Demote the 'replay detected' log message emitted when a hidden + service receives the same Diffie-Hellman public key in two different + INTRODUCE2 cells to info level. A normal Tor client can cause that + log message during its normal operation. Bugfix on 0.2.1.6-alpha; + fixes part of bug 2442. + - Demote the 'INTRODUCE2 cell is too {old,new}' log message to info + level. There is nothing that a hidden service's operator can do + to fix its clients' clocks. Bugfix on 0.2.1.6-alpha; fixes part + of bug 2442. + - Clarify a log message specifying the characters permitted in + HiddenServiceAuthorizeClient client names. Previously, the log + message said that "[A-Za-z0-9+-_]" were permitted; that could have + given the impression that every ASCII character between "+" and "_" + was permitted. Now we say "[A-Za-z0-9+_-]". Bugfix on 0.2.1.5-alpha. + + o Build fixes: + - Provide a substitute implementation of lround() for MSVC, which + apparently lacks it. Patch from Gisle Vanem. + - Clean up some code issues that prevented Tor from building on older + BSDs. Fixes bug 3894; reported by "grarpamp". + - Search for a platform-specific version of "ar" when cross-compiling. + Should fix builds on iOS. Resolves bug 3909, found by Marco Bonetti. + + Changes in version 0.2.3.3-alpha - 2011-09-01 Tor 0.2.3.3-alpha adds a new "stream isolation" feature to improve Tor's security, and provides client-side support for the microdescriptor diff --git a/ReleaseNotes b/ReleaseNotes index c3b08c9..0f9299e 100644 --- a/ReleaseNotes +++ b/ReleaseNotes @@ -3,6 +3,69 @@ This document summarizes new features and bugfixes in each stable release of Tor. If you want to see more detailed descriptions of the changes in each development snapshot, see the ChangeLog file. +Changes in version 0.2.2.33 - 2011-09-13 + Tor 0.2.2.33 fixes several bugs, and includes a slight tweak to Tor's + TLS handshake that makes relays and bridges that run this new version + reachable from Iran again. + + o Major bugfixes: + - Avoid an assertion failure when reloading a configuration with + TrackExitHosts changes. Found and fixed by 'laruldan'. Fixes bug + 3923; bugfix on 0.2.2.25-alpha. + + o Minor features (security): + - Check for replays of the public-key encrypted portion of an + INTRODUCE1 cell, in addition to the current check for replays of + the g^x value. This prevents a possible class of active attacks + by an attacker who controls both an introduction point and a + rendezvous point, and who uses the malleability of AES-CTR to + alter the encrypted g^x portion of the INTRODUCE1 cell. We think + that these attacks are infeasible (requiring the attacker to send + on the order of zettabytes of altered cells in a short interval), + but we'd rather block them off in case there are any classes of + this attack that we missed. Reported by Willem Pinckaers. + + o Minor features: + - Adjust the expiration time on our SSL session certificates to + better match SSL certs seen in the wild. Resolves ticket 4014. + - Change the default required uptime for a relay to be accepted as + a HSDir (hidden service directory) from 24 hours to 25 hours. + Improves on 0.2.0.10-alpha; resolves ticket 2649. + - Add a VoteOnHidServDirectoriesV2 config option to allow directory + authorities to abstain from voting on assignment of the HSDir + consensus flag. Related to bug 2649. + - Update to the September 6 2011 Maxmind GeoLite Country database. + + o Minor bugfixes (documentation and log messages): + - Correct the man page to explain that HashedControlPassword and + CookieAuthentication can both be set, in which case either method + is sufficient to authenticate to Tor. Bugfix on 0.2.0.7-alpha, + when we decided to allow these config options to both be set. Issue + raised by bug 3898. + - Demote the 'replay detected' log message emitted when a hidden + service receives the same Diffie-Hellman public key in two different + INTRODUCE2 cells to info level. A normal Tor client can cause that + log message during its normal operation. Bugfix on 0.2.1.6-alpha; + fixes part of bug 2442. + - Demote the 'INTRODUCE2 cell is too {old,new}' log message to info + level. There is nothing that a hidden service's operator can do + to fix its clients' clocks. Bugfix on 0.2.1.6-alpha; fixes part + of bug 2442. + - Clarify a log message specifying the characters permitted in + HiddenServiceAuthorizeClient client names. Previously, the log + message said that "[A-Za-z0-9+-_]" were permitted; that could have + given the impression that every ASCII character between "+" and "_" + was permitted. Now we say "[A-Za-z0-9+_-]". Bugfix on 0.2.1.5-alpha. + + o Build fixes: + - Provide a substitute implementation of lround() for MSVC, which + apparently lacks it. Patch from Gisle Vanem. + - Clean up some code issues that prevented Tor from building on older + BSDs. Fixes bug 3894; reported by "grarpamp". + - Search for a platform-specific version of "ar" when cross-compiling. + Should fix builds on iOS. Resolves bug 3909, found by Marco Bonetti. + + Changes in version 0.2.2.32 - 2011-08-27 The Tor 0.2.2 release series is dedicated to the memory of Andreas Pfitzmann (1958-2010), a pioneer in anonymity and privacy research,

1 0

[tor/release-0.2.2] prepare a release blurb
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit 8522652d8e9213d4adf6d1d712c233ad8c9190f7 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 19:08:47 2011 -0400 prepare a release blurb --- ChangeLog | 26 +++++++++++++---------- ReleaseNotes | 63 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 78 insertions(+), 11 deletions(-) diff --git a/ChangeLog b/ChangeLog index d82ba49..e1a0c87 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,4 +1,8 @@ -Changes in version 0.2.2.33 - 2011-09-?? +Changes in version 0.2.2.33 - 2011-09-13 + Tor 0.2.2.33 fixes several bugs, and includes a slight tweak to Tor's + TLS handshake that makes relays and bridges that run this new version + reachable from Iran again. + o Major bugfixes: - Avoid an assertion failure when reloading a configuration with TrackExitHosts changes. Found and fixed by 'laruldan'. Fixes bug @@ -11,23 +15,23 @@ Changes in version 0.2.2.33 - 2011-09-?? by an attacker who controls both an introduction point and a rendezvous point, and who uses the malleability of AES-CTR to alter the encrypted g^x portion of the INTRODUCE1 cell. We think - that these attacks is infeasible (requiring the attacker to send + that these attacks are infeasible (requiring the attacker to send on the order of zettabytes of altered cells in a short interval), but we'd rather block them off in case there are any classes of this attack that we missed. Reported by Willem Pinckaers. o Minor features: - - Add a VoteOnHidServDirectoriesV2 configuration option to allow - directory authorities to abstain from voting on assignment of - the HSDir consensus flag. Related to bug 2649. - - Update to the September 6 2011 Maxmind GeoLite Country database. - - Change the default required uptime for a relay to be accepted as - a HSDir from 24 hours to 25 hours. Improves on 0.2.0.10-alpha; - resolves ticket 2649. - Adjust the expiration time on our SSL session certificates to better match SSL certs seen in the wild. Resolves ticket 4014. + - Change the default required uptime for a relay to be accepted as + a HSDir (hidden service directory) from 24 hours to 25 hours. + Improves on 0.2.0.10-alpha; resolves ticket 2649. + - Add a VoteOnHidServDirectoriesV2 config option to allow directory + authorities to abstain from voting on assignment of the HSDir + consensus flag. Related to bug 2649. + - Update to the September 6 2011 Maxmind GeoLite Country database. - o Minor bugfixes: + o Minor bugfixes (documentation and log messages): - Correct the man page to explain that HashedControlPassword and CookieAuthentication can both be set, in which case either method is sufficient to authenticate to Tor. Bugfix on 0.2.0.7-alpha, @@ -54,7 +58,7 @@ Changes in version 0.2.2.33 - 2011-09-?? - Clean up some code issues that prevented Tor from building on older BSDs. Fixes bug 3894; reported by "grarpamp". - Search for a platform-specific version of "ar" when cross-compiling. - Should fix builds on iOS. Found by Marco Bonetti. + Should fix builds on iOS. Resolves bug 3909, found by Marco Bonetti. Changes in version 0.2.2.32 - 2011-08-27 diff --git a/ReleaseNotes b/ReleaseNotes index da83fd2..a04bfae 100644 --- a/ReleaseNotes +++ b/ReleaseNotes @@ -3,6 +3,69 @@ This document summarizes new features and bugfixes in each stable release of Tor. If you want to see more detailed descriptions of the changes in each development snapshot, see the ChangeLog file. +Changes in version 0.2.2.33 - 2011-09-13 + Tor 0.2.2.33 fixes several bugs, and includes a slight tweak to Tor's + TLS handshake that makes relays and bridges that run this new version + reachable from Iran again. + + o Major bugfixes: + - Avoid an assertion failure when reloading a configuration with + TrackExitHosts changes. Found and fixed by 'laruldan'. Fixes bug + 3923; bugfix on 0.2.2.25-alpha. + + o Minor features (security): + - Check for replays of the public-key encrypted portion of an + INTRODUCE1 cell, in addition to the current check for replays of + the g^x value. This prevents a possible class of active attacks + by an attacker who controls both an introduction point and a + rendezvous point, and who uses the malleability of AES-CTR to + alter the encrypted g^x portion of the INTRODUCE1 cell. We think + that these attacks are infeasible (requiring the attacker to send + on the order of zettabytes of altered cells in a short interval), + but we'd rather block them off in case there are any classes of + this attack that we missed. Reported by Willem Pinckaers. + + o Minor features: + - Adjust the expiration time on our SSL session certificates to + better match SSL certs seen in the wild. Resolves ticket 4014. + - Change the default required uptime for a relay to be accepted as + a HSDir (hidden service directory) from 24 hours to 25 hours. + Improves on 0.2.0.10-alpha; resolves ticket 2649. + - Add a VoteOnHidServDirectoriesV2 config option to allow directory + authorities to abstain from voting on assignment of the HSDir + consensus flag. Related to bug 2649. + - Update to the September 6 2011 Maxmind GeoLite Country database. + + o Minor bugfixes (documentation and log messages): + - Correct the man page to explain that HashedControlPassword and + CookieAuthentication can both be set, in which case either method + is sufficient to authenticate to Tor. Bugfix on 0.2.0.7-alpha, + when we decided to allow these config options to both be set. Issue + raised by bug 3898. + - Demote the 'replay detected' log message emitted when a hidden + service receives the same Diffie-Hellman public key in two different + INTRODUCE2 cells to info level. A normal Tor client can cause that + log message during its normal operation. Bugfix on 0.2.1.6-alpha; + fixes part of bug 2442. + - Demote the 'INTRODUCE2 cell is too {old,new}' log message to info + level. There is nothing that a hidden service's operator can do + to fix its clients' clocks. Bugfix on 0.2.1.6-alpha; fixes part + of bug 2442. + - Clarify a log message specifying the characters permitted in + HiddenServiceAuthorizeClient client names. Previously, the log + message said that "[A-Za-z0-9+-_]" were permitted; that could have + given the impression that every ASCII character between "+" and "_" + was permitted. Now we say "[A-Za-z0-9+_-]". Bugfix on 0.2.1.5-alpha. + + o Build fixes: + - Provide a substitute implementation of lround() for MSVC, which + apparently lacks it. Patch from Gisle Vanem. + - Clean up some code issues that prevented Tor from building on older + BSDs. Fixes bug 3894; reported by "grarpamp". + - Search for a platform-specific version of "ar" when cross-compiling. + Should fix builds on iOS. Resolves bug 3909, found by Marco Bonetti. + + Changes in version 0.2.2.32 - 2011-08-27 The Tor 0.2.2 release series is dedicated to the memory of Andreas Pfitzmann (1958-2010), a pioneer in anonymity and privacy research,

1 0

[tor/release-0.2.2] bump to 0.2.2.33
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit d9ec547452a016ee07fd3048c66ada9f3de269a3 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 18:42:16 2011 -0400 bump to 0.2.2.33 --- configure.in | 2 +- contrib/tor-mingw.nsi.in | 2 +- src/win32/orconfig.h | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/configure.in b/configure.in index 09e3179..837688b 100644 --- a/configure.in +++ b/configure.in @@ -4,7 +4,7 @@ dnl Copyright (c) 2007-2008, The Tor Project, Inc. dnl See LICENSE for licensing information AC_INIT -AM_INIT_AUTOMAKE(tor, 0.2.2.32) +AM_INIT_AUTOMAKE(tor, 0.2.2.33) AM_CONFIG_HEADER(orconfig.h) AC_CANONICAL_HOST diff --git a/contrib/tor-mingw.nsi.in b/contrib/tor-mingw.nsi.in index 063dd92..4a5a484 100644 --- a/contrib/tor-mingw.nsi.in +++ b/contrib/tor-mingw.nsi.in @@ -8,7 +8,7 @@ !include "LogicLib.nsh" !include "FileFunc.nsh" !insertmacro GetParameters -!define VERSION "0.2.2.32" +!define VERSION "0.2.2.33" !define INSTALLER "tor-${VERSION}-win32.exe" !define WEBSITE "https://www.torproject.org/" !define LICENSE "LICENSE" diff --git a/src/win32/orconfig.h b/src/win32/orconfig.h index 5b0867f..323e0f1 100644 --- a/src/win32/orconfig.h +++ b/src/win32/orconfig.h @@ -233,5 +233,5 @@ #define USING_TWOS_COMPLEMENT /* Version number of package */ -#define VERSION "0.2.2.32" +#define VERSION "0.2.2.33"

1 0

[tor/release-0.2.2] fold in one more
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit 8a6a95abb468b1a8d68683ac6995c1cb6e5e9a70 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 18:34:50 2011 -0400 fold in one more --- ChangeLog | 2 ++ changes/bug4014 | 3 --- 2 files changed, 2 insertions(+), 3 deletions(-) diff --git a/ChangeLog b/ChangeLog index ba1d375..d82ba49 100644 --- a/ChangeLog +++ b/ChangeLog @@ -24,6 +24,8 @@ Changes in version 0.2.2.33 - 2011-09-?? - Change the default required uptime for a relay to be accepted as a HSDir from 24 hours to 25 hours. Improves on 0.2.0.10-alpha; resolves ticket 2649. + - Adjust the expiration time on our SSL session certificates to + better match SSL certs seen in the wild. Resolves ticket 4014. o Minor bugfixes: - Correct the man page to explain that HashedControlPassword and diff --git a/changes/bug4014 b/changes/bug4014 deleted file mode 100644 index 9c20c6c..0000000 --- a/changes/bug4014 +++ /dev/null @@ -1,3 +0,0 @@ - o Minor features: - - Adjust the expiration time on our SSL session certificates to - better match SSL certs seen in the wild. Resolves ticket 4014.

1 0

[tor/release-0.2.2] Generate our ssl session certs with a plausible lifetime
by arma＠torproject.org 13 Sep '11

13 Sep '11

commit 62ec584a3014b9b9333dcc6feb4989d1592d6d26 Author: Roger Dingledine <arma(a)torproject.org> Date: Tue Sep 13 18:24:45 2011 -0400 Generate our ssl session certs with a plausible lifetime Nobody but Tor uses certs on the wire with 2 hour lifetimes, and it makes us stand out. Resolves ticket 4014. --- changes/bug4014 | 3 +++ src/or/main.c | 8 +++++--- src/or/or.h | 4 +++- src/or/router.c | 6 ++++-- 4 files changed, 15 insertions(+), 6 deletions(-) diff --git a/changes/bug4014 b/changes/bug4014 new file mode 100644 index 0000000..9c20c6c --- /dev/null +++ b/changes/bug4014 @@ -0,0 +1,3 @@ + o Minor features: + - Adjust the expiration time on our SSL session certificates to + better match SSL certs seen in the wild. Resolves ticket 4014. diff --git a/src/or/main.c b/src/or/main.c index e44fd49..3c879dc 100644 --- a/src/or/main.c +++ b/src/or/main.c @@ -866,12 +866,14 @@ run_scheduled_events(time_t now) now + DESCRIPTOR_FAILURE_RESET_INTERVAL; } - /** 1b. Every MAX_SSL_KEY_LIFETIME seconds, we change our TLS context. */ + /** 1b. Every MAX_SSL_KEY_LIFETIME_INTERNAL seconds, we change our + * TLS context. */ if (!last_rotated_x509_certificate) last_rotated_x509_certificate = now; - if (last_rotated_x509_certificate+MAX_SSL_KEY_LIFETIME < now) { + if (last_rotated_x509_certificate+MAX_SSL_KEY_LIFETIME_INTERNAL < now) { log_info(LD_GENERAL,"Rotating tls context."); - if (tor_tls_context_new(get_identity_key(), MAX_SSL_KEY_LIFETIME) < 0) { + if (tor_tls_context_new(get_identity_key(), + MAX_SSL_KEY_LIFETIME_ADVERTISED) < 0) { log_warn(LD_BUG, "Error reinitializing TLS context"); /* XXX is it a bug here, that we just keep going? -RD */ } diff --git a/src/or/or.h b/src/or/or.h index 976ba9f..0f5b2bb 100644 --- a/src/or/or.h +++ b/src/or/or.h @@ -166,7 +166,9 @@ /** How often do we rotate onion keys? */ #define MIN_ONION_KEY_LIFETIME (7*24*60*60) /** How often do we rotate TLS contexts? */ -#define MAX_SSL_KEY_LIFETIME (2*60*60) +#define MAX_SSL_KEY_LIFETIME_INTERNAL (2*60*60) +/** What expiry time shall we place on our SSL certs? */ +#define MAX_SSL_KEY_LIFETIME_ADVERTISED (365*24*60*60) /** How old do we allow a router to get before removing it * from the router list? In seconds. */ diff --git a/src/or/router.c b/src/or/router.c index cc60041..2afde74 100644 --- a/src/or/router.c +++ b/src/or/router.c @@ -458,7 +458,8 @@ init_keys(void) } set_identity_key(prkey); /* Create a TLS context; default the client nickname to "client". */ - if (tor_tls_context_new(get_identity_key(), MAX_SSL_KEY_LIFETIME) < 0) { + if (tor_tls_context_new(get_identity_key(), + MAX_SSL_KEY_LIFETIME_ADVERTISED) < 0) { log_err(LD_GENERAL,"Error creating TLS context for Tor client."); return -1; } @@ -536,7 +537,8 @@ init_keys(void) tor_free(keydir); /* 3. Initialize link key and TLS context. */ - if (tor_tls_context_new(get_identity_key(), MAX_SSL_KEY_LIFETIME) < 0) { + if (tor_tls_context_new(get_identity_key(), + MAX_SSL_KEY_LIFETIME_ADVERTISED) < 0) { log_err(LD_GENERAL,"Error initializing TLS context"); return -1; }

1 0

← Newer
1
...
38
39
40
41
42
43
44
...
87
Older →

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

tor-commits September 2011