May 2015 - tor-commits - lists.torproject.org

[globe/master] Updating section titles to be consistent with titlecasing.
by isis＠torproject.org 21 May '15

21 May '15

commit 81c2329c519ca5fb90e17602ed27d69fbf14f017 Author: Randall Degges <r(a)rdegges.com> Date: Wed May 20 19:47:57 2015 -0700 Updating section titles to be consistent with titlecasing. --- README.md | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/README.md b/README.md index 4ec1263..d6125ff 100644 --- a/README.md +++ b/README.md @@ -12,7 +12,7 @@ Tor Onionoo Search is not affiliated with the Tor project. "Tor" and the "Onion Logo" are registered trademarks of The Tor Project, Inc. -## Use the application +## Use the Application To use a hosted version of Globe, [click here to open http://globe.rndm.de](http://globe.rndm.de/). If you want @@ -94,17 +94,17 @@ If you only want to get the required html, JavaScript and CSS files see the __Standalone grunt target__ below. -### grunt targets +### Grunt Targets -##### Development target - `grunt dev` +#### Development Target - `grunt dev` - useful for local development - uses not minified js and css - uses grunt watch to update code changes -##### Standalone target - `grunt standalone` +#### Standalone Target - `grunt standalone` - useful to create a minified version that is easy to deploy to your server - minifies all the js and css files @@ -112,20 +112,20 @@ __Standalone grunt target__ below. - used to build the resources for the running application -##### Standalone target with archive - `grunt standalone-archive` +#### Standalone Target with Archive - `grunt standalone-archive` - same as `grunt standalone` but creates archive of the build directory - used for to create release files on github -##### Continuous integration target - `grunt ci` +#### Continuous Integration Target - `grunt ci` - same targets as `grunt standalone` with additional testing of the generated files using [karma](http://karma-runner.github.io/) - used for travis continuous integration -##### Default target - `grunt` +#### Default Target - `grunt` - same as `standalone` except it won't create a build folder with all the ressources

1 0

[globe/master] Using Markdown to display the Globe logo.
by isis＠torproject.org 21 May '15

21 May '15

commit eca5c6448570f9bf4c2a56513e4d0133792a4015 Author: Randall Degges <r(a)rdegges.com> Date: Wed May 20 19:36:24 2015 -0700 Using Markdown to display the Globe logo. --- README.md | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index 3bee78d..a69b9f3 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,5 @@ - - <img src="https://raw.github.com/makepanic/globe/master/res/others/logo-big.png" alt="globe"/> - +![Globe Logo][] + JavaScript application to search and view details for Tor relays and bridges. All the data comes from the [Tor onionoo API](https://onionoo.torproject.org/). Uses [Ember.js](http://emberjs.com/) as JavaScript framework. Inspired by the official [Tor Atlas](https://atlas.torproject.org/). @@ -98,3 +97,5 @@ If you only want to get the required html, JavaScript and CSS files see the __St - same as `standalone` except it won't create a build folder with all the ressources + + [Globe Logo]: https://raw.github.com/makepanic/globe/master/res/others/logo-big.png "Globe Logo"

1 0

[globe/master] Cleaning up a lot of the readme spacing so the file is more legible.
by isis＠torproject.org 21 May '15

21 May '15

commit 3398844dedd0cd4e5be9bb1af7405fc7bf1e1085 Author: Randall Degges <r(a)rdegges.com> Date: Wed May 20 19:41:40 2015 -0700 Cleaning up a lot of the readme spacing so the file is more legible. --- README.md | 90 +++++++++++++++++++++++++++++++++++++++++-------------------- 1 file changed, 61 insertions(+), 29 deletions(-) diff --git a/README.md b/README.md index a69b9f3..4ec1263 100644 --- a/README.md +++ b/README.md @@ -1,19 +1,29 @@ ![Globe Logo][] +[![Build Status](https://travis-ci.org/makepanic/globe.png?branch=master)](https://t… -JavaScript application to search and view details for Tor relays and bridges. All the data comes from the [Tor onionoo API](https://onionoo.torproject.org/). Uses [Ember.js](http://emberjs.com/) as JavaScript framework. -Inspired by the official [Tor Atlas](https://atlas.torproject.org/). -Tor Onionoo Search is not affiliated with the Tor project. "Tor" and the "Onion Logo" are registered trademarks of The Tor Project, Inc. +JavaScript application to search and view details for Tor relays and bridges. +All the data comes from the [Tor onionoo API](https://onionoo.torproject.org/). +Uses [Ember.js](http://emberjs.com/) as JavaScript framework. Inspired by the +official [Tor Atlas](https://atlas.torproject.org/). -##Use the application [![Build Status](https://travis-ci.org/makepanic/globe.png?branch=master)](https://t… +Tor Onionoo Search is not affiliated with the Tor project. "Tor" and the "Onion +Logo" are registered trademarks of The Tor Project, Inc. -To use a hosted version of Globe, [click here to open http://globe.rndm.de](http://globe.rndm.de/). -If you want to build your own version take a look at the [grunt targets](#grunt-targets) section. -If you can't or don't want to build the application on your own, you could download the latest archived relase from [the release page](https://github.com/makepanic/globe/releases). +## Use the application -##Features +To use a hosted version of Globe, +[click here to open http://globe.rndm.de](http://globe.rndm.de/). If you want +to build your own version take a look at the [grunt targets](#grunt-targets) +section. + +If you can't or don't want to build the application on your own, you could +download the latest archived relase from [the release page](https://github.com/makepanic/globe/releases). + + +## Features - search for bridges or relays - advanced search with country, running, flags and other filters @@ -21,9 +31,11 @@ If you can't or don't want to build the application on your own, you could downl - interactive graphs using dygraphs - shareable links for searches or details -##License -Globe is open-sourced software licensed under the [MIT license](http://opensource.org/licenses/MIT) +## License + +Globe is open-sourced software licensed under the +[MIT license](http://opensource.org/licenses/MIT) Project | License --- | --- @@ -40,60 +52,80 @@ Project | License [jquery deparam](https://github.com/chrissrogers/jquery-deparam/blob/master/jquery-… | [MIT license](http://opensource.org/licenses/MIT) [@](http://benalman.com/about/license/) [jsSHA](http://caligatio.github.io/jsSHA/) | [BSD license](https://github.com/Caligatio/jsSHA/blob/release-1.42/LICENSE) -##Installation -Globe is tested and build with nodejs (0.10.x). For an easy overview on how to install node on your distribution look at +## Installation + +Globe is tested and build with nodejs (0.10.x). For an easy overview on how +to install node on your distribution look at [Installing Node.js via package manager](https://github.com/joyent/node/wiki/Installing-Node.js-via-package…. -In addition to that, globe can be built in a virtual machine that is managed using [Vagrant](http://www.vagrantup.com/). -To make it easier for you, we provide a [Vagrantfile](https://gitweb.torproject.org/globe.git/blob/HEAD:/Vagrantfile) that builds an ubuntu (12.04) virtual machine -with everything necessary for developing and building globe. If you have vagrant installed run `vagrant up` and wait until everything is ready. +In addition to that, globe can be built in a virtual machine that is managed +using [Vagrant](http://www.vagrantup.com/). To make it easier for you, we +provide a [Vagrantfile](https://gitweb.torproject.org/globe.git/blob/HEAD:/Vagrantfile) +that builds an ubuntu (12.04) virtual machine with everything necessary for +developing and building globe. If you have vagrant installed run `vagrant up` +and wait until everything is ready. + +Connect to your running virtual machine via `vagrant ssh`. Using the shared +folder (`cd /vagrant/`) you can continue building globe using the following +commands. -Connect to your running virtual machine via `vagrant ssh`. -Using the shared folder (`cd /vagrant/`) you can continue building globe using the following commands. -###Summary: +### Summary: 1. `npm install` (not necessary in the vagrant machine) 2. `grunt` 3. `node app.js` -###Explanation + +### Explanation 1. First you need all the npm dependencies. Run `npm install`. -2. Now you're ready to build the application and start the server. Call `grunt` and wait for it to complete the build process. Grunt precompiles the handlebars templates, combines all the different JavaScript and CSS files and minifies them. This can take a while depending on your computer. +2. Now you're ready to build the application and start the server. Call + `grunt` and wait for it to complete the build process. Grunt precompiles + the handlebars templates, combines all the different JavaScript and CSS + files and minifies them. This can take a while depending on your computer. -3. If it's done start the server using `node app.js`. This will start a simple [express.js](http://expressjs.com/) server that handles the requests. +3. If it's done start the server using `node app.js`. This will start a simple + [express.js](http://expressjs.com/) server that handles the requests. -If you only want to get the required html, JavaScript and CSS files see the __Standalone grunt target__ below. +If you only want to get the required html, JavaScript and CSS files see the +__Standalone grunt target__ below. -###grunt targets -#####Development target - `grunt dev` +### grunt targets + + +##### Development target - `grunt dev` - useful for local development - uses not minified js and css - uses grunt watch to update code changes -#####Standalone target - `grunt standalone` + +##### Standalone target - `grunt standalone` - useful to create a minified version that is easy to deploy to your server - minifies all the js and css files - creates a `/build` folder that has all the required resources - used to build the resources for the running application -#####Standalone target with archive - `grunt standalone-archive` + +##### Standalone target with archive - `grunt standalone-archive` - same as `grunt standalone` but creates archive of the build directory - used for to create release files on github -#####Continuous integration target - `grunt ci` -- same targets as `grunt standalone` with additional testing of the generated files using [karma](http://karma-runner.github.io/) +##### Continuous integration target - `grunt ci` + +- same targets as `grunt standalone` with additional testing of the generated + files using [karma](http://karma-runner.github.io/) - used for travis continuous integration -#####Default target - `grunt` + +##### Default target - `grunt` - same as `standalone` except it won't create a build folder with all the ressources

1 0

[tor/master] 19:38 < Yawning> nickm: you left the "+#ifndef SSL_clear_mode" block in ; _;
by nickm＠torproject.org 20 May '15

20 May '15

commit 0534d46bda80cd36d6e9ba1b096f9d0aed4dcfe3 Author: Nick Mathewson <nickm(a)torproject.org> Date: Wed May 20 15:40:42 2015 -0400 19:38 < Yawning> nickm: you left the "+#ifndef SSL_clear_mode" block in ;_; --- src/common/tortls.c | 8 -------- 1 file changed, 8 deletions(-) diff --git a/src/common/tortls.c b/src/common/tortls.c index cd585f4..4a1abac 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -2189,14 +2189,6 @@ tor_tls_handshake(tor_tls_t *tls) return r; } -/* SSL_clear_mode was introduced in 0.9.8m */ -#ifndef SSL_clear_mode -static void SSL_clear_mode(SSL *s, unsigned long m) -{ - s->mode &= ~m; -} -#endif - /** Perform the final part of the intial TLS handshake on tls. This * should be called for the first handshake only: it determines whether the v1 * or the v2 handshake was used, and adjusts things for the renegotiation

1 0

[tor/master] Drop support for OpenSSLs without AES_CTR
by nickm＠torproject.org 20 May '15

20 May '15

commit e9677c8f8d3a24bc572d63dd85fa14e8d596ad78 Author: Nick Mathewson <nickm(a)torproject.org> Date: Wed May 20 10:23:23 2015 -0400 Drop support for OpenSSLs without AES_CTR --- src/common/aes.c | 28 ++-------------------------- 1 file changed, 2 insertions(+), 26 deletions(-) diff --git a/src/common/aes.c b/src/common/aes.c index 7651f1d..d75a4a7 100644 --- a/src/common/aes.c +++ b/src/common/aes.c @@ -32,11 +32,7 @@ #include <openssl/evp.h> #include <openssl/engine.h> #include "crypto.h" -#if OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,0) -/* See comments about which counter mode implementation to use below. */ #include <openssl/modes.h> -#define CAN_USE_OPENSSL_CTR -#endif #include "compat.h" #include "aes.h" #include "util.h" @@ -189,11 +185,9 @@ struct aes_cnt_cipher { * we're testing it or because we have hardware acceleration configured */ static int should_use_EVP = 0; -#ifdef CAN_USE_OPENSSL_CTR /** True iff we have tested the counter-mode implementation and found that it * doesn't have the counter-mode bug from OpenSSL 1.0.0. */ static int should_use_openssl_CTR = 0; -#endif /** Check whether we should use the EVP interface for AES. If force_val * is nonnegative, we use use EVP iff it is true. Otherwise, we use EVP @@ -235,7 +229,6 @@ evaluate_evp_for_aes(int force_val) int evaluate_ctr_for_aes(void) { -#ifdef CAN_USE_OPENSSL_CTR /* Result of encrypting an all-zero block with an all-zero 128-bit AES key. * This should be the same as encrypting an all-zero block with an all-zero * 128-bit AES key in counter mode, starting at position 0 of the stream. @@ -268,10 +261,6 @@ evaluate_ctr_for_aes(void) "mode; using it."); should_use_openssl_CTR = 1; } -#else - log_info(LD_CRYPTO, "This version of OpenSSL has a slow implementation of " - "counter mode; not using it."); -#endif return 0; } @@ -356,11 +345,9 @@ aes_set_key(aes_cnt_cipher_t *cipher, const char *key, int key_bits) cipher->pos = 0; -#ifdef CAN_USE_OPENSSL_CTR if (should_use_openssl_CTR) memset(cipher->buf, 0, sizeof(cipher->buf)); else -#endif aes_fill_buf_(cipher); } @@ -386,7 +373,6 @@ aes_cipher_free(aes_cnt_cipher_t *cipher) #define UPDATE_CTR_BUF(c, n) #endif -#ifdef CAN_USE_OPENSSL_CTR /* Helper function to use EVP with openssl's counter-mode wrapper. */ static void evp_block128_fn(const uint8_t in[16], @@ -397,7 +383,6 @@ evp_block128_fn(const uint8_t in[16], int inl=16, outl=16; EVP_EncryptUpdate(ctx, out, &outl, in, inl); } -#endif /** Encrypt len bytes from input, storing the result in * output. Uses the key in cipher, and advances the counter @@ -407,7 +392,6 @@ void aes_crypt(aes_cnt_cipher_t *cipher, const char *input, size_t len, char *output) { -#ifdef CAN_USE_OPENSSL_CTR if (should_use_openssl_CTR) { if (cipher->using_evp) { /* In openssl 1.0.0, there's an if'd out EVP_aes_128_ctr in evp.h. If @@ -431,9 +415,7 @@ aes_crypt(aes_cnt_cipher_t *cipher, const char *input, size_t len, &cipher->pos); } return; - } else -#endif - { + } else { int c = cipher->pos; if (PREDICT_UNLIKELY(!len)) return; @@ -466,13 +448,10 @@ aes_crypt(aes_cnt_cipher_t *cipher, const char *input, size_t len, void aes_crypt_inplace(aes_cnt_cipher_t *cipher, char *data, size_t len) { -#ifdef CAN_USE_OPENSSL_CTR if (should_use_openssl_CTR) { aes_crypt(cipher, data, len, data); return; - } else -#endif - { + } else { int c = cipher->pos; if (PREDICT_UNLIKELY(!len)) return; @@ -512,11 +491,8 @@ aes_set_iv(aes_cnt_cipher_t *cipher, const char *iv) cipher->pos = 0; memcpy(cipher->ctr_buf.buf, iv, 16); -#ifdef CAN_USE_OPENSSL_CTR if (!should_use_openssl_CTR) -#endif aes_fill_buf_(cipher); } #endif -

1 0

[tor/master] Merge branch 'bug16034_no_more_openssl_098_squashed'
by nickm＠torproject.org 20 May '15

20 May '15

commit ed02a409cfdd51671ff1d80c86cfc7d6458f201f Merge: 32bd533 e9677c8 Author: Nick Mathewson <nickm(a)torproject.org> Date: Wed May 20 15:33:22 2015 -0400 Merge branch 'bug16034_no_more_openssl_098_squashed' Conflicts: src/test/testing_common.c changes/ticket16034 | 6 + src/common/aes.c | 28 +---- src/common/crypto.c | 48 +++----- src/common/crypto.h | 2 +- src/common/tortls.c | 300 ++++++++++++++++++++++----------------------- src/common/tortls.h | 2 +- src/or/main.c | 15 +-- src/test/bench.c | 5 +- src/test/test_crypto.c | 2 +- src/test/test_workqueue.c | 2 +- src/test/testing_common.c | 2 +- src/tools/tor-gencert.c | 2 +- 12 files changed, 190 insertions(+), 224 deletions(-) diff --cc src/or/main.c index 3fb7de6,3f785a2..74e6b33 --- a/src/or/main.c +++ b/src/or/main.c @@@ -1333,10 -1314,10 +1333,10 @@@ run_scheduled_events(time_t now * connection_run_housekeeping() above. */ } - if (time_to_add_entropy < now) { - if (time_to_add_entropy) { + if (time_to.add_entropy < now) { + if (time_to.add_entropy) { /* We already seeded once, so don't die on failure. */ - crypto_seed_rng(0); + crypto_seed_rng(); } /** How often do we add more entropy to OpenSSL's RNG pool? */ #define ENTROPY_INTERVAL (60*60) diff --cc src/test/testing_common.c index 60be460,e0c0046..7f387c0 --- a/src/test/testing_common.c +++ b/src/test/testing_common.c @@@ -269,8 -269,8 +269,8 @@@ main(int c, const char **v printf("Can't initialize crypto subsystem; exiting.\n"); return 1; } - crypto_set_tls_dh_prime(NULL); + crypto_set_tls_dh_prime(); - crypto_seed_rng(1); + crypto_seed_rng(); rep_hist_init(); network_init(); setup_directory();

1 0

[tor/master] Stop poking SSL_CTX->comp_methods
by nickm＠torproject.org 20 May '15

20 May '15

commit f0a0568e7f77224dea9ecbc22ca159a12e75d4a9 Author: Nick Mathewson <nickm(a)torproject.org> Date: Thu May 14 10:24:02 2015 -0400 Stop poking SSL_CTX->comp_methods --- src/common/tortls.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/src/common/tortls.c b/src/common/tortls.c index 168fd56..e0265b4 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -1365,12 +1365,17 @@ tor_tls_context_new(crypto_pk_t *identity, unsigned int key_lifetime, SSL_CTX_set_options(result->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); } +#ifdef SSL_OP_NO_COMPRESSION + SSL_CTX_set_options(result->ctx, SSL_OP_NO_COMPRESSION); +#endif +#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,1,0) #ifndef OPENSSL_NO_COMP /* Don't actually allow compression; it uses ram and time, but the data * we transmit is all encrypted anyway. */ if (result->ctx->comp_methods) result->ctx->comp_methods = NULL; #endif +#endif #ifdef SSL_MODE_RELEASE_BUFFERS SSL_CTX_set_mode(result->ctx, SSL_MODE_RELEASE_BUFFERS); #endif

1 0

[tor/master] Remove code to support OpenSSL 0.9.8
by nickm＠torproject.org 20 May '15

20 May '15

commit 971f0f8e18c0f3ea9f2aa74a54951235269a1cd1 Author: Nick Mathewson <nickm(a)torproject.org> Date: Tue May 19 16:14:20 2015 -0400 Remove code to support OpenSSL 0.9.8 --- changes/ticket16034 | 6 +++ src/common/crypto.c | 36 +++------------ src/common/tortls.c | 128 ++++----------------------------------------------- src/test/bench.c | 3 +- 4 files changed, 24 insertions(+), 149 deletions(-) diff --git a/changes/ticket16034 b/changes/ticket16034 new file mode 100644 index 0000000..b909946 --- /dev/null +++ b/changes/ticket16034 @@ -0,0 +1,6 @@ + o Removed features: + + - Tor no longer supports versions of OpenSSL before 1.0. (If you + are on an operating system that has not upgraded to OpenSSL 1.0 + or later, and you compile Tor from source, you will need to + install a more recent OpenSSL to link Tor against.) diff --git a/src/common/crypto.c b/src/common/crypto.c index a68294a..0feed1c 100644 --- a/src/common/crypto.c +++ b/src/common/crypto.c @@ -58,8 +58,8 @@ #include "compat.h" #include "sandbox.h" -#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(0,9,8) -#error "We require OpenSSL >= 0.9.8" +#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,0,0) +#error "We require OpenSSL >= 1.0.0" #endif #ifdef ANDROID @@ -300,13 +300,6 @@ crypto_early_init(void) SSLeay(), SSLeay_version(SSLEAY_VERSION)); } - if (SSLeay() < OPENSSL_V_SERIES(1,0,0)) { - log_notice(LD_CRYPTO, - "Your OpenSSL version seems to be %s. We recommend 1.0.0 " - "or later.", - crypto_openssl_get_version_str()); - } - crypto_force_rand_ssleay(); if (crypto_seed_rng(1) < 0) @@ -2423,15 +2416,6 @@ crypto_dh_free(crypto_dh_t *dh) * work for us too. */ #define ADD_ENTROPY 32 -/** True iff it's safe to use RAND_poll after setup. - * - * Versions of OpenSSL prior to 0.9.7k and 0.9.8c had a bug where RAND_poll - * would allocate an fd_set on the stack, open a new file, and try to FD_SET - * that fd without checking whether it fit in the fd_set. Thus, if the - * system has not just been started up, it is unsafe to call */ -#define RAND_POLL_IS_SAFE \ - (OPENSSL_VERSION_NUMBER >= OPENSSL_V(0,9,8,'c')) - /** Set the seed of the weak RNG to a random value. */ void crypto_seed_weak_rng(tor_weak_rng_t *rng) @@ -2506,14 +2490,14 @@ crypto_seed_rng(int startup) int rand_poll_ok = 0, load_entropy_ok = 0; uint8_t buf[ADD_ENTROPY]; + (void) startup; + /* OpenSSL has a RAND_poll function that knows about more kinds of * entropy than we do. We'll try calling that, *and* calling our own entropy * functions. If one succeeds, we'll accept the RNG as seeded. */ - if (startup || RAND_POLL_IS_SAFE) { - rand_poll_ok = RAND_poll(); - if (rand_poll_ok == 0) - log_warn(LD_CRYPTO, "RAND_poll() failed."); - } + rand_poll_ok = RAND_poll(); + if (rand_poll_ok == 0) + log_warn(LD_CRYPTO, "RAND_poll() failed."); load_entropy_ok = !crypto_strongest_rand(buf, sizeof(buf)); if (load_entropy_ok) { @@ -3123,13 +3107,11 @@ openssl_dynlock_destroy_cb_(struct CRYPTO_dynlock_value *v, tor_free(v); } -#if OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,0) static void tor_set_openssl_thread_id(CRYPTO_THREADID *threadid) { CRYPTO_THREADID_set_numeric(threadid, tor_get_thread_id()); } -#endif /** @{ */ /** Helper: Construct mutexes, and set callbacks to help OpenSSL handle being @@ -3144,11 +3126,7 @@ setup_openssl_threading(void) for (i=0; i < n; ++i) openssl_mutexes_[i] = tor_mutex_new(); CRYPTO_set_locking_callback(openssl_locking_cb_); -#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,0,0) - CRYPTO_set_id_callback(tor_get_thread_id); -#else CRYPTO_THREADID_set_callback(tor_set_openssl_thread_id); -#endif CRYPTO_set_dynlock_create_callback(openssl_dynlock_create_cb_); CRYPTO_set_dynlock_lock_callback(openssl_dynlock_lock_cb_); CRYPTO_set_dynlock_destroy_callback(openssl_dynlock_destroy_cb_); diff --git a/src/common/tortls.c b/src/common/tortls.c index e0265b4..cc76537 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -75,8 +75,8 @@ #include "container.h" #include <string.h> -#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(0,9,8) -#error "We require OpenSSL >= 0.9.8" +#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,0,0) +#error "We require OpenSSL >= 1.0.0" #endif /* Enable the "v2" TLS handshake. @@ -93,10 +93,8 @@ #define ADDR(tls) (((tls) && (tls)->address) ? tls->address : "peer") -#if (OPENSSL_VERSION_NUMBER < OPENSSL_V(0,9,8,'s') || \ - (OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(0,9,9) && \ - OPENSSL_VERSION_NUMBER < OPENSSL_V(1,0,0,'f'))) -/* This is a version of OpenSSL before 0.9.8s/1.0.0f. It does not have +#if OPENSSL_VERSION_NUMBER < OPENSSL_V(1,0,0,'f') +/* This is a version of OpenSSL before 1.0.0f. It does not have * the CVE-2011-4576 fix, and as such it can't use RELEASE_BUFFERS and * SSL3 safely at the same time. */ @@ -114,20 +112,6 @@ #define SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION 0x0010 #endif -/** Does the run-time openssl version look like we need - * SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION? */ -static int use_unsafe_renegotiation_op = 0; -/** Does the run-time openssl version look like we need - * SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION? */ -static int use_unsafe_renegotiation_flag = 0; -#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,1,0) -/* If we have openssl 1.1, we just trust that the "mode" will work, and don't - * use the "flag" at all. Nobody would forward-port that weird little glitch - * from 0.9.8l to 1.1, would they? - */ -#define SUPPORT_UNSAFE_RENEGOTIATION_FLAG -#endif - /** Structure that we use for a single certificate. */ struct tor_cert_t { X509 *cert; @@ -492,56 +476,6 @@ tor_tls_init(void) version = SSLeay(); - /* OpenSSL 0.9.8l introduced SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION - * here, but without thinking too hard about it: it turns out that the - * flag in question needed to be set at the last minute, and that it - * conflicted with an existing flag number that had already been added - * in the OpenSSL 1.0.0 betas. OpenSSL 0.9.8m thoughtfully replaced - * the flag with an option and (it seems) broke anything that used - * SSL3_FLAGS_* for the purpose. So we need to know how to do both, - * and we mustn't use the SSL3_FLAGS option with anything besides - * OpenSSL 0.9.8l. - * - * No, we can't just set flag 0x0010 everywhere. It breaks Tor with - * OpenSSL 1.0.0beta3 and later. On the other hand, we might be able to - * set option 0x00040000L everywhere. - * - * No, we can't simply detect whether the flag or the option is present - * in the headers at build-time: some vendors (notably Apple) like to - * leave their headers out of sync with their libraries. - * - * Yes, it _is_ almost as if the OpenSSL developers decided that no - * program should be allowed to use renegotiation unless it first passed - * a test of intelligence and determination. - */ - if (version > OPENSSL_V(0,9,8,'k') && version <= OPENSSL_V(0,9,8,'l')) { - log_info(LD_GENERAL, "OpenSSL %s looks like version 0.9.8l, but " - "some vendors have backported renegotiation code from " - "0.9.8m without updating the version number. " - "I will try SSL3_FLAGS and SSL_OP to enable renegotation.", - SSLeay_version(SSLEAY_VERSION)); - use_unsafe_renegotiation_flag = 1; - use_unsafe_renegotiation_op = 1; - } else if (version > OPENSSL_V(0,9,8,'l')) { - log_info(LD_GENERAL, "OpenSSL %s looks like version 0.9.8m or later; " - "I will try SSL_OP to enable renegotiation", - SSLeay_version(SSLEAY_VERSION)); - use_unsafe_renegotiation_op = 1; - } else if (version <= OPENSSL_V(0,9,8,'k')) { - log_info(LD_GENERAL, "OpenSSL %s [%lx] looks like it's older than " - "0.9.8l, but some vendors have backported 0.9.8l's " - "renegotiation code to earlier versions, and some have " - "backported the code from 0.9.8m or 0.9.8n. I'll set both " - "SSL3_FLAGS and SSL_OP just to be safe.", - SSLeay_version(SSLEAY_VERSION), version); - use_unsafe_renegotiation_flag = 1; - use_unsafe_renegotiation_op = 1; - } else { - /* this is dead code, yes? */ - log_info(LD_GENERAL, "OpenSSL %s has version %lx", - SSLeay_version(SSLEAY_VERSION), version); - } - #if (SIZEOF_VOID_P >= 8 && \ !defined(OPENSSL_NO_EC) && \ OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,1)) @@ -1333,24 +1267,6 @@ tor_tls_context_new(crypto_pk_t *identity, unsigned int key_lifetime, } #endif - /* XXX This block is now obsolete. */ - if ( -#ifdef DISABLE_SSL3_HANDSHAKE - 1 || -#endif - SSLeay() < OPENSSL_V(0,9,8,'s') || - (SSLeay() >= OPENSSL_V_SERIES(0,9,9) && - SSLeay() < OPENSSL_V(1,0,0,'f'))) { - /* And not SSL3 if it's subject to CVE-2011-4576. */ - log_info(LD_NET, "Disabling SSLv3 because this OpenSSL version " - "might otherwise be vulnerable to CVE-2011-4576 " - "(compile-time version %08lx (%s); " - "runtime version %08lx (%s))", - (unsigned long)OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT, - (unsigned long)SSLeay(), SSLeay_version(SSLEAY_VERSION)); - SSL_CTX_set_options(result->ctx, SSL_OP_NO_SSLv3); - } - SSL_CTX_set_options(result->ctx, SSL_OP_SINGLE_DH_USE); SSL_CTX_set_options(result->ctx, SSL_OP_SINGLE_ECDH_USE); @@ -1361,7 +1277,7 @@ tor_tls_context_new(crypto_pk_t *identity, unsigned int key_lifetime, /* Yes, we know what we are doing here. No, we do not treat a renegotiation * as authenticating any earlier-received data. */ - if (use_unsafe_renegotiation_op) { + { SSL_CTX_set_options(result->ctx, SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); } @@ -1410,8 +1326,7 @@ tor_tls_context_new(crypto_pk_t *identity, unsigned int key_lifetime, SSL_CTX_set_tmp_dh(result->ctx, crypto_dh_get_dh_(dh)); crypto_dh_free(dh); } -#if (!defined(OPENSSL_NO_EC) && \ - OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,0)) +#if !defined(OPENSSL_NO_EC) if (! is_client) { int nid; EC_KEY *ec_key; @@ -1769,10 +1684,6 @@ tor_tls_server_info_callback(const SSL *ssl, int type, int val) if (tls) { tls->wasV2Handshake = 1; -#if (defined(USE_BUFFEREVENTS) && defined(SUPPORT_UNSAFE_RENEGOTATION_FLAG)) - if (use_unsafe_renegotiation_flag) - tls->ssl->s3->flags |= SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION; -#endif } else { log_warn(LD_BUG, "Couldn't look up the tls for an SSL*. How odd!"); } @@ -1780,7 +1691,6 @@ tor_tls_server_info_callback(const SSL *ssl, int type, int val) } #endif -#if OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,0) /** Callback to get invoked on a server after we've read the list of ciphers * the client supports, but before we pick our own ciphersuite. * @@ -1818,9 +1728,6 @@ tor_tls_setup_session_secret_cb(tor_tls_t *tls) { SSL_set_session_secret_cb(tls->ssl, tor_tls_session_secret_cb, NULL); } -#else -#define tor_tls_setup_session_secret_cb(tls) STMT_NIL -#endif /** Explain which ciphers we're missing. */ static void @@ -2098,15 +2005,8 @@ tor_tls_unblock_renegotiation(tor_tls_t *tls) { /* Yes, we know what we are doing here. No, we do not treat a renegotiation * as authenticating any earlier-received data. */ -#ifdef SUPPORT_UNSAFE_RENEGOTIATION_FLAG - if (use_unsafe_renegotiation_flag) { - tls->ssl->s3->flags |= SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION; - } -#endif - if (use_unsafe_renegotiation_op) { - SSL_set_options(tls->ssl, - SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); - } + SSL_set_options(tls->ssl, + SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION); } /** If this version of openssl supports it, turn off renegotiation on @@ -2127,16 +2027,8 @@ tor_tls_block_renegotiation(tor_tls_t *tls) void tor_tls_assert_renegotiation_unblocked(tor_tls_t *tls) { -#ifdef SUPPORT_UNSAFE_RENEGOTIATION_FLAG - if (use_unsafe_renegotiation_flag) { - tor_assert(0 != (tls->ssl->s3->flags & - SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION)); - } -#endif - if (use_unsafe_renegotiation_op) { - long options = SSL_get_options(tls->ssl); - tor_assert(0 != (options & SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION)); - } + long options = SSL_get_options(tls->ssl); + tor_assert(0 != (options & SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION)); } /** Return whether this tls initiated the connect (client) or diff --git a/src/test/bench.c b/src/test/bench.c index 5cbc072..6909e73 100644 --- a/src/test/bench.c +++ b/src/test/bench.c @@ -502,8 +502,7 @@ bench_dh(void) " %f millisec each.\n", NANOCOUNT(start, end, iters)/1e6); } -#if (!defined(OPENSSL_NO_EC) \ - && OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,0)) +#if !defined(OPENSSL_NO_EC) #define HAVE_EC_BENCHMARKS static void bench_ecdh_impl(int nid, const char *name)

1 0

[tor/master] Use SSL_CIPHER_find where possible.
by nickm＠torproject.org 20 May '15

20 May '15

commit 496df21c89d1425ff06dc9067d2cd4eb076a412c Author: Nick Mathewson <nickm(a)torproject.org> Date: Thu May 14 10:14:06 2015 -0400 Use SSL_CIPHER_find where possible. --- src/common/tortls.c | 29 ++++++++++++++++++++++------- 1 file changed, 22 insertions(+), 7 deletions(-) diff --git a/src/common/tortls.c b/src/common/tortls.c index 75d390f..bbbf6c7 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -1518,10 +1518,23 @@ static int v2_cipher_list_pruned = 0; /** Return 0 if m does not support the cipher with ID cipher; * return 1 if it does support it, or if we have no way to tell. */ static int -find_cipher_by_id(const SSL_METHOD *m, uint16_t cipher) +find_cipher_by_id(const SSL *ssl, const SSL_METHOD *m, uint16_t cipher) { const SSL_CIPHER *c; -#ifdef HAVE_STRUCT_SSL_METHOD_ST_GET_CIPHER_BY_CHAR +#if OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,0,2) + { + unsigned char cipherid[3]; + tor_assert(ssl); + set_uint16(cipherid, htons(cipher)); + cipherid[2] = 0; /* If ssl23_get_cipher_by_char finds no cipher starting + * with a two-byte 'cipherid', it may look for a v2 + * cipher with the appropriate 3 bytes. */ + c = SSL_CIPHER_find((SSL*)ssl, cipherid); + if (c) + tor_assert((c->id & 0xffff) == cipher); + return c != NULL; + } +#elif defined(HAVE_STRUCT_SSL_METHOD_ST_GET_CIPHER_BY_CHAR) if (m && m->get_cipher_by_char) { unsigned char cipherid[3]; set_uint16(cipherid, htons(cipher)); @@ -1534,6 +1547,7 @@ find_cipher_by_id(const SSL_METHOD *m, uint16_t cipher) return c != NULL; } else #endif +#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,1,0) if (m && m->get_cipher && m->num_ciphers) { /* It would seem that some of the "let's-clean-up-openssl" forks have * removed the get_cipher_by_char function. Okay, so now you get a @@ -1547,23 +1561,24 @@ find_cipher_by_id(const SSL_METHOD *m, uint16_t cipher) } } return 0; - } else { - return 1; /* No way to search */ } +#endif + (void) ssl; + return 1; /* No way to search */ } /** Remove from v2_cipher_list every cipher that we don't support, so that * comparing v2_cipher_list to a client's cipher list will give a sensible * result. */ static void -prune_v2_cipher_list(void) +prune_v2_cipher_list(const SSL *ssl) { uint16_t *inp, *outp; const SSL_METHOD *m = SSLv23_method(); inp = outp = v2_cipher_list; while (*inp) { - if (find_cipher_by_id(m, *inp)) { + if (find_cipher_by_id(ssl, m, *inp)) { *outp++ = *inp++; } else { inp++; @@ -1585,7 +1600,7 @@ tor_tls_classify_client_ciphers(const SSL *ssl, int i, res; tor_tls_t *tor_tls; if (PREDICT_UNLIKELY(!v2_cipher_list_pruned)) - prune_v2_cipher_list(); + prune_v2_cipher_list(ssl); tor_tls = tor_tls_get_by_ssl(ssl); if (tor_tls && tor_tls->client_cipher_list_type)

1 0

[tor/master] Try using SSL_get_ciphers in place of session->ciphers
by nickm＠torproject.org 20 May '15

20 May '15

commit 67964cfa787461bc56380fe46439fd5c9863bb4f Author: Nick Mathewson <nickm(a)torproject.org> Date: Thu May 14 08:42:08 2015 -0400 Try using SSL_get_ciphers in place of session->ciphers This should help openssl 1.1. On pre-1.1, we double-check that these two methods give us the same list, since the underlying code is awfully hairy. --- src/common/tortls.c | 34 +++++++++++++++++++++++++++++----- 1 file changed, 29 insertions(+), 5 deletions(-) diff --git a/src/common/tortls.c b/src/common/tortls.c index 08966b6..75d390f 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -1663,13 +1663,37 @@ tor_tls_classify_client_ciphers(const SSL *ssl, static int tor_tls_client_is_using_v2_ciphers(const SSL *ssl) { - SSL_SESSION *session; - if (!(session = SSL_get_session((SSL *)ssl))) { - log_info(LD_NET, "No session on TLS?"); - return CIPHERS_ERR; + STACK_OF(SSL_CIPHER) *ciphers = SSL_get_ciphers(ssl); + +#if OPENSSL_VERSION_NUMBER < OPENSSL_V_SERIES(1,1,0) + { + SSL_SESSION *session; + STACK_OF(SSL_CIPHER) *c1; + int i; + if (!(session = SSL_get_session((SSL *)ssl))) { + log_info(LD_NET, "No session on TLS?"); + return CIPHERS_ERR; + } + c1 = session->ciphers; + + if (sk_SSL_CIPHER_num(c1) != sk_SSL_CIPHER_num(ciphers)) { + log_warn(LD_BUG, "Whoops. session->ciphers doesn't " + "match SSL_get_ciphers()"); + return 0; + } + for (i = 0; i < sk_SSL_CIPHER_num(c1); ++i) { + SSL_CIPHER *a = sk_SSL_CIPHER_value(ciphers, i); + SSL_CIPHER *b = sk_SSL_CIPHER_value(c1, i); + if (a->id != b->id) { + log_warn(LD_BUG, "Cipher mismatch between session->ciphers and " + "SSL_get_ciphers() at %d: %u vs %u", i, + (unsigned)a, (unsigned)b); + } + } } +#endif - return tor_tls_classify_client_ciphers(ssl, session->ciphers) >= CIPHERS_V2; + return tor_tls_classify_client_ciphers(ssl, ciphers) >= CIPHERS_V2; } /** Invoked when we're accepting a connection on ssl, and the connection

1 0