commit c1482145a738b9378ee6a5f7067544bea7414f34
Author: Yawning Angel yawn...@schwanenlied.me
Date: Wed May 21 08:06:36 2014 +
Add IsClient and IsServer.
Both methods only examine TOR_PT_[CLIENT,SERVER]_TRANSPORTS, so they
are not substitues for ClientSetup/ServerSetup
commit 15b960d55905877a840fe605a41a8139bffb5329
Author: Yawning Angel yawn...@schwanenlied.me
Date: Wed May 21 09:31:00 2014 +
Add StateLocation to ClientInfo/ServerInfo.
Per the pt spec, this is always set, the only place where managed
proxies should store files
commit 6d42c7b0e3902ad8b40b17ef096bb79d50ec56f1
Author: Yawning Angel yawn...@schwanenlied.me
Date: Fri May 23 06:43:24 2014 +
Implement MakeStateDir() instead of messing with the info structs.
This fixes bug #12088.
---
pt.go | 35
commit 8a3eb4b30965975951a92dde8f68ce17cb08ac8e
Author: Yawning Angel yawn...@torproject.org
Date: Wed Jun 25 16:03:18 2014 +
Change the import paths to point to the tp.o repository.
---
drbg/hash_drbg.go |2 +-
framing/framing.go |4 ++--
handshake_ntor.go
commit dd9fdee55d75e23fff97177999b7fd16613fa27a
Author: Yawning Angel yawn...@torproject.org
Date: Wed Aug 20 13:43:43 2014 +
Add a missing continue statement.
Caught by asn, thanks.
---
obfs4proxy/obfs4proxy.go |1 +
1 file changed, 1 insertion(+)
diff --git a/obfs4proxy
commit 596cc8507340a1233defe5bf88e6e2a400cc7f9f
Author: Yawning Angel yawn...@torproject.org
Date: Wed Aug 20 22:44:07 2014 +
Elide the error out from most logs unless unsafeLogging is set.
The Golang runtime will happily splatter the remote IP address and port
commit 1e574942d586bb26f659f9ebee9ec90d778ecb97
Author: Yawning Angel yawn...@torproject.org
Date: Sat Aug 23 05:33:23 2014 +
Change all the arguments to use base16 from base64.
WARNING: THIS BREAKS BACKWARD COMPATIBILITY.
This is primarily to work around bug #12930
commit 83c9e3b9a0dada08712c8edb6cab3fda6d0a8a8b
Author: Yawning Angel yawn...@torproject.org
Date: Wed Aug 27 03:46:23 2014 +
Add a ChangeLog and dump the version when invoked with -v.
---
ChangeLog|2 ++
obfs4proxy/obfs4proxy.go | 11 +++
2 files changed
commit 468cd4bde80419824beb20d02c32315f46288d13
Author: Yawning Angel yawn...@torproject.org
Date: Wed Aug 27 03:52:22 2014 +
Display a more useful error on JSON Unmarshall failure.
---
transports/obfs4/statefile.go |5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff
commit 94d3fe9a0802e2614d4a4b9297ed57b1979865fc
Author: Yawning Angel yawn...@torproject.org
Date: Wed Aug 27 12:26:09 2014 +
Change the TYPE_PRNG_SEED length to 24.
This matches what the code actually sends. It's shorter than the
ScrambleSuit PRNG seed, but that's because
commit bfca92cf1627c2e380eb44f4314bb121935108ec
Author: Yawning Angel yawn...@torproject.org
Date: Wed Aug 27 12:30:11 2014 +
Various IAT related changes.
* Unbreak inbound TYPE_PRNG_SEED processing.
* IAT obfuscation is now a per-bridge argument (iat-mode
commit ce39988b11a56e763c8eedbbdab75a35b48366d4
Author: Yawning Angel yawn...@torproject.org
Date: Sun Aug 31 14:30:14 2014 +
Add elideError(error) that knows how to sanitize net.Errors.
Instead of omitting errors entirely when running with the log scrubber,
filter common
commit d5f59458fe26bedb058ec292647af96f715420b2
Author: Yawning Angel yawn...@torproject.org
Date: Wed Sep 3 09:09:13 2014 +
Change the version command line arg from `-v` to `-version`.
For consistency with the rest of the arguments.
---
obfs4proxy/obfs4proxy.go |2 +-
1
commit 25178c6a951eeb94c427a1a22f372473e41bea97
Author: Yawning Angel yawn...@torproject.org
Date: Wed Sep 3 09:05:18 2014 +
Add support for logLevel to reduce log spam.
By default logging will be done at the WARN level. Fatal
initialization errors will always be logged
commit 79e94103d6bf7685c78e991f0d1b93b0eecefa3d
Author: Yawning Angel yawn...@torproject.org
Date: Wed Sep 3 09:44:18 2014 +
Update the README.md (No functional changes).
---
README.md | 46 --
1 file changed, 44 insertions(+), 2 deletions
commit fb13cf124149ebb94f400f718c9ae22dda341bdd
Author: Yawning Angel yawn...@torproject.org
Date: Wed Sep 3 11:55:16 2014 +
Add a prolog/epilog to the logging that always gets logged.
The prolog prints the version as soon as logging is enabled, but before
the pluggable
commit ce86fa4348bdd436eed69fccae366e2980bd7b37
Author: Yawning Angel yawn...@torproject.org
Date: Wed Sep 3 12:50:43 2014 +
Change the default logLevel to ERROR, upgrade some client warnings.
Client side logs are less spammy than server side in general, so more
messages
commit 09633500b3c875288059b9bea8ab59c1a34207c8
Author: Yawning Angel yawn...@torproject.org
Date: Sat Sep 6 16:40:37 2014 +
Add a man page for obfs4proxy.
---
ChangeLog|3 ++
doc/obfs4proxy.1 | 88 ++
2 files changed
commit 1436720b12383b353982022ae3d0ea0f5d847cc6
Author: Yawning Angel yawn...@torproject.org
Date: Sat Sep 6 16:47:57 2014 +
Minor documentation cleanups, no functional changes.
---
README.md | 17 ++---
1 file changed, 10 insertions(+), 7 deletions(-)
diff --git
commit c4378cc0d3b025a67af3fa2be504bc9a2cac0bea
Author: Yawning Angel yawn...@torproject.org
Date: Sat Sep 6 17:30:55 2014 +
Fix spelling error in man page, no functional changes.
---
doc/obfs4proxy.1 |2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/doc/obfs4proxy
commit 514c3c6053ee3a2d3a842fd59b623ef432d93b7d
Author: Yawning Angel yawn...@torproject.org
Date: Wed Sep 24 16:00:42 2014 +
Write an example obfs4 bridge line to obfs4_bridgeline.txt.
Write an example client bridge line suitable for use with the running
obfs4 server
commit 213495d3b9f6d41771751f5ab76711a225f05d9b
Author: Yawning Angel yawn...@torproject.org
Date: Fri Sep 26 09:51:26 2014 +
Do the release ritual for obfs4proxy-0.0.2.
---
ChangeLog|2 +-
obfs4proxy/obfs4proxy.go |2 +-
2 files changed, 2 insertions(+), 2
commit 6cd81ec42f203585c59e610dc16728cb0a5d1455
Author: Yawning Angel yawn...@torproject.org
Date: Wed Oct 1 19:00:30 2014 +
Change the bridge line format to be more compact.
Instead of node-id and public-key that are Base16 encoded, use
cert which contains the node-id
commit fc00015ee266eed17703be114543eecdde7bc818
Author: Yawning Angel yawn...@torproject.org
Date: Wed Oct 1 19:29:22 2014 +
Do the release ritual for obfs4proxy-0.0.3.
---
ChangeLog|2 +-
obfs4proxy/obfs4proxy.go |2 +-
2 files changed, 2 insertions(+), 2
commit 4932821bda4c19e51581dce295166d801fd138da
Author: Yawning Angel yawn...@torproject.org
Date: Fri Oct 3 18:27:38 2014 +
Improve the performance of the obfs4 handshake test.
Exhaustively testing padding combinations is really slow, and was
causing timeouts during
commit 6ba5b4921feb66eaa40e1fa4056c7fb81e29f157
Author: Yawning Angel yawn...@torproject.org
Date: Fri Oct 24 22:02:23 2014 +
Fix minor issues pointed out by go vet.
---
transports/obfs4/handshake_ntor_test.go |6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git
commit 0f038ca4fa4c175d427251838cfee6fb6d6b9e2f
Author: Yawning Angel yawn...@torproject.org
Date: Wed Jan 14 20:49:56 2015 +
Document the obfs4 NaCl secretbox nonce generation.
Forgot to include this in the spec, though it was documented as a
comment in the framing code
commit cdeda5724124ca393c87be6d01c84fe4f906d612
Author: Yawning Angel yawn...@torproject.org
Date: Wed Jan 14 20:43:04 2015 +
Change the import path for go.crypto.
The Go developers decided to move the go.crypto repository to
golang.org/x/crypto, and also to transition from
commit 0066cfc3932c50323fa596981f18ef5b0e862742
Author: Yawning Angel yawn...@torproject.org
Date: Tue Feb 17 11:33:29 2015 +
Add support for acting as a ScrambleSuit client.
This allows obfs4proxy to be used as a ScrambleSuit client that is wire
compatible
commit 714581df514c74199c47451a2bc3a51cb34ccabd
Author: Yawning Angel yawn...@torproject.org
Date: Tue Feb 17 11:45:41 2015 +
Do the release ritual for obfs4proxy-0.0.4.
---
ChangeLog|2 +-
obfs4proxy/obfs4proxy.go |2 +-
2 files changed, 2 insertions(+), 2
commit 19dcb424be201c3eb5f204607d46fb78b36105c9
Author: Daniel Martà mv...@mvdan.cc
Date: Mon Mar 16 19:47:37 2015 +0100
Fix all go vet issues
---
transports/obfs2/obfs2.go |4 ++--
transports/obfs3/obfs3.go |8
2 files changed, 6 insertions(+), 6 deletions(-)
diff --git
commit 594d45be021144f1297b62d150842aa042e734ec
Author: Yawning Angel yawn...@torproject.org
Date: Sun Mar 22 12:57:55 2015 +
Update the ChangeLog (No functional changes).
---
ChangeLog |2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/ChangeLog b/ChangeLog
index
commit 398b795c87387d25c889a3bf700b387cd120520e
Author: Daniel Martà mv...@mvdan.cc
Date: Sat Mar 21 21:48:36 2015 +0100
Simplify some err and return logic
---
transports/obfs2/obfs2.go | 70 ++--
transports/obfs3/obfs3.go | 54
commit ced244c09f46d60715d17b8e09c609e08cac87ae
Author: Daniel Martà mv...@mvdan.cc
Date: Wed Mar 18 13:43:48 2015 +0100
Reduce some if err != nil logic lines
---
obfs4proxy/obfs4proxy.go |6 ++
transports/obfs4/framing/framing.go|6 ++
commit 6d1b69d29985acd548895a6057aa755485785f6f
Author: Yawning Angel yawn...@torproject.org
Date: Mon Mar 16 21:32:17 2015 +
Update the ChangeLog (No functional changes).
---
ChangeLog |3 +++
1 file changed, 3 insertions(+)
diff --git a/ChangeLog b/ChangeLog
index c0c57e3
commit 08647ec58034ecdc4ea60e7eb37c9e91fff784d6
Author: Daniel Martà mv...@mvdan.cc
Date: Mon Mar 16 19:43:02 2015 +0100
Run go fmt
---
common/drbg/hash_drbg.go |2 +-
common/ntor/ntor.go |1 +
common/probdist/weighted_dist.go |2 +-
commit 9b7a7002582f1060703aa85bbbe4a422447d0c6e
Merge: e7c3b80 d9f777f
Author: Yawning Angel yawn...@schwanenlied.me
Date: Thu Mar 12 22:28:45 2015 +
Merge branch 'bug15240'
Workaround for tor bug #15240.
pt.go | 27 ++-
1 file changed, 14 insertions
commit d9f777f236cb770a44a5f497cb50e17ed7ed1df5
Author: Yawning Angel yawn...@schwanenlied.me
Date: Thu Mar 12 22:26:30 2015 +
Read the ExtORPort cookie on every call to DialOr.
This works around tor bug #15240, where the ExtORPort cookie is
generated after the pluggable
commit aed4b723891db1be34eb866a03c62806b58ac148
Author: Yawning Angel yawn...@torproject.org
Date: Mon Mar 23 09:13:19 2015 +
Change the import path for go.net.
The Go developers decided to move the go.net repository to
golang.org/x/net, and also to transition from hg
commit 8996cb2646f2721b2d86f5f6b54b5c21d2acc71d
Author: Yawning Angel yawn...@torproject.org
Date: Mon Apr 13 21:21:12 2015 +
Add routines for querying the log module state.
Unless you have very good reason to do so, there should be no reason to
actually call these ever
commit 37a709d8b4fec837c0c88c495e7ea926953d974f
Author: Yawning Angel yawn...@torproject.org
Date: Thu Apr 23 00:32:25 2015 +
Bump the version to 0.0.6-dev, signifying development towards 0.0.6.
---
ChangeLog|2 ++
obfs4proxy/obfs4proxy.go |2 +-
2 files changed
commit a8d7134f1097bd50803da0e2a86c07524e433b51
Author: Yawning Angel yawn...@torproject.org
Date: Sun Apr 12 19:00:46 2015 +
Use a built in SOCKS 5 server instead of goptlibs.
Differences from my goptlib branch:
* Instead of exposing a net.Listener, just expose
commit 3540313e53fc851c833d98281fd64c8fd32effeb
Author: Yawning Angel yawn...@torproject.org
Date: Wed Apr 15 20:54:07 2015 +
Do the release ritual for obfs4proxy-0.0.5.
---
ChangeLog|2 +-
obfs4proxy/obfs4proxy.go |2 +-
2 files changed, 2 insertions(+), 2
commit df4265707999b08d220374c08e82711f264247bf
Author: Yawning Angel yawn...@torproject.org
Date: Fri Apr 3 14:21:31 2015 +
Move logging wrappers into common/log, and add a DEBUG log level.
Implements feature #15576.
---
ChangeLog|3 +
common/log/log.go
commit 69ffcc39c63f4a9a192082da71eea6b06a1e75d7
Author: Yawning Angel yawn...@torproject.org
Date: Mon Jun 1 16:15:35 2015 +
Delay transport initialization till after logging has been setup.
---
ChangeLog|2 ++
obfs4proxy/obfs4proxy.go |4
transports
commit cf4dd074fa78f72affa8c701bbb049f9ef547f77
Author: David Fifield da...@bamsoftware.com
Date: Mon May 25 22:53:05 2015 -0700
Fix doc comment for log.Debugf.
---
common/log/log.go |2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/common/log/log.go
commit 481599ee37dd3135c9e17d1df4810f36b4de4e3d
Author: Yawning Angel yawn...@schwanenlied.me
Date: Wed Aug 5 18:45:01 2015 +
Changed the import paths to reflect the move to the tpo repo.
---
main.go| 226
natclient
commit e52258edac55d82ff153755493d770bfbbc9a346
Author: Yawning Angel <yawn...@torproject.org>
Date: Thu Oct 29 14:09:34 2015 +
Make establishing outgoing connections the transport's responsibility.
ClientFactories now have a Dial() method instead of a WrapConn()
meth
commit 611205be681322883a4d73dd00fcb13c4352fe53
Author: Yawning Angel <yawn...@torproject.org>
Date: Thu Oct 29 17:29:21 2015 +
Add the "meek_lite" transport, which does what one would expect.
This is a meek client only implementation, with the following
commit 43cdc20e7e7f136c96814bf752ef1fbc9b6fec33
Author: Yawning Angel <yawn...@torproject.org>
Date: Fri Oct 30 09:45:26 2015 +
meek-lite: combine small writes at request dispatch time.
This dramatically improves bulk upload performance, from totally shit
to jus
commit 672e7a79a8e994aed759e3e2e3716076f727
Author: Yawning Angel <yawn...@torproject.org>
Date: Fri Oct 30 09:51:03 2015 +
meek-lite: Don't send a "User-Agent" header.
---
transports/meeklite/meek.go |1 +
1 file changed, 1 insertion(+)
diff --git a/tra
commit 896a98c427180a34b658277fa40c41823b9ef5c1
Author: Yawning Angel <yawn...@torproject.org>
Date: Mon Jan 25 14:14:30 2016 +
Do the release ritual for obfs4proxy-0.0.6.
---
ChangeLog|2 +-
obfs4proxy/obfs4proxy.go |2 +-
2 files changed, 2 insertions
commit 1df5c8ffe8f4aa2614323698e8008f1ab1fb7a18
Author: Yawning Angel <yawn...@torproject.org>
Date: Mon Jan 25 14:40:14 2016 +
Bump the version to 0.0.7-dev, signifying development towards 0.0.7.
---
ChangeLog|2 ++
obfs4proxy/obfs4proxy.go |2 +-
2
commit c0e8866c13f051c4eea0c1d940b8592cd7c8075c
Author: pminmax945
Date: Sun Jan 17 12:23:20 2016 +
fix incorrect connection close
when obfs4 connection create failed,conn variable is
set to nil already.
---
transports/obfs4/obfs4.go |3 ++-
1
commit 2cbefcfcd23d457cff742e4941cb705604d53ce5
Author: Yawning Angel <yawn...@torproject.org>
Date: Mon Jan 25 12:16:15 2016 +
Fix other instances of attempting to close `nil` on handshake failure.
Bug introduced in e52258edac55d82ff153755493d770bfbbc9a346, not
commit a7a2575cab8b916e33d4b85fda4bac41f2124eec
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Apr 13 03:02:32 2016 +
The obfs4 `iat-mode` parameter is now properly configurable.
It used to be that all of the bridge side parameters needed to be
manually spe
commit 62057625eaba2a555967b9615039d43dda071360
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Jul 11 00:51:28 2016 +
Use the correct epoch hour when crafting the obfs4 server ntor response.
It's supposed to use the one derived from the client's han
commit 35fb3e0cebd73c9a93bee68e1a12a59685c49c41
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Feb 23 20:28:19 2017 +
Fix compilation with Go 1.8.
---
ChangeLog | 1 +
src/cmd/sandboxed-tor-browser/internal/ui/notify/not
commit 33bfc5e6a6b25b3fa403e56e78917e3c80d3fbd2
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Feb 23 20:30:49 2017 +
Bug 21536: Remove asn's scramblesuit bridge from Tor Browser.
---
ChangeLog | 1 +
data/bridges.json | 3 ---
2 files changed, 1 insertion
commit 60f4cb437dc1ec1af1ae2d07fe7207b31c66dbb4
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Jan 18 07:58:59 2017 +
Add a note about setsid() in the ChangeLog, no functional changes.
---
ChangeLog | 1 +
1 file changed, 1 insertion(+)
diff --git a/ChangeLog b/Cha
commit a229fabf0787ce9d8d12f5fddd8063a90980d286
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Tue Jan 17 19:41:43 2017 +
Bug 21057: Change the metadata URL(s) for the stable bundle.
---
ChangeLog| 1 +
data/installer/urls.json | 10 +-
2 files c
commit eace1a33c9ba2370f3c045782cab7467093a4f05
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Tue Jan 17 21:28:52 2017 +
Call setsid() before we exec bwrap.
This is part of a defense in depth measure to `TOCSTI` considered
harmful (CVE-2017-5226). Released ve
commit 6477aea9f9918d7a50a23196c77c3b42a96bdb2c
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Jan 18 20:15:49 2017 +
Bump the version to 0.0.4-dev, so I can do development again.
---
ChangeLog| 2 ++
data/version | 2 +-
2 files changed, 3 insertions(+), 1 de
commit 851b16c0ebe52285de5aa8f1e0ef8e59392dfa11
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Jan 18 19:31:29 2017 +
Remove suggestions to use other projects. No functional changes.
---
README.md | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff
commit 220a347dcea5b3cb4fe4c286c93472f7f23c4b43
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Jan 18 20:03:11 2017 +
Do the release ritual for sandboxed-tor-browser-0.0.3.
---
ChangeLog| 2 +-
data/version | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
commit 9c250a07e524a68593616696e9d555f61c06d52b
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Jan 18 19:27:32 2017 +
Update README.md to reflect reality, no functional changes.
---
README.md | 3 ---
1 file changed, 3 deletions(-)
diff --git a/README.md b/README.md
commit a9e8a62f9b914d872f0b83528c60f22bada0fcd1
Merge: 6205762 64e5920
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Oct 20 01:36:53 2016 +
Merge branch 'getlantern-memreduce'
ChangeLog | 2 ++
transports/obfs4/obfs4.go | 5 +++--
transports
commit df6aeeca8cc8e953284ce1cb8a0910500579dfaf
Author: Ox Cart
Date: Wed Oct 19 20:18:07 2016 -0500
Reusing read buffer for readPackets
---
transports/obfs4/obfs4.go | 5 +++--
transports/obfs4/packet.go | 5 ++---
2 files changed, 5 insertions(+), 5 deletions(-)
commit bba5a5524bbb75ae9b0505e8413e576440436243
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Nov 26 05:08:50 2016 +
Fix some minor Gtk~ and openSUSE related sandbox issues.
* Apparently the `hicolor`icons are needed for certain things on all
s
commit f5dbc78776f413829085aa3fba2611214cc469ad
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Nov 26 08:37:25 2016 +
Bug #20773: Don't mount /proc in the tor container when no PTs.
While I'm being overly cautious about obfs4proxy, at least when bridges
commit 533be4ad041ff7b9c630181fe5265e4f70160947
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Nov 26 07:20:04 2016 +
Instead of using the trace action, explciitly return ENOSYS on 386.
This mirrors the amd64 behavior, I just forgot to make this explicit
commit bf286a049cd06b4546f9cd02f390f4c60e0d0c51
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Nov 26 07:58:42 2016 +
Update the Architecture.txt doc a bit (No functional changes).
The doc should be moderately accurate now, but in all honesty co
commit ca15fda88cf2b304cf16deb7416c531798c48e08
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sun Nov 27 13:13:08 2016 +
Bug #20798: Try harder to clean up failed tor processes.
Error detectionw was sort of broken, so Shutdown() wasn't getting called
co
commit b342afcd1a7bdf398c8a546b2525f9ef5bacea1a
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sun Nov 27 13:36:39 2016 +
fixup! Bug #20798: Try harder to clean up failed tor processes.
Remove redundant cleanup.
---
src/cmd/sandboxed-tor-browser/internal/ui/ui.
commit e2944e6c38892567b9f0f4af09e0ecb02c0ec300
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sun Nov 27 20:48:18 2016 +
Add/fix a few more calls to the tor seccomp whitelist.
---
data/tor-whitelist.seccomp | 10 ++
1 file changed, 6 insertions(+), 4 deletions(-)
commit 2c013e8d052854760fab439651e721bd371f22eb
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sun Nov 27 21:03:11 2016 +
Consume the cancel channel in various async tasks on return.
This should make the various progress dialog cancel buttons more
resp
commit 676ccd7b294ef20146f9169693d10a54fc2b6d73
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 18:31:49 2016 +
Add a filter for the mmap() args to the tor seccomp whitelist.
---
data/tor-whitelist.seccomp | 7 +--
1 file changed, 5 insertions(+), 2 del
commit 7cf5fba78a7641043454f7f7d24edce4ed938197
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 18:40:49 2016 +
Bug #20782: Use a combined tor + obfs4proxy seccomp whitelist for now.
In an ideal world these will live in separate containers an
commit 09b66528f6013c0ca5ee9be20ad91cadb3e901aa
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 08:22:03 2016 +
Bug #20773: Mount `/proc` in the tor container for hardened.
Asan requires `/proc/self/maps` to run. Fun fun fun.
---
src/cmd/sandboxed-tor-b
commit 0ba177e4136ea2459741a5de283d6ada6c3b8d63
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 02:38:22 2016 +
Remove the old `control_port` file before launcing a tor.
---
src/cmd/sandboxed-tor-browser/internal/ui/ui.go | 2 ++
1 file changed, 2 insertions(+)
commit 22c94991236e6dff096e29fbb6e74c5a1d20c912
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 02:56:54 2016 +
Bug #20804: Temporarily kludge around the async/UI issue.
The ui code's async stuff (and all the code that uses it) is kind of a
kludg
commit 1a281b3309d58c0ee865525f8e730d86ffb4ba3a
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 08:34:58 2016 +
On second thought, locking the private browsing pref is silly.
People should be allowed to toggle this, assuming they understand the
conseq
commit 7bb33aba93ad767c13be9776bb0e90eeb771db4f
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 02:03:34 2016 +
Handle bubblewrap crashing/exiting mid-setup.
---
.../internal/sandbox/hugbox.go | 103 ++---
1 file chang
commit 7a215efea0d6277d24c700b2b4e629a93b1cac45
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 02:25:37 2016 +
Clean up tor's socket files on Shutdown().
---
src/cmd/sandboxed-tor-browser/internal/tor/tor.go| 11 ++-
src/cmd/sandboxed-tor-browser/in
commit 1bdce61925564ca0c688377c196268ce97b5402b
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Mon Nov 28 06:11:43 2016 +
Don't attempt to use the flatpak-bwrap to statisfy bubblewrap for now.
WHile the idea is nice in theory, `flatpak-bwrap --version` r
commit db09c0bb793c705a13e275dc6d52eed70ca95c80
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Nov 26 18:22:10 2016 +
Bug #20773: Don't mount /proc in the tor container even with PTs.
Looking at the Go 1.7.3 source code, all of the usages of `/proc` by
obfs
commit 7094fbbeb6268b8618abd2684c6b59ed1fb174f1
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Nov 26 18:28:27 2016 +
Me spel engrish berry gud. (No functional changes)
---
src/cmd/sandboxed-tor-browser/internal/sandbox/application.go | 2 +-
1 file changed, 1 ins
commit 97a875ec3c0afa629405c78e750d27e4e1f851ca
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Tue Nov 15 19:21:38 2016 +
Bump the version to 0.0.8-dev, signifying development towards 0.0.8.
---
ChangeLog| 2 ++
obfs4proxy/obfs4proxy.go | 2 +-
2 files chan
commit 8256fac93c2cf79742725e3aaced5bbe3380fd32
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Tue Nov 15 19:18:24 2016 +
Do the release ritual for obfs4proxy 0.0.7.
---
ChangeLog| 2 +-
obfs4proxy/obfs4proxy.go | 2 +-
2 files changed, 2 insertions
commit 1db6b5aeec0983b264469be96690d916e236e314
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Wed Dec 7 07:05:09 2016 +
Filter socketcall() by argument.
This still isn't great, particularly firefox that appears to need all
the socket calls, but at least this
commit dcc1b9fffe82f55801b90c4ada9c21551e642f62
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Dec 8 05:34:57 2016 +
Tighten the seccomp rules some more.
* Stop being lazy and validate all the socket() flags to allow tor.
* Tighten the rlimit() r
commit d32f30726e97ee6c151cb45fb008177b68e9d58d
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Dec 8 19:23:25 2016 +
Add `readlink` to the tor seccomp whitelist.
ASAN calls readlink("/proc/self/exe"), because fuck you.
---
src/cmd/gen-seccomp/se
commit 7ad0525c601aa45414f56193760e3d08dd9cdae4
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Dec 8 19:51:51 2016 +
Normalize the sandbox UID/GID to 1000/1000.
* Always unshare the USER namespace (Yes, I know this is scary, but
all caps are dropped by
commit 8f671b6f5261063085fe4eccc99a03ebe0f4be26
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Thu Dec 8 20:37:08 2016 +
When running the hardened bundle, load libasan.so before the stub.
Sort of silly, but it demands this of us or it dumps alarming looking
wa
commit cc3ef2d64be2b7a99b4bfcbc44f6eb64c079bf1b
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Dec 10 10:15:23 2016 +
Allow MADV_FREE in the firefox seccomp profile.
The content process sandbox allows this. Fairly sure the system Tor
Browser is being
commit 8d816d804bcad2c709dd1e2e0650cbfb6d8026db
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Dec 10 08:36:27 2016 +
Bug #20806: Make "libavcodec.so" in the sandbox configurable.
And enable it in the UI.
Like all the other privacy/featu
commit f5183c21db683ac09da892bbb1c99797535de506
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Dec 10 05:51:42 2016 +
Bug #20780: Shuffle and persist the ordering of internal bridges.
A new config entry `internalBridgeSeed` is added that holds a persistent
commit fc66ad6c0f65fc00ce9a99513a2164b8b8c78823
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Dec 10 18:43:57 2016 +
Bump the version to 0.0.3-dev, so I can do development again.
---
data/version | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
commit fc2d2bc441195bfd085f18619a8a4e7772b341dd
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Dec 10 18:40:57 2016 +
Do the release ritual for sandboxed-tor-browser-0.0.2.
---
ChangeLog| 4 +++-
data/version | 2 +-
2 files changed, 4 insertions(+), 2 deletions(-)
commit ba904904e692acbafe8c38bda916724bcfbce68c
Author: Yawning Angel <yawn...@schwanenlied.me>
Date: Sat Dec 10 19:00:33 2016 +
Bug 20806: Try even harder to exclude gstreamer.
The workaround I added for weird systems that pull in gstreamer was
coded slightly
1 - 100 of 300 matches
Mail list logo