Commit Graph

3488 Commits

Author SHA1 Message Date
Cyril Soler
3ab7c89660 Merge pull request #279 from cavebeat/single_dh_op
added openSSL option SSL_OP_SINGLE_DH_USE regarding CVE-2016-0701
2016-02-14 13:33:27 -05:00
cave beat
9843c8381b added openSSL option SSL_OP_SINGLE_DH_USE regarding CVE-2016-0701
tl;dr The OpenSSL 1.0.2 releases suffer from a Key Recovery Attack on DH small subgroups. This issue got assigned CVE-2016-0701 with a severity of High and OpenSSL 1.0.2 users should upgrade to 1.0.2f. If an application is using DH configured with parameters based on primes that are not "safe" or not Lim-Lee (as the one in RFC 5114) and either Static DH ciphersuites are used or DHE ciphersuites with the default OpenSSL configuration (in particular SSL_OP_SINGLE_DH_USE is not set) then is vulnerable to this attack.
2016-02-14 18:49:37 +01:00
electron128
821c14426c remove dead code from RsNotify (old forum and channel read status changed notify) 2016-02-14 12:48:52 +01:00
electron128
63a8260cb9 change RsNotify to use RsGxsId for chat lobby events 2016-02-14 11:53:27 +01:00
thunder2
7ded128b3a Update rsversion.in 2016-02-06 19:18:22 +01:00
csoler
d9e512da8b fixed update of GroupNetworkStats and proper reset when loadList is called (thx Jo) 2016-02-03 18:58:28 -05:00
Cyril Soler
06b7417eed added comment in rsinit.cc for the initialisation of NetService for GxsIds 2016-02-02 12:34:26 -05:00
Cyril Soler
3664626704 added missing check for mNetService 2016-02-02 12:14:39 -05:00
Cyril Soler
dc9fadd7c9 added missing subscription change notify in rsgenexchange when creating a new group 2016-02-02 09:46:16 -05:00
Cyril Soler
a41d9df4da fixed small bug in probability computation in grouter 2016-02-01 09:59:13 -05:00
csoler
6d1a3937d6 fixed but in re-sending of failed grouter items 2016-02-01 00:33:11 -05:00
csoler
aa194caea3 fixed bug preventing save of routage info in distant messaging 2016-01-31 20:27:53 -05:00
csoler
a85b5d2fab re-enabled GRouter tunnels (disabled for testing). Removed debug output. 2016-01-30 20:35:08 -05:00
csoler
f0a49a427e changed global router routing strategy. Should be more effective now. 2016-01-30 20:27:56 -05:00
csoler
59d4c2c829 removed some compilation warnings 2016-01-30 20:27:27 -05:00
Cyril Soler
85cdfcc721 fixed bug causing multi-tunneling not to be used (found by jo) 2016-01-28 10:44:37 -05:00
csoler
3bc444b087 removed some debug info 2016-01-26 23:00:10 -05:00
csoler
2072ca4ade fixed bug in getPeerDetails causing callstacks to be displayed for non initialised IPs 2016-01-26 22:08:17 -05:00
csoler
b70057a540 removed sending probability in GXS since it is not justified anymore. This should fix peers not being updated because they have very low bandwidth. Removed and fixed a few minor warnings. 2016-01-26 18:50:33 -05:00
csoler
39b3df964a fixed bug causing net reset when closing config 2016-01-25 22:39:20 -05:00
csoler
9b64b96811 fixed potential crash in pqisslstore 2016-01-23 13:04:02 -05:00
csoler
55d0a213dd added cache of latest GXS tunnel data items for the last 10 minutes in order to avoid replays of messages caused by the conservative message transmition system. Removed the global item counter for a purely random uint64_t 2016-01-21 21:19:40 -05:00
csoler
7488ba19ff removed feedback from messages to mGrpServerUpdateTS, which is now only updated when the subscribe status is changed and/or new groups are received/created 2016-01-20 23:56:22 -05:00
csoler
c473200625 moved getCurrentTS() inside RTT packet sending loop (suggestion from Jo) 2016-01-20 23:34:25 -05:00
csoler
49c1d56945 increased GXS post size limit to just below 200K 2016-01-19 21:45:55 -05:00
csoler
43ee506adc added automatic GXS message rejection when item size exceeds 200K. Should fix the forums that got stuck because of a large message not being sent 2016-01-19 10:13:24 -05:00
csoler
dedd6d4cf4 disabled debug info 2016-01-18 23:54:03 -05:00
csoler
68a039540e fixed a few bugs in existing msg fragmentation code. Signature checking still not working, not NXS_FRAG stays disabled 2016-01-18 23:54:02 -05:00
csoler
39e6a9b61a fixed up People context menu so as to handle actions for multiple persons at once 2016-01-16 20:44:52 -05:00
csoler
1edfcf9731 do not time stamp banned GXS ids 2016-01-16 13:41:24 -05:00
thunder2
748147f73b Fixed Windows compile. 2016-01-15 21:41:23 +01:00
Cyril Soler
b5f6059485 deprecated updateClientSyncTS() which is not needed anymore 2016-01-15 10:07:21 -05:00
csoler
c24447fd21 fixed update of mGrpClientUpdateMap when no new group is available, avoiding unnecessary GXS grp list traffic (patch from jolavillette) 2016-01-14 20:11:26 -05:00
csoler
3b18c43d8e removed [dos] LF from rsgxsnetservice (causes merging rampage) 2016-01-13 20:25:18 -05:00
Cyril Soler
086b076477 fixed a few serialisation issues 2016-01-13 12:22:55 -05:00
Cyril Soler
96f3446aa7 added size limit to packet grouping 2016-01-13 11:13:23 -05:00
Cyril Soler
b56881e6d9 fixed windows compilation 2016-01-13 10:23:21 -05:00
csoler
60408b3799 fixed a bug in GRouterGenericDataItem::duplicate() 2016-01-13 00:13:16 -05:00
csoler
d55993d1e4 removed two instances of malloc(0) captured by new rs_malloc funtion 2016-01-12 21:43:04 -05:00
csoler
d13526facd added a new method rs_malloc that checks its arguments and prints a stacktrace on error/weird call. Changed the code everywhere to use this instead of malloc. Removed some mallocs and replaced with RsTemporaryMemory 2016-01-12 21:10:11 -05:00
csoler
9c6e7dfc13 added checks after mallocs in several files 2016-01-11 23:49:00 -05:00
csoler
46520b0e22 fixed potential integer overflow / Out of bounds read in gxstunnelitems.cc 2016-01-11 20:49:26 -05:00
csoler
8e666fcec3 fixed potential integer overflow / Out of bounds read in rsturtleitems.cc 2016-01-11 20:40:57 -05:00
csoler
98f0c101b9 fixed potential integer overflow / Out of bounds read in GRouterItems.cc 2016-01-11 19:26:54 -05:00
csoler
3094b52e8f fixed potential integer overflow / Out of bounds read in rsbaseserial.cc. Also added a few more error output. 2016-01-11 19:08:52 -05:00
electron128
8e6998b8d9 removed redundant map _lobby_ids from DistributedChatService.
The same information and more is stored in the _chat_lobbys map.
_lobby_ids is unused since commit 67e1495d9a
2016-01-10 14:34:08 +01:00
electron128
09ed1ea22c removed getVirtualPeerId method from rsmsgs lobby interface.
It is not neccesary anymore to have the virtual peer id exposed to the GUI layer.
2016-01-10 14:22:06 +01:00
electron128
67e1495d9a use ChatId instead of virtual peer id for chat lobby popup. Removed a now unused method from rsmsgs interface and DistributedChatService. 2016-01-10 13:29:40 +01:00
csoler
ee84ab732d fixed serialisation error (missing call) for received Distant msg hash map 2016-01-09 10:58:49 -05:00
csoler
fe02167ad7 disabled part of msg re-sending code in order to improve it later 2016-01-08 23:18:45 -05:00