#41 Fixed nickname length enforcement has fencepost errors nickm arma

Dec 23 19:08:53.410 [warn] connection_tls_finish_handshake(): Other side ( is 'thetimesareachangi', but we tried to connect to 'thetimesareachangin'

It should either not have a problem here, or it should have prevented this guy from starting his server.

Once we track down which it is, we should audit the rest of the uses of options->nickname to make sure it isn't happening elsewhere.

#42 Fixed Overzealous clock skew checking keeps clients from working tor-bugs nickm

The check for time skew in connection_or.c which produces the log message: "Router '%s' (%s:%d) has a skewed clock..." seems to get called even when Tor is running as a client. This is not as intended; only servers should be forced to make sure their clocks are relatively correct.

Arma questions whether we should care about clock skew at all. The attacks that we're protecting against are server impersonation attacks where the attacker manage to compromise an older private key for a server, but not a newer one. This doesn't seem very realistic now, since compromising a server's private key will almost surely reveal its identity key; but a slightly cleverer key management system might in the future make this attack meaningfully difficult.

#43 Fixed Worker threads die vigorously on win32. nickm

When people try to run a Tor server on windows, it seems that their CPU worker threads and DNS threads too die badly. Or maybe the tor_socketpair stuff isn't really working.


Dec 25 07:55:03.156 [warn] connection_dns_reached_eof(): Read eof. Worker died unexpectedly. Dec 25 07:55:03.156 [warn] connection_cpu_reached_eof(): Read eof. Worker died unexpectedly.


Also, these dead workers don't prevent Tor from reporting itself as working when the first circuit is built. That's probably bad.

