| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
b8cfa92 rpc: implement set_bootstrap_daemon method (xiphon)
|
|
c88d6a9 tests: fixed file exec permissions (ston1th)
|
|
068fa1c p2p: delay IGP probing on startup (moneromooo-monero)
|
|
c820e18 simplewallet: print errors on exceptions creating wallets (moneromooo-monero)
|
|
cf8cb68 rpc: use ip address string representation for peer::host field (xiphon)
|
|
46c1d88 add 'sponsor' button on GitHub (erciccione)
|
|
dd58057 Remember RPC version on initial connect (hyc)
|
|
343c0b4 add a command line option to disable ZMQ server (jtgrassie)
|
|
2aa1134 daemon: display peer address type in print_cn (moneromooo-monero)
|
|
f074b6b device: show address on device display (ph4r05)
|
|
f17dcde Remove unused txs member in NOTIFY_RESPONSE_GET_OBJECT (Doy-lee)
|
|
cb92d5c cmake: push cmake away from boost as much as we can (moneromooo-monero)
|
|
cd720c7 add cumulative difficulty to diff command (wowario)
|
|
270a3ae Unused private member m_miner_address (JesusRami)
|
|
fcfcc3a rpc: in/out peers can now return the setting's value (moneromooo-monero)
|
|
577324a wallet_manager: omit redundant disconnect, drop unused variable (xiphon)
|
|
162c3e1 blockchain_export: allow exporting blocks.dat format from pruned (moneromooo-monero)
|
|
c07bbd5 daemon: fix 'never seen before' time span display for peers (moneromooo-monero)
|
|
82f07c5 Close file before exit to avoid potential resource leak (JesusRami)
|
|
4c66614 expose set/get walletcache attribute functionality in wallet api (selsta)
|
|
9a6006b abstract_tcp_server2: move some things out of a lock (moneromooo-monero)
|
|
6abaaaa remove obsolete save_graph skeleton code (moneromooo-monero)
|
|
de27651 use crypto::rand instead of libc rand in a few tests (moneromooo-monero)
|
|
f61a315 net_utils: fix m_ssl type from time_t to bool (moneromooo-monero)
|
|
06b8f29 blockchain: keep alternative blocks in LMDB (moneromooo-monero)
|
|
e4d100b wallet2: don't wait a day before using new version fees (moneromooo-monero)
|
|
bc94ba4 wallet: distinguish between empty and absent attributes (moneromooo-monero)
|
|
2b198a6 difficulty-tests: remove spurious dependency on cryptonote_core (moneromooo-monero)
|
|
25a7cfd add a few checks where it seems appropriate (moneromooo-monero)
1a66a86 remove unused code (moneromooo-monero)
|
|
ddf7890 python-rpc: add missing getblock RPC parameters (moneromooo-monero)
|
|
2e514b8 CMakeLists.txt: suggest to update all submodules if one of them is outdated (erciccione)
|
|
a23dbe6 simplewallet: prompt when spending more than one old out in one tx (moneromooo-monero)
|
|
3b9ce45 wallet_rpc_server: remove unused variable (moneromooo-monero)
|
|
6aa3c2f dns_checks: new helper program to check on DNSSEC lookups (moneromooo-monero)
|
|
515ac29 p2p: store network address directly in blocked host list (moneromooo-monero)
65c4004 allow blocking whole subnets (moneromooo-monero)
|
|
de970334 bump version to 0.14.1.2 (Riccardo Spagni)
4850520b update checkpoints.dat hash (Riccardo Spagni)
|
|
|
|
|
|
a69dc818 prep for 0.14.1.1 (Riccardo Spagni)
|
|
|
|
a96c1a46 cryptonote_protocol: drop peers we can't download from when syncing (moneromooo-monero)
ab361df2 p2p: add a few missing connection close calls (moneromooo-monero)
|
|
|
|
rather than their string representation
|
|
|
|
3140a37 wallet_rpc_server: fix get_bulk_payments with short payment ids (moneromooo-monero)
|
|
4ee095c p2p: don't connect to more than one IP per class B if we can (moneromooo-monero)
|
|
c223832 keccak: guard against misaligned memory accesses on ARM (moneromooo-monero)
|
|
8f22279 Depends: Update HIDAPI version (TheCharlatan)
|
|
1dbfc81 Add debug targets to depends Makefile (TheCharlatan)
cbbb24c Remove clutter in depends installed packages (TheCharlatan)
496cd46 Add ncurses package for linux and darwin readline (TheCharlatan)
|
|
|
|
|
|
The code generated is exactly the same as the direct access
one on x86_64
|
|
Any peer that's behind us while syncing is useless to us (though
not to them). This ensures that we don't get our peer slots filled
with peers that we can't use. Once we've synced, we can connect
to them and they can then sync off us if they want.
|
|
|
|
5d6b43b core: fix --prune-blockchain not pruning if no blockchain exists (moneromooo-monero)
|
|
3c071d2 blockchain: silence an error getting blocks for pruned nodes (moneromooo-monero)
|
|
2ff99fb db_lmdb: commit pruning txn at checkpoints (moneromooo-monero)
|
|
037f94c Remove Xiala.net from the list of dns resolvers (tobtoht)
|
|
15c699f rpc: set sanity_check_failed to false when successful (stoffu)
|
|
da3e20e tx_sanity_check: relax the median check a lot (moneromooo-monero)
|
|
4237707 p2p: don't forget pruning seed or public RPC port when updating peers (moneromooo-monero)
|
|
The macos binaries in release v0.14.1.0 were compiled with the buggy
hidapi-0.8.0-rc1 version. This resulted in users not being able to use
their Ledger with the latest cli wallet. After the patch depends now
fetches the source from the libusb hidapi repository that has taken over
maintenance of hidapi.
|
|
Older nodes don't pass that information around
|
|
Readline support is now compiled with the ncurses backend.
|
|
To speedup the depends cached builds, remove some some clutter from the package
files. This mainly incldues removing all the shared libraries and .la
linker files. It also gives stronger guarantees that monero only links
the static libs without any external rvalues.
|
|
Packages can now be built individually and for each stage. This allows
easier debugging.
|
|
It is down permanently. See: https://xiala.net/
"Ende November 2018 werden alle Dienste von xiala.net abgeschaltet."
|
|
|
|
we don't want to prevent bona fide txes, just obvious bad ones
|
|
|
|
- Trezor: support for device address display (subaddress, integrated address)
- Wallet::API support added
- Simplewallet:
- address device [<index>]
- address new <label> // shows address on device also
- integrated_address [device] <payment_id|address> // new optional "device" arg to display also on the device
|
|
This happens often when a pre-pruning node asks a pruned node
for data it does not have
|
|
to avoid errors when the txn is too large
|
|
633f1542 prep for 0.14.1 release (Riccardo Spagni)
|
|
2eef90d6 rpc: restrict the recent cutoff size in restricted RPC mode (moneromooo-monero)
0564da5f ensure no NULL is passed to memcpy (moneromooo-monero)
bc09766b abstract_tcp_server2: improve DoS resistance (moneromooo-monero)
1387549e serialization: check stream good flag at the end (moneromooo-monero)
a00cabd4 tree-hash: allocate variable memory on heap, not stack (moneromooo-monero)
f2152192 cryptonote: throw on tx hash calculation error (moneromooo-monero)
db2b9fba serialization: fail on read_varint error (moneromooo-monero)
68ad5481 cryptonote_protocol: fix another potential P2P DoS (moneromooo-monero)
1cc61018 cryptonote_protocol: expand basic DoS protection (moneromooo-monero)
8f66b705 cryptonote_protocol_handler: prevent potential DoS (anonimal)
39169ace epee: basic sanity check on allocation size from untrusted source (moneromooo-monero)
|
|
|
|
|
|
NULL is valid when size is 0, but memcpy uses nonnull attributes,
so let's not poke the bear
|
|
|
|
just in case
|
|
Large amounts might run out of stack
Reported by guidov
|
|
|
|
|
|
When asking for txes in a fluffy transaction, one might ask
for the same (large) tx many times
|
|
Count transactions as well
|
|
Essentially, one can send such a large amount of IDs that core exhausts
all free memory. This issue can theoretically be exploited using very
large CN blockchains, such as Monero.
This is a partial fix. Thanks and credit given to CryptoNote author
'cryptozoidberg' for collaboration and the fix. Also thanks to
'moneromooo'. Referencing HackerOne report #506595.
|
|
Reported by guidov
|
|
3a0fbea Don't use -march=native (hyc)
f8b2f25 Allow parallel make (hyc)
01ced20 Delete redundant cppzmq dependency (hyc)
1dc4ebf Use 9 digit build IDs (hyc)
|
|
c27d961 [depends] update openssl to 1.0.2r (who-biz)
|
|
|
|
|
|
|
|
|
|
f2f207d miner: fix double free of thread attributes (ston1th)
|
|
b0a04f7 epee: fix SSL autodetect on reconnection (xiphon)
|
|
643c86a miniupnpc: update to build on BSD (moneromooo-monero)
|
|
2cbe756 p2p: fix GCC 9.1 crash (moneromooo-monero)
35c20c4 Fix GCC 9.1 build warnings (moneromooo-monero)
e284889 cmake: do not use -mmitigate-rop on GCC >= 9.1 (moneromooo-monero)
|
|
|
|
|
|
|
|
It was removed, but it still accepted by the compiler, which warns
for every file
|
|
GCC wants operator= aand copy ctor to be both defined, or neither
|
|
issue: #5568
|
|
|
|
|
|
We might have external access without having to do this
|
|
Exceptions would otherwise terminate the process silently
|
|
|
|
|
|
Don't keep asking for it on an intact connection
Wallet is too chatty over the wire
|
|
77594c4f functional_tests: fix python3 compatibility (moneromooo-monero)
|
|
f950517a core: update pruning if using --prune-blockchain on a pruned blockchain (moneromooo-monero)
|
|
35da33be blockchain: do not try to pop blocks down to the genesis block (moneromooo-monero)
4b51f9a3 core: do not commit half constructed batch db txn (moneromooo-monero)
|
|
9bfa4c20 Fix allow any cert mode in wallet rpc when configured over rpc (Lee Clagett)
3544596f Add ssl_options support to monerod's rpc mode. (Lee Clagett)
c9aaccf3 Fix configuration bug; wallet2 --daemon-ssl-allow-any-cert now works. (Lee Clagett)
|
|
4ac52e52 functional_tests: fix rare get_output_distribution failure (moneromooo-monero)
|
|
dbecfe7d unit_tests: make the density test a bit less stringent (moneromooo-monero)
|
|
b6830db2 Fix #5553 (Howard Chu)
|
|
|
|
|
|
Everything works better without cmake.
|
|
|
|
|
|
|
|
Also add missing bans test to the default tests
|
|
Avoids a massive amount of spurious warnings if the last update before
the daemon exited was a while ago and the daemon was syncing
|
|
|
|
|
|
|
|
We don't need any of the pruned data for this
|
|
|
|
|
|
|
|
|
|
When the wallet auto refreshes after mining the last two blocks
but before popping them, it will then try to use outputs which
are not unlocked yet. This is really a wallet problem, which
will be fixed later.
|
|
It's an inherently random test
|
|
|
|
Make sure the tip hash still matches the cached block
|
|
- This addresses https://www.openssl.org/news/secadv/20190226.txt (CVE: 2019-1559) which impacted all versions of openssl-1.0.
Note that this does not address CVE-2019-1543 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1543), which impacts all versions of openssl 1.1 through 1.1.0j and 1.1.1b.
The above (1.1) is patched in openssl, where it was marked as low severity. Similar issues possibly present in monero, should be looked into w.r.t. CVE-2019-1543.
|
|
915f59e3 wallet: add unlock_time details to show_transfers (moneromooo-monero)
|
|
also add a note when receiving the tx, because the user
might not notice the "XXX blocks to unlock" in the balance.
|
|
3f612cda Changed odd bullet point to low level header (Rohaq)
af9bc4ec Used subeaders to avoid slightly wonky looking formatting (Rohaq)
1873af35 Made code block usage consistent across all .md files (Rohaq)
68103075 Updated Copyright notice (Rohaq)
39bd157f Added Table of Contents to main README.md (Rohaq)
|
|
e1016bce password: do not use line input on windows (moneromooo-monero)
|
|
615f287 wallet: fix certificate fingerprint length check (moneromooo-monero)
|
|
46244dd wallet_rpc_server: use original addresses in destinations in get_transfers (moneromooo-monero)
|
|
9a7a453 net_ssl: free certs after setting them up (moneromooo-monero)
|
|
1e8f3f6 rpc: fail update RPC when running offline (moneromooo-monero)
|
|
b8b957d cmake: fix incorrect hint for OPENSSL_ROOT_DIR (moneromooo-monero)
367bb80 mlog: default to not showing SSL errors (moneromooo-monero)
|
|
d47292e error: fix compile error on windows with depends (moneromooo-monero)
|
|
|
|
|
|
|
|
|
|
|
|
Fixed by crCr62U0
|
|
This keeps its builtin command editing away
Thanks iDunk for testing on Windows
|
|
|
|
And add them for pending transfers, where they were missing
|
|
The lock is meant for the network throttle object only,
and this should help coverity get unconfused
|
|
|
|
We don't need secure randomness here, but it should shut coverity up
|
|
|
|
|
|
|
|
|
|
Alternative blocks are cleared on startup unless --keep-alt-blocks
is passed on the command line
|
|
a62e0725 net_ssl: SSL config tweaks for compatibility and security (moneromooo-monero)
|
|
7d5cc035 cmake: fix some case of "backtrace lib not found" breaking (moneromooo-monero)
|
|
e9809382 fix wide difficulty conversion with some versions of boost (moneromooo-monero)
|
|
1c44e658 wallet2: reject standalone short payment IDs in monero: URI API (moneromooo-monero)
|
|
7e5158aa mnemonics: fix 4 byte UTF-8 rewriting (moneromooo-monero)
|
|
ccc1e311 wallet_rpc_server: reject standalone short payment id in address book (moneromooo-monero)
|
|
b4ca72dd wallet2: fix infinite loop picking outputs in corner case (moneromooo-monero)
|
|
a4c4a2d8 blockchain: keep a rolling long term block weight median (moneromooo-monero)
|
|
0eb0d6b8 rpc: improve get_output_distribution (moneromooo-monero)
|
|
28a7d315 p2p: do not send last_seen timestamp to peers (moneromooo-monero)
|
|
f29fecd5 build: debug and test builds via contrib (Dusan Klinec)
|
|
add two RSA based ciphers for Windows/depends compatibility
also enforce server cipher ordering
also set ECDH to auto because vtnerd says it is good :)
When built with the depends system, openssl does not include any
cipher on the current whitelist, so add this one, which fixes the
problem, and does seem sensible.
|
|
|
|
If you use a ; separated set of include and lib directories,
it'll detect the headers in /usr/include and the libraries
where this points to.
|
|
30 blocks should be more than enough to drain the txpool of
transactions made with the old fee scheme
|
|
|
|
state_not_recoverable is not defined there
|
|
|
|
a59c2746 unit_tests: fix crash in debug in output_distribution test (moneromooo-monero)
|
|
5e0da6fb change SSL certificate fingerprint whitelisting from SHA1 to SHA-256 (moneromooo-monero)
|
|
98fb98f9 wallet_rpc_server: adding missing return on error in set_daemon (moneromooo-monero)
9074c0d8 wallet_rpc_server: return false on error in set_log_categories (moneromooo-monero)
968848a7 wallet_rpc_server: fix crash in validate_address if no wallet is loaded (moneromooo-monero)
|
|
64983fce wallet2: default to trying to keep 5 outputs of 2+ monero (moneromooo-monero)
|
|
36ced067 functional_tests: flush stdout before popening new process (moneromooo-monero)
|
|
0aaf5e2a device/trezor: device sorting and filtering improved (Dusan Klinec)
|
|
|
|
|
|
|
|
It fixes at least one case of building on ARM with Docker
|
|
|
|
|
|
|
|
|
|
If we have fewer outputs available on the chain than what we
require, but the output we're spending already has a ring,
it would loop picking outputs randomly, but never find enough.
Also tune logs for better debugging this kind of thing.
|
|
SHA1 is too close to bruteforceable
|
|
|
