git-annex-gpl - git-annex without the AGPL

	Commit message (Collapse)	Author	Age
*	Support all common locations of the torrc file.	Joey Hess	2016-12-28
\|
*	webapp: check that tor and magic wormhole are installed	Joey Hess	2016-12-24
\|
*	include tor-annex in hidden service directory names	Joey Hess	2016-12-21
\| \| \| \| \| \|	To make it easier to manage/delete them etc. Backwards compatablity is preserved for existing tor configs.
*	relocate tor socket out of /etc	Joey Hess	2016-12-20
\| \| \| \| \| \| \| \| \| \| \| \| \|	weasel explained that apparmor limits on what files tor can read do not apply to sockets (because they're not files). And apparently the problems I was seeing with hidden services not being accessible had to do with onion address propigation and not the location of the socket file. remotedaemon looks up the HiddenServicePort in torrc, so if it was previously configured with the socket in /etc, that will still work. This commit was sponsored by Denis Dzyubenko on Patreon.
*	typo	Joey Hess	2016-12-18
\|
*	cleanup	Joey Hess	2016-11-29
\|
*	finish git-annex enable-tor	Joey Hess	2016-11-29
\| \| \| \| \|	Make it stash the address away for git-annex p2p to use later, rather than outputting it. And, look up the UUID itself.
*	move tor hidden service socket to /etc, temporarily violating the FHS	Joey Hess	2016-11-29
\| \| \| \| \| \| \|	On Debian, apparmor prevents tor from reading from most locations. And, it silently fails if it is prevented from reading the hidden service socket. I filed #846275 about this; violating the FHS is the least bad of a bad set of choices until that bug is fixed.
*	pull/push over tor working now	Joey Hess	2016-11-21
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	Still a couple bugs: * Closing the connection to the server leaves git upload-pack / receive-pack running, which could be used to DOS. * Sometimes the data is transferred, but it fails at the end, sometimes with: git-remote-tor-annex: <socket: 10>: commitBuffer: resource vanished (Broken pipe) Must be a race condition around shutdown.
*	Added git-remote-tor-annex, which allows git pull and push to the tor hidden ↵	Joey Hess	2016-11-21
\| \| \| \| \| \| \| \| \| \| \|	service. Almost working, but there's a bug in the relaying. Also, made tor hidden service setup pick a random port, to make it harder to port scan. This commit was sponsored by Boyd Stephen Smith Jr. on Patreon.
*	remotedaemon: serve tor hidden service	Joey Hess	2016-11-20
\|
*	use socket for tor hidden service	Joey Hess	2016-11-14
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This avoids needing to bind to the right port before something else does. The socket is in /var/run/user/$uid/ which ought to be writable by only that uid. At least it is on linux systems using systemd. For Windows, may need to revisit this and use ports or something. The first version of tor to support sockets for hidden services was 0.2.6.3. That is not in Debian stable, but is available in backports. This commit was sponsored by andrea rota.
*	git-annex enable-tor command	Joey Hess	2016-11-14
	Tor unfortunately does not come out of the box configured to let hidden services register themselves on the fly via the ControlPort. And, changing the config to enable the ControlPort and a particular type of auth for it may break something already using the ControlPort, or lessen the security of the system. So, this leaves only one option to us: Add a hidden service to the torrc. git-annex enable-tor does so, and picks an unused high port for tor to listen on for connections to the hidden service. It's up to the caller to somehow pick a local port to listen on that won't be used by something else. That may be difficult to do.. This commit was sponsored by Jochen Bartl on Patreon.