gitea-mirror/monero
1
0
Fork 0
mirror of https://github.com/monero-project/monero.git synced 2026-01-17 23:25:46 -08:00
Code Issues Packages Projects Releases Wiki Activity
8,339 Commits 9 Branches 75 Tags
756773e5fe79f970a36615cc178be09aedf4a915
Commit Graph

5846 Commits

Author SHA1 Message Date
moneromooo-monero
756773e5fe serialization: check stream good flag at the end 
just in case
 2019-06-14 08:48:19 +00:00
moneromooo-monero
e3f714aa2a tree-hash: allocate variable memory on heap, not stack 
Large amounts might run out of stack

Reported by guidov
 2019-06-14 08:48:16 +00:00
moneromooo-monero
67baa3a66b cryptonote: throw on tx hash calculation error 2019-06-14 08:48:13 +00:00
moneromooo-monero
d6bb9ecc6f serialization: fail on read_varint error 2019-06-14 08:48:10 +00:00
moneromooo-monero
19490e44af cryptonote_protocol: fix another potential P2P DoS 
When asking for txes in a fluffy transaction, one might ask
for the same (large) tx many times
 2019-06-14 08:48:07 +00:00
moneromooo-monero
fa4aa47ea0 cryptonote_protocol: expand basic DoS protection 
Count transactions as well
 2019-06-14 08:48:04 +00:00
anonimal
3c953d5369 cryptonote_protocol_handler: prevent potential DoS 
Essentially, one can send such a large amount of IDs that core exhausts
all free memory. This issue can theoretically be exploited using very
large CN blockchains, such as Monero.

This is a partial fix. Thanks and credit given to CryptoNote author
'cryptozoidberg' for collaboration and the fix. Also thanks to
'moneromooo'. Referencing HackerOne report #506595.
 2019-06-14 08:48:01 +00:00
luigi1111
538fae4ec2 Merge pull request #5614 
4cff925 p2p: fix GCC 9.1 crash (monermooo-monero)
f47488c Fix GCC 9.1 build warnings (moneromooo-monero)
ce13a98 cmake: do not use -mmitigate-rop on GCC >= 9.1 (moneromooo-monero)
 2019-06-11 17:22:11 -05:00
ston1th
117f9501d8 miner: fix double free of thread attributes 
issue: #5568
 2019-06-09 12:29:03 +02:00
moneromooo-monero
f47488c734 Fix GCC 9.1 build warnings 
GCC wants operator= aand copy ctor to be both defined, or neither
 2019-06-09 09:39:34 +00:00
moneromooo-monero
4cff9257e0 p2p: fix GCC 9.1 crash 2019-06-08 17:53:13 +00:00
Riccardo Spagni
9a2883266c Merge pull request #5578 
b7a96a08 core: update pruning if using --prune-blockchain on a pruned blockchain (moneromooo-monero)
 2019-06-01 20:32:18 +02:00
Riccardo Spagni
3f2c82326e Merge pull request #5572 
a663ccba blockchain: do not try to pop blocks down to the genesis block (moneromooo-monero)
8f2a99d8 core: do not commit half constructed batch db txn (moneromooo-monero)
 2019-06-01 20:31:55 +02:00
Riccardo Spagni
162229286f Merge pull request #5565 
4456a4b9 Fix allow any cert mode in wallet rpc when configured over rpc (Lee Clagett)
fafc5c36 Add ssl_options support to monerod's rpc mode. (Lee Clagett)
ce73cc3a Fix configuration bug; wallet2 --daemon-ssl-allow-any-cert now works. (Lee Clagett)
 2019-06-01 20:31:13 +02:00
Riccardo Spagni
ff5b30864a Merge pull request #5564 
b6830db2 Fix #5553 (Howard Chu)
 2019-06-01 20:30:01 +02:00
moneromooo-monero
b7a96a0874 core: update pruning if using --prune-blockchain on a pruned blockchain 
Avoids a massive amount of spurious warnings if the last update before
the daemon exited was a while ago and the daemon was syncing
 2019-05-28 09:12:29 +00:00
moneromooo-monero
a663ccba71 blockchain: do not try to pop blocks down to the genesis block 2019-05-26 17:11:37 +00:00
moneromooo-monero
8f2a99d8ab core: do not commit half constructed batch db txn 2019-05-25 16:25:10 +00:00
Lee Clagett
4456a4b9b3 Fix allow any cert mode in wallet rpc when configured over rpc 2019-05-21 16:17:50 +00:00
Lee Clagett
fafc5c3692 Add ssl_options support to monerod's rpc mode. 2019-05-21 16:17:34 +00:00
Lee Clagett
ce73cc3add Fix configuration bug; wallet2 --daemon-ssl-allow-any-cert now works. 2019-05-21 16:17:13 +00:00
Howard Chu
b6830db2d4 Fix #5553 
Make sure the tip hash still matches the cached block
 2019-05-19 03:02:33 +01:00
moneromooo-monero
915f59e3c0 wallet: add unlock_time details to show_transfers 
also add a note when receiving the tx, because the user
might not notice the "XXX blocks to unlock" in the balance.
 2019-05-16 21:37:05 +00:00
Riccardo Spagni
e8487fa46b Merge pull request #5539 
3f612cda Changed odd bullet point to low level header (Rohaq)
af9bc4ec Used subeaders to avoid slightly wonky looking formatting (Rohaq)
1873af35 Made code block usage consistent across all .md files (Rohaq)
68103075 Updated Copyright notice (Rohaq)
39bd157f Added Table of Contents to main README.md (Rohaq)
 2019-05-15 16:10:41 +02:00
Riccardo Spagni
5e80b3c3ef Merge pull request #5535 
e1016bce password: do not use line input on windows (moneromooo-monero)
 2019-05-15 16:06:58 +02:00
luigi1111
1607419e38 Merge pull request #5538 
615f287 wallet: fix certificate fingerprint length check (moneromooo-monero)
 2019-05-14 16:02:59 -05:00
luigi1111
eedf5106f5 Merge pull request #5532 
46244dd wallet_rpc_server: use original addresses in destinations in get_transfers (moneromooo-monero)
 2019-05-14 15:59:34 -05:00
luigi1111
5a67ff2b32 Merge pull request #5526 
1e8f3f6 rpc: fail update RPC when running offline (moneromooo-monero)
 2019-05-14 15:54:10 -05:00
luigi1111
266f68be32 Merge pull request #5512 
d47292e error: fix compile error on windows with depends (moneromooo-monero)
 2019-05-14 15:51:14 -05:00
Rohaq
1873af35bf Made code block usage consistent across all .md files 2019-05-12 05:16:26 +01:00
moneromooo-monero
615f287aec wallet: fix certificate fingerprint length check 
Fixed by crCr62U0
 2019-05-11 13:05:06 +00:00
moneromooo-monero
e1016bce14 password: do not use line input on windows 
This keeps its builtin command editing away

Thanks iDunk for testing on Windows
 2019-05-10 18:56:50 +00:00
moneromooo-monero
46244dd08c wallet_rpc_server: use original addresses in destinations in get_transfers 
And add them for pending transfers, where they were missing
 2019-05-10 14:44:13 +00:00
moneromooo-monero
1e8f3f66bf rpc: fail update RPC when running offline 2019-05-09 19:14:49 +00:00
Riccardo Spagni
f64f59627d Merge pull request #5510 
e9809382 fix wide difficulty conversion with some versions of boost (moneromooo-monero)
 2019-05-07 17:36:27 +02:00
Riccardo Spagni
97cb1c9436 Merge pull request #5508 
1c44e658 wallet2: reject standalone short payment IDs in monero: URI API (moneromooo-monero)
 2019-05-07 17:35:28 +02:00
Riccardo Spagni
a22a8b0f2b Merge pull request #5505 
7e5158aa mnemonics: fix 4 byte UTF-8 rewriting (moneromooo-monero)
 2019-05-07 17:34:53 +02:00
Riccardo Spagni
c20221f290 Merge pull request #5503 
ccc1e311 wallet_rpc_server: reject standalone short payment id in address book (moneromooo-monero)
 2019-05-07 17:34:16 +02:00
Riccardo Spagni
ebb1c03e8c Merge pull request #5501 
b4ca72dd wallet2: fix infinite loop picking outputs in corner case (moneromooo-monero)
 2019-05-07 17:32:33 +02:00
Riccardo Spagni
2d04b0e500 Merge pull request #5499 
a4c4a2d8 blockchain: keep a rolling long term block weight median (moneromooo-monero)
 2019-05-07 17:31:45 +02:00
Riccardo Spagni
9d91301faa Merge pull request #5496 
0eb0d6b8 rpc: improve get_output_distribution (moneromooo-monero)
 2019-05-07 17:30:27 +02:00
Riccardo Spagni
cf8319602d Merge pull request #5481 
28a7d315 p2p: do not send last_seen timestamp to peers (moneromooo-monero)
 2019-05-07 17:29:42 +02:00
moneromooo-monero
d47292eb3d error: fix compile error on windows with depends 
state_not_recoverable is not defined there
 2019-05-02 10:14:09 +00:00
moneromooo-monero
a4c4a2d8aa blockchain: keep a rolling long term block weight median 2019-05-02 09:47:01 +00:00
Riccardo Spagni
77f9bfa4d5 Merge pull request #5493 
5e0da6fb change SSL certificate fingerprint whitelisting from SHA1 to SHA-256 (moneromooo-monero)
 2019-05-02 11:30:28 +02:00
Riccardo Spagni
52eb454d7b Merge pull request #5491 
98fb98f9 wallet_rpc_server: adding missing return on error in set_daemon (moneromooo-monero)
9074c0d8 wallet_rpc_server: return false on error in set_log_categories (moneromooo-monero)
968848a7 wallet_rpc_server: fix crash in validate_address if no wallet is loaded (moneromooo-monero)
 2019-05-02 11:30:11 +02:00
Riccardo Spagni
efd2412e77 Merge pull request #5489 
64983fce wallet2: default to trying to keep 5 outputs of 2+ monero (moneromooo-monero)
 2019-05-02 11:29:25 +02:00
Riccardo Spagni
08ab0cbdda Merge pull request #5476 
0aaf5e2a device/trezor: device sorting and filtering improved (Dusan Klinec)
 2019-05-02 11:28:51 +02:00
moneromooo-monero
e980938210 fix wide difficulty conversion with some versions of boost 2019-05-01 19:58:09 +00:00
moneromooo-monero
1c44e65863 wallet2: reject standalone short payment IDs in monero: URI API 2019-05-01 18:41:39 +00:00