Age | Commit message (Collapse) | Author |
|
Github-Pull: #6795
Rebased-From: 21d27ebad5721bc61c62bc72dc3ab3197f9da268
|
|
e328605 build: fix osx determinism for OSX (Cory Fields)
|
|
Backport of 90c71548c795787b008bc337cb9332f75d1bccdb
Linux/Windows wrapped 'date' rather than patching the OpenSSL build.
|
|
|
|
Translations for the 0.9 branch have been closed. Make sure that all the
translation work done up to now ends up in the branch.
|
|
9cd1dd9 Fix priority calculation in CreateTransaction (Alex Morcos)
|
|
Make this projection of priority in 1 block match the calculation in the low priority reject code.
Rebased-From: 2d9b0b7f03a268e557c6dce1dfa29401b5c9178b
Github-Pull: #5675
Conflicts:
src/wallet.cpp
|
|
Rebased-From: 730b1ed1a0d2b2b0f278ee808e7e266a50fac94b
Github-Pull: #5154
|
|
Normally bitcoin core does not display any network originated strings without
sanitizing or hex encoding. This wasn't done for strcommand in many places.
This could be used to play havoc with a terminal displaying the logs,
especially with printtoconsole in use.
Thanks to Evil-Knievel for reporting this issue.
Conflicts:
src/main.cpp
src/net.cpp
src/rpcserver.cpp
Rebased-From: 28d4cff0ed2d4438da4bbf2d4ca0465715603af5
Github-Pull: #5770
|
|
3230b32 Raise version of created blocks, and enforce DERSIG in mempool (Pieter Wuille)
989d499 Backport of some of BIP66's tests (Pieter Wuille)
ab03660 Implement BIP 66 validation rules and switchover logic (Pieter Wuille)
|
|
8438074 build: fix dynamic boost check when --with-boost= is used (cherry picked from commit a7d1f035ae2b33d5242d9aee5da1b538a0f5adba) (Cory Fields)
|
|
(cherry picked from commit a7d1f035ae2b33d5242d9aee5da1b538a0f5adba)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Add some defensive programming on top of #5634.
This copies the respective OpenSSL code in ECDSA_verify in
OpenSSL pre-1.0.1k (e.g. https://github.com/openssl/openssl/blob/OpenSSL_1_0_1j/crypto/ecdsa/ecs_vrf.c#L89)
more closely.
As reported by @sergiodemianlerner.
Github-Pull: #5640
Rebased-From: c6b7b29f232c651f898eeffb93f36c8f537c56d2
|
|
Not necessary for windows or linux, as the intermedate build result
doesn't change.
However for OSX on 0.9 the builds for the intermediates are not
deterministic, so this cannot be assessed. Bump the dep version just in
case.
|
|
|
|
Github-Pull: #5634
Rebased-From: 8dccba6a45db0466370726ed462b9da2eae43bce
|
|
|
|
New versions of OpenSSL will reject non-canonical DER signatures. However,
it'll happily decode them. Decode then re-encode before verification in order
to ensure that it is properly consumed.
Github-Pull: #5634
Rebased-From: 488ed32f2ada1d1dd108fc245d025c4d5f252783
|
|
TLS is subject to downgrade attacks when SSLv3 is available, and
SSLv3 has vulnerabilities.
The popular solution is to disable SSLv3. On the web this breaks
some tiny number of very old clients. While Bitcoin RPC shouldn't
be exposed to the open Internet, it also shouldn't be exposed to
really old SSL implementations, so it shouldn't be a major issue
for us to disable SSLv3.
There is more information on the downgrade attacks and disabling
SSLv3 at https://disablessl3.com/ .
Rebased-From: 683dc4009b2b01699e672f8150c28e2ebe0aae19
|
|
Rebased-From: 12a49cac0a561ada277e93549cae26a3123a6023
|
|
Previously -proxy was not setting the proxy for IsLimited networks, so
if you set your configuration to be onlynet=tor you wouldn't get an
IPv4 proxy set.
The payment protocol gets its proxy configuration from the IPv4 proxy,
and so it would experience a connection leak.
This addresses issue #5355 and also clears up a cosmetic bug where
getinfo proxy output shows nothing when onlynet=tor is set.
Conflicts:
src/init.cpp
Rebased-From: 3c777141349ad82d679a278df0619968af53c23
Github-Issue: #5358
|
|
Refactor common -alertnotify code into static CAlert::Notify method.
|
|
Qt5 is bottled, so configure won't find it without some help. Use
brew to find out its prefix.
Also, qt5 added the host_bins variable to pkg-config, use it.
|
|
Rebased-From: 0dcb0a55782d676798013f20d7e2ab826ad4d96d
|
|
Code signing failed for me on OSX 10.9.5 because the
Versions/Current symbolic links were being replaced
with a duplicate copy of the frameworks' code.
Releases were bigger than they needed to be, for the
same reason.
Rebased-From: 965c306d6d6ee3695dc50615a87e25c248c41a89
|
|
The approach from 65f3fa8d1 worked for signing on 10.9.4, but not newer
versions. 10.9.5 (and up) want each framework to stand alone.
Now in addition to copying the plist's from Qt for each framework, we put them
in per-version dirs and only symlink to the latest, rather than using symlinks
for any contents.
Rebased-From: af0bd5e
|
|
When building from a distdir as gitian does, checking for the .git dir
is not reliable. Instead, ask git if we're in a repo.
Rebase this into 0.9.3 branch after final to make sure that 0.9.4 will
have correct version strings in rcs.
Rebased-From: c65cc8c
|
|
The cdrkit.org domain expired.
Thanks to gdm85 on IRC for reporting this.
Rebased-From: 27fc5277f73e510c2150dc29308fdf2dc6a96053
|
|
Rebased-From: d547ebf
|
|
Starting with 10.9, Framework versions must be signed individually, rather
than as a single bundle version, in order to be properly codesigned. This
change ensures that the proper plist files and symlinks are present prior to
packaging.
Rebased-From: 65f3fa8
|
|
|
|
|
|
There is no reason to store thousands of orphan transactions;
normally an orphan's parents will either be broadcast or
mined reasonably quickly.
This pull drops the maximum number of orphans from 10,000 down
to 100, and adds a command-line option (-maxorphantx) that is
just like -maxorphanblocks to override the default.
|
|
#4253)
Rebased-From: 7b45d943b29a443f1ac808c9ee4eeed6df0db9cc
|
|
Prevent denial-of-service attacks by banning
peers that send us invalid orphan transactions
and only storing orphan transactions given to
us by a peer while the peer is connected.
Rebased-From: c74332c67806ed92e6e18de174671a7c30608780
|
|
reduces time to service requests improving performance
Rebased-From: 9189f5fe4df1ac7ea6ca75ceada867beafda90a9
|
|
found
It's only confusing people into thinking that they should mess with
boost versions, which should not be necessary to get bitcoind to work.
If there is a bug in the build system with autodetecting boost it needs
to be solved not worked around.
Rebased-From: 539abc4729ea16039d148cfa3b771929f7d37584
|
|
Bitcoin core should work with any remotely recent boost version
if a proper build environment is present. Remove a confusing comment
from the build documentation.
Rebased-From: bd45b1a
|
|
Rebased-From: 540ac45
Rebased-By: Wladimir J. van der Laan <laanwj@gmail.com>
|
|
Tighten resource constraints on CNode.
Rebased-From: d4168c8
Rebased-By: Wladimir J. van der Laan <laanwj@gmail.com>
|
|
Rebased-From: def2fdb
Rebased-By: Wladimir J. van der Laan
|
|
Rebased-From: 89d91f6
Rebased-By: Wladimir J. van der Laan <laanwj@gmail.com>
|
|
This does not add any new messages from transifex, it just filters the
current ones.
|