tor-commits January 2012

tor-commits@lists.torproject.org

14 participants
852 discussions

[obfsproxy/master] Move the obfs2 specification and threat model to doc/obfs2/.
by nickm＠torproject.org 13 Jan '12

13 Jan '12

commit ba1fe6d23905cdaa4536ce17128c1e2dc90dbe5d Author: George Kadianakis <desnacked(a)riseup.net> Date: Thu Jan 12 15:29:17 2012 +0200 Move the obfs2 specification and threat model to doc/obfs2/. --- doc/obfs2/protocol-spec.txt | 103 +++++++++++++++++++++++++++++++++++++++++++ doc/obfs2/threat-model.txt | 81 +++++++++++++++++++++++++++++++++ doc/obfs2_threat_model.txt | 81 --------------------------------- doc/protocol-spec.txt | 103 ------------------------------------------- 4 files changed, 184 insertions(+), 184 deletions(-) diff --git a/doc/obfs2/protocol-spec.txt b/doc/obfs2/protocol-spec.txt new file mode 100644 index 0000000..c0b0578 --- /dev/null +++ b/doc/obfs2/protocol-spec.txt @@ -0,0 +1,103 @@ + obfs2 (The Twobfuscator) + +0. Protocol overview + + This is a protocol obfuscation layer for TCP protocols. Its purpose + is to keep a third party from telling what protocol is in use based + on message contents. It is based on brl's ssh obfuscation protocol. + + It does not provide authentication or data integrity. It does not + hide data lengths. It is more suitable for providing a layer of + obfuscation for an existing authenticated protocol, like SSH or TLS. + + The protocol has two phases: in the first phase, the parties + establish keys. In the second, the parties exchange superenciphered + traffic. + +1. Primitives, notation, and constants. + + H(x) is SHA256 of x. + H^n(x) is H(x) called iteratively n times. + + E(K,s) is the AES-CTR-128 encryption of s using K as key. + + x | y is the concatenation of x and y. + UINT32(n) is the 4 byte value of n in big-endian (network) order. + SR(n) is n bytes of strong random data. + WR(n) is n bytes of weaker random data. + "xyz" is the ASCII characters 'x', 'y', and 'z', not NUL-terminated. + s[:n] is the first n bytes of s. + s[n:] is the last n bytes of s. + + MAGIC_VALUE is 0x2BF5CA7E + SEED_LENGTH is 16 + MAX_PADDING is 8192 + HASH_ITERATIONS is 100000 + + KEYLEN is the length of the key used by E(K,s) -- that is, 16. + IVLEN is the length of the IV used by E(K,s) -- that is, 16. + + HASHLEN is the length of the output of H() -- that is, 32. + + MAC(s, x) = H(s | x | s) + + A "byte" is an 8-bit octet. + + We require that HASHLEN >= KEYLEN + IVLEN + +2. Key establishment phase. + + The party who opens the connection is the 'initiator'; the one who + accepts it is the 'responder'. Each begins by generating a seed + and a padding key as follows. The initiator generates: + + INIT_SEED = SR(SEED_LENGTH) + INIT_PAD_KEY = MAC("Initiator obfuscation padding", INIT_SEED)[:KEYLEN] + + And the responder generates: + + RESP_SEED = SR(SEED_LENGTH) + RESP_PAD_KEY = MAC("Responder obfuscation padding", INIT_SEED)[:KEYLEN] + + Each then generates a random number PADLEN in range from 0 through + MAX_PADDING (inclusive). + + The initiator then sends: + + INIT_SEED | E(INIT_PAD_KEY, UINT32(MAGIC_VALUE) | UINT32(PADLEN) | WR(PADLEN)) + + and the responder sends: + + RESP_SEED | E(RESP_PAD_KEY, UINT32(MAGIC_VALUE) | UINT32(PADLEN) | WR(PADLEN)) + + Upon receiving the SEED from the other party, each party derives + the other party's padding key value as above, and decrypts the next + 8 bytes of the key establishment message. If the MAGIC_VALUE does + not match, or the PADLEN value is greater than MAX_PADDING, the + party receiving it should close the connection immediately. + Otherwise, it should read the remaining PADLEN bytes of padding data + and discard them. + + Additional keys are then derived as: + + INIT_SECRET = MAC("Initiator obfuscated data", INIT_SEED|RESP_SEED) + RESP_SECRET = MAC("Responder obfuscated data", INIT_SEED|RESP_SEED) + INIT_KEY = INIT_SECRET[:KEYLEN] + INIT_IV = INIT_SECRET[KEYLEN:] + RESP_KEY = RESP_SECRET[:KEYLEN] + RESP_IV = RESP_SECRET[KEYLEN:] + + The INIT_KEY value keys a stream cipher used to encrypt values from + initiator to responder thereafter. The stream cipher's IV is + INIT_IV. The RESP_KEY value keys a stream cipher used to encrypt + values from responder to initiator thereafter. That stream cipher's + IV is RESP_IV. + +3. Shared-secret extension + + Optionally, if the client and server share a secret value SECRET, + they can replace the MAC function with: + + MAC(s,x) = H^n(s | x | H(SECRET) | s) + + where n = HASH_ITERATIONS. diff --git a/doc/obfs2/threat-model.txt b/doc/obfs2/threat-model.txt new file mode 100644 index 0000000..c13da2c --- /dev/null +++ b/doc/obfs2/threat-model.txt @@ -0,0 +1,81 @@ + Threat model for the obfs2 obfuscation protocol + + George Kadianakis + Nick Mathewson + +0. Abstract + + We discuss the intended threat model for the 'obfs2' protocol + obfuscator, its limitations, and its implications for the protocol + design. + + The 'obfs2' protocol is based on Bruce Leidl's obfuscated SSH layer, + and is documented in the 'doc/protocol-spec.txt' file in the obfsproxy + distribution. + +1. Adversary capabilities and non-capabilities + + We assume a censor with limited per-connection resources. + + The adversary controls the infrastructure of the network within and + at the edges of her jurisdiction, and she can potentially monitor, + block, alter, and inject trafﬁc anywhere within this region. + + However, the adversary's computational resources are limited. + Specifically, the adversary does not have the resources in her + censorship infrastructure to store very much long-term information + about any given IP or connection. + + The adversary also holds a blacklist of network protocols, which she + is interested in blocking. We assume that the adversary does not have + a complete list of specific IPs running that protocol, though + preventing this is out-of-scope. + +2. The adversary's goals + + The censor wants to ban particular encrypted protocols or + applications, and is willing to tolerate some collateral damage, but + is not willing to ban all encrypted traffic entirely. + +3. Goals of obfs2 + + Currently, most attackers in the category described above implement + their censorship by one or more firewalls that looking for protocol + signatures and block protocols matching those signatures. These + signatures are typically in the form of static strings to be matched + or regular expressions to be evaluated, over a packet or TCP flow. + + obfs2 attempts to counter the above attack by removing content + signatures from network traffic. obfs2 encrypts the traffic stream + with a stream cipher, which results in the traffic looking uniformly + random. + +4. Non-goals of obfs2 + + obfs2 was designed as a proof-of-concept for Tor's pluggable + transport system: it is simple, useable and easily implementable. It + does _not_ try to protect against more sophisticated adversaries. + + obfs2 does not try to protect against non-content protocol + fingerprints, like the packet size or timing. + + obfs2 does not try to protect against attackers capable of measuring + traffic entropy. + + obfs2 (in its default configuration) does not try to protect against + Deep Packet Inspection machines that expect the obfs2 protocol and + have the resources to run it. Such machines can trivially retrieve + the decryption key off the traffic stream and use it to decrypt obfs2 + and detect the Tor protocol. + + obfs2 assumes that the underlying protocol provides (or does not + need!) integrity, confidentiality, and authentication; it provides + none of those on its own. + + In other words, obfs2 does not try to protect against anything other + than fingerprintable TLS content patterns. + + That said, obfs2 is not useless. It protects against many real-life + Tor traffic detection methods currentl deployed, since most of them + currently use static SSL handshake strings as signatures. + diff --git a/doc/obfs2_threat_model.txt b/doc/obfs2_threat_model.txt deleted file mode 100644 index c13da2c..0000000 --- a/doc/obfs2_threat_model.txt +++ /dev/null @@ -1,81 +0,0 @@ - Threat model for the obfs2 obfuscation protocol - - George Kadianakis - Nick Mathewson - -0. Abstract - - We discuss the intended threat model for the 'obfs2' protocol - obfuscator, its limitations, and its implications for the protocol - design. - - The 'obfs2' protocol is based on Bruce Leidl's obfuscated SSH layer, - and is documented in the 'doc/protocol-spec.txt' file in the obfsproxy - distribution. - -1. Adversary capabilities and non-capabilities - - We assume a censor with limited per-connection resources. - - The adversary controls the infrastructure of the network within and - at the edges of her jurisdiction, and she can potentially monitor, - block, alter, and inject trafﬁc anywhere within this region. - - However, the adversary's computational resources are limited. - Specifically, the adversary does not have the resources in her - censorship infrastructure to store very much long-term information - about any given IP or connection. - - The adversary also holds a blacklist of network protocols, which she - is interested in blocking. We assume that the adversary does not have - a complete list of specific IPs running that protocol, though - preventing this is out-of-scope. - -2. The adversary's goals - - The censor wants to ban particular encrypted protocols or - applications, and is willing to tolerate some collateral damage, but - is not willing to ban all encrypted traffic entirely. - -3. Goals of obfs2 - - Currently, most attackers in the category described above implement - their censorship by one or more firewalls that looking for protocol - signatures and block protocols matching those signatures. These - signatures are typically in the form of static strings to be matched - or regular expressions to be evaluated, over a packet or TCP flow. - - obfs2 attempts to counter the above attack by removing content - signatures from network traffic. obfs2 encrypts the traffic stream - with a stream cipher, which results in the traffic looking uniformly - random. - -4. Non-goals of obfs2 - - obfs2 was designed as a proof-of-concept for Tor's pluggable - transport system: it is simple, useable and easily implementable. It - does _not_ try to protect against more sophisticated adversaries. - - obfs2 does not try to protect against non-content protocol - fingerprints, like the packet size or timing. - - obfs2 does not try to protect against attackers capable of measuring - traffic entropy. - - obfs2 (in its default configuration) does not try to protect against - Deep Packet Inspection machines that expect the obfs2 protocol and - have the resources to run it. Such machines can trivially retrieve - the decryption key off the traffic stream and use it to decrypt obfs2 - and detect the Tor protocol. - - obfs2 assumes that the underlying protocol provides (or does not - need!) integrity, confidentiality, and authentication; it provides - none of those on its own. - - In other words, obfs2 does not try to protect against anything other - than fingerprintable TLS content patterns. - - That said, obfs2 is not useless. It protects against many real-life - Tor traffic detection methods currentl deployed, since most of them - currently use static SSL handshake strings as signatures. - diff --git a/doc/protocol-spec.txt b/doc/protocol-spec.txt deleted file mode 100644 index c0b0578..0000000 --- a/doc/protocol-spec.txt +++ /dev/null @@ -1,103 +0,0 @@ - obfs2 (The Twobfuscator) - -0. Protocol overview - - This is a protocol obfuscation layer for TCP protocols. Its purpose - is to keep a third party from telling what protocol is in use based - on message contents. It is based on brl's ssh obfuscation protocol. - - It does not provide authentication or data integrity. It does not - hide data lengths. It is more suitable for providing a layer of - obfuscation for an existing authenticated protocol, like SSH or TLS. - - The protocol has two phases: in the first phase, the parties - establish keys. In the second, the parties exchange superenciphered - traffic. - -1. Primitives, notation, and constants. - - H(x) is SHA256 of x. - H^n(x) is H(x) called iteratively n times. - - E(K,s) is the AES-CTR-128 encryption of s using K as key. - - x | y is the concatenation of x and y. - UINT32(n) is the 4 byte value of n in big-endian (network) order. - SR(n) is n bytes of strong random data. - WR(n) is n bytes of weaker random data. - "xyz" is the ASCII characters 'x', 'y', and 'z', not NUL-terminated. - s[:n] is the first n bytes of s. - s[n:] is the last n bytes of s. - - MAGIC_VALUE is 0x2BF5CA7E - SEED_LENGTH is 16 - MAX_PADDING is 8192 - HASH_ITERATIONS is 100000 - - KEYLEN is the length of the key used by E(K,s) -- that is, 16. - IVLEN is the length of the IV used by E(K,s) -- that is, 16. - - HASHLEN is the length of the output of H() -- that is, 32. - - MAC(s, x) = H(s | x | s) - - A "byte" is an 8-bit octet. - - We require that HASHLEN >= KEYLEN + IVLEN - -2. Key establishment phase. - - The party who opens the connection is the 'initiator'; the one who - accepts it is the 'responder'. Each begins by generating a seed - and a padding key as follows. The initiator generates: - - INIT_SEED = SR(SEED_LENGTH) - INIT_PAD_KEY = MAC("Initiator obfuscation padding", INIT_SEED)[:KEYLEN] - - And the responder generates: - - RESP_SEED = SR(SEED_LENGTH) - RESP_PAD_KEY = MAC("Responder obfuscation padding", INIT_SEED)[:KEYLEN] - - Each then generates a random number PADLEN in range from 0 through - MAX_PADDING (inclusive). - - The initiator then sends: - - INIT_SEED | E(INIT_PAD_KEY, UINT32(MAGIC_VALUE) | UINT32(PADLEN) | WR(PADLEN)) - - and the responder sends: - - RESP_SEED | E(RESP_PAD_KEY, UINT32(MAGIC_VALUE) | UINT32(PADLEN) | WR(PADLEN)) - - Upon receiving the SEED from the other party, each party derives - the other party's padding key value as above, and decrypts the next - 8 bytes of the key establishment message. If the MAGIC_VALUE does - not match, or the PADLEN value is greater than MAX_PADDING, the - party receiving it should close the connection immediately. - Otherwise, it should read the remaining PADLEN bytes of padding data - and discard them. - - Additional keys are then derived as: - - INIT_SECRET = MAC("Initiator obfuscated data", INIT_SEED|RESP_SEED) - RESP_SECRET = MAC("Responder obfuscated data", INIT_SEED|RESP_SEED) - INIT_KEY = INIT_SECRET[:KEYLEN] - INIT_IV = INIT_SECRET[KEYLEN:] - RESP_KEY = RESP_SECRET[:KEYLEN] - RESP_IV = RESP_SECRET[KEYLEN:] - - The INIT_KEY value keys a stream cipher used to encrypt values from - initiator to responder thereafter. The stream cipher's IV is - INIT_IV. The RESP_KEY value keys a stream cipher used to encrypt - values from responder to initiator thereafter. That stream cipher's - IV is RESP_IV. - -3. Shared-secret extension - - Optionally, if the client and server share a secret value SECRET, - they can replace the MAC function with: - - MAC(s,x) = H^n(s | x | H(SECRET) | s) - - where n = HASH_ITERATIONS.

1 0

[obfsproxy/master] Improve the user guides a bit.
by nickm＠torproject.org 13 Jan '12

13 Jan '12

commit b166ec62c24830d47a1e9eafe33520bdff802868 Author: George Kadianakis <desnacked(a)riseup.net> Date: Thu Jan 12 15:38:37 2012 +0200 Improve the user guides a bit. --- doc/obfs2/howto/client-external-howto.txt | 4 ++-- doc/obfs2/howto/client-managed-howto.txt | 4 ++-- doc/obfs2/howto/server-external-howto.txt | 4 ++-- doc/obfs2/howto/server-managed-howto.txt | 4 ++-- 4 files changed, 8 insertions(+), 8 deletions(-) diff --git a/doc/obfs2/howto/client-external-howto.txt b/doc/obfs2/howto/client-external-howto.txt index 523984f..ac81262 100644 --- a/doc/obfs2/howto/client-external-howto.txt +++ b/doc/obfs2/howto/client-external-howto.txt @@ -1,5 +1,5 @@ -How to set up Tor Client with obfsproxy -======================================= +How to set up Tor Client with obfsproxy (external proxy mode) +============================================================= [1] You will need: diff --git a/doc/obfs2/howto/client-managed-howto.txt b/doc/obfs2/howto/client-managed-howto.txt index f544189..d76fc43 100644 --- a/doc/obfs2/howto/client-managed-howto.txt +++ b/doc/obfs2/howto/client-managed-howto.txt @@ -1,5 +1,5 @@ -How to Set up a Tor Client with obfsproxy -========================================= +How to Set up a Tor Client with obfsproxy (managed proxy mode) +============================================================== [1] You will need: diff --git a/doc/obfs2/howto/server-external-howto.txt b/doc/obfs2/howto/server-external-howto.txt index 34fe665..749d4f1 100644 --- a/doc/obfs2/howto/server-external-howto.txt +++ b/doc/obfs2/howto/server-external-howto.txt @@ -1,5 +1,5 @@ -How to Set up a Tor Bridge with obfsproxy -========================================= +How to Set up a Tor Bridge with obfsproxy (external proxy mode) +=============================================================== [1] You will need: diff --git a/doc/obfs2/howto/server-managed-howto.txt b/doc/obfs2/howto/server-managed-howto.txt index 4f6c39d..0791d09 100644 --- a/doc/obfs2/howto/server-managed-howto.txt +++ b/doc/obfs2/howto/server-managed-howto.txt @@ -1,5 +1,5 @@ -How to Set up Tor Bridge with obfsproxy -======================================= +How to Set up Tor Bridge with obfsproxy (managed proxy mode) +============================================================ [1] You will need:

1 0

[obfsproxy/master] Update README and remove the philosophical threat model.
by nickm＠torproject.org 13 Jan '12

13 Jan '12

commit fff52d137c564b5966ff971cbe5ad94afea750ef Author: George Kadianakis <desnacked(a)riseup.net> Date: Thu Jan 12 15:27:19 2012 +0200 Update README and remove the philosophical threat model. --- README | 20 +++----- doc/THREAT_MODEL_PHILOSOPHICAL | 99 ---------------------------------------- 2 files changed, 7 insertions(+), 112 deletions(-) diff --git a/README b/README index b69b65c..ef5ad93 100644 --- a/README +++ b/README @@ -1,17 +1,11 @@ -This doesn't work yet. +obfsproxy: a pluggable transports proxy -It requires OpenSSL 0.9.7 or later. (I would require 0.9.8, but that would -break OSX 10.5.) +obfsproxy is a pluggable transports proxy written in C. It's compliant +to the Tor pluggable transports specification, and its modular +architecture allows it to support multiple pluggable transports. -It requires Libevent 2.0 or later. +To build obfsproxy from source: + ./autogen.sh && ./configure && make -See doc/protocol-spec.txt for the protocol design. It is based on brl's -obfuscated openssh protocol. +See doc/ for more obfsproxy information. -See doc/TODO for open tasks. - -This project might get renamed to "twobfuscate", depending. - -Happy hacking! - - -- nickm diff --git a/doc/THREAT_MODEL_PHILOSOPHICAL b/doc/THREAT_MODEL_PHILOSOPHICAL deleted file mode 100644 index d67af1b..0000000 --- a/doc/THREAT_MODEL_PHILOSOPHICAL +++ /dev/null @@ -1,99 +0,0 @@ - Role of this document - -The role of this document is to give a clear image of what obfs2 -provides to a censored Tor user. -The role of this document is *not* to describe the censorship ecosystem, -or to analyze the full threat model of Tor. - - Terminology -* Censorship: - 'Censorship is the suppression of speech or other public - communication which may be considered objectionable, harmful, - sensitive, or inconvenient to the general body of people as - determined by a government, media outlet, or other controlling - body.' -* Anonymity - Anonymity is the state of an individual's personal identity being - publicly unknown. Anonymity does not imply Privacy. -* Tor - Tor is a software system and a computer network intended to provide - online anonymity. It's main application is 'tor'. -* Privacy - Privacy is used to prevent the disclosure of information to - unauthorized individuals or systems. Privacy does not imply - Anonymity. -* Tor bridge - A Tor bridge is a component of the tor network that is not publicly - announced as part of it. It's main purpose is Censorship - circumvention since finding and blocking a bridge is considered - non-trivial. -* obfsproxy - obfsproxy is an application that accepts data as input and can - reshape it into another form. - When used with tor, it can transform tor's traffic into other - protocols in the hope of dodging Censorship. -* obfs2 - obfs2 is a protocol supported by obfsproxy. It shapes data by - encrypting them with a stream cipher with a randomly generated - key. It also supports pre-shared passwords. - - Players: -* Censored tor/obfsproxy user: - A censored tor/obfsproxy user is an Internet user that is censored - by 'A Man In The Middle'. He wants to use tor to achieve anonymity, - but he also needs privacy, to hide the fact that he is using Tor. -* Bridge Operator: - A bridge operator is a person who runs a tor bridge and has - successfully given to the 'Censored tor/obfsproxy user' the necessary - information so that the latter can access the bridge service. -* A Man In The Middle (MITM): - A MITM is a person or a group of people who have the power to - apply Censorship. - - What Tor does and does not provide: - -Once he is a member of the Tor network a censored Tor user can expect -low-latency anonymity. A Tor user can also expect Privacy with regards -to A Man In The Middle, when he is a member of the Tor network. - -The problem is that before and while becoming a member of the Tor -network the user is *not* anonymous and his communications with the -Tor network are *not* private. This allows A Man In The Middle to -identify the Tor user and censor him/her. - - What obfs2 does and does not provide: - -A Tor user using obfs2 with a Tor Bridge *without* a pre-shared password -can expect low quality privacy on his communications with the Tor -network before becoming part of it. -'low quality privacy' means that A Man In The Middle who has studied -the obfs2 protocol can easily decipher it, effectively extinguishing -the privacy. - -A Tor user using obfs2 with a Tor Bridge *with* a pre-shared password -can expect modest privacy on his communications with the Tor network -before becoming part of it. -'modest privacy' means that A Man In The Middle who has studied the -obfs2 protocol should not be able to decipher it. -Still one should know that: -* Because of the nature of the protocol, it is susceptible to offline - password cracking attacks. -* It is the responsibility of the user and the bridge operator to - decide upon a strong pre-shared password. - -After becoming part of the Tor network, the user is considered -anonymous and his communication private, with regards to A Man In The -Middle, under normal circumstances. - -Since the realm of anti-censorship is quite young and -not well studied, the obfs2 user should be aware that there are known -and unknown attacks that can potentially identify obfs2 and can be -deployed by A Man In The Middle. Known attacks like that include -entropy counting and timing attacks. - -Additionally, a Tor user using obfs2 with a Tor bridge must *not* -expect additional entity authentication, data integrity, availability -or deniability. - -Finally, a Tor user using obfs2 with a Tor bridge must *not* expect -protection from flows of the Tor protocol.

1 0

[tor/master] Don't crash when HS circs which have not yet found an OR conn time out
by nickm＠torproject.org 13 Jan '12

13 Jan '12

commit fbd243a1652d7d610e9c8e00901638662cbe34c5 Author: Robert Ransom <rransom.8774(a)gmail.com> Date: Thu Jan 12 19:20:52 2012 -0800 Don't crash when HS circs which have not yet found an OR conn time out Fixes bug #4897, not yet in any release. Using n_circ_id alone here (and below, when n_conn is NULL) really sucks, but that's a separate bug which will need a changes/ file. --- src/or/circuituse.c | 6 ++---- 1 files changed, 2 insertions(+), 4 deletions(-) diff --git a/src/or/circuituse.c b/src/or/circuituse.c index 14f4f47..de0aa7d 100644 --- a/src/or/circuituse.c +++ b/src/or/circuituse.c @@ -537,9 +537,8 @@ circuit_expire_building(void) case CIRCUIT_PURPOSE_C_INTRODUCE_ACK_WAIT: case CIRCUIT_PURPOSE_C_REND_READY_INTRO_ACKED: /* If we have reached this line, we want to spare the circ for now. */ - log_info(LD_CIRC,"Marking circ %s:%d:%d (state %d:%s, purpose %d) " + log_info(LD_CIRC,"Marking circ %d (state %d:%s, purpose %d) " "as timed-out HS circ", - victim->n_conn->_base.address, victim->n_conn->_base.port, victim->n_circ_id, victim->state, circuit_state_to_string(victim->state), victim->purpose); @@ -556,9 +555,8 @@ circuit_expire_building(void) if (!(options->CloseHSServiceRendCircuitsImmediatelyOnTimeout) && !(TO_ORIGIN_CIRCUIT(victim)->hs_circ_has_timed_out) && victim->purpose == CIRCUIT_PURPOSE_S_CONNECT_REND) { - log_info(LD_CIRC,"Marking circ %s:%d:%d (state %d:%s, purpose %d) " + log_info(LD_CIRC,"Marking circ %d (state %d:%s, purpose %d) " "as timed-out HS circ; relaunching rendezvous attempt.", - victim->n_conn->_base.address, victim->n_conn->_base.port, victim->n_circ_id, victim->state, circuit_state_to_string(victim->state), victim->purpose);

1 0

[metrics-db/master] Don't overwrite past bridge network statuses unless we have to.
by karsten＠torproject.org 13 Jan '12

13 Jan '12

commit b63021a84f9dc43efe62cfb14c704aeaeec150dc Author: Karsten Loesing <karsten.loesing(a)gmx.net> Date: Fri Jan 13 12:27:11 2012 +0100 Don't overwrite past bridge network statuses unless we have to. In theory, overwriting files with the same content doesn't hurt. But it makes it harder to identify only the files changed in the past 3 days for the rsync/ directory. --- .../ernie/db/SanitizedBridgesWriter.java | 7 +++++++ 1 files changed, 7 insertions(+), 0 deletions(-) diff --git a/src/org/torproject/ernie/db/SanitizedBridgesWriter.java b/src/org/torproject/ernie/db/SanitizedBridgesWriter.java index 520fd1f..a3ead19 100644 --- a/src/org/torproject/ernie/db/SanitizedBridgesWriter.java +++ b/src/org/torproject/ernie/db/SanitizedBridgesWriter.java @@ -982,6 +982,13 @@ public class SanitizedBridgesWriter { return; } + /* Check if we need to overwrite the status file on disk. */ + if (new String(data).equals(scrubbed)) { + this.logger.fine("The bridge network status published " + published + + " has not changed, so we're not attempting to rewrite it."); + return; + } + try { /* Determine file name. */ String syear = published.substring(0, 4);

1 0

[translation/orbot] Update translations for orbot
by translation＠torproject.org 13 Jan '12

13 Jan '12

commit 39960cfbe2b1353316b2043bb193c942fc0db0f2 Author: Translation commit bot <translation(a)torproject.org> Date: Fri Jan 13 09:45:08 2012 +0000 Update translations for orbot --- values-ar/strings.xml | 1 + values-ca/strings.xml | 1 + values-de/strings.xml | 1 + values-el/strings.xml | 1 + values-es/strings.xml | 1 + values-eu/strings.xml | 1 + values-fa/strings.xml | 1 + values-fr/strings.xml | 1 + values-hu/strings.xml | 1 + values-it/strings.xml | 1 + values-mk/strings.xml | 1 + values-nb/strings.xml | 1 + values-nl/strings.xml | 1 + values-pl/strings.xml | 1 + values-pt/strings.xml | 1 + values-ru/strings.xml | 1 + values-sv/strings.xml | 1 + values-zh/strings.xml | 1 + values/strings.xml | 5 +++-- 19 files changed, 21 insertions(+), 2 deletions(-) diff --git a/values-ar/strings.xml b/values-ar/strings.xml index 67653f9..5be5f99 100644 --- a/values-ar/strings.xml +++ b/values-ar/strings.xml @@ -187,6 +187,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-ca/strings.xml b/values-ca/strings.xml index 4bd44cb..e13a6ed 100644 --- a/values-ca/strings.xml +++ b/values-ca/strings.xml @@ -187,6 +187,7 @@ Visita\'ns a https://guardianproject.info/apps/orbot o envia\'ns un correu elect <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-de/strings.xml b/values-de/strings.xml index 680b807..ee0977b 100644 --- a/values-de/strings.xml +++ b/values-de/strings.xml @@ -188,6 +188,7 @@ Besuchen Sie https://guardianproject.info/apps/orbot oder senden Sie eine E-Mail <string name="libevent_version">LibEvent v1.4.13: http://www.monkey.org/~provos/libevent/</string> <string name="privoxy_version">Privoxy v3.0.12: http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7: http://www.netfilter.org</string> + <string name="openssl_version"></string> <string name="hidden_service_request">Eine Anwendungen möchte den Port für versteckte Dienste %S öffnen. Dies ist sicher wenn Sie der Anwendung vertrauen.</string> <string name="found_existing_tor_process">existierender Tor Prozess gefunden...</string> <string name="something_bad_happened">Etwasist schief gelaufen. Bitte Log prüfen</string> diff --git a/values-el/strings.xml b/values-el/strings.xml index f1d01c5..401482d 100644 --- a/values-el/strings.xml +++ b/values-el/strings.xml @@ -177,6 +177,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-es/strings.xml b/values-es/strings.xml index 4017f77..093878d 100644 --- a/values-es/strings.xml +++ b/values-es/strings.xml @@ -187,6 +187,7 @@ Visítenos en https://guardianproject.info/apps/orbot o envíenos un correo elec <string name="libevent_version">Libevent v1.4.13: http://www.monkey.org/ ~ provos / libevent /</string> <string name="privoxy_version">Privoxy v3.0.12: http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7: http://www.netfilter.org</string> + <string name="openssl_version"></string> <string name="hidden_service_request">Una aplicación esta intentando abrir el siguiente puerto %S a la red Tor. Esto es seguro, si confía en la aplicación, que lo esta intentando abrir.</string> <string name="found_existing_tor_process">Se ha encontrado proceso activo de Tor ...</string> <string name="something_bad_happened">Algo ha ocurrido con el normal funcionamiento de la aplicacion. Compruebe el log de registro del sistema Tor</string> diff --git a/values-eu/strings.xml b/values-eu/strings.xml index 54b38f0..f80e370 100644 --- a/values-eu/strings.xml +++ b/values-eu/strings.xml @@ -177,6 +177,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-fa/strings.xml b/values-fa/strings.xml index c2d50b5..b84edf5 100644 --- a/values-fa/strings.xml +++ b/values-fa/strings.xml @@ -177,6 +177,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-fr/strings.xml b/values-fr/strings.xml index 75d7de7..56e157c 100644 --- a/values-fr/strings.xml +++ b/values-fr/strings.xml @@ -182,6 +182,7 @@ <string name="libevent_version">Libevent v1.4.13 : http://www.monkey.org/~provos/libevent/</string> <string name="privoxy_version">Privoxy v3.0.12 : http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7 : http://www.netfilter.org</string> + <string name="openssl_version"></string> <string name="hidden_service_request">Une application veut ouvrir le port %S du serveur caché sur le réseau Tor. C\'est sécuritaire si vous faites confiance à l\'application.</string> <string name="found_existing_tor_process">trouvé un processus existant de Tor ...</string> <string name="something_bad_happened">Quelque chose d\'incorrect s\'est passé. Vérifiez le journal</string> diff --git a/values-hu/strings.xml b/values-hu/strings.xml index 22b0526..46d1e7a 100644 --- a/values-hu/strings.xml +++ b/values-hu/strings.xml @@ -181,6 +181,7 @@ <string name="libevent_version">LibEvent v1.4.13: http://www.monkey.org/~provos/libevent/</string> <string name="privoxy_version">Privoxy v3.0.12: http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7: http://www.netfilter.org</string> + <string name="openssl_version"></string> <string name="hidden_service_request">Egy alkalmazás a %S rejtett szerver portot próbálja megnyitni. Ez biztonságos, ha megbízik az alkalmazásban.</string> <string name="found_existing_tor_process">létező Tor folyamat találva...</string> <string name="something_bad_happened">Valami rossz történt. Nézze meg a log fájlt.</string> diff --git a/values-it/strings.xml b/values-it/strings.xml index 4eb49e8..bf48d3c 100644 --- a/values-it/strings.xml +++ b/values-it/strings.xml @@ -182,6 +182,7 @@ Visita il nostro sito web https://guardianproject.info/apps/orbot o invia una ma <string name="libevent_version">LibEvent v1.4.13: http://www.monkey.org/~provos/libevent/</string> <string name="privoxy_version">Privoxy v3.0.12: http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7: http://www.netfilter.org</string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-mk/strings.xml b/values-mk/strings.xml index 8fc7d5f..f27f24f 100644 --- a/values-mk/strings.xml +++ b/values-mk/strings.xml @@ -181,6 +181,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-nb/strings.xml b/values-nb/strings.xml index 36911fb..217e5f6 100644 --- a/values-nb/strings.xml +++ b/values-nb/strings.xml @@ -177,6 +177,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-nl/strings.xml b/values-nl/strings.xml index 493f1e3..fb5ed30 100644 --- a/values-nl/strings.xml +++ b/values-nl/strings.xml @@ -187,6 +187,7 @@ Bezoek onze website op https://guardianproject.info/apps/orbot of stuur een emai <string name="libevent_version">LibEvent v1.4.13: http://www.monkey.org/~provos/libevent/</string> <string name="privoxy_version">Privoxy v3.0.12: http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7: http://www.netfilter.org</string> + <string name="openssl_version"></string> <string name="hidden_service_request">Een app wil hidden service poort %S openen naar het Tor netwerk. Dit is veilig als je de app vertrouwd.</string> <string name="found_existing_tor_process">bestaand Tor proces gevonden...</string> <string name="something_bad_happened">Er is iets slechts gebeurt. Controleer de log</string> diff --git a/values-pl/strings.xml b/values-pl/strings.xml index ca014d9..98cdcb6 100644 --- a/values-pl/strings.xml +++ b/values-pl/strings.xml @@ -181,6 +181,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-pt/strings.xml b/values-pt/strings.xml index e8fe84f..e06ca97 100644 --- a/values-pt/strings.xml +++ b/values-pt/strings.xml @@ -177,6 +177,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-ru/strings.xml b/values-ru/strings.xml index 5c32868..acadd9a 100644 --- a/values-ru/strings.xml +++ b/values-ru/strings.xml @@ -181,6 +181,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-sv/strings.xml b/values-sv/strings.xml index f7bea6e..eea56c4 100644 --- a/values-sv/strings.xml +++ b/values-sv/strings.xml @@ -177,6 +177,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values-zh/strings.xml b/values-zh/strings.xml index b603e22..3e64485 100644 --- a/values-zh/strings.xml +++ b/values-zh/strings.xml @@ -180,6 +180,7 @@ <string name="libevent_version"></string> <string name="privoxy_version"></string> <string name="iptables_version"></string> + <string name="openssl_version"></string> <string name="hidden_service_request"></string> <string name="found_existing_tor_process"></string> <string name="something_bad_happened"></string> diff --git a/values/strings.xml b/values/strings.xml index 57818fc..d4bd0ef 100644 --- a/values/strings.xml +++ b/values/strings.xml @@ -92,7 +92,7 @@ <string name="wizard_permissions_title">Permissions</string> <string name="wizard_permissions_root_msg1">You can optionally grant Orbot \'Superuser\' access to enable advanced features, such as Transparent Proxying.</string> <string name="wizard_permissions_root_msg2">If you do not want to do this, please make sure to use apps made to work with Orbot</string> - <string name="wizard_permissions_no_root_msg">Your device is running in standard mode, and does not support root or \'Superuser\' access.\n\nIn order to you to benefit from Tor, you will need to use apps built to work with Orbot, or that support HTTP or SOCKS proxy settings.\n\n</string> + <string name="wizard_permissions_no_root_msg">Your device does not appear to be rooted or provide \'Superuser\' access.\n\nIn order to you to benefit from Tor, you will need to use apps built to work with Orbot, or that support HTTP or SOCKS proxy settings.\n\n</string> <string name="wizard_tips_title">Orbot-Enabled Apps</string> <string name="wizard_tips_gibberbot">Gibberbot: Secure chat app with Off-the-Record Encryption</string> <string name="gibberbot_apk_url">https://market.android.com/details?id=info.guardianproject.otr.app.im</string> @@ -177,10 +177,11 @@ <string name="the_tor_license">The Tor License</string> <string name="https_torproject_org">https://torproject.org</string> <string name="third_party_software">3rd-Party-Software: </string> - <string name="tor_version">Tor v0.2.3.7-alpha: https://www.torproject.org</string> + <string name="tor_version">Tor v0.2.3.10-alpha: https://www.torproject.org</string> <string name="libevent_version">LibEvent v1.4.13: http://www.monkey.org/~provos/libevent/</string> <string name="privoxy_version">Privoxy v3.0.12: http://www.privoxy.org</string> <string name="iptables_version">Iptables v1.4.7: http://www.netfilter.org</string> + <string name="openssl_version">OpenSSL v1.0.0f: http://www.openssl.org</string> <string name="hidden_service_request">An app wants to open hidden server port %S to the Tor network. This is safe if you trust the app.</string> <string name="found_existing_tor_process">found existing Tor process...</string> <string name="something_bad_happened">Something bad happened. Check the log</string>

1 0

[metrics-web/master] Remove statusentry indices.
by karsten＠torproject.org 13 Jan '12

13 Jan '12

commit 4a4f070c7de19b3266988f74ec9f16431bc717aa Author: Karsten Loesing <karsten.loesing(a)gmx.net> Date: Fri Jan 13 09:03:25 2012 +0100 Remove statusentry indices. Now that we partitioned the statusentry table, we should only have indices on the partitions, not on the parent table. --- db/tordir.sql | 10 ---------- 1 files changed, 0 insertions(+), 10 deletions(-) diff --git a/db/tordir.sql b/db/tordir.sql index 6d3b617..7ae0afe 100644 --- a/db/tordir.sql +++ b/db/tordir.sql @@ -168,16 +168,6 @@ CREATE TABLE connbidirect ( CONSTRAINT connbidirect_pkey PRIMARY KEY (source, statsend) ); --- Create the various indexes we need for searching relays -CREATE INDEX statusentry_address ON statusentry (address); -CREATE INDEX statusentry_fingerprint ON statusentry (fingerprint); -CREATE INDEX statusentry_nickname ON statusentry (LOWER(nickname)); -CREATE INDEX statusentry_validafter ON statusentry (validafter); - --- And create an index that we use for precalculating statistics -CREATE INDEX statusentry_descriptor ON statusentry (descriptor); -CREATE INDEX statusentry_validafter_date ON statusentry (DATE(validafter)); - -- TABLE network_size CREATE TABLE network_size ( date DATE NOT NULL,

1 0

[metrics-web/master] Tell users when we don't have enough data to answer their request.
by karsten＠torproject.org 13 Jan '12

13 Jan '12

commit 7314596e198da7581eed449c80d688195b1ed5df Author: Karsten Loesing <karsten.loesing(a)gmx.net> Date: Fri Jan 13 08:36:18 2012 +0100 Tell users when we don't have enough data to answer their request. Fixes #4895. --- .../torproject/ernie/web/RelaySearchServlet.java | 35 ++++++++++++++++++++ web/WEB-INF/relay-search.jsp | 3 ++ 2 files changed, 38 insertions(+), 0 deletions(-) diff --git a/src/org/torproject/ernie/web/RelaySearchServlet.java b/src/org/torproject/ernie/web/RelaySearchServlet.java index 512e25f..fe7e62b 100644 --- a/src/org/torproject/ernie/web/RelaySearchServlet.java +++ b/src/org/torproject/ernie/web/RelaySearchServlet.java @@ -52,6 +52,8 @@ public class RelaySearchServlet extends HttpServlet { private SimpleDateFormat dateTimeFormat = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); + private long minValidAfterMillis; + private DataSource ds; private Logger logger; @@ -74,6 +76,27 @@ public class RelaySearchServlet extends HttpServlet { } catch (NamingException e) { this.logger.log(Level.WARNING, "Could not look up data source", e); } + + /* Look up first consensus in the database. */ + try { + long requestedConnection = System.currentTimeMillis(); + Connection conn = this.ds.getConnection(); + String query = "SELECT MIN(validafter) AS first FROM consensus"; + Statement statement = conn.createStatement(); + ResultSet rs = statement.executeQuery(query); + if (rs.next()) { + this.minValidAfterMillis = rs.getTimestamp(1).getTime(); + } + rs.close(); + statement.close(); + conn.close(); + this.logger.info("Returned a database connection to the pool " + + "after " + (System.currentTimeMillis() + - requestedConnection) + " millis."); + } catch (SQLException e) { + this.logger.log(Level.WARNING, "Could not look up first consensus " + + "valid-after time in the database.", e); + } } public void doGet(HttpServletRequest request, @@ -304,6 +327,12 @@ public class RelaySearchServlet extends HttpServlet { boolean addOr = false; timeIntervalBuilder.append("AND ("); for (long searchTimestamp : searchDayTimestamps) { + if (searchTimestamp < this.minValidAfterMillis) { + request.setAttribute("outsideInterval", "Returned search " + + "results may be incomplete, as our data only dates back " + + "to " + dateTimeFormat.format(this.minValidAfterMillis) + + ". Older archives are not available."); + } timeIntervalBuilder.append((addOr ? "OR " : "") + "(validafter >= '" + dateTimeFormat.format(searchTimestamp) + "' AND " @@ -312,6 +341,12 @@ public class RelaySearchServlet extends HttpServlet { addOr = true; } for (long searchTimestamp : searchMonthTimestamps) { + if (searchTimestamp < this.minValidAfterMillis) { + request.setAttribute("outsideInterval", "Returned search " + + "results may be incomplete, as our data only dates back " + + "to " + dateTimeFormat.format(this.minValidAfterMillis) + + ". Older archives are not available."); + } Calendar firstOfNextMonth = Calendar.getInstance( TimeZone.getTimeZone("UTC")); firstOfNextMonth.setTimeInMillis(searchTimestamp); diff --git a/web/WEB-INF/relay-search.jsp b/web/WEB-INF/relay-search.jsp index 260b7dc..b90938a 100644 --- a/web/WEB-INF/relay-search.jsp +++ b/web/WEB-INF/relay-search.jsp @@ -39,6 +39,9 @@ (e.g., "80.190"). You can also provide at most three months or days in ISO 8601 format (e.g., "2010-09" or "2010-09-17"). </c:if> + <c:if test="${not empty outsideInterval}"> + ${outsideInterval} + </c:if> <c:if test="${not empty searchNotice}"> ${searchNotice} </c:if>

1 0

r25306: {website} update android orbot version. (website/trunk/include)
by Andrew Lewman 13 Jan '12

13 Jan '12

Author: phobos Date: 2012-01-13 00:30:29 +0000 (Fri, 13 Jan 2012) New Revision: 25306 Modified: website/trunk/include/versions.wmi Log: update android orbot version. Modified: website/trunk/include/versions.wmi =================================================================== --- website/trunk/include/versions.wmi 2012-01-12 16:23:59 UTC (rev 25305) +++ website/trunk/include/versions.wmi 2012-01-13 00:30:29 UTC (rev 25306) @@ -54,11 +54,11 @@ <define-tag version-vidalia-stable whitespace=delete>0.2.15</define-tag> -<define-tag version-androidbundle-tor whitespace=delete>0.2.3.7-alpha</define-tag> -<define-tag version-androidbundle-orbot whitespace=delete>1.0.6</define-tag> +<define-tag version-androidbundle-tor whitespace=delete>0.2.3.10-alpha</define-tag> +<define-tag version-androidbundle-orbot whitespace=delete>1.0.7-RC1</define-tag> <define-tag version-androidbundle-privoxy whitespace=delete>privoxy-3.0.12-stable</define-tag> <define-tag version-androidbundle-libevent whitespace=delete>libevent-1.4.12-stable</define-tag> -<define-tag package-androidbundle-alpha whitespace=delete>dist/android/Orbot-<version-androidbundle-orbot>-Tor-<version-androidbundle-tor>-FINAL.apk</define-tag> +<define-tag package-androidbundle-alpha whitespace=delete>dist/android/Orbot-<version-androidbundle-orbot>-Tor-<version-androidbundle-tor>.apk</define-tag> <define-tag package-win32-stable whitespace=delete>../dist/win32/tor-<version-win32-stable>-win32-1.exe</define-tag> <define-tag package-win32-alpha whitespace=delete>../dist/win32/tor-<version-win32-alpha>-win32-1.exe</define-tag>

1 0

[orbot/master] updated core project files and build numbers
by n8fr8＠torproject.org 12 Jan '12

12 Jan '12

commit 8b6133ff264e0a1c1315c189453aabd4cc80cf7a Author: Nathan Freitas <nathan(a)freitas.net> Date: Mon Jan 9 00:22:35 2012 -0500 updated core project files and build numbers --- .classpath | 2 +- AndroidManifest.xml | 2 +- default.properties | 14 -------------- 3 files changed, 2 insertions(+), 16 deletions(-) diff --git a/.classpath b/.classpath index 1182977..9a448b2 100644 --- a/.classpath +++ b/.classpath @@ -5,5 +5,5 @@ <classpathentry kind="con" path="com.android.ide.eclipse.adt.ANDROID_FRAMEWORK"/> <classpathentry kind="lib" path="libs/jtorctrl.jar"/> <classpathentry kind="lib" path="libs/whispercore.jar"/> - <classpathentry kind="output" path="bin"/> + <classpathentry kind="output" path="bin/classes"/> </classpath> diff --git a/AndroidManifest.xml b/AndroidManifest.xml index 051c847..c6ce88e 100644 --- a/AndroidManifest.xml +++ b/AndroidManifest.xml @@ -1,6 +1,6 @@ <?xml version="1.0" encoding="utf-8"?> <manifest xmlns:android="http://schemas.android.com/apk/res/android" - package="org.torproject.android" android:versionName="0.2.3.7-alpha-orbot-1.0.7-ALPHA" android:versionCode="21"> + package="org.torproject.android" android:versionName="0.2.3.10-alpha-orbot-1.0.7-ALPHA" android:versionCode="22"> <uses-permission android:name="android.permission.INTERNET" /> <uses-permission android:name="android.permission.RECEIVE_BOOT_COMPLETED"/> diff --git a/default.properties b/default.properties deleted file mode 100644 index 08ad68f..0000000 --- a/default.properties +++ /dev/null @@ -1,14 +0,0 @@ -# This file is automatically generated by Android Tools. -# Do not modify this file -- YOUR CHANGES WILL BE ERASED! -# -# This file must be checked in Version Control Systems. -# -# To customize properties used by the Ant build system use, -# "build.properties", and override values to adapt the script to your -# project structure. - -# Indicates whether an apk should be generated for each density. -split.density=false -# Project target. -target=android-4 -apk-configurations=

1 0

← Newer
1
...
45
46
47
48
49
50
51
...
86
Older →

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

tor-commits January 2012