May 2015 - tor-commits - lists.torproject.org

[translation/torbutton-torbuttondtd] Update translations for torbutton-torbuttondtd
by translation＠torproject.org 12 May '15

12 May '15

commit f217084bb7d98f213cb60792724ce9341ad2bff7 Author: Translation commit bot <translation(a)torproject.org> Date: Tue May 12 17:15:55 2015 +0000 Update translations for torbutton-torbuttondtd --- en_GB/torbutton.dtd | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/en_GB/torbutton.dtd b/en_GB/torbutton.dtd index d5a2ae6..7e5d7e1 100644 --- a/en_GB/torbutton.dtd +++ b/en_GB/torbutton.dtd @@ -160,7 +160,7 @@ <!ENTITY torbutton.prefs.sec_gen_desc "At this security level, the following changes apply (mouseover for details):"> <!ENTITY torbutton.prefs.sec_html5_desc "HTML5 video and audio media become click-to-play via NoScript."> <!ENTITY torbutton.prefs.sec_html5_tooltip "On some sites, you might need to use the NoScript toolbar button to enable these media objects."> -<!ENTITY torbutton.prefs.sec_some_jit_desc "Some JavaScript performance optimizations are disabled."> +<!ENTITY torbutton.prefs.sec_some_jit_desc "Some JavaScript performance optimisations are disabled."> <!ENTITY torbutton.prefs.sec_jit_desc_tooltip "ION JIT, Type Inference, ASM.JS."> <!ENTITY torbutton.prefs.sec_baseline_jit_desc_tooltip "Baseline JIT."> <!ENTITY torbutton.prefs.sec_jit_slower_desc "Scripts on some sites may run slower."> @@ -169,7 +169,7 @@ <!ENTITY torbutton.prefs.sec_mathml_desc "Some mechanisms of displaying math equations are disabled."> <!ENTITY torbutton.prefs.sec_mathml_desc_tooltip "MathML is disabled."> <!ENTITY torbutton.prefs.sec_med_high "Medium-High"> -<!ENTITY torbutton.prefs.sec_all_jit_desc "All JavaScript performance optimizations are disabled."> +<!ENTITY torbutton.prefs.sec_all_jit_desc "All JavaScript performance optimisations are disabled."> <!ENTITY torbutton.prefs.sec_font_rend_desc "Some font rendering features are disabled."> <!ENTITY torbutton.prefs.sec_font_rend_graphite_tooltip "The Graphite font rendering mechanism is disabled."> <!ENTITY torbutton.prefs.sec_svg_desc "Some types of images are disabled.">

1 0

[translation/torbutton-torbuttonproperties] Update translations for torbutton-torbuttonproperties
by translation＠torproject.org 12 May '15

12 May '15

commit b3df61deef3783a2815afb7534e2d1a88d9ec884 Author: Translation commit bot <translation(a)torproject.org> Date: Tue May 12 16:46:06 2015 +0000 Update translations for torbutton-torbuttonproperties --- en_GB/torbutton.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/en_GB/torbutton.properties b/en_GB/torbutton.properties index 2defd9b..5f9f872 100644 --- a/en_GB/torbutton.properties +++ b/en_GB/torbutton.properties @@ -59,7 +59,7 @@ torbutton.popup.confirm_newnym = Tor Browser will close all windows and tabs. Al torbutton.slider_notification = The green onion menu now has a security slider which lets you adjust your security level. Check it out! torbutton.slider_notification_button = Open security settings -torbutton.maximize_warning = Maximizing Tor Browser can allow websites to determine your monitor size, which can be used to track you. We recommend that you leave Tor Browser windows in their original default size. +torbutton.maximize_warning = Maximising Tor Browser can allow websites to determine your monitor size, which can be used to track you. We recommend that you leave Tor Browser windows in their original default size. # Canvas permission prompt. Strings are kept here for ease of translation. canvas.siteprompt=This website (%S) attempted to extract HTML5 canvas image data, which may be used to uniquely identify your computer.\n\nShould Tor Browser allow this website to extract HTML5 canvas image data?

1 0

[translation/tails-misc_completed] Update translations for tails-misc_completed
by translation＠torproject.org 12 May '15

12 May '15

commit 2da938d25e925c37fc4ccf1e26514babd7c2c357 Author: Translation commit bot <translation(a)torproject.org> Date: Tue May 12 16:45:52 2015 +0000 Update translations for tails-misc_completed --- en_GB.po | 72 +++++++++++++++++++++++++++++++++----------------------------- 1 file changed, 38 insertions(+), 34 deletions(-) diff --git a/en_GB.po b/en_GB.po index 87c0376..9b3fb70 100644 --- a/en_GB.po +++ b/en_GB.po @@ -10,8 +10,8 @@ msgid "" msgstr "" "Project-Id-Version: The Tor Project\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2015-02-23 16:25+0100\n" -"PO-Revision-Date: 2015-03-21 20:37+0000\n" +"POT-Creation-Date: 2015-05-02 23:47+0200\n" +"PO-Revision-Date: 2015-05-12 16:33+0000\n" "Last-Translator: Andi Chandler <andi(a)gowling.com>\n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/torproject/language/en_GB/)\n" "MIME-Version: 1.0\n" @@ -20,11 +20,11 @@ msgstr "" "Language: en_GB\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" -#: config/chroot_local-includes/etc/NetworkManager/dispatcher.d/60-tor-ready-notification.sh:42 +#: config/chroot_local-includes/etc/NetworkManager/dispatcher.d/60-tor-ready.sh:43 msgid "Tor is ready" msgstr "Tor is ready." -#: config/chroot_local-includes/etc/NetworkManager/dispatcher.d/60-tor-ready-notification.sh:43 +#: config/chroot_local-includes/etc/NetworkManager/dispatcher.d/60-tor-ready.sh:44 msgid "You can now access the Internet." msgstr "You can now access the Internet" @@ -98,128 +98,132 @@ msgstr "_Decrypt/Verify Clipboard" msgid "_Manage Keys" msgstr "_Manage Keys" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:244 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:208 +msgid "_Open Text Editor" +msgstr "_Open Text Editor" + +#: config/chroot_local-includes/usr/local/bin/gpgApplet:252 msgid "The clipboard does not contain valid input data." msgstr "The clipboard does not contain valid input data." -#: config/chroot_local-includes/usr/local/bin/gpgApplet:295 -#: config/chroot_local-includes/usr/local/bin/gpgApplet:297 -#: config/chroot_local-includes/usr/local/bin/gpgApplet:299 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:303 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:305 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:307 msgid "Unknown Trust" msgstr "Unknown Trust" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:301 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:309 msgid "Marginal Trust" msgstr "Marginal Trust" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:303 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:311 msgid "Full Trust" msgstr "Full Trust" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:305 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:313 msgid "Ultimate Trust" msgstr "Ultimate Trust" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:358 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:366 msgid "Name" msgstr "Name" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:359 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:367 msgid "Key ID" msgstr "Key ID" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:360 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:368 msgid "Status" msgstr "Status" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:392 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:400 msgid "Fingerprint:" msgstr "Fingerprint:" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:395 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:403 msgid "User ID:" msgid_plural "User IDs:" msgstr[0] "User ID:" msgstr[1] "User IDs:" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:425 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:433 msgid "None (Don't sign)" msgstr "None (Don't sign)" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:488 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:496 msgid "Select recipients:" msgstr "Select recipients:" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:496 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:504 msgid "Hide recipients" msgstr "Hide recipients" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:499 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:507 msgid "" "Hide the user IDs of all recipients of an encrypted message. Otherwise " "anyone that sees the encrypted message can see who the recipients are." msgstr "Hide the user IDs of all recipients of an encrypted message. Otherwise anyone that sees the encrypted message can see who the recipients are." -#: config/chroot_local-includes/usr/local/bin/gpgApplet:505 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:513 msgid "Sign message as:" msgstr "Sign message as:" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:509 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:517 msgid "Choose keys" msgstr "Choose keys" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:549 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:557 msgid "Do you trust these keys?" msgstr "Do you trust these keys?" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:552 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:560 msgid "The following selected key is not fully trusted:" msgid_plural "The following selected keys are not fully trusted:" msgstr[0] "The following selected key is not fully trusted:" msgstr[1] "The following selected keys are not fully trusted:" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:570 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:578 msgid "Do you trust this key enough to use it anyway?" msgid_plural "Do you trust these keys enough to use them anyway?" msgstr[0] "Do you trust this key enough to use it anyway?" msgstr[1] "Do you trust these keys enough to use them anyway?" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:583 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:591 msgid "No keys selected" msgstr "No keys selected" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:585 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:593 msgid "" "You must select a private key to sign the message, or some public keys to " "encrypt the message, or both." msgstr "You must select a private key to sign the message, or some public keys to encrypt the message, or both." -#: config/chroot_local-includes/usr/local/bin/gpgApplet:613 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:621 msgid "No keys available" msgstr "No keys available" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:615 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:623 msgid "" "You need a private key to sign messages or a public key to encrypt messages." msgstr "You need a private key to sign messages or a public key to encrypt messages." -#: config/chroot_local-includes/usr/local/bin/gpgApplet:743 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:751 msgid "GnuPG error" msgstr "GnuPG error" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:764 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:772 msgid "Therefore the operation cannot be performed." msgstr "Therefore the operation cannot be performed." -#: config/chroot_local-includes/usr/local/bin/gpgApplet:814 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:822 msgid "GnuPG results" msgstr "GnuPG results" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:820 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:828 msgid "Output of GnuPG:" msgstr "Output of GnuPG:" -#: config/chroot_local-includes/usr/local/bin/gpgApplet:845 +#: config/chroot_local-includes/usr/local/bin/gpgApplet:853 msgid "Other messages provided by GnuPG:" msgstr "Other messages provided by GnuPG:"

1 0

[translation/tails-misc] Update translations for tails-misc
by translation＠torproject.org 12 May '15

12 May '15

commit 4fa07a44fe53edab76d3629cd4a9acb73b27d172 Author: Translation commit bot <translation(a)torproject.org> Date: Tue May 12 16:45:48 2015 +0000 Update translations for tails-misc --- en_GB.po | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/en_GB.po b/en_GB.po index bf44339..9b3fb70 100644 --- a/en_GB.po +++ b/en_GB.po @@ -11,8 +11,8 @@ msgstr "" "Project-Id-Version: The Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2015-05-02 23:47+0200\n" -"PO-Revision-Date: 2015-05-03 08:25+0000\n" -"Last-Translator: runasand <runa.sandvik(a)gmail.com>\n" +"PO-Revision-Date: 2015-05-12 16:33+0000\n" +"Last-Translator: Andi Chandler <andi(a)gowling.com>\n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/torproject/language/en_GB/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" @@ -100,7 +100,7 @@ msgstr "_Manage Keys" #: config/chroot_local-includes/usr/local/bin/gpgApplet:208 msgid "_Open Text Editor" -msgstr "" +msgstr "_Open Text Editor" #: config/chroot_local-includes/usr/local/bin/gpgApplet:252 msgid "The clipboard does not contain valid input data."

1 0

[translation/bridgedb_completed] Update translations for bridgedb_completed
by translation＠torproject.org 12 May '15

12 May '15

commit b149339b3d21af612f50df99b02d8a9cdccc7289 Author: Translation commit bot <translation(a)torproject.org> Date: Tue May 12 16:45:08 2015 +0000 Update translations for bridgedb_completed --- en_GB/LC_MESSAGES/bridgedb.po | 30 +++++++++++++++--------------- 1 file changed, 15 insertions(+), 15 deletions(-) diff --git a/en_GB/LC_MESSAGES/bridgedb.po b/en_GB/LC_MESSAGES/bridgedb.po index d932f1e..48fec07 100644 --- a/en_GB/LC_MESSAGES/bridgedb.po +++ b/en_GB/LC_MESSAGES/bridgedb.po @@ -9,9 +9,8 @@ msgid "" msgstr "" "Project-Id-Version: The Tor Project\n" -"Report-Msgid-Bugs-To: 'https://trac.torproject.org/projects/tor/newticket?component=BridgeDB&keywo…'\n" -"POT-Creation-Date: 2015-02-03 03:24+0000\n" -"PO-Revision-Date: 2015-03-21 20:31+0000\n" +"Report-Msgid-Bugs-To: 'https://trac.torproject.org/projects/tor/newticket?component=BridgeDB&keywo…'POT-Creation-Date: 2015-03-19 22:13+0000\n" +"PO-Revision-Date: 2015-05-12 16:33+0000\n" "Last-Translator: Andi Chandler <andi(a)gowling.com>\n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/torproject/language/en_GB/)\n" "MIME-Version: 1.0\n" @@ -32,7 +31,7 @@ msgstr "" #. "fteproxy" #. "Tor" #. "Tor Browser" -#: lib/bridgedb/HTTPServer.py:122 +#: lib/bridgedb/HTTPServer.py:107 msgid "Sorry! Something went wrong with your request." msgstr "Sorry! Something went wrong with your request." @@ -203,26 +202,27 @@ msgstr "How to start using your bridges" #: lib/bridgedb/strings.py:121 #, python-format msgid "" -"To enter bridges into Tor Browser, follow the instructions on the %s Tor\n" -"Browser download page %s to start Tor Browser." -msgstr "To enter bridges into Tor Browser, follow the instructions on the %s Tor\nBrowser download page %s to start Tor Browser." +"To enter bridges into Tor Browser, first go to the %s Tor Browser download\n" +"page %s and then follow the instructions there for downloading and starting\n" +"Tor Browser." +msgstr "To enter bridges into Tor Browser, first go to the %s Tor Browser download\npage %s and then follow the instructions there for downloading and starting\nTor Browser." #. TRANSLATORS: Please DO NOT translate "Tor". -#: lib/bridgedb/strings.py:125 +#: lib/bridgedb/strings.py:126 msgid "" "When the 'Tor Network Settings' dialogue pops up, click 'Configure' and follow\n" "the wizard until it asks:" msgstr "When the 'Tor Network Settings' dialogue pops up, click 'Configure' and follow\nthe wizard until it asks:" #. TRANSLATORS: Please DO NOT translate "Tor". -#: lib/bridgedb/strings.py:129 +#: lib/bridgedb/strings.py:130 msgid "" "Does your Internet Service Provider (ISP) block or otherwise censor connections\n" "to the Tor network?" msgstr "Does your Internet Service Provider (ISP) block or otherwise censor connections\nto the Tor network?" #. TRANSLATORS: Please DO NOT translate "Tor". -#: lib/bridgedb/strings.py:133 +#: lib/bridgedb/strings.py:134 msgid "" "Select 'Yes' and then click 'Next'. To configure your new bridges, copy and\n" "paste the bridge lines into the text input box. Finally, click 'Connect', and\n" @@ -230,29 +230,29 @@ msgid "" "button in the 'Tor Network Settings' wizard for further assistance." msgstr "Select 'Yes' and then click 'Next'. To configure your new bridges, copy and\npaste the bridge lines into the text input box. Finally, click 'Connect', and\nyou should be good to go! If you experience trouble, try clicking the 'Help'\nbutton in the 'Tor Network Settings' wizard for further assistance." -#: lib/bridgedb/strings.py:141 +#: lib/bridgedb/strings.py:142 msgid "Displays this message." msgstr "Displays this message." #. TRANSLATORS: Please try to make it clear that "vanilla" here refers to the #. same non-Pluggable Transport bridges described above as being #. "plain-ol'-vanilla" bridges. -#: lib/bridgedb/strings.py:145 +#: lib/bridgedb/strings.py:146 msgid "Request vanilla bridges." msgstr "Request vanilla bridges." -#: lib/bridgedb/strings.py:146 +#: lib/bridgedb/strings.py:147 msgid "Request IPv6 bridges." msgstr "Request IPv6 bridges." #. TRANSLATORS: Please DO NOT translate the word the word "TYPE". -#: lib/bridgedb/strings.py:148 +#: lib/bridgedb/strings.py:149 msgid "Request a Pluggable Transport by TYPE." msgstr "Request a Pluggable Transport by TYPE." #. TRANSLATORS: Please DO NOT translate "BridgeDB". #. TRANSLATORS: Please DO NOT translate "GnuPG". -#: lib/bridgedb/strings.py:151 +#: lib/bridgedb/strings.py:152 msgid "Get a copy of BridgeDB's public GnuPG key." msgstr "Get a copy of BridgeDB's public GnuPG key."

1 0

[translation/bridgedb] Update translations for bridgedb
by translation＠torproject.org 12 May '15

12 May '15

commit 494a098bd3cdcfc268de620c7ca963c1ff9e6ed2 Author: Translation commit bot <translation(a)torproject.org> Date: Tue May 12 16:45:03 2015 +0000 Update translations for bridgedb --- en_GB/LC_MESSAGES/bridgedb.po | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/en_GB/LC_MESSAGES/bridgedb.po b/en_GB/LC_MESSAGES/bridgedb.po index 61bd22a..48fec07 100644 --- a/en_GB/LC_MESSAGES/bridgedb.po +++ b/en_GB/LC_MESSAGES/bridgedb.po @@ -10,8 +10,8 @@ msgid "" msgstr "" "Project-Id-Version: The Tor Project\n" "Report-Msgid-Bugs-To: 'https://trac.torproject.org/projects/tor/newticket?component=BridgeDB&keywo…'POT-Creation-Date: 2015-03-19 22:13+0000\n" -"PO-Revision-Date: 2015-04-19 08:23+0000\n" -"Last-Translator: runasand <runa.sandvik(a)gmail.com>\n" +"PO-Revision-Date: 2015-05-12 16:33+0000\n" +"Last-Translator: Andi Chandler <andi(a)gowling.com>\n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/torproject/language/en_GB/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" @@ -205,7 +205,7 @@ msgid "" "To enter bridges into Tor Browser, first go to the %s Tor Browser download\n" "page %s and then follow the instructions there for downloading and starting\n" "Tor Browser." -msgstr "" +msgstr "To enter bridges into Tor Browser, first go to the %s Tor Browser download\npage %s and then follow the instructions there for downloading and starting\nTor Browser." #. TRANSLATORS: Please DO NOT translate "Tor". #: lib/bridgedb/strings.py:126

1 0

[torsocks/master] Change IsolatePID password from 42 to 0
by dgoulet＠torproject.org 12 May '15

12 May '15

commit 2b8c1b7718dc2ca80c1d7dbc5fb46dab782d45eb Author: David Goulet <dgoulet(a)ev0ke.net> Date: Tue May 12 12:12:25 2015 -0400 Change IsolatePID password from 42 to 0 Signed-off-by: David Goulet <dgoulet(a)ev0ke.net> --- src/common/config-file.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/common/config-file.c b/src/common/config-file.c index 2f145fb..2147068 100644 --- a/src/common/config-file.c +++ b/src/common/config-file.c @@ -53,7 +53,7 @@ static unsigned int both_socks5_pass_user_set; */ static const char *isolate_username_fmt = "torsocks-%ld:%lld"; /* Default password for the IsolatePID option. */ -static const char *isolate_password = "42"; +static const char *isolate_password = "0"; /* * Set the onion pool address range in the configuration object using the value @@ -476,7 +476,7 @@ int conf_apply_socks_auth(struct configuration *config) /* PID based isolation requested. * Username: 'torsocks-' PID ':' TIME - * Password: '42' + * Password: '0' */ pid = getpid();

1 0

[torsocks/master] Add automatic per process isolation (IsolatePID)
by dgoulet＠torproject.org 12 May '15

12 May '15

commit 1875ef7416f9f6108e1bb2a2eea7d6e4a972a988 Author: Yawning Angel <yawning(a)schwanenlied.me> Date: Tue May 12 11:39:52 2015 +0000 Add automatic per process isolation (IsolatePID) IsolatePID will have torsocks automatically derive a unique SOCKS5 username/password pair of the form: 'torsocks-' PID ':' unixTime / '42' To provide automatic per-process isolation (Disabled by default). This behavior may be better for certain users/applications, and may also be controlled via the `TORSOCKS_ISOLATE_PID` env var. Option -i/--isolate to torsocks is added that automatically export the TORSOCKS_ISOLATE_PID variable. Implements #16006. Signed-off-by: Yawning Angel <yawning(a)schwanenlied.me> Signed-off-by: David Goulet <dgoulet(a)ev0ke.net> --- doc/torsocks.1 | 5 +++ doc/torsocks.8 | 6 +++ doc/torsocks.conf | 7 +++ doc/torsocks.conf.5 | 8 ++++ src/bin/torsocks.in | 4 ++ src/common/config-file.c | 107 ++++++++++++++++++++++++++++++++++++++++++++++ src/common/config-file.h | 10 +++++ src/common/defaults.h | 3 ++ src/lib/torsocks.c | 16 ++++++- 9 files changed, 165 insertions(+), 1 deletion(-) diff --git a/doc/torsocks.1 b/doc/torsocks.1 index 9fc4361..0e3c341 100644 --- a/doc/torsocks.1 +++ b/doc/torsocks.1 @@ -47,6 +47,11 @@ Set password for the SOCKS5 authentication. Use for circuit isolation in Tor. Note that you MUST have a username set either by the command line, environment variable or configuration file (torsocks.conf(5)). .TP +.BR "\-i, \-\-isolate" +Automatic tor isolation. Set the username and password for the SOCKS5 +authentication method to a PID/current time based value automatically. Username +and Password MUST NOT be set. +.TP .BR "\-d, \-\-debug" Activate the debug mode. Output will be written on stderr. .TP diff --git a/doc/torsocks.8 b/doc/torsocks.8 index 4a14703..ac3863a 100644 --- a/doc/torsocks.8 +++ b/doc/torsocks.8 @@ -99,6 +99,12 @@ also with the variable above. Allow inbound connections so the application can accept and listen for connections. +.PP +.IP TORSOCKS_ISOLATE_PID +Set the username and password for the SOCKS5 authentication method to a +PID/current time based value automatically. Username and Password MUST NOT +be set. + .SH KNOWN ISSUES .SS DNS diff --git a/doc/torsocks.conf b/doc/torsocks.conf index 7e82a27..5dd9df6 100644 --- a/doc/torsocks.conf +++ b/doc/torsocks.conf @@ -33,3 +33,10 @@ OnionAddrRange 127.42.42.0/24 # If set to 1, connect() will be allowed to be used to the loopback interface # bypassing Tor. This option should not be used by most users. (Default: 0) #AllowOutboundLocalhost 1 + +# Set Torsocks to use an automatically generated SOCKS5 username/password based +# on the process ID and current time, that makes the connections to Tor use a +# different circuit from other existing streams in Tor on a per-process basis. +# If set, the SOCKS5Username and SOCKS5Password options must not be set. +# (Default: 0) +#IsolatePID 1 diff --git a/doc/torsocks.conf.5 b/doc/torsocks.conf.5 index 13ac7b9..33fba3e 100644 --- a/doc/torsocks.conf.5 +++ b/doc/torsocks.conf.5 @@ -83,6 +83,14 @@ Allow outbound connections to the loopback interface meaning that connect() will be allowed to connect to localhost addresses bypassing Tor. This option should not be used by most users. (Default: 0) +.TP +.I IsolatePID 0|1 +Set Torsocks to use an automatically generated SOCKS5 username/password +based on the process ID and current time, that makes the connections to Tor +use a different circuit from other existing streams in Tor on a per-process +basis. If set, the SOCKS5Username and SOCKS5Password options must not be +set. (Default: 0) + .SH EXAMPLE $ export TORSOCKS_CONF_FILE=$PWD/torsocks.conf $ torsocks ssh account(a)sshserver.com diff --git a/src/bin/torsocks.in b/src/bin/torsocks.in index 7fd43d6..2a459b3 100644 --- a/src/bin/torsocks.in +++ b/src/bin/torsocks.in @@ -131,6 +131,7 @@ usage () echo " -d, --debug Set debug mode." echo " -u, --user NAME Username for the SOCKS5 authentication" echo " -p, --pass NAME Password for the SOCKS5 authentication" + echo " -i, --isolate Automatic tor isolation. Can't be used with -u/-p" echo " on, off Set/Unset your shell to use Torsocks by default" echo " Make sure to source the call when using this option. (See Examples)" echo " show, sh Show the current value of the LD_PRELOAD" @@ -214,6 +215,9 @@ do export TORSOCKS_PASSWORD=$2 shift ;; + -i|--isolate) + export TORSOCKS_ISOLATE_PID=1 + ;; -d|--debug) # Set full DEBUG with 5 being the highest possible level. export TORSOCKS_LOG_LEVEL=5 diff --git a/src/common/config-file.c b/src/common/config-file.c index 64b3d42..2f145fb 100644 --- a/src/common/config-file.c +++ b/src/common/config-file.c @@ -39,6 +39,7 @@ static const char *conf_socks5_user_str = "SOCKS5Username"; static const char *conf_socks5_pass_str = "SOCKS5Password"; static const char *conf_allow_inbound_str = "AllowInbound"; static const char *conf_allow_outbound_localhost_str = "AllowOutboundLocalhost"; +static const char *conf_isolate_pid_str = "IsolatePID"; /* * Once this value reaches 2, it means both user and password for a SOCKS5 @@ -47,6 +48,14 @@ static const char *conf_allow_outbound_localhost_str = "AllowOutboundLocalhost"; static unsigned int both_socks5_pass_user_set; /* + * Username format for the IsolatePID option. Format is: + * 'torsocks-' PID ':' TIME + */ +static const char *isolate_username_fmt = "torsocks-%ld:%lld"; +/* Default password for the IsolatePID option. */ +static const char *isolate_password = "42"; + +/* * Set the onion pool address range in the configuration object using the value * found in the conf file. * @@ -233,6 +242,11 @@ static int parse_config_line(const char *line, struct configuration *config) if (ret < 0) { goto error; } + } else if (!strcmp(tokens[0], conf_isolate_pid_str)) { + ret = conf_file_set_isolate_pid(tokens[1], config); + if (ret < 0) { + goto error; + } } else { WARN("Config file contains unknown value: %s", line); } @@ -402,6 +416,99 @@ int conf_file_set_allow_outbound_localhost(const char *val, } /* + * Set the isolate PID option for the given config. + * + * Return 0 if optiuon is off, 1 if on and negative value on error. + */ +ATTR_HIDDEN +int conf_file_set_isolate_pid(const char *val, struct configuration *config) +{ + int ret; + + assert(val); + assert(config); + + ret = atoi(val); + if (ret == 0) { + config->isolate_pid = 0; + DBG("[config] PID isolation disabled."); + } else if (ret == 1) { + config->isolate_pid = 1; + DBG("[config] PID isolation enabled."); + } else { + ERR("[config] Invalid %s value for %s", val, + conf_isolate_pid_str); + ret = -EINVAL; + } + + return ret; +} + +/* + * Applies the SOCKS authentication configuration and sets the final SOCKS + * username and password. + * + * Return 0 if successful, and negative value on error. + */ +ATTR_HIDDEN +int conf_apply_socks_auth(struct configuration *config) +{ + int ret; + pid_t pid; + time_t now; + + assert(config); + + if (!config->socks5_use_auth && !config->isolate_pid) { + /* No auth specified at all. */ + ret = 0; + goto end; + } else if (config->socks5_use_auth && !config->isolate_pid) { + /* SOCKS5 auth specified by user, already setup. */ + ret = 0; + goto end; + } else if (config->socks5_use_auth && config->isolate_pid) { + ERR("[config] %s and SOCKS5 auth both set.", conf_isolate_pid_str); + ret = -EINVAL; + goto end; + } + + + /* PID based isolation requested. + * Username: 'torsocks-' PID ':' TIME + * Password: '42' + */ + + pid = getpid(); + now = time(NULL); + + ret = snprintf(config->conf_file.socks5_username, + sizeof(config->conf_file.socks5_username), isolate_username_fmt, + (long) pid, (long long int) now); + if (ret < 0 || ret >= (int) sizeof(config->conf_file.socks5_username)) { + ret = -ENOBUFS; + goto end; + } + + ret = snprintf(config->conf_file.socks5_password, + sizeof(config->conf_file.socks5_password), "%s", isolate_password); + if (ret < 0 || ret >= (int) sizeof(config->conf_file.socks5_password)) { + ret = -ENOBUFS; + goto end; + } + + DBG("[config]: %s: '%s'/'%s'", conf_isolate_pid_str, + config->conf_file.socks5_username, + config->conf_file.socks5_password); + + config->socks5_use_auth = 1; + ret = 0; + +end: + return ret; +} + +/* * Read and populate the given config parsed data structure. * * Return 0 on success or else a negative value. diff --git a/src/common/config-file.h b/src/common/config-file.h index da3d507..23dd842 100644 --- a/src/common/config-file.h +++ b/src/common/config-file.h @@ -83,6 +83,13 @@ struct configuration { * Allow outbound connections to localhost that bypass Tor. */ unsigned int allow_outbound_localhost:1; + + /* + * Automatically set the SOCKS5 authentication to a unique per-process + * value. If this value is set, the user MUST NOT have provided a + * username or password. + */ + unsigned int isolate_pid:1; }; int config_file_read(const char *filename, struct configuration *config); @@ -94,5 +101,8 @@ int conf_file_set_socks5_user(const char *username, int conf_file_set_allow_inbound(const char *val, struct configuration *config); int conf_file_set_allow_outbound_localhost(const char *val, struct configuration *config); +int conf_file_set_isolate_pid(const char *val, struct configuration *config); + +int conf_apply_socks_auth(struct configuration *config); #endif /* CONFIG_FILE_H */ diff --git a/src/common/defaults.h b/src/common/defaults.h index 36c7bc0..ab51690 100644 --- a/src/common/defaults.h +++ b/src/common/defaults.h @@ -66,4 +66,7 @@ /* Control if torsocks allows inbound connection or not. */ #define DEFAULT_ALLOW_INBOUND_ENV "TORSOCKS_ALLOW_INBOUND" +/* Control if torsocks isolates based on PID or not. */ +#define DEFAULT_ISOLATE_PID_ENV "TORSOCKS_ISOLATE_PID" + #endif /* TORSOCKS_DEFAULTS_H */ diff --git a/src/lib/torsocks.c b/src/lib/torsocks.c index 8f079fe..be00581 100644 --- a/src/lib/torsocks.c +++ b/src/lib/torsocks.c @@ -75,7 +75,7 @@ static void clean_exit(int status) static void read_env(void) { int ret; - const char *username, *password, *allow_in; + const char *username, *password, *allow_in, *isolate_pid; if (is_suid) { goto end; @@ -89,6 +89,14 @@ static void read_env(void) } } + isolate_pid = getenv(DEFAULT_ISOLATE_PID_ENV); + if (isolate_pid) { + ret = conf_file_set_isolate_pid(isolate_pid, &tsocks_config); + if (ret < 0) { + goto error; + } + } + username = getenv(DEFAULT_SOCKS5_USER_ENV); password = getenv(DEFAULT_SOCKS5_PASS_ENV); if (!username && !password) { @@ -181,6 +189,12 @@ static void init_config(void) /* Handle possible env. variables. */ read_env(); + + /* Finalize the SOCKS auth (Isolation) settings. */ + ret = conf_apply_socks_auth(&tsocks_config); + if (ret < 0) { + clean_exit(EXIT_FAILURE); + } } /*

1 0

[tor/master] Bump version to 0.2.7.1-alpha-dev
by nickm＠torproject.org 12 May '15

12 May '15

commit 95a9920461dd3322280a13c8d99e363c91028ab2 Author: Nick Mathewson <nickm(a)torproject.org> Date: Tue May 12 11:54:06 2015 -0400 Bump version to 0.2.7.1-alpha-dev --- ChangeLog | 6 +++++- configure.ac | 2 +- contrib/win32build/tor-mingw.nsi.in | 2 +- src/win32/orconfig.h | 2 +- 4 files changed, 8 insertions(+), 4 deletions(-) diff --git a/ChangeLog b/ChangeLog index b17613a..c79a399 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,4 +1,8 @@ -Changes in version 0.2.7.1-alpha - 2015-05-1? +Changes in version 0.2.7.2-alpha - 2015-0?-?? + + + +Changes in version 0.2.7.1-alpha - 2015-05-12 Tor 0.2.7.1-alpha is the first alpha release in its series. It includes numerous small features and bugfixes against previous Tor versions, and numerous small infrastructure improvements. The most diff --git a/configure.ac b/configure.ac index 2645ed9..a51c71e 100644 --- a/configure.ac +++ b/configure.ac @@ -3,7 +3,7 @@ dnl Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson dnl Copyright (c) 2007-2015, The Tor Project, Inc. dnl See LICENSE for licensing information -AC_INIT([tor],[0.2.7.1-alpha]) +AC_INIT([tor],[0.2.7.1-alpha-dev]) AC_CONFIG_SRCDIR([src/or/main.c]) AC_CONFIG_MACRO_DIR([m4]) AM_INIT_AUTOMAKE diff --git a/contrib/win32build/tor-mingw.nsi.in b/contrib/win32build/tor-mingw.nsi.in index b3c8428..928aced 100644 --- a/contrib/win32build/tor-mingw.nsi.in +++ b/contrib/win32build/tor-mingw.nsi.in @@ -8,7 +8,7 @@ !include "LogicLib.nsh" !include "FileFunc.nsh" !insertmacro GetParameters -!define VERSION "0.2.7.1-alpha" +!define VERSION "0.2.7.1-alpha-dev" !define INSTALLER "tor-${VERSION}-win32.exe" !define WEBSITE "https://www.torproject.org/" !define LICENSE "LICENSE" diff --git a/src/win32/orconfig.h b/src/win32/orconfig.h index 623f4bd..9c780e8 100644 --- a/src/win32/orconfig.h +++ b/src/win32/orconfig.h @@ -232,7 +232,7 @@ #define USING_TWOS_COMPLEMENT /* Version number of package */ -#define VERSION "0.2.7.1-alpha" +#define VERSION "0.2.7.1-alpha-dev"

1 0

[webwml/master] Release 0.2.7.1-alpha
by nickm＠torproject.org 12 May '15

12 May '15

commit 7aec2c9290901266d1b17416cf57154f5432570d Author: Nick Mathewson <nickm(a)torproject.org> Date: Tue May 12 11:42:23 2015 -0400 Release 0.2.7.1-alpha --- Makefile | 4 ++-- include/versions.wmi | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/Makefile b/Makefile index 79d0b34..72c8a54 100644 --- a/Makefile +++ b/Makefile @@ -14,8 +14,8 @@ # branch to your personal webwml repository, open a trac ticket in the # website component, and set it to needs_review. -export STABLETAG=tor-0.2.5.12 -export DEVTAG=tor-0.2.6.7 +export STABLETAG=tor-0.2.6.7 +export DEVTAG=tor-0.2.7.1-alpha WMLBASE=. SUBDIRS=docs eff projects press about download getinvolved donate docs/torbutton diff --git a/include/versions.wmi b/include/versions.wmi index c83c573..5754926 100644 --- a/include/versions.wmi +++ b/include/versions.wmi @@ -1,5 +1,5 @@ <define-tag version-stable whitespace=delete>0.2.6.7</define-tag> -<define-tag version-alpha whitespace=delete>0.2.6.7</define-tag> +<define-tag version-alpha whitespace=delete>0.2.7.1-alpha</define-tag> <define-tag version-win32-stable whitespace=delete>0.2.6.7</define-tag> <define-tag version-win32-alpha whitespace=delete>0.2.5.10</define-tag>

1 0