The Tor Project issueshttps://gitlab.torproject.org/groups/tpo/-/issues2021-03-02T12:53:37Zhttps://gitlab.torproject.org/tpo/core/tor/-/issues/40247relays offline2021-03-02T12:53:37Zpeskyrabbitrelays offlineOkay, relays in question:
https://metrics.torproject.org/rs.html#search/flag:exit%20as:AS200052
I upgraded the relays 2d15h ago to Tor 0.4.6.0-alpha-dev
since then some of the relays are voted to be seen offline.
all of the relays ar...Okay, relays in question:
https://metrics.torproject.org/rs.html#search/flag:exit%20as:AS200052
I upgraded the relays 2d15h ago to Tor 0.4.6.0-alpha-dev
since then some of the relays are voted to be seen offline.
all of the relays are on servers which were not offline the last days:
exit@worlddomination3:~/relayon0301$ uptime
22:15:16 up 33 days, 23:23, 1 user, load average: 41.39, 39.65, 38.87
also, my own AS was online:
https://stat.ripe.net/AS208294#tabId=at-a-glance
So every relay which is less than 2d15h online was voted from the auth servers to be seen offline. I do not see any pattern in this. Relays go down and after a few hours they come back without any change on the server or relays.
Just to make sure: relays, server and routing works. The relays in question are just shown offline in Atlas...https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40284Bluetooth keyboard status change causes Android Tor drop2022-12-08T15:15:31ZjoshuhwuhBluetooth keyboard status change causes Android Tor dropWhen I have Android Tor version 10.0.6 (83.1.0-Release) (Build #2015737915) browser running with Bluetooth active on the phone, connected to a logitech Bluetooth keyboard, if I turn off the keyboard, or walk out of range and lose the con...When I have Android Tor version 10.0.6 (83.1.0-Release) (Build #2015737915) browser running with Bluetooth active on the phone, connected to a logitech Bluetooth keyboard, if I turn off the keyboard, or walk out of range and lose the connection, Tor closes all tabs and loses its connection, returning to the "Connect" screen. It also does this in the opposite situation, where I turn ON the keyboard or establish a Bluetooth connection.
New to GitHub/Lab. Please advise if this needs to be posted elsewhere.
Thank you!https://gitlab.torproject.org/tpo/web/tpo/-/issues/135Create "Learn More" Landing Page for TBA2021-06-11T15:12:09ZMatthew FinkelCreate "Learn More" Landing Page for TBAWhen TBA is first launched there is a "Learn More" link the user can click. We should take advantage of this and create a useful webpage where the user can learn more. (Orfox currently has this, too, and the link goes to [[Guardian Proje...When TBA is first launched there is a "Learn More" link the user can click. We should take advantage of this and create a useful webpage where the user can learn more. (Orfox currently has this, too, and the link goes to [[Guardian Project's Orfox page](https://guardianproject.info/apps/orfox|the)].https://gitlab.torproject.org/tpo/web/manual/-/issues/77Document the value of embedding Tor in third-party products2021-01-08T19:54:17ZArthur EdelsteinDocument the value of embedding Tor in third-party productsThird party app or device creators may want to embed Tor into their app or device. What sort of value proposition can convince managers or customers that embedding Tor is a good thing to do? Let's develop a web page laying out the benefi...Third party app or device creators may want to embed Tor into their app or device. What sort of value proposition can convince managers or customers that embedding Tor is a good thing to do? Let's develop a web page laying out the benefits. Suggested in [Montreal meeting.](https://trac.torproject.org/projects/tor/wiki/org/meetings/2017Montreal/Notes/EncouragingThirdPartyIntegrationAndOnionServicesEverywhere)https://gitlab.torproject.org/tpo/web/styleguide/-/issues/13Put a banner when detecting old versions of the Tor Browser on the website ad...2020-12-11T15:35:13ZcypherpunksPut a banner when detecting old versions of the Tor Browser on the website advising to updateThis is in the same spirit that Mozilla does, for example: https://www.mozilla.org/en-US/security/advisories/mfsa2017-22/
```
Your Firefox is out-of-date.
Get the most recent version to keep browsing securely.
Update Firefox
```This is in the same spirit that Mozilla does, for example: https://www.mozilla.org/en-US/security/advisories/mfsa2017-22/
```
Your Firefox is out-of-date.
Get the most recent version to keep browsing securely.
Update Firefox
```donutsdonutshttps://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40248tor browser creates data outside bundle directory on windows2022-12-08T15:15:31Zconcarnetor browser creates data outside bundle directory on windowsWhile using tor-browser on windows (bundle installed on usb flash) it creates a folder labeled "tor" in C:\Users\<username>\AppData\Roaming
it does that on any machine that the USB is plugged into and tor-browser is executed including t...While using tor-browser on windows (bundle installed on usb flash) it creates a folder labeled "tor" in C:\Users\<username>\AppData\Roaming
it does that on any machine that the USB is plugged into and tor-browser is executed including the the machine that was originally used to download and install the tor browser. The tor browser itself works fine on all machines it is used on.
List of files in the "tor" directory can be seen in the screenshot![tbb](/uploads/d5c494e9c5b46ec5e2d654bba2e8580f/tbb.JPG) attachedhttps://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40246Links to Wikipedia from Duckduckgo search do not work in macOS using Tor2020-11-23T08:10:31ZjenknessLinks to Wikipedia from Duckduckgo search do not work in macOS using TorLinks to Wikipedia from Duckduckgo search do not work in macOS via click, double-click, Open in Link in New Tab, or Open Link in New Window for macOS. This does not occur in other search engines, nor does it occur on a non-Tor web brows...Links to Wikipedia from Duckduckgo search do not work in macOS via click, double-click, Open in Link in New Tab, or Open Link in New Window for macOS. This does not occur in other search engines, nor does it occur on a non-Tor web browser using Duckduckgo. This issue does not seem exist for Tor in Windows 10 or Ubuntu after doing a cursory check.
**Reproducing the issue.**
Search for anything that will have a Wikipedia entry on Duckduckgo.com such as "amazon", then do any of the following to the Wikipedia link:
1. Click or double-click the link, whether in the main column or the right column, and it will not load the page.
2. Select "Open Link in New Tab" in context menu or Cmd+click on the link, and it brings up new tab with the URL, but does not automatically load the page.
3. Select "Open Link in New Window" in context menu or Shift+click, and it opens up a new blank window with nothing in the URL.
**Further details.**
10.0.5 (based on Mozilla Firefox 78.5.0esr) (64-bit),
macOS 10.13.6 (17G2208)https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40244Connect to Ledger Nano X with Tor Browser and Metamask in Tails OS2022-02-03T19:07:02ZdripConnect to Ledger Nano X with Tor Browser and Metamask in Tails OSHi, I have a on going issues with Tails and we are taking it to you now.
You can check the issue here https://gitlab.tails.boum.org/tails/tails/-/issues/17849
**Issue:** I open tails OS. Then I open Tor browser and connect to METAMASK ...Hi, I have a on going issues with Tails and we are taking it to you now.
You can check the issue here https://gitlab.tails.boum.org/tails/tails/-/issues/17849
**Issue:** I open tails OS. Then I open Tor browser and connect to METAMASK with a Ledger Nano X hardware wallet. The issue is that the browser tries to connect to the wallet but fails. There is a pop-up (blinking hysterical) that says:
![w](/uploads/5850b6eb23544698a9389be16699a253/w.jpg)
But there is nothing happening after that. No connection just times out.
----
I tried to do the same steps but on a MAC OS. Here I can connect my hardware wallet here but the pop-up is hysterical, see movie
![QAX9ORQ](/uploads/34d1d36abbe4487292f1e319161c6fff/QAX9ORQ.mp4)
**So what are stoping the Tor Browser from connecting to the Ledger Hardware wallet in tails? Need to come by the pop-up message some how?**https://gitlab.torproject.org/tpo/network-health/team/-/issues/6Cloudflare alt-svc failures cause spurious "DNS resolution error" in Tor Browser2021-11-09T15:56:33ZcypherpunksCloudflare alt-svc failures cause spurious "DNS resolution error" in Tor Browser[Like other online users](https://codeberg.org/crimeflare/cloudflare-tor/src/branch/master/PEOPLE.md), Cloudflare's DNS sometimes return their own internal IP address. This behaviour results in [DNS error screen](https://codeberg.org/cri...[Like other online users](https://codeberg.org/crimeflare/cloudflare-tor/src/branch/master/PEOPLE.md), Cloudflare's DNS sometimes return their own internal IP address. This behaviour results in [DNS error screen](https://codeberg.org/crimeflare/cloudflare-tor/media/branch/master/image/cferr1016.jpg).
You better ask Tor exit owners to change their DNS server to ISP one, or run unbound locally.https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40122Generalize mechanism for loading HTTPS Everywhere as system extension2022-07-25T13:39:01ZanonymGeneralize mechanism for loading HTTPS Everywhere as system extensionIn Tails we need a way to avoid the mandatory signature check for the uBlock Origin extension: [tails/tails#12571](https://gitlab.tails.boum.org/tails/tails/-/issues/12571). So far we have just unpacked the two `omni.ja`:s and patched th...In Tails we need a way to avoid the mandatory signature check for the uBlock Origin extension: [tails/tails#12571](https://gitlab.tails.boum.org/tails/tails/-/issues/12571). So far we have just unpacked the two `omni.ja`:s and patched the parts where you implemented the exception for HTTPS Everywhere to also except uBlock Origin.
Anticipating #40091, where Tails' current hack won't work any more, I played around with !44 to see if this would work for uBlock Origin too: Starting with 10.0a6 I unpacked the two `omni.ja`:s and added the `BrowserGlue.jsm` changes from !44, but I changed `HTTPS_EVERYWHERE_ID` and `HTTPS_EVERYWHERE_BUILTIN_URL` appropriately as well as dumped the uBlock Origin extension into `resource://torbutton/content/extensions/`. It worked like a charm!
I wonder, could we generalize this mechanism so that an extension can just be dropped into `resource://torbutton/content/extensions/` and then be loaded as a system extension? To me it sounds like something pretty simple to implement given my test above, but perhaps I'm missing something? Or is this a bad idea for other reasons?https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40108Opening local files leads to infinite refresh loop2020-09-02T07:56:39ZanonymOpening local files leads to infinite refresh loopThis seems to be a regression introduced in 10.0.x based on esr78 (I have only tested Tor Browser 10.0a6 on a x86_64 Debian Sid system):
If I open some local file, e.g. just an empty `.txt`, the file is opened and loaded but keeps on re...This seems to be a regression introduced in 10.0.x based on esr78 (I have only tested Tor Browser 10.0a6 on a x86_64 Debian Sid system):
If I open some local file, e.g. just an empty `.txt`, the file is opened and loaded but keeps on refreshing like crazy, like if you keep the F5 key pressed in, almost utilizing two full cores. HTML does not seem to get enough time to render at all. If I keep the ESC key pressed for a while it seems to stop, but this also stops HTML rendering, so it is not really an acceptable workaround.https://gitlab.torproject.org/tpo/core/tor/-/issues/40100Mixing long lived streams with shorter connections causes hidden tor service ...2021-07-09T17:30:28Ztubby-torMixing long lived streams with shorter connections causes hidden tor service name (.onion) resolution/routing failuresFrom one single tor instance with default settings and a single client address, long-lived streams to some .onion addresses seems to eventually break name resolution/routing to other .onion addresses that are short-lived connections.
Fo...From one single tor instance with default settings and a single client address, long-lived streams to some .onion addresses seems to eventually break name resolution/routing to other .onion addresses that are short-lived connections.
For example:
- Copy a large file over ssh from Client to server a.onion, b.onion, c.onion. (simultaneously for several hours)
- Connect to server d.onion, e.onion, f.onion for a few commands, then disconnect several times during the long running streams.
Eventually and intermittently, connections to d.onion, e.onion, f.onion fail on the client-side only.
Tests to isolate the problem:
- Testing the connections from another clients works, confirming that the servers d.onion, e.onion, f.onion are still up and it is a problem with the client-side tor
- Forcing a `SIGNAL NEWNYM` on the client corrects the problem and the client can subsequently connect to d.onion, e.onion, f.onion. The bad side-effect is that all the long-running streams are disconnected (of course).
- Forcing very aggressive circuit rebuilding on the client-side tor mostly solves the problem but also causes more disconnection of streams. I haven't been able to isolate further which one of these options is actually fixing the problem, but providing these are further information for others.
```
KeepalivePeriod 1
LongLivedPorts
MaxCircuitDirtiness 30
NewCircuitPeriod 30
```
- Stream Isolation `SocksPort ... IsolateDestAddr` did NOT seem to help.
I suspect that stale circuits are remaining opened for the long-running streams and that even though they keep streaming, they can no longer resolve/route new .onion requests and thus fail.
I think that tor with default configuration should be robust in these situations and there should not be an obscure .onion name resolution/routing failre to connect to hosts. Most users will not be able to diagnose such a situation and will also have trouble resolving it, ultimately giving the impression that .onion services are unreliable, regardless of whether it is .onion server side failure or client side .onion name resolution or routing failure.
I am not specifically looking for a solution, since I have many workarounds, simply trying to report the issue in a way that may help the tor project.
I have NOT tested the same problem using clearnet IP or domain name based servers, so I cannot report if it is specific to .onion or more general to all client-side tor circuits.David Gouletdgoulet@torproject.orgDavid Gouletdgoulet@torproject.orghttps://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40068Make it easier to report bugs2022-02-03T19:06:45ZiotaMake it easier to report bugsHi there,
I've reported my first bug today, and the path is quite tricky. Here are two proposal to make it easier:
- make it possible to search the documentation on https://support.torproject.org
- add a reference to this bug tracker i...Hi there,
I've reported my first bug today, and the path is quite tricky. Here are two proposal to make it easier:
- make it possible to search the documentation on https://support.torproject.org
- add a reference to this bug tracker in the footer. There is a link pointing to github, but a link to https://gitlab.torproject.org is missing
Keep on the good work!
Cheershttps://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40067Tor Browser's letterboxing wastes too much screen space in some cases2022-02-03T19:07:02ZiotaTor Browser's letterboxing wastes too much screen space in some casesHi there,
the letterboxing feature was introduced a month ago in [Tails](https://tails.boum.org), and in some cases **an important part of the screen is wasted**, as you can see here:
![letterboxing](/uploads/0a68df5ce3ba676fac0e809a86...Hi there,
the letterboxing feature was introduced a month ago in [Tails](https://tails.boum.org), and in some cases **an important part of the screen is wasted**, as you can see here:
![letterboxing](/uploads/0a68df5ce3ba676fac0e809a8698f783/letterboxing.png)
(see the margin at the bottom)
It would be great to reconsider default dimensions (see #30556) or to allow *one-click* opt-out
Thanks for your highly valuable work!https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/40056ensure that lazy <img> loading does not add a fingerprinting vector2022-07-12T16:53:53ZMark Smithensure that lazy <img> loading does not add a fingerprinting vectorFrom #33534: Firefox 75 added support for the `loading` attribute of HTML `<img>` elements. This string value can be used to specify that the image should be lazily loaded, by setting its value to `lazy`. This could allow sites to track ...From #33534: Firefox 75 added support for the `loading` attribute of HTML `<img>` elements. This string value can be used to specify that the image should be lazily loaded, by setting its value to `lazy`. This could allow sites to track a user's scrolling behavior and use it for fingerprinting. Maybe that is OK since:
1. Similar tracking is already possible via other mechanisms when JavaScript is enabled.
2. The lazy loading feature is supposedly disabled when JavaScript is disabled.
We should confirm.
https://bugzilla.mozilla.org/show_bug.cgi?id=1542784 \
"Support `<img loading="lazy">` lazy-loading"https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake-webext/-/issues/2Snowflake no longer working on Google Chrome2021-02-19T14:08:50ZcypherpunksSnowflake no longer working on Google ChromeExtension icon disappeared and cannot enable Snowflake in Google Chrome.Extension icon disappeared and cannot enable Snowflake in Google Chrome.https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/issues/26895'Error downloading build result' after GCC in container Tor Browser Bundle Bu...2022-08-02T15:31:54ZTrac'Error downloading build result' after GCC in container Tor Browser Bundle Build (rbm)... most descriptive error ever ocurred in the world $ make
git submodule update --init
./rbm/rbm build release --target release --target torbrowser-all
Building project tor-browser - tor-browser-8.0a9-linux-x86_64-58eca3
Using file out/container-image/container-image_w... $ make
git submodule update --init
./rbm/rbm build release --target release --target torbrowser-all
Building project tor-browser - tor-browser-8.0a9-linux-x86_64-58eca3
Using file out/container-image/container-image_wheezy-amd64-df3a332e7b34.tar.gz
Building project firefox - firefox-a0efd2fcd6e9-linux-x86_64-0974b5
Tag tor-browser-60.1.0esr-8.0-1-build2 is signed with key 35CD74C24A9B15A19E1A81A194373AA94B7C3223
Created tmp/rbm-mgl5M/firefox-a0efd2fcd6e9.tar.gz
Using file out/container-image/container-image_wheezy-amd64-279bd3a261cd.tar.gz
Building project gcc - gcc-6.4.0-3098e6.tar.gz
Using file out/container-image/container-image_wheezy-amd64-2bf0a6561acb.tar.gz
Using file out/gcc/gcc-6.4.0.tar.xz
[sudo] password for $USER:
Build log: logs/gcc-linux-x86_64.log
[sudo] password for $USER:
Error: Error downloading build result
make: *** [Makefile:6: release] Error 1
Thats the log on the screen...
**Trac**:
**Username**: kfseapersonhttps://gitlab.torproject.org/tpo/applications/tor-browser-build/-/issues/26877Declare gcc version in rbm.conf2021-08-18T08:57:02ZSukhbir SinghDeclare gcc version in rbm.confWe declare the `gcc` version (currently set to `6.4.0`) in multiple places:
```
projects/gcc/config:version: 6.4.0
```
```
projects/mingw-w64/config: gcc_version: 6.4.0
```
We should probably define it in `rbm.conf` instead and then ...We declare the `gcc` version (currently set to `6.4.0`) in multiple places:
```
projects/gcc/config:version: 6.4.0
```
```
projects/mingw-w64/config: gcc_version: 6.4.0
```
We should probably define it in `rbm.conf` instead and then refer to that. (This may also be relevant for legacy/trac#25485).https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/issues/23688Add GitLab CI script2021-08-16T20:44:30ZTracAdd GitLab CI scriptAs [suggested and merged for tor](https://trac.torproject.org/projects/tor/ticket/22891) I'd like to propose a GitLab CI script for Tor Browser. My intention to be able to build `tor-browser-bundle` locally which I tried for some time an...As [suggested and merged for tor](https://trac.torproject.org/projects/tor/ticket/22891) I'd like to propose a GitLab CI script for Tor Browser. My intention to be able to build `tor-browser-bundle` locally which I tried for some time and failed because of error which I hope will be brought to the attention of devs automatically rather than after painful reports.
The script currently uses Ubuntu 17.04 only, but since GitLab CI is based on Docker images, the number of possible OS to test on is basically infinite.
**Trac**:
**Username**: krichterhttps://gitlab.torproject.org/tpo/applications/tor-browser-build/-/issues/22341Make sure to pick up zstd+lzma support for tor in Tor Browser2023-11-09T08:42:24ZGeorg KoppenMake sure to pick up zstd+lzma support for tor in Tor BrowserWe might need to adapt our descriptors to make sure tor in Tor Browser is built with zstd+lzma support as well.
This is the parent ticket and the work, if needed, is done in child tickets.We might need to adapt our descriptors to make sure tor in Tor Browser is built with zstd+lzma support as well.
This is the parent ticket and the work, if needed, is done in child tickets.