Trac issueshttps://gitlab.torproject.org/legacy/trac/-/issues2020-06-13T03:27:14Zhttps://gitlab.torproject.org/legacy/trac/-/issues/12976Orbot's new identity feature is not mentioned anywhere in app or documentation2020-06-13T03:27:14ZcypherpunksOrbot's new identity feature is not mentioned anywhere in app or documentationNowhere in the app UI, wizard or websites can I find any mention of the Orbot's new identity feature. I only discovered it by accident and I'm sure other users will be in a similar position. I thought I'd seen a bug of someone actually r...Nowhere in the app UI, wizard or websites can I find any mention of the Orbot's new identity feature. I only discovered it by accident and I'm sure other users will be in a similar position. I thought I'd seen a bug of someone actually requesting for a new identity feature to be added because they didn't know it already existed, but I can't seem to find it now.
I think a simple mention in the UI would be enough. Just like we already have _Orbot is deactivated - long press to start -_, we could simply change the string _Connected to the Tor network_ to something like _Connected to the Tor network - Swipe for new circuit -_. A mention in the in-app wizard and/or in the interactive how-to on the Guardian Project website also wouldn't go a miss.Nathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13121App Conflict2020-06-13T03:30:27ZTracApp ConflictPlease disable this app in Android: -> settings-> Apps if you are having problems with Orbot: com.sec.msc.nts.android.proxy
**Trac**:
**Username**: dlmrPlease disable this app in Android: -> settings-> Apps if you are having problems with Orbot: com.sec.msc.nts.android.proxy
**Trac**:
**Username**: dlmrNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13185Orbot still accesses the public Tor network with bridges configured2020-06-13T03:31:47ZMike PerryOrbot still accesses the public Tor network with bridges configuredI configured Orbot 14.0.8.1 to use bridges, and then set up my upstream firewall to block all connection attempts except to that bridge, yet Orbot still seems to try to connect to many other nodes in the public directory.
Note I have th...I configured Orbot 14.0.8.1 to use bridges, and then set up my upstream firewall to block all connection attempts except to that bridge, yet Orbot still seems to try to connect to many other nodes in the public directory.
Note I have the same configuration on my laptop, and tor does not do this. If bridges are configured, Tor only connects to those IPs.
It should also be possible to observe by inspecting Orbot's connections on your Android device in OS Monitor app's "Connections" tab:
https://play.google.com/store/apps/details?id=com.eolwral.osmonitor&hl=en
https://f-droid.org/repository/browse/?fdid=com.eolwral.osmonitorNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13333Android users visiting sites using Tor leave all kinds of incriminating evide...2020-06-13T03:34:46ZcypherpunksAndroid users visiting sites using Tor leave all kinds of incriminating evidence in the logsPeople using Tor on Android use User-Agents with all kinds of incriminating evidence such as:
"Mozilla/5.0 (Linux; Android 4.1; Nexus 7 Build/JRN84D)
AppleWebKit/535.19 (KHTML, like Gecko) Chrome/18.0.1025.166
Safari/535.19"
"Mozill...People using Tor on Android use User-Agents with all kinds of incriminating evidence such as:
"Mozilla/5.0 (Linux; Android 4.1; Nexus 7 Build/JRN84D)
AppleWebKit/535.19 (KHTML, like Gecko) Chrome/18.0.1025.166
Safari/535.19"
"Mozilla/5.0 (Linux; U; Android 4.2.2; es-us; HUAWEI Y320-U151
Build/HUAWEIY320-U151) AppleWebKit/534.30 (KHTML, like Gecko)
Version/4.0 Mobile Safari/534.30"
"Mozilla/5.0 (Linux; U; Android 2.3; en-us; GT-I9100 Build/GRH78)
AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1"
These are examples with the least personal information in them and they may or may not be from a popular hidden service.
I am not sure who's software or project is responsible for this but it does not exactly make these people "blend in"Nathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13453circular link, outdated info on orbot info page2020-06-13T03:37:22ZTraccircular link, outdated info on orbot info pagepage I'm referencing is: https://guardianproject.info/apps/orbot/
fixes should be made in the 4th paragraph, the section outlining features after the screenshot:
> ★ PRIVATE CHAT MESSAGING: Use Gibberbot with Orbot to chat confidentia...page I'm referencing is: https://guardianproject.info/apps/orbot/
fixes should be made in the 4th paragraph, the section outlining features after the screenshot:
> ★ PRIVATE CHAT MESSAGING: Use Gibberbot with Orbot to chat confidentially with anyone, anywhere for free. Get Gibberbot:
> !https://goo.gl/O3FfS!
__'been awhile since it was called gibberbot, hasn't it? should probably change that to chatsecure
__'
> ★ PRIVACY FOR APPS: Any installed app can use Tor if it has a proxy feature, using the settings found here:
> https://goo.gl/2OA1y
**_The short url unmasks to the exact page it's on. Seeing as there are multiple possibilities (localhost: 9050, localhost 9040, localhost 8118, and http/https/socks4/socks4a/socks5) and no real explanation of the proper proxy configuration, there should be at least a section with that info and how they are connected to each other, because sending everything through tor doesn't work, and there is a bug in the individual apps selection I will detsail in a separate ticket if it hasn't yet been reported that makes the option virtually unusable.**_
**Trac**:
**Username**: vvnNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13768clean orbot build from git clone https://git.torproject.org/orbot.git2020-06-13T03:43:24ZTracclean orbot build from git clone https://git.torproject.org/orbot.gitTrying to make clean build from
git clone https://git.torproject.org/orbot.git
It seems that makefile is not sync with latest external folders. iptables, libevent missing.
How are official builds made? It looks that not from clean sta...Trying to make clean build from
git clone https://git.torproject.org/orbot.git
It seems that makefile is not sync with latest external folders. iptables, libevent missing.
How are official builds made? It looks that not from clean start. Messy stuff.
As security app as is should be more proper maintained.
-----
make[3]: Leaving directory `/media/verbatim/git/orbot_main/orbot/external/openssl/engines/ccgost'
make[2]: Leaving directory `/media/verbatim/git/orbot_main/orbot/external/openssl/engines'
make[1]: Leaving directory `/media/verbatim/git/orbot_main/orbot/external/openssl'
touch openssl-build-stamp
test -d lib || mkdir lib
test -d include || mkdir include
test -d include/openssl || mkdir include/openssl
cp openssl/libcrypto.a lib/libcrypto.a
cp openssl/libssl.a lib/libssl.a
cp openssl/include/openssl/* include/openssl
sed -i 's@\(SUBDIRS = . include\) sample test@\1@' libevent/Makefile.am
sed: can't read libevent/Makefile.am: No such file or directory
make: [libevent/Makefile] Error 2
make: Leaving directory `/media/verbatim/git/orbot_main/orbot/external'
**Trac**:
**Username**: throwaway1Nathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13954Android fonepad2020-06-13T03:47:16ZTracAndroid fonepadDownloaded both apps from Google play store and did the regular install to internal hard drive
Orbo keeps giving me a startup error so I deleted both apps and reinstalled them with same results
How can I manually repair install
Phone= A...Downloaded both apps from Google play store and did the regular install to internal hard drive
Orbo keeps giving me a startup error so I deleted both apps and reinstalled them with same results
How can I manually repair install
Phone= Asus FonePad 7 K012 rooted running 4.3 jellybean
Running android Orbit 14.1.4 (Tor 0.2.5.10)
Orbot is starting…
Orbot is starting…
Waiting for control port...
tor: PRE: Is binary exec? true
polipo: PRE: Is binary exec? true
obfsclient: PRE: Is binary exec? true
xtables: PRE: Is binary exec? true
Orbot is starting…
Orbot is starting…
updating torrc custom configuration...
success.
Orbot is starting…
Tor (1): sh: <stdin>[2]: /data/data/org.torproject.android/app_bin/tor: No such file or directory
Unable to start Tor: java.lang.Exception: Torrc config did not verify
**Trac**:
**Username**: stockmanNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/13957Orbot not starting on lollipop (Nexus 4)2020-06-13T03:47:18ZTracOrbot not starting on lollipop (Nexus 4)Every time I try starting Orbot, I see the following error:
Tor(1):error: only position independent executables (PIE) are supported
Unable to start Tor:java.lan.Exception: Torrc config did not verify.
I tried the advise given in
http...Every time I try starting Orbot, I see the following error:
Tor(1):error: only position independent executables (PIE) are supported
Unable to start Tor:java.lan.Exception: Torrc config did not verify.
I tried the advise given in
https://trac.torproject.org/projects/tor/ticket/13764
But that didn't help either.
Is there anything else I can do?
Thanks,
**Trac**:
**Username**: atthedoghouseNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/14425Orbot not working after upgrade to Lollipop2020-06-13T03:53:29ZTracOrbot not working after upgrade to LollipopI was using Orbot on my HTC One (M7) running a custom ROM,Android KitKat,fully rooted and had no issues. I've recently upgraded the same ROM to its newest version which is Lollipop. Orbot now will not start. I have the latest Play Store ...I was using Orbot on my HTC One (M7) running a custom ROM,Android KitKat,fully rooted and had no issues. I've recently upgraded the same ROM to its newest version which is Lollipop. Orbot now will not start. I have the latest Play Store version of the App. I copied the log details:
Orbot is starting…
Orbot is starting…
Waiting for control port...
tor: PRE: Is binary exec? true
polipo: PRE: Is binary exec? true
obfsclient: PRE: Is binary exec? true
xtables: PRE: Is binary exec? true
Orbot is starting…
Orbot is starting…
updating torrc custom configuration...
success.
Orbot is starting…
Tor (1): error: only position independent executables (PIE) are supported.
Unable to start Tor: java.lang.Exception: Torrc config did not verify
**Trac**:
**Username**: rantekinazNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/14801"EXCLUDE Nodes" is not respected in Orbot2020-06-13T03:56:24ZTrac"EXCLUDE Nodes" is not respected in OrbotI've entered FiveEyes in Exlude Nodes and yet it still connects me to them. At first I thought it's just relay nodes. But just now, I was connected to a path with an Exit Node in one of them!
I input countries as:
US, UK, NZ, CA, AU,
A...I've entered FiveEyes in Exlude Nodes and yet it still connects me to them. At first I thought it's just relay nodes. But just now, I was connected to a path with an Exit Node in one of them!
I input countries as:
US, UK, NZ, CA, AU,
And I also tried with and without "Strict Nodes" option.
Orbot: 14.1.4-noPIE (Tor: 0.2.5.10)
Android: 4.4.4
Nexus 5, stock rooted
Downloaded Orbot from F-Droid
**Trac**:
**Username**: BugerNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/14883Orbot handshake fails on networks with Blue Coat Systems' technology2020-06-13T03:58:08ZTracOrbot handshake fails on networks with Blue Coat Systems' technologyBootstrapping fails at 85%.
**Trac**:
**Username**: ProGamerGovBootstrapping fails at 85%.
**Trac**:
**Username**: ProGamerGovNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/14946NullPointerException when Requesting Hidden Service2020-06-13T03:58:49ZTracNullPointerException when Requesting Hidden ServiceCurrently, a NullpointerException is raised when requesting a hidden service form another app through an intent.
The attached patch should fix this.
**Trac**:
**Username**: JesusMcCloudCurrently, a NullpointerException is raised when requesting a hidden service form another app through an intent.
The attached patch should fix this.
**Trac**:
**Username**: JesusMcCloudNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/15035URI format for bridges2022-03-15T17:14:23ZeighthaveURI format for bridgesRight now, according to @n8fr8, this is the URI format for the bridge URIs:
bridge://obfs3+99.999.99.999%3A10223+c6fa110ebcd8979b0a57617bf2d6e82bbecd287d+%0A
There is a problem with this format because it doesn't follow the URI RFC so ...Right now, according to @n8fr8, this is the URI format for the bridge URIs:
bridge://obfs3+99.999.99.999%3A10223+c6fa110ebcd8979b0a57617bf2d6e82bbecd287d+%0A
There is a problem with this format because it doesn't follow the URI RFC so that standard URI parsers won't parse it very well. Adding the `//` after `bridge:` makes it a "hierarchical" URI, which means that it has the standard sections of authority, user info, host, port, path, query, and fragment. But the above URI will just stick all of the text in the "authority" part, but that section can't be broken down into the standard parts of the "authority", i.e. user info, host, and port.
To keep the same data format, then this URI should be an "opaque" URI. That just means removing the `//`. So that makes it like a `mailto:` URI.
Otherwise, the data could be refactored to fit into the standard parts for a hierarchical URI, then standard URI parsing classes will be able to parse it. For example, android.net.Uri, java.net.URL, etc. That would make the URI look something like this:
`obfs4://xx.xx.xxx.xxx:18965/asdasdasldkasjlasjkdd4?cert=3wYasdasdasdasBmsIat+RMmMDV5BV4jDvXuzasdasdasdas8Dz8J1MUvLKHKaQ&iat-mode=0`
* `getScheme()` would be bridge type
* `getAuthority()` would be IP and port number
* `getHost()` would be IP
* `getPort()` would be port number
* `getPath()` would be this thing: `95151988dc29fccb4f610a1c700a1ddf7d5ffbd4`
* then `cert=`, `iat-mode=`, etc. would be in the query string
The downside of this approach is that there could only be a single bridge per URI, but maybe that's not so bad.Nathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/15099Hidden/onion service port forwarding2020-06-13T04:01:23ZFederico Cerattofederico.ceratto@gmail.comHidden/onion service port forwardingOrbot should be able to forward local ports to an onion service.
Once the user configures <onion-address>:<port|portrange> on Orbot, any non-tor-capable application can connect to localhost:<port> and the connection will be forwarded to...Orbot should be able to forward local ports to an onion service.
Once the user configures <onion-address>:<port|portrange> on Orbot, any non-tor-capable application can connect to localhost:<port> and the connection will be forwarded to the (remote) onion service.
Rationale:
- an onion service is used to provide a set of services on different ports (e.g. from a FreedomBox, an ownCloud instance)
- the phone is not rooted
- many applications do not support Tor, or socks proxies, or the configuration is more cumbersome for the average user than just connecting to localhost:<port>
Service authentication could be supported.
Maybe this feature could be instead implemented externally from Orbot with a small, dedicated add.Nathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/15444Cannot install on Android 5.12020-06-13T04:05:15ZTracCannot install on Android 5.1Android 5.1 has started rolling out on many devices. Current version of Orbot on Google Play store doesn't support Android 5.1 yet.
I don't think there are many changes in 5.1 from 5.0, so only change required might be to just bump the ...Android 5.1 has started rolling out on many devices. Current version of Orbot on Google Play store doesn't support Android 5.1 yet.
I don't think there are many changes in 5.1 from 5.0, so only change required might be to just bump the maxSdkVersion to 22.
Keep up the good work & Thanks
**Trac**:
**Username**: abdulmoeedNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/15589bug in app selection for transproxy2020-06-13T04:07:53ZTracbug in app selection for transproxyHello,
Everytime when I want to select apps for transproxy. It won't work. If I press select apps nothing will happen. If I press route all apps through transproxy, a app selection will pop up.
Have the galaxy s4 i9505
Android 5.0.1 l...Hello,
Everytime when I want to select apps for transproxy. It won't work. If I press select apps nothing will happen. If I press route all apps through transproxy, a app selection will pop up.
Have the galaxy s4 i9505
Android 5.0.1 lollipop
orbot v15.0.0.0 beta 2
**Trac**:
**Username**: SelfDestructNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/15930Orbot fails to connect using VPN Mode (using Outbound Proxy)2020-06-13T04:12:07ZTracOrbot fails to connect using VPN Mode (using Outbound Proxy)Using an outbound proxy I'm 100% sure is working (since I use it to connect to the internet in general)
However, using Orbot on VPN Mode does not (it is stuck in 85% or 10%). It works when not using VPN Mode (using the usual method).
U...Using an outbound proxy I'm 100% sure is working (since I use it to connect to the internet in general)
However, using Orbot on VPN Mode does not (it is stuck in 85% or 10%). It works when not using VPN Mode (using the usual method).
Using Orbot on VPN Mode without Outbound Proxies work (as expected I guess).
Tested on Android One (specifically Cherry Mobile One) and LG Optimus L3 II E425.
Disabling VPN Mode, the connection to Tor is a success, but as you expect, you cannot connect to Tor without the root-hook or the VPN mode. Enabling VPN Mode after making the connection to Tor also does not work. (for obvious reasons).
I assume this has something do to with the VPN function in Android screwing around with how Tor connects to outbound proxies...?
**Trac**:
**Username**: ronelm2000Nathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/16392If Orbot has just been installed it cannot be started by org.torproject.andro...2020-06-13T04:19:30ZTracIf Orbot has just been installed it cannot be started by org.torproject.android.START_TORAt OpenKeychain we will allow key updates to be routed over Orbot in a future version. This requires Orbot to be installed and then we use org.torproject.android.START_TOR to start Orbot.
This does not work when Orbot hasn't been properl...At OpenKeychain we will allow key updates to be routed over Orbot in a future version. This requires Orbot to be installed and then we use org.torproject.android.START_TOR to start Orbot.
This does not work when Orbot hasn't been properly started before without using this Intent, i.e., it hasn't really been set up.
This should be handled somehow. At least there needs to be a message that the User first needs to start Orbot on its own.
**Trac**:
**Username**: dschuermannNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/16394orbot bug for HTC One M92020-06-13T04:19:32ZTracorbot bug for HTC One M9There are times when I turn off orbot and I can't use google chrome normally on my android device. It happens about half of the time and is rather puzzling.
**Trac**:
**Username**: guardianofroinThere are times when I turn off orbot and I can't use google chrome normally on my android device. It happens about half of the time and is rather puzzling.
**Trac**:
**Username**: guardianofroinNathan FreitasNathan Freitashttps://gitlab.torproject.org/legacy/trac/-/issues/16857Transparent per/app proxying, extra option to deny any access2020-06-13T04:29:18ZTracTransparent per/app proxying, extra option to deny any accessIn the Transparent Proxy settings where you can specify whether or not to Torify a particular app on a rooted phone, please consider adding an extra option whereby you can specify that the App gets no Internet access at all. Preferably w...In the Transparent Proxy settings where you can specify whether or not to Torify a particular app on a rooted phone, please consider adding an extra option whereby you can specify that the App gets no Internet access at all. Preferably with the ability to set this as the default for any newly installed Apps. I want to be able to say that some Apps should be forced through Tor, others direct, and others get no access at all.
**Trac**:
**Username**: mickeycNathan FreitasNathan Freitas