[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [orbot/master] remove redundant iptables rules for transproxy

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [orbot/master] remove redundant iptables rules for transproxy
From: n8fr8@xxxxxxxxxxxxxx
Date: Fri, 4 Apr 2014 03:27:24 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 03 Apr 2014 23:27:40 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Nathan Freitas <nathan@xxxxxxxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

commit 27d5945add2b9018952ed6185f4274109a58c28b
Author: Nathan Freitas <nathan@xxxxxxxxxxx>
Date:   Mon Mar 3 10:37:35 2014 -0500

    remove redundant iptables rules for transproxy
---
 src/org/torproject/android/service/TorTransProxy.java |    8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/src/org/torproject/android/service/TorTransProxy.java b/src/org/torproject/android/service/TorTransProxy.java
index 04400ac..7280eeb 100644
--- a/src/org/torproject/android/service/TorTransProxy.java
+++ b/src/org/torproject/android/service/TorTransProxy.java
@@ -302,7 +302,6 @@ public class TorTransProxy implements TorServiceConstants {
 
 			if (tApp.isTorified()
 					&& (!tApp.getUsername().equals(TorServiceConstants.TOR_APP_USERNAME))
-					&& (!tApp.getUsername().equals(TorServiceConstants.ORWEB_APP_USERNAME))
 					) //if app is set to true
 			{
 				
@@ -528,7 +527,9 @@ public class TorTransProxy implements TorServiceConstants {
 		script.append(ipTablesPath);
 		script.append(" -t nat");
 		script.append(" -A ").append(srcChainName);
-		script.append(" -p udp -m owner ! --uid-owner ");
+		script.append(" -p udp");
+		script.append(" ! -d 127.0.0.1"); //allow access to localhost
+		script.append(" -m owner ! --uid-owner ");
 		script.append(torUid);
 		script.append(" -m udp --dport "); 
 		script.append(STANDARD_DNS_PORT);
@@ -536,6 +537,7 @@ public class TorTransProxy implements TorServiceConstants {
 		script.append(TOR_DNS_PORT);
 		script.append(" || exit\n");
 		
+		/**
 		int[] ports = {TOR_DNS_PORT,TOR_TRANSPROXY_PORT,PORT_SOCKS,PORT_HTTP};
 		
 		for (int port : ports)
@@ -553,7 +555,7 @@ public class TorTransProxy implements TorServiceConstants {
 			script.append(" -j ACCEPT");
 			script.append(" || exit\n");
 		
-		}
+		}**/
 		
 		// Allow loopback
 		script.append(ipTablesPath);



_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [orbot/master] add new background graphics state change to main UI
Next by Author: [tor-commits] [orbot/master] updating change log
Previous by thread: [tor-commits] [orbot/master] add new background graphics state change to main UI
Next by thread: [tor-commits] [orbot/master] updating change log
Index(es):
- Author
- Thread