https://github.com/ursachec/cpaproxy

A thin Objective-C wrapper around Tor.
https://github.com/ursachec/cpaproxy

Last synced: about 2 months ago
JSON representation

A thin Objective-C wrapper around Tor.

• Host: GitHub
• URL: https://github.com/ursachec/cpaproxy
• Owner: ursachec
• License: other
• Created: 2013-10-06T03:41:48.000Z (over 11 years ago)
• Default Branch: master
• Last Pushed: 2022-11-13T18:57:30.000Z (about 2 years ago)
• Last Synced: 2024-06-10T19:12:55.764Z (7 months ago)
• Language: Objective-C
• Homepage:
• Size: 16 MB
• Stars: 160
• Watchers: 14
• Forks: 49
• Open Issues: 32
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE.md

Awesome Lists containing this project

README

        
![CPAProxy logo](https://i.imgur.com/PiF7CWK.png)

[![Build Status](https://travis-ci.org/claudiuvursache/CPAProxy.svg?branch=master)](https://travis-ci.org/claudiuvursache/CPAProxy)

[CPAProxy](https://github.com/claudiuvursache/CPAProxy) is an Objective-C library that eases the use of Tor on iOS. It provides APIs to setup and communicate with a Tor client running on a separate thread of an application's main process. Another similar project is iCepa's [Tor.framework](https://github.com/iCepa/Tor.framework).

## Installation

The [CocoaPods](http://cocoapods.org) podspec hasn't been submitted yet, but you can still use `CPAProxy.podspec` in the meantime. Just put this line in your `Podfile`:

    pod 'CPAProxy', :git => 'https://github.com/claudiuvursache/CPAProxy.git'

The dependencies OpenSSL, libevent, and Tor should be built automatically via `build-all.sh` located in the scripts directory.

### Dependency Versions

* **[Tor][tor]**: 0.4.0.5

* **[libevent][libevent]**: 2.1.10-stable

* **[OpenSSL][openssl]**: 1.1.1c

* **[LZMA][lzma]**: 5.2.4

[tor]: https://www.torproject.org/

[libevent]: http://libevent.org/

[openssl]: https://www.openssl.org/

[lzma]: https://tukaani.org/xz/

## Usage

### ⨀ First steps

```obj-c

// Import the library...

#include 

// Get resource paths for the torrc and geoip files from the main bundle

NSURL *cpaProxyBundleURL = [[NSBundle bundleForClass:[CPAProxyManager class]] URLForResource:@"CPAProxy" withExtension:@"bundle"];

NSBundle *cpaProxyBundle = [NSBundle bundleWithURL:cpaProxyBundleURL];

NSString *torrcPath = [cpaProxyBundle pathForResource:@"torrc" ofType:nil];

NSString *geoipPath = [cpaProxyBundle pathForResource:@"geoip" ofType:nil];

// Place to store Tor caches (non-temp storage improves performance since

// directory data does not need to be re-loaded each launch)

NSString *documentsDirectory = [NSSearchPathForDirectoriesInDomains(NSDocumentDirectory, NSUserDomainMask, YES) firstObject];

NSString *torDataDir = [documentsDirectory stringByAppendingPathComponent:@"tor"];

// Initialize a CPAProxyManager

CPAConfiguration *configuration = [CPAConfiguration configurationWithTorrcPath:torrcPath geoipPath:geoipPath torDataDirectoryPath:torDataDir];

CPAProxyManager *cpaProxyManager = [CPAProxyManager proxyWithConfiguration:configuration];

```

Before doing anything with *CPAProxy*, you have to create a *CPAConfiguration* and a *CPAProxyManager*.

The CPAConfiguration requires paths to a torrc and a geoip file, which can be loaded from your main bundle provided you have added the CPAProxyDependencies folder to your project (recommended). 

Torrc is a configuration file used by the Tor process and is documented in length at [https://www.torproject.org/docs/tor-manual.html](https://www.torproject.org/docs/tor-manual.html). The GeoIP data is used by Tor to keep a per-country count of how many client addresses have contacted it so that it can help the bridge authority guess which countries have blocked access to it.

### ⨀  Running Tor

```obj-c

[cpaProxyManager setupWithCompletion:^(NSString *socksHost, NSUInteger socksPort, NSError *error) {

    if (error == nil) {

        // ... do something with Tor socks hostname & port ...

        NSLog(@"Connected: host=%@, port=%lu", socksHost, (long)socksPort);

        // ... like this -- see below for implementation ...

        [self handleCPAProxySetupWithSOCKSHost:socksHost SOCKSPort:socksPort];

    }

} progress:^(NSInteger progress, NSString *summaryString) {

    // ... do something to notify user of tor's initialization progress ...

    NSLog(@"%li %@", (long)progress, summaryString);

}];

```

After you have initialized an instance of CPAProxyManager, call `-setupWithSuccess:failure:`. This will create a new thread that runs a Tor process using information from the proxy manager's configuration. On success, a SOCKS hostname and port are returned that can be used to proxy requests. In addition to the block callback, you can also listen for the `CPAProxyDidFinishSetupNotification` notification to react to a successful setup.

### ⨀  Sending a request over Tor with NSURLSessionDataTask

```obj-c

- (void)handleCPAProxySetupWithSOCKSHost:(NSString *)SOCKSHost SOCKSPort:(NSUInteger)SOCKSPort

{

    // Create a NSURLSessionConfiguration that uses the newly setup SOCKS proxy

    NSDictionary *proxyDict = @{

        (NSString *)kCFStreamPropertySOCKSProxyHost : SOCKSHost,

        (NSString *)kCFStreamPropertySOCKSProxyPort : @(SOCKSPort)

    };

    NSURLSessionConfiguration *configuration = [NSURLSessionConfiguration ephemeralSessionConfiguration];

    configuration.connectionProxyDictionary = proxyDict;

    

    // Create a NSURLSession with the configuration

    NSURLSession *urlSession = [NSURLSession sessionWithConfiguration:configuration delegate:self delegateQueue:[NSOperationQueue mainQueue]];

    

    // Send an HTTP GET Request using NSURLSessionDataTask

    NSURL *URL = [NSURL URLWithString:@"https://check.torproject.org"];

    NSURLSessionDataTask *dataTask = [urlSession dataTaskWithURL:URL];

    [dataTask resume];

    

    // ...

}

```

After you have been notified that a CPAProxyManager setup has been completed, you can use the SOCKS proxy to anonymize your requests. For example, you could create an ephemeral `NSURLSessionConfiguration`, set `kCFStreamPropertySOCKSProxyHost` and `kCFStreamPropertySOCKSProxyPort` on its `connectionProxyDictionary`, and use `NSURLSessions` with the configuration to send `NSURLSessionTasks` over Tor.

## System Requirements

CPAProxy supports iOS 8.0+, macOS 10.10+ and the architectures __armv7__, __arm64__, __i386__, __x86_64__.

## Caveats

- Security implications of running Tor on iOS seem to be unknown so far, so CPAProxy is not recommended to be used in applications that want to guarantee the anonymity of users

- This product is produced independently from the Tor® anonymity software and carries no guarantee from The Tor Project about quality, suitability or anything else

- This project is still in the early stages of development, so things will be broken and not function correctly here and there 

## More info

- [The Tor Project's documentation](https://www.torproject.org/docs/documentation.html.en)

- [Selected Papers in Anonymity](http://freehaven.net/anonbib/topic.html#Anonymous_20communication)

- [Apple's URL Loading System Programming Guide](https://developer.apple.com/library/ios/documentation/Cocoa/Conceptual/URLLoadingSystem/URLLoadingSystem.html#//apple_ref/doc/uid/10000165i)

- [Apple's CFSocket Reference](https://developer.apple.com/library/mac/documentation/CoreFOundation/Reference/CFSocketRef/Reference/reference.html)

- [Apple's NSURLSession Class Reference](https://developer.apple.com/library/ios/documentation/Foundation/Reference/NSURLSession_class/Introduction/Introduction.html)