Matthew Toseland | 9 Feb 21:16 2016

Swap requests over opennet a bad thing? was Fwd: Re: Swap requests in Freenet

See also

-------- Forwarded Message --------
Subject: 	Re: Swap requests in Freenet
Date: 	Tue, 9 Feb 2016 09:46:52 +0100
From: 	Stefanie Roos <stefanie.roos@...>
To: 	Matthew Toseland <mjt92@...>, Martin Byrenheid
<martin.byrenheid@...>, Arne Babenhauserheide <arne_bab@...>

Hi Matthew,

just to (maybe) clarify:
Our measurements raised the question if it makes sense to forward
SwapRequests into the Opennet.
The motivation seems to be that different Darknet "Pockets" can exchange
locations but we never saw
that happen, so it might be that forwarding a SwapRequest into the
Opennet just i) generates unnecessary traffic
as all requests are rejected (should not be significant as the payload
of a swap request is comparably low) and
ii) allows an Opennet node to attack the Darknet by answering a
SwapRequest with fake locations to either perform the PitchBlack Attack
(the commitments provide some protection, you are right, but my guess
would be that the attack remains possible just more costly) or simply
infer information about the structure of the Darknet (which might or
might not be a problem, I was thinking in the direction of graph
(de-)anonymization [1] to identify participants of the Darknet but the
available information might be insufficient for that to be a real issue,
hard to tell).
(Continue reading)

Arne Babenhauserheide | 8 Feb 12:13 2016

Mitigate the Pitch Black attack (the simulation works)


## Preface

I fixed a small bug in the simulator of thesnark. With that, the
simulator shows that the defense against the Pitch Black Attack works:
A small number of attackers can no longer kill parts of the keyspace and
can also no longer make certain parts of the keyspace inaccessible.

Attackers can still limit the convergence of the network towards a
reproduction of the small world network, but since we know that Opennet
works quite well with 30% backoff, this limited convergence should
suffice for efficient routing.

I also identified two possible ways to make the algorithm more efficient.

The fix does not need to know the size of the network. The only global
information it needs is routing to random locations.

In this mail I first describe simulator and Pitch Black Attack.
Afterwards I describe the fix. The fix was originally proposed by Oskar
Sandberg. He did all the hard work, I just describe it here.

## Graphics


(because that’s what most people really want ☺)

(Continue reading)

Ian Clarke | 4 Feb 21:32 2016

Similarity between original SSK proposal and Bitcoin contracts

I've been reading about Bitcoin Contracts
<>, and I'm surprised by the
similarity between these and, not just SSKs, but particularly the original
proposal for SSKs <> from way back
in June 2000, which involved a stack based language with cryptographic
primitives, just like the language used for Bitcoin contracts.

I don't know if the Bitcoin approach was inspired by SSKs at all, I suspect
more likely independent reinvention to solve a similar problem.



Ian Clarke
Founder, The Freenet Project
Email: ian <at>
Devl mailing list
Devl <at>
Sadao | 31 Jan 05:06 2016

PSK keys

Hi all.

Three years ago I started a thread on FMS with the topic "Efficiency of various freenet message systems",
where I proposed to implement a new key type (PSK) in order to make a base for creating spam-protected
moderated messaging systems in freenet like usenet groups. Toad liked the idea and he was going to
implement PSK keys in freenet while I was going to write a new client app (a Frost-like message system with
moderation). But eventually Toad switched his attention to WoT and other things and I completely lost
interest to freenet and left it.

Now I returned again just to see that there is no progress. I still have spare time and willingness to write a
new app, but there is no support of PSK keys. In theory, I could try to implement them myself, but it would
take me years for that. On the other hand, it’s not so difficult for a person like Toad who knows freenet
code very well. So I’d like to ask again: is there any chance that Toad could add the support of PSK keys to
freenet in the near future?

        Sent from secure GhostMail. Easy and free encrypted email, chat and cloud storage, free sign up here:

Devl mailing list
Devl <at>
tux. | 10 Jan 17:47 2016

Porting to FreeBSD

Hi devl <at> ,

a working group in the German Pirate Party (in cooperation with the
Austrian Pirate Party) is currently planning to set up a number of
public FreeBSD servers which should act as Freenet nodes, Tor nodes

However, we found that the "official" instructions to make Freenet
work on FreeBSD (use the Linux version, add a number of patches,
delete some files etc.) is not quite easy. As we'd prefer a stable
experience for our users, I was wondering if we could help you to
provide an "official" FreeBSD port of Freenet. A ports Makefile could
automatize the dependencies and required patches for everyone.

Actually, I was told to contact nextgens <at>  directly but he instructed
me to get in touch with you instead. So here I am. :-)

Any volunteers already working on it? What is required? Is there
anything I can do while being short on free time?

Kind regards,
Devl mailing list
Devl <at>
Ben Green | 10 Jan 16:33 2016

Separation of freenet-ext component parts

Hello freenet-dev,

In a recent comment on a pull request:

Steve said:

1471 isn't going to split freenet-ext either. Hrm.

I would like to help with this as I have recently had the dubious pleasure of deciphering the build scripts
from contrib/NativeBigInteger. I had initially wondered if it is still worth it as it has been some time
since the repository was updated, I found that with the version of GMP that is "supposed" to be used, 5.0.1
(by that I mean the one referenced in the build scripts in contrib on github) the speed is:

native run time: 66ms (0ms each)
java run time: 329ms (3ms each)
native = 20.060790273556233% of pure java time
native run time: 60ms (0ms each)
java run time: 310ms (3ms each)
native = 19.35483870967742% of pure java time

Running the same thing with the most recent GMP, 6.1.0:

native run time: 47ms (0ms each)
java run time: 315ms (3ms each)
native = 14.920634920634921% of pure java time
native run time: 49ms (0ms each)
java run time: 315ms (3ms each)
native = 15.555555555555555% of pure java time
(Continue reading)

charles | 6 Jan 21:25 2016

Applying for pro UX help for free

So I just found this program for free software projects that support
free expression online to apply to to get help with UX.[1] I think it
would be really useful for us to apply for this. There are so many
places we could try and improve UX. I don't think they would necessarily
help with the development side of things, but it would still be really
valuable to get input and data from pro UX people. They could also help
run usability studies and such.



Devl mailing list
Devl <at>
Arne Babenhauserheide | 4 Jan 02:26 2016

What blocks Freenet adoption?

I asked myself that question. These are my answers. Please add yours!

Note: This is just for listing. Please don’t discuss these before January 16th.

What blocks Freenet adoption?

- Our themes look clunky and our web-interface is slow. Why is access
  to bookmarked activelinks slow? Why isn’t 404 sent instantly (for
  bookmarked activelinks) -> remove the checkbox “has an activelink?”,
  just check instead. Prefetch activelinks at random intervals.
  -> FreeStyle announced in FLIP to be working on new themes.

- Hackers in-the-know reject Darknet due to the non-implemented fix
  for the Pitch Black Attack. It’s been simulated several years ago
  and just needs implementation.

- Our installers often fail -> Work is already being done for Windows
  and OSX (short of being deployed) and for Debian packages. Gentoo
  mostly works (except for a hard-to-trace compression bug).

- No working Darknet invites. We say “use darknet”, but advise
  against that (“only connect to …”) and don’t make it easy and
  useful. And new Darknet users get horrible performance. I invited
  about 5-7 people over the past years, and at least 3 left again
  because Darknet with a single friend is slow. For the others I
  moderated the noderef exchange with my existing friends by manually
  sending them each others references. To get adoption via Darknet,
  this has to be fast on the initial connection without additional
  manual interaction ← requirement.

(Continue reading)

Steve Dougherty | 3 Jan 16:17 2016

Freenet 0.7.5 1471-pre3

Freenet unstable testing prerelease 1471-pre3 is now available.

How to help test - three options:

1. Run testing or update.cmd testing from your Freenet
   installation directory.
2. Download it, shut down the node, replace freenet.jar with it, and
   start the node again. [2]
3. Build it yourself from the testing-build-1471-pre3 tag. [3]

This is feature-complete and hopefully the last testing release before
the stable release of build 1471. Please let us know if we fixed the
things we thought we fixed, or if you encounter any problems!

Build 1471 will be the last to support Java 6.


- Fix uploads stalling when using MAXIMUM physical security.
- Fix lots of "setNativePriority(X) has failed!", which was caused by a
  serious thread priority problem. This might fix nodes unexpectedly
  losing peers.
- Order alerts within a category by time: if you have lots of
  messages from darknet peers they will remain nicely sorted.


- New partial Greek translation.
- Update German, Bokmål, Brazilian Portuguese, Simplified Chinese, and
  Traditional Chinese translations.
(Continue reading)

Rostislav Krasny | 1 Jan 21:33 2016

Issues in BaseL10n and in BaseL10nTest in the current code

Hi there,

After pulling the latest changes in the "next" branch of the Fred
project I found a few issues in BaseL10n and in BaseL10nTest. Please
take a look at my bug report that also includes a patch:

I build Fred by Maven, so I converted the structure of the code
directories into the Maven standard. And my patch is based in it.
However my patch would be interesting to the original Fred developers
as well because it fixes issues in BaseL10n that are not Maven/Ant
related. It also fixes code portability, meaning it should not be
Ant-only and should continue to work properly and pass tests after
rearranged into Maven source directories structure.

I would like show you one of the test changes that demonstrates
improvements done in the BaseL10n :

-        // it would be nice to handle this correctly, but it seems
like more trouble than it's worth
-        //assertEquals("<tag>content <tag>nested</tag></tag>",
-        assertEquals("test.selfNestedSubstitution", node.generateChildren());
+        assertEquals("<tag>content <tag>nested</tag></tag>",
Devl mailing list
Devl <at>
(Continue reading)

hyazinthe | 28 Dec 17:02 2015

[32C3] Freenet useful talks (+ video links)

Hello everyone,

the 32th chaos communication congress is taking place right now.

Video livestreaming:

Some talks there are useful for the development of freenet.
Considering this I thought it's a good idea, to carry together such
talks here. So, feel free to do so: Plz provide title and optionally a short discription why
this talk is interesting for development of freenet. Links to videos can be found
here with 12 hours delay:

I only have 1 talk to suggest so far:

Title: djb, Tanja Lange: PQCHacks
Video link:
discription: A gentle introduction to post-quantum cryptography
This is a talk of the cutting edgy group working on securing working crypto in
post-quantum era (starting btw. 2018-2027). A lot of smart heads meet every year
for this and this talk sums up the status quo, gives a preview into the future and
provides useful information for implementing practical (but not optimal) post-quantum cryptography solutions
right now - maybe it's a nice idea to exchange freenet's crypto with these post-quantum cryptography solutions.

Any other video suggestions?

Torben Lechner
Devl mailing list
(Continue reading)