From 0d6820fb224030e3d2da616b11e230c513a04fba Mon Sep 17 00:00:00 2001
From: dev <dev@robertfoss.se>
Date: Wed, 12 Jun 2013 06:34:15 +0000
Subject: [PATCH 1/9] Added next goals.

---
 www.i2p2/pages/bounty_netdb.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/www.i2p2/pages/bounty_netdb.html b/www.i2p2/pages/bounty_netdb.html
index c21d9aa1..e0fcb8dc 100644
--- a/www.i2p2/pages/bounty_netdb.html
+++ b/www.i2p2/pages/bounty_netdb.html
@@ -66,8 +66,8 @@ still maintain an unlimited search horizon.
   <dt><b>Investigate multirouter</b></dt>
   <dd>Investigate the maturity of multirouter, which will simplify development tremendously.</dd>
 
-  <dt><b>More to come</b></dt>
-  <dd>...</dd>
+  <dt><b>Select base implementation</b></dt>
+  <dd>i2p.zzz.kademlia / i2psnarkdht is the most likely base implementation.</dd>
  </dl>
 </td>
 <td><p>None yet</p></td>

From 3dfa79dfcb212b05cb38aaee507be78440dc3a79 Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Sat, 15 Jun 2013 13:28:20 +0000
Subject: [PATCH 2/9] - Recommend Java 7 - DLM encrypted flag update

---
 www.i2p2/pages/download.html    | 6 +++---
 www.i2p2/pages/download_ar.html | 6 +++---
 www.i2p2/pages/download_cs.html | 2 +-
 www.i2p2/pages/download_de.html | 6 +++---
 www.i2p2/pages/download_el.html | 6 +++---
 www.i2p2/pages/download_es.html | 6 +++---
 www.i2p2/pages/download_fr.html | 6 +++---
 www.i2p2/pages/download_ru.html | 2 +-
 www.i2p2/pages/download_zh.html | 4 ++--
 www.i2p2/pages/i2np_spec.html   | 8 ++++----
 10 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/www.i2p2/pages/download.html b/www.i2p2/pages/download.html
index afe6d107..c83d88de 100644
--- a/www.i2p2/pages/download.html
+++ b/www.i2p2/pages/download.html
@@ -4,9 +4,9 @@
 <h1>Download I2P</h1>
 <h3>Dependency</h3>
 Java Runtime 1.5 or higher.
-(<a href="http://java.com/download/">Oracle/Sun Java Version 6</a>,
-<a href="http://openjdk.java.net/install/">OpenJDK 6</a>, or
-<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6</a>
+(<a href="http://java.com/download/">Oracle Java Version 6/7</a>,
+<a href="http://openjdk.java.net/install/">OpenJDK 6/7</a>, or
+<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6/7</a>
  recommended)
 <br />
 <a href="http://java.com/en/download/installed.jsp?detect=jre&amp;try=1">Determine your installed Java version here</a>
diff --git a/www.i2p2/pages/download_ar.html b/www.i2p2/pages/download_ar.html
index 992bf7bb..7d8d598c 100644
--- a/www.i2p2/pages/download_ar.html
+++ b/www.i2p2/pages/download_ar.html
@@ -4,9 +4,9 @@
 <h1>تحميل I2P</h1>      
 <h3>المتطلبات البرمجية</h3>
 اصدار 1.5 من Java Runtime (أو أعلى)
-(<a href="http://java.com/download/">Oracle/Sun Java Version 6</a>,
-<a href="http://openjdk.java.net/install/">OpenJDK 6</a>, or
-<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6</a>
+(<a href="http://java.com/download/">Oracle Java Version 6/7</a>,
+<a href="http://openjdk.java.net/install/">OpenJDK 6/7</a>, or
+<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6/7</a>
  منصوح بهم)
 <br>
 <a href="http://java.com/en/download/installed.jsp?detect=jre&try=1">اعرف نسخة الجافا المثبتة لديك من هنا</a>
diff --git a/www.i2p2/pages/download_cs.html b/www.i2p2/pages/download_cs.html
index 8e56d764..bd1f11df 100644
--- a/www.i2p2/pages/download_cs.html
+++ b/www.i2p2/pages/download_cs.html
@@ -3,7 +3,7 @@
 {% block content %}
 <h1>Stáhnout I2P</h1>      
 <h3>Požadavky pro instalaci</h3>
-<a href="http://java.com/download/">Sun Java</a> 1.5 nebo novější (doporučená verze <a href="http://java.com/download/">Sun Java 1.6</a>), nebo ekvivalentní JRE.
+<a href="http://java.com/download/">Oracle Java</a> 1.5 nebo novější (doporučená verze <a href="http://java.com/download/">Oracle Java 6/7</a>), nebo ekvivalentní JRE.
 <br>
 Svou aktuální nainstalovanou verzi Javy si můžete ověřit <a href="http://java.com/en/download/installed.jsp?detect=jre&try=1">na této stránce</a>
 nebo z příkazové řádky pomocí příkazu <tt>java -version</tt>
diff --git a/www.i2p2/pages/download_de.html b/www.i2p2/pages/download_de.html
index 181994c6..27da972a 100644
--- a/www.i2p2/pages/download_de.html
+++ b/www.i2p2/pages/download_de.html
@@ -4,9 +4,9 @@
 <h1>Download I2P</h1>      
 <h3>Abh&auml;ngigkeiten</h3>
 Java Runtime 1.5 oder neuer.
-(<a href="http://java.com/download/">Oracle/Sun Java Version 6</a>,
-<a href="http://openjdk.java.net/install/">OpenJDK 6</a>, oder
-<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6</a>
+(<a href="http://java.com/download/">Oracle Java Version 6/7</a>,
+<a href="http://openjdk.java.net/install/">OpenJDK 6/7</a>, oder
+<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6/7</a>
  recommended)
 <br>
 <a href="http://java.com/de/download/installed.jsp?detect=jre&try=1">Bestimme hier deine Java Version</a>
diff --git a/www.i2p2/pages/download_el.html b/www.i2p2/pages/download_el.html
index 487f8245..8fb62240 100644
--- a/www.i2p2/pages/download_el.html
+++ b/www.i2p2/pages/download_el.html
@@ -4,9 +4,9 @@
 <h1>Ληψη I2P</h1>
 <h3>Εξάρτηση</h3>
 Java Runtime 1.5 ή νεότερο.
-(<a href="http://java.com/download/">Oracle/Sun Java Version 6</a>,
-<a href="http://openjdk.java.net/install/">OpenJDK 6</a>, ή
-<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6</a>
+(<a href="http://java.com/download/">Oracle Java Version 6/7</a>,
+<a href="http://openjdk.java.net/install/">OpenJDK 6/7</a>, ή
+<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6/7</a>
  συνιστάται)
 <br />
 <a href="http://java.com/en/download/installed.jsp?detect=jre&amp;try=1">Βρείτε την έκδοση Java που έχετε εδώ</a>
diff --git a/www.i2p2/pages/download_es.html b/www.i2p2/pages/download_es.html
index d8c296dd..2851cf47 100644
--- a/www.i2p2/pages/download_es.html
+++ b/www.i2p2/pages/download_es.html
@@ -4,9 +4,9 @@
 <h1>Descargar I2P</h1>      
 <h3>Dependencias</h3>
 Java Runtime 1.5 o superior.
-(<a href="http://java.com/download/">Oracle/Sun Java Versión 6</a>,
-<a href="http://openjdk.java.net/install/">OpenJDK 6</a>, o
-<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6</a>
+(<a href="http://java.com/download/">Oracle Java Versión 6/7</a>,
+<a href="http://openjdk.java.net/install/">OpenJDK 6/7</a>, o
+<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6/7</a>
  recomendado)
 <br>
 <a href="http://java.com/en/download/installed.jsp?detect=jre&try=1">Determina aquí tu versión instalada de Java</a>
diff --git a/www.i2p2/pages/download_fr.html b/www.i2p2/pages/download_fr.html
index 16c7d2ab..a0e3bbd2 100644
--- a/www.i2p2/pages/download_fr.html
+++ b/www.i2p2/pages/download_fr.html
@@ -5,9 +5,9 @@ Traduction de juillet 2011. <a href="download.html">Version anglaise actuelle</a
 <h1>Télécharger I2P</h1> 
 <h3>Prérequis</h3>
 Java Runtime 1.5 ou plus récent.
-(<a href="http://java.com/download/">Oracle/Sun Java Version 6</a>,
-<a href="http://openjdk.java.net/install/">OpenJDK 6</a>, ou
-<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6</a>
+(<a href="http://java.com/download/">Oracle Java Version 6/7</a>,
+<a href="http://openjdk.java.net/install/">OpenJDK 6/7</a>, ou
+<a href="http://icedtea.classpath.org/wiki/Main_Page">IcedTea6/7</a>
  recommandé)
 <br>
 <a href="http://java.com/en/download/installed.jsp?detect=jre&try=1">Déterminez la version de Java installée</a>
diff --git a/www.i2p2/pages/download_ru.html b/www.i2p2/pages/download_ru.html
index 9cb08f3c..7c23f88b 100644
--- a/www.i2p2/pages/download_ru.html
+++ b/www.i2p2/pages/download_ru.html
@@ -6,7 +6,7 @@
 
 <h3>Требования для установки</h3>
 
-<a href="http://java.com/download/">Sun Java</a> 1.5 или новее (рекомендуется <a href="http://java.com/download/">Sun Java 1.6</a>), либо иная совместимая JRE.
+<a href="http://java.com/download/">Oracle Java</a> 1.5 или новее (рекомендуется <a href="http://java.com/download/">Oracle Java 6/7</a>), либо иная совместимая JRE.
 <br>
 Узнать, какая версия Java установлена на Вашем компьютере можно <a href="http://java.com/en/download/installed.jsp?detect=jre&try=1">на этой странице</a>, либо набрав в командной строке <tt>java -version</tt>
 
diff --git a/www.i2p2/pages/download_zh.html b/www.i2p2/pages/download_zh.html
index 602c4ced..d0e05eb2 100644
--- a/www.i2p2/pages/download_zh.html
+++ b/www.i2p2/pages/download_zh.html
@@ -3,8 +3,8 @@
 {% block content %}
 <h1>下载 I2P</h1>      
 <h3>依赖关系</h3>
-<a href="http://java.com/zh_CN/download/">Sun Java</a> 1.5 或更高版本，或等效的 JRE。
-(推荐使用 <a href="http://java.com/zh_CN/download/">Sun Java 1.6</a>) 
+<a href="http://java.com/zh_CN/download/">Oracle Java</a> 1.5 或更高版本，或等效的 JRE。
+(推荐使用 <a href="http://java.com/zh_CN/download/">Oracle Java 6/7</a>) 
 <br>
 确定您安装的 Java 版本可以<a href="http://java.com/zh_CN/download/installed.jsp?detect=jre&try=1">点这里</a> 
 或在命令行中输入 <tt>java -version</tt> 。
diff --git a/www.i2p2/pages/i2np_spec.html b/www.i2p2/pages/i2np_spec.html
index f0413b09..a4f9efbe 100644
--- a/www.i2p2/pages/i2np_spec.html
+++ b/www.i2p2/pages/i2np_spec.html
@@ -640,24 +640,24 @@ excludedPeers:
 
 reply key:
      32 byte SessionKey
-     Only included if encryptionFlag == 1
+     Only included if encryptionFlag == 1, only as of release 0.9.7
 
 tags:
      1 byte Integer
      valid range: 1-32 (typically 1)
      The number of reply tags that follow
-     Only included if encryptionFlag == 1
+     Only included if encryptionFlag == 1, only as of release 0.9.7
 
 reply tags:
      One or more 32 byte SessionTags (typically one)
-     Only included if encryptionFlag == 1
+     Only included if encryptionFlag == 1, only as of release 0.9.7
 
 {% endfilter %}
 </pre>
 
 <h4>Notes</h4>
 <ul><li>
-Encryption flag, reply key, and reply tags are preliminary, not yet implemented.
+Encryption flag, reply key, and reply tags as of release 0.9.7.
 </li><li>
 Encrypted replies are only useful when the response is through a tunnel.
 </li><li>

From 8c7fed4571a5c82c5cb2949df33b9fbf039cbcfd Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Mon, 17 Jun 2013 19:50:59 +0000
Subject: [PATCH 3/9] updates

---
 www.i2p2/pages/how_networkdatabase.html | 38 ++++++++++++++++++++++---
 www.i2p2/pages/i2np_spec.html           | 22 ++++++++++----
 2 files changed, 50 insertions(+), 10 deletions(-)

diff --git a/www.i2p2/pages/how_networkdatabase.html b/www.i2p2/pages/how_networkdatabase.html
index 69ced10a..def0b669 100644
--- a/www.i2p2/pages/how_networkdatabase.html
+++ b/www.i2p2/pages/how_networkdatabase.html
@@ -291,7 +291,10 @@
   the hash of the router in question to determine closeness.
   A modification to this algorithm is done to increase the costs of <a href="#sybil-partial">Sybil attacks</a>.
   Instead of the SHA256 hash of the key being looked up of stored, the SHA256 hash is taken
-  of the key appended with the date: yyyyMMdd (SHA256(key + yyyyMMdd).
+  of the 32-byte binary key appended with the UTC date represented as an 8-byte ASCII string yyyyMMdd, i.e. SHA256(key + yyyyMMdd).
+  This is called the "routing key", and it changes every day at midnight UTC.
+  The daily transformation of the DHT is sometimes called "keyspace rotation",
+  although it isn't strictly a rotation.
 </p>
 
 
@@ -317,6 +320,26 @@
   without requiring any LeaseSet lookups, or requiring the communicating Destinations to have published LeaseSets at all.
 </p>
 
+<h3>Floodfill Selection</h3>
+<p>
+The DatabaseStoreMessage should be sent to the floodfill that is closest
+to the current routing key for the RouterInfo or LeaseSet being stored.
+Currently, the closest floodfill is found by a search in the local database.
+Even if that floodfill is not actually closest, it will flood it "closer" by
+sending it to multiple other floodfills.
+This provides a high degree of fault-tolerance.
+</p><p>
+In traditional Kademlia, a peer would do a "find-closest" search before inserting
+an item in the DHT to the closest target. As the verify operation will tend to
+discover closer floodfills if they are present, a router will quickly improve
+its knowledge of the DHT "neighborhood" for the RouterInfo and LeaseSets it regularly publishes.
+While I2NP does not define a "find-closest" message, if it becomes necessary,
+a router may simply do an iterative search for a key with the least significant bit flipped
+(i.e. key ^ 0x01) until no closer peers are received in the DatabaseSearchReplyMessages.
+This ensures that the true closest peer will be found even if a more-distant peer had
+the netdb item.
+</p>
+
 
 <h3>RouterInfo Storage to Floodfills</h3>
 <p>
@@ -362,11 +385,14 @@
   After a floodfill router receives a DatabaseStoreMessage containing a
   valid RouterInfo or LeaseSet which is newer than that previously stored in its
   local NetDb, it "floods" it.
-  To flood a NetDb entry, it looks up the 7 floodfill routers closest to the key
-  of the NetDb entry. (The key is the SHA256 Hash of the RouterIdentity or Destination with the date (yyyyMMdd) appended.)
+  To flood a NetDb entry, it looks up several (currently 4) floodfill routers closest to the routing key
+  of the NetDb entry. (The routing key is the SHA256 Hash of the RouterIdentity or Destination with the date (yyyyMMdd) appended.)
+  By flooding to those closest to the key, not closest to itself, the floodfill ensures that the storage
+  gets to the right place, even if the storing router did not have good knowledge of the
+  DHT "neighborhood" for the routing key.
 </p>
 <p>
-  It then directly connects to each of the 7 peers
+  The floodfill then directly connects to each of those peers
   and sends it a <a href="i2np.html">I2NP</a> DatabaseStoreMessage
   with a zero Reply Token. The message is not end-to-end garlic encrypted,
   as this is a direct connection, so there are no intervening routers
@@ -635,6 +661,10 @@ This attack becomes more difficult as the network size grows.
 </p>
 <p>
 This attack becomes more difficult as the network size grows.
+However, recent research demonstrates that the keyspace rotation is not particularly effective.
+An attacker can precompute numerous router hashes in advance,
+and only a few routers are sufficient to "eclipse" a portion
+of the keyspace within a half hour after rotation.
 </p>
 
 <p>
diff --git a/www.i2p2/pages/i2np_spec.html b/www.i2p2/pages/i2np_spec.html
index a4f9efbe..cef68b16 100644
--- a/www.i2p2/pages/i2np_spec.html
+++ b/www.i2p2/pages/i2np_spec.html
@@ -657,6 +657,9 @@ reply tags:
 
 <h4>Notes</h4>
 <ul><li>
+The key may be for a RouterInfo or LeaseSet, as they are in the same key space,
+and there is no flag to request only a particular type of data.
+</li><li>
 Encryption flag, reply key, and reply tags as of release 0.9.7.
 </li><li>
 Encrypted replies are only useful when the response is through a tunnel.
@@ -722,12 +725,11 @@ key:
 
 num:
     1 byte Integer
-    number of peer hashes that follow
+    number of peer hashes that follow, 0-255
 
-peer hash:
+peer hash ($num entries) :
           32 bytes
-          SHA256 of the RouterInfo that the other router thinks are close to the key
-          $num entries
+          SHA256 of the RouterIdentity that the other router thinks is close to the key
 
 from:
      32 bytes
@@ -736,9 +738,17 @@ from:
 </pre>
 
 <h4>Notes</h4>
-<p>
+<ul><li>
   The 'from' hash is unauthenticated and cannot be trusted.
-</p>
+</li><li>
+  The returned peer hashes are not necessarily closer to the key
+  than the router being queried.
+</li><li>
+  Typical number of hashes returned: 3
+</li>
+
+
+
 
 <h3 id="msg_DeliveryStatus">DeliveryStatus</h3>
 <h4>Description</h4>

From 6f619efe75295ffa4d5adac666219779dc3ea7c6 Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Tue, 18 Jun 2013 18:46:12 +0000
Subject: [PATCH 4/9] updates

---
 www.i2p2/pages/how_networkdatabase.html |  3 ++
 www.i2p2/pages/i2np.html                | 38 +++++++++++--------------
 www.i2p2/pages/i2np_spec.html           |  6 ++++
 3 files changed, 26 insertions(+), 21 deletions(-)

diff --git a/www.i2p2/pages/how_networkdatabase.html b/www.i2p2/pages/how_networkdatabase.html
index def0b669..0c98fe03 100644
--- a/www.i2p2/pages/how_networkdatabase.html
+++ b/www.i2p2/pages/how_networkdatabase.html
@@ -295,6 +295,9 @@
   This is called the "routing key", and it changes every day at midnight UTC.
   The daily transformation of the DHT is sometimes called "keyspace rotation",
   although it isn't strictly a rotation.
+</p><p>
+  Routing keys are never sent on-the-wire in any I2NP message, they are only used locally for
+  determination of distance.
 </p>
 
 
diff --git a/www.i2p2/pages/i2np.html b/www.i2p2/pages/i2np.html
index 480e4b83..45810594 100644
--- a/www.i2p2/pages/i2np.html
+++ b/www.i2p2/pages/i2np.html
@@ -1,7 +1,9 @@
 {% extends "_layout.html" %}
 {% block title %}I2NP{% endblock %}
 {% block content %}
-Updated August 2010, current as of router version 0.8
+
+Updated June 2013, current as of router version 0.9.6
+
 <h2>I2P Network Protocol (I2NP)</h2>
 <p>
 The I2P Network Protocol (I2NP),
@@ -17,16 +19,11 @@ I2NP (I2P Network Protocol) messages can be used for one-hop, router-to-router,
 By encrypting and wrapping messages in other messages, they can be sent in a secure way
 through multiple hops to the ultimate destination.
 Priority is only used locally at the origin, i.e. when queuing for outbound delivery.
-<p>
-Both the NTCP and UDP transports implement priority transmission,
-but in quite different manners.
-UDP has complex code with queues for each priority, however it treats
-messages with priorities 400-499, for example, the same.
-(The priority queues are 100, 200, 300, 400, 500, and 1000)
-These are global queues for all peers.
-NTCP has a trivial linear search for the highest priority within
-each buffer for a particular peer.
-This is much less effective.
+The priorities listed below may not be current and are subject to change.
+See the
+<a href="http://docs.i2p-projekt.de/javadoc/net/i2p/router/OutNetMessage.html">OutNetMessage Javadocs</a>
+for the current priority settings.
+Priority queueing implementation may vary.
 
 <h3>Message Format</h3>
 <p>
@@ -85,9 +82,8 @@ which is wrapped in a DataMessage.
 DatabaseLookupMessage
 <td align=right>2
 <td>&nbsp;
-<td align=right>100/400
-<td>400 normally; 100 if from HarvesterJob and sent directly;
-400 for a router lookup
+<td align=right>500
+<td>May vary
 <tr><td>
 DatabaseSearchReplyMessage
 <td align=right>3
@@ -99,8 +95,8 @@ three floodfill routers are returned.
 DatabaseStoreMessage
 <td align=right>1
 <td align=right>Varies
-<td align=right>100/400
-<td>Usually 100 (why?)
+<td align=right>460
+<td>Priority may vary.
 Size is 898 bytes for a typical 2-lease leaseSet.
 RouterInfo structures are compressed, and size varies; however
 there is a continuing effort to reduce the amount of data published in a RouterInfo
@@ -109,8 +105,8 @@ as we approach release 1.0.
 DataMessage
 <td align=right>20
 <td align=right>4 - 62080
-<td align=right>400
-<td>
+<td align=right>425
+<td>Priority may vary on a per-destination basis
 <tr><td>
 DeliveryStatusMessage
 <td align=right>10
@@ -128,8 +124,8 @@ but when unwrapped, given a priority of 100 by the forwarding router
 <a href="tunnel-alt-creation.html#tunnelCreate.requestRecord">TunnelBuildMessage</a>
 <td align=right>21
 <td align=right>4224
-<td align=right>300/500
-<td>Usually 500 (why?)
+<td align=right>500
+<td>
 <tr><td>
 <a href="tunnel-alt-creation.html#tunnelCreate.replyRecord">TunnelBuildReplyMessage</a>
 <td align=right>22
@@ -154,7 +150,7 @@ TunnelGatewayMessage
 VariableTunnelBuildMessage
 <td align=right>23
 <td align=right>1057 - 4225
-<td align=right>300/500
+<td align=right>500
 <td>Shorter TunnelBuildMessage as of 0.7.12
 <tr><td>
 VariableTunnelBuildReplyMessage
diff --git a/www.i2p2/pages/i2np_spec.html b/www.i2p2/pages/i2np_spec.html
index cef68b16..b77af16c 100644
--- a/www.i2p2/pages/i2np_spec.html
+++ b/www.i2p2/pages/i2np_spec.html
@@ -534,6 +534,8 @@ data:
 <h4>Notes</h4>
 <ul><li>
 For security, the reply fields are ignored if the message is received down a tunnel.
+</li><li>
+The key is the "real" hash of the RouterIdentity or Destination, NOT the routing key.
 </li></ul>
 
 
@@ -666,6 +668,8 @@ Encrypted replies are only useful when the response is through a tunnel.
 </li><li>
 The number of included tags could be greater than one if alternative DHT lookup strategies
 (for example, recursive lookups) are implemented.
+</li><li>
+The lookup key and exclude keys are the "real" hashes, NOT routing keys.
 </li></ul>
 
 
@@ -745,6 +749,8 @@ from:
   than the router being queried.
 </li><li>
   Typical number of hashes returned: 3
+</li><li>
+The lookup key, peer hashes, and from hash are "real" hashes, NOT routing keys.
 </li>
 
 

From 9938104d3e5df504c11622ae400bb685704908e7 Mon Sep 17 00:00:00 2001
From: dev <dev@robertfoss.se>
Date: Wed, 19 Jun 2013 07:59:13 +0000
Subject: [PATCH 5/9] Added the next sub-bounty.

---
 www.i2p2/pages/bounty_netdb.html | 25 ++++++++++++++++++++++---
 1 file changed, 22 insertions(+), 3 deletions(-)

diff --git a/www.i2p2/pages/bounty_netdb.html b/www.i2p2/pages/bounty_netdb.html
index e0fcb8dc..8e425a39 100644
--- a/www.i2p2/pages/bounty_netdb.html
+++ b/www.i2p2/pages/bounty_netdb.html
@@ -63,17 +63,36 @@ still maintain an unlimited search horizon.
   <dt><b>Investigate refactoring</b></dt>
   <dd>Investigate I2P NetDB refactoring strategy.</dd>
 
-  <dt><b>Investigate multirouter</b></dt>
-  <dd>Investigate the maturity of multirouter, which will simplify development tremendously.</dd>
+  <dt><b>Investigate and fix MultiRouter</b></dt>
+  <dd>Investigate the usability of MultiRouter, and fix issues found. MultiRouter will simplify further development.</dd>
 
   <dt><b>Select base implementation</b></dt>
   <dd>i2p.zzz.kademlia / i2psnarkdht is the most likely base implementation.</dd>
  </dl>
 </td>
-<td><p>None yet</p></td>
+<td><p><a href="http://trac.i2p2.de/changeset/0f0a99298bfbd4652d3dad2885ee1f0e1472c156">Trac</a></p></td>
 <td><p>162.5&euro;</p></td>
 </tr>
 
+
+<tr>
+<td><h4>Begin implementation of the most basic DHT</h4></td>
+<td>
+ <dl>
+  <dt><b>Investigate I2CP</b></dt>
+  <dd>Investigate and design/select an I2NP message.</dd>
+
+  <dt><b>Implement iterative DHT lookups</b></dt>
+  <dd>Implement support for iterative DHT lookups</dd>
+
+ </dl>
+</td>
+<td><p>None yet</p></td>
+<td><p>325&euro;</p></td>
+</tr>
+
+
+
 <tr>
 <td><h4>More to come</h4></td>
 <td>...</td>

From 7d633c6161b5c4d2ac743ec8a55da114dff16176 Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Thu, 20 Jun 2013 23:24:29 +0000
Subject: [PATCH 6/9] Correct SSU documentation of session and MAC keys (ticket
 #716)

---
 www.i2p2/pages/udp_spec.html | 46 ++++++++++++++++++++++++++++++++++--
 1 file changed, 44 insertions(+), 2 deletions(-)

diff --git a/www.i2p2/pages/udp_spec.html b/www.i2p2/pages/udp_spec.html
index 16f2ae0e..4ba6ae44 100644
--- a/www.i2p2/pages/udp_spec.html
+++ b/www.i2p2/pages/udp_spec.html
@@ -33,8 +33,9 @@ key.  The specific construct of the MAC is the first 16 bytes from:</p>
 </pre>
 where '||' means append.
 The payload is the message starting with the flag byte.
-The macKey is either the introduction key or the
-session key, as specified for each message below.
+The macKey is either the introduction key or is constructed from the
+exchanged DH key (see details below), as specified for each message below.
+Note that protocolVersion is 0, so the exclusive or is a no-op.
 <b>WARNING</b> - the HMAC-MD5-128 used here is non-standard,
 see <a href="how_cryptography.html#udp">the cryptography page</a> for details.
 
@@ -50,6 +51,47 @@ and is currently set to 0.  Peers using a different protocol version will
 not be able to communicate with this peer, though earlier versions not
 using this flag are.</p>
 
+<h3>Session Key Details</h3>
+The 32-byte session key is created as follows:
+<ol><li>
+Take the exchanged DH key, represented as a positive minimal-length BigInteger byte array (two's complement big-endian)
+</li><li>
+If the most significant bit is 1 (i.e. array[0] & 0x80 != 0),
+prepend a 0x00 byte, as in Java's BigInteger.toByteArray() representation
+</li><li>
+If the byte array is greater than or equal to 32 bytes, use the first (most significant) 32 bytes
+</li><li>
+If the byte array is less than 32 bytes, append 0x00 bytes to extend to 32 bytes
+</li></ol>
+
+<h3>MAC Key Details</h3>
+The 32-byte MAC key is created as follows:
+<ol><li>
+Take the exchanged DH key byte array, prepended with a 0x00 byte if necessary,
+from step 2 in the Session Key Details above.
+</li><li>
+If that byte array is greater than or equal to 64 bytes, the MAC key is
+bytes 33-64 from that byte array.
+</li><li>
+If that byte array is greater than 32 bytes but less than 64 bytes, the MAC key is formed from
+the bytes starting at byte 33, followed by 0x00 bytes to extend the MAC key to 32 bytes.
+<i>Broken - See note below</i>
+</li><li>
+If that byte array is equal to 32 bytes, the MAC key is all zeros.
+<i>Broken - See note below</i>
+</li><li>
+If that byte array is less than 32 bytes, the MAC key is the SHA-256 Hash of the 32-bytes
+from step 3 in the Session Key Details above.
+<i>See note below</i>
+</li></ol>
+Important note: It appears that the existing code is buggy and does not correctly handle DH key byte arrays
+between 32 and 63 bytes (steps 3 and 4 above) and the connection will fail.
+As these cases won't ever work, they are subject to change (probably using SHA-256).
+Since the nominal exchanged DH key is 256 bytes, the chances of the mininimal representation
+being less than 64 bytes is vanishingly small.
+
+
+<h3>Header Format</h3>
 <p>Within the AES encrypted payload, there is a minimal common structure
 to the various messages - a one byte flag and a four byte sending 
 timestamp (seconds since the unix epoch).  The flag byte contains 

From 756c370d274196fc47ce356b4b0e362320bd3e83 Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Mon, 24 Jun 2013 13:22:45 +0000
Subject: [PATCH 7/9] SSU padding and acks

---
 www.i2p2/pages/udp_spec.html | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/www.i2p2/pages/udp_spec.html b/www.i2p2/pages/udp_spec.html
index 4ba6ae44..07b55272 100644
--- a/www.i2p2/pages/udp_spec.html
+++ b/www.i2p2/pages/udp_spec.html
@@ -2,7 +2,7 @@
 {% block title %}SSU Protocol Specification{% endblock %}
 {% block content %}
 
-Updated May 2013 for release 0.9.6. IPv6 information is preliminary.
+Updated June 2013 for release 0.9.6. IPv6 information is preliminary.
 
 <p>
 <a href="udp.html">See the SSU page for an overview of the SSU transport</a>.
@@ -61,7 +61,8 @@ prepend a 0x00 byte, as in Java's BigInteger.toByteArray() representation
 </li><li>
 If the byte array is greater than or equal to 32 bytes, use the first (most significant) 32 bytes
 </li><li>
-If the byte array is less than 32 bytes, append 0x00 bytes to extend to 32 bytes
+If the byte array is less than 32 bytes, append 0x00 bytes to extend to 32 bytes.
+<i>Won't happen - See note below</i>
 </li></ol>
 
 <h3>MAC Key Details</h3>
@@ -157,6 +158,12 @@ provide a significant amount of protection.
 In the future, additional padding in the transport layer up to
 a set of fixed packet sizes may be appropriate to further hide the data 
 fragmentation to external adversaries.
+</p><p>
+Through release 0.9.6, messages were only padded to the next 16 byte boundary,
+and messages not a multiple of 16 bytes could possibly be invalid.
+As of release 0.9.7, messages may be padded to any length as long as the current MTU is honored.
+Any extra 1-15 padding bytes beyond the last block of 16 bytes cannot be encrypted or decrypted and will be ignored.
+However, the full length and all padding is included in the MAC calculation.
 </p>
 
 
@@ -450,7 +457,7 @@ Signed-on time appears to be unused or unverified in the current implementation.
 <h3 id="sessionDestroyed">SessionDestroyed (type 8)</h3>
 <p>
 The Session Destroyed message was implemented (reception only) in release 0.8.1,
-and is never sent. Transmission implemented as of release 0.8.9.
+and is sent as of release 0.8.9.
 </p>
 
 <table border="1">
@@ -790,6 +797,10 @@ While we use the I2NP message ID as the SSU message ID, from the SSU
 protocol view, they are random numbers.
 In fact, since the router uses a single Bloom filter for all peers,
 the message ID must be an actual random number.
+</li><li>
+Because there are no sequence numbers, there is no way to be sure an ACK was received.
+The current implementation routinely sends a large amount of duplicate ACKs.
+Duplicate ACKs should not be taken as an indication of congestion.
 </li></ul>
 
 

From 4737840b7ffc36f2731cb9b8b29e0008367872dd Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Sat, 29 Jun 2013 15:21:34 +0000
Subject: [PATCH 8/9] - Add github link on download pages - Minor correction on
 tunnel-alt-creation - Add "digit" dev agreement (awaiting pubkey)

---
 www.i2p2/pages/download.html              |  3 ++-
 www.i2p2/pages/download_cs.html           |  3 ++-
 www.i2p2/pages/download_de.html           |  3 ++-
 www.i2p2/pages/download_el.html           |  3 ++-
 www.i2p2/pages/download_es.html           |  3 ++-
 www.i2p2/pages/download_fr.html           |  3 ++-
 www.i2p2/pages/download_ru.html           |  3 ++-
 www.i2p2/pages/license-agreements.html    | 24 +++++++++++++++++++++++
 www.i2p2/pages/license-agreements_de.html | 23 ++++++++++++++++++++++
 www.i2p2/pages/tunnel-alt-creation.html   |  3 ++-
 10 files changed, 63 insertions(+), 8 deletions(-)

diff --git a/www.i2p2/pages/download.html b/www.i2p2/pages/download.html
index c83d88de..77fe404d 100644
--- a/www.i2p2/pages/download.html
+++ b/www.i2p2/pages/download.html
@@ -61,7 +61,8 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
     (SHA256
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
-    Alternately, you can fetch the source from <a href="newdevelopers#getting-the-i2p-code">monotone</a>.
+    Alternately, you can fetch the source from <a href="newdevelopers#getting-the-i2p-code">monotone</a>
+    or <a href="https://github.com/i2p/i2p.i2p">github</a>.
     <br />
     Run <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> then either
     run the GUI installer or headless install as above</li>
diff --git a/www.i2p2/pages/download_cs.html b/www.i2p2/pages/download_cs.html
index bd1f11df..b27fdaff 100644
--- a/www.i2p2/pages/download_cs.html
+++ b/www.i2p2/pages/download_cs.html
@@ -55,7 +55,8 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
     (SHA256
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
-    Alternativně lze zdrojový kód stáhnout <a href="newdevelopers#getting-the-i2p-code">z repozitáře monotone</a>.<br/>
+    Alternativně lze zdrojový kód stáhnout <a href="newdevelopers#getting-the-i2p-code">z repozitáře monotone</a>
+    <a href="https://github.com/i2p/i2p.i2p">github</a>.<br/>
     Spusťte sestavení programu příkazem <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> a potom 
     spusťte grafický instalační program nebo instalaci z příkazové řádky (viz výše).</li>
 </ul>
diff --git a/www.i2p2/pages/download_de.html b/www.i2p2/pages/download_de.html
index 27da972a..77080abf 100644
--- a/www.i2p2/pages/download_de.html
+++ b/www.i2p2/pages/download_de.html
@@ -60,7 +60,8 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
     (SHA256
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
-    Alternativ kannst Du den Quelltext aus <a href="newdevelopers_de#getting-the-i2p-code">Monotone</a> kopieren.
+    Alternativ kannst Du den Quelltext aus <a href="newdevelopers_de#getting-the-i2p-code">Monotone</a>
+     <a href="https://github.com/i2p/i2p.i2p">github</a> kopieren.
     <br/>
     F&uuml;hre folgendes aus: <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p_0.9.6 ; ant pkg)</code> 
     und starte dann den GUI Installer oder die headless Installation wie oben beschrieben</li>
diff --git a/www.i2p2/pages/download_el.html b/www.i2p2/pages/download_el.html
index 8fb62240..604f7fa9 100644
--- a/www.i2p2/pages/download_el.html
+++ b/www.i2p2/pages/download_el.html
@@ -61,7 +61,8 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
     (SHA256
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
-    Εναλλακτικά, μπορείτε να πάρετε τον πηγαίο κώδικα από το <a href="newdevelopers#getting-the-i2p-code">monotone</a>.
+    Εναλλακτικά, μπορείτε να πάρετε τον πηγαίο κώδικα από το <a href="newdevelopers#getting-the-i2p-code">monotone</a>
+    <a href="https://github.com/i2p/i2p.i2p">github</a>.
     <br />
     Εκτελέστε <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> και μετά
     είτε τρέξτε την εγκατάσταση με γραφικό περιβάλλον είτε από τη γραμμή εντολών όπως παραπάνω.
diff --git a/www.i2p2/pages/download_es.html b/www.i2p2/pages/download_es.html
index 2851cf47..2d48fdfb 100644
--- a/www.i2p2/pages/download_es.html
+++ b/www.i2p2/pages/download_es.html
@@ -60,7 +60,8 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
     (SHA256
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
-    De forma alternativa, puedes obtener las fuentes usando <a href="newdevelopers#getting-the-i2p-code">monotone</a>.
+    De forma alternativa, puedes obtener las fuentes usando <a href="newdevelopers#getting-the-i2p-code">monotone</a>
+     <a href="https://github.com/i2p/i2p.i2p">github</a>.
     <br/>
     Ejecuta <code>tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg ;</code> después puedes arrancar el instalador gráfico o bien hacer la instalación desde la línea de comandos descritas anteriormente.</li>
 </ul>
diff --git a/www.i2p2/pages/download_fr.html b/www.i2p2/pages/download_fr.html
index a0e3bbd2..e2924def 100644
--- a/www.i2p2/pages/download_fr.html
+++ b/www.i2p2/pages/download_fr.html
@@ -57,7 +57,8 @@ ou tapez <tt>java -version</tt> à l'invite de commande.
     <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2">i2psource_0.9.6.tar.bz2</a>
     (SHA256 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
-    Vous pouvez si vous préférez récupérer les sources sur  <a href="newdevelopers#getting-the-i2p-code">monotone</a>.
+    Vous pouvez si vous préférez récupérer les sources sur  <a href="newdevelopers#getting-the-i2p-code">monotone</a>
+     <a href="https://github.com/i2p/i2p.i2p">github</a>.
     <br/>
     Exécuter <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> puis, soit
     lancer l'installeur graphique, soit passer par la ligne de commande.</li>
diff --git a/www.i2p2/pages/download_ru.html b/www.i2p2/pages/download_ru.html
index 7c23f88b..0e1d1539 100644
--- a/www.i2p2/pages/download_ru.html
+++ b/www.i2p2/pages/download_ru.html
@@ -62,7 +62,8 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
     <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     
-    (Как вариант, можете скачать текущий исходный код из <a href="newdevelopers#getting-the-i2p-code">monotone-репозитория</a>.)
+    (Как вариант, можете скачать текущий исходный код из <a href="newdevelopers#getting-the-i2p-code">monotone-репозитория</a>
+     <a href="https://github.com/i2p/i2p.i2p">github</a>.)
     <br/>
     Запустите процесс сборки <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code>, затем воспользуйтесь собранным инсталлятором в графическом или консольном режиме (см. предыдущие способы установки). 
 </li>
diff --git a/www.i2p2/pages/license-agreements.html b/www.i2p2/pages/license-agreements.html
index 38c8c1a8..12cd97f2 100644
--- a/www.i2p2/pages/license-agreements.html
+++ b/www.i2p2/pages/license-agreements.html
@@ -764,5 +764,29 @@ QUamNO18hBy7N/YdF2DPoV41ntobkM+kVfmR0jLCbiNjisMg1eO8mQ1ynY4Kf2F1
 =7u31
 -----END PGP SIGNATURE-----
 
+digit:
+
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA1
+
+Applicable to the code I contribute to the I2P project,
+I hereby state that:
+
+* Unless marked otherwise, all code I commit is implicitly licensed under the component's primary license
+* If specified in the source, the code may be explicitly licensed under one of the component's alternate licenses
+* I have the right to release the code I commit under the terms I am committing it
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v2.0.20 (MingW32)
+
+iQEcBAEBAgAGBQJRzgXbAAoJEAhQLmhPD07oWTkH/0nonFM5g0gw5SlqLKTxuBal
+OMomT+4+FFaCDgXOSXnnlw38no7c234LeKpuvlr0LLxjiRdfcsnnuvqIWmeeY4cq
+m3w6xGI+wNO2c/FYwTVumJO165sPc0Rg3b8d+zdUBncactRMdxcWUJTSHPdNzW2/
+tmtChmVft6SOj+qgBQEMW0IjYm/4+vg4NEO4OAg8ncogea8dubpIFJjE2UbSr7dE
+jkBoHiRXn4EN20Id4puCwXQK4QbbGwJGlKAUPgZXMd7nLqu9MljwLDkDWBMY9nRl
+Zf9i4Wqw8wKgkWIIbZ2+V+zP83FLcX6ga+GMr8tf/bwWjSe1PN7mZAQlPB4p8Qc=
+=NxxT
+-----END PGP SIGNATURE-----
+
+
 </pre>
 {% endblock %}
diff --git a/www.i2p2/pages/license-agreements_de.html b/www.i2p2/pages/license-agreements_de.html
index 64f2b32d..4a400a2f 100644
--- a/www.i2p2/pages/license-agreements_de.html
+++ b/www.i2p2/pages/license-agreements_de.html
@@ -753,5 +753,28 @@ QUamNO18hBy7N/YdF2DPoV41ntobkM+kVfmR0jLCbiNjisMg1eO8mQ1ynY4Kf2F1
 =7u31
 -----END PGP SIGNATURE-----
 
+digit:
+
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA1
+
+Applicable to the code I contribute to the I2P project,
+I hereby state that:
+
+* Unless marked otherwise, all code I commit is implicitly licensed under the component's primary license
+* If specified in the source, the code may be explicitly licensed under one of the component's alternate licenses
+* I have the right to release the code I commit under the terms I am committing it
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v2.0.20 (MingW32)
+
+iQEcBAEBAgAGBQJRzgXbAAoJEAhQLmhPD07oWTkH/0nonFM5g0gw5SlqLKTxuBal
+OMomT+4+FFaCDgXOSXnnlw38no7c234LeKpuvlr0LLxjiRdfcsnnuvqIWmeeY4cq
+m3w6xGI+wNO2c/FYwTVumJO165sPc0Rg3b8d+zdUBncactRMdxcWUJTSHPdNzW2/
+tmtChmVft6SOj+qgBQEMW0IjYm/4+vg4NEO4OAg8ncogea8dubpIFJjE2UbSr7dE
+jkBoHiRXn4EN20Id4puCwXQK4QbbGwJGlKAUPgZXMd7nLqu9MljwLDkDWBMY9nRl
+Zf9i4Wqw8wKgkWIIbZ2+V+zP83FLcX6ga+GMr8tf/bwWjSe1PN7mZAQlPB4p8Qc=
+=NxxT
+-----END PGP SIGNATURE-----
+
 </pre>
 {% endblock %}
diff --git a/www.i2p2/pages/tunnel-alt-creation.html b/www.i2p2/pages/tunnel-alt-creation.html
index ef0064c3..1da71f75 100644
--- a/www.i2p2/pages/tunnel-alt-creation.html
+++ b/www.i2p2/pages/tunnel-alt-creation.html
@@ -84,6 +84,7 @@ message ID that the message (or reply) should use.</p>
 Bit 7 indicates that the hop will be an inbound gateway (IBGW).
 Bit 6 indicates that the hop will be an outbound endpoint (OBEP).
 If neither bit is set, the hop will be an intermediate participant.
+Both cannot be set at once.
 
 <h4>Request Record Creation</h4>
 <p>
@@ -119,7 +120,7 @@ for the hop in question.
 
 <p>When a hop receives a TunnelBuildMessage, it looks through the
 records contained within it for one starting with their own identity
-hash (trimmed to 8 bytes).  It then decrypts the ElGamal block from
+hash (trimmed to 16 bytes).  It then decrypts the ElGamal block from
 that record and retrieves the protected cleartext.  At that point,
 they make sure the tunnel request is not a duplicate by feeding the 
 AES-256 reply key into a bloom filter.

From a585aab5d2e6e82266926f8be95efba01840451c Mon Sep 17 00:00:00 2001
From: str4d <str4d@mail.i2p>
Date: Mon, 1 Jul 2013 09:31:15 +0000
Subject: [PATCH 9/9] Add git.repo.i2p link next to Github

---
 www.i2p2/pages/download.html    | 2 +-
 www.i2p2/pages/download_cs.html | 2 +-
 www.i2p2/pages/download_de.html | 2 +-
 www.i2p2/pages/download_el.html | 2 +-
 www.i2p2/pages/download_es.html | 2 +-
 www.i2p2/pages/download_fr.html | 2 +-
 www.i2p2/pages/download_ru.html | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/www.i2p2/pages/download.html b/www.i2p2/pages/download.html
index 77fe404d..bac57849 100644
--- a/www.i2p2/pages/download.html
+++ b/www.i2p2/pages/download.html
@@ -62,7 +62,7 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     Alternately, you can fetch the source from <a href="newdevelopers#getting-the-i2p-code">monotone</a>
-    or <a href="https://github.com/i2p/i2p.i2p">github</a>.
+    or via Git from <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> or <a href="https://github.com/i2p/i2p.i2p">Github</a>.
     <br />
     Run <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> then either
     run the GUI installer or headless install as above</li>
diff --git a/www.i2p2/pages/download_cs.html b/www.i2p2/pages/download_cs.html
index b27fdaff..52e16e69 100644
--- a/www.i2p2/pages/download_cs.html
+++ b/www.i2p2/pages/download_cs.html
@@ -56,7 +56,7 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     Alternativně lze zdrojový kód stáhnout <a href="newdevelopers#getting-the-i2p-code">z repozitáře monotone</a>
-    <a href="https://github.com/i2p/i2p.i2p">github</a>.<br/>
+    <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> <a href="https://github.com/i2p/i2p.i2p">Github</a>.<br/>
     Spusťte sestavení programu příkazem <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> a potom 
     spusťte grafický instalační program nebo instalaci z příkazové řádky (viz výše).</li>
 </ul>
diff --git a/www.i2p2/pages/download_de.html b/www.i2p2/pages/download_de.html
index 77080abf..40c57fb5 100644
--- a/www.i2p2/pages/download_de.html
+++ b/www.i2p2/pages/download_de.html
@@ -61,7 +61,7 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     Alternativ kannst Du den Quelltext aus <a href="newdevelopers_de#getting-the-i2p-code">Monotone</a>
-     <a href="https://github.com/i2p/i2p.i2p">github</a> kopieren.
+    <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> <a href="https://github.com/i2p/i2p.i2p">Github</a> kopieren.<br/>
     <br/>
     F&uuml;hre folgendes aus: <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p_0.9.6 ; ant pkg)</code> 
     und starte dann den GUI Installer oder die headless Installation wie oben beschrieben</li>
diff --git a/www.i2p2/pages/download_el.html b/www.i2p2/pages/download_el.html
index 604f7fa9..0fd1fb54 100644
--- a/www.i2p2/pages/download_el.html
+++ b/www.i2p2/pages/download_el.html
@@ -62,7 +62,7 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     Εναλλακτικά, μπορείτε να πάρετε τον πηγαίο κώδικα από το <a href="newdevelopers#getting-the-i2p-code">monotone</a>
-    <a href="https://github.com/i2p/i2p.i2p">github</a>.
+    <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> <a href="https://github.com/i2p/i2p.i2p">Github</a>.
     <br />
     Εκτελέστε <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> και μετά
     είτε τρέξτε την εγκατάσταση με γραφικό περιβάλλον είτε από τη γραμμή εντολών όπως παραπάνω.
diff --git a/www.i2p2/pages/download_es.html b/www.i2p2/pages/download_es.html
index 2d48fdfb..14981861 100644
--- a/www.i2p2/pages/download_es.html
+++ b/www.i2p2/pages/download_es.html
@@ -61,7 +61,7 @@ bf7d11f0a36acff9cd51ad3ef89d66975b0b0de344ca72719a5576159ec965d1
 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     De forma alternativa, puedes obtener las fuentes usando <a href="newdevelopers#getting-the-i2p-code">monotone</a>
-     <a href="https://github.com/i2p/i2p.i2p">github</a>.
+    <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> <a href="https://github.com/i2p/i2p.i2p">Github</a>.
     <br/>
     Ejecuta <code>tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg ;</code> después puedes arrancar el instalador gráfico o bien hacer la instalación desde la línea de comandos descritas anteriormente.</li>
 </ul>
diff --git a/www.i2p2/pages/download_fr.html b/www.i2p2/pages/download_fr.html
index e2924def..812104c4 100644
--- a/www.i2p2/pages/download_fr.html
+++ b/www.i2p2/pages/download_fr.html
@@ -58,7 +58,7 @@ ou tapez <tt>java -version</tt> à l'invite de commande.
     (SHA256 fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
      <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     Vous pouvez si vous préférez récupérer les sources sur  <a href="newdevelopers#getting-the-i2p-code">monotone</a>
-     <a href="https://github.com/i2p/i2p.i2p">github</a>.
+    <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> <a href="https://github.com/i2p/i2p.i2p">Github</a>.
     <br/>
     Exécuter <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code> puis, soit
     lancer l'installeur graphique, soit passer par la ligne de commande.</li>
diff --git a/www.i2p2/pages/download_ru.html b/www.i2p2/pages/download_ru.html
index 0e1d1539..15dcba2e 100644
--- a/www.i2p2/pages/download_ru.html
+++ b/www.i2p2/pages/download_ru.html
@@ -63,7 +63,7 @@ fd2aa881d68b3164c43de9d91dcb04a93a36228d416582ada14ae40031436d18
     <a href="http://mirror.i2p2.de/i2psource_0.9.6.tar.bz2.sig">sig</a>)<br />
     
     (Как вариант, можете скачать текущий исходный код из <a href="newdevelopers#getting-the-i2p-code">monotone-репозитория</a>
-     <a href="https://github.com/i2p/i2p.i2p">github</a>.)
+     <a href="http://git.repo.i2p/w/i2p.i2p.git">git.repo.i2p</a> <a href="https://github.com/i2p/i2p.i2p">Github</a>.)
     <br/>
     Запустите процесс сборки <code>(tar xjvf i2psource_0.9.6.tar.bz2 ; cd i2p-0.9.6 ; ant pkg)</code>, затем воспользуйтесь собранным инсталлятором в графическом или консольном режиме (см. предыдущие способы установки). 
 </li>