March 2013 - tor-commits - lists.torproject.org

[flashproxy/master] Use put_reg_base64() for url registrations.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit d525dc6c9b35da29756de78f98ec49ac3ea24b1e Author: Alex <alex(a)alex-macair.(none)> Date: Sat Mar 9 14:37:53 2013 -0500 Use put_reg_base64() for url registrations. Use the put_reg_base64 function from the fac module to register clients, instead connecting to the daemon directly using sockets. --- facilitator/facilitator.cgi | 15 ++++----------- 1 files changed, 4 insertions(+), 11 deletions(-) diff --git a/facilitator/facilitator.cgi b/facilitator/facilitator.cgi index 0324fe5..1dd125a 100755 --- a/facilitator/facilitator.cgi +++ b/facilitator/facilitator.cgi @@ -21,18 +21,11 @@ def exit_error(status): output_status(status) sys.exit() -# Send a client registration to the helper daemon, -# which handles decryption and registration. +# Send a base64-encoded client address to the registration daemon. def url_reg(reg): - sock = socket.create_connection(FACILITATOR_REG_URL_ADDR) - sock.sendall(reg) - sock.shutdown(socket.SHUT_WR) - response = sock.recv(4096) - sock.close() - if response == "\x00": - return True - else: - return False + # Translate from url-safe base64 alphabet to the standard alphabet. + reg = reg.replace('-', '+').replace('_', '/') + return fac.put_reg_base64(reg) method = os.environ.get("REQUEST_METHOD") remote_addr = (os.environ.get("REMOTE_ADDR"), None)

1 0

[flashproxy/master] Catch errors in url_reg.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit 9094ffce04586a13cef8fdafe7f4005b17285160 Author: David Fifield <david(a)bamsoftware.com> Date: Wed Mar 6 21:42:09 2013 -0800 Catch errors in url_reg. Like if facilitator-reg-url is not running. --- facilitator/facilitator.cgi | 8 ++++++-- 1 files changed, 6 insertions(+), 2 deletions(-) diff --git a/facilitator/facilitator.cgi b/facilitator/facilitator.cgi index 003cf86..0324fe5 100755 --- a/facilitator/facilitator.cgi +++ b/facilitator/facilitator.cgi @@ -47,9 +47,13 @@ def do_get(): path_parts = [x for x in path_info.split("/") if x] if len(path_parts) == 2 and path_parts[0] == "reg": # This is a URL-based registration. - if not url_reg(path_parts[1]): + try: + if url_reg(path_parts[1]): + output_status(204) + else: + exit_error(400) + except: exit_error(500) - output_status(204) elif len(path_parts) == 0: try: reg = fac.get_reg(FACILITATOR_ADDR, remote_addr) or ""

1 0

[flashproxy/master] Use same format as flashproxy-reg-email for registrations.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit d78a90ca86d9791ca64ae0e533c6fc9131498f3a Author: Alex <alex(a)alex-macair.(none)> Date: Sat Mar 9 14:44:36 2013 -0500 Use same format as flashproxy-reg-email for registrations. Prefix client addresses with "client=". This matches what flashproxy-reg-email does and what is expected by flashproxy- reg-daemon. --- flashproxy-reg-url | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/flashproxy-reg-url b/flashproxy-reg-url index 20156cd..ed976f5 100755 --- a/flashproxy-reg-url +++ b/flashproxy-reg-url @@ -107,7 +107,7 @@ if len(args) != 1: sys.exit(1) addr = parse_addr_spec(args[0], defport=DEFAULT_REMOTE_PORT) -spec = format_addr(addr) +spec = u"client=" + format_addr(addr) spec = spec.encode('UTF-8') rsa = RSA.load_pub_key_bio(BIO.MemoryBuffer(FACILITATOR_PUBKEY_PEM))

1 0

[flashproxy/master] Remove facilitator-reg-url, replaced by facilitator-reg-daemon.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit 2cec8e015c7be24a7c5919ab4ddc9b40a7d8745a Author: David Fifield <david(a)bamsoftware.com> Date: Thu Mar 7 01:25:39 2013 -0800 Remove facilitator-reg-url, replaced by facilitator-reg-daemon. --- facilitator/facilitator-reg-url | 157 -------------------------------- facilitator/init.d/facilitator-reg-url | 118 ------------------------ 2 files changed, 0 insertions(+), 275 deletions(-) diff --git a/facilitator/facilitator-reg-url b/facilitator/facilitator-reg-url deleted file mode 100755 index 591c0f1..0000000 --- a/facilitator/facilitator-reg-url +++ /dev/null @@ -1,157 +0,0 @@ -#!/usr/bin/env python - -import sys -import base64 -import getopt -import traceback -import socket -import time -import os - -from M2Crypto import RSA - -import fac - -DEFAULT_FACILITATOR_ADDR = ("127.0.0.1", 9002) -DEFAULT_RSA_KEY_FILE = "/etc/flashproxy/reg-url.key" -DEFAULT_PORT = 9003 -DEFAULT_LOG_FILE = "/var/log/facilitator-reg-url.log" - -LOG_DATE_FORMAT = "%Y-%m-%d %H:%M:%S" - -# M2Crypto RSA object -rsa = None - -class options(object): - log_filename = DEFAULT_LOG_FILE - log_file = sys.stdout - port = DEFAULT_PORT - debug = False - daemonize = True - key_file = DEFAULT_RSA_KEY_FILE - facilitator = DEFAULT_FACILITATOR_ADDR - safe_logging = True - pid_filename = None - -def usage(): - print """ -Usage: %(progname)s - -Helper daemon for registration by indirect URL. Receives -client addresses from facilitator.cgi, decrypts them and -registers them with the facilitator. - - -h, --help print this help message and exit. - -d, --debug don't daemonize, log to stdout. - -k, --key=KEYFILE read the RSA private key from KEYFILE. - -f, --facilitator=ADDR register with facilitator listening at ADDR. - -p, --port=PORT listen for registrations on this port (default %(port)s). - -l, --log FILE write log to FILE (default "%(log)s"). - --pidfile FILE write pid to file after daemonizing. - --unsafe-logging don't scrub IP addresses from logs. -""" % { - "progname": sys.argv[0], - "port": DEFAULT_PORT, - "log": DEFAULT_LOG_FILE, -} - -def safe_str(s): - """Return s if options.safe_logging is true, and "[scrubbed]" otherwise.""" - if options.safe_logging: - return "[scrubbed]" - else: - return s - -def log(msg): - print >> options.log_file, (u"%s %s" % (time.strftime(LOG_DATE_FORMAT), msg)).encode("UTF-8") - options.log_file.flush() - -def register(reg): - try: - ciphertext = base64.urlsafe_b64decode(reg) - client_spec = str(rsa.private_decrypt(ciphertext, RSA.pkcs1_oaep_padding).decode('UTF-8')) - except: - log(u"Error occurred while decoding and decrypting registration:") - traceback.print_exc(file=options.log_file) - return False - try: - client_addr = fac.parse_addr_spec(client_spec) - except ValueError: - log(u"Registration of %s failed because of parsing error:" % safe_str(client_spec)) - traceback.print_exc(file=options.log_file) - return False - if not fac.put_reg(options.facilitator, client_addr): - log(u"Regstration of %s failed at the facilitator." % safe_str(client_spec)) - return False - log(u"Registered %s" % safe_str(client_spec)) - return True - -def loop(): - sock = socket.socket() - sock.bind(('', options.port)) - sock.listen(5) - - while True: - client, _ = sock.accept() - reg, buf = "", "" - while True: - buf = client.recv(4096) - if buf == "": - break - reg += buf - if register(reg): - client.send("\x00") - else: - client.send("\x01") - client.shutdown(socket.SHUT_RDWR) - client.close() - -def main(): - opts, args = getopt.gnu_getopt(sys.argv[1:], "hdl:p:k:f:", ["help", "debug", "log=", "port=", "key=", "facilitator=", "pidfile=", "unsafe-logging"]) - for o, a in opts: - if o == "-h" or o == "--help": - usage() - sys.exit(0) - if o == "-d" or o == "--debug": - options.daemonize = False - options.log_filename = False - if o == "-l" or o == "--log": - options.log_filename = a - if o == "-p" or o == "--port": - options.port = int(a) - if o == "-k" or o == "--key": - options.key_file = a - if o == "-f" or o == "--facilitator": - options.facilitator = fac.parse_addr_spec(a, resolve=True) - if o == "--pidfile": - options.pid_filename = a - if o == "--unsafe-logging": - options.safe_logging = False - - if options.daemonize: - log(u"daemonizing") - pid = os.fork() - if pid != 0: - if options.pid_filename: - f = open(options.pid_filename, "w") - print >> f, pid - f.close() - sys.exit(0) - - if options.log_filename: - options.log_file = open(options.log_filename, "a") - log(u"Starting on port %s" % options.port) - - # Load RSA key. - try: - global rsa - rsa = RSA.load_key(options.key_file) - except: - log(u"Failed to load RSA private key:") - traceback.print_exc(file=options.log_file) - sys.exit(1) - - loop() - -if __name__ == "__main__": - main() diff --git a/facilitator/init.d/facilitator-reg-url b/facilitator/init.d/facilitator-reg-url deleted file mode 100755 index c6c129a..0000000 --- a/facilitator/init.d/facilitator-reg-url +++ /dev/null @@ -1,118 +0,0 @@ -#! /bin/sh -### BEGIN INIT INFO -# Provides: facilitator-reg-url -# Required-Start: $remote_fs $syslog -# Required-Stop: $remote_fs $syslog -# Default-Start: 2 3 4 5 -# Default-Stop: 0 1 6 -# Short-Description: Flash proxy URL registration helper. -# Description: Debian init script for the flash proxy URL registration daemon. -### END INIT INFO -# -# Author: Alexandre Allaire <alexandre.allaire(a)mail.mcgill.ca> -# - -# Based on /etc/init.d/skeleton from Debian 6. - -PATH=/sbin:/usr/sbin:/bin:/usr/bin -DESC="Flash proxy URL registration daemon." -NAME=facilitator-reg-url -PIDFILE=/var/run/$NAME.pid -LOGFILE=/var/log/$NAME.log -CONFDIR=/etc/flashproxy -DAEMON=/usr/local/bin/$NAME -DAEMON_ARGS="--key $CONFDIR/reg-url.key --log $LOGFILE --pidfile $PIDFILE" -SCRIPTNAME=/etc/init.d/$NAME - -# Exit if the package is not installed -[ -x "$DAEMON" ] || exit 0 - -. /lib/init/vars.sh -. /lib/lsb/init-functions - -# -# Function that starts the daemon/service -# -do_start() -{ - # Return - # 0 if daemon has been started - # 1 if daemon was already running - # 2 if daemon could not be started - start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON --test > /dev/null \ - || return 1 - start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON -- \ - $DAEMON_ARGS \ - || return 2 -} - -# -# Function that stops the daemon/service -# -do_stop() -{ - # Return - # 0 if daemon has been stopped - # 1 if daemon was already stopped - # 2 if daemon could not be stopped - # other if a failure occurred - start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PIDFILE - RETVAL="$?" - [ "$RETVAL" = 2 ] && return 2 - # Wait for children to finish too if this is a daemon that forks - # and if the daemon is only ever run from this initscript. - # If the above conditions are not satisfied then add some other code - # that waits for the process to drop all resources that could be - # needed by services started subsequently. A last resort is to - # sleep for some time. - start-stop-daemon --stop --quiet --oknodo --retry=0/30/KILL/5 --exec $DAEMON - [ "$?" = 2 ] && return 2 - rm -f $PIDFILE - return "$RETVAL" -} - -case "$1" in - start) - [ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC" "$NAME" - do_start - case "$?" in - 0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;; - 2) [ "$VERBOSE" != no ] && log_end_msg 1 ;; - esac - ;; - stop) - [ "$VERBOSE" != no ] && log_daemon_msg "Stopping $DESC" "$NAME" - do_stop - case "$?" in - 0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;; - 2) [ "$VERBOSE" != no ] && log_end_msg 1 ;; - esac - ;; - status) - status_of_proc "$DAEMON" "$NAME" && exit 0 || exit $? - ;; - restart|force-reload) - log_daemon_msg "Restarting $DESC" "$NAME" - do_stop - case "$?" in - 0|1) - do_start - case "$?" in - 0) log_end_msg 0 ;; - 1) log_end_msg 1 ;; # Old process is still running - *) log_end_msg 1 ;; # Failed to start - esac - ;; - *) - # Failed to stop - log_end_msg 1 - ;; - esac - ;; - *) - echo "Usage: $SCRIPTNAME {start|stop|status|restart|force-reload}" >&2 - exit 3 - ;; -esac - -:

1 0

[flashproxy/master] Merge branch 'url_reg'
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit 0fa4ac6a437864b9357512b49dd79d697e18626d Merge: cfc01b6 f230c48 Author: David Fifield <david(a)bamsoftware.com> Date: Wed Mar 13 01:37:17 2013 -0700 Merge branch 'url_reg' doc/facilitator-howto.txt | 10 +++- facilitator/facilitator.cgi | 42 ++++++++++++---- flashproxy-reg-url | 117 +++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 156 insertions(+), 13 deletions(-)

1 0

[flashproxy/master] Change description of URL rendezvous method.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit 812e8e41a2089dba6764592f2ecc86d878c9cca5 Author: David Fifield <david(a)bamsoftware.com> Date: Wed Mar 6 21:48:50 2013 -0800 Change description of URL rendezvous method. I don't want to mention any actual URL retrieval services here. --- doc/facilitator-howto.txt | 8 +++----- 1 files changed, 3 insertions(+), 5 deletions(-) diff --git a/doc/facilitator-howto.txt b/doc/facilitator-howto.txt index bbf5a7a..080b309 100644 --- a/doc/facilitator-howto.txt +++ b/doc/facilitator-howto.txt @@ -22,11 +22,9 @@ message to a Gmail address. The poller constantly checks for new messages, decrypts and deletes them, and forwards the registrations to the facilitator. -The URL method uses the facilitator-reg-url daemon and the -flashproxy-reg-url helper program. flashproxy-reg-url prints -out URLs that can be used to register a client with a facilitator. -These URLs can then be pasted into a unblocked third-party URL retreival -serice, like the W3C Markup Validation Service. +The URL rendezvous uses the helper program flashproxy-reg-email. The +helper program doesn't actually make a registration; rather, it prints +out a URL which, when retrieved, makes the registration. fac.py is a Python module containing code common to the various facilitator programs.

1 0

[flashproxy/master] Merge branch 'master' into url_reg
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit 605dc9a6f264370ee65ddbfd30917de7c0b5c8dd Merge: 26588bc 1c118c7 Author: David Fifield <david(a)bamsoftware.com> Date: Thu Mar 7 01:24:53 2013 -0800 Merge branch 'master' into url_reg Conflicts: doc/facilitator-howto.txt facilitator/Makefile .gitattributes | 1 + .gitignore | 1 + ChangeLog | 14 + Makefile | 2 +- README | 30 +- doc/bundle-gnulinux.txt | 65 ++-- doc/bundle-macosx.txt | 53 ++-- doc/bundle-windows.txt | 56 ++-- doc/facilitator-howto.txt | 66 ++-- doc/websocket-transport.txt | 4 +- doc/windows-deployment-howto.txt | 14 +- experiments/client-extract.py | 50 +++ experiments/client-graph.py | 96 +++++ experiments/client-graph.r | 5 + experiments/proxy-extract.py | 82 ++++ experiments/proxy-graph.r | 5 + facilitator/Makefile | 4 +- facilitator/fac.py | 54 +++- facilitator/facilitator | 34 +- facilitator/facilitator-email-poller | 55 +-- facilitator/facilitator-reg | 59 +++ facilitator/facilitator-reg-daemon | 207 ++++++++++ facilitator/facilitator-test | 9 + facilitator/init.d/facilitator | 5 +- facilitator/init.d/facilitator-email-poller | 7 +- facilitator/init.d/facilitator-reg-daemon | 118 ++++++ flashproxy-client | 30 +- flashproxy-reg-email | 2 +- flashproxy-reg-http | 2 +- init.d/websockify | 62 --- patches/websockify-binary-default.patch | 40 -- proxy/flashproxy.js | 61 +++- websocket-transport/Makefile | 29 ++ websocket-transport/pt.go | 591 +++++++++++++++++++++++++++ websocket-transport/socks.go | 107 +++++ websocket-transport/websocket-server.go | 265 ++++++++++++ websocket-transport/websocket.go | 432 +++++++++++++++++++ 37 files changed, 2369 insertions(+), 348 deletions(-) diff --cc doc/facilitator-howto.txt index 243fb45,4952cea..7c87338 --- a/doc/facilitator-howto.txt +++ b/doc/facilitator-howto.txt @@@ -19,13 -19,16 +19,20 @@@ facilitator The email rendezvous uses the helper program facilitator-email-poller. Clients use the flashproxy-reg-email program to send an encrypted message to a Gmail address. The poller constantly checks for new - messages, decrypts and deletes them, and forwards the registrations to - the facilitator. + messages and forwards them to facilitator-reg. + + facilitator-reg is a simple program that forwards its standard input to + a locally running facilitator-reg-daemon process. + + facilitator-reg-daemon accepts connections containing encrypted client + registrations and forwards them to the facilitator. It exists as a + process of its own so that only one program requires access to the + facilitator's private key. +The URL rendezvous uses the helper program flashproxy-reg-email. The +helper program doesn't actually make a registration; rather, it prints +out a URL which, when retrieved, makes the registration. + fac.py is a Python module containing code common to the various facilitator programs.

1 0

[flashproxy/master] Whitespace.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit 26588bcd9f40308104c088d2fea92b767ab11640 Author: David Fifield <david(a)bamsoftware.com> Date: Wed Mar 6 21:50:24 2013 -0800 Whitespace. --- doc/facilitator-howto.txt | 5 ++--- facilitator/Makefile | 1 + 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/doc/facilitator-howto.txt b/doc/facilitator-howto.txt index 080b309..243fb45 100644 --- a/doc/facilitator-howto.txt +++ b/doc/facilitator-howto.txt @@ -111,8 +111,8 @@ System V init files to /etc/init.d/. # /etc/init.d/facilitator start # update-rc.d facilitator-email-poller defaults # /etc/init.d/facilitator-email-poller start - # update-rc.d facilitator-reg-url defaults - # /etc/init.d/facilitator-reg-url start + # update-rc.d facilitator-reg-url defaults + # /etc/init.d/facilitator-reg-url start == HTTP server setup @@ -202,7 +202,6 @@ by URL. Like facilitator-email-poller, it requires an RSA keypair. # chmod 600 /etc/flashproxy/reg-url.key # openssl rsa -pubout < /etc/flashproxy/reg-url.key > reg-url.pub - You will have to edit flashproxy-reg-url and copy the contents of reg-url.pub into the appropriate place. diff --git a/facilitator/Makefile b/facilitator/Makefile index 5a67bb5..7e4f634 100644 --- a/facilitator/Makefile +++ b/facilitator/Makefile @@ -8,6 +8,7 @@ install: mkdir -p $(BINDIR) cp -f facilitator facilitator-email-poller facilitator-reg-url facilitator.cgi fac.py $(BINDIR) cp -f init.d/facilitator init.d/facilitator-email-poller init.d/facilitator-reg-url /etc/init.d/ + clean: rm -f *.pyc

1 0

[flashproxy/master] Update flashproxy-reg-url public key.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit f230c48c0874d016779a8bac07237c7ac9b45be7 Author: Alexandre Allaire <alexandre.allaire(a)mail.mcgill.ca> Date: Sat Mar 9 14:59:58 2013 -0500 Update flashproxy-reg-url public key. Use the same key as flashproxy-reg-email. --- flashproxy-reg-url | 16 ++++++++-------- 1 files changed, 8 insertions(+), 8 deletions(-) diff --git a/flashproxy-reg-url b/flashproxy-reg-url index ed976f5..b29d8d1 100755 --- a/flashproxy-reg-url +++ b/flashproxy-reg-url @@ -32,14 +32,14 @@ PORT is %(port)d. FACILITATOR_PUBKEY_PEM = """\ -----BEGIN PUBLIC KEY----- -MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzntbuj1olKgr1rTHiZqm -a/D7xauVqkpdkEF24eONpYfe1ziatBPft5X9D9flHnsa6mZlE671MT6CmjPo5Be/ -urk5gEiXvLiYlrWLAdYd/VzUow5JYLc24rLGHZxKrbXRNf2rdkH7fBlyOekmLj2G -k4Bi/t3OQvXP+7D+4ZVVrYemSWxSCSonjMSQg62TrQalyaTAjZNl9SLdALchR8Kk -rJS9VgCCjY5vG29WhWattEtlH5lKdkPcobhR/12MYh12AsdgDh7r2Zv9pSkDPuRb -mSvIn0b5R700sroS4BwwMpJOJFBnsFzE+Zz2MxGWwAf+9tXQW2Xfmarea0BaKOx/ -awIDAQAB ------END PUBLIC KEY-----\ +MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44Mt8c599/4N2fgu6ppN +oatPW1GOgZxxObljFtEy0OWM1eHB35OOn+Kn9MxNHTRxVWwCEi0HYxWNVs2qrXxV +84LmWBz6A65d2qBlgltgLXusiXLrpwxVmJeO+GfmbF8ur0U9JSYxA20cGW/kujNg +XYDGQxO1Gvxq2lHK2LQmBpkfKEE1DMFASmIvlHDQgDj3XBb5lYeOsHZmg16UrGAq +1UH238hgJITPGLXBtwLtJkYbrATJvrEcmvI7QSm57SgYGpaB5ZdCbJL5bag5Pgt6 +M5SDDYYY4xxEPzokjFJfCQv+kcyAnzERNMQ9kR41ePTXG62bpngK5iWGeJ5XdkxG +gwIDAQAB +-----END PUBLIC KEY----- """ def parse_addr_spec(spec, defhost = None, defport = None):

1 0

[flashproxy/master] Use similar variable names as in flashproxy-reg-email.
by dcf＠torproject.org 13 Mar '13

13 Mar '13

commit e51cad74f49e54c82cd327732c09c7b9384e6ac2 Author: David Fifield <david(a)bamsoftware.com> Date: Wed Mar 13 01:40:26 2013 -0700 Use similar variable names as in flashproxy-reg-email. --- flashproxy-reg-url | 10 ++++------ 1 files changed, 4 insertions(+), 6 deletions(-) diff --git a/flashproxy-reg-url b/flashproxy-reg-url index b29d8d1..1070889 100755 --- a/flashproxy-reg-url +++ b/flashproxy-reg-url @@ -106,12 +106,10 @@ if len(args) != 1: usage(f=sys.stderr) sys.exit(1) -addr = parse_addr_spec(args[0], defport=DEFAULT_REMOTE_PORT) -spec = u"client=" + format_addr(addr) -spec = spec.encode('UTF-8') - +remote_addr = parse_addr_spec(args[0], defport=DEFAULT_REMOTE_PORT) +reg_plain = (u"client=%s" % format_addr(remote_addr)).encode("utf-8") rsa = RSA.load_pub_key_bio(BIO.MemoryBuffer(FACILITATOR_PUBKEY_PEM)) -ciphertext = rsa.public_encrypt(spec, RSA.pkcs1_oaep_padding) -reg = base64.urlsafe_b64encode(ciphertext) +reg_crypt = rsa.public_encrypt(reg_plain, RSA.pkcs1_oaep_padding) +reg = base64.urlsafe_b64encode(reg_crypt) print "/".join([options.facilitator_url.strip("/"), "reg", reg])

1 0