[tor-bugs] #9499 [BridgeDB]: BridgeDB should hand out identity fingerprints

Tor Bug Tracker & Wiki blackhole at torproject.org
Tue Nov 5 00:08:17 UTC 2013 

#9499: BridgeDB should hand out identity fingerprints
--------------------------+------------------------------------------------
     Reporter:            |      Owner:
  mikeperry               |     Status:  needs_information
         Type:  defect    |  Milestone:
     Priority:  normal    |    Version:
    Component:  BridgeDB  |   Keywords:  path-bias,bridgedb-dist,pt,vidalia
   Resolution:            |  Parent ID:
Actual Points:            |
       Points:            |
--------------------------+------------------------------------------------
Changes (by isis):

 * cc: mikeperry, phw, asn (added)
 * status:  new => needs_information
 * keywords:  path-bias => path-bias,bridgedb-dist,pt,vidalia


Comment:

 I can enable this easily. There are actually several problems, as far as I
 can tell:

  1. Enabling the handing out of bridge fingerprints breaks Vidalia. See
 #5851.
  2. Using bridge fingerprints with PT bridges which use the new
 ``argslist`` feature to pass shared secrets is likely messing up both tor
 and Vidalia. This needs more testing.

 For (2) above, I tried the following lines for the scramblesuit bridge
 that I set up for testing purposes, pasting them directly into my torrc,
 using ARM as a controller (both on the server and client to watch the
 connection attempts):
 {{{
 bridge scramblesuit 69.164.208.188:6666
 keyid=AC19189ADFAEA697CB7C02AC141CC60997922B6F,password=93edd2b39b06115b38778e5447be6171d34cf63cc0e083db91fca9ce7fe920fa
 bridge scramblesuit 69.164.208.188:6666
 AC19189ADFAEA697CB7C02AC141CC60997922B6F
 password=93edd2b39b06115b38778e5447be6171d34cf63cc0e083db91fca9ce7fe920fa
 }}}

 which spewed errors in various places, including:

  1. scramblesuit thinking that the 'keyid=' was the scramblesuit password,
 and telling me that I had an invalid password.
  2. scramblesuit getting mad at me and saying that there were ``'non
 base-64 characters in the password'``.
  3. tor saying that ``'the fingerprint for bridge XXXXXX is the wrong
 size'``.

 The last of which should only be a problem for PT bridges whose methods
 need to use the ``argslist``. I do not know yet if the error is in
 little-t tor, or elsewhere.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9499#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list