[tor-bugs] #9729 [Tor]: Make bridges publish additional ORPort addresses in their descriptor

Tor Bug Tracker & Wiki blackhole at torproject.org
Tue Oct 22 20:17:45 UTC 2013 

#9729: Make bridges publish additional ORPort addresses in their descriptor
----------------------------+----------------------------------------------
     Reporter:  sqrt2       |      Owner:
         Type:              |     Status:  new
  enhancement               |  Milestone:
     Priority:  normal      |    Version:  Tor: 0.2.4.17-rc
    Component:  Tor         |   Keywords:  ORPort bridge multiple addresses
   Resolution:              |  Parent ID:
Actual Points:              |
       Points:              |
----------------------------+----------------------------------------------

Comment (by isis):

 Replying to [comment:1 sqrt2]:
 > sysrqb has confirmed that there is only a descriptor for <n1> known to
 BridgeDB, and there are no additional "a" lines in the descriptor.
 >

 There is only supposed to be one `"a"` line in a microdescriptor.

 > The other addresses don't appear in the log even at debug log level.

 Out of curiousity, the extra `<n2>`, `<n3`, etc. addresses you're adding:
 are they IPv4 addresses?

 Because there was this strange thing that I just noticed yesterday where
 the `"or-address"` lines in the `@type-bridge-server-descriptors` are
 ''only'' IPv6 addresses, never IPv4. The same thing goes for the `"a"`
 lines; they are ''always'' IPv6 addresses for bridge descriptors.

 {{{
 bridgedb at ponticum:/srv/bridges.torproject.org$ cat from-authority
 /networkstatus-bridges | grep '^a ' | sort | uniq | wc -l
 115
 bridgedb at ponticum:/srv/bridges.torproject.org$ cat from-authority/bridge-
 descriptors | grep 'or-address' | sort | uniq | wc -l
 122
 }}}

 The extra ones in those 122 addresses could just be newer bridges, because
 two of my test bridges are among them. Also doing

 {{{
 bridgedb at ponticum:~$ cat /srv/bridges.torproject.org/from-authority
 /networkstatus-bridges | grep -Pzo 'a .*\na .*'
 }}}

 comes up with two descriptors which have two `"a"` lines, but on closer
 inspection my grep was matching an `"a"` on the end of the nickname string
 for two different bridges, not the beginning of the line.

 So there are no `@type bridge-networkstatus` nor `@type bridge-server-
 descriptor` descriptors with multiple `"a"` or `"or-address"` lines. When
 either of these lines do occur, they are always IPv6 addresses.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9729#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list