[tor-bugs] #29258 [Circumvention/Snowflake]: Provide an IPv6 address for the Snowflake broker
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Oct 17 19:56:26 UTC 2019
#29258: Provide an IPv6 address for the Snowflake broker
--------------------------------------------+------------------------------
Reporter: ahf | Owner: dcf
Type: task | Status: needs_review
Priority: Medium | Milestone:
Component: Circumvention/Snowflake | Version:
Severity: Normal | Resolution:
Keywords: anti-censorship-roadmap-august | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
| Sponsor28-must
--------------------------------------------+------------------------------
Comment (by dcf):
Replying to [comment:12 dcf]:
> Today we decided to start by pointing the snowflake-
broker.torproject.net DNS, which is currently unused, at the new broker,
so we can test it ourselves.
>
> #32128 is for that.
snowflake-broker.torproject.net is now set up for us. Using the following
proxy-go command and torrc I was able (using an IPv6 connection to the
broker) to connect to myself and bootstrap to 100%.
{{{
./proxy-go -broker https://snowflake-broker.torproject.net
}}}
{{{
UseBridges 1
DataDirectory datadir
ClientTransportPlugin snowflake exec ./client \
-url https://snowflake-broker.torproject.net/ \
-ice stun:stun.l.google.com:19302 \
-log snowflake.log \
-max 3
Bridge snowflake 0.0.3.0:1
}}}
I did have to first upgrade the version of
golang.org/x/crypto/acme/autocert compiled into the broker, for a protocol
change:
{{{
go get -u golang.org/x/crypto/acme/autocert
}}}
Before doing this, I was getting these errors in the broker logs, linking
to https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430.
{{{
2019/10/17 19:37:32 http: TLS handshake error from [scrubbed]: 403
urn:acme:error:unauthorized: Account creation on ACMEv1 is disabled.
Please upgrade your ACME client to a version that supports ACMEv2 / RFC
8555. See https://community.letsencrypt.org/t/end-of-life-plan-for-
acmev1/88430 for details.
2019/10/17 19:37:37 http: TLS handshake error from [scrubbed]:
acme/autocert: missing certificate
2019/10/17 19:37:41 http: TLS handshake error from [scrubbed]:
acme/autocert: missing certificate
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29258#comment:13>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list