[tor-bugs] #5608 [Metrics Data Processor]: Order of sanitizing bridge descriptor tarballs matters even though it shouldn't
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Mon May 21 17:36:08 UTC 2012
#5608: Order of sanitizing bridge descriptor tarballs matters even though it
shouldn't
------------------------------------+---------------------------------------
Reporter: karsten | Owner: karsten
Type: defect | Status: new
Priority: normal | Milestone:
Component: Metrics Data Processor | Version:
Keywords: | Parent:
Points: | Actualpoints:
------------------------------------+---------------------------------------
Comment(by karsten):
Solved, I think.
We don't have to calculate descriptor identifiers based on descriptor
contents, but we can simply use the SHA1 of the non-scrubbed descriptor
identifier as identifier in the scrubbed descriptors.
[https://lists.torproject.org/pipermail/tor-dev/2012-May/003557.html This
tor-dev posting] contains an example.
I briefly thought about security implications of writing the SHA1 of a
descriptor digest into a modified version of that descriptor. But we're
modifying enough of that descriptor to prevent people from guessing what
the original descriptor was. For example, we always replace the bridge
fingerprint with its SHA1.
The patch is [https://gitweb.torproject.org/karsten/metrics-
db.git/commitdiff/0d521ad here]. As one can see, this change reduces
complexity of the bridge descriptor sanitizer a lot!
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5608#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list