merge 1442_snowflake branch and fix conflicts

2025-05-03 15:05:11 -04:00 · 2021-10-19 09:49:46 +11:00 · 2021-10-19 09:49:46 +11:00 · 5f93864eb6
commit 5f93864eb6
parent 8a19d8088e 494bdc0c14
24 changed files with 1842 additions and 1140 deletions
--- a/cli/onionshare_cli/onion.py
+++ b/cli/onionshare_cli/onion.py
@ -153,6 +153,7 @@ class Onion(object):
            self.tor_geo_ip_file_path,
            self.tor_geo_ipv6_file_path,
            self.obfs4proxy_file_path,
+            self.snowflake_file_path,
            self.meek_client_file_path,
        ) = get_tor_paths()

@ -179,10 +180,10 @@ class Onion(object):
        key_bytes = bytes(key)
        key_b32 = base64.b32encode(key_bytes)
        # strip trailing ====
-        assert key_b32[-4:] == b'===='
+        assert key_b32[-4:] == b"===="
        key_b32 = key_b32[:-4]
        # change from b'ASDF' to ASDF
-        s = key_b32.decode('utf-8')
+        s = key_b32.decode("utf-8")
        return s

    def connect(
@ -303,43 +304,49 @@ class Onion(object):
            torrc_template = torrc_template.replace(
                "{{socks_port}}", str(self.tor_socks_port)
            )
+            torrc_template = torrc_template.replace(
+                "{{obfs4proxy_path}}", str(self.obfs4proxy_file_path)
+            )
+            torrc_template = torrc_template.replace(
+                "{{snowflake_path}}", str(self.snowflake_file_path)
+            )

            with open(self.tor_torrc, "w") as f:
                f.write(torrc_template)

                # Bridge support
                if self.settings.get("tor_bridges_use_obfs4"):
-                    f.write(
-                        f"ClientTransportPlugin obfs4 exec {self.obfs4proxy_file_path}\n"
-                    )
                    with open(
                        self.common.get_resource_path("torrc_template-obfs4")
                    ) as o:
                        for line in o:
                            f.write(line)
                elif self.settings.get("tor_bridges_use_meek_lite_azure"):
-                    f.write(
-                        f"ClientTransportPlugin meek_lite exec {self.obfs4proxy_file_path}\n"
-                    )
                    with open(
                        self.common.get_resource_path("torrc_template-meek_lite_azure")
                    ) as o:
                        for line in o:
                            f.write(line)
+                elif self.settings.get("tor_bridges_use_snowflake"):
+                    with open(
+                        self.common.get_resource_path("torrc_template-snowflake")
+                    ) as o:
+                        for line in o:
+                            f.write(line)

-                if self.settings.get("tor_bridges_use_custom_bridges"):
-                    if "obfs4" in self.settings.get("tor_bridges_use_custom_bridges"):
-                        f.write(
-                            f"ClientTransportPlugin obfs4 exec {self.obfs4proxy_file_path}\n"
-                        )
-                    elif "meek_lite" in self.settings.get(
-                        "tor_bridges_use_custom_bridges"
+                elif self.settings.get("tor_bridges_use_moat"):
+                    for line in self.settings.get("tor_bridges_use_moat_bridges").split(
+                        "\n"
                    ):
-                        f.write(
-                            f"ClientTransportPlugin meek_lite exec {self.obfs4proxy_file_path}\n"
-                        )
-                    f.write(self.settings.get("tor_bridges_use_custom_bridges"))
-                    f.write("\nUseBridges 1")
+                        f.write(f"Bridge {line}\n")
+                    f.write("\nUseBridges 1\n")
+
+                elif self.settings.get("tor_bridges_use_custom_bridges"):
+                    for line in self.settings.get(
+                        "tor_bridges_use_custom_bridges"
+                    ).split("\n"):
+                        f.write(f"Bridge {line}\n")
+                    f.write("\nUseBridges 1\n")

            # Execute a tor subprocess
            start_ts = time.time()
@ -358,6 +365,7 @@ class Onion(object):
                    [self.tor_path, "-f", self.tor_torrc],
                    stdout=subprocess.PIPE,
                    stderr=subprocess.PIPE,
+                    env={"LD_LIBRARY_PATH": os.path.dirname(self.tor_path)},
                )

            # Wait for the tor controller to start
@ -651,16 +659,24 @@ class Onion(object):
                )
                raise TorTooOldStealth()
            else:
-                if key_type == "NEW" or not mode_settings.get("onion", "client_auth_priv_key"):
+                if key_type == "NEW" or not mode_settings.get(
+                    "onion", "client_auth_priv_key"
+                ):
                    # Generate a new key pair for Client Auth on new onions, or if
                    # it's a persistent onion but for some reason we don't them
                    client_auth_priv_key_raw = nacl.public.PrivateKey.generate()
                    client_auth_priv_key = self.key_str(client_auth_priv_key_raw)
-                    client_auth_pub_key = self.key_str(client_auth_priv_key_raw.public_key)
+                    client_auth_pub_key = self.key_str(
+                        client_auth_priv_key_raw.public_key
+                    )
                else:
                    # These should have been saved in settings from the previous run of a persistent onion
-                    client_auth_priv_key = mode_settings.get("onion", "client_auth_priv_key")
-                    client_auth_pub_key = mode_settings.get("onion", "client_auth_pub_key")
+                    client_auth_priv_key = mode_settings.get(
+                        "onion", "client_auth_priv_key"
+                    )
+                    client_auth_pub_key = mode_settings.get(
+                        "onion", "client_auth_pub_key"
+                    )

        try:
            if not self.supports_stealth: