Re: [tor-bugs] #33461 [Circumvention/Obfs4]: Multiarch docker obfs4 bridge

2020-02-27 Thread Tor Bug Tracker & Wiki 
#33461: Multiarch docker obfs4 bridge
--+
 Reporter:  thymbahutymba |  Owner:  (none)
 Type:  enhancement   | Status:  new
 Priority:  Medium|  Milestone:
Component:  Circumvention/Obfs4   |Version:
 Severity:  Normal| Resolution:
 Keywords:  docker, obfs4, multiarch  |  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:
--+

Comment (by thymbahutymba):

 I took the Dokerfile from phw repository and make the few modifications
 required in order to build obfs4-bridge image for different architectures.
 I had some problem with curl so I changed it with wget.

 First of all the images are built:
 {{{
 docker build . -f Dockerfile -t thymbahutymba/obfs4-bridge:x86_64
 docker build . -f Dockerfile.arm64 -t thymbahutymba/obfs4-bridge:arm64
 docker build . -f Dockerfile.arm -t thymbahutymba/obfs4-bridge:arm
 }}}

 Which are pushed:
 {{{
 docker push thymbahutymba/obfs4-bridge:x86_64
 docker push thymbahutymba/obfs4-bridge:arm64
 docker push thymbahutymba/obfs4-bridge:arm
 }}}

 Finally there is the creation and pushing of the manifest:
 {{{
 docker manifest create thymbahutymba/obfs4-bridge:latest
 thymbahutymba/obfs4-bridge:x86_64 thymbahutymba/obfs4-bridge:arm64
 thymbahutymba/obfs4-bridge:arm
 docker manifest push thymbahutymba/obfs4-bridge:latest
 }}}
 What's result can be seen at
 https://hub.docker.com/r/thymbahutymba/obfs4-bridge/tags?page=1 which I
 created for demostration purpose.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #33461 [Circumvention/Obfs4]: Multiarch docker obfs4 bridge

2020-02-27 Thread Tor Bug Tracker & Wiki 
#33461: Multiarch docker obfs4 bridge
--+
 Reporter:  thymbahutymba |  Owner:  (none)
 Type:  enhancement   | Status:  new
 Priority:  Medium|  Milestone:
Component:  Circumvention/Obfs4   |Version:
 Severity:  Normal| Resolution:
 Keywords:  docker, obfs4, multiarch  |  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:
--+
Changes (by thymbahutymba):

 * Attachment "Dockerfile.arm" added.

 Dockerfile for build arm image

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #33461 [Circumvention/Obfs4]: Multiarch docker obfs4 bridge

2020-02-27 Thread Tor Bug Tracker & Wiki 
#33461: Multiarch docker obfs4 bridge
--+
 Reporter:  thymbahutymba |  Owner:  (none)
 Type:  enhancement   | Status:  new
 Priority:  Medium|  Milestone:
Component:  Circumvention/Obfs4   |Version:
 Severity:  Normal| Resolution:
 Keywords:  docker, obfs4, multiarch  |  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:
--+
Changes (by thymbahutymba):

 * Attachment "Dockerfile.arm64" added.

 Dockerfile for build arm64 image

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

[tor-bugs] #33461 [Circumvention/Obfs4]: Multiarch docker obfs4 bridge

2020-02-26 Thread Tor Bug Tracker & Wiki 
#33461: Multiarch docker obfs4 bridge
--+
 Reporter:  thymbahutymba |  Owner:  (none)
 Type:  enhancement   | Status:  new
 Priority:  Medium|  Component:
  |  Circumvention/Obfs4
  Version:|   Severity:  Normal
 Keywords:  docker, obfs4, multiarch  |  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:
--+
 Having more images enables the bridge operators to directly pull an image
 instead of modifying the Dockerfile and consequently building that image.
 For example, the supported architectures can be x86_64, aarch64 and arm.
 In order to do so we can have multiple {{{Dockerfile.arch}}} where is used
 https://github.com/multiarch/qemu-user-static in order to build such
 image.

 For example in the Dockerfile.arm file the content should be something
 like:
 {{{
 # Base docker image
 FROM multiarch/qemu-user-static:x86_64-arm as qemu
 FROM arm32v7/debian:buster-slim
 COPY --from=qemu /usr/bin/qemu-arm-static /usr/bin

 # Install remaining dependencies.
 RUN apt-get update && apt-get install -y \
 tor \
 tor-geoipdb \
 obfs4proxy  \
 libcap2-bin \
 --no-install-recommends

 # Allow obfs4proxy to bind to ports < 1024.
 RUN setcap cap_net_bind_service=+ep /usr/bin/obfs4proxy
 RUN setcap cap_net_bind_service=+ep /usr/bin/tor

 # Our torrc is generated at run-time by the script start-tor.sh.
 RUN rm /etc/tor/torrc
 RUN chown debian-tor:debian-tor /etc/tor
 RUN chown debian-tor:debian-tor /var/log/tor

 COPY start-tor.sh /usr/local/bin
 RUN chmod 0755 /usr/local/bin/start-tor.sh

 COPY get-bridge-line /usr/local/bin
 RUN chmod 0755 /usr/local/bin/get-bridge-line

 USER debian-tor

 CMD [ "/usr/local/bin/start-tor.sh" ]
 }}}

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs