Trac issueshttps://gitlab.torproject.org/legacy/trac/-/issues2020-06-13T17:49:39Zhttps://gitlab.torproject.org/legacy/trac/-/issues/2505Implement bridge descriptor secret manager in metrics-db2020-06-13T17:49:39ZKarsten LoesingImplement bridge descriptor secret manager in metrics-dbIn #2435 we discussed replacing bridge IP addresses in bridge descriptors with
```
H(IP address + bridge identity + secret)[:3]
```
This is already implemented for a static `secret`.
We also discussed changing the `secret` regularly, ...In #2435 we discussed replacing bridge IP addresses in bridge descriptors with
```
H(IP address + bridge identity + secret)[:3]
```
This is already implemented for a static `secret`.
We also discussed changing the `secret` regularly, say, once a month. This requires us to extend metrics-db to:
- generate a new secret when we receive the first descriptor of a new month,
- store secrets to disk and read them on startup,
- solve the problem that a descriptor can be referenced from statuses of two months, and
- delete secrets when we're sure we don't need them anymore.Karsten LoesingKarsten Loesing