[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #1774 [Tor - Tor client]: how much of exit policies can we squeeze into microdescriptors?

To: undisclosed-recipients:;
Subject: [tor-bugs] #1774 [Tor - Tor client]: how much of exit policies can we squeeze into microdescriptors?
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Fri, 30 Jul 2010 17:29:47 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivered-to: tor-bugs-outgoing@xxxxxxxx
Delivered-to: tor-bugs@xxxxxxxxxxxxxx
Delivery-date: Fri, 30 Jul 2010 13:29:55 -0400
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: owner-tor-bugs@xxxxxxxxxxxxxx

#1774: how much of exit policies can we squeeze into microdescriptors?
------------------------------+---------------------------------------------
 Reporter:  arma              |       Owner:                     
     Type:  task              |      Status:  new                
 Priority:  normal            |   Milestone:  Deliverable-Sep2010
Component:  Tor - Tor client  |     Version:                     
 Keywords:                    |      Parent:  #1748              
------------------------------+---------------------------------------------
 Current server descriptors have full-fledged exit policies -- they can
 describe not just ports but also IP addresses and netmasks.

 The new microdescriptor design (#1748) uses the idea from proposal 141 of
 just summarizing the ports from the exit policy, to compress things
 better.

 But the problem is that we lose some functionality here.

 So the first step is: what functionality exactly do we lose? Exit
 enclaving? More precise control over what websites you'll reach? We should
 make a list so we know what we're trading off.

 The second step is: how much information can we salvage and put back into
 the p lines? I imagine a lot of the problem is that when we're fetching
 microdescriptors one at a time, the current exit policies compress poorly.
 There are several idioms (like rejecting all internal networks, and
 rejecting our own IP address) that we could denote very compressedly. How
 bad is it if we do the exit summary for all the ones that we can, and
 include more precise policy lines only for the relays that set unusual
 lines?

 Backward compatibility if we add new shorthand will be exciting. I'm not
 sure how much of a hassle it will be, say if we make a change down the
 road where everybody has six new reject netmask lines in their default
 exit policy. We could certainly complexify things by defining our
 shorthand in an exit-policy-option-list or something, so it's all
 extensible, but that may just be a big hassle. I don't want us to design
 the complexifieder version for Sep2010.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/1774>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

Follow-Ups:
- [tor-bugs] Re: #1774 [Tor - Tor client]: how much of exit policies can we squeeze into microdescriptors?
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] Re: #1757 [Tor - Tor client]: Microdescriptors: abstract the notion of "Tor node" in the code
Next by Author: [tor-bugs] #1775 [Tor - Tor client]: Project: Make Tor speak UPnP and NAT-PMP for port-forwarding
Previous by thread: [tor-bugs] Re: #1773 [Tor - Relay]: Use curly braces for variable expansion in makefiles.
Next by thread: [tor-bugs] Re: #1774 [Tor - Tor client]: how much of exit policies can we squeeze into microdescriptors?
Index(es):
- Author
- Thread