[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Analysis of the problems many relay operators are currently facing

To: Roger Dingledine <arma@xxxxxxx>
Subject: Re: Analysis of the problems many relay operators are currently facing
From: Adam Langley <agl@xxxxxxxxxxxxxxxxxx>
Date: Thu, 22 Apr 2010 19:54:52 -0400
Cc: or-dev@xxxxxxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-dev-outgoing@xxxxxxxx
Delivered-to: or-dev@xxxxxxxx
Delivery-date: Thu, 22 Apr 2010 19:54:59 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:received:message-id:subject :from:to:cc:content-type; bh=B9ghgNlSjzUn2/Wu7ogZlkJojKeJ9BNIybY/43X1NQ8=; b=c23oC8hmjCzFFKOylwgrDetwoAAY8qh3UFffE8QTJG9xMTUV7SOghm1Cft3ij7AHEv bph761NxA43kSEYWO06C6u8WCSheUGpUvDvHD/w/lqo2TwuOVuFHfDr2Q8omFOQ7PJOr f5f+34ckkyMsfWeRpeJ2NgmScuPSatVWWLf+M=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; b=o9hpXtGi9f+mrcj5+jLC4nELrujedVcs0qwfvE2/c8llv0BbmTfoO8PG90A6GOWWsn o6IyhfNnmUGLA5yxeTG2DFptvMRHhcjS6d4RETo8kctYxvHTAgERO4Y+ZP8CehGeU1uM e1s7Ej7lQObVdZ7muDBaXHtKYM4YUwW65S+H0=
In-reply-to: <20100422234821.GG4338@xxxxxxxxxxxxxx>
References: <B5A0283E-1AC1-407A-85EC-0C2F9BD379D0@xxxxxxxxxxxxxxxxx> <k2je8ac78311004211144p89b4c5b2u10e9ba1c39ed6522@xxxxxxxxxxxxxx> <20100422221417.GY4366@xxxxxxxxxxxxxx> <u2v396556a21004221639ia8a746at3833742f24da5680@xxxxxxxxxxxxxx> <20100422234821.GG4338@xxxxxxxxxxxxxx>
Reply-to: or-dev@xxxxxxxxxxxxx
Sender: owner-or-dev@xxxxxxxxxxxxx

On Thu, Apr 22, 2010 at 7:48 PM, Roger Dingledine <arma@xxxxxxx> wrote:
> Actually Nick got a patch accepted to OpenSSL mainline that dynamically
> reduces buffers as they're not needed. See item #2 on
> https://www.torproject.org/faq.html.en#RelayMemory
>
> The remaining challenge is that roughly nobody is running OpenSSL
> 1.0.0-beta5, and roughly nobody knows how to recompile their OpenSSL. :)
>
> (Is your patch better or orthogonal to Nick's? Maybe we should get yours
> in too?)

Our patch reduces the default size of the buffers, but the buffers
stick around all the time. Based on Nick's email, your patch is
probably better.

We've just bumped up to OpenSSL 1.0.0 for Android trunk, so hopefully
we can drop our local patch when 1.0.1 comes around!

Why not ship your own OpenSSL and statically link as an option? The
OpenSSL build probably is a little scary, but I'm guessing that most
of your big relays are running on Windows where a simple "./config &&
make" will produce .a's for you.

AGL

-- 
Adam Langley agl@xxxxxxxxxxxxxxxxxx http://www.imperialviolet.org

Follow-Ups:
- Re: Analysis of the problems many relay operators are currently facing
  - From: andrew

References:
- Analysis of the problems many relay operators are currently facing
  - From: Sebastian Hahn
- Re: Analysis of the problems many relay operators are currently facing
  - From: Nick Mathewson
- Re: Analysis of the problems many relay operators are currently facing
  - From: Roger Dingledine
- Re: Analysis of the problems many relay operators are currently facing
  - From: Adam Langley
- Re: Analysis of the problems many relay operators are currently facing
  - From: Roger Dingledine

Prev by Author: Re: Analysis of the problems many relay operators are currently facing
Next by Author: Re: Analysis of the problems many relay operators are currently facing
Previous by thread: Re: Analysis of the problems many relay operators are currently facing
Next by thread: Re: Analysis of the problems many relay operators are currently facing
Index(es):
- Author
- Thread