[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Hacks to reduce Tor's initial download on slow Internet, sacrificing privacy?

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Hacks to reduce Tor's initial download on slow Internet, sacrificing privacy?
From: Mike Perry <mikeperry@xxxxxxxxxxxxxx>
Date: Mon, 8 May 2023 20:55:55 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 08 May 2023 16:56:14 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=torproject.org; s=2022-eugeni; t=1683579367; bh=LkAF+ofjtG08KWkujgpbQGaLZoaoZZnJC6Ysyy6Zpgg=; h=Date:To:References:From:In-Reply-To:Subject:List-Id: List-Unsubscribe:List-Archive:List-Post:List-Help:List-Subscribe: Reply-To:From; b=KqgTPr+3mkIRw49lj3b6WMLSJMT3WImwHOkmAef3jHs0GS//O3bss7lMj+W1ufhIH 1xs9b9qW925vAx/h1jTGgMgo86xADDtv05mGdbw6+kfgb4eOrPWerSzJsiHXAxAy9y J9exkmev6jW59Fh32jb0RD42twLzGr3B83m7tHTjKSu9Zws3wSJjdiAqRsO2s0UV1N jg168A+Z4a7OVKX8ZUE1uJB4hbQhiFq3JL8+D8T9TAcARc+K0YQGjzMyV8dfbizmnt R5gCQxbtuBYrJAUF/RJQuO0zSIRDLPAT/Ll2zGWLx76RErfbstrbdIOnoybC7yYK5B cJe9zqwrkvD7A==
In-reply-to: <2e444da9-966e-49d7-8da4-f1e84f76a246@mail.shortwave.com>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <lNfpZkJX3RpyfNLsBVmWbtd_46TGHNBsO0gP2E58b4BknY8i_RxWeExrgCRT06oS1_l42AdHsqBpCDlmTygPDg==@protonmail.internalid> <2e444da9-966e-49d7-8da4-f1e84f76a246@mail.shortwave.com>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.10.0



On 5/3/23 17:24, Holmes Wilson wrote:

Hi everyone,
Is there a way right now to get Tor hidden service functionality(hosting a hidden service, connecting to hidden services) on aconnection where the Internet is so slow and unreliable that the initialdownload of network information currently takes ~forever, provided oneis willing to sacrifice metadata protection?
Is there a way to download, say, 100x less network information onstartup and still effectively host and connect to hidden services? Or isthere a way to hardcode network information with the client, since thatcan be installed before going into the slow Internet zone, from a CDNthat is less impacted, or from a source on the local network? (I readthat this is how Tor worked in the past?)
The context is the following:
I have a p2p messaging app that uses Tor and hidden services (Quiet) ina way similar to Ricochet or Onionshare. I'm going to a conference wherelast year the Internet was so slow that Tor's initial download ofnetwork information took too long and kept timing out, rendering Quietunusable. The Internet was, however, fairly reliable and usable for e.g.web browsing and messaging. I'd like to be able to use Quiet at thisconference. It would be used purely as a demo for a few days, and wecould warn everyone that our use of Tor did not offer its typicalsecurity properties. (Then in future years we might support p2pconnectivity over local wifi, like Briar does!)
My understanding is that the network information download step is toprotect users against epistemic attacks. My intuition is that forsituations where this doesn't matter there is some way to use Tor with asmall subset of the network information and that the initial downloadcould be skipped.
Is this true? What's the best way to do it in the Tor client we ship?

If you include a Tor data directory with a fresh set of the cachedmicrodesc consensus and microdesc descriptor documents in your appdistribution, and *also* hack REASONABLY_LIVE_TIME insrc/feature/nodelist/networkstatus.c to be as long as you expect thatrelease to be published, I think this gets you what you want.

The default is 24 hours, which means that clients will accept thesecached documents for up to 24 hours as valid, before blocking everythingto download a new one.

So you can hack this value to be much higher (at the cost of increasedrisk to clients from being fed a stale consensus continually), andrefresh your download files to include new documents, once per time window.

I think this will work, but I would not be surprised if you hit a fewother "safety" checks that are elsewhere in the codebase, other thanthat #define, that you also have to change.

(I'm familiar with the Walking Onions paper, but looking for somethingthat is ready now. There isn't already an implementation of WalkingOnions, is there?)

No. Also arti-relay impl will mean fewer relays in the consensus,because of multicore support. It will also probably mean betterconsensus diff support. But that isn't done either.



--
Mike Perry
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Hacks to reduce Tor's initial download on slow Internet, sacrificing privacy?
  - From: Holmes Wilson

References:
- [tor-dev] Hacks to reduce Tor's initial download on slow Internet, sacrificing privacy?
  - From: Holmes Wilson

Prev by Author: [tor-dev] txtorcon v23.5.0
Next by Author: Re: [tor-dev] New Proposal - CAA Extensions for the Tor Rendezvous Specification
Previous by thread: [tor-dev] Hacks to reduce Tor's initial download on slow Internet, sacrificing privacy?
Next by thread: Re: [tor-dev] Hacks to reduce Tor's initial download on slow Internet, sacrificing privacy?
Index(es):
- Author
- Thread