[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #15469 [Tor]: Remove data structure containing unique IP address sets

Subject: [tor-bugs] #15469 [Tor]: Remove data structure containing unique IP address sets
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 26 Mar 2015 08:24:27 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 26 Mar 2015 04:24:37 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#15469: Remove data structure containing unique IP address sets
-------------------------+---------------------
 Reporter:  karsten      |          Owner:
     Type:  enhancement  |         Status:  new
 Priority:  normal       |      Milestone:
Component:  Tor          |        Version:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
-------------------------+---------------------
 Relays keep a data structure of unique connecting IP addresses for
 statistics and for informational purposes.

 We should consider removing that data structure.  There's a privacy risk
 in gathering unique IP address sets in memory and in reporting aggregate
 statistics based on them.  If we don't need these statistics, we should
 stop reporting them and stop gathering the underlying data.

 The main (and only?) data structure containing unique IP address sets is
 `clientmap` in `src/or/geoip.c`.  If we remove that data structure, we
 would also have to remove:

  1. the `dirreq-v3-ips` line from extra-info descriptors,
  2. all "bridge statistics" including `bridge-stats-end`, `bridge-ips`,
 `bridge-ip-versions`, and `bridge-ip-transports` lines from extra-info
 descriptors,
  3. all "entry node statistics" including `entry-stats-end` and `entry-
 ips` from extra-info descriptors,
  4. the log line `"Heartbeat: In the last %d hours, I have seen %d unique
 clients."`, and
  5. the `CLIENTS_SEEN` controller event.

 1 and 3 are not used.  2 is used by Metrics to estimate the number of
 daily bridge users, and we'd need to implement #8786 before removing
 bridge statistics.  atagar thinks that 4 was added by Sebastian a few
 years back, so that relay operators with certain simple use cases don't
 need to open a control port and run something like arm.  5 is used by arm
 for one of its dialogs, and atagar thinks it's not the end of the world to
 lose that.

 Thoughts?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15469>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #15469 [Tor]: Remove data structure containing unique IP address sets
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #15469 [Tor]: Remove data structure containing unique IP address sets
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #14429 [Tor Browser]: Automated rounding of content window dimensions
Next by Author: Re: [tor-bugs] #13019 [Tor Browser]: New locale fingerprinting capabilities in FF31ESR
Previous by thread: [tor-bugs] #15468 [- Select a component]: Their studies demonstrate that their fasting perpetually countenance 424
Next by thread: Re: [tor-bugs] #15469 [Tor]: Remove data structure containing unique IP address sets
Index(es):
- Author
- Thread