Re: [tor-dev] Help with TOR on UDP/QUIC

Subject: Re: [tor-dev] Help with TOR on UDP/QUIC

From: Tim Wilson-Brown - teor <teor2345@xxxxxxxxx>

Date: Wed, 17 Feb 2016 12:29:01 +1100

Delivery-date: Tue, 16 Feb 2016 20:29:21 -0500

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :message-id:references:to; bh=LGeKFPi5g8Dt4Z+B8MxuSQP1mPJUBjNF5rUwz9VCtCU=; b=ebcz+qBTo9s2jy54GsBwHGK86kGRnNGAV+3b/nhvJBWzWKB8GjP/Bx7W0fadY8SS0F 2ycx69X1cWiPM9qy91MRMFaT0mh8eX6K6fkhpjvzeJP8vh6L+gVwPABqsy/iQrhgDh76 IS8MyqTblVRaSOuwg4flYDoGDdW7OJ0phF2rOTrcnLNUBXbPPJyda+4kLwpsUR311xSH Kw0WzIUqgzVPoHIGzZ5usTkbaBfkYF0coexp3YHsXJG16rw4dSUrbvJ5Fch/TC0J+Uvp hKW7/+/h3lbHHsX9b8kUjJREmn+77SonmUrIlnQfQwwX8HCpwTjyPhQyMd1hR9s7v1Ra mOrQ==

In-reply-to: <CAHdmrO+5V7QgQTGcmvRNqShJub3XweVRzQWEDqUT0DTc6sXYFw@xxxxxxxxxxxxxx>

List-archive: <http://lists.torproject.org/pipermail/tor-dev/>

List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>

List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>

List-post: <mailto:tor-dev@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>

References: <CAHdmrO+5V7QgQTGcmvRNqShJub3XweVRzQWEDqUT0DTc6sXYFw@xxxxxxxxxxxxxx>

Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx

Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On 17 Feb 2016, at 04:28, Xiaofan Li <xli2@xxxxxxxxxxxxxx> wrote:

Hi everyone:

I'm new to Tor dev community and my name is Xiaofan Li, currently a senior at Carnegie Mellon University studying ECE and CS. My friend Kevin Ku and I are taking a graduate class on computer networks and we decided to examine the possibilities of substituting TCP with the Google QUIC protocol for Tor in order to improve performance.

We are emailing you because:
We want to get some points of contact with the Tor community in case of future integration and/or testing.
We want to know if anyone else has done (or is doing) Tor with QUIC. If so, what their status is; and if not, why not?

Some of the issues your proposal describes are addressed by tor's circuitmux implementation, and by the KIST scheduler implementation.

http://www.cypherpunks.ca/~iang/pubs/ewma-ccs.pdf

http://www.robgjansen.com/publications/kist-sec2014.pdf

Another answer may be that TCP is a proven technology that works acceptably well for the Tor use case. It has a number of cross-platform implementations, stable interfaces, and decent security properties.

We want to get your opinions on this idea. Attached is our (very) preliminary plan and goals for the project. Any feedback is welcomed.

It's unclear whether your proposal is to:

* replace Tor's client to relay and relay to relay TCP links with QUIC, or

* allow Tor to carry arbitrary IP traffic, in addition to streams via a SOCKS proxy.

These are two very different goals, they're both referred to in the proposal, but they're not described separately or prioritised.

Tor likely contains a number of implementation assumptions that make arbitrary IP traffic difficult, and there are security implications in moving from a stream-based proxy to an arbitrary IP traffic proxy.

And there's currently no mechanism for tor to accept arbitrary IP traffic from clients, so you'd have to build that, too. (The transparent proxy support might be a good place to start.)

Any implementation recommendations. My plan is to find a clean layer of abstraction where I can substitute TCP with QUIC. Any ideas? On a first look, I'm thinking about either or/channel.c or or/transports.c

Read torguts, it describes the abstraction layers within tor:

https://gitweb.torproject.org/user/nickm/torguts.git/

Any testing suggestions? How do Tor engineers test new stuff?

I typically use chutney for smoke tests. Others use shadow for simulations:

https://gitweb.torproject.org/chutney.git/

https://shadow.github.io/

Tim

Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B

teor at blah dot im
OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

_______________________________________________ tor-dev mailing list tor-dev@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev