| blob | 37c4759f3719247c5c4191f0724b4dab032b6c01 |
1 /* Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
2 * Copyright (c) 2007-2018, The Tor Project, Inc. */
3 /* See LICENSE for licensing information */
5 /**
6 * \file rephist.c
7 * \brief Basic history and performance-tracking functionality.
8 *
9 * Basic history and performance-tracking functionality to remember
10 * which servers have worked in the past, how much bandwidth we've
11 * been using, which ports we tend to want, and so on; further,
12 * exit port statistics, cell statistics, and connection statistics.
13 *
14 * The history and information tracked in this module could sensibly be
15 * divided into several categories:
16 *
17 * <ul><li>Statistics used by authorities to remember the uptime and
18 * stability information about various relays, including "uptime",
19 * "weighted fractional uptime" and "mean time between failures".
20 *
21 * <li>Bandwidth usage history, used by relays to self-report how much
22 * bandwidth they've used for different purposes over last day or so,
23 * in order to generate the {dirreq-,}{read,write}-history lines in
24 * that they publish.
25 *
26 * <li>Predicted ports, used by clients to remember how long it's been
27 * since they opened an exit connection to each given target
28 * port. Clients use this information in order to try to keep circuits
29 * open to exit nodes that can connect to the ports that they care
30 * about. (The predicted ports mechanism also handles predicted circuit
31 * usage that _isn't_ port-specific, such as resolves, internal circuits,
32 * and so on.)
33 *
34 * <li>Public key operation counters, for tracking how many times we've
35 * done each public key operation. (This is unmaintained and we should
36 * remove it.)
37 *
38 * <li>Exit statistics by port, used by exits to keep track of the
39 * number of streams and bytes they've served at each exit port, so they
40 * can generate their exit-kibibytes-{read,written} and
41 * exit-streams-opened statistics.
42 *
43 * <li>Circuit stats, used by relays instances to tract circuit
44 * queue fullness and delay over time, and generate cell-processed-cells,
45 * cell-queued-cells, cell-time-in-queue, and cell-circuits-per-decile
46 * statistics.
47 *
48 * <li>Descriptor serving statistics, used by directory caches to track
49 * how many descriptors they've served.
50 *
51 * <li>Connection statistics, used by relays to track one-way and
52 * bidirectional connections.
53 *
54 * <li>Onion handshake statistics, used by relays to count how many
55 * TAP and ntor handshakes they've handled.
56 *
57 * <li>Hidden service statistics, used by relays to count rendezvous
58 * traffic and HSDir-stored descriptors.
59 *
60 * <li>Link protocol statistics, used by relays to count how many times
61 * each link protocol has been used.
62 *
63 * </ul>
64 *
65 * The entry points for this module are scattered throughout the
66 * codebase. Sending data, receiving data, connecting to a relay,
67 * losing a connection to a relay, and so on can all trigger a change in
68 * our current stats. Relays also invoke this module in order to
69 * extract their statistics when building routerinfo and extrainfo
70 * objects in router.c.
71 *
72 * TODO: This module should be broken up.
73 *
74 * (The "rephist" name originally stood for "reputation and history". )
75 **/
77 #define REPHIST_PRIVATE
97 #ifdef HAVE_FCNTL_H
98 #include <fcntl.h>
99 #endif
103 /** Total number of bytes currently allocated in fields used by rephist.c. */
105 /** Number of or_history_t objects currently allocated. */
108 /** If the total weighted run count of all runs for a router ever falls
109 * below this amount, the router can be treated as having 0 MTBF. */
110 #define STABILITY_EPSILON 0.0001
111 /** Value by which to discount all old intervals for MTBF purposes. This
112 * is compounded every STABILITY_INTERVAL. */
113 #define STABILITY_ALPHA 0.95
114 /** Interval at which to discount all old intervals for MTBF purposes. */
115 #define STABILITY_INTERVAL (12*60*60)
116 /* (This combination of ALPHA, INTERVAL, and EPSILON makes it so that an
117 * interval that just ended counts twice as much as one that ended a week ago,
118 * 20X as much as one that ended a month ago, and routers that have had no
119 * uptime data for about half a year will get forgotten.) */
121 /** History of an OR. */
123 /** When did we start tracking this OR? */
125 /** When did we most recently note a change to this OR? */
128 /** The address at which we most recently connected to this OR
129 * successfully. */
130 tor_addr_t last_reached_addr;
132 /** The port at which we most recently connected to this OR successfully */
135 /* === For MTBF tracking: */
136 /** Weighted sum total of all times that this router has been online.
137 */
139 /** If the router is now online (according to stability-checking rules),
140 * when did it come online? */
142 /** Sum of weights for runs in weighted_run_length. */
144 /* === For fractional uptime tracking: */
150 /**
151 * This structure holds accounting needed to calculate the padding overhead.
152 */
154 /** Total number of cells we have received, including padding */
156 /** Total number of cells we have sent, including padding */
158 /** Total number of CELL_PADDING cells we have received */
160 /** Total number of CELL_PADDING cells we have sent */
162 /** Total number of read cells on padding-enabled conns */
164 /** Total number of sent cells on padding-enabled conns */
166 /** Total number of read CELL_PADDING cells on padding-enabled cons */
168 /** Total number of sent CELL_PADDING cells on padding-enabled cons */
170 /** Total number of RELAY_DROP cells we have received */
172 /** Total number of RELAY_DROP cells we have sent */
174 /** The maximum number of padding timers we've seen in 24 hours */
176 /** When did we first copy padding_current into padding_published? */
180 /** Holds the current values of our padding statistics.
181 * It is not published until it is transferred to padding_published. */
184 /** Remains fixed for a 24 hour period, and then is replaced
185 * by a redacted copy of padding_current */
188 /** When did we last multiply all routers' weighted_run_length and
189 * total_run_weights by STABILITY_ALPHA? */
192 /** */
195 /** Map from hex OR identity digest to or_history_t. */
198 /** Return the or_history_t for the OR with identity digest <b>id</b>,
199 * creating it if necessary. */
202 {
212 rephist_total_num++;
216 }
218 }
220 /** Helper: free storage held by a single OR history entry. */
221 static void
223 {
226 rephist_total_num--;
228 }
230 /** Initialize the static data structures for tracking history. */
231 void
233 {
236 }
238 /** We have just decided that this router with identity digest <b>id</b> is
239 * reachable, meaning we will give it a "Running" flag for the next while. */
240 void
243 {
262 }
276 /* If we're reachable, but the address changed, treat this as some
277 * downtime. */
284 /* on average, a descriptor addr change takes .5 intervals to make it
285 * into a consensus, and half a liveness period to make it to
286 * clients. */
288 }
291 "to have changed since the last time it was reachable. I'm "
301 else
304 }
309 }
311 /** We have just decided that this router is unreachable, meaning
312 * we are taking away its "Running" flag. */
313 void
315 {
324 /*XXXX We could treat failed connections differently from failed
325 * connect attempts. */
333 #define SUBTRACT_CLAMPED(var, penalty) \
334 do { (var) = (var) < (penalty) ? 0 : (var) - (penalty); } while (0)
342 }
348 }
361 }
362 }
363 }
365 /** Mark a router with ID <b>id</b> as non-Running, and retroactively declare
366 * that it has never been running: give it no stability and no WFU. */
367 void
369 {
377 }
379 /** Helper: Discount all old MTBF data, if it is time to do so. Return
380 * the time at which we should next discount MTBF data. */
381 time_t
383 {
397 /* Okay, we should downrate the data. By how much? */
401 }
404 alpha);
406 /* Multiply every w_r_l, t_r_w pair by alpha. */
420 }
423 }
425 /** Helper: Return the weighted MTBF of the router with history <b>hist</b>. */
426 static double
428 {
433 /* We're currently in a run. Let total and total_weights hold the values
434 * they would hold if the current run were to end now. */
437 }
439 /* Round down to zero, and avoid divide-by-zero. */
441 }
444 }
446 /** Return the total amount of time we've been observing, with each run of
447 * time downrated by the appropriate factor. */
448 static long
450 {
456 }
458 }
460 /** Helper: Return the weighted percent-of-time-online of the router with
461 * history <b>hist</b>. */
462 static double
464 {
474 }
477 /* Avoid calling anybody's uptime infinity (which should be impossible if
478 * the code is working), or NaN (which can happen for any router we haven't
479 * observed up or down yet). */
481 }
484 }
486 /** Return how long the router whose identity digest is <b>id</b> has
487 * been reachable. Return 0 if the router is unknown or currently deemed
488 * unreachable. */
489 long
491 {
498 }
500 /** Return an estimated MTBF for the router whose identity digest is
501 * <b>id</b>. Return 0 if the router is unknown. */
502 double
504 {
510 }
512 /** Return an estimated percent-of-time-online for the router whose identity
513 * digest is <b>id</b>. Return 0 if the router is unknown. */
514 double
516 {
522 }
524 /** Return a number representing how long we've known about the router whose
525 * digest is <b>id</b>. Return 0 if the router is unknown.
526 *
527 * Be careful: this measure increases monotonically as we know the router for
528 * longer and longer, but it doesn't increase linearly.
529 */
530 long
532 {
538 }
540 /** Return true if we've been measuring MTBFs for long enough to
541 * pronounce on Stability. */
542 int
544 {
545 /* XXXX++ This doesn't do so well when we change our opinion
546 * as to whether we're tracking router stability. */
548 }
550 /** Log all the reliability data we have remembered, with the chosen
551 * severity.
552 */
553 void
555 {
577 else
586 }
587 }
589 /** Remove history info for routers/links that haven't changed since
590 * <b>before</b>.
591 */
592 void
594 {
615 }
617 }
618 }
620 /** Write MTBF data to disk. Return 0 on success, negative on failure.
621 *
622 * If <b>missing_means_down</b>, then if we're about to write an entry
623 * that is still considered up but isn't in our routerlist, consider it
624 * to be down. */
625 int
627 {
637 {
644 }
646 /* File format is:
647 * FormatLine *KeywordLine Data
648 *
649 * FormatLine = "format 1" NL
650 * KeywordLine = Keyword SP Arguments NL
651 * Data = "data" NL *RouterMTBFLine "." NL
652 * RouterMTBFLine = Fingerprint SP WeightedRunLen SP
653 * TotalRunWeights [SP S=StartRunTime] NL
654 */
655 #define PUT(s) STMT_BEGIN if (fputs((s),f)<0) goto err; STMT_END
656 #define PRINTF(args) STMT_BEGIN if (fprintf args <0) goto err; STMT_END
666 }
670 }
674 /* XXX Nick: now bridge auths record this for all routers too.
675 * Should we make them record it only for bridge routers? -RD
676 * Not for 0.2.0. -NM */
689 /* We think this relay is running, but it's not listed in our
690 * consensus. Somehow it fell out without telling us it went
691 * down. Complain and also correct it. */
693 "Relay '%s' is listed as up in rephist, but it's not in "
696 }
702 }
710 }
714 }
718 #undef PUT
719 #undef PRINTF
722 err:
725 }
727 /** Helper: return the first j >= i such that !strcmpstart(sl[j], prefix) and
728 * such that no line sl[k] with i <= k < j starts with "R ". Return -1 if no
729 * such line exists. */
730 static int
732 {
739 }
741 }
743 /** How many bad times has parse_possibly_bad_iso_time() parsed? */
745 /** Parse the ISO-formatted time in <b>s</b> into *<b>time_out</b>, but
746 * round any pre-1970 date to Jan 1, 1970. */
747 static int
749 {
761 }
763 /** We've read a time <b>t</b> from a file stored at <b>stored_at</b>, which
764 * says we started measuring at <b>started_measuring</b>. Return a new number
765 * that's about as much before <b>now</b> as <b>t</b> was before
766 * <b>stored_at</b>.
767 */
770 {
783 }
784 }
786 /** Load MTBF data from disk. Returns 0 on success or recoverable error, -1
787 * on failure. */
788 int
790 {
791 /* XXXX won't handle being called while history is already populated. */
799 {
808 }
810 {
817 }
818 }
823 }
832 }
837 }
842 }
843 }
852 }
885 }
888 // format == 2.
904 }
905 }
915 }
916 }
921 }
926 }
937 }
939 tracked_since);
945 }
951 }
952 }
954 tracked_since);
957 }
968 err:
970 done:
974 }
976 /** For how many seconds do we keep track of individual per-second bandwidth
977 * totals? */
978 #define NUM_SECS_ROLLING_MEASURE 10
979 /** How large are the intervals for which we track and report bandwidth use? */
980 #define NUM_SECS_BW_SUM_INTERVAL (24*60*60)
981 /** How far in the past do we remember and publish bandwidth use? */
982 #define NUM_SECS_BW_SUM_IS_VALID (5*24*60*60)
983 /** How many bandwidth usage intervals do we remember? (derived) */
984 #define NUM_TOTALS (NUM_SECS_BW_SUM_IS_VALID/NUM_SECS_BW_SUM_INTERVAL)
986 /** Structure to track bandwidth use, and remember the maxima for a given
987 * time period.
988 */
990 /** Observation array: Total number of bytes transferred in each of the last
991 * NUM_SECS_ROLLING_MEASURE seconds. This is used as a circular array. */
996 * obs[cur_obs_idx] */
998 * current period. */
1000 * period. */
1002 /** When does the next period begin? */
1004 /** Where in 'maxima' should the maximum bandwidth usage for the current
1005 * period be stored? */
1007 /** How many values in maxima/totals have been set ever? */
1009 /** Circular array of the maximum
1010 * bandwidth-per-NUM_SECS_ROLLING_MEASURE usage for the last
1011 * NUM_TOTALS periods */
1013 /** Circular array of the total bandwidth usage for the last NUM_TOTALS
1014 * periods */
1016 };
1018 /** Shift the current period of b forward by one. */
1019 STATIC void
1021 {
1022 /* Store total from current period. */
1024 /* Store maximum from current period. */
1026 /* Advance next_period and next_max_idx */
1032 /* Reset max_total. */
1034 /* Reset total_in_period. */
1036 }
1038 /** Shift the current observation time of <b>b</b> forward by one second. */
1039 STATIC void
1041 {
1045 /* Calculate the total bandwidth for the last NUM_SECS_ROLLING_MEASURE
1046 * seconds; adjust max_total as needed.*/
1061 }
1063 /** Add <b>n</b> bytes to the number of bytes in <b>b</b> for second
1064 * <b>when</b>. */
1067 {
1071 /* If we're currently adding observations for an earlier second than
1072 * 'when', advance b->cur_obs_time and b->cur_obs_idx by an
1073 * appropriate number of seconds, and do all the other housekeeping. */
1075 /* Doing this one second at a time is potentially inefficient, if we start
1076 with a state file that is very old. Fortunately, it doesn't seem to
1077 show up in profiles, so we can just ignore it for now. */
1079 }
1083 }
1085 /** Allocate, initialize, and return a new bw_array. */
1088 {
1097 }
1099 #define bw_array_free(val) \
1100 FREE_AND_NULL(bw_array_t, bw_array_free_, (val))
1102 /** Free storage held by bandwidth array <b>b</b>. */
1103 static void
1105 {
1108 }
1112 }
1114 /** Recent history of bandwidth observations for read operations. */
1116 /** Recent history of bandwidth observations for write operations. */
1118 /** Recent history of bandwidth observations for read operations for the
1119 directory protocol. */
1121 /** Recent history of bandwidth observations for write operations for the
1122 directory protocol. */
1125 /** Set up [dir-]read_array and [dir-]write_array, freeing them if they
1126 * already exist. */
1127 static void
1129 {
1139 }
1141 /** Remember that we read <b>num_bytes</b> bytes in second <b>when</b>.
1142 *
1143 * Add num_bytes to the current running total for <b>when</b>.
1144 *
1145 * <b>when</b> can go back to time, but it's safe to ignore calls
1146 * earlier than the latest <b>when</b> you've heard of.
1147 */
1148 void
1150 {
1151 /* Maybe a circular array for recent seconds, and step to a new point
1152 * every time a new second shows up. Or simpler is to just to have
1153 * a normal array and push down each item every second; it's short.
1154 */
1155 /* When a new second has rolled over, compute the sum of the bytes we've
1156 * seen over when-1 to when-1-NUM_SECS_ROLLING_MEASURE, and stick it
1157 * somewhere. See rep_hist_bandwidth_assess() below.
1158 */
1160 }
1162 /** Remember that we wrote <b>num_bytes</b> bytes in second <b>when</b>.
1163 * (like rep_hist_note_bytes_written() above)
1164 */
1165 void
1167 {
1168 /* if we're smart, we can make this func and the one above share code */
1170 }
1172 /** Remember that we wrote <b>num_bytes</b> directory bytes in second
1173 * <b>when</b>. (like rep_hist_note_bytes_written() above)
1174 */
1175 void
1177 {
1179 }
1181 /** Remember that we read <b>num_bytes</b> directory bytes in second
1182 * <b>when</b>. (like rep_hist_note_bytes_written() above)
1183 */
1184 void
1186 {
1188 }
1190 /** Helper: Return the largest value in b->maxima. (This is equal to the
1191 * most bandwidth used in any NUM_SECS_ROLLING_MEASURE period for the last
1192 * NUM_SECS_BW_SUM_IS_VALID seconds.)
1193 */
1194 STATIC uint64_t
1196 {
1203 }
1205 }
1207 /** Find the largest sums in the past NUM_SECS_BW_SUM_IS_VALID (roughly)
1208 * seconds. Find one sum for reading and one for writing. They don't have
1209 * to be at the same time.
1210 *
1211 * Return the smaller of these sums, divided by NUM_SECS_ROLLING_MEASURE.
1212 */
1215 {
1221 else
1223 }
1225 /** Print the bandwidth history of b (either [dir-]read_array or
1226 * [dir-]write_array) into the buffer pointed to by buf. The format is
1227 * simply comma separated numbers, from oldest to newest.
1228 *
1229 * It returns the number of bytes written.
1230 */
1231 static size_t
1233 {
1240 /* We haven't been through the circular array yet; time starts at i=0.*/
1243 /* We've been around the array at least once. The next i to be
1244 overwritten is the oldest. */
1246 }
1249 /* We don't want to report that we used more bandwidth than the max we're
1250 * willing to relay; otherwise everybody will know how much traffic
1251 * we used ourself. */
1255 }
1262 /* Round the bandwidth used down to the nearest 1k. */
1269 else
1272 }
1274 }
1276 /** Allocate and return lines for representing this server's bandwidth
1277 * history in its descriptor. We publish these lines in our extra-info
1278 * descriptor.
1279 */
1282 {
1290 /* [dirreq-](read|write)-history yyyy-mm-dd HH:MM:SS (n s) n,n,n... */
1291 /* The n,n,n part above. Largest representation of a uint64_t is 20 chars
1292 * long, plus the comma. */
1293 #define MAX_HIST_VALUE_LEN (21*NUM_TOTALS)
1317 }
1320 /* If we don't have anything to write, skip to the next entry. */
1331 }
1333 }
1335 /** Write a single bw_array_t into the Values, Ends, Interval, and Maximum
1336 * entries of an or_state_t. Done before writing out a new state file. */
1337 static void
1344 {
1351 }
1355 }
1357 /* Clients don't need to store bandwidth history persistently;
1358 * force these values to the defaults. */
1359 /* FFFF we should pull the default out of config.c's state table,
1360 * so we don't have two defaults. */
1365 }
1371 }
1377 /* Set i to first position in circular array */
1387 }
1393 }
1395 /** Update <b>state</b> with the newest bandwidth history. Done before
1396 * writing out a new state file. */
1397 void
1399 {
1400 #define UPDATE(arrname,st) \
1401 rep_hist_update_bwhist_state_section(state,\
1402 (arrname),\
1403 &state->BWHistory ## st ## Values, \
1404 &state->BWHistory ## st ## Maxima, \
1405 &state->BWHistory ## st ## Ends, \
1406 &state->BWHistory ## st ## Interval)
1415 }
1416 #undef UPDATE
1417 }
1419 /** Load a single bw_array_t from its Values, Ends, Maxima, and Interval
1420 * entries in an or_state_t. Done while reading the state file. */
1421 static int
1427 {
1451 /* No maxima known; guess average rate to be conservative. */
1453 }
1457 }
1461 maxstr);
1462 }
1468 /* Calculate the average per second. This is the best we can do
1469 * because our state file doesn't have per-second resolution. */
1473 /* This is potentially inefficient, but since we don't do it very
1474 * often it should be ok. */
1478 }
1480 /* This will result in some fairly choppy history if s_interval
1481 * is not the same as NUM_SECS_BW_SUM_INTERVAL. XXXX */
1483 }
1485 }
1487 /* Clean up maxima and observed */
1490 }
1494 }
1496 /** Set bandwidth history from the state file we just loaded. */
1497 int
1499 {
1502 /* Assert they already have been malloced */
1506 #define LOAD(arrname,st) \
1507 if (rep_hist_load_bwhist_state_section( \
1508 (arrname), \
1509 state->BWHistory ## st ## Values, \
1510 state->BWHistory ## st ## Maxima, \
1511 state->BWHistory ## st ## Ends, \
1512 state->BWHistory ## st ## Interval)<0) \
1513 all_ok = 0
1520 #undef LOAD
1523 /* and create fresh arrays */
1526 }
1528 }
1530 /*** Exit port statistics ***/
1532 /* Some constants */
1533 /** To what multiple should byte numbers be rounded up? */
1534 #define EXIT_STATS_ROUND_UP_BYTES 1024
1535 /** To what multiple should stream counts be rounded up? */
1536 #define EXIT_STATS_ROUND_UP_STREAMS 4
1537 /** Number of TCP ports */
1538 #define EXIT_STATS_NUM_PORTS 65536
1539 /** Top n ports that will be included in exit stats. */
1540 #define EXIT_STATS_TOP_N_PORTS 10
1542 /* The following data structures are arrays and no fancy smartlists or maps,
1543 * so that all write operations can be done in constant time. This comes at
1544 * the price of some memory (1.25 MB) and linear complexity when writing
1545 * stats for measuring relays. */
1546 /** Number of bytes read in current period by exit port */
1548 /** Number of bytes written in current period by exit port */
1550 /** Number of streams opened in current period by exit port */
1553 /** Start time of exit stats or 0 if we're not collecting exit stats. */
1556 /** Initialize exit port stats. */
1557 void
1559 {
1564 }
1566 /** Reset counters for exit port statistics. */
1567 void
1569 {
1574 }
1576 /** Stop collecting exit port stats in a way that we can re-start doing
1577 * so in rep_hist_exit_stats_init(). */
1578 void
1580 {
1585 }
1587 /** Helper for qsort: compare two ints. Does not handle overflow properly,
1588 * but works fine for sorting an array of port numbers, which is what we use
1589 * it for. */
1590 static int
1592 {
1594 }
1596 /** Return a newly allocated string containing the exit port statistics
1597 * until <b>now</b>, or NULL if we're not collecting exit stats. Caller
1598 * must ensure start_of_exit_stats_interval is in the past. */
1601 {
1618 /* Go through all ports to find the n ports that saw most written and
1619 * read bytes.
1620 *
1621 * Invariant: at the end of the loop for iteration i,
1622 * total_read is the sum of all exit_bytes_read[0..i]
1623 * total_written is the sum of all exit_bytes_written[0..i]
1624 * total_stream is the sum of all exit_streams[0..i]
1625 *
1626 * top_elements = MAX(EXIT_STATS_TOP_N_PORTS,
1627 * #{j | 0 <= j <= i && volume(i) > 0})
1628 *
1629 * For all 0 <= j < top_elements,
1630 * top_bytes[j] > 0
1631 * 0 <= top_ports[j] <= 65535
1632 * top_bytes[j] = volume(top_ports[j])
1633 *
1634 * There is no j in 0..i and k in 0..top_elements such that:
1635 * volume(j) > top_bytes[k] AND j is not in top_ports[0..top_elements]
1636 *
1637 * There is no j!=cur_min_idx in 0..top_elements such that:
1638 * top_bytes[j] < top_bytes[cur_min_idx]
1639 *
1640 * where volume(x) == exit_bytes_read[x]+exit_bytes_written[x]
1641 *
1642 * Worst case: O(EXIT_STATS_NUM_PORTS * EXIT_STATS_TOP_N_PORTS)
1643 */
1651 }
1660 }
1665 }
1666 }
1667 }
1669 /* Add observations of top ports to smartlists. */
1676 /* Sort the ports; this puts them out of sync with top_bytes, but we
1677 * won't be using top_bytes again anyway */
1684 EXIT_STATS_ROUND_UP_BYTES);
1689 }
1693 EXIT_STATS_ROUND_UP_BYTES);
1698 }
1702 EXIT_STATS_ROUND_UP_STREAMS);
1705 }
1706 }
1708 /* Add observations of other ports in a single element. */
1710 EXIT_STATS_ROUND_UP_BYTES);
1715 EXIT_STATS_ROUND_UP_BYTES);
1720 EXIT_STATS_ROUND_UP_STREAMS);
1723 /* Join all observations in single strings. */
1734 /* Put everything together. */
1741 written_string,
1742 read_string,
1743 streams_string);
1748 }
1750 /** If 24 hours have passed since the beginning of the current exit port
1751 * stats period, write exit stats to $DATADIR/stats/exit-stats (possibly
1752 * overwriting an existing file) and reset counters. Return when we would
1753 * next want to write exit stats or 0 if we never want to write. */
1754 time_t
1756 {
1766 /* Generate history string. */
1769 /* Reset counters. */
1772 /* Try to write to disk. */
1775 }
1777 done:
1780 }
1782 /** Note that we wrote <b>num_written</b> bytes and read <b>num_read</b>
1783 * bytes to/from an exit connection to <b>port</b>. */
1784 void
1787 {
1795 }
1797 /** Note that we opened an exit stream to <b>port</b>. */
1798 void
1800 {
1805 }
1807 /*** cell statistics ***/
1809 /** Start of the current buffer stats interval or 0 if we're not
1810 * collecting buffer statistics. */
1813 /** Initialize buffer stats. */
1814 void
1816 {
1818 }
1820 /** Statistics from a single circuit. Collected when the circuit closes, or
1821 * when we flush statistics to disk. */
1823 /** Average number of cells in the circuit's queue */
1825 /** Average time a cell waits in the queue. */
1827 /** Total number of cells sent over this circuit */
1831 /** List of circ_buffer_stats_t. */
1834 /** Remember cell statistics <b>mean_num_cells_in_queue</b>,
1835 * <b>mean_time_cells_in_queue</b>, and <b>processed_cells</b> of a
1836 * circuit. */
1837 void
1840 {
1851 }
1853 /** Remember cell statistics for circuit <b>circ</b> at time
1854 * <b>end_of_interval</b> and reset cell counters in case the circuit
1855 * remains open in the next measurement interval. */
1856 void
1858 {
1870 start_of_buffer_stats_interval) ?
1872 start_of_buffer_stats_interval;
1877 /* 1000.0 for s -> ms; 2.0 because of app-ward and exit-ward queues */
1880 mean_time_cells_in_queue =
1886 mean_time_cells_in_queue,
1887 processed_cells);
1888 }
1890 /** Sorting helper: return -1, 1, or 0 based on comparison of two
1891 * circ_buffer_stats_t */
1892 static int
1894 {
1900 else
1902 }
1904 /** Stop collecting cell stats in a way that we can re-start doing so in
1905 * rep_hist_buffer_stats_init(). */
1906 void
1908 {
1910 }
1912 /** Clear history of circuit statistics and set the measurement interval
1913 * start to <b>now</b>. */
1914 void
1916 {
1923 }
1925 /** Return a newly allocated string containing the buffer statistics until
1926 * <b>now</b>, or NULL if we're not collecting buffer stats. Caller must
1927 * ensure start_of_buffer_stats_interval is in the past. */
1930 {
1931 #define SHARES 10
1948 /* Calculate deciles if we saw at least one circuit. */
1958 buffer_stats_compare_entries_);
1962 {
1968 }
1970 }
1972 /* Write deciles to strings. */
1981 }
1986 }
1991 }
1993 /* Join all observations in single strings. */
2007 /* Put everything together. */
2015 processed_cells_string,
2016 queued_cells_string,
2017 time_in_queue_string,
2023 #undef SHARES
2024 }
2026 /** If 24 hours have passed since the beginning of the current buffer
2027 * stats period, write buffer stats to $DATADIR/stats/buffer-stats
2028 * (possibly overwriting an existing file) and reset counters. Return
2029 * when we would next want to write buffer stats or 0 if we never want to
2030 * write. */
2031 time_t
2033 {
2041 /* Add open circuits to the history. */
2044 }
2047 /* Generate history string. */
2050 /* Reset both buffer history and counters of open circuits. */
2053 /* Try to write to disk. */
2056 }
2058 done:
2061 }
2063 /*** Descriptor serving statistics ***/
2065 /** Digestmap to track which descriptors were downloaded this stats
2066 * collection interval. It maps descriptor digest to pointers to 1,
2067 * effectively turning this into a list. */
2070 /** Number of how many descriptors were downloaded in total during this
2071 * interval. */
2074 /** Start time of served descs stats or 0 if we're not collecting those. */
2077 /** Initialize descriptor stats. */
2078 void
2080 {
2085 }
2089 }
2091 /** Reset served descs stats to empty, starting a new interval <b>now</b>. */
2092 static void
2094 {
2097 }
2099 /** Stop collecting served descs stats, so that rep_hist_desc_stats_init() is
2100 * safe to be called again. */
2101 void
2103 {
2108 }
2110 /** Helper for rep_hist_desc_stats_write(). Return a newly allocated string
2111 * containing the served desc statistics until now, or NULL if we're not
2112 * collecting served desc stats. Caller must ensure that now is not before
2113 * start_of_served_descs_stats_interval. */
2116 {
2141 }
2148 }
2153 "served-descs-stats-end %s (%d s) total=%lu unique=%u "
2155 t,
2157 total_descriptor_downloads,
2161 }
2163 /** If WRITE_STATS_INTERVAL seconds have passed since the beginning of
2164 * the current served desc stats interval, write the stats to
2165 * $DATADIR/stats/served-desc-stats (possibly appending to an existing file)
2166 * and reset the state for the next interval. Return when we would next want
2167 * to write served desc stats or 0 if we won't want to write. */
2168 time_t
2170 {
2183 }
2190 done:
2194 }
2196 /** Called to note that we've served a given descriptor (by
2197 * digest). Increments the count of descriptors served, and the number
2198 * of times we've served this descriptor. */
2199 void
2201 {
2211 total_descriptor_downloads++;
2212 }
2214 /*** Connection statistics ***/
2216 /** Start of the current connection stats interval or 0 if we're not
2217 * collecting connection statistics. */
2220 /** Initialize connection stats. */
2221 void
2223 {
2225 }
2227 /* Count connections that we read and wrote less than these many bytes
2228 * from/to as below threshold. */
2229 #define BIDI_THRESHOLD 20480
2231 /* Count connections that we read or wrote at least this factor as many
2232 * bytes from/to than we wrote or read to/from as mostly reading or
2233 * writing. */
2234 #define BIDI_FACTOR 10
2236 /* Interval length in seconds for considering read and written bytes for
2237 * connection stats. */
2238 #define BIDI_INTERVAL 10
2240 /** Start of next BIDI_INTERVAL second interval. */
2243 /** Number of connections that we read and wrote less than BIDI_THRESHOLD
2244 * bytes from/to in BIDI_INTERVAL seconds. */
2247 /** Number of connections that we read at least BIDI_FACTOR times more
2248 * bytes from than we wrote to in BIDI_INTERVAL seconds. */
2251 /** Number of connections that we wrote at least BIDI_FACTOR times more
2252 * bytes to than we read from in BIDI_INTERVAL seconds. */
2255 /** Number of connections that we read and wrote at least BIDI_THRESHOLD
2256 * bytes from/to, but not BIDI_FACTOR times more in either direction in
2257 * BIDI_INTERVAL seconds. */
2260 /** Entry in a map from connection ID to the number of read and written
2261 * bytes on this connection in a BIDI_INTERVAL second interval. */
2269 /** Map of OR connections together with the number of read and written
2270 * bytes in the current BIDI_INTERVAL second interval. */
2274 static int
2276 {
2278 }
2280 /* DOCDOC bidi_map_ent_hash */
2281 static unsigned
2283 {
2285 }
2288 bidi_map_ent_eq)
2292 /* DOCDOC bidi_map_free */
2293 static void
2295 {
2301 }
2303 }
2305 /** Reset counters for conn statistics. */
2306 void
2308 {
2315 }
2317 /** Stop collecting connection stats in a way that we can re-start doing
2318 * so in rep_hist_conn_stats_init(). */
2319 void
2321 {
2323 }
2325 /** We read <b>num_read</b> bytes and wrote <b>num_written</b> from/to OR
2326 * connection <b>conn_id</b> in second <b>when</b>. If this is the first
2327 * observation in a new interval, sum up the last observations. Add bytes
2328 * for this connection. */
2329 void
2332 {
2335 /* Initialize */
2338 /* Sum up last period's statistics */
2344 below_threshold++;
2346 mostly_read++;
2348 mostly_written++;
2349 else
2350 both_read_and_written++;
2353 }
2359 both_read_and_written);
2360 }
2361 /* Add this connection's bytes. */
2375 }
2376 }
2377 }
2379 /** Return a newly allocated string containing the connection statistics
2380 * until <b>now</b>, or NULL if we're not collecting conn stats. Caller must
2381 * ensure start_of_conn_stats_interval is in the past. */
2384 {
2394 written,
2396 below_threshold,
2397 mostly_read,
2398 mostly_written,
2399 both_read_and_written);
2401 }
2403 /** If 24 hours have passed since the beginning of the current conn stats
2404 * period, write conn stats to $DATADIR/stats/conn-stats (possibly
2405 * overwriting an existing file) and reset counters. Return when we would
2406 * next want to write conn stats or 0 if we never want to write. */
2407 time_t
2409 {
2417 /* Generate history string. */
2420 /* Reset counters. */
2423 /* Try to write to disk. */
2426 }
2428 done:
2431 }
2433 /** Internal statistics to track how many requests of each type of
2434 * handshake we've received, and how many we've assigned to cpuworkers.
2435 * Useful for seeing trends in cpu load.
2436 * @{ */
2439 /**@}*/
2441 /** A new onionskin (using the <b>type</b> handshake) has arrived. */
2442 void
2444 {
2447 }
2449 /** We've sent an onionskin (using the <b>type</b> handshake) to a
2450 * cpuworker. */
2451 void
2453 {
2456 }
2458 /** Log our onionskin statistics since the last time we were called. */
2459 void
2461 {
2471 }
2473 /* Hidden service statistics section */
2475 /** Start of the current hidden service stats interval or 0 if we're
2476 * not collecting hidden service statistics. */
2479 /** Carries the various hidden service statistics, and any other
2480 * information needed. */
2482 /** How many relay cells have we seen as rendezvous points? */
2485 /** Set of unique public key digests we've seen this stat period
2486 * (could also be implemented as sorted smartlist). */
2490 /** Our statistics structure singleton. */
2493 /** Allocate, initialize and return an hs_stats_t structure. */
2496 {
2501 }
2503 #define hs_stats_free(val) \
2504 FREE_AND_NULL(hs_stats_t, hs_stats_free_, (val))
2506 /** Free an hs_stats_t structure. */
2507 static void
2509 {
2512 }
2516 }
2518 /** Initialize hidden service statistics. */
2519 void
2521 {
2524 }
2527 }
2529 /** Clear history of hidden service statistics and set the measurement
2530 * interval start to <b>now</b>. */
2531 static void
2533 {
2536 }
2544 }
2546 /** Stop collecting hidden service stats in a way that we can re-start
2547 * doing so in rep_hist_buffer_stats_init(). */
2548 void
2550 {
2552 }
2554 /** We saw a new HS relay cell, Count it! */
2555 void
2557 {
2560 }
2563 }
2565 /** As HSDirs, we saw another hidden service with public key
2566 * <b>pubkey</b>. Check whether we have counted it before, if not
2567 * count it now! */
2568 void
2570 {
2575 }
2577 /* Get the digest of the pubkey which will be used to detect whether
2578 we've seen this hidden service before or not. */
2580 /* This fail should not happen; key has been validated by
2581 descriptor parsing code first. */
2583 }
2585 /* Check if this is the first time we've seen this hidden
2586 service. If it is, count it as new. */
2588 pubkey_hash)) {
2591 }
2592 }
2594 /* The number of cells that are supposed to be hidden from the adversary
2595 * by adding noise from the Laplace distribution. This value, divided by
2596 * EPSILON, is Laplace parameter b. It must be greather than 0. */
2597 #define REND_CELLS_DELTA_F 2048
2598 /* Security parameter for obfuscating number of cells with a value between
2599 * ]0.0, 1.0]. Smaller values obfuscate observations more, but at the same
2600 * time make statistics less usable. */
2601 #define REND_CELLS_EPSILON 0.3
2602 /* The number of cells that are supposed to be hidden from the adversary
2603 * by rounding up to the next multiple of this number. */
2604 #define REND_CELLS_BIN_SIZE 1024
2605 /* The number of service identities that are supposed to be hidden from the
2606 * adversary by adding noise from the Laplace distribution. This value,
2607 * divided by EPSILON, is Laplace parameter b. It must be greater than 0. */
2608 #define ONIONS_SEEN_DELTA_F 8
2609 /* Security parameter for obfuscating number of service identities with a
2610 * value between ]0.0, 1.0]. Smaller values obfuscate observations more, but
2611 * at the same time make statistics less usable. */
2612 #define ONIONS_SEEN_EPSILON 0.3
2613 /* The number of service identities that are supposed to be hidden from
2614 * the adversary by rounding up to the next multiple of this number. */
2615 #define ONIONS_SEEN_BIN_SIZE 8
2617 /** Allocate and return a string containing hidden service stats that
2618 * are meant to be placed in the extra-info descriptor. */
2621 {
2627 uint64_t rounded_cells_seen
2629 REND_CELLS_BIN_SIZE);
2638 ONIONS_SEEN_BIN_SIZE);
2642 ONIONS_SEEN_EPSILON);
2654 ONIONS_SEEN_DELTA_F,
2658 }
2660 /** If 24 hours have passed since the beginning of the current HS
2661 * stats period, write buffer stats to $DATADIR/stats/hidserv-stats
2662 * (possibly overwriting an existing file) and reset counters. Return
2663 * when we would next want to write buffer stats or 0 if we never want to
2664 * write. */
2665 time_t
2667 {
2672 }
2676 }
2678 /* Generate history string. */
2681 /* Reset HS history. */
2684 /* Try to write to disk. */
2688 }
2690 done:
2693 }
2697 /** Note that we negotiated link protocol version <b>link_proto</b>, on
2698 * a connection that started here iff <b>started_here</b> is true.
2699 */
2700 void
2702 {
2707 }
2710 }
2712 /**
2713 * Update the maximum count of total pending channel padding timers
2714 * in this period.
2715 */
2716 void
2718 {
2721 }
2722 }
2724 /**
2725 * Count a cell that we sent for padding overhead statistics.
2726 *
2727 * RELAY_COMMAND_DROP and CELL_PADDING are accounted separately. Both should be
2728 * counted for PADDING_TYPE_TOTAL.
2729 */
2730 void
2732 {
2749 }
2750 }
2752 /**
2753 * Count a cell that we've received for padding overhead statistics.
2754 *
2755 * RELAY_COMMAND_DROP and CELL_PADDING are accounted separately. Both should be
2756 * counted for PADDING_TYPE_TOTAL.
2757 */
2758 void
2760 {
2777 }
2778 }
2780 /**
2781 * Reset our current padding statistics. Called once every 24 hours.
2782 */
2783 void
2785 {
2787 }
2789 /**
2790 * Copy our current cell counts into a structure for listing in our
2791 * extra-info descriptor. Also perform appropriate rounding and redaction.
2792 *
2793 * This function is called once every 24 hours.
2794 */
2795 #define MIN_CELL_COUNTS_TO_PUBLISH 1
2796 #define ROUND_CELL_COUNTS_TO 10000
2797 void
2799 {
2806 }
2809 #define ROUND_AND_SET_COUNT(x) (x) = round_uint64_to_next_multiple_of((x), \
2810 ROUND_CELL_COUNTS_TO)
2821 #undef ROUND_AND_SET_COUNT
2822 }
2824 /**
2825 * Returns an allocated string for extra-info documents for publishing
2826 * padding statistics from the last 24 hour interval.
2827 */
2830 {
2836 }
2839 " bin-size=%"PRIu64
2840 " write-drop=%"PRIu64
2841 " write-pad=%"PRIu64
2842 " write-total=%"PRIu64
2843 " read-drop=%"PRIu64
2844 " read-pad=%"PRIu64
2845 " read-total=%"PRIu64
2846 " enabled-read-pad=%"PRIu64
2847 " enabled-read-total=%"PRIu64
2848 " enabled-write-pad=%"PRIu64
2849 " enabled-write-total=%"PRIu64
2850 " max-chanpad-timers=%"PRIu64
2853 REPHIST_CELL_PADDING_COUNTS_INTERVAL,
2866 );
2869 }
2871 /** Log a heartbeat message explaining how many connections of each link
2872 * protocol version we have used.
2873 */
2874 void
2876 {
2878 "Since startup, we have initiated "
2895 }
2897 /** Free all storage held by the OR/link history caches, by the
2898 * bandwidth history arrays, by the port history, or by statistics . */
2899 void
2901 {
2928 }
2934 }