| blob | fe0997c891ae69f55931da25e8a71671aa3d9e22 |
1 /* Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
2 * Copyright (c) 2007-2015, The Tor Project, Inc. */
3 /* See LICENSE for licensing information */
5 /**
6 * \file rephist.c
7 * \brief Basic history and "reputation" functionality to remember
8 * which servers have worked in the past, how much bandwidth we've
9 * been using, which ports we tend to want, and so on; further,
10 * exit port statistics, cell statistics, and connection statistics.
11 **/
27 /** Total number of bytes currently allocated in fields used by rephist.c. */
29 /** Number of or_history_t objects currently allocated. */
32 /** If the total weighted run count of all runs for a router ever falls
33 * below this amount, the router can be treated as having 0 MTBF. */
34 #define STABILITY_EPSILON 0.0001
35 /** Value by which to discount all old intervals for MTBF purposes. This
36 * is compounded every STABILITY_INTERVAL. */
37 #define STABILITY_ALPHA 0.95
38 /** Interval at which to discount all old intervals for MTBF purposes. */
39 #define STABILITY_INTERVAL (12*60*60)
40 /* (This combination of ALPHA, INTERVAL, and EPSILON makes it so that an
41 * interval that just ended counts twice as much as one that ended a week ago,
42 * 20X as much as one that ended a month ago, and routers that have had no
43 * uptime data for about half a year will get forgotten.) */
45 /** History of an OR-\>OR link. */
47 /** When did we start tracking this list? */
49 /** When did we most recently note a change to this link */
51 /** How many times did extending from OR1 to OR2 succeed? */
53 /** How many times did extending from OR1 to OR2 fail? */
57 /** History of an OR. */
59 /** When did we start tracking this OR? */
61 /** When did we most recently note a change to this OR? */
63 /** How many times did we successfully connect? */
65 /** How many times did we try to connect and fail?*/
67 /** How many seconds have we been connected to this OR before
68 * 'up_since'? */
70 /** How many seconds have we been unable to connect to this OR before
71 * 'down_since'? */
73 /** If nonzero, we have been connected since this time. */
75 /** If nonzero, we have been unable to connect since this time. */
78 /** The address at which we most recently connected to this OR
79 * successfully. */
80 tor_addr_t last_reached_addr;
82 /** The port at which we most recently connected to this OR successfully */
85 /* === For MTBF tracking: */
86 /** Weighted sum total of all times that this router has been online.
87 */
89 /** If the router is now online (according to stability-checking rules),
90 * when did it come online? */
92 /** Sum of weights for runs in weighted_run_length. */
94 /* === For fractional uptime tracking: */
99 /** Map from hex OR2 identity digest to a link_history_t for the link
100 * from this OR to OR2. */
104 /** When did we last multiply all routers' weighted_run_length and
105 * total_run_weights by STABILITY_ALPHA? */
108 /** */
111 /** Map from hex OR identity digest to or_history_t. */
114 /** Return the or_history_t for the OR with identity digest <b>id</b>,
115 * creating it if necessary. */
118 {
128 rephist_total_num++;
133 }
135 }
137 /** Return the link_history_t for the link from the first named OR to
138 * the second, creating it if necessary. (ORs are identified by
139 * identity digest.)
140 */
143 {
157 }
159 }
161 /** Helper: free storage held by a single link history entry. */
162 static void
164 {
167 }
169 /** Helper: free storage held by a single OR history entry. */
170 static void
172 {
176 rephist_total_num--;
178 }
180 /** Update an or_history_t object <b>hist</b> so that its uptime/downtime
181 * count is up-to-date as of <b>when</b>.
182 */
183 static void
185 {
194 }
195 }
197 /** Initialize the static data structures for tracking history. */
198 void
200 {
204 }
206 /** Helper: note that we are no longer connected to the router with history
207 * <b>hist</b>. If <b>failed</b>, the connection failed; otherwise, it was
208 * closed correctly. */
209 static void
211 {
215 }
218 }
219 }
221 /** Helper: note that we are connected to the router with history
222 * <b>hist</b>. */
223 static void
225 {
229 }
232 }
233 }
235 /** Remember that an attempt to connect to the OR with identity digest
236 * <b>id</b> failed at <b>when</b>.
237 */
238 void
240 {
248 }
250 /** Remember that an attempt to connect to the OR with identity digest
251 * <b>id</b> succeeded at <b>when</b>.
252 */
253 void
255 {
263 }
265 /** Remember that we intentionally closed our connection to the OR
266 * with identity digest <b>id</b> at <b>when</b>.
267 */
268 void
270 {
277 }
279 /** Remember that our connection to the OR with identity digest
280 * <b>id</b> had an error and stopped working at <b>when</b>.
281 */
282 void
284 {
287 /* If conn has no identity, it didn't complete its handshake, or something
288 * went wrong. Ignore it.
289 */
291 }
297 }
299 /** We have just decided that this router with identity digest <b>id</b> is
300 * reachable, meaning we will give it a "Running" flag for the next while. */
301 void
304 {
323 }
337 /* If we're reachable, but the address changed, treat this as some
338 * downtime. */
345 /* on average, a descriptor addr change takes .5 intervals to make it
346 * into a consensus, and half a liveness period to make it to
347 * clients. */
349 }
352 "to have changed since the last time it was reachable. I'm "
362 else
365 }
370 }
372 /** We have just decided that this router is unreachable, meaning
373 * we are taking away its "Running" flag. */
374 void
376 {
385 /*XXXX We could treat failed connections differently from failed
386 * connect attempts. */
394 #define SUBTRACT_CLAMPED(var, penalty) \
395 do { (var) = (var) < (penalty) ? 0 : (var) - (penalty); } while (0)
403 }
409 }
422 }
423 }
424 }
426 /** Mark a router with ID <b>id</b> as non-Running, and retroactively declare
427 * that it has never been running: give it no stability and no WFU. */
428 void
430 {
439 }
441 /** Helper: Discount all old MTBF data, if it is time to do so. Return
442 * the time at which we should next discount MTBF data. */
443 time_t
445 {
459 /* Okay, we should downrate the data. By how much? */
463 }
466 alpha);
468 /* Multiply every w_r_l, t_r_w pair by alpha. */
482 }
485 }
487 /** Helper: Return the weighted MTBF of the router with history <b>hist</b>. */
488 static double
490 {
495 /* We're currently in a run. Let total and total_weights hold the values
496 * they would hold if the current run were to end now. */
499 }
501 /* Round down to zero, and avoid divide-by-zero. */
503 }
506 }
508 /** Return the total amount of time we've been observing, with each run of
509 * time downrated by the appropriate factor. */
510 static long
512 {
518 }
520 }
522 /** Helper: Return the weighted percent-of-time-online of the router with
523 * history <b>hist</b>. */
524 static double
526 {
536 }
539 /* Avoid calling anybody's uptime infinity (which should be impossible if
540 * the code is working), or NaN (which can happen for any router we haven't
541 * observed up or down yet). */
543 }
546 }
548 /** Return how long the router whose identity digest is <b>id</b> has
549 * been reachable. Return 0 if the router is unknown or currently deemed
550 * unreachable. */
551 long
553 {
560 }
562 /** Return an estimated MTBF for the router whose identity digest is
563 * <b>id</b>. Return 0 if the router is unknown. */
564 double
566 {
572 }
574 /** Return an estimated percent-of-time-online for the router whose identity
575 * digest is <b>id</b>. Return 0 if the router is unknown. */
576 double
578 {
584 }
586 /** Return a number representing how long we've known about the router whose
587 * digest is <b>id</b>. Return 0 if the router is unknown.
588 *
589 * Be careful: this measure increases monotonically as we know the router for
590 * longer and longer, but it doesn't increase linearly.
591 */
592 long
594 {
600 }
602 /** Return true if we've been measuring MTBFs for long enough to
603 * pronounce on Stability. */
604 int
606 {
607 /* XXXX023 This doesn't do so well when we change our opinion
608 * as to whether we're tracking router stability. */
610 }
612 /** Remember that we successfully extended from the OR with identity
613 * digest <b>from_id</b> to the OR with identity digest
614 * <b>to_name</b>.
615 */
616 void
618 {
620 /* log_fn(LOG_WARN, "EXTEND SUCCEEDED: %s->%s",from_name,to_name); */
626 }
628 /** Remember that we tried to extend from the OR with identity digest
629 * <b>from_id</b> to the OR with identity digest <b>to_name</b>, but
630 * failed.
631 */
632 void
634 {
636 /* log_fn(LOG_WARN, "EXTEND FAILED: %s->%s",from_name,to_name); */
642 }
644 /** Log all the reliability data we have remembered, with the chosen
645 * severity.
646 */
647 void
649 {
679 else
691 }
693 "OR %s [%s]: %ld/%ld good connections; uptime %ld/%ld sec (%.2f%%); "
706 lhist_it)) {
710 else
717 name2,
718 hexdigest2,
723 else
725 }
727 }
728 }
729 }
731 /** Remove history info for routers/links that haven't changed since
732 * <b>before</b>.
733 */
734 void
736 {
757 }
764 lhist_it);
768 }
770 }
772 }
773 }
775 /** Write MTBF data to disk. Return 0 on success, negative on failure.
776 *
777 * If <b>missing_means_down</b>, then if we're about to write an entry
778 * that is still considered up but isn't in our routerlist, consider it
779 * to be down. */
780 int
782 {
792 {
799 }
801 /* File format is:
802 * FormatLine *KeywordLine Data
803 *
804 * FormatLine = "format 1" NL
805 * KeywordLine = Keyword SP Arguments NL
806 * Data = "data" NL *RouterMTBFLine "." NL
807 * RouterMTBFLine = Fingerprint SP WeightedRunLen SP
808 * TotalRunWeights [SP S=StartRunTime] NL
809 */
810 #define PUT(s) STMT_BEGIN if (fputs((s),f)<0) goto err; STMT_END
811 #define PRINTF(args) STMT_BEGIN if (fprintf args <0) goto err; STMT_END
821 }
825 }
829 /* XXX Nick: now bridge auths record this for all routers too.
830 * Should we make them record it only for bridge routers? -RD
831 * Not for 0.2.0. -NM */
844 /* We think this relay is running, but it's not listed in our
845 * routerlist. Somehow it fell out without telling us it went
846 * down. Complain and also correct it. */
848 "Relay '%s' is listed as up in rephist, but it's not in "
851 }
857 }
865 }
869 }
873 #undef PUT
874 #undef PRINTF
877 err:
880 }
882 /** Helper: return the first j >= i such that !strcmpstart(sl[j], prefix) and
883 * such that no line sl[k] with i <= k < j starts with "R ". Return -1 if no
884 * such line exists. */
885 static int
887 {
894 }
896 }
898 /** How many bad times has parse_possibly_bad_iso_time() parsed? */
900 /** Parse the ISO-formatted time in <b>s</b> into *<b>time_out</b>, but
901 * round any pre-1970 date to Jan 1, 1970. */
902 static int
904 {
916 }
918 /** We've read a time <b>t</b> from a file stored at <b>stored_at</b>, which
919 * says we started measuring at <b>started_measuring</b>. Return a new number
920 * that's about as much before <b>now</b> as <b>t</b> was before
921 * <b>stored_at</b>.
922 */
925 {
938 }
939 }
941 /** Load MTBF data from disk. Returns 0 on success or recoverable error, -1
942 * on failure. */
943 int
945 {
946 /* XXXX won't handle being called while history is already populated. */
954 {
963 }
965 {
972 }
973 }
978 }
987 }
992 }
997 }
998 }
1007 }
1040 }
1043 // format == 2.
1059 }
1060 }
1070 }
1071 }
1076 }
1080 }
1091 }
1093 tracked_since);
1099 }
1105 }
1106 }
1108 tracked_since);
1111 }
1122 err:
1124 done:
1128 }
1130 /** For how many seconds do we keep track of individual per-second bandwidth
1131 * totals? */
1132 #define NUM_SECS_ROLLING_MEASURE 10
1133 /** How large are the intervals for which we track and report bandwidth use? */
1134 #define NUM_SECS_BW_SUM_INTERVAL (4*60*60)
1135 /** How far in the past do we remember and publish bandwidth use? */
1136 #define NUM_SECS_BW_SUM_IS_VALID (24*60*60)
1137 /** How many bandwidth usage intervals do we remember? (derived) */
1138 #define NUM_TOTALS (NUM_SECS_BW_SUM_IS_VALID/NUM_SECS_BW_SUM_INTERVAL)
1140 /** Structure to track bandwidth use, and remember the maxima for a given
1141 * time period.
1142 */
1144 /** Observation array: Total number of bytes transferred in each of the last
1145 * NUM_SECS_ROLLING_MEASURE seconds. This is used as a circular array. */
1150 * obs[cur_obs_idx] */
1152 * current period. */
1154 * period. */
1156 /** When does the next period begin? */
1158 /** Where in 'maxima' should the maximum bandwidth usage for the current
1159 * period be stored? */
1161 /** How many values in maxima/totals have been set ever? */
1163 /** Circular array of the maximum
1164 * bandwidth-per-NUM_SECS_ROLLING_MEASURE usage for the last
1165 * NUM_TOTALS periods */
1167 /** Circular array of the total bandwidth usage for the last NUM_TOTALS
1168 * periods */
1172 /** Shift the current period of b forward by one. */
1173 static void
1175 {
1176 /* Store total from current period. */
1178 /* Store maximum from current period. */
1180 /* Advance next_period and next_max_idx */
1186 /* Reset max_total. */
1188 /* Reset total_in_period. */
1190 }
1192 /** Shift the current observation time of <b>b</b> forward by one second. */
1195 {
1199 /* Calculate the total bandwidth for the last NUM_SECS_ROLLING_MEASURE
1200 * seconds; adjust max_total as needed.*/
1215 }
1217 /** Add <b>n</b> bytes to the number of bytes in <b>b</b> for second
1218 * <b>when</b>. */
1221 {
1225 /* If we're currently adding observations for an earlier second than
1226 * 'when', advance b->cur_obs_time and b->cur_obs_idx by an
1227 * appropriate number of seconds, and do all the other housekeeping. */
1229 /* Doing this one second at a time is potentially inefficient, if we start
1230 with a state file that is very old. Fortunately, it doesn't seem to
1231 show up in profiles, so we can just ignore it for now. */
1233 }
1237 }
1239 /** Allocate, initialize, and return a new bw_array. */
1242 {
1251 }
1253 /** Recent history of bandwidth observations for read operations. */
1255 /** Recent history of bandwidth observations for write operations. */
1257 /** Recent history of bandwidth observations for read operations for the
1258 directory protocol. */
1260 /** Recent history of bandwidth observations for write operations for the
1261 directory protocol. */
1264 /** Set up [dir-]read_array and [dir-]write_array, freeing them if they
1265 * already exist. */
1266 static void
1268 {
1277 }
1279 /** Remember that we read <b>num_bytes</b> bytes in second <b>when</b>.
1280 *
1281 * Add num_bytes to the current running total for <b>when</b>.
1282 *
1283 * <b>when</b> can go back to time, but it's safe to ignore calls
1284 * earlier than the latest <b>when</b> you've heard of.
1285 */
1286 void
1288 {
1289 /* Maybe a circular array for recent seconds, and step to a new point
1290 * every time a new second shows up. Or simpler is to just to have
1291 * a normal array and push down each item every second; it's short.
1292 */
1293 /* When a new second has rolled over, compute the sum of the bytes we've
1294 * seen over when-1 to when-1-NUM_SECS_ROLLING_MEASURE, and stick it
1295 * somewhere. See rep_hist_bandwidth_assess() below.
1296 */
1298 }
1300 /** Remember that we wrote <b>num_bytes</b> bytes in second <b>when</b>.
1301 * (like rep_hist_note_bytes_written() above)
1302 */
1303 void
1305 {
1306 /* if we're smart, we can make this func and the one above share code */
1308 }
1310 /** Remember that we wrote <b>num_bytes</b> directory bytes in second
1311 * <b>when</b>. (like rep_hist_note_bytes_written() above)
1312 */
1313 void
1315 {
1317 }
1319 /** Remember that we read <b>num_bytes</b> directory bytes in second
1320 * <b>when</b>. (like rep_hist_note_bytes_written() above)
1321 */
1322 void
1324 {
1326 }
1328 /** Helper: Return the largest value in b->maxima. (This is equal to the
1329 * most bandwidth used in any NUM_SECS_ROLLING_MEASURE period for the last
1330 * NUM_SECS_BW_SUM_IS_VALID seconds.)
1331 */
1332 static uint64_t
1334 {
1341 }
1343 }
1345 /** Find the largest sums in the past NUM_SECS_BW_SUM_IS_VALID (roughly)
1346 * seconds. Find one sum for reading and one for writing. They don't have
1347 * to be at the same time.
1348 *
1349 * Return the smaller of these sums, divided by NUM_SECS_ROLLING_MEASURE.
1350 */
1351 int
1353 {
1359 else
1361 }
1363 /** Print the bandwidth history of b (either [dir-]read_array or
1364 * [dir-]write_array) into the buffer pointed to by buf. The format is
1365 * simply comma separated numbers, from oldest to newest.
1366 *
1367 * It returns the number of bytes written.
1368 */
1369 static size_t
1371 {
1378 /* We haven't been through the circular array yet; time starts at i=0.*/
1381 /* We've been around the array at least once. The next i to be
1382 overwritten is the oldest. */
1384 }
1387 /* We don't want to report that we used more bandwidth than the max we're
1388 * willing to relay; otherwise everybody will know how much traffic
1389 * we used ourself. */
1393 }
1400 /* Round the bandwidth used down to the nearest 1k. */
1407 else
1410 }
1412 }
1414 /** Allocate and return lines for representing this server's bandwidth
1415 * history in its descriptor. We publish these lines in our extra-info
1416 * descriptor.
1417 */
1420 {
1428 /* [dirreq-](read|write)-history yyyy-mm-dd HH:MM:SS (n s) n,n,n... */
1429 /* The n,n,n part above. Largest representation of a uint64_t is 20 chars
1430 * long, plus the comma. */
1431 #define MAX_HIST_VALUE_LEN (21*NUM_TOTALS)
1455 }
1458 /* If we don't have anything to write, skip to the next entry. */
1469 }
1471 }
1473 /** Write a single bw_array_t into the Values, Ends, Interval, and Maximum
1474 * entries of an or_state_t. Done before writing out a new state file. */
1475 static void
1482 {
1489 }
1493 }
1495 /* Clients don't need to store bandwidth history persistently;
1496 * force these values to the defaults. */
1497 /* FFFF we should pull the default out of config.c's state table,
1498 * so we don't have two defaults. */
1503 }
1509 }
1515 /* Set i to first position in circular array */
1525 }
1531 }
1533 /** Update <b>state</b> with the newest bandwidth history. Done before
1534 * writing out a new state file. */
1535 void
1537 {
1538 #define UPDATE(arrname,st) \
1539 rep_hist_update_bwhist_state_section(state,\
1540 (arrname),\
1541 &state->BWHistory ## st ## Values, \
1542 &state->BWHistory ## st ## Maxima, \
1543 &state->BWHistory ## st ## Ends, \
1544 &state->BWHistory ## st ## Interval)
1553 }
1554 #undef UPDATE
1555 }
1557 /** Load a single bw_array_t from its Values, Ends, Maxima, and Interval
1558 * entries in an or_state_t. Done while reading the state file. */
1559 static int
1565 {
1589 /* No maxima known; guess average rate to be conservative. */
1591 }
1595 }
1599 maxstr);
1600 }
1606 /* Calculate the average per second. This is the best we can do
1607 * because our state file doesn't have per-second resolution. */
1611 /* This is potentially inefficient, but since we don't do it very
1612 * often it should be ok. */
1616 }
1618 /* This will result in some fairly choppy history if s_interval
1619 * is not the same as NUM_SECS_BW_SUM_INTERVAL. XXXX */
1621 }
1623 }
1625 /* Clean up maxima and observed */
1628 }
1632 }
1634 /** Set bandwidth history from the state file we just loaded. */
1635 int
1637 {
1640 /* Assert they already have been malloced */
1644 #define LOAD(arrname,st) \
1645 if (rep_hist_load_bwhist_state_section( \
1646 (arrname), \
1647 state->BWHistory ## st ## Values, \
1648 state->BWHistory ## st ## Maxima, \
1649 state->BWHistory ## st ## Ends, \
1650 state->BWHistory ## st ## Interval)<0) \
1651 all_ok = 0
1658 #undef LOAD
1661 /* and create fresh arrays */
1664 }
1666 }
1668 /*********************************************************************/
1670 /** A single predicted port: used to remember which ports we've made
1671 * connections to, so that we can try to keep making circuits that can handle
1672 * those ports. */
1674 /** The port we connected to */
1676 /** The time at which we last used it */
1680 /** A list of port numbers that have been used recently. */
1683 /** We just got an application request for a connection with
1684 * port <b>port</b>. Remember it for the future, so we can keep
1685 * some circuits open that will exit to this port.
1686 */
1687 static void
1689 {
1695 }
1697 /** Initialize whatever memory and structs are needed for predicting
1698 * which ports will be used. Also seed it with port 80, so we'll build
1699 * circuits on start-up.
1700 */
1701 static void
1703 {
1706 }
1708 /** Free whatever memory is needed for predicting which ports will
1709 * be used.
1710 */
1711 static void
1713 {
1714 rephist_total_alloc -=
1719 }
1721 /** Remember that <b>port</b> has been asked for as of time <b>now</b>.
1722 * This is used for predicting what sorts of streams we'll make in the
1723 * future and making exit circuits to anticipate that.
1724 */
1725 void
1727 {
1737 }
1739 /* it's not there yet; we need to add it */
1741 }
1743 /** Return a newly allocated pointer to a list of uint16_t * for ports that
1744 * are likely to be asked for in the near future.
1745 */
1746 smartlist_t *
1748 {
1754 /* clean out obsolete entries */
1764 }
1767 }
1769 /**
1770 * Take a list of uint16_t *, and remove every port in the list from the
1771 * current list of predicted ports.
1772 */
1773 void
1775 {
1776 /* Let's do this on O(N), not O(N^2). */
1784 }
1787 }
1789 /** The user asked us to do a resolve. Rather than keeping track of
1790 * timings and such of resolves, we fake it for now by treating
1791 * it the same way as a connection to port 80. This way we will continue
1792 * to have circuits lying around if the user only uses Tor for resolves.
1793 */
1794 void
1796 {
1798 }
1800 /** The last time at which we needed an internal circ. */
1802 /** The last time we needed an internal circ with good uptime. */
1804 /** The last time we needed an internal circ with good capacity. */
1807 /** Remember that we used an internal circ at time <b>now</b>. */
1808 void
1810 {
1816 }
1818 /** Return 1 if we've used an internal circ recently; else return 0. */
1819 int
1822 {
1830 }
1835 // Always predict that we need capacity.
1838 }
1840 /** Any ports used lately? These are pre-seeded if we just started
1841 * up or if we're running a hidden service. */
1842 int
1844 {
1850 }
1852 /** Return 1 if we have no need for circuits currently, else return 0. */
1853 int
1855 {
1859 /* see if we'll still need to build testing circuits */
1867 }
1869 /** Structure to track how many times we've done each public key operation. */
1871 /** How many directory objects have we signed? */
1873 /** How many routerdescs have we signed? */
1875 /** How many directory objects have we verified? */
1877 /** How many routerdescs have we verified */
1879 /** How many onionskins have we encrypted to build circuits? */
1881 /** How many onionskins have we decrypted to do circuit build requests? */
1883 /** How many times have we done the TLS handshake as a client? */
1885 /** How many times have we done the TLS handshake as a server? */
1887 /** How many PK operations have we done as a hidden service client? */
1889 /** How many PK operations have we done as a hidden service midpoint? */
1891 /** How many PK operations have we done as a hidden service provider? */
1895 /** Increment the count of the number of times we've done <b>operation</b>. */
1896 void
1898 {
1900 {
1936 }
1937 }
1939 /** Log the number of times we've done each public/private-key operation. */
1940 void
1942 {
1944 "PK operations: %lu directory objects signed, "
1945 "%lu directory objects verified, "
1946 "%lu routerdescs signed, "
1947 "%lu routerdescs verified, "
1948 "%lu onionskins encrypted, "
1949 "%lu onionskins decrypted, "
1950 "%lu client-side TLS handshakes, "
1951 "%lu server-side TLS handshakes, "
1952 "%lu rendezvous client operations, "
1953 "%lu rendezvous middle operations, "
1966 }
1968 /*** Exit port statistics ***/
1970 /* Some constants */
1971 /** To what multiple should byte numbers be rounded up? */
1972 #define EXIT_STATS_ROUND_UP_BYTES 1024
1973 /** To what multiple should stream counts be rounded up? */
1974 #define EXIT_STATS_ROUND_UP_STREAMS 4
1975 /** Number of TCP ports */
1976 #define EXIT_STATS_NUM_PORTS 65536
1977 /** Top n ports that will be included in exit stats. */
1978 #define EXIT_STATS_TOP_N_PORTS 10
1980 /* The following data structures are arrays and no fancy smartlists or maps,
1981 * so that all write operations can be done in constant time. This comes at
1982 * the price of some memory (1.25 MB) and linear complexity when writing
1983 * stats for measuring relays. */
1984 /** Number of bytes read in current period by exit port */
1986 /** Number of bytes written in current period by exit port */
1988 /** Number of streams opened in current period by exit port */
1991 /** Start time of exit stats or 0 if we're not collecting exit stats. */
1994 /** Initialize exit port stats. */
1995 void
1997 {
2002 }
2004 /** Reset counters for exit port statistics. */
2005 void
2007 {
2012 }
2014 /** Stop collecting exit port stats in a way that we can re-start doing
2015 * so in rep_hist_exit_stats_init(). */
2016 void
2018 {
2023 }
2025 /** Helper for qsort: compare two ints. Does not handle overflow properly,
2026 * but works fine for sorting an array of port numbers, which is what we use
2027 * it for. */
2028 static int
2030 {
2032 }
2034 /** Return a newly allocated string containing the exit port statistics
2035 * until <b>now</b>, or NULL if we're not collecting exit stats. Caller
2036 * must ensure start_of_exit_stats_interval is in the past. */
2039 {
2056 /* Go through all ports to find the n ports that saw most written and
2057 * read bytes.
2058 *
2059 * Invariant: at the end of the loop for iteration i,
2060 * total_read is the sum of all exit_bytes_read[0..i]
2061 * total_written is the sum of all exit_bytes_written[0..i]
2062 * total_stream is the sum of all exit_streams[0..i]
2063 *
2064 * top_elements = MAX(EXIT_STATS_TOP_N_PORTS,
2065 * #{j | 0 <= j <= i && volume(i) > 0})
2066 *
2067 * For all 0 <= j < top_elements,
2068 * top_bytes[j] > 0
2069 * 0 <= top_ports[j] <= 65535
2070 * top_bytes[j] = volume(top_ports[j])
2071 *
2072 * There is no j in 0..i and k in 0..top_elements such that:
2073 * volume(j) > top_bytes[k] AND j is not in top_ports[0..top_elements]
2074 *
2075 * There is no j!=cur_min_idx in 0..top_elements such that:
2076 * top_bytes[j] < top_bytes[cur_min_idx]
2077 *
2078 * where volume(x) == exit_bytes_read[x]+exit_bytes_written[x]
2079 *
2080 * Worst case: O(EXIT_STATS_NUM_PORTS * EXIT_STATS_TOP_N_PORTS)
2081 */
2089 }
2098 }
2103 }
2104 }
2105 }
2107 /* Add observations of top ports to smartlists. */
2114 /* Sort the ports; this puts them out of sync with top_bytes, but we
2115 * won't be using top_bytes again anyway */
2122 EXIT_STATS_ROUND_UP_BYTES);
2127 }
2131 EXIT_STATS_ROUND_UP_BYTES);
2136 }
2140 EXIT_STATS_ROUND_UP_STREAMS);
2143 }
2144 }
2146 /* Add observations of other ports in a single element. */
2148 EXIT_STATS_ROUND_UP_BYTES);
2153 EXIT_STATS_ROUND_UP_BYTES);
2158 EXIT_STATS_ROUND_UP_STREAMS);
2161 /* Join all observations in single strings. */
2172 /* Put everything together. */
2179 written_string,
2180 read_string,
2181 streams_string);
2186 }
2188 /** If 24 hours have passed since the beginning of the current exit port
2189 * stats period, write exit stats to $DATADIR/stats/exit-stats (possibly
2190 * overwriting an existing file) and reset counters. Return when we would
2191 * next want to write exit stats or 0 if we never want to write. */
2192 time_t
2194 {
2204 /* Generate history string. */
2207 /* Reset counters. */
2210 /* Try to write to disk. */
2213 }
2215 done:
2218 }
2220 /** Note that we wrote <b>num_written</b> bytes and read <b>num_read</b>
2221 * bytes to/from an exit connection to <b>port</b>. */
2222 void
2225 {
2233 }
2235 /** Note that we opened an exit stream to <b>port</b>. */
2236 void
2238 {
2243 }
2245 /*** cell statistics ***/
2247 /** Start of the current buffer stats interval or 0 if we're not
2248 * collecting buffer statistics. */
2251 /** Initialize buffer stats. */
2252 void
2254 {
2256 }
2258 /** Statistics from a single circuit. Collected when the circuit closes, or
2259 * when we flush statistics to disk. */
2261 /** Average number of cells in the circuit's queue */
2263 /** Average time a cell waits in the queue. */
2265 /** Total number of cells sent over this circuit */
2269 /** List of circ_buffer_stats_t. */
2272 /** Remember cell statistics <b>mean_num_cells_in_queue</b>,
2273 * <b>mean_time_cells_in_queue</b>, and <b>processed_cells</b> of a
2274 * circuit. */
2275 void
2278 {
2289 }
2291 /** Remember cell statistics for circuit <b>circ</b> at time
2292 * <b>end_of_interval</b> and reset cell counters in case the circuit
2293 * remains open in the next measurement interval. */
2294 void
2296 {
2308 start_of_buffer_stats_interval) ?
2310 start_of_buffer_stats_interval;
2315 /* 1000.0 for s -> ms; 2.0 because of app-ward and exit-ward queues */
2318 mean_time_cells_in_queue =
2324 mean_time_cells_in_queue,
2325 processed_cells);
2326 }
2328 /** Sorting helper: return -1, 1, or 0 based on comparison of two
2329 * circ_buffer_stats_t */
2330 static int
2332 {
2338 else
2340 }
2342 /** Stop collecting cell stats in a way that we can re-start doing so in
2343 * rep_hist_buffer_stats_init(). */
2344 void
2346 {
2348 }
2350 /** Clear history of circuit statistics and set the measurement interval
2351 * start to <b>now</b>. */
2352 void
2354 {
2361 }
2363 /** Return a newly allocated string containing the buffer statistics until
2364 * <b>now</b>, or NULL if we're not collecting buffer stats. Caller must
2365 * ensure start_of_buffer_stats_interval is in the past. */
2368 {
2369 #define SHARES 10
2386 /* Calculate deciles if we saw at least one circuit. */
2396 buffer_stats_compare_entries_);
2400 {
2406 }
2408 }
2410 /* Write deciles to strings. */
2419 }
2424 }
2429 }
2431 /* Join all observations in single strings. */
2445 /* Put everything together. */
2453 processed_cells_string,
2454 queued_cells_string,
2455 time_in_queue_string,
2461 #undef SHARES
2462 }
2464 /** If 24 hours have passed since the beginning of the current buffer
2465 * stats period, write buffer stats to $DATADIR/stats/buffer-stats
2466 * (possibly overwriting an existing file) and reset counters. Return
2467 * when we would next want to write buffer stats or 0 if we never want to
2468 * write. */
2469 time_t
2471 {
2479 /* Add open circuits to the history. */
2482 }
2485 /* Generate history string. */
2488 /* Reset both buffer history and counters of open circuits. */
2491 /* Try to write to disk. */
2494 }
2496 done:
2499 }
2501 /*** Descriptor serving statistics ***/
2503 /** Digestmap to track which descriptors were downloaded this stats
2504 * collection interval. It maps descriptor digest to pointers to 1,
2505 * effectively turning this into a list. */
2508 /** Number of how many descriptors were downloaded in total during this
2509 * interval. */
2512 /** Start time of served descs stats or 0 if we're not collecting those. */
2515 /** Initialize descriptor stats. */
2516 void
2518 {
2523 }
2527 }
2529 /** Reset served descs stats to empty, starting a new interval <b>now</b>. */
2530 static void
2532 {
2535 }
2537 /** Stop collecting served descs stats, so that rep_hist_desc_stats_init() is
2538 * safe to be called again. */
2539 void
2541 {
2546 }
2548 /** Helper for rep_hist_desc_stats_write(). Return a newly allocated string
2549 * containing the served desc statistics until now, or NULL if we're not
2550 * collecting served desc stats. Caller must ensure that now is not before
2551 * start_of_served_descs_stats_interval. */
2554 {
2579 }
2586 }
2591 "served-descs-stats-end %s (%d s) total=%lu unique=%u "
2593 t,
2595 total_descriptor_downloads,
2599 }
2601 /** If WRITE_STATS_INTERVAL seconds have passed since the beginning of
2602 * the current served desc stats interval, write the stats to
2603 * $DATADIR/stats/served-desc-stats (possibly appending to an existing file)
2604 * and reset the state for the next interval. Return when we would next want
2605 * to write served desc stats or 0 if we won't want to write. */
2606 time_t
2608 {
2621 }
2628 done:
2632 }
2634 /* DOCDOC rep_hist_note_desc_served */
2635 void
2637 {
2647 total_descriptor_downloads++;
2648 }
2650 /*** Connection statistics ***/
2652 /** Start of the current connection stats interval or 0 if we're not
2653 * collecting connection statistics. */
2656 /** Initialize connection stats. */
2657 void
2659 {
2661 }
2663 /* Count connections that we read and wrote less than these many bytes
2664 * from/to as below threshold. */
2665 #define BIDI_THRESHOLD 20480
2667 /* Count connections that we read or wrote at least this factor as many
2668 * bytes from/to than we wrote or read to/from as mostly reading or
2669 * writing. */
2670 #define BIDI_FACTOR 10
2672 /* Interval length in seconds for considering read and written bytes for
2673 * connection stats. */
2674 #define BIDI_INTERVAL 10
2676 /** Start of next BIDI_INTERVAL second interval. */
2679 /** Number of connections that we read and wrote less than BIDI_THRESHOLD
2680 * bytes from/to in BIDI_INTERVAL seconds. */
2683 /** Number of connections that we read at least BIDI_FACTOR times more
2684 * bytes from than we wrote to in BIDI_INTERVAL seconds. */
2687 /** Number of connections that we wrote at least BIDI_FACTOR times more
2688 * bytes to than we read from in BIDI_INTERVAL seconds. */
2691 /** Number of connections that we read and wrote at least BIDI_THRESHOLD
2692 * bytes from/to, but not BIDI_FACTOR times more in either direction in
2693 * BIDI_INTERVAL seconds. */
2696 /** Entry in a map from connection ID to the number of read and written
2697 * bytes on this connection in a BIDI_INTERVAL second interval. */
2705 /** Map of OR connections together with the number of read and written
2706 * bytes in the current BIDI_INTERVAL second interval. */
2710 static int
2712 {
2714 }
2716 /* DOCDOC bidi_map_ent_hash */
2717 static unsigned
2719 {
2721 }
2724 bidi_map_ent_eq);
2728 /* DOCDOC bidi_map_free */
2729 static void
2731 {
2737 }
2739 }
2741 /** Reset counters for conn statistics. */
2742 void
2744 {
2751 }
2753 /** Stop collecting connection stats in a way that we can re-start doing
2754 * so in rep_hist_conn_stats_init(). */
2755 void
2757 {
2759 }
2761 /** We read <b>num_read</b> bytes and wrote <b>num_written</b> from/to OR
2762 * connection <b>conn_id</b> in second <b>when</b>. If this is the first
2763 * observation in a new interval, sum up the last observations. Add bytes
2764 * for this connection. */
2765 void
2768 {
2771 /* Initialize */
2774 /* Sum up last period's statistics */
2780 below_threshold++;
2782 mostly_read++;
2784 mostly_written++;
2785 else
2786 both_read_and_written++;
2789 }
2795 both_read_and_written);
2796 }
2797 /* Add this connection's bytes. */
2811 }
2812 }
2813 }
2815 /** Return a newly allocated string containing the connection statistics
2816 * until <b>now</b>, or NULL if we're not collecting conn stats. Caller must
2817 * ensure start_of_conn_stats_interval is in the past. */
2820 {
2830 written,
2832 below_threshold,
2833 mostly_read,
2834 mostly_written,
2835 both_read_and_written);
2837 }
2839 /** If 24 hours have passed since the beginning of the current conn stats
2840 * period, write conn stats to $DATADIR/stats/conn-stats (possibly
2841 * overwriting an existing file) and reset counters. Return when we would
2842 * next want to write conn stats or 0 if we never want to write. */
2843 time_t
2845 {
2853 /* Generate history string. */
2856 /* Reset counters. */
2859 /* Try to write to disk. */
2862 }
2864 done:
2867 }
2869 /** Internal statistics to track how many requests of each type of
2870 * handshake we've received, and how many we've assigned to cpuworkers.
2871 * Useful for seeing trends in cpu load.
2872 * @{ */
2875 /**@}*/
2877 /** A new onionskin (using the <b>type</b> handshake) has arrived. */
2878 void
2880 {
2883 }
2885 /** We've sent an onionskin (using the <b>type</b> handshake) to a
2886 * cpuworker. */
2887 void
2889 {
2892 }
2894 /** Log our onionskin statistics since the last time we were called. */
2895 void
2897 {
2907 }
2909 /* Hidden service statistics section */
2911 /** Start of the current hidden service stats interval or 0 if we're
2912 * not collecting hidden service statistics. */
2915 /** Carries the various hidden service statistics, and any other
2916 * information needed. */
2918 /** How many relay cells have we seen as rendezvous points? */
2921 /** Set of unique public key digests we've seen this stat period
2922 * (could also be implemented as sorted smartlist). */
2926 /** Our statistics structure singleton. */
2929 /** Allocate, initialize and return an hs_stats_t structure. */
2932 {
2937 }
2939 /** Free an hs_stats_t structure. */
2940 static void
2942 {
2945 }
2949 }
2951 /** Initialize hidden service statistics. */
2952 void
2954 {
2957 }
2960 }
2962 /** Clear history of hidden service statistics and set the measurement
2963 * interval start to <b>now</b>. */
2964 static void
2966 {
2969 }
2977 }
2979 /** Stop collecting hidden service stats in a way that we can re-start
2980 * doing so in rep_hist_buffer_stats_init(). */
2981 void
2983 {
2985 }
2987 /** We saw a new HS relay cell, Count it! */
2988 void
2990 {
2993 }
2996 }
2998 /** As HSDirs, we saw another hidden service with public key
2999 * <b>pubkey</b>. Check whether we have counted it before, if not
3000 * count it now! */
3001 void
3003 {
3008 }
3010 /* Get the digest of the pubkey which will be used to detect whether
3011 we've seen this hidden service before or not. */
3013 /* This fail should not happen; key has been validated by
3014 descriptor parsing code first. */
3016 }
3018 /* Check if this is the first time we've seen this hidden
3019 service. If it is, count it as new. */
3021 pubkey_hash)) {
3024 }
3025 }
3027 /* The number of cells that are supposed to be hidden from the adversary
3028 * by adding noise from the Laplace distribution. This value, divided by
3029 * EPSILON, is Laplace parameter b. */
3030 #define REND_CELLS_DELTA_F 2048
3031 /* Security parameter for obfuscating number of cells with a value between
3032 * 0 and 1. Smaller values obfuscate observations more, but at the same
3033 * time make statistics less usable. */
3034 #define REND_CELLS_EPSILON 0.3
3035 /* The number of cells that are supposed to be hidden from the adversary
3036 * by rounding up to the next multiple of this number. */
3037 #define REND_CELLS_BIN_SIZE 1024
3038 /* The number of service identities that are supposed to be hidden from
3039 * the adversary by adding noise from the Laplace distribution. This
3040 * value, divided by EPSILON, is Laplace parameter b. */
3041 #define ONIONS_SEEN_DELTA_F 8
3042 /* Security parameter for obfuscating number of service identities with a
3043 * value between 0 and 1. Smaller values obfuscate observations more, but
3044 * at the same time make statistics less usable. */
3045 #define ONIONS_SEEN_EPSILON 0.3
3046 /* The number of service identities that are supposed to be hidden from
3047 * the adversary by rounding up to the next multiple of this number. */
3048 #define ONIONS_SEEN_BIN_SIZE 8
3050 /** Allocate and return a string containing hidden service stats that
3051 * are meant to be placed in the extra-info descriptor. */
3054 {
3062 REND_CELLS_BIN_SIZE);
3068 ONIONS_SEEN_BIN_SIZE);
3071 ONIONS_SEEN_EPSILON);
3083 ONIONS_SEEN_DELTA_F,
3087 }
3089 /** If 24 hours have passed since the beginning of the current HS
3090 * stats period, write buffer stats to $DATADIR/stats/hidserv-stats
3091 * (possibly overwriting an existing file) and reset counters. Return
3092 * when we would next want to write buffer stats or 0 if we never want to
3093 * write. */
3094 time_t
3096 {
3101 }
3105 }
3107 /* Generate history string. */
3110 /* Reset HS history. */
3113 /* Try to write to disk. */
3117 }
3119 done:
3122 }
3124 #define MAX_LINK_PROTO_TO_LOG 4
3127 /** Note that we negotiated link protocol version <b>link_proto</b>, on
3128 * a connection that started here iff <b>started_here</b> is true.
3129 */
3130 void
3132 {
3137 }
3140 }
3142 /** Log a heartbeat message explaining how many connections of each link
3143 * protocol version we have used.
3144 */
3145 void
3147 {
3149 "Since startup, we have initiated "
3150 U64_FORMAT" v1 connections, "
3151 U64_FORMAT" v2 connections, "
3152 U64_FORMAT" v3 connections, and "
3153 U64_FORMAT" v4 connections; and received "
3154 U64_FORMAT" v1 connections, "
3155 U64_FORMAT" v2 connections, "
3156 U64_FORMAT" v3 connections, and "
3166 }
3168 /** Free all storage held by the OR/link history caches, by the
3169 * bandwidth history arrays, by the port history, or by statistics . */
3170 void
3172 {
3190 }
3193 }