summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorNick Mathewson <nickm@torproject.org>2006-12-07 20:11:36 +0000
committerNick Mathewson <nickm@torproject.org>2006-12-07 20:11:36 +0000
commitb4a90ca8a3e0a29afc2f2068cdfd02044e242965 (patch)
tree9e573de0a614c2269add61deecdef24535be07d5
parent7c79495137bcd3989428d65b184038aa71fbae70 (diff)
downloadtor-b4a90ca8a3e0a29afc2f2068cdfd02044e242965.tar.gz
tor-b4a90ca8a3e0a29afc2f2068cdfd02044e242965.zip
r11469@Kushana: nickm | 2006-12-07 15:11:04 -0500
Round stored/transmitted values for bandwidth usage. This might make some attacks work less well. This might well be voodoo, but it gives me a warm fuzzy feeling. svn:r9048
-rw-r--r--ChangeLog2
-rw-r--r--src/or/hibernate.c11
-rw-r--r--src/or/rephist.c9
3 files changed, 14 insertions, 8 deletions
diff --git a/ChangeLog b/ChangeLog
index e84637cc7c..e46e18bddf 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -23,6 +23,8 @@ Changes in version 0.1.2.5-xxxx - 200?-??-??
- Clients do not store bandwidth history in their state files. (This
shouldn't be an exploitable security issue, but it's better to be
safe.)
+ - When generating bandwidth history, round down to the nearest 1k. When
+ storing accounting data, round up to the nearest 1k.
o Controller bugfixes:
- Report the circuit number correctly in STREAM CLOSED events. (Bug
diff --git a/src/or/hibernate.c b/src/or/hibernate.c
index bd89240e47..f4249d2efa 100644
--- a/src/or/hibernate.c
+++ b/src/or/hibernate.c
@@ -530,6 +530,7 @@ accounting_set_wakeup_time(void)
}
}
+#define ROUND_UP(x) (((x) + 0x3ff) & ~0x3ff)
#define BW_ACCOUNTING_VERSION 1
/** Save all our bandwidth tracking information to disk. Return 0 on
* success, -1 on failure. */
@@ -561,8 +562,8 @@ accounting_record_bandwidth_usage(time_t now, or_state_t *state)
BW_ACCOUNTING_VERSION,
time1,
time2,
- U64_PRINTF_ARG(n_bytes_read_in_interval),
- U64_PRINTF_ARG(n_bytes_written_in_interval),
+ U64_PRINTF_ARG(ROUND_UP(n_bytes_read_in_interval)),
+ U64_PRINTF_ARG(ROUND_UP(n_bytes_written_in_interval)),
(unsigned long)n_seconds_active_in_interval,
(unsigned long)expected_bandwidth_usage);
tor_snprintf(fname, sizeof(fname), "%s/bw_accounting",
@@ -571,14 +572,16 @@ accounting_record_bandwidth_usage(time_t now, or_state_t *state)
/* Now update the state */
state->AccountingIntervalStart = interval_start_time;
- state->AccountingBytesReadInInterval = n_bytes_read_in_interval;
- state->AccountingBytesWrittenInInterval = n_bytes_written_in_interval;
+ state->AccountingBytesReadInInterval = ROUND_UP(n_bytes_read_in_interval);
+ state->AccountingBytesWrittenInInterval =
+ ROUND_UP(n_bytes_written_in_interval);
state->AccountingSecondsActive = n_seconds_active_in_interval;
state->AccountingExpectedUsage = expected_bandwidth_usage;
or_state_mark_dirty(state, 60);
return r;
}
+#undef ROUND_UP
/** Read stored accounting information from disk. Return 0 on success;
* return -1 and change nothing on failure. */
diff --git a/src/or/rephist.c b/src/or/rephist.c
index af295facf3..19b6ea23bf 100644
--- a/src/or/rephist.c
+++ b/src/or/rephist.c
@@ -596,13 +596,14 @@ rep_hist_fill_bandwidth_history(char *buf, size_t len, bw_array_t *b)
}
for (n=0; n<b->num_maxes_set; ++n,++i) {
+ uint64_t total;
while (i >= NUM_TOTALS) i -= NUM_TOTALS;
+ /* Round the bandwidth used down to the nearest 1k. */
+ total = b->totals[i] & ~0x3ff;
if (n==(b->num_maxes_set-1))
- tor_snprintf(cp, len-(cp-buf), U64_FORMAT,
- U64_PRINTF_ARG(b->totals[i]));
+ tor_snprintf(cp, len-(cp-buf), U64_FORMAT, U64_PRINTF_ARG(total));
else
- tor_snprintf(cp, len-(cp-buf), U64_FORMAT",",
- U64_PRINTF_ARG(b->totals[i]));
+ tor_snprintf(cp, len-(cp-buf), U64_FORMAT",", U64_PRINTF_ARG(total));
cp += strlen(cp);
}
return cp-buf;