document control protocol router status format surprises when using microdescriptors
In Tor 0.3.0 (or earlier?), we made clients use microdescriptors by default. This changes the format of NS_CONTROL_PORT routerstatus lines, which breaks pytorctl, and therefore the bandwidth authorities.
Apparently, this issue can be resolved by setting UseMicrodescriptors 0 or using 0.2.9.
edit: Let's update control-spec.txt to document the current (surprising) behavior and track further behavior improvements in other tickets.
Activity
changed milestone to %Tor: unspecified
Thanks. Here is an interesting detail: when I do 'setevents newconsensus ns' on Tor 0.3.3, I end up with events like
r toXelRasPiRelay /iaAWfg1g5j9UXiEicniBQBmErE Sk5Zj+7j8ujjZiMA9gMKr1ij/qg 2017-10-31 23:50:28 80.143.207.169 9001 9030 s Fast Running V2Dir Valid w Bandwidth=82That turns out to be a weird frankenstein NS-style line, fabricated by my Tor only for the control port. This is the corresponding part of my cached-microdesc-consensus file:
r toXelRasPiRelay /iaAWfg1g5j9UXiEicniBQBmErE 2017-10-31 23:50:28 80.143.207.169 9001 9030 m Sk5Zj+7j8ujjZiMA9gMKr1ij/qh0HRLgsMM4qVBbv80 s Fast Running V2Dir Valid v Tor 0.3.1.8 pr Cons=1-2 Desc=1-2 DirCache=1-2 HSDir=1-2 HSIntro=3-4 HSRend=1-2 Link=1-4 LinkAuth=1,3 Microdesc=1-2 Relay=1-2 w Bandwidth=82So my Tor, for the control port, is fabricating a v2 style NS line, but swapping in the md hash instead of the descriptor hash.
I think there's a good argument for fixing the bug in how the control port crafts NS-style lines (I think the chances that somebody has a working controller for this situation are low), and then adding a way for the control port to ask for MD-style lines too if we/they want that.
Hi Roger, hi Tim. Sorry, still on my first cup of coffee. What is the problem here? As I understand it router status entry flags are...
- all router status entries have: r, s, and v lines
- v3 router status entries have: a, w, p, pr, id, and m lines
- v3 microdescriptor router status entries have: w, m, and pr lines
In the example above your v3 microdescriptor RSE looks valid, and tor's 'GETINFO ns/all' is simply truncating fields. The m, v, and pr fields are all optional so technically the response from the control port is valid (and successfully parsed by stem), though not sure why it's omitting those fields.
Replying to atagar:
Hi Roger, hi Tim. Sorry, still on my first cup of coffee. What is the problem here? As I understand it router status entry flags are...
- all router status entries have: r, s, and v lines
I think the issue is which fields are in the
rline. Therline is wrong in arma's first example because it has a microdescriptor hash instead of a descriptor hash. It looks like a ns-flavoredrline but the descriptor digest wrong, rather than being omitted as in the md-flavored consensus. Somehow this seems to be confusing pytorctl. I think one thing arma was wondering about is how stem handles this.
- all router status entries have: r, s, and v lines
I think the issue is which fields are in the
Ahhh, gotcha. Stem parses as microdescriptor or non-microdescriptor flavors based on tor's UseMicrodescriptors option...
https://gitweb.torproject.org/stem.git/tree/stem/control.py#n1951
Pretty sure torctl predates microdescriptors so can't say I'm surprised it's sad.
Does stem use the descriptor.digest field for anything internally?
Don't think so. Not thinking of any internal use.
If FetchUselessDescriptors is enabled then that behaviour is wrong I think
Gotcha. So just to be clear tor does the following?
if 'GETCONF FetchUselessDescriptors' == '1' or 'GETCONF UseMicrodescriptors' == '0' return plain router status entries for 'GETINFO ns/all' else return mirodescriptor router status entries for 'GETINFO ns/all'If so then I'll change stem to reflect that (... maybe we should have a GETINFO method for 'tell me the type of router status entries tor will give?).
Replying to atagar:
Gotcha. So just to be clear tor does the following?
{{{ if 'GETCONF FetchUselessDescriptors' == '1' or 'GETCONF UseMicrodescriptors' == '0' return plain router status entries for 'GETINFO ns/all' else return mirodescriptor router status entries for 'GETINFO ns/all' }}} It's not quite that. I think it always returns NS-flavored
rlines, except with truncated descriptor digests if tor is using microdescriptors. See this part of dirserv.c, and note that any call that comes from control.c passesNS_CONTROL_PORTforformat, so therline always gets output in the NS flavor format (8 components including ther), but if tor is using microdescriptors, it'll be a truncated microdescriptor digest instead of a full descriptor digest. It looks like stem doesn't check forauto, so it defaults to expecting the 8-component form, which happens to work unless someone explicitly setUseMicroDescriptors=1for some reason.Maybe the "right" thing to do is have the control protocol return whatever
rline format corresponds to the consensus flavor it's using, but that might break existing applications that expect the current "wrong" behavior.Summarizing an IRC conversation with arma and Sebastian:
- The
UseMicrodescriptors=0workaround seems to work for pytorctl (and thus bwauths) for now. - We probably should keep the
GETINFO ns/*keys andNSasync events the same for backward compatibility, i.e., continue making them in the ns-flavored format with a truncated SHA-256 hash in the descriptor digest field if tor is using microdescriptors. - There should probably be a new set of
GETINFOkeys and async events that generalize router statuses in the control protocol, maybeGETINFO rs/*andRSasync events. The controller could explicitly request ns and microdesc flavors of each. - TODO: check whether it's possible for a single instance of tor to download both ns- and microdescriptor-flavored consensuses.
I'm also thinking that we should scope this ticket to updating control-spec.txt to describe the current (somewhat surprising) behavior and open new tickets for the other related issues.
Trac:
Description: In Tor 0.3.0 (or earlier?), we made clients use microdescriptors by default. This changes the format of NS_CONTROL_PORT routerstatus lines, which breaks pytorctl, and therefore the bandwidth authorities.Apparently, this issue can be resolved by setting UseMicrodescriptors 0 or using 0.2.9.
to
In Tor 0.3.0 (or earlier?), we made clients use microdescriptors by default. This changes the format of NS_CONTROL_PORT routerstatus lines, which breaks pytorctl, and therefore the bandwidth authorities.
Apparently, this issue can be resolved by setting UseMicrodescriptors 0 or using 0.2.9.
edit: Let's update control-spec.txt to document the current (surprising) behavior and track further behavior improvements in other tickets.
Keywords: N/A deleted, tor-control, tor-spec added- The
Here's where the stem code around this came from. I thought this was an intentional change in tor...
https://gitweb.torproject.org/stem.git/commit/?id=d70fa9cd
However, catalyst made the great point on irc that this code actually doesn't get invoked in practice nowadays because UseMicrodescriptors defaults to 'auto' rather than '1'. I just checked and stem indeed provides back standard RSEs rather than the microdescriptor version...
% tor-prompt >>> import pprint >>> desc = next(controller.get_network_statuses()) >>> type(desc) <class 'stem.descriptor.router_status_entry.RouterStatusEntryV3'> >>> pprint.pprint(desc.__dict__) {'_archive_path': None, '_entries': {}, '_lazy_loading': False, '_path': None, '_raw_contents': 'r networkofthesmoker AAaX5kASI9/xzl9Qp7aFdPOSnrQ aoqBoLrUWKssJAKnO8r6GpZs5p8 2017-11-02 13:51:59 128.72.180.74 443 0\ns Fast Guard HSDir Running Stable V2Dir Valid\nw Bandwidth=4150\n', '_unrecognized_lines': [], 'address': u'128.72.180.74', 'bandwidth': 4150, 'digest': '6A8A81A0BAD458AB2C2402A73BCAFA1A966CE69F', 'dir_port': None, 'document': None, 'fingerprint': '000697E6401223DFF1CE5F50A7B68574F3929EB4', 'flags': [u'Fast', u'Guard', u'HSDir', u'Running', u'Stable', u'V2Dir', u'Valid'], 'is_unmeasured': False, 'measured': None, 'nickname': u'networkofthesmoker', 'or_port': 443, 'published': datetime.datetime(2017, 11, 2, 13, 51, 59), 'unrecognized_bandwidth_entries': []}This makes me kinda tempted to drop the check in stem...
Pushed a change so Stem no longer checks 'UseMicrodescriptors'...
-
Replying to catalyst:
- TODO: check whether it's possible for a single instance of tor to download both ns- and microdescriptor-flavored consensuses.
Yes, it should be possible. Anybody who is a dir cache does it, because they want to fetch both of them so they can serve both.
But a given Tor will only make client-side path selection choices based on one of them -- whichever flavor it is set to use. That's controlled by UseMicrodescriptors and the associated consensus param.
One of the challenges is that it's unclear which use case we're trying to cover here, and they at least somewhat contradict: telling the controller about new directory objects, or telling the controller about information that we're going to be using for our future circuit choices.
Trac:
Parent: N/A to #24094 (moved)
