[tor-bugs] #13213 [Tor]: Tor should tell its pluggable transports when DisableNetwork gets set/unset

Tor Bug Tracker & Wiki blackhole at torproject.org
Mon Sep 22 03:43:26 UTC 2014 

#13213: Tor should tell its pluggable transports when DisableNetwork gets set/unset
------------------------+--------------------------------
     Reporter:  arma    |      Owner:
         Type:  defect  |     Status:  new
     Priority:  normal  |  Milestone:  Tor: 0.2.6.x-final
    Component:  Tor     |    Version:
   Resolution:          |   Keywords:  tor-pt
Actual Points:          |  Parent ID:
       Points:          |
------------------------+--------------------------------

Comment (by dcf):

 Replying to [comment:3 arma]:
 > Replying to [comment:2 dcf]:
 > > Having the SOCKS connection terminated will cause a PT to close the
 corresponding outgoing network connection.
 >
 > All of them? Is that specified in the pt protocol? I bet Brandon's Dust
 protocol won't want to obey this constraint.

 It is not specified that that they do. I might argue that if they keep
 using the network, it's for a good reason. Like maybe a PT's purpose is to
 generate cover traffic so an observer can't see when your tor is idle.
 Flash proxy will break its existing WebSocket connections, but won't close
 its external listeners, for example.

 The confusion is because we're punning on different interpretations of
 "DisableNetwork". One is "drop the firewall and let nothing get out": in
 that case, tor should just kill its client PTs. The other is "make tor
 close its connections, knowing that the (PT, socket, OS) abstractions on
 which they are built may continue to operate as usual": in that case, tor
 should just close its PT connections.

 If the use case for DisableNetwork is saving battery on a mobile, then I
 think you want to kill the PT processes. Same is the use case is to be a
 poor man's firewall.

 Speaking as an implementer, I would probably rather have my program killed
 and restarted.

 The same issue exists with SocksProxy. Tor can't enforce the proxy not to
 keep using the network after it has disconnected. Same with external-mode
 proxies: there's nothing you can do to them besides terminate your
 connections.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13213#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list