[tor-bugs] #16052 [Tor]: Hidden service socket exhaustion by opening many connections
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue May 19 20:24:06 UTC 2015
#16052: Hidden service socket exhaustion by opening many connections
------------------------+------------------------------------------
Reporter: asn | Owner:
Type: defect | Status: new
Priority: normal | Milestone: Tor: 0.2.7.x-final
Component: Tor | Version:
Resolution: | Keywords: tor-hs dos SponsorR SponsorU
Actual Points: | Parent ID:
Points: |
------------------------+------------------------------------------
Comment (by ninjaturtle):
Replying to [comment:11 yawning]:
> First pass at implementing "a" (entirely untested):
https://github.com/Yawning/tor/compare/bug16052a
>
> Things that remain to be done:
>
> * Refactor the code that touches `origin_circuit_t.p_streams` to use
`TOR_LIST_*` so it's easier to audit the stream counter code that got
added (per discussion with nickm).
> * Test it.
> * Add a changes file.
> * Update the man page.
>
> The code does the simplest thing that will not break in conjunction with
browsers using multiple connections to minimize load latency (the "6"
figure per mike), taking into account that circuit lifespan can be quite
long now with the #15482 sketch patch being shipped in Tor Browser.
>
> More complicated behavior is indeed possible, but people who want such
things are free to figure out what exactly Firefox does wrt to keeping
connections around/opening new ones/etc, so they can implement the
different behavior themselves.
Tried it, I get this error: Failed to parse/validate config: Unknown
option 'HiddenServiceMaxStreams'. Failing.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16052#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list