[tor-bugs] #24350 [Core Tor/Tor]: A fresh compiled tor does not honor MaxCircuitDirtiness

Tor Bug Tracker & Wiki blackhole at torproject.org
Sun Nov 19 13:49:19 UTC 2017


#24350: A fresh compiled tor does not honor MaxCircuitDirtiness
--------------------------+------------------------
 Reporter:  Zakhar        |          Owner:  (none)
     Type:  defect        |         Status:  new
 Priority:  Medium        |      Milestone:
Component:  Core Tor/Tor  |        Version:
 Severity:  Normal        |     Resolution:
 Keywords:                |  Actual Points:
Parent ID:                |         Points:
 Reviewer:                |        Sponsor:
--------------------------+------------------------

Comment (by Zakhar):

 Here is more investigation !

 I set the MaxCircuitDirtiness to 240 (4 minutes) and here is what I get:

 {{{
 $ while :; do line="$( date +%H:%M ) == $( curl -s --socks5
 '127.0.0.1:9050' 'http://whatismyip.akamai.com' )"; echo "$line"; sleep
 60; done
 14:20 == 37.187.129.166
 14:21 == 46.183.218.199
 14:22 == 46.183.218.199
 14:23 == 46.183.218.199
 14:24 == 46.183.218.199
 14:25 == 51.15.72.53
 14:26 == 162.243.166.137
 14:27 == 162.243.166.137
 14:28 == 162.243.166.137
 14:29 == 162.243.166.137
 14:30 == 192.160.102.170
 14:31 == 197.231.221.211
 14:32 == 197.231.221.211
 14:33 == 197.231.221.211
 14:34 == 197.231.221.211
 14:35 == 93.115.95.202
 14:36 == 185.100.86.167
 14:37 == 185.100.86.167
 14:38 == 185.100.86.167
 14:39 == 185.100.86.167
 14:40 == 185.104.120.2
 14:41 == 204.194.29.4
 14:42 == 204.194.29.4
 }}}

 A very regular pattern where we have 4 minutes on an identity, then 1
 minute on another, and the same pattern again.

 So I guess, unrelated to tor, there is a parameter either in libevent_dev
 or libssl_dev that says: timeout is 5 minutes!

 So my compiled tor is indeed reading the MaxCircuitDirtiness, but gets
 timeouts/error every 5 minutes that make it switch identity.


 Then, unless you have already seen this strange behavior and have a clue
 on how to fix it, I think I'll better ask on Ubuntu/Debian related forums
 since they apparently have already fixed it.

 Although if such tricks are "well known", it would be better to document
 them in tor's "build how-to"... along with any other "wel known" nasty
 tricks we might have once I'll have figured out where does this 5 minutes
 timeout comes from!

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24350#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list