diff options
| author | Robert Ransom <rransom.8774@gmail.com> | 2011-10-30 04:41:16 -0700 |
|---|---|---|
| committer | Robert Ransom <rransom.8774@gmail.com> | 2011-10-31 05:05:45 -0700 |
| commit | 60ed98e184c4db70ed1cbac02c891e9bd2d8141a (patch) | |
| tree | bfa6619b5d7feee9b2b612fdbf5da63b53e49b0b | |
| parent | 272dd90b5c9998130f65edd65df1c066dc4599aa (diff) | |
| download | tor-60ed98e184c4db70ed1cbac02c891e9bd2d8141a.tar.gz tor-60ed98e184c4db70ed1cbac02c891e9bd2d8141a.zip | |
Reduce lifetime of DH public key replay-detection cache elements
| -rw-r--r-- | changes/reduce-hs-intro-dh-key-replay-cache-lifetime | 9 | ||||
| -rw-r--r-- | src/or/or.h | 2 |
2 files changed, 10 insertions, 1 deletions
diff --git a/changes/reduce-hs-intro-dh-key-replay-cache-lifetime b/changes/reduce-hs-intro-dh-key-replay-cache-lifetime new file mode 100644 index 0000000000..5ae3785fcb --- /dev/null +++ b/changes/reduce-hs-intro-dh-key-replay-cache-lifetime @@ -0,0 +1,9 @@ + o Minor features: + + - Reduce the lifetime of elements of hidden services' + Diffie-Hellman public key replay-detection cache from 60 minutes + to 5 minutes. This replay-detection cache is now used only to + detect multiple INTRODUCE2 cells specifying the same rendezvous + point, so we don't launch multiple simultaneous attempts to + connect to it. + diff --git a/src/or/or.h b/src/or/or.h index 8455dc83cb..2e4811d839 100644 --- a/src/or/or.h +++ b/src/or/or.h @@ -759,7 +759,7 @@ typedef struct rend_data_t { /** Time interval for tracking replays of DH public keys received in * INTRODUCE2 cells. Used only to avoid launching multiple * simultaneous attempts to connect to the same rendezvous point. */ -#define REND_REPLAY_TIME_INTERVAL (60 * 60) +#define REND_REPLAY_TIME_INTERVAL (5 * 60) /** Used to indicate which way a cell is going on a circuit. */ typedef enum { |