diff options
| author | David Goulet <dgoulet@torproject.org> | 2018-03-20 15:27:58 -0400 |
|---|---|---|
| committer | David Goulet <dgoulet@torproject.org> | 2018-04-16 09:59:12 -0400 |
| commit | d064122e706575c99e8d2162de93f7f08cc8d41e (patch) | |
| tree | a00dd4e9f23f079cd00e31218a1618af960d6de3 /changes | |
| parent | 3d5bf12ac24bfbabad5f14c6cd45373b227d2816 (diff) | |
| download | tor-d064122e706575c99e8d2162de93f7f08cc8d41e.tar.gz tor-d064122e706575c99e8d2162de93f7f08cc8d41e.zip | |
relay: Implement a circuit cell queue maximum size
This commit introduces the consensus parameter "circ_max_cell_queue_size"
which controls the maximum number of cells a circuit queue should have.
The default value is currently 50000 cells which is above what should be
expected but keeps us a margin of error for padding cells.
Related to this is #9072. Back in 0.2.4.14-alpha, we've removed that limit due
to a Guard discovery attack. Ticket #25226 details why we are putting back the
limit due to the memory pressure issue on relays.
Fixes #25226
Signed-off-by: David Goulet <dgoulet@torproject.org>
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/bug25226 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/changes/bug25226 b/changes/bug25226 new file mode 100644 index 0000000000..b594a7a424 --- /dev/null +++ b/changes/bug25226 @@ -0,0 +1,4 @@ + o Major bugfixes (relay, denial of service): + - Impose a limit on circuit cell queue size. The limit can be controlled by + a consensus parameter. Fixes bug 25226; bugfix on 0.2.4.14-alpha. + |