diff options
| author | Nick Mathewson <nickm@torproject.org> | 2014-04-09 11:13:37 -0400 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2014-06-11 11:27:04 -0400 |
| commit | 463f6628d316cecdd612b4a78cd5349ab4a824c5 (patch) | |
| tree | 427a4293b3cef5fdd75bef8a7f06389ab0ce7ceb /changes | |
| parent | 24e0b1088acd94ceae3109107fa354b89309e2b7 (diff) | |
| download | tor-463f6628d316cecdd612b4a78cd5349ab4a824c5.tar.gz tor-463f6628d316cecdd612b4a78cd5349ab4a824c5.zip | |
Give each or_connection_t a slightly randomized idle_timeout
Instead of killing an or_connection_t that has had no circuits for
the last 3 minutes, give every or_connection_t a randomized timeout,
so that an observer can't so easily infer from the connection close
time the time at which its last circuit closed.
Also, increase the base timeout for canonical connections from 3
minutes to 15 minutes.
Fix for ticket 6799.
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/bug6799 | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/changes/bug6799 b/changes/bug6799 new file mode 100644 index 0000000000..b50762bb0a --- /dev/null +++ b/changes/bug6799 @@ -0,0 +1,13 @@ + o Major features: + + - Increate the base amount of time that a canonical connection + (one that we have made to a known OR) is allowed to stay open + from a 3 minutes to 15 minutes. This leaks less information + about when circuits have closed, and avoids unnecessary overhead + from renegotiating connections. Part of a fix for ticket 6799. + + - Instead of closing connections at a fixed interval after their + last circuit closed, randomly add up to 50% to each connection's + maximum timout. This makes it harder to tell when the last + circuit closed by looking at when a connection closes. Part of a + fix for ticket 6799. |