mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-28 14:23:30 +01:00
6557e61295
The point of the "idle timeout" for connections is to kill the connection a while after it has no more circuits. But using "last added a non-padding cell" as a proxy for that is wrong, since if the last circuit is closed from the other side of the connection, we will not have sent anything on that connection since well before the last circuit closed. This is part of fixing 6799. When applied to 0.2.5, it is also a fix for 12023.
21 lines
1.0 KiB
Plaintext
21 lines
1.0 KiB
Plaintext
o Major features:
|
|
|
|
- Increase the base amount of time that a canonical connection
|
|
(one that we have made to a known OR) is allowed to stay open
|
|
from a 3 minutes to 15 minutes. This leaks less information
|
|
about when circuits have closed, and avoids unnecessary overhead
|
|
from renegotiating connections. Part of a fix for ticket 6799.
|
|
|
|
- Instead of closing connections after they have been idle for a
|
|
fixed interval, randomly add up to 50% to each connection's
|
|
maximum timeout. This makes it harder to tell when the last
|
|
circuit closed by looking at when a connection closes. Part of a
|
|
fix for ticket 6799.
|
|
|
|
- Base connection idleness tests on the actual time elapsed since
|
|
the connection last had circuits, not on the time when we last
|
|
added non-padding. This also makes it harder to tell when the last
|
|
circuit closed by looking at when a connection closes. Part of a
|
|
fix for ticket 6799.
|
|
Incidentally fixes bug 12023; bugfix on 0.2.5.1-alpha.
|