[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: How many hidden service circuits built?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: How many hidden service circuits built?
From: Karsten Loesing <karsten.loesing@xxxxxxx>
Date: Fri, 12 Dec 2008 12:18:39 +0100
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Fri, 12 Dec 2008 06:18:54 -0500
In-reply-to: <200812120959.46389.bf@xxxxxxxxxxxxxxxx>
References: <200812112325.46332.bf@xxxxxxxxxxxxxxxx> <20081211224024.GI6497@xxxxxxxxxxxxxx> <200812120959.46389.bf@xxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.18 (X11/20081125)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Bernhard Fischer wrote:
> On Thursday 11 December 2008, Roger Dingledine wrote:
>> On Thu, Dec 11, 2008 at 11:25:40PM +0100, Bernhard Fischer wrote:
>>> If I connect through the SOCKS interface several times at the same time
>>> to the same hidden service, does TOR open a bunch of circuits in parallel
>>> to the designated hidden service or does it just open a single one and
>>> then reuse it for every of the incoming SOCKS request?
>> It should try to reuse the same circuit.
>>
>> (You will see a bunch of circuits going to make the rendezvous happen, but
>> only one of them will be the one that all your streams get connected to.)
>>
>> --Roger
> 
> 
> Is it possible to change this behavior (maybe by a slight modification of the 
> source)?

I'm not sure what you are up to, so I'm guessing. Are you asking for a)
parallelizing connection establishment in order to reduce delay, b)
having a separate circuit to the hidden server for every
application-level stream, or something else?

As for a), we are already working on improvements to reduce the delay in
connection establishment. Did you have a look at this page?:

https://www.torproject.org/projects/hidserv.html

Part of the solution is to parallelize some of the substeps. One example
are circuits to introduction points which are built in parallel after a
delay of 15 seconds. Future ideas are to request hidden service
descriptors from the directories in parallel. But making two (or even
more) full connection establishments with all steps being performed
twice (or more times) is a bit too brute-force, isn't it? The goal is to
make hidden services faster, but in a way that doesn't put too much new
load on the network.

As for b), I don't know if this makes sense, either. Why separate the
circuits when you can multiplex an arbitrary number of streams over
them? Fault tolerance? Unlinkability of streams?

But instead of guessing what you had in mind, I'll just ask: Why do you
want to do this?

- --Karsten
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJQkiP0M+WPffBEmURAsmuAJ4lf5aPZBg7IEXw0hzW4aCb0Ve2CgCfW37x
ki2Nf2vTOF9Z+jRX8GevDfU=
=1DHP
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: How many hidden service circuits built?
  - From: Bernhard Fischer

References:
- How many hidden service circuits built?
  - From: Bernhard Fischer
- Re: How many hidden service circuits built?
  - From: Roger Dingledine
- Re: How many hidden service circuits built?
  - From: Bernhard Fischer

Prev by Author: Re: No Tor server exists that allows exit to ...
Next by Author: Re: How many hidden service circuits built?
Previous by thread: Re: How many hidden service circuits built?
Next by thread: Re: How many hidden service circuits built?
Index(es):
- Author
- Thread