[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8864 [Tor]: Hidden service: Suddenly the service does not respond to new connections (INTRODUCE2 cell on intro circ with no corresponding rend_intro_point_t)

Subject: Re: [tor-bugs] #8864 [Tor]: Hidden service: Suddenly the service does not respond to new connections (INTRODUCE2 cell on intro circ with no corresponding rend_intro_point_t)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 15 Dec 2014 17:37:20 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 15 Dec 2014 12:37:27 -0500
In-reply-to: <045.acbe3513a25abaefa8992abc102c3c33@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.acbe3513a25abaefa8992abc102c3c33@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#8864: Hidden service: Suddenly the service does not respond to new connections
(INTRODUCE2 cell on intro circ with no corresponding rend_intro_point_t)
------------------------+---------------------------------------------
     Reporter:  reiam   |      Owner:
         Type:  defect  |     Status:  new
     Priority:  normal  |  Milestone:  Tor: 0.2.???
    Component:  Tor     |    Version:  Tor: 0.2.3.25
   Resolution:          |   Keywords:  tor-hs 023-backport 025-triaged
Actual Points:          |  Parent ID:
       Points:          |
------------------------+---------------------------------------------

Comment (by dgoulet):

 Replying to [comment:19 asn]:
 > Replying to [comment:7 rransom]:
 > > The `if (!node || !intro_circ) {` block in `rend_services_introduce`
 should be an `if (!intro_circ) {` block only.  If `node` is `NULL` and
 `intro_circ` is not, the client probably wants to (emit a log message and)
 close `intro_circ`.
 >
 > Hm, that might be a good idea. IIUC, in the case where the IP is not in
 the consensus anymore, the problem is that even though the
 `rend_intro_point_t` gets freed, the `intro_circ` stays up and can be used
 by clients. So a client with an old consensus will use that node and send
 an `INTRODUCE2` cell down the circuit that will trigger this warning.
 >
 > This seeeeeems plausible. However, I'm not sure if it's what causes the
 problem in `20130515115701.rarâ`. The weird thing there is that the log
 message appears only a few seconds after the IPs get picked.

 Hrm, seems there is actually almost 3 minutes before seeing the first
 error message for this bad circuit 58471.

 {{{
 May 15 11:53:07.000 [info] rend_service_intro_has_opened(): Established
 circuit 58471 as introduction point for service <servicename>
 May 15 11:53:07.000 [info] rend_service_intro_established(): Received
 INTRO_ESTABLISHED cell on circuit 58471 for service <servicename>
 May 15 11:56:36.000 [info] rend_service_introduce(): Received INTRODUCE2
 cell for service "<servicename>" on circ 58471.
 May 15 11:56:36.000 [warn] rend_service_introduce(): Bug: Internal error:
 Got an INTRODUCE2 cell on an intro circ (for service "<servicename>") with
 no corresponding rend_intro_point_t.
 }}}

 Fun fact, same goes for the other bad circuit (33837), almost 3 minutes
 also:

 {{{
 May 15 11:53:06.000 [info] rend_service_intro_has_opened(): Established
 circuit 33837 as introduction point for service <servicename>
 May 15 11:53:07.000 [info] rend_service_intro_established(): Received
 INTRO_ESTABLISHED cell on circuit 33837 for service <servicename>
 May 15 11:56:30.000 [info] rend_service_introduce(): Received INTRODUCE2
 cell for service "<servicename>" on circ 33837.
 May 15 11:56:30.000 [warn] rend_service_introduce(): Bug: Internal error:
 Got an INTRODUCE2 cell on an intro circ (for service "<servicename>") with
 no corresponding rend_intro_point_t.
 }}}

 Where the good valid circuit (33835) sees the first cell ~30 seconds
 later:

 {{{
 May 15 11:53:06.000 [info] rend_service_intro_has_opened(): Established
 circuit 33835 as introduction point for service <servicename>
 May 15 11:53:07.000 [info] rend_service_intro_established(): Received
 INTRO_ESTABLISHED cell on circuit 33835 for service <servicename>
 May 15 11:53:42.000 [info] rend_service_introduce(): Received INTRODUCE2
 cell for service "<servicename>" on circ 33835.
 }}}

 So a ~3 minutes delay, it might be possible that the intro point node was
 removed from the consensus. I also think that {{{if (!node || !intro_circ)
 {}}} is wrong here. The node might have disapeared from the list but the
 intro circuit could still be "valid" thus it should be marked as closed if
 the node is NULL.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8864#comment:20>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #13915 [RPM packaging]: Tor no longer requires openssl on el7
Next by Author: Re: [tor-bugs] #13682 [Quality Assurance and Testing]: Write test for security slider
Previous by thread: Re: [tor-bugs] #8864 [Tor]: Hidden service: Suddenly the service does not respond to new connections (INTRODUCE2 cell on intro circ with no corresponding rend_intro_point_t)
Next by thread: Re: [tor-bugs] #8864 [Tor]: Hidden service: Suddenly the service does not respond to new connections (INTRODUCE2 cell on intro circ with no corresponding rend_intro_point_t)
Index(es):
- Author
- Thread