[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Dropped off consensus (0.4.4.5) - reason is Libressl 3.2.1

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Dropped off consensus (0.4.4.5) - reason is Libressl 3.2.1
From: Fran <fatal@xxxxxxxxxxx>
Date: Sun, 27 Sep 2020 09:38:36 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 28 Sep 2020 13:07:26 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mailbox.org; h= content-transfer-encoding:content-language:content-type :content-type:in-reply-to:mime-version:date:date:message-id:from :from:references:subject:subject:received; s=mail20150812; t= 1601192316; bh=Vg611KFc/bg1RwhpUBntqRN6YSTeF/vuJxkEpyUFM5M=; b=H aE199GkWySeNFxQswDg+JN9+Oo/2IWxForrsNMR3Cb0RKZQX+rBVJ9l7Hr6STs1r Riol+NHPqgH56CHL6ZV52CI3Qt+qQ4orcGYu5A/85HCOJqX6/T+VBO/Rb8o5i/4g dS9AiCpF/fhxCIcE65YYXBrPMXnI0u9pdGD4cV6baw/MFLDkk6ov7KF2dfof9DRO /Gfy5Tn44pPQCuLgQnoMxopVq8DVgn6Xj/eerOuz+sl0gTIuYUiqORAxMP/0134P EGAbIBY+qdWN+5cnDa7HW/PIHpUoeQ8E7c0j4RMVzrkNCwYUOeM77VSiNXLTHn/y ifhtedPGcoj2dPhLKRs7Q==
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mailbox.org; s=mail20150812; t=1601192318; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=0SMqXz7Dl8TLO/gcpR7UVYC67vE2tPQVumfXr/jOBlE=; b=PhLcfnOzhoWXTCLzaa/X2pjVsZgMISVJfNKNgstIYjv4hV+lQNwoGW2D9gXh730N8jdBJW oRiU0jGk+xNu5aGFEf2o7cdARBcAM2zQ1Y9xfACxr8dhXQhZv3FHgDzz6qGCiMGG8rSN+7 l1/iyYoSLf5HyhrlTzz2U/TIWSH5wkbDnfQfCUKqZ9QbbwbrwB82/EEzJrpTcVWiSvQQ3+ G9vR2mp953LsdpISRDb6/E39z2QY48lIUYci5+O7kEfUnWkmAI8+L56MjnvARmXIkFNsl+ mdTElqz/ToziiIw45pcaQH9O5Ues/0GjH5QQfMQuj7v/KE0eJ5XjAEgBTuq2yA==
In-reply-to: <20200920110611.GB3115@moria.seul.org>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <5F65A2F7.9090209@quantentunnel.de> <5F6735AA.1090103@quantentunnel.de> <20200920110611.GB3115@moria.seul.org>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Hey,

following up on my still persisting openbsd issue
(https://lists.torproject.org/pipermail/tor-relays/2020-July/018717.html)
I reckon this might also a libressl issue.

I did as Roger suggested and set "usebridges 1
bridge ip:orport"

>  Tor[17665]: connection_or_init_conn_from_address(): init conn from address 192.68.11.219: 0000000000000000000000000000000000000000, <unset> (1)
>  Tor[17665]: connection_or_set_identity_digest(): Set identity digest for 0x320be2f8110 ([scrubbed]): 0000000000000000000000000000000000000000 <unset>.
>  Tor[17665]: connection_or_set_identity_digest():    (Previously: 0000000000000000000000000000000000000000 <unset>)
>  Tor[17665]: dispatch_send_msg_unchecked(): Queued: orconn_state (<gid=4 chan=1 proxy_type=0 state=1>) from orconn_event, on orconn.
>  Tor[17665]: dispatcher_run_msg_cbs(): Delivering: orconn_state (<gid=4 chan=1 proxy_type=0 state=1>) from orconn_event, on orconn:
>  Tor[17665]: dispatcher_run_msg_cbs():   Delivering to btrack.
>  Tor[17665]: bto_state_rcvr(): ORCONN gid=4 chan=1 proxy_type=0 state=1
>  Tor[17665]: dispatch_send_msg_unchecked(): Queued: orconn_status (<gid=4 status=0 reason=0>) from orconn_event, on orconn.
>  Tor[17665]: dispatcher_run_msg_cbs(): Delivering: orconn_status (<gid=4 status=0 reason=0>) from orconn_event, on orconn:
>  Tor[17665]: dispatcher_run_msg_cbs():   Delivering to btrack.
>  Tor[17665]: connection_connect(): Connecting to [scrubbed]:443.
>  Tor[17665]: connection_connect_sockaddr(): Connection to socket in progress (sock 9).
>  Tor[17665]: connection_add_impl(): new conn type OR, socket 9, address 192.68.11.219, n_conns 4.
>  Tor[17665]: channel_tls_connect(): Got orconn 0x320be2f8110 for channel with global id 1
>  Tor[17665]: channel_register(): Registering channel 0x320be0a4ae0 (ID 1) in state opening (1) with digest 0000000000000000000000000000000000000000
>  Tor[17665]: channel_register(): Channel 0x320be0a4ae0 (global ID 1) in state opening (1) registered with no identity digest
>  Tor[17665]: channel_set_cell_handlers(): Setting cell_handler callback for channel 0x320be0a4ae0 to 0x320bca217e0
>  Tor[17665]: dispatch_send_msg_unchecked(): Queued: ocirc_chan (<gid=1 chan=1 onehop=1>) from ocirc_event, on ocirc.
>  Tor[17665]: dispatcher_run_msg_cbs(): Delivering: ocirc_chan (<gid=1 chan=1 onehop=1>) from ocirc_event, on ocirc:
>  Tor[17665]: dispatcher_run_msg_cbs():   Delivering to btrack.
>  Tor[17665]: bto_chan_rcvr(): ORCONN LAUNCH chan=1 onehop=1
>  Tor[17665]: bto_update_best(): ORCONN BEST_ANY state -1->1 gid=4
>  Tor[17665]: Bootstrapped 5% (conn): Connecting to a relay
>  Tor[17665]: dispatcher_run_msg_cbs():   Delivering to btrack.
>  Tor[17665]: btc_chan_rcvr(): CIRC gid=1 chan=1 onehop=1
>  Tor[17665]: circuit_handle_first_hop(): connecting in progress (or finished). Good.
>  Tor[17665]: conn_read_callback(): socket -1 wants to read.
>  Tor[17665]: connection_edge_process_inbuf(): data from edge while in 'waiting for circuit' state. Leaving it on buffer.
>  Tor[17665]: connection_edge_process_inbuf(): data from edge while in 'waiting for circuit' state. Leaving it on buffer.
>  Tor[17665]: connection_dir_finished_flushing(): client finished sending command.
>  Tor[17665]: conn_write_callback(): socket 9 wants to write.
>  Tor[17665]: connection_or_finished_connecting(): OR connect() to router at 192.68.11.219:443 finished.
>  Tor[17665]: dispatch_send_msg_unchecked(): Queued: orconn_state (<gid=4 chan=1 proxy_type=0 state=3>) from orconn_event, on orconn.
>  Tor[17665]: dispatcher_run_msg_cbs(): Delivering: orconn_state (<gid=4 chan=1 proxy_type=0 state=3>) from orconn_event, on orconn:
>  Tor[17665]: dispatcher_run_msg_cbs():   Delivering to btrack.
>  Tor[17665]: bto_state_rcvr(): ORCONN gid=4 chan=1 proxy_type=0 state=3
>  Tor[17665]: bto_update_best(): ORCONN BEST_ANY state 1->3 gid=4
>  Tor[17665]: Bootstrapped 10% (conn_done): Connected to a relay
>  Tor[17665]: connection_tls_start_handshake(): starting TLS handshake on fd 9
>  Tor[17665]: tor_tls_handshake(): About to call SSL_connect on 0x320be24e490 (before SSL initialization)
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state before SSL initialization [type=16,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state before SSL initialization [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write client hello [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write client hello [type=4098,val=-1].
>  Tor[17665]: tor_tls_handshake(): After call, 0x320be24e490 was in state SSLv3/TLS write client hello
>  Tor[17665]: connection_tls_continue_handshake(): wanted read
>  Tor[17665]: tor_tls_handshake(): About to call SSL_connect on 0x320be24e490 (SSLv3/TLS write client hello)
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write client hello [type=4098,val=-1].
>  Tor[17665]: connection_tls_continue_handshake(): wanted read
>  Tor[17665]: conn_read_callback(): socket 9 wants to read.
>  Tor[17665]: tor_tls_handshake(): About to call SSL_connect on 0x320be24e490 (SSLv3/TLS write client hello)
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write client hello [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS read server hello [type=4098,val=-1].
>  Tor[17665]: tor_tls_handshake(): After call, 0x320be24e490 was in state SSLv3/TLS read server hello
>  Tor[17665]: connection_tls_continue_handshake(): wanted read
>  Tor[17665]: conn_read_callback(): socket 9 wants to read.
>  Tor[17665]: tor_tls_handshake(): About to call SSL_connect on 0x320be24e490 (SSLv3/TLS read server hello)
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS read server hello [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state TLSv1.3 read encrypted extensions [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS read server certificate request [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS read server certificate [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state TLSv1.3 read server certificate verify [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS read finished [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write change cipher spec [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write client certificate [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSLv3/TLS write finished [type=4097,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSL negotiation finished successfully [type=32,val=1].
>  Tor[17665]: tor_tls_debug_state_callback(): SSL 0x320be24e800 is now in state SSL negotiation finished successfully [type=4098,val=1].
>  Tor[17665]: tor_tls_handshake(): After call, 0x320be24e490 was in state SSL negotiation finished successfully
>  Tor[17665]: control_event_network_liveness_update(): Sending NETWORK_LIVENESS UP
>  Tor[17665]: dispatch_send_msg_unchecked(): Queued: orconn_state (<gid=4 chan=1 proxy_type=0 state=7>) from orconn_event, on orconn.
>  Tor[17665]: dispatcher_run_msg_cbs(): Delivering: orconn_state (<gid=4 chan=1 proxy_type=0 state=7>) from orconn_event, on orconn:
>  Tor[17665]: dispatcher_run_msg_cbs():   Delivering to btrack.
>  Tor[17665]: bto_state_rcvr(): ORCONN gid=4 chan=1 proxy_type=0 state=7
>  Tor[17665]: bto_update_best(): ORCONN BEST_ANY state 3->7 gid=4
>  Tor[17665]: Bootstrapped 14% (handshake): Handshaking with a relay
>  Tor[17665]: connection_or_process_cells_from_inbuf(): 9: starting, inbuf_datalen 0 (0 pending in tls object).
>  Tor[17665]: conn_write_callback(): socket 9 wants to write.
>  Tor[17665]: flush_chunk_tls(): flushed 11 bytes, 0 ready to flush, 0 remain.
>  Tor[17665]: connection_handle_write_impl(): After TLS write of 11: 1227 read, 473 written
>  Tor[17665]: scheduler_set_channel_state(): chan 1 changed from scheduler state IDLE to WAITING_FOR_CELLS
>  Tor[17665]: download_status_log_helper(): [scrubbed] attempted 2 time(s); I'll try again in 2 seconds.
>  Tor[17665]: fetch_bridge_descriptors(): ask_bridge_directly=1 (1, 1, 0)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: download_status_log_helper(): [scrubbed] attempted 3 time(s); I'll try again in 2 seconds.
>  Tor[17665]: fetch_bridge_descriptors(): ask_bridge_directly=1 (1, 1, 0)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)
>  Tor[17665]: should_delay_dir_fetches(): Delaying dir fetches (no running bridges known)

For future reference here the link to the issue Felix created:
https://gitlab.torproject.org/tpo/core/tor/-/issues/40128

Best Fran

On 20.09.20 13:06, Roger Dingledine wrote:
> On Sun, Sep 20, 2020 at 12:57:46PM +0200, Felix wrote:
>> Libressl 321 is not compatible to what is needed to make the authorities
>> tor26, dizum, gabel., maatu. and longc. happy (let them not grant a
>> "Running"). What can that be?
>>
>> Please somebody can _confirm_ this thing?
> 
> You're not crazy. We had a user on irc reporting a similar thing,
> and my guess at the time was also "libressl compatibility issue".
> 
> You can see it also by using a Tor client and setting "usebridges 1 bridge
> ip:port" where ip:port is your ORPort. If it's like the user from irc,
> it will get almost through the TLS handshake but not quite. That is,
> the Tor client will fail to bootstrap.
> 
> If you could open a gitlab issue for the mystery, that would be great!
> 
> --Roger
> 
> _______________________________________________
> tor-relays mailing list
> tor-relays@xxxxxxxxxxxxxxxxxxxx
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
> 
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Dropped off consensus (0.4.4.5)
  - From: Felix
- Re: [tor-relays] Dropped off consensus (0.4.4.5) - reason is Libressl 3.2.1
  - From: Felix
- Re: [tor-relays] Dropped off consensus (0.4.4.5) - reason is Libressl 3.2.1
  - From: Roger Dingledine

Prev by Author: Re: [tor-relays] Heartbeat: It seems like we are not in the cached consensus.
Next by Author: Re: [tor-relays] SSH
Previous by thread: Re: [tor-relays] Dropped off consensus (0.4.4.5) - reason is Libressl 3.2.1
Next by thread: Re: [tor-relays] Dropped off consensus (0.4.4.5) - reason is Libressl 3.2.1
Index(es):
- Author
- Thread