From 463f6628d316cecdd612b4a78cd5349ab4a824c5 Mon Sep 17 00:00:00 2001
From: Nick Mathewson <nickm@torproject.org>
Date: Wed, 9 Apr 2014 11:13:37 -0400
Subject: Give each or_connection_t a slightly randomized idle_timeout

Instead of killing an or_connection_t that has had no circuits for
the last 3 minutes, give every or_connection_t a randomized timeout,
so that an observer can't so easily infer from the connection close
time the time at which its last circuit closed.

Also, increase the base timeout for canonical connections from 3
minutes to 15 minutes.

Fix for ticket 6799.
---
 changes/bug6799 | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 changes/bug6799

(limited to 'changes')

diff --git a/changes/bug6799 b/changes/bug6799
new file mode 100644
index 000000000..b50762bb0
--- /dev/null
+++ b/changes/bug6799
@@ -0,0 +1,13 @@
+  o Major features:
+
+    - Increate the base amount of time that a canonical connection
+      (one that we have made to a known OR) is allowed to stay open
+      from a 3 minutes to 15 minutes.  This leaks less information
+      about when circuits have closed, and avoids unnecessary overhead
+      from renegotiating connections. Part of a fix for ticket 6799.
+
+    - Instead of closing connections at a fixed interval after their
+      last circuit closed, randomly add up to 50% to each connection's
+      maximum timout. This makes it harder to tell when the last
+      circuit closed by looking at when a connection closes. Part of a
+      fix for ticket 6799.
-- 
cgit v1.2.3