[tor-talk] Hidden Services - reliably resolving/using onions, CPU

grarpamp grarpamp at gmail.com
Tue Sep 11 05:17:31 UTC 2012 

> Tor's hidden service protocol

I get most of the protocol.

> Patient: `Doctor, it hurts when I do this.'
> Doctor: `Don't do that then.'

Though I might agree, more perhaps from the humor aspect :) We all
know telling users not to do something, that is at least marginally
possible, doesn't work. Lots of apps are going to have many connections
going up and down. Chat/mail networks, the new P2P social nets,
search and archive engines, network stats, even filesharing/torrenting.
Anything that has a distributed model will be doing some or all
parts of the HS setup and transit. Even a popular onion site has
to create piles of outbound circuits to service demand. Saying
"Don't do it" would be putting the heads in the sand.

Anyway, I posted one particular usage pattern earlier. I can get a
steady pool of about 15-20 going before the local CPU bogs down.

As for making Tor better... Roger said some things in:
 "hidden services and stream isolation (file transfer over Tor HS speedup?)"
that I'll look at again.

For those interested... a run log respectively for tor, streams,
polipo and wget.

# tor

1899 Closing stream for '80bit.onion': hidden service is unavailable
(try again later).
  19 Tried for 120 seconds to get a connection to 80bit:port. Giving up.
  20 Tried for 120 seconds to get a connection to 80bit:port. Giving
up. (waiting for circuit)
 463 Tried for 120 seconds to get a connection to 80bit:port. Giving
up. (waiting for rendezvous desc)
  21 Tried for 121 seconds to get a connection to 80bit:port. Giving
up. (waiting for rendezvous desc)

# streams

 229 CLOSED circ ip.exit:port REASON=CANT_ATTACH
   2 CLOSED circ ip.exit:port REASON=DONE
15658 CLOSED circ ip.exit:port REASON=END REMOTE_REASON=DONE
 208 CLOSED circ ip.exit:port REASON=TIMEOUT
  19 CLOSED circ onion:port REASON=CANT_ATTACH
 372 CLOSED circ onion:port REASON=DONE
  10 CLOSED circ onion:port REASON=END REMOTE_REASON=CONNECTREFUSED
   4 CLOSED circ onion:port REASON=END REMOTE_REASON=CONNRESET
 183 CLOSED circ onion:port REASON=END REMOTE_REASON=DONE
  58 CLOSED circ onion:port REASON=END REMOTE_REASON=EXITPOLICY
   2 CLOSED circ onion:port REASON=END REMOTE_REASON=MISC
   1 CLOSED circ onion:port REASON=END REMOTE_REASON=NOROUTE
1899 CLOSED circ onion:port REASON=RESOLVEFAILED
 504 CLOSED circ onion:port REASON=TIMEOUT
 105 DETACHED circ ip.exit:port REASON=TIMEOUT
 229 FAILED circ ip.exit:port REASON=CANT_ATTACH
 208 FAILED circ ip.exit:port REASON=TIMEOUT
  19 FAILED circ onion:port REASON=CANT_ATTACH
  10 FAILED circ onion:port REASON=END REMOTE_REASON=CONNECTREFUSED
  58 FAILED circ onion:port REASON=END REMOTE_REASON=EXITPOLICY
   2 FAILED circ onion:port REASON=END REMOTE_REASON=MISC
   1 FAILED circ onion:port REASON=END REMOTE_REASON=NOROUTE
1899 FAILED circ onion:port REASON=RESOLVEFAILED
 504 FAILED circ onion:port REASON=TIMEOUT
16097 NEW circ ip.exit:port SOURCE_ADDR=(Tor_internal):0 PURPOSE=DIR_FETCH
3052 NEW circ onion:port SOURCE_ADDR=127.0.0.1:port PURPOSE=USER
15765 SENTCONNECT circ ip.exit:port
 630 SENTCONNECT circ onion:port
15660 SUCCEEDED circ ip.exit:port
 559 SUCCEEDED circ onion:port

# polipo

  21 Connect to onion failed: General SOCKS server failure
  58 Connect to onion failed: SOCKS connection not allowed
 504 Connect to onion failed: SOCKS error: TTL expired
  10 Connect to onion failed: SOCKS error: connection refused
1900 Connect to onion failed: SOCKS error: host unreachable
   7 Read from server failed: Timeout

# wget

   1 ERROR 500: Internal Server Error.
   1 ERROR 502: Couldn't parse server status line.
   7 ERROR 502: Read from server failed: Timeout.
  25 ERROR 502: Server dropped connection.
   1 ERROR 503: Service Unavailable.
   1 ERROR 503: Service unavailable.
  21 ERROR 504: Connect to onion failed: General SOCKS server failure.
  58 ERROR 504: Connect to onion failed: SOCKS connection not allowed.
 194 ERROR 504: Connect to onion failed: SOCKS error: TTL expired.
  10 ERROR 504: Connect to onion failed: SOCKS error: connection refused.
1894 ERROR 504: Connect to onion failed: SOCKS error: host unreachable.
 420 No data received.

More information about the tor-talk mailing list