Hidden service introduction point retries occur at 1 second intervals

Tor will try to reconnect to an introduction point up to 3 times. But rend_consider_services_intro_points() is called every second, which means that it uses up these retries very quickly, particularly if the connection fails quickly, like direct connections sometimes do on single onion services.

It might be more sensible to retry slightly more slowly.

On the other hand, maybe it's good that we fail fast and replace the introduction point.

This behaviour was introduced in commit 1125a4876b4.

changed milestone to %Tor: unspecified

added 034-removed-20180328 034-triage-20180328 042-deferred-20190918 component::core tor/tor milestone::Tor: unspecified owner::asn parent::21446 points::1 priority::medium prop224 severity::normal single-onion status::assigned tor-hs type::defect version::tor 0.2.7.2-alpha labels

Hrm... failing 3 times in 3 seconds means that every circuit creation failed right away? In that case, "tor" might have more problems... But I think the behavior here should be that we open a circuit and then if it fails like in 10 seconds after, we note down the try and retry a second later. That sounds reasonable to me?

Trac:
Status: new to needs_information

Replying to dgoulet:

Hrm... failing 3 times in 3 seconds means that every circuit creation failed right away? In that case, "tor" might have more problems... But I think the behavior here should be that we open a circuit and then if it fails like in 10 seconds after, we note down the try and retry a second later. That sounds reasonable to me?

Let's reword it to be something like:

When a circuit fails, we retry 10 seconds after we first detect the failure.

Then it's dynamic based on circuit failure time.

Trac:
Status: needs_information to assigned

See #21621 (moved) for notes on the timing of the retries here: I think we should retry after 30 seconds to match the connection timeout (and avoid penalising slow hidden services).

(Oh, and we should randomise each interval between 0.5 and 1.5 times, to avoid thundering herds.)

Let's try that again: the maximum we'll ever get is the circuit timeout, so let's make it a random value in [CircuitTimeout/3, CircuitTimeout].

Trac:
Sponsor: N/A to SponsorR-can

I will not have time to do this before the 0.3.1 code freeze. It would be good if someone else fixed this bug in 0.3.1, because it affects hidden service reliability.

If you defer to 0.3.2, please reassign to me.

Trac:
Owner: teor to N/A

Trac:
Milestone: Tor: 0.3.1.x-final to Tor: 0.3.2.x-final

Trac:
Owner: N/A to teor

Trac:
Keywords: N/A deleted, prop224 added

Still worth considering!

Trac:
Milestone: Tor: 0.3.2.x-final to Tor: 0.3.3.x-final

Moving most of my assigned tickets to 0.3.4

Trac:
Milestone: Tor: 0.3.3.x-final to Tor: 0.3.4.x-final

I'm not going to get time to do this in 0.3.4

Trac:
Owner: teor to N/A

Trac:
Keywords: N/A deleted, 034-triage-20180328 added

Per our triage process, these tickets are pending removal from 0.3.4.

Trac:
Keywords: N/A deleted, 034-removed-20180328 added

These tickets, tagged with 034-removed-*, are no longer in-scope for 0.3.4. We can reconsider any of them, if time permits.

Trac:
Milestone: Tor: 0.3.4.x-final to Tor: unspecified

To be clear, this ticket is about the onion service retrying circuits to its already-announced intro points, so it can resume using these intro points, so clients won't be too impacted when e.g. the onion service loses its network connection?

I ask because #25882 (moved) seems to be thinking this ticket is about clients who access onion services launching too many requests.

Make everything that is assigned to no-one new again.

Trac:
Status: assigned to new

Let's look at this again in 0.3.5. In Tor 0.3.4, we made these callbacks happen a few times a second.

Trac:
Keywords: N/A deleted, 035-must added
Milestone: Tor: unspecified to Tor: 0.3.5.x-final

Trac:
Sponsor: SponsorR-can to N/A

Worth doing, but a long-deferred ticket can't really be a "must" IMO.

Trac:
Keywords: 035-must deleted, N/A added

Trac:
Priority: Medium to High

Trac:
Status: new to assigned
Owner: N/A to asn

No time for this in 035. Pushing to 036.

Trac:
Milestone: Tor: 0.3.5.x-final to Tor: 0.3.6.x-final

Trac:
Priority: High to Medium

Tor 0.3.6.x has been renamed to 0.4.0.x.

Trac:
Milestone: Tor: 0.3.6.x-final to Tor: 0.4.0.x-final

Trac:
Milestone: Tor: 0.4.0.x-final to Tor: 0.4.1.x-final

Trac:
Keywords: N/A deleted, 041-should added

Defering to 042. We should make a plan here and fit it into 042. It's not really a bugfix for the frozen 041 release.

Trac:
Milestone: Tor: 0.4.1.x-final to Tor: 0.4.2.x-final

Trac:
Keywords: 041-should deleted, N/A added

Deferring various tickets from 0.4.2 to Unspecified.

Trac:
Keywords: N/A deleted, 042-deferred-20190918 added
Milestone: Tor: 0.4.2.x-final to Tor: unspecified

changed time estimate to 8h

mentioned in issue #21621 (moved)

mentioned in issue #25882 (moved)

moved to tpo/core/tor#21600 (closed)