If a user is running Tor proxy outside localhost (perhaps on other host inside LAN or in containerised environment) , the automatic creation of onion services ends up creating an onion service listening to hardcored 127.0.0.1 address on the Tor proxy’s host instead of the private address of the bitcoind – effectively running an empty onion service listening the Tor proxy’s localhost.
ADD_ONION assumes bitcoind to reside in hardcoded 127.0.0.1 #16693
issue henrikuittinen openend this issue on August 23, 2019-
henrikuittinen commented at 9:54 am on August 23, 2019: none
-
fanquake added the label P2P on Aug 23, 2019
-
emilengler commented at 5:02 pm on August 23, 2019: contributorGood point but do people actually run Tor outside? Everyone who really wants to protect his privacy through Tor would never do this
-
henrikuittinen commented at 6:05 pm on August 23, 2019: none
Good point but do people actually run Tor outside?
I’d say it’s relatively common to have a separate Tor proxy in your LAN somewhere, not necessarily on the same host. Especially if you’re running several hidden services in separate containers or perhaps routing traffic of all your devices through torified Raspberry Pi, for example.
-
sipa commented at 6:14 pm on August 23, 2019: member@henrikuittinen Sure, but how would you be using the Tor control interface in that case?
-
henrikuittinen commented at 6:17 pm on August 23, 2019: none
@henrikuittinen Sure, but how would you be using the Tor control interface in that case?
Through
-torcontrol=<ip>:<port>
and-torpassword=<pass>
. It connects perfectly and creates a hidden service, but assumes the bitcoind is in127.0.0.1
– which is of course hardcoded at the moment. -
sipa commented at 6:17 pm on August 23, 2019: memberOh, interesting. That sounds like a bug.
-
henrikuittinen commented at 6:27 pm on August 23, 2019: none
Yeah, it’s right here: https://github.com/bitcoin/bitcoin/blob/d72758c3f6c34cd835f5de3efc230964f3b1ea56/src/torcontrol.cpp#L539
I reckon instead of hardcoding
127.0.0.1
it should take inGetBindAddress()
. -
meeDamian commented at 5:03 pm on May 3, 2020: contributorWow, I’ve spent so much time trying to figure out why the
bitcoind
I run in a container doesn’t want to work with Tor on host, and inventing dirty hacks to go around that 😬. Needless to say, glad this issue exists :). -
hebasto commented at 11:12 am on September 28, 2020: member@henrikuittinen Mind testing #19991?
-
henrikuittinen commented at 8:15 pm on September 28, 2020: none
@henrikuittinen Mind testing #19991?
Unfortunately I don’t have this setup anymore. Thanks for the PR though!
-
laanwj closed this on Oct 2, 2020
-
sidhujag referenced this in commit 9d14195e7b on Oct 4, 2020
-
DrahtBot locked this on Feb 15, 2022
henrikuittinen
emilengler
sipa
meeDamian
hebasto
Labels
P2P
This is a metadata mirror of the GitHub repository bitcoin/bitcoin. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2024-12-18 15:12 UTC
More mirrored repositories can be found on mirror.b10c.me