GNUnet  0.20.0
Typedefs | Functions
gnunet-service-transport_validation.h File Reference

address validation API More...

#include "gnunet_statistics_service.h"
#include "gnunet_transport_plugin.h"
#include "gnunet_util_lib.h"
#include "gnunet_hello_lib.h"
Include dependency graph for gnunet-service-transport_validation.h:
This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Typedefs

typedef void(* GST_ValidationAddressCallback) (void *cls, struct GNUNET_TIME_Absolute valid_until, struct GNUNET_TIME_Absolute validation_block, const struct GNUNET_HELLO_Address *address)
 Function called for each address (or address status change) that the validation module is aware of (for the given target). More...
 

Functions

void GST_validation_start (unsigned int max_fds)
 Start the validation subsystem. More...
 
void GST_validation_stop (void)
 Stop the validation subsystem. More...
 
void GST_validation_set_address_use (const struct GNUNET_HELLO_Address *address, int in_use)
 Update if we are using an address for a connection actively right now. More...
 
int GST_validation_handle_ping (const struct GNUNET_PeerIdentity *sender, const struct GNUNET_MessageHeader *hdr, const struct GNUNET_HELLO_Address *sender_address, struct GNUNET_ATS_Session *session)
 We've received a PING. More...
 
int GST_validation_handle_pong (const struct GNUNET_PeerIdentity *sender, const struct GNUNET_MessageHeader *hdr)
 We've received a PONG. More...
 
int GST_validation_handle_hello (const struct GNUNET_MessageHeader *hello)
 We've received a HELLO, check which addresses are new and trigger validation. More...
 
void GST_validation_handle_address (const struct GNUNET_HELLO_Address *address)
 Validate an individual address. More...
 
void GST_validation_get_addresses (const struct GNUNET_PeerIdentity *target, GST_ValidationAddressCallback cb, void *cb_cls)
 Call the given function for each address for the given target. More...
 

Detailed Description

address validation API

Author
Christian Grothoff

Definition in file gnunet-service-transport_validation.h.

Typedef Documentation

◆ GST_ValidationAddressCallback

typedef void(* GST_ValidationAddressCallback) (void *cls, struct GNUNET_TIME_Absolute valid_until, struct GNUNET_TIME_Absolute validation_block, const struct GNUNET_HELLO_Address *address)

Function called for each address (or address status change) that the validation module is aware of (for the given target).

Parameters
clsclosure
public_keypublic key for the peer, never NULL
valid_untilis ZERO if we never validated the address, otherwise a time up to when we consider it (or was) valid
validation_blockis FOREVER if the address is for an unsupported plugin (from PEERINFO) is ZERO if the address is considered valid (no validation needed) otherwise a time in the future if we're currently denying re-validation
addressthe address

Definition at line 126 of file gnunet-service-transport_validation.h.

Function Documentation

◆ GST_validation_start()

void GST_validation_start ( unsigned int  max_fds)

Start the validation subsystem.

Parameters
max_fdsmaximum number of fds to use

Initialization for validation throttling

We have a maximum number max_fds of connections we can use for validation We monitor the number of validations in parallel and start to throttle it when doing to many validations in parallel: if (running validations < (max_fds / 2))

  • "fast start": run validation immediately
  • have delay of (GNUNET_CONSTANTS_IDLE_CONNECTION_TIMEOUT.rel_value_us) / (max_fds / 2) (300 sec / ~150 == ~2 sec.) between two validations

Definition at line 982 of file gnunet-service-transport_validation.c.

983 {validation_next = GNUNET_TIME_absolute_get ();
995  validation_delay.rel_value_us =
996  (GNUNET_CONSTANTS_IDLE_CONNECTION_TIMEOUT.rel_value_us) / (max_fds / 2);
997  validations_fast_start_threshold = (max_fds / 2);
998  validations_running = 0;
999  GNUNET_STATISTICS_set (GST_stats,
1000  gettext_noop ("# validations running"),
1001  validations_running,
1002  GNUNET_NO);
1003  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1004  "Validation uses a fast start threshold of %u connections and a delay of %s\n",
1005  validations_fast_start_threshold,
1006  GNUNET_STRINGS_relative_time_to_string (validation_delay,
1007  GNUNET_YES));
1008  validation_map = GNUNET_CONTAINER_multipeermap_create (VALIDATION_MAP_SIZE,
1009  GNUNET_NO);
1010  pnc = GNUNET_PEERINFO_notify (GST_cfg, GNUNET_YES,
1011  &process_peerinfo_hello, NULL);
1012 }
gettext_noop
#define gettext_noop(String)
Definition: gettext.h:70
GST_cfg
static const struct GNUNET_CONFIGURATION_Handle * GST_cfg
Configuration handle.
Definition: gnunet-service-tng.c:2757
GST_stats
static struct GNUNET_STATISTICS_Handle * GST_stats
Statistics handle.
Definition: gnunet-service-tng.c:2752
validation_delay
static struct GNUNET_TIME_Relative validation_delay
Minimum delay between to validations.
Definition: gnunet-service-transport_validation.c:340
VALIDATION_MAP_SIZE
#define VALIDATION_MAP_SIZE
Size of the validation map hashmap.
Definition: gnunet-service-transport_validation.c:134
pnc
static struct GNUNET_PEERINFO_NotifyContext * pnc
Context for peerinfo iteration.
Definition: gnunet-service-transport_validation.c:335
validation_map
static struct GNUNET_CONTAINER_MultiPeerMap * validation_map
Map of PeerIdentities to 'struct ValidationEntry*'s (addresses of the given peer that we are currentl...
Definition: gnunet-service-transport_validation.c:330
validations_fast_start_threshold
static unsigned int validations_fast_start_threshold
Validition fast start threshold.
Definition: gnunet-service-transport_validation.c:352
validations_running
static unsigned int validations_running
Number of validations running; any PING that was not yet matched by a PONG and for which we have not ...
Definition: gnunet-service-transport_validation.c:347
process_peerinfo_hello
static void process_peerinfo_hello(void *cls, const struct GNUNET_PeerIdentity *peer, const struct GNUNET_HELLO_Message *hello, const char *err_msg)
Function called for any HELLO known to PEERINFO.
Definition: gnunet-service-transport_validation.c:951
validation_next
static struct GNUNET_TIME_Absolute validation_next
When is next validation allowed.
Definition: gnunet-service-transport_validation.c:357
GNUNET_CONSTANTS_IDLE_CONNECTION_TIMEOUT
#define GNUNET_CONSTANTS_IDLE_CONNECTION_TIMEOUT
After how long do we consider a connection to a peer dead if we don't receive messages from the peer?
Definition: gnunet_constants.h:57
GNUNET_CONTAINER_multipeermap_create
struct GNUNET_CONTAINER_MultiPeerMap * GNUNET_CONTAINER_multipeermap_create(unsigned int len, int do_not_copy_keys)
Create a multi peer map (hash map for public keys of peers).
Definition: container_multipeermap.c:179
GNUNET_log
#define GNUNET_log(kind,...)
Definition: gnunet_common.h:568
GNUNET_YES
@ GNUNET_YES
Definition: gnunet_common.h:111
GNUNET_NO
@ GNUNET_NO
Definition: gnunet_common.h:108
GNUNET_ERROR_TYPE_DEBUG
@ GNUNET_ERROR_TYPE_DEBUG
Definition: gnunet_common.h:444
GNUNET_PEERINFO_notify
struct GNUNET_PEERINFO_NotifyContext * GNUNET_PEERINFO_notify(const struct GNUNET_CONFIGURATION_Handle *cfg, int include_friend_only, GNUNET_PEERINFO_Processor callback, void *callback_cls)
Call a method whenever our known information about peers changes.
Definition: peerinfo_api_notify.c:245
GNUNET_STATISTICS_set
void GNUNET_STATISTICS_set(struct GNUNET_STATISTICS_Handle *handle, const char *name, uint64_t value, int make_persistent)
Set statistic value for the peer.
Definition: statistics_api.c:1307
GNUNET_TIME_absolute_get
struct GNUNET_TIME_Absolute GNUNET_TIME_absolute_get(void)
Get the current time.
Definition: time.c:111
GNUNET_STRINGS_relative_time_to_string
const char * GNUNET_STRINGS_relative_time_to_string(struct GNUNET_TIME_Relative delta, int do_round)
Give relative time in human-readable fancy format.
Definition: strings.c:569
GNUNET_TIME_Relative::rel_value_us
uint64_t rel_value_us
The actual value.
Definition: gnunet_time_lib.h:81

References gettext_noop, GNUNET_CONSTANTS_IDLE_CONNECTION_TIMEOUT, GNUNET_CONTAINER_multipeermap_create(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_log, GNUNET_NO, GNUNET_PEERINFO_notify(), GNUNET_STATISTICS_set(), GNUNET_STRINGS_relative_time_to_string(), GNUNET_TIME_absolute_get(), GNUNET_YES, GST_cfg, GST_stats, pnc, process_peerinfo_hello(), GNUNET_TIME_Relative::rel_value_us, validation_delay, validation_map, VALIDATION_MAP_SIZE, validation_next, validations_fast_start_threshold, and validations_running.

Referenced by run().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GST_validation_stop()

void GST_validation_stop ( void  )

Stop the validation subsystem.

Definition at line 1019 of file gnunet-service-transport_validation.c.

1020 {
1021  GNUNET_CONTAINER_multipeermap_iterate (validation_map,
1022  &cleanup_validation_entry,
1023  NULL);
1024  GNUNET_CONTAINER_multipeermap_destroy (validation_map);
1025  validation_map = NULL;
1026  GNUNET_PEERINFO_notify_cancel (pnc);
1027 }
cleanup_validation_entry
static int cleanup_validation_entry(void *cls, const struct GNUNET_PeerIdentity *key, void *value)
Iterate over validation entries and free them.
Definition: gnunet-service-transport_validation.c:443
GNUNET_CONTAINER_multipeermap_destroy
void GNUNET_CONTAINER_multipeermap_destroy(struct GNUNET_CONTAINER_MultiPeerMap *map)
Destroy a hash map.
Definition: container_multipeermap.c:199
GNUNET_CONTAINER_multipeermap_iterate
int GNUNET_CONTAINER_multipeermap_iterate(struct GNUNET_CONTAINER_MultiPeerMap *map, GNUNET_CONTAINER_PeerMapIterator it, void *it_cls)
Iterate over all entries in the map.
Definition: container_multipeermap.c:292
GNUNET_PEERINFO_notify_cancel
void GNUNET_PEERINFO_notify_cancel(struct GNUNET_PEERINFO_NotifyContext *nc)
Stop notifying about changes.
Definition: peerinfo_api_notify.c:275

References cleanup_validation_entry(), GNUNET_CONTAINER_multipeermap_destroy(), GNUNET_CONTAINER_multipeermap_iterate(), GNUNET_PEERINFO_notify_cancel(), pnc, and validation_map.

Referenced by shutdown_task().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GST_validation_set_address_use()

void GST_validation_set_address_use ( const struct GNUNET_HELLO_Address address,
int  in_use 
)

Update if we are using an address for a connection actively right now.

Based on this, the validation module will measure latency for the address more or less often.

Parameters
addressthe address that we are now using (or not)
in_useGNUNET_YES if we are now using the address for a connection, GNUNET_NO if we are no longer using the address for a connection

Definition at line 1785 of file gnunet-service-transport_validation.c.

1787 {
1788  struct ValidationEntry *ve;
1789 
1790  if (GNUNET_HELLO_address_check_option (address,
1791  GNUNET_HELLO_ADDRESS_INFO_INBOUND))
1792  return; /* ignore inbound for validation */
1793  if (NULL == GST_plugins_find (address->transport_name))
1794  {
1795  /* How can we use an address for which we don't have the plugin? */
1796  GNUNET_break (0);
1797  return;
1798  }
1799  ve = find_validation_entry (address);
1800  if (NULL == ve)
1801  {
1802  GNUNET_break (0);
1803  return;
1804  }
1805  if (in_use == ve->in_use)
1806  return;
1807  ve->in_use = in_use;
1808  if (GNUNET_YES == in_use)
1809  {
1810  /* from now on, higher frequency, so reschedule now */
1811  if (NULL != ve->revalidation_task)
1812  GNUNET_SCHEDULER_cancel (ve->revalidation_task);
1813  ve->revalidation_task = GNUNET_SCHEDULER_add_now (&revalidate_address,
1814  ve);
1815  }
1816 }
address
static char * address
GNS address for this phone.
Definition: gnunet-conversation.c:227
GST_plugins_find
struct GNUNET_TRANSPORT_PluginFunctions * GST_plugins_find(const char *name)
Obtain the plugin API based on a plugin name.
Definition: gnunet-service-transport_plugins.c:336
revalidate_address
static void revalidate_address(void *cls)
Do address validation again to keep address valid.
Definition: gnunet-service-transport_validation.c:695
find_validation_entry
static struct ValidationEntry * find_validation_entry(const struct GNUNET_HELLO_Address *address)
Find a ValidationEntry entry for the given neighbour that matches the given address and transport.
Definition: gnunet-service-transport_validation.c:822
GNUNET_HELLO_address_check_option
int GNUNET_HELLO_address_check_option(const struct GNUNET_HELLO_Address *address, enum GNUNET_HELLO_AddressInfo option)
Check if an address has a local option set.
Definition: address.c:39
GNUNET_HELLO_ADDRESS_INFO_INBOUND
@ GNUNET_HELLO_ADDRESS_INFO_INBOUND
This is an inbound address and cannot be used to initiate an outbound connection to another peer.
Definition: gnunet_hello_lib.h:83
GNUNET_break
#define GNUNET_break(cond)
Use this for internal assertion violations that are not fatal (can be handled) but should not occur.
Definition: gnunet_common.h:1024
GNUNET_SCHEDULER_add_now
struct GNUNET_SCHEDULER_Task * GNUNET_SCHEDULER_add_now(GNUNET_SCHEDULER_TaskCallback task, void *task_cls)
Schedule a new task to be run as soon as possible.
Definition: scheduler.c:1299
GNUNET_SCHEDULER_cancel
void * GNUNET_SCHEDULER_cancel(struct GNUNET_SCHEDULER_Task *task)
Cancel the task with the specified identifier.
Definition: scheduler.c:975
ValidationEntry
Information about an address under validation.
Definition: gnunet-service-transport_validation.c:225
ValidationEntry::revalidation_task
struct GNUNET_SCHEDULER_Task * revalidation_task
ID of task that will trigger address revalidation.
Definition: gnunet-service-transport_validation.c:249
ValidationEntry::in_use
int in_use
Are we currently using this address for a connection?
Definition: gnunet-service-transport_validation.c:306

Referenced by free_address(), and set_primary_address().

Here is the caller graph for this function:

◆ GST_validation_handle_ping()

int GST_validation_handle_ping ( const struct GNUNET_PeerIdentity sender,
const struct GNUNET_MessageHeader hdr,
const struct GNUNET_HELLO_Address sender_address,
struct GNUNET_ATS_Session session 
)

We've received a PING.

If appropriate, generate a PONG.

Parameters
senderpeer sending the PING
hdrthe PING
sender_addressaddress of the sender, NULL if we did not initiate
sessionsession we got the PING from
Returns
GNUNET_OK if the message was fine, GNUNET_SYSERR on serious error

If appropriate, generate a PONG.

Parameters
senderpeer sending the PING
hdrthe PING
sender_addressthe sender address as we got it
sessionsession we got the PING from
Returns
GNUNET_OK if the message was fine, GNUNET_SYSERR on serious error

Definition at line 1090 of file gnunet-service-transport_validation.c.

1094 {
1095  const struct TransportPingMessage *ping;
1096  struct TransportPongMessage *pong;
1097  struct GNUNET_TRANSPORT_PluginFunctions *papi;
1098  struct GNUNET_CRYPTO_EddsaSignature *sig_cache;
1099  struct GNUNET_TIME_Absolute *sig_cache_exp;
1100  const char *addr;
1101  const char *addrend;
1102  char *plugin_name;
1103  char *pos;
1104  size_t len_address;
1105  size_t len_plugin;
1106  ssize_t ret;
1107  struct GNUNET_HELLO_Address address;
1108 
1109  if (0 ==
1110  memcmp (&GST_my_identity,
1111  sender,
1112  sizeof(struct GNUNET_PeerIdentity)))
1113  return GNUNET_OK; /* our own, ignore! */
1114  if (ntohs (hdr->size) < sizeof(struct TransportPingMessage))
1115  {
1116  GNUNET_break_op (0);
1117  return GNUNET_SYSERR;
1118  }
1119  ping = (const struct TransportPingMessage *) hdr;
1120  if (0 !=
1121  memcmp (&ping->target,
1122  &GST_my_identity,
1123  sizeof(struct GNUNET_PeerIdentity)))
1124  {
1125  GNUNET_STATISTICS_update (GST_stats,
1126  gettext_noop
1127  ("# PING message for different peer received"),
1128  1,
1129  GNUNET_NO);
1130  return GNUNET_SYSERR;
1131  }
1132  GNUNET_STATISTICS_update (GST_stats,
1133  gettext_noop ("# PING messages received"), 1,
1134  GNUNET_NO);
1135  addr = (const char *) &ping[1];
1136  len_address = ntohs (hdr->size) - sizeof(struct TransportPingMessage);
1137  /* peer wants to confirm that this is one of our addresses, this is what is
1138  * used for address validation */
1139 
1140  sig_cache = NULL;
1141  sig_cache_exp = NULL;
1142  papi = NULL;
1143  if (len_address > 0)
1144  {
1145  addrend = memchr (addr, '\0', len_address);
1146  if (NULL == addrend)
1147  {
1148  GNUNET_break_op (0);
1149  return GNUNET_SYSERR;
1150  }
1151  addrend++;
1152  len_plugin = strlen (addr) + 1;
1153  len_address -= len_plugin;
1154  address.local_info = GNUNET_HELLO_ADDRESS_INFO_NONE;
1155  address.address = addrend;
1156  address.address_length = len_address;
1157  address.transport_name = addr;
1158  address.peer = GST_my_identity;
1159 
1160  if (NULL == address.transport_name)
1161  {
1162  GNUNET_break (0);
1163  }
1164 
1165  if (0 != strstr (address.transport_name, "_client"))
1166  {
1167  plugin_name = GNUNET_strdup (address.transport_name);
1168  pos = strstr (plugin_name, "_client");
1169  GNUNET_assert (NULL != pos);
1170  GNUNET_snprintf (pos, strlen ("_server") + 1, "%s", "_server");
1171  }
1172  else
1173  plugin_name = GNUNET_strdup (address.transport_name);
1174 
1175  if (NULL == (papi = GST_plugins_find (plugin_name)))
1176  {
1177  /* we don't have the plugin for this address */
1178  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1179  _ (
1180  "Plugin `%s' not available, cannot confirm having this address\n"),
1181  plugin_name);
1182  GNUNET_free (plugin_name);
1183  return GNUNET_SYSERR;
1184  }
1185  GNUNET_free (plugin_name);
1186  if (GNUNET_OK !=
1187  papi->check_address (papi->cls,
1188  addrend,
1189  len_address))
1190  {
1191  GNUNET_STATISTICS_update (GST_stats,
1192  gettext_noop
1193  ("# failed address checks during validation"),
1194  1,
1195  GNUNET_NO);
1196  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1197  _ (
1198  "Address `%s' is not one of my addresses, not confirming PING\n"),
1199  GST_plugins_a2s (&address));
1200  return GNUNET_SYSERR;
1201  }
1202  else
1203  {
1204  GNUNET_STATISTICS_update (GST_stats,
1205  gettext_noop
1206  (
1207  "# successful address checks during validation"),
1208  1,
1209  GNUNET_NO);
1210  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1211  "Address `%s' is one of my addresses, confirming PING\n",
1212  GST_plugins_a2s (&address));
1213  }
1214 
1215  if (GNUNET_YES !=
1216  GST_hello_test_address (&address,
1217  &sig_cache,
1218  &sig_cache_exp))
1219  {
1220  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1221  _ (
1222  "Not confirming PING from peer `%s' with address `%s' since I cannot confirm having this address.\n"),
1223  GNUNET_i2s (sender),
1224  GST_plugins_a2s (&address));
1225  return GNUNET_SYSERR;
1226  }
1227  }
1228  else
1229  {
1230  addrend = NULL; /* make gcc happy */
1231  len_plugin = 0;
1232  static struct GNUNET_CRYPTO_EddsaSignature no_address_signature;
1233  static struct GNUNET_TIME_Absolute no_address_signature_expiration;
1234 
1235  sig_cache = &no_address_signature;
1236  sig_cache_exp = &no_address_signature_expiration;
1237  }
1238 
1239  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1240  "I am `%s', sending PONG to peer `%s'\n",
1241  GNUNET_i2s_full (&GST_my_identity),
1242  GNUNET_i2s (sender));
1243 
1244  /* message with structure:
1245  * [TransportPongMessage][Transport name][Address] */
1246 
1247  pong = GNUNET_malloc (sizeof(struct TransportPongMessage) + len_address
1248  + len_plugin);
1249  pong->header.size =
1250  htons (sizeof(struct TransportPongMessage) + len_address + len_plugin);
1251  pong->header.type = htons (GNUNET_MESSAGE_TYPE_TRANSPORT_PONG);
1252  pong->purpose.size =
1253  htonl (sizeof(struct GNUNET_CRYPTO_EccSignaturePurpose)
1254  + sizeof(uint32_t) + sizeof(struct GNUNET_TIME_AbsoluteNBO)
1255  + len_address + len_plugin);
1256  pong->purpose.purpose = htonl (GNUNET_SIGNATURE_PURPOSE_TRANSPORT_PONG_OWN);
1257  GNUNET_memcpy (&pong->challenge, &ping->challenge, sizeof(ping->challenge));
1258  pong->addrlen = htonl (len_address + len_plugin);
1259  GNUNET_memcpy (&pong[1], addr, len_plugin); /* Copy transport plugin */
1260  if (len_address > 0)
1261  {
1262  GNUNET_assert (NULL != addrend);
1263  GNUNET_memcpy (&((char *) &pong[1])[len_plugin], addrend, len_address);
1264  }
1265  if (GNUNET_TIME_absolute_get_remaining (*sig_cache_exp).rel_value_us <
1266  PONG_SIGNATURE_LIFETIME.rel_value_us / 4)
1267  {
1268  /* create / update cached sig */
1269  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1270  "Creating PONG signature to indicate ownership.\n");
1271  *sig_cache_exp = GNUNET_TIME_relative_to_absolute (PONG_SIGNATURE_LIFETIME);
1272  pong->expiration = GNUNET_TIME_absolute_hton (*sig_cache_exp);
1273  if (GNUNET_OK !=
1274  GNUNET_CRYPTO_eddsa_sign_ (&GST_my_private_key,
1275  &pong->purpose,
1276  sig_cache))
1277  {
1278  GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
1279  _ ("Failed to create PONG signature for peer `%s'\n"),
1280  GNUNET_i2s (sender));
1281  }
1282  }
1283  else
1284  {
1285  pong->expiration = GNUNET_TIME_absolute_hton (*sig_cache_exp);
1286  }
1287  pong->signature = *sig_cache;
1288 
1289  GNUNET_assert (NULL != sender_address);
1290 
1291  /* first see if the session we got this PING from can be used to transmit
1292  * a response reliably */
1293  if (NULL == papi)
1294  {
1295  ret = -1;
1296  }
1297  else
1298  {
1299  GNUNET_assert (NULL != papi->send);
1300  GNUNET_assert (NULL != papi->get_session);
1301  if (NULL == session)
1302  {
1303  session = papi->get_session (papi->cls, sender_address);
1304  }
1305  if (NULL == session)
1306  {
1307  GNUNET_break (0);
1308  ret = -1;
1309  }
1310  else
1311  {
1312  ret = papi->send (papi->cls, session,
1313  (const char *) pong,
1314  ntohs (pong->header.size),
1315  PONG_PRIORITY, ACCEPTABLE_PING_DELAY,
1316  NULL, NULL);
1317  if (-1 != ret)
1318  GST_neighbours_notify_data_sent (sender_address,
1319  session,
1320  pong->header.size);
1321  }
1322  }
1323  if (-1 != ret)
1324  {
1325  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1326  "Transmitted PONG to `%s' via reliable mechanism\n",
1327  GNUNET_i2s (sender));
1328  /* done! */
1329  GNUNET_STATISTICS_update (GST_stats,
1330  gettext_noop
1331  ("# PONGs unicast via reliable transport"), 1,
1332  GNUNET_NO);
1333  GNUNET_free (pong);
1334  return GNUNET_OK;
1335  }
1336 
1337  /* no reliable method found, try transmission via all known addresses */
1338  GNUNET_STATISTICS_update (GST_stats,
1339  gettext_noop
1340  ("# PONGs multicast to all available addresses"),
1341  1,
1342  GNUNET_NO);
1343  GST_validation_get_addresses (sender,
1344  &multicast_pong, pong);
1345  GNUNET_free (pong);
1346  return GNUNET_OK;
1347 }
GNUNET_SIGNATURE_PURPOSE_TRANSPORT_PONG_OWN
#define GNUNET_SIGNATURE_PURPOSE_TRANSPORT_PONG_OWN
Signature for confirming that this peer uses a particular address.
Definition: gnunet_signatures.h:58
ret
static int ret
Return value of the commandline.
Definition: gnunet-abd.c:81
pong
static void pong(struct GNUNET_CADET_Channel *channel, const struct CadetPingMessage *ping)
Reply with a pong to origin.
Definition: gnunet-cadet-profiler.c:664
ping
static void ping(void *cls)
Send a ping to destination.
Definition: gnunet-cadet-profiler.c:639
plugin_name
static char * plugin_name
Name of our plugin.
Definition: gnunet-service-datastore.c:154
GST_my_identity
static struct GNUNET_PeerIdentity GST_my_identity
Our public key.
Definition: gnunet-service-tng.c:2762
GST_my_private_key
static struct GNUNET_CRYPTO_EddsaPrivateKey * GST_my_private_key
Our private key.
Definition: gnunet-service-tng.c:2767
GST_hello_test_address
int GST_hello_test_address(const struct GNUNET_HELLO_Address *address, struct GNUNET_CRYPTO_EddsaSignature **sig, struct GNUNET_TIME_Absolute **sig_expiration)
Test if a particular address is one of ours.
Definition: gnunet-service-transport_hello.c:338
GST_neighbours_notify_data_sent
void GST_neighbours_notify_data_sent(const struct GNUNET_HELLO_Address *address, struct GNUNET_ATS_Session *session, size_t size)
Track information about data we transmitted using the given address and session (used to notify ATS a...
Definition: gnunet-service-transport_neighbours.c:2997
GST_plugins_a2s
const char * GST_plugins_a2s(const struct GNUNET_HELLO_Address *address)
Convert a given address to a human-readable format.
Definition: gnunet-service-transport_plugins.c:386
PONG_PRIORITY
#define PONG_PRIORITY
Priority to use for PONGs.
Definition: gnunet-service-transport_validation.c:144
multicast_pong
static void multicast_pong(void *cls, struct GNUNET_TIME_Absolute valid_until, struct GNUNET_TIME_Absolute validation_block, const struct GNUNET_HELLO_Address *address)
Send the given PONG to the given address.
Definition: gnunet-service-transport_validation.c:1042
PONG_SIGNATURE_LIFETIME
#define PONG_SIGNATURE_LIFETIME
How long is a PONG signature valid? We'll recycle a signature until 1/4 of this time is remaining.
Definition: gnunet-service-transport_validation.c:91
GST_validation_get_addresses
void GST_validation_get_addresses(const struct GNUNET_PeerIdentity *target, GST_ValidationAddressCallback cb, void *cb_cls)
Call the given function for each address for the given target.
Definition: gnunet-service-transport_validation.c:1761
ACCEPTABLE_PING_DELAY
#define ACCEPTABLE_PING_DELAY
How much delay is acceptable for sending the PING or PONG?
Definition: gnunet-service-transport_validation.c:128
GNUNET_CRYPTO_eddsa_sign_
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_eddsa_sign_(const struct GNUNET_CRYPTO_EddsaPrivateKey *priv, const struct GNUNET_CRYPTO_EccSignaturePurpose *purpose, struct GNUNET_CRYPTO_EddsaSignature *sig)
EdDSA sign a given block.
Definition: crypto_ecc.c:607
GNUNET_HELLO_ADDRESS_INFO_NONE
@ GNUNET_HELLO_ADDRESS_INFO_NONE
No additional information.
Definition: gnunet_hello_lib.h:77
GNUNET_memcpy
#define GNUNET_memcpy(dst, src, n)
Call memcpy() but check for n being 0 first.
Definition: gnunet_common.h:1294
GNUNET_OK
@ GNUNET_OK
Definition: gnunet_common.h:109
GNUNET_SYSERR
@ GNUNET_SYSERR
Definition: gnunet_common.h:107
GNUNET_break_op
#define GNUNET_break_op(cond)
Use this for assertion violations caused by other peers (i.e.
Definition: gnunet_common.h:1046
GNUNET_i2s
const char * GNUNET_i2s(const struct GNUNET_PeerIdentity *pid)
Convert a peer identity to a string (for printing debug messages).
Definition: common_logging.c:1275
GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition: gnunet_common.h:943
GNUNET_i2s_full
const char * GNUNET_i2s_full(const struct GNUNET_PeerIdentity *pid)
Convert a peer identity to a string (for printing debug messages).
Definition: common_logging.c:1322
GNUNET_ERROR_TYPE_ERROR
@ GNUNET_ERROR_TYPE_ERROR
Definition: gnunet_common.h:437
GNUNET_ERROR_TYPE_INFO
@ GNUNET_ERROR_TYPE_INFO
Definition: gnunet_common.h:443
GNUNET_strdup
#define GNUNET_strdup(a)
Wrapper around GNUNET_xstrdup_.
Definition: gnunet_common.h:1426
GNUNET_snprintf
int GNUNET_snprintf(char *buf, size_t size, const char *format,...) __attribute__((format(printf
Like snprintf, just aborts if the buffer is of insufficient size.
GNUNET_malloc
#define GNUNET_malloc(size)
Wrapper around malloc.
Definition: gnunet_common.h:1352
GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition: gnunet_common.h:1412
GNUNET_MESSAGE_TYPE_TRANSPORT_PONG
#define GNUNET_MESSAGE_TYPE_TRANSPORT_PONG
Transport PONG message.
Definition: gnunet_protocols.h:1163
GNUNET_STATISTICS_update
void GNUNET_STATISTICS_update(struct GNUNET_STATISTICS_Handle *handle, const char *name, int64_t delta, int make_persistent)
Set statistic value for the peer.
Definition: statistics_api.c:1324
GNUNET_TIME_absolute_get_remaining
struct GNUNET_TIME_Relative GNUNET_TIME_absolute_get_remaining(struct GNUNET_TIME_Absolute future)
Given a timestamp in the future, how much time remains until then?
Definition: time.c:405
GNUNET_TIME_relative_to_absolute
struct GNUNET_TIME_Absolute GNUNET_TIME_relative_to_absolute(struct GNUNET_TIME_Relative rel)
Convert relative time to an absolute time in the future.
Definition: time.c:316
GNUNET_TIME_absolute_hton
struct GNUNET_TIME_AbsoluteNBO GNUNET_TIME_absolute_hton(struct GNUNET_TIME_Absolute a)
Convert absolute time to network byte order.
Definition: time.c:638
_
#define _(String)
GNU gettext support macro.
Definition: platform.h:178
GNUNET_CRYPTO_EccSignaturePurpose
header of what an ECC signature signs this must be followed by "size - 8" bytes of the actual signed ...
Definition: gnunet_crypto_lib.h:141
GNUNET_CRYPTO_EddsaSignature
an ECC signature using EdDSA.
Definition: gnunet_crypto_lib.h:164
GNUNET_HELLO_Address
An address for communicating with a peer.
Definition: gnunet_hello_lib.h:94
GNUNET_MessageHeader::size
uint16_t size
The length of the struct (in bytes, including the length field itself), in big-endian format.
Definition: gnunet_common.h:325
GNUNET_PeerIdentity
The identity of the host (wraps the signing key of the peer).
Definition: gnunet_crypto_lib.h:229
GNUNET_TIME_AbsoluteNBO
Time for absolute time used by GNUnet, in microseconds and in network byte order.
Definition: gnunet_time_lib.h:102
GNUNET_TIME_Absolute
Time for absolute times used by GNUnet, in microseconds.
Definition: gnunet_time_lib.h:54
GNUNET_TRANSPORT_PluginFunctions
Each plugin is required to return a pointer to a struct of this type as the return value from its ent...
Definition: gnunet_transport_plugin.h:625
GNUNET_TRANSPORT_PluginFunctions::cls
void * cls
Closure for all of the callbacks.
Definition: gnunet_transport_plugin.h:629
GNUNET_TRANSPORT_PluginFunctions::send
GNUNET_TRANSPORT_TransmitFunction send
Function that the transport service will use to transmit data to another peer.
Definition: gnunet_transport_plugin.h:638
GNUNET_TRANSPORT_PluginFunctions::get_session
GNUNET_TRANSPORT_CreateSession get_session
Function that will be called tell the plugin to create a session object.
Definition: gnunet_transport_plugin.h:707
GNUNET_TRANSPORT_PluginFunctions::check_address
GNUNET_TRANSPORT_CheckAddress check_address
Function that will be called to check if a binary address for this plugin is well-formed and correspo...
Definition: gnunet_transport_plugin.h:689
TransportPingMessage
Message used to ask a peer to validate receipt (to check an address from a HELLO).
Definition: gnunet-service-transport_validation.c:156
TransportPongMessage
Message used to validate a HELLO.
Definition: gnunet-service-transport_validation.c:185

References _, ACCEPTABLE_PING_DELAY, address, GNUNET_TRANSPORT_PluginFunctions::check_address, GNUNET_TRANSPORT_PluginFunctions::cls, GNUNET_TRANSPORT_PluginFunctions::get_session, gettext_noop, GNUNET_assert, GNUNET_break, GNUNET_break_op, GNUNET_CRYPTO_eddsa_sign_(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_ERROR_TYPE_ERROR, GNUNET_ERROR_TYPE_INFO, GNUNET_free, GNUNET_HELLO_ADDRESS_INFO_NONE, GNUNET_i2s(), GNUNET_i2s_full(), GNUNET_log, GNUNET_malloc, GNUNET_memcpy, GNUNET_MESSAGE_TYPE_TRANSPORT_PONG, GNUNET_NO, GNUNET_OK, GNUNET_SIGNATURE_PURPOSE_TRANSPORT_PONG_OWN, GNUNET_snprintf(), GNUNET_STATISTICS_update(), GNUNET_strdup, GNUNET_SYSERR, GNUNET_TIME_absolute_get_remaining(), GNUNET_TIME_absolute_hton(), GNUNET_TIME_relative_to_absolute(), GNUNET_YES, GST_hello_test_address(), GST_my_identity, GST_my_private_key, GST_neighbours_notify_data_sent(), GST_plugins_a2s(), GST_plugins_find(), GST_stats, GST_validation_get_addresses(), multicast_pong(), ping(), plugin_name, pong(), PONG_PRIORITY, PONG_SIGNATURE_LIFETIME, GNUNET_TIME_Relative::rel_value_us, ret, GNUNET_TRANSPORT_PluginFunctions::send, and GNUNET_MessageHeader::size.

Here is the call graph for this function:

◆ GST_validation_handle_pong()

int GST_validation_handle_pong ( const struct GNUNET_PeerIdentity sender,
const struct GNUNET_MessageHeader hdr 
)

We've received a PONG.

Check if it matches a pending PING and mark the respective address as confirmed.

Parameters
senderpeer sending the PONG
hdrthe PONG
Returns
GNUNET_OK if the message was fine, GNUNET_SYSERR on serious error

Definition at line 1449 of file gnunet-service-transport_validation.c.

1451 {
1452  const struct TransportPongMessage *pong;
1453  struct ValidationEntry *ve;
1454  const char *tname;
1455  const char *addr;
1456  size_t addrlen;
1457  size_t slen;
1458  size_t size;
1459  struct GNUNET_HELLO_Message *hello;
1460  struct GNUNET_HELLO_Address address;
1461  int sig_res;
1462  int do_verify;
1463 
1464  if (0 ==
1465  memcmp (&GST_my_identity,
1466  sender,
1467  sizeof(struct GNUNET_PeerIdentity)))
1468  return GNUNET_OK; /* our own, ignore! */
1469 
1470  if (ntohs (hdr->size) < sizeof(struct TransportPongMessage))
1471  {
1472  GNUNET_break_op (0);
1473  return GNUNET_SYSERR;
1474  }
1475  GNUNET_STATISTICS_update (GST_stats,
1476  gettext_noop ("# PONG messages received"), 1,
1477  GNUNET_NO);
1478 
1479  /* message with structure:
1480  * [TransportPongMessage][Transport name][Address] */
1481 
1482  pong = (const struct TransportPongMessage *) hdr;
1483  tname = (const char *) &pong[1];
1484  size = ntohs (hdr->size) - sizeof(struct TransportPongMessage);
1485  addr = memchr (tname, '\0', size);
1486  if (NULL == addr)
1487  {
1488  GNUNET_break_op (0);
1489  return GNUNET_SYSERR;
1490  }
1491  addr++;
1492  slen = strlen (tname) + 1;
1493  addrlen = size - slen;
1494 
1495  if (NULL == GST_plugins_find (tname))
1496  {
1497  /* we got the PONG, but the transport plugin specified in it
1498  is not supported by this peer, so this cannot be a good
1499  PONG for us. */
1500  GNUNET_break_op (0);
1501  return GNUNET_OK;
1502  }
1503 
1504  address.peer = *sender;
1505  address.address = addr;
1506  address.address_length = addrlen;
1507  address.transport_name = tname;
1508  address.local_info = GNUNET_HELLO_ADDRESS_INFO_NONE;
1509  ve = find_validation_entry (&address);
1510  if ((NULL == ve) || (GNUNET_NO == ve->expecting_pong))
1511  {
1512  GNUNET_STATISTICS_update (GST_stats,
1513  gettext_noop
1514  (
1515  "# PONGs dropped, no matching pending validation"),
1516  1, GNUNET_NO);
1517  return GNUNET_OK;
1518  }
1519  /* now check that PONG is well-formed */
1520  if (0 != memcmp (&ve->address->peer,
1521  sender,
1522  sizeof(struct GNUNET_PeerIdentity)))
1523  {
1524  GNUNET_break_op (0);
1525  return GNUNET_SYSERR;
1526  }
1527  if (0 ==
1528  GNUNET_TIME_absolute_get_remaining
1529  (GNUNET_TIME_absolute_ntoh (pong->expiration)).rel_value_us)
1530  {
1531  GNUNET_STATISTICS_update (GST_stats,
1532  gettext_noop
1533  ("# PONGs dropped, signature expired"), 1,
1534  GNUNET_NO);
1535  return GNUNET_SYSERR;
1536  }
1537 
1538  sig_res = GNUNET_SYSERR;
1539  do_verify = GNUNET_YES;
1540  if (0 != GNUNET_TIME_absolute_get_remaining (
1541  ve->pong_sig_valid_until).rel_value_us)
1542  {
1543  /* We have a cached and valid signature for this peer,
1544  * try to compare instead of verify */
1545  if (0 == memcmp (&ve->pong_sig_cache,
1546  &pong->signature,
1547  sizeof(struct GNUNET_CRYPTO_EddsaSignature)))
1548  {
1549  /* signatures are identical, we can skip verification */
1550  sig_res = GNUNET_OK;
1551  do_verify = GNUNET_NO;
1552  }
1553  else
1554  {
1555  sig_res = GNUNET_SYSERR;
1556  /* signatures do not match, we have to verify */
1557  }
1558  }
1559 
1560  if (GNUNET_YES == do_verify)
1561  {
1562  /* Do expensive verification */
1563  sig_res = GNUNET_CRYPTO_eddsa_verify_ (
1564  GNUNET_SIGNATURE_PURPOSE_TRANSPORT_PONG_OWN,
1565  &pong->purpose,
1566  &pong->signature,
1567  &ve->address->peer.public_key);
1568  if (sig_res == GNUNET_SYSERR)
1569  {
1570  GNUNET_break_op (0);
1571  GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1572  "Failed to verify: invalid signature on address `%s':%s from peer `%s'\n",
1573  tname,
1574  GST_plugins_a2s (ve->address),
1575  GNUNET_i2s (sender));
1576  }
1577  }
1578  if (sig_res == GNUNET_SYSERR)
1579  {
1580  GNUNET_break_op (0);
1581  return GNUNET_SYSERR;
1582  }
1583 
1584  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1585  "Validation process successful for peer `%s' with plugin `%s' address `%s'\n",
1586  GNUNET_i2s (sender),
1587  tname,
1588  GST_plugins_a2s (ve->address));
1589  GNUNET_STATISTICS_update (GST_stats,
1590  gettext_noop ("# validations succeeded"),
1591  1,
1592  GNUNET_NO);
1593  /* validity achieved, remember it! */
1594  ve->expecting_pong = GNUNET_NO;
1595  ve->valid_until = GNUNET_TIME_relative_to_absolute (HELLO_ADDRESS_EXPIRATION);
1596  ve->pong_sig_cache = pong->signature;
1597  ve->pong_sig_valid_until = GNUNET_TIME_absolute_ntoh (pong->expiration);
1598  ve->latency = GNUNET_TIME_absolute_get_duration (ve->send_time);
1599  {
1600  if (GNUNET_YES == ve->known_to_ats)
1601  {
1602  GNUNET_assert (GNUNET_YES ==
1603  GST_ats_is_known_no_session (ve->address));
1604  GST_ats_update_delay (ve->address,
1605  GNUNET_TIME_relative_divide (ve->latency, 2));
1606  }
1607  else
1608  {
1609  struct GNUNET_ATS_Properties prop;
1610 
1611  memset (&prop, 0, sizeof(prop));
1612  GNUNET_break (GNUNET_NT_UNSPECIFIED != ve->network);
1613  prop.scope = ve->network;
1614  prop.delay = GNUNET_TIME_relative_divide (ve->latency, 2);
1615  GNUNET_assert (GNUNET_NO ==
1616  GST_ats_is_known_no_session (ve->address));
1617  ve->known_to_ats = GNUNET_YES;
1618  GST_ats_add_address (ve->address, &prop);
1619  GNUNET_assert (GNUNET_YES ==
1620  GST_ats_is_known_no_session (ve->address));
1621  }
1622  }
1623  if (validations_running > 0)
1624  {
1625  validations_running--;
1626  GNUNET_STATISTICS_set (GST_stats,
1627  gettext_noop ("# validations running"),
1628  validations_running,
1629  GNUNET_NO);
1630  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1631  "Validation finished, %u validation processes running\n",
1632  validations_running);
1633  }
1634  else
1635  {
1636  GNUNET_break (0);
1637  }
1638 
1639  /* Notify about new validity */
1640  validation_entry_changed (ve,
1641  GNUNET_TRANSPORT_VS_UPDATE);
1642 
1643  /* build HELLO to store in PEERINFO */
1644  GNUNET_STATISTICS_update (GST_stats,
1645  gettext_noop ("# HELLOs given to peerinfo"),
1646  1,
1647  GNUNET_NO);
1648  ve->copied = GNUNET_NO;
1649  hello = GNUNET_HELLO_create (&ve->address->peer.public_key,
1650  &add_valid_peer_address,
1651  ve,
1652  GNUNET_NO);
1653  GNUNET_break (NULL !=
1654  GNUNET_PEERINFO_add_peer (GST_peerinfo,
1655  hello,
1656  NULL,
1657  NULL));
1658  GNUNET_free (hello);
1659  return GNUNET_OK;
1660 }
GST_peerinfo
struct GNUNET_PEERINFO_Handle * GST_peerinfo
Handle to peerinfo service.
Definition: gnunet-service-transport.c:382
GST_ats_add_address
void GST_ats_add_address(const struct GNUNET_HELLO_Address *address, const struct GNUNET_ATS_Properties *prop)
Notify ATS about a new address including the network the address is located in.
Definition: gnunet-service-transport_ats.c:481
GST_ats_is_known_no_session
int GST_ats_is_known_no_session(const struct GNUNET_HELLO_Address *address)
Test if ATS knows about this address.
Definition: gnunet-service-transport_ats.c:280
GST_ats_update_delay
void GST_ats_update_delay(const struct GNUNET_HELLO_Address *address, struct GNUNET_TIME_Relative delay)
Notify ATS about delay changes to properties of an address.
Definition: gnunet-service-transport_ats.c:752
add_valid_peer_address
static ssize_t add_valid_peer_address(void *cls, size_t max, void *buf)
Add the validated peer address to the HELLO.
Definition: gnunet-service-transport_validation.c:1424
GNUNET_TRANSPORT_VS_UPDATE
@ GNUNET_TRANSPORT_VS_UPDATE
Updated validation entry.
Definition: gnunet-service-transport_validation.c:66
HELLO_ADDRESS_EXPIRATION
#define HELLO_ADDRESS_EXPIRATION
After how long do we expire an address in a HELLO that we just validated? This value is also used for...
Definition: gnunet-service-transport_validation.c:99
validation_entry_changed
static void validation_entry_changed(struct ValidationEntry *ve, enum GNUNET_TRANSPORT_ValidationState state)
A validation entry changed.
Definition: gnunet-service-transport_validation.c:427
GNUNET_CRYPTO_eddsa_verify_
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_eddsa_verify_(uint32_t purpose, const struct GNUNET_CRYPTO_EccSignaturePurpose *validate, const struct GNUNET_CRYPTO_EddsaSignature *sig, const struct GNUNET_CRYPTO_EddsaPublicKey *pub)
Verify EdDSA signature.
Definition: crypto_ecc.c:690
GNUNET_HELLO_create
struct GNUNET_HELLO_Message * GNUNET_HELLO_create(const struct GNUNET_CRYPTO_EddsaPublicKey *public_key, GNUNET_HELLO_GenerateAddressListCallback addrgen, void *addrgen_cls, int friend_only)
Construct a HELLO message given the public key, expiration time and an iterator that spews the transp...
Definition: hello.c:204
GNUNET_ERROR_TYPE_WARNING
@ GNUNET_ERROR_TYPE_WARNING
Definition: gnunet_common.h:438
GNUNET_NT_UNSPECIFIED
@ GNUNET_NT_UNSPECIFIED
Category of last resort.
Definition: gnunet_nt_lib.h:43
GNUNET_PEERINFO_add_peer
struct GNUNET_MQ_Envelope * GNUNET_PEERINFO_add_peer(struct GNUNET_PEERINFO_Handle *h, const struct GNUNET_HELLO_Message *hello, GNUNET_SCHEDULER_TaskCallback cont, void *cont_cls)
Add a host to the persistent list.
Definition: peerinfo_api.c:530
GNUNET_TIME_absolute_get_duration
struct GNUNET_TIME_Relative GNUNET_TIME_absolute_get_duration(struct GNUNET_TIME_Absolute whence)
Get the duration of an operation as the difference of the current time and the given start time "henc...
Definition: time.c:436
GNUNET_TIME_absolute_ntoh
struct GNUNET_TIME_Absolute GNUNET_TIME_absolute_ntoh(struct GNUNET_TIME_AbsoluteNBO a)
Convert absolute time from network byte order.
Definition: time.c:737
GNUNET_TIME_relative_divide
struct GNUNET_TIME_Relative GNUNET_TIME_relative_divide(struct GNUNET_TIME_Relative rel, unsigned long long factor)
Divide relative time by a given factor.
Definition: time.c:550
size
static unsigned int size
Size of the "table".
Definition: peer.c:68
GNUNET_ATS_Properties
ATS performance characteristics for an address.
Definition: gnunet_ats_service.h:76
GNUNET_HELLO_Address::peer
struct GNUNET_PeerIdentity peer
For which peer is this an address?
Definition: gnunet_hello_lib.h:98
GNUNET_HELLO_Message
A HELLO message is used to exchange information about transports with other peers.
Definition: gnunet_hello_lib.h:217
GNUNET_PeerIdentity::public_key
struct GNUNET_CRYPTO_EddsaPublicKey public_key
Definition: gnunet_crypto_lib.h:230
TransportPongMessage::addrlen
uint32_t addrlen
Size of address appended to this message (part of what is being signed, hence not redundant).
Definition: gnunet-service-transport_validation.c:217
ValidationEntry::pong_sig_valid_until
struct GNUNET_TIME_Absolute pong_sig_valid_until
Until when is the cached PONG signature valid? ZERO if it is not currently considered valid.
Definition: gnunet-service-transport_validation.c:271
ValidationEntry::send_time
struct GNUNET_TIME_Absolute send_time
At what time did we send the latest validation request (PING)?
Definition: gnunet-service-transport_validation.c:254
ValidationEntry::pong_sig_cache
struct GNUNET_CRYPTO_EddsaSignature pong_sig_cache
Cached PONG signature.
Definition: gnunet-service-transport_validation.c:239
ValidationEntry::copied
int copied
When passing the address in add_valid_peer_address(), did we copy the address to the HELLO yet?
Definition: gnunet-service-transport_validation.c:301
ValidationEntry::valid_until
struct GNUNET_TIME_Absolute valid_until
Until when is this address valid? ZERO if it is not currently considered valid.
Definition: gnunet-service-transport_validation.c:265
ValidationEntry::latency
struct GNUNET_TIME_Relative latency
Last observed latency for this address (round-trip), delay between last PING sent and PONG received; ...
Definition: gnunet-service-transport_validation.c:285
ValidationEntry::address
struct GNUNET_HELLO_Address * address
The address.
Definition: gnunet-service-transport_validation.c:229
ValidationEntry::known_to_ats
int known_to_ats
Is this address known to ATS as valid right now?
Definition: gnunet-service-transport_validation.c:316
ValidationEntry::expecting_pong
int expecting_pong
Are we expecting a PONG message for this validation entry?
Definition: gnunet-service-transport_validation.c:311
ValidationEntry::network
enum GNUNET_NetworkType network
Which network type does our address belong to?
Definition: gnunet-service-transport_validation.c:321

References add_valid_peer_address(), address, ValidationEntry::address, TransportPongMessage::addrlen, ValidationEntry::copied, GNUNET_ATS_Properties::delay, ValidationEntry::expecting_pong, find_validation_entry(), gettext_noop, GNUNET_assert, GNUNET_break, GNUNET_break_op, GNUNET_CRYPTO_eddsa_verify_(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_ERROR_TYPE_INFO, GNUNET_ERROR_TYPE_WARNING, GNUNET_free, GNUNET_HELLO_ADDRESS_INFO_NONE, GNUNET_HELLO_create(), GNUNET_i2s(), GNUNET_log, GNUNET_NO, GNUNET_NT_UNSPECIFIED, GNUNET_OK, GNUNET_PEERINFO_add_peer(), GNUNET_SIGNATURE_PURPOSE_TRANSPORT_PONG_OWN, GNUNET_STATISTICS_set(), GNUNET_STATISTICS_update(), GNUNET_SYSERR, GNUNET_TIME_absolute_get_duration(), GNUNET_TIME_absolute_get_remaining(), GNUNET_TIME_absolute_ntoh(), GNUNET_TIME_relative_divide(), GNUNET_TIME_relative_to_absolute(), GNUNET_TRANSPORT_VS_UPDATE, GNUNET_YES, GST_ats_add_address(), GST_ats_is_known_no_session(), GST_ats_update_delay(), GST_my_identity, GST_peerinfo, GST_plugins_a2s(), GST_plugins_find(), GST_stats, HELLO_ADDRESS_EXPIRATION, ValidationEntry::known_to_ats, ValidationEntry::latency, ValidationEntry::network, GNUNET_HELLO_Address::peer, pong(), ValidationEntry::pong_sig_cache, ValidationEntry::pong_sig_valid_until, GNUNET_PeerIdentity::public_key, GNUNET_TIME_Relative::rel_value_us, GNUNET_ATS_Properties::scope, ValidationEntry::send_time, GNUNET_MessageHeader::size, size, ValidationEntry::valid_until, validation_entry_changed(), and validations_running.

Here is the call graph for this function:

◆ GST_validation_handle_hello()

int GST_validation_handle_hello ( const struct GNUNET_MessageHeader hello)

We've received a HELLO, check which addresses are new and trigger validation.

Parameters
hellothe HELLO we received
Returns
GNUNET_OK if the message was fine, GNUNET_SYSERR on serious error

Definition at line 1671 of file gnunet-service-transport_validation.c.

1672 {
1673  const struct GNUNET_HELLO_Message *hm =
1674  (const struct GNUNET_HELLO_Message *) hello;
1675  struct GNUNET_PeerIdentity pid;
1676  int friend;
1677 
1678  friend = GNUNET_HELLO_is_friend_only (hm);
1679  if (((GNUNET_YES != friend) &&
1680  (GNUNET_NO != friend)) ||
1681  (GNUNET_OK != GNUNET_HELLO_get_id (hm, &pid)))
1682  {
1683  /* malformed HELLO */
1684  GNUNET_break_op (0);
1685  return GNUNET_SYSERR;
1686  }
1687  if (0 ==
1688  memcmp (&GST_my_identity,
1689  &pid,
1690  sizeof(struct GNUNET_PeerIdentity)))
1691  {
1692  /* got our own HELLO, how boring */
1693  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1694  "Validation received our own HELLO (%s), ignoring\n",
1695  GNUNET_i2s (&pid));
1696  return GNUNET_OK;
1697  }
1698  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1699  "Validation received HELLO message for peer `%s' with size %u, checking for new addresses\n",
1700  GNUNET_i2s (&pid),
1701  ntohs (hello->size));
1702  GNUNET_assert (NULL ==
1703  GNUNET_HELLO_iterate_addresses (hm,
1704  GNUNET_NO,
1705  &validate_address_iterator,
1706  NULL));
1707  return GNUNET_OK;
1708 }
validate_address_iterator
static int validate_address_iterator(void *cls, const struct GNUNET_HELLO_Address *address, struct GNUNET_TIME_Absolute expiration)
Iterator callback to go over all addresses and try to validate them (unless blocked or already valida...
Definition: gnunet-service-transport_validation.c:1399
pid
static struct GNUNET_PeerIdentity pid
Identity of the peer we transmit to / connect to.
Definition: gnunet-transport-profiler.c:149
GNUNET_HELLO_get_id
int GNUNET_HELLO_get_id(const struct GNUNET_HELLO_Message *hello, struct GNUNET_PeerIdentity *peer)
Get the peer identity from a HELLO message.
Definition: hello.c:649
GNUNET_HELLO_is_friend_only
int GNUNET_HELLO_is_friend_only(const struct GNUNET_HELLO_Message *h)
Return HELLO type.
Definition: hello.c:89
GNUNET_HELLO_iterate_addresses
struct GNUNET_HELLO_Message * GNUNET_HELLO_iterate_addresses(const struct GNUNET_HELLO_Message *msg, int return_modified, GNUNET_HELLO_AddressIterator it, void *it_cls)
Iterate over all of the addresses in the HELLO.
Definition: hello.c:254

References GNUNET_assert, GNUNET_break_op, GNUNET_ERROR_TYPE_DEBUG, GNUNET_HELLO_get_id(), GNUNET_HELLO_is_friend_only(), GNUNET_HELLO_iterate_addresses(), GNUNET_i2s(), GNUNET_log, GNUNET_NO, GNUNET_OK, GNUNET_SYSERR, GNUNET_YES, GST_my_identity, pid, GNUNET_MessageHeader::size, and validate_address_iterator().

Referenced by handle_client_hello().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GST_validation_handle_address()

void GST_validation_handle_address ( const struct GNUNET_HELLO_Address address)

Validate an individual address.

Parameters
addressaddress we should try to validate

Definition at line 1356 of file gnunet-service-transport_validation.c.

1357 {
1358  struct GNUNET_TRANSPORT_PluginFunctions *papi;
1359  struct ValidationEntry *ve;
1360 
1361  papi = GST_plugins_find (address->transport_name);
1362  if (NULL == papi)
1363  {
1364  /* This plugin is currently unavailable ... ignore */
1365  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1366  "No plugin available for %s\n",
1367  address->transport_name);
1368  return;
1369  }
1370  ve = find_validation_entry (address);
1371  if (NULL == ve->revalidation_task)
1372  {
1373  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1374  "Validation process started for fresh address `%s' of %s\n",
1375  GST_plugins_a2s (ve->address),
1376  GNUNET_i2s (&ve->address->peer));
1377  ve->revalidation_task = GNUNET_SCHEDULER_add_now (&revalidate_address, ve);
1378  }
1379  else
1380  {
1381  GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1382  "Validation already running for address `%s' of %s\n",
1383  GST_plugins_a2s (ve->address),
1384  GNUNET_i2s (&ve->address->peer));
1385  }
1386 }

References address, ValidationEntry::address, find_validation_entry(), GNUNET_ERROR_TYPE_INFO, GNUNET_i2s(), GNUNET_log, GNUNET_SCHEDULER_add_now(), GST_plugins_a2s(), GST_plugins_find(), GNUNET_HELLO_Address::peer, revalidate_address(), and ValidationEntry::revalidation_task.

Referenced by plugin_env_session_start_bl_check_cont(), and validate_address_iterator().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GST_validation_get_addresses()

void GST_validation_get_addresses ( const struct GNUNET_PeerIdentity target,
GST_ValidationAddressCallback  cb,
void *  cb_cls 
)

Call the given function for each address for the given target.

Parameters
targetpeer information is requested for
cbfunction to call; will not be called after this function returns
cb_clsclosure for cb

Can either give a snapshot (synchronous API) or be continuous.

Parameters
targetpeer information is requested for
cbfunction to call; will not be called after this function returns
cb_clsclosure for cb

Definition at line 1761 of file gnunet-service-transport_validation.c.

1764 {
1765  struct IteratorContext ic;
1766 
1767  ic.cb = cb;
1768  ic.cb_cls = cb_cls;
1769  GNUNET_CONTAINER_multipeermap_get_multiple (validation_map,
1770  target,
1771  &iterate_addresses, &ic);
1772 }
iterate_addresses
static int iterate_addresses(void *cls, const struct GNUNET_PeerIdentity *key, void *value)
Call the callback in the closure for each validation entry.
Definition: gnunet-service-transport_validation.c:1737
GNUNET_CONTAINER_multipeermap_get_multiple
int GNUNET_CONTAINER_multipeermap_get_multiple(struct GNUNET_CONTAINER_MultiPeerMap *map, const struct GNUNET_PeerIdentity *key, GNUNET_CONTAINER_PeerMapIterator it, void *it_cls)
Iterate over all entries in the map that match a particular key.
Definition: container_multipeermap.c:703
IteratorContext
Closure for the neighbours_iterate() function.
Definition: gnunet-service-transport_neighbours.c:3766
IteratorContext::cb
GST_NeighbourIterator cb
Function to call on each connected neighbour.
Definition: gnunet-service-transport_neighbours.c:3770

References IteratorContext::cb, IteratorContext::cb_cls, GNUNET_CONTAINER_multipeermap_get_multiple(), iterate_addresses(), and validation_map.

Referenced by GST_validation_handle_ping().

Here is the call graph for this function:
Here is the caller graph for this function: