GNUnet 0.27.0
 
Loading...
Searching...
No Matches
Macros | Typedefs | Enumerations | Functions
gnunet-service-cadet_tunnels.h File Reference

Information we track per tunnel. More...

#include "gnunet-service-cadet.h"
#include "cadet_protocol.h"
Include dependency graph for gnunet-service-cadet_tunnels.h:
This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Macros

#define DESIRED_CONNECTIONS_PER_TUNNEL   3
 How many connections would we like to have per tunnel?
 

Typedefs

typedef void(* GCT_SendContinuation) (void *cls, const struct GNUNET_CADET_ConnectionTunnelIdentifier *cid)
 Function called when a transmission requested using GCT_send is done.
 
typedef void(* GCT_ConnectionIterator) (void *cls, struct CadetTConnection *ct)
 Iterator over connections.
 
typedef void(* GCT_ChannelIterator) (void *cls, struct CadetChannel *ch)
 Iterator over channels.
 

Enumerations

enum  CadetTunnelEState {
  CADET_TUNNEL_KEY_UNINITIALIZED , CADET_TUNNEL_KEY_AX_SENT , CADET_TUNNEL_KEY_AX_RECV , CADET_TUNNEL_KEY_AX_SENT_AND_RECV ,
  CADET_TUNNEL_KEY_AX_AUTH_SENT , CADET_TUNNEL_KEY_OK
}
 All the encryption states a tunnel can be in. More...
 

Functions

int GCT_alice_or_betty (const struct GNUNET_PeerIdentity *other)
 Am I Alice or Betty (some call her Bob), or talking to myself?
 
const char * GCT_2s (const struct CadetTunnel *t)
 Get the static string for the peer this tunnel is directed.
 
struct CadetTunnelGCT_create_tunnel (struct CadetPeer *destination)
 Create a tunnel to destination.
 
void GCT_destroy_tunnel_now (struct CadetTunnel *t)
 Destroys the tunnel t now, without delay.
 
int GCT_add_inbound_connection (struct CadetTunnel *t, const struct GNUNET_CADET_ConnectionTunnelIdentifier *cid, struct CadetPeerPath *path)
 Add a connection to the tunnel.
 
void GCT_connection_lost (struct CadetTConnection *ct)
 We lost a connection, remove it from our list and clean up the connection object itself.
 
struct CadetPeerGCT_get_destination (struct CadetTunnel *t)
 Return the peer to which this tunnel goes.
 
void GCT_consider_path (struct CadetTunnel *t, struct CadetPeerPath *p, unsigned int off)
 Consider using the path p for the tunnel t.
 
struct GNUNET_CADET_ChannelTunnelNumber GCT_add_channel (struct CadetTunnel *t, struct CadetChannel *ch)
 Add a channel to a tunnel.
 
void GCT_remove_channel (struct CadetTunnel *t, struct CadetChannel *ch, struct GNUNET_CADET_ChannelTunnelNumber ctn)
 Remove a channel from a tunnel.
 
void GCT_send_channel_destroy (struct CadetTunnel *t, struct GNUNET_CADET_ChannelTunnelNumber ctn)
 Send a DESTROY message via the tunnel.
 
struct CadetTunnelQueueEntryGCT_send (struct CadetTunnel *t, const struct GNUNET_MessageHeader *message, GCT_SendContinuation cont, void *cont_cls, struct GNUNET_CADET_ChannelTunnelNumber *ctn)
 Sends an already built message on a tunnel, encrypting it and choosing the best connection if not provided.
 
void GCT_send_cancel (struct CadetTunnelQueueEntry *q)
 Cancel a previously sent message while it's in the queue.
 
unsigned int GCT_count_channels (struct CadetTunnel *t)
 Returns the number of channels using a tunnel.
 
unsigned int GCT_count_any_connections (const struct CadetTunnel *t)
 Counts the number of connections created for a tunnel, including busy connections.
 
void GCT_iterate_connections (struct CadetTunnel *t, GCT_ConnectionIterator iter, void *iter_cls)
 Iterate over all connections of a tunnel.
 
void GCT_iterate_channels (struct CadetTunnel *t, GCT_ChannelIterator iter, void *iter_cls)
 Iterate over all channels of a tunnel.
 
enum CadetTunnelEState GCT_get_estate (struct CadetTunnel *t)
 Get the encryption state of a tunnel.
 
void GCT_change_estate (struct CadetTunnel *t, enum CadetTunnelEState state)
 Change the tunnel encryption state.
 
void GCT_handle_kx (struct CadetTConnection *ct, const struct GNUNET_CADET_TunnelKeyExchangeMessage *msg)
 Handle KX message that lacks authentication (and which will thus only be considered authenticated after we respond with our own KX_AUTH and finally successfully decrypt the payload).
 
void GCT_handle_kx_auth (struct CadetTConnection *ct, const struct GNUNET_CADET_TunnelKeyExchangeAuthMessage *msg)
 Handle KX_AUTH message.
 
void GCT_handle_encrypted (struct CadetTConnection *ct, const struct GNUNET_CADET_TunnelEncryptedMessage *msg)
 Handle encrypted message.
 
void GCT_debug (const struct CadetTunnel *t, enum GNUNET_ErrorType level)
 Log all possible info about the tunnel state.
 

Detailed Description

Information we track per tunnel.

Author
Bartlomiej Polot
Christian Grothoff

Definition in file gnunet-service-cadet_tunnels.h.

Macro Definition Documentation

◆ DESIRED_CONNECTIONS_PER_TUNNEL

#define DESIRED_CONNECTIONS_PER_TUNNEL   3

How many connections would we like to have per tunnel?

Definition at line 37 of file gnunet-service-cadet_tunnels.h.

Typedef Documentation

◆ GCT_SendContinuation

typedef void(* GCT_SendContinuation) (void *cls, const struct GNUNET_CADET_ConnectionTunnelIdentifier *cid)

Function called when a transmission requested using GCT_send is done.

Parameters
clsclosure
ctnidentifier of the connection used for transmission, NULL if the transmission failed (to be used to match ACKs to the respective connection for connection performance evaluation)

Definition at line 217 of file gnunet-service-cadet_tunnels.h.

◆ GCT_ConnectionIterator

typedef void(* GCT_ConnectionIterator) (void *cls, struct CadetTConnection *ct)

Iterator over connections.

Parameters
clsclosure
ctone of the connections

Definition at line 281 of file gnunet-service-cadet_tunnels.h.

◆ GCT_ChannelIterator

typedef void(* GCT_ChannelIterator) (void *cls, struct CadetChannel *ch)

Iterator over channels.

Parameters
clsclosure
chone of the channels

Definition at line 305 of file gnunet-service-cadet_tunnels.h.

Enumeration Type Documentation

◆ CadetTunnelEState

enum CadetTunnelEState

All the encryption states a tunnel can be in.

Enumerator
CADET_TUNNEL_KEY_UNINITIALIZED 

Uninitialized status, we need to send KX.

We will stay in this state until the first connection is up.

CADET_TUNNEL_KEY_AX_SENT 

KX message sent, waiting for other peer's KX_AUTH.

CADET_TUNNEL_KEY_AX_RECV 

KX message received, trying to send back KX_AUTH.

CADET_TUNNEL_KEY_AX_SENT_AND_RECV 

KX message sent and received, trying to send back KX_AUTH.

CADET_TUNNEL_KEY_AX_AUTH_SENT 

KX received and we sent KX_AUTH back, but we got no traffic yet, so we're waiting for either KX_AUTH or ENCRYPTED traffic from the other peer.

We will not yet send traffic, as this might have been a replay. The other (initiating) peer should send a CHANNEL_OPEN next anyway, and then we are in business!

CADET_TUNNEL_KEY_OK 

Handshake completed: session key available.

Definition at line 43 of file gnunet-service-cadet_tunnels.h.

44{
49 CADET_TUNNEL_KEY_UNINITIALIZED,
50
54 CADET_TUNNEL_KEY_AX_SENT,
55
59 CADET_TUNNEL_KEY_AX_RECV,
60
64 CADET_TUNNEL_KEY_AX_SENT_AND_RECV,
65
75 CADET_TUNNEL_KEY_AX_AUTH_SENT,
76
80 CADET_TUNNEL_KEY_OK
81};
CADET_TUNNEL_KEY_AX_AUTH_SENT
@ CADET_TUNNEL_KEY_AX_AUTH_SENT
KX received and we sent KX_AUTH back, but we got no traffic yet, so we're waiting for either KX_AUTH ...
Definition gnunet-service-cadet_tunnels.h:75
CADET_TUNNEL_KEY_AX_SENT
@ CADET_TUNNEL_KEY_AX_SENT
KX message sent, waiting for other peer's KX_AUTH.
Definition gnunet-service-cadet_tunnels.h:54
CADET_TUNNEL_KEY_UNINITIALIZED
@ CADET_TUNNEL_KEY_UNINITIALIZED
Uninitialized status, we need to send KX.
Definition gnunet-service-cadet_tunnels.h:49
CADET_TUNNEL_KEY_AX_SENT_AND_RECV
@ CADET_TUNNEL_KEY_AX_SENT_AND_RECV
KX message sent and received, trying to send back KX_AUTH.
Definition gnunet-service-cadet_tunnels.h:64
CADET_TUNNEL_KEY_OK
@ CADET_TUNNEL_KEY_OK
Handshake completed: session key available.
Definition gnunet-service-cadet_tunnels.h:80
CADET_TUNNEL_KEY_AX_RECV
@ CADET_TUNNEL_KEY_AX_RECV
KX message received, trying to send back KX_AUTH.
Definition gnunet-service-cadet_tunnels.h:59

Function Documentation

◆ GCT_alice_or_betty()

int GCT_alice_or_betty ( const struct GNUNET_PeerIdentity other)

Am I Alice or Betty (some call her Bob), or talking to myself?

Parameters
otherthe other peer
Returns
GNUNET_YES for Alice, GNUNET_NO for Betty, GNUNET_SYSERR if talking to myself

Definition at line 540 of file gnunet-service-cadet_tunnels.c.

541{
542 const struct GNUNET_PeerIdentity *my_identity;
543
544 my_identity = GNUNET_PILS_get_identity (pils);
545 GNUNET_assert (my_identity);
546
547 if (0 > GNUNET_memcmp (my_identity, other))
548 return GNUNET_YES;
549 else if (0 < GNUNET_memcmp (my_identity, other))
550 return GNUNET_NO;
551 else
552 {
553 GNUNET_break_op (0);
554 return GNUNET_SYSERR;
555 }
556}
pils
static struct GNUNET_PILS_Handle * pils
Handle to PILS.
Definition gnunet-pils.c:44
my_identity
static struct GNUNET_PeerIdentity my_identity
Identity of this peer.
Definition gnunet-service-conversation.c:207
GNUNET_PILS_get_identity
const struct GNUNET_PeerIdentity * GNUNET_PILS_get_identity(const struct GNUNET_PILS_Handle *handle)
Return the current peer identity of a given handle.
Definition pils_api.c:727
GNUNET_memcmp
#define GNUNET_memcmp(a, b)
Compare memory in a and b, where both must be of the same pointer type.
Definition gnunet_common.h:1250
GNUNET_YES
@ GNUNET_YES
Definition gnunet_common.h:116
GNUNET_NO
@ GNUNET_NO
Definition gnunet_common.h:113
GNUNET_SYSERR
@ GNUNET_SYSERR
Definition gnunet_common.h:112
GNUNET_break_op
#define GNUNET_break_op(cond)
Use this for assertion violations caused by other peers (i.e.
Definition gnunet_common.h:1067
GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition gnunet_common.h:960
GNUNET_PeerIdentity
The identity of the host (wraps the signing key of the peer).
Definition gnunet_crypto_lib.h:230

References GNUNET_assert, GNUNET_break_op, GNUNET_memcmp, GNUNET_NO, GNUNET_PILS_get_identity(), GNUNET_SYSERR, GNUNET_YES, my_identity, and pils.

Referenced by GCT_handle_kx(), send_create(), send_kx(), and update_ax_by_kx().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_2s()

const char * GCT_2s ( const struct CadetTunnel t)

Get the static string for the peer this tunnel is directed.

Parameters
tTunnel.
Returns
Static string the destination peer's ID.

Definition at line 592 of file gnunet-service-cadet_tunnels.c.

593{
594 static char buf[64];
595
596 if (NULL == t)
597 return "Tunnel(NULL)";
598 GNUNET_snprintf (buf,
599 sizeof(buf),
600 "Tunnel %s",
601 GNUNET_i2s (GCP_get_id (t->destination)));
602 return buf;
603}
t
static struct GNUNET_SCHEDULER_Task * t
Main task.
Definition gnunet-namestore-zonefile.c:302
GCP_get_id
const struct GNUNET_PeerIdentity * GCP_get_id(struct CadetPeer *cp)
Obtain the peer identity for a struct CadetPeer.
Definition gnunet-service-cadet_peer.c:1130
GNUNET_i2s
const char * GNUNET_i2s(const struct GNUNET_PeerIdentity *pid)
Convert a peer identity to a string (for printing debug messages).
Definition common_logging.c:1373
GNUNET_snprintf
int GNUNET_snprintf(char *buf, size_t size, const char *format,...) __attribute__((format(printf
Like snprintf, just aborts if the buffer is of insufficient size.

References GCP_get_id(), GNUNET_i2s(), GNUNET_snprintf(), and t.

Referenced by connection_ready_cb(), consider_path_cb(), cont_GCT_handle_kx(), cont_GCT_handle_kx_auth(), destroy_tunnel(), GCC_2s(), GCCH_bind(), GCCH_channel_local_new(), GCCH_debug(), GCP_drop_tunnel(), GCT_add_channel(), GCT_add_inbound_connection(), GCT_change_estate(), GCT_consider_path(), GCT_debug(), GCT_handle_encrypted(), GCT_handle_kx(), GCT_handle_kx_auth(), GCT_remove_channel(), GCT_send(), handle_plaintext_channel_destroy(), handle_plaintext_channel_open(), handle_plaintext_channel_open_ack(), handle_plaintext_keepalive(), maintain_connections_cb(), retry_kx(), send_keepalive(), send_kx(), send_kx_auth(), try_send_normal_payload(), and update_state().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_create_tunnel()

struct CadetTunnel * GCT_create_tunnel ( struct CadetPeer destination)

Create a tunnel to destination.

Must only be called from within GCP_get_tunnel().

Parameters
destinationwhere to create the tunnel to
Returns
new tunnel to destination

Definition at line 3299 of file gnunet-service-cadet_tunnels.c.

3300{
3301 struct CadetTunnel *t = GNUNET_new (struct CadetTunnel);
3302 struct GNUNET_MQ_MessageHandler handlers[] = {
3303 GNUNET_MQ_hd_fixed_size (plaintext_keepalive,
3304 GNUNET_MESSAGE_TYPE_CADET_CHANNEL_KEEPALIVE,
3305 struct GNUNET_MessageHeader,
3306 t),
3307 GNUNET_MQ_hd_var_size (plaintext_data,
3308 GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA,
3309 struct GNUNET_CADET_ChannelAppDataMessage,
3310 t),
3311 GNUNET_MQ_hd_fixed_size (plaintext_data_ack,
3312 GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA_ACK,
3313 struct GNUNET_CADET_ChannelDataAckMessage,
3314 t),
3315 GNUNET_MQ_hd_fixed_size (plaintext_channel_open,
3316 GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN,
3317 struct GNUNET_CADET_ChannelOpenMessage,
3318 t),
3319 GNUNET_MQ_hd_fixed_size (plaintext_channel_open_ack,
3320 GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN_ACK,
3321 struct GNUNET_CADET_ChannelOpenAckMessage,
3322 t),
3323 GNUNET_MQ_hd_fixed_size (plaintext_channel_destroy,
3324 GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY,
3325 struct GNUNET_CADET_ChannelDestroyMessage,
3326 t),
3327 GNUNET_MQ_handler_end ()
3328 };
3329
3330 t->kx_retry_delay = INITIAL_KX_RETRY_DELAY;
3331 new_ephemeral (&t->ax);
3332 GNUNET_CRYPTO_ecdhe_key_create (&t->ax.kx_0);
3333 t->destination = destination;
3334 t->channels = GNUNET_CONTAINER_multihashmap32_create (8);
3335 t->maintain_connections_task
3336 = GNUNET_SCHEDULER_add_now (&maintain_connections_cb,
3337 t);
3338 t->mq = GNUNET_MQ_queue_for_callbacks (NULL,
3339 NULL,
3340 NULL,
3341 NULL,
3342 handlers,
3343 &decrypted_error_cb,
3344 t);
3345 t->mst = GNUNET_MST_create (&handle_decrypted,
3346 t);
3347 return t;
3348}
handlers
struct GNUNET_MQ_MessageHandlers handlers[]
Definition 003.c:1
new_ephemeral
static void new_ephemeral(struct CadetTunnelAxolotl *ax)
Create a new Axolotl ephemeral (ratchet) key.
Definition gnunet-service-cadet_tunnels.c:737
handle_decrypted
static int handle_decrypted(void *cls, const struct GNUNET_MessageHeader *msg)
Handles a message we decrypted, by injecting it into our message queue (which will do the dispatching...
Definition gnunet-service-cadet_tunnels.c:3264
decrypted_error_cb
static void decrypted_error_cb(void *cls, enum GNUNET_MQ_Error error)
Function called if we had an error processing an incoming decrypted message.
Definition gnunet-service-cadet_tunnels.c:3284
maintain_connections_cb
static void maintain_connections_cb(void *cls)
Function called to maintain the connections underlying our tunnel.
Definition gnunet-service-cadet_tunnels.c:2933
INITIAL_KX_RETRY_DELAY
#define INITIAL_KX_RETRY_DELAY
How long do we wait initially before retransmitting the KX? TODO: replace by 2 RTT if/once we have co...
Definition gnunet-service-cadet_tunnels.c:66
GNUNET_CRYPTO_ecdhe_key_create
void GNUNET_CRYPTO_ecdhe_key_create(struct GNUNET_CRYPTO_EcdhePrivateKey *pk)
Create a new private key.
Definition crypto_ecc.c:454
GNUNET_CONTAINER_multihashmap32_create
struct GNUNET_CONTAINER_MultiHashMap32 * GNUNET_CONTAINER_multihashmap32_create(unsigned int len)
Create a 32-bit key multi hash map.
Definition container_multihashmap32.c:142
GNUNET_new
#define GNUNET_new(type)
Allocate a struct or union of the given type.
Definition gnunet_common.h:1240
GNUNET_MQ_queue_for_callbacks
struct GNUNET_MQ_Handle * GNUNET_MQ_queue_for_callbacks(GNUNET_MQ_SendImpl send, GNUNET_MQ_DestroyImpl destroy, GNUNET_MQ_CancelImpl cancel, void *impl_state, const struct GNUNET_MQ_MessageHandler *handlers, GNUNET_MQ_ErrorHandler error_handler, void *cls)
Create a message queue for the specified handlers.
Definition mq.c:482
GNUNET_MQ_handler_end
#define GNUNET_MQ_handler_end()
End-marker for the handlers array.
Definition gnunet_mq_lib.h:531
GNUNET_MQ_hd_var_size
#define GNUNET_MQ_hd_var_size(name, code, str, ctx)
Definition gnunet_mq_lib.h:617
GNUNET_MQ_hd_fixed_size
#define GNUNET_MQ_hd_fixed_size(name, code, str, ctx)
Definition gnunet_mq_lib.h:565
GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN
#define GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN
Ask the cadet service to create a new channel.
Definition gnunet_protocols.h:3038
GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA_ACK
#define GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA_ACK
Confirm payload data end-to-end.
Definition gnunet_protocols.h:3028
GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA
#define GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA
Payload data (inside an encrypted tunnel).
Definition gnunet_protocols.h:3023
GNUNET_MESSAGE_TYPE_CADET_CHANNEL_KEEPALIVE
#define GNUNET_MESSAGE_TYPE_CADET_CHANNEL_KEEPALIVE
Announce connection is still alive (direction sensitive).
Definition gnunet_protocols.h:3033
GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY
#define GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY
Ask the cadet service to destroy a channel.
Definition gnunet_protocols.h:3043
GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN_ACK
#define GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN_ACK
Confirm the creation of a channel.
Definition gnunet_protocols.h:3048
GNUNET_SCHEDULER_add_now
struct GNUNET_SCHEDULER_Task * GNUNET_SCHEDULER_add_now(GNUNET_SCHEDULER_TaskCallback task, void *task_cls)
Schedule a new task to be run as soon as possible.
Definition scheduler.c:1310
GNUNET_MST_create
struct GNUNET_MessageStreamTokenizer * GNUNET_MST_create(GNUNET_MessageTokenizerCallback cb, void *cb_cls)
Create a message stream tokenizer.
Definition mst.c:86
CadetTunnel
Struct containing all information regarding a tunnel to a peer.
Definition gnunet-service-cadet_tunnels.c:370
GNUNET_CADET_ChannelAppDataMessage
Message for cadet data traffic.
Definition cadet_protocol.h:470
GNUNET_CADET_ChannelDataAckMessage
Message to acknowledge end-to-end data.
Definition cadet_protocol.h:496
GNUNET_CADET_ChannelDestroyMessage
Message to destroy a channel of type GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY.
Definition cadet_protocol.h:436
GNUNET_CADET_ChannelOpenAckMessage
Message to acknowledge opening a channel of type GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN_ACK.
Definition cadet_protocol.h:407
GNUNET_CADET_ChannelOpenMessage
Message to create a Channel.
Definition cadet_protocol.h:379
GNUNET_MQ_MessageHandler
Message handler for a specific message type.
Definition gnunet_mq_lib.h:491
GNUNET_MessageHeader
Header for all communications.
Definition gnunet_common.h:323

References decrypted_error_cb(), GNUNET_CONTAINER_multihashmap32_create(), GNUNET_CRYPTO_ecdhe_key_create(), GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA, GNUNET_MESSAGE_TYPE_CADET_CHANNEL_APP_DATA_ACK, GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY, GNUNET_MESSAGE_TYPE_CADET_CHANNEL_KEEPALIVE, GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN, GNUNET_MESSAGE_TYPE_CADET_CHANNEL_OPEN_ACK, GNUNET_MQ_handler_end, GNUNET_MQ_hd_fixed_size, GNUNET_MQ_hd_var_size, GNUNET_MQ_queue_for_callbacks(), GNUNET_MST_create(), GNUNET_new, GNUNET_SCHEDULER_add_now(), handle_decrypted(), handlers, INITIAL_KX_RETRY_DELAY, maintain_connections_cb(), new_ephemeral(), and t.

Referenced by GCP_get_tunnel().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_destroy_tunnel_now()

void GCT_destroy_tunnel_now ( struct CadetTunnel t)

Destroys the tunnel t now, without delay.

Used during shutdown.

Parameters
ttunnel to destroy

Definition at line 2467 of file gnunet-service-cadet_tunnels.c.

2468{
2469 GNUNET_assert (GNUNET_YES == shutting_down);
2470 GNUNET_CONTAINER_multihashmap32_iterate (t->channels,
2471 &destroy_remaining_channels,
2472 t);
2473 GNUNET_assert (0 ==
2474 GCT_count_channels (t));
2475 if (NULL != t->destroy_task)
2476 {
2477 GNUNET_SCHEDULER_cancel (t->destroy_task);
2478 t->destroy_task = NULL;
2479 }
2480 destroy_tunnel (t);
2481}
shutting_down
int shutting_down
Signal that shutdown is happening: prevent recovery measures.
Definition gnunet-service-cadet.c:134
GCT_count_channels
unsigned int GCT_count_channels(struct CadetTunnel *t)
Returns the number of channels using a tunnel.
Definition gnunet-service-cadet_tunnels.c:655
destroy_tunnel
static void destroy_tunnel(void *cls)
This tunnel is no longer used, destroy it.
Definition gnunet-service-cadet_tunnels.c:2350
destroy_remaining_channels
static int destroy_remaining_channels(void *cls, uint32_t key, void *value)
Destroy remaining channels during shutdown.
Definition gnunet-service-cadet_tunnels.c:2449
GNUNET_CONTAINER_multihashmap32_iterate
int GNUNET_CONTAINER_multihashmap32_iterate(struct GNUNET_CONTAINER_MultiHashMap32 *map, GNUNET_CONTAINER_MultiHashMapIterator32Callback it, void *it_cls)
Iterate over all entries in the map.
Definition container_multihashmap32.c:226
GNUNET_SCHEDULER_cancel
void * GNUNET_SCHEDULER_cancel(struct GNUNET_SCHEDULER_Task *task)
Cancel the task with the specified identifier.
Definition scheduler.c:986

References destroy_remaining_channels(), destroy_tunnel(), GCT_count_channels(), GNUNET_assert, GNUNET_CONTAINER_multihashmap32_iterate(), GNUNET_SCHEDULER_cancel(), GNUNET_YES, shutting_down, and t.

Referenced by destroy_tunnels_now().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_add_inbound_connection()

int GCT_add_inbound_connection ( struct CadetTunnel t,
const struct GNUNET_CADET_ConnectionTunnelIdentifier cid,
struct CadetPeerPath path 
)

Add a connection to the tunnel.

Parameters
ta tunnel
cidconnection identifier to use for the connection
pathpath to use for the connection
Returns
GNUNET_OK on success, GNUNET_SYSERR on failure (duplicate connection)

Definition at line 3352 of file gnunet-service-cadet_tunnels.c.

3356{
3357 struct CadetTConnection *ct;
3358
3359 ct = GNUNET_new (struct CadetTConnection);
3360 ct->created = GNUNET_TIME_absolute_get ();
3361 ct->t = t;
3362 ct->cc = GCC_create_inbound (t->destination,
3363 path,
3364 ct,
3365 cid,
3366 &connection_ready_cb,
3367 ct);
3368 if (NULL == ct->cc)
3369 {
3370 LOG (GNUNET_ERROR_TYPE_DEBUG,
3371 "%s refused inbound %s (duplicate)\n",
3372 GCT_2s (t),
3373 GCC_2s (ct->cc));
3374 GNUNET_free (ct);
3375 return GNUNET_SYSERR;
3376 }
3377 /* FIXME: schedule job to kill connection (and path?) if it takes
3378 too long to get ready! (And track performance data on how long
3379 other connections took with the tunnel!)
3380 => Note: to be done within 'connection'-logic! */
3381 GNUNET_CONTAINER_DLL_insert (t->connection_busy_head,
3382 t->connection_busy_tail,
3383 ct);
3384 t->num_busy_connections++;
3385 LOG (GNUNET_ERROR_TYPE_DEBUG,
3386 "%s has new %s\n",
3387 GCT_2s (t),
3388 GCC_2s (ct->cc));
3389 return GNUNET_OK;
3390}
GCC_2s
const char * GCC_2s(const struct CadetConnection *cc)
Get a (static) string for a connection.
Definition gnunet-service-cadet_connection.c:1048
GCC_create_inbound
struct CadetConnection * GCC_create_inbound(struct CadetPeer *destination, struct CadetPeerPath *path, struct CadetTConnection *ct, const struct GNUNET_CADET_ConnectionTunnelIdentifier *cid, GCC_ReadyCallback ready_cb, void *ready_cb_cls)
Create a connection to destination via path and notify cb whenever we are ready for more data.
Definition gnunet-service-cadet_connection.c:902
connection_ready_cb
static void connection_ready_cb(void *cls, int is_ready)
A connection is is_ready for transmission.
Definition gnunet-service-cadet_tunnels.c:2538
LOG
#define LOG(level,...)
Definition gnunet-service-cadet_tunnels.c:47
GCT_2s
const char * GCT_2s(const struct CadetTunnel *t)
Get the static string for the peer this tunnel is directed.
Definition gnunet-service-cadet_tunnels.c:592
GNUNET_CONTAINER_DLL_insert
#define GNUNET_CONTAINER_DLL_insert(head, tail, element)
Insert an element at the head of a DLL.
Definition gnunet_container_lib.h:1797
GNUNET_OK
@ GNUNET_OK
Definition gnunet_common.h:114
GNUNET_ERROR_TYPE_DEBUG
@ GNUNET_ERROR_TYPE_DEBUG
Definition gnunet_common.h:424
GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition gnunet_common.h:1415
GNUNET_TIME_absolute_get
struct GNUNET_TIME_Absolute GNUNET_TIME_absolute_get(void)
Get the current time.
Definition time.c:111
CadetTConnection
Entry in list of connections used by tunnel, with metadata.
Definition gnunet-service-cadet.h:108
CadetTConnection::cc
struct CadetConnection * cc
Connection handle.
Definition gnunet-service-cadet.h:122
CadetTConnection::created
struct GNUNET_TIME_Absolute created
Creation time, to keep oldest connection alive.
Definition gnunet-service-cadet.h:132
CadetTConnection::t
struct CadetTunnel * t
Tunnel this connection belongs to.
Definition gnunet-service-cadet.h:127

References CadetTConnection::cc, connection_ready_cb(), CadetTConnection::created, GCC_2s(), GCC_create_inbound(), GCT_2s(), GNUNET_CONTAINER_DLL_insert, GNUNET_ERROR_TYPE_DEBUG, GNUNET_free, GNUNET_new, GNUNET_OK, GNUNET_SYSERR, GNUNET_TIME_absolute_get(), LOG, t, and CadetTConnection::t.

Referenced by handle_connection_create().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_connection_lost()

void GCT_connection_lost ( struct CadetTConnection ct)

We lost a connection, remove it from our list and clean up the connection object itself.

Parameters
ctbinding of connection to tunnel of the connection that was lost.

Definition at line 2303 of file gnunet-service-cadet_tunnels.c.

2304{
2305 struct CadetTunnel *t = ct->t;
2306
2307 if (GNUNET_YES == ct->is_ready)
2308 {
2309 GNUNET_CONTAINER_DLL_remove (t->connection_ready_head,
2310 t->connection_ready_tail,
2311 ct);
2312 t->num_ready_connections--;
2313 }
2314 else
2315 {
2316 GNUNET_CONTAINER_DLL_remove (t->connection_busy_head,
2317 t->connection_busy_tail,
2318 ct);
2319 t->num_busy_connections--;
2320 }
2321 GNUNET_free (ct);
2322}
GNUNET_CONTAINER_DLL_remove
#define GNUNET_CONTAINER_DLL_remove(head, tail, element)
Remove an element from a DLL.
Definition gnunet_container_lib.h:1920
CadetTConnection::is_ready
int is_ready
Is the connection currently ready for transmission?
Definition gnunet-service-cadet.h:142

References GNUNET_CONTAINER_DLL_remove, GNUNET_free, GNUNET_YES, CadetTConnection::is_ready, t, and CadetTConnection::t.

Referenced by destroy_t_connection(), GCC_create_inbound(), and GCC_destroy_without_core().

Here is the caller graph for this function:

◆ GCT_get_destination()

struct CadetPeer * GCT_get_destination ( struct CadetTunnel t)

Return the peer to which this tunnel goes.

Parameters
ta tunnel
Returns
the destination of the tunnel

Definition at line 648 of file gnunet-service-cadet_tunnels.c.

649{
650 return t->destination;
651}

References t.

Referenced by GCCH_2s(), GCCH_bind(), GCCH_channel_incoming_new(), get_next_free_ctn(), and timeout_closed_cb().

Here is the caller graph for this function:

◆ GCT_consider_path()

void GCT_consider_path ( struct CadetTunnel t,
struct CadetPeerPath p,
unsigned int  off 
)

Consider using the path p for the tunnel t.

The tunnel destination is at offset off in path p.

Parameters
tour tunnel
pa path to our destination
offoffset of the destination on path path

Definition at line 2983 of file gnunet-service-cadet_tunnels.c.

2986{
2987 LOG (GNUNET_ERROR_TYPE_DEBUG,
2988 "Considering %s for %s (offset %u)\n",
2989 GCPP_2s (p),
2990 GCT_2s (t),
2991 off);
2992 (void) consider_path_cb (t,
2993 p,
2994 off);
2995}
GCPP_2s
const char * GCPP_2s(struct CadetPeerPath *path)
Convert a path to a human-readable string.
Definition gnunet-service-cadet_paths.c:738
consider_path_cb
static int consider_path_cb(void *cls, struct CadetPeerPath *path, unsigned int off)
Consider using the path p for the tunnel t.
Definition gnunet-service-cadet_tunnels.c:2827
p
static struct GNUNET_Process * p
Helper process we started.
Definition gnunet-uri.c:38

References consider_path_cb(), GCPP_2s(), GCT_2s(), GNUNET_ERROR_TYPE_DEBUG, LOG, p, and t.

Referenced by GCP_path_entry_add(), and GCP_set_mq().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_add_channel()

struct GNUNET_CADET_ChannelTunnelNumber GCT_add_channel ( struct CadetTunnel t,
struct CadetChannel ch 
)

Add a channel to a tunnel.

Parameters
tTunnel.
chChannel
Returns
unique number identifying ch within t

Add a channel to a tunnel.

Otherwise that notification will be done later in notify_tunnel_up_cb().

Parameters
tTunnel.
chChannel
Returns
unique number identifying ch within t

Definition at line 2244 of file gnunet-service-cadet_tunnels.c.

2246{
2247 struct GNUNET_CADET_ChannelTunnelNumber ctn;
2248
2249 ctn = get_next_free_ctn (t);
2250 if (NULL != t->destroy_task)
2251 {
2252 GNUNET_SCHEDULER_cancel (t->destroy_task);
2253 t->destroy_task = NULL;
2254 }
2255 GNUNET_assert (GNUNET_YES ==
2256 GNUNET_CONTAINER_multihashmap32_put (t->channels,
2257 ntohl (ctn.cn),
2258 ch,
2259 GNUNET_CONTAINER_MULTIHASHMAPOPTION_UNIQUE_ONLY));
2260 LOG (GNUNET_ERROR_TYPE_DEBUG,
2261 "Adding %s to %s with state %d\n",
2262 GCCH_2s (ch),
2263 GCT_2s (t),
2264 t->estate);
2265 switch (t->estate)
2266 {
2267 case CADET_TUNNEL_KEY_UNINITIALIZED:
2268 /* waiting for connection to start KX */
2269 break;
2270
2271 case CADET_TUNNEL_KEY_AX_RECV:
2272 case CADET_TUNNEL_KEY_AX_SENT:
2273 case CADET_TUNNEL_KEY_AX_SENT_AND_RECV:
2274 /* we're currently waiting for KX to complete */
2275 break;
2276
2277 case CADET_TUNNEL_KEY_AX_AUTH_SENT:
2278 /* waiting for OTHER peer to send us data,
2279 we might need to prompt more aggressively! */
2280 if (NULL == t->kx_task)
2281 t->kx_task
2282 = GNUNET_SCHEDULER_add_at (t->next_kx_attempt,
2283 &retry_kx,
2284 t);
2285 break;
2286
2287 case CADET_TUNNEL_KEY_OK:
2288 /* We are ready. Tell the new channel that we are up. */
2289 GCCH_tunnel_up (ch);
2290 break;
2291 }
2292 return ctn;
2293}
ch
static struct GNUNET_CADET_Channel * ch
Channel handle.
Definition gnunet-cadet.c:117
GCCH_2s
const char * GCCH_2s(const struct CadetChannel *ch)
Get the static string for identification of the channel.
Definition gnunet-service-cadet_channel.c:430
GCCH_tunnel_up
void GCCH_tunnel_up(struct CadetChannel *ch)
Function called once and only once after a channel was bound to its tunnel via GCT_add_channel() is r...
Definition gnunet-service-cadet_channel.c:649
get_next_free_ctn
static struct GNUNET_CADET_ChannelTunnelNumber get_next_free_ctn(struct CadetTunnel *t)
Compute the next free channel tunnel number for this tunnel.
Definition gnunet-service-cadet_tunnels.c:2201
retry_kx
static void retry_kx(void *cls)
Try to redo the KX or KX_AUTH handshake, if we can.
Definition gnunet-service-cadet_tunnels.c:1728
GNUNET_CONTAINER_multihashmap32_put
enum GNUNET_GenericReturnValue GNUNET_CONTAINER_multihashmap32_put(struct GNUNET_CONTAINER_MultiHashMap32 *map, uint32_t key, void *value, enum GNUNET_CONTAINER_MultiHashMapOption opt)
Store a key-value pair in the map.
Definition container_multihashmap32.c:449
GNUNET_CONTAINER_MULTIHASHMAPOPTION_UNIQUE_ONLY
@ GNUNET_CONTAINER_MULTIHASHMAPOPTION_UNIQUE_ONLY
There must only be one value per key; storing a value should fail if a value under the same key alrea...
Definition gnunet_container_lib.h:378
GNUNET_SCHEDULER_add_at
struct GNUNET_SCHEDULER_Task * GNUNET_SCHEDULER_add_at(struct GNUNET_TIME_Absolute at, GNUNET_SCHEDULER_TaskCallback task, void *task_cls)
Schedule a new task to be run at the specified time.
Definition scheduler.c:1260
GNUNET_CADET_ChannelTunnelNumber
Number identifying a CADET channel within a tunnel.
Definition gnunet_cadet_service.h:86

References CADET_TUNNEL_KEY_AX_AUTH_SENT, CADET_TUNNEL_KEY_AX_RECV, CADET_TUNNEL_KEY_AX_SENT, CADET_TUNNEL_KEY_AX_SENT_AND_RECV, CADET_TUNNEL_KEY_OK, CADET_TUNNEL_KEY_UNINITIALIZED, ch, GNUNET_CADET_ChannelTunnelNumber::cn, GCCH_2s(), GCCH_tunnel_up(), GCT_2s(), get_next_free_ctn(), GNUNET_assert, GNUNET_CONTAINER_multihashmap32_put(), GNUNET_CONTAINER_MULTIHASHMAPOPTION_UNIQUE_ONLY, GNUNET_ERROR_TYPE_DEBUG, GNUNET_SCHEDULER_add_at(), GNUNET_SCHEDULER_cancel(), GNUNET_YES, LOG, retry_kx(), and t.

Referenced by GCCH_channel_local_new().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_remove_channel()

void GCT_remove_channel ( struct CadetTunnel t,
struct CadetChannel ch,
struct GNUNET_CADET_ChannelTunnelNumber  ctn 
)

Remove a channel from a tunnel.

Parameters
tTunnel.
chChannel
ctnunique number identifying ch within t

Definition at line 2416 of file gnunet-service-cadet_tunnels.c.

2419{
2420 LOG (GNUNET_ERROR_TYPE_DEBUG,
2421 "Removing %s from %s\n",
2422 GCCH_2s (ch),
2423 GCT_2s (t));
2424 GNUNET_assert (GNUNET_YES ==
2425 GNUNET_CONTAINER_multihashmap32_remove (t->channels,
2426 ntohl (ctn.cn),
2427 ch));
2428 if ((0 ==
2429 GCT_count_channels (t)) &&
2430 (NULL == t->destroy_task))
2431 {
2432 t->destroy_task
2433 = GNUNET_SCHEDULER_add_delayed (IDLE_DESTROY_DELAY,
2434 &destroy_tunnel,
2435 t);
2436 }
2437}
IDLE_DESTROY_DELAY
#define IDLE_DESTROY_DELAY
How long do we wait until tearing down an idle tunnel?
Definition gnunet-service-cadet_tunnels.c:59
GNUNET_CONTAINER_multihashmap32_remove
enum GNUNET_GenericReturnValue GNUNET_CONTAINER_multihashmap32_remove(struct GNUNET_CONTAINER_MultiHashMap32 *map, uint32_t key, const void *value)
Remove the given key-value pair from the map.
Definition container_multihashmap32.c:280
GNUNET_SCHEDULER_add_delayed
struct GNUNET_SCHEDULER_Task * GNUNET_SCHEDULER_add_delayed(struct GNUNET_TIME_Relative delay, GNUNET_SCHEDULER_TaskCallback task, void *task_cls)
Schedule a new task to be run with a specified delay.
Definition scheduler.c:1283
GNUNET_CADET_ChannelTunnelNumber::cn
uint32_t cn
Which number does this channel have that uniquely identifies it within its tunnel,...
Definition gnunet_cadet_service.h:96

References ch, GNUNET_CADET_ChannelTunnelNumber::cn, destroy_tunnel(), GCCH_2s(), GCT_2s(), GCT_count_channels(), GNUNET_assert, GNUNET_CONTAINER_multihashmap32_remove(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_SCHEDULER_add_delayed(), GNUNET_YES, IDLE_DESTROY_DELAY, LOG, and t.

Referenced by channel_destroy().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_send_channel_destroy()

void GCT_send_channel_destroy ( struct CadetTunnel t,
struct GNUNET_CADET_ChannelTunnelNumber  ctn 
)

Send a DESTROY message via the tunnel.

Parameters
tthe tunnel to transmit over
ctnID of the channel to destroy

Definition at line 3159 of file gnunet-service-cadet_tunnels.c.

3161{
3162 struct GNUNET_CADET_ChannelDestroyMessage msg;
3163
3164 LOG (GNUNET_ERROR_TYPE_DEBUG,
3165 "Sending DESTROY message for channel ID %u\n",
3166 ntohl (ctn.cn));
3167 msg.header.size = htons (sizeof(msg));
3168 msg.header.type = htons (GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY);
3169 msg.reserved = htonl (0);
3170 msg.ctn = ctn;
3171 GCT_send (t,
3172 &msg.header,
3173 NULL,
3174 NULL,
3175 &ctn);
3176}
msg
struct GNUNET_MessageHeader * msg
Definition 005.c:2
GCT_send
struct CadetTunnelQueueEntry * GCT_send(struct CadetTunnel *t, const struct GNUNET_MessageHeader *message, GCT_SendContinuation cont, void *cont_cls, struct GNUNET_CADET_ChannelTunnelNumber *ctn)
Sends an already built message on a tunnel, encrypting it and choosing the best connection if not pro...
Definition gnunet-service-cadet_tunnels.c:3575
GNUNET_MessageHeader::type
uint16_t type
The type of the message (GNUNET_MESSAGE_TYPE_XXXX), in big-endian format.
Definition gnunet_common.h:333
GNUNET_MessageHeader::size
uint16_t size
The length of the struct (in bytes, including the length field itself), in big-endian format.
Definition gnunet_common.h:328
GNUNET_CADET_ChannelDestroyMessage::ctn
struct GNUNET_CADET_ChannelTunnelNumber ctn
ID of the channel.
Definition cadet_protocol.h:450

References GNUNET_CADET_ChannelTunnelNumber::cn, GNUNET_CADET_ChannelDestroyMessage::ctn, GCT_send(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_MESSAGE_TYPE_CADET_CHANNEL_DESTROY, LOG, msg, GNUNET_MessageHeader::size, t, and GNUNET_MessageHeader::type.

Referenced by GCCH_channel_local_destroy(), GCCH_handle_channel_plaintext_data(), GCCH_handle_local_ack(), handle_plaintext_channel_open_ack(), handle_plaintext_data(), and handle_plaintext_data_ack().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_send()

struct CadetTunnelQueueEntry * GCT_send ( struct CadetTunnel t,
const struct GNUNET_MessageHeader message,
GCT_SendContinuation  cont,
void *  cont_cls,
struct GNUNET_CADET_ChannelTunnelNumber ctn 
)

Sends an already built message on a tunnel, encrypting it and choosing the best connection if not provided.

Parameters
messageMessage to send. Function modifies it.
tTunnel on which this message is transmitted.
contContinuation to call once message is really sent.
cont_clsClosure for cont.
Returns
Handle to cancel message.

Definition at line 3575 of file gnunet-service-cadet_tunnels.c.

3580{
3581 struct CadetTunnelQueueEntry *tq;
3582 uint16_t payload_size;
3583 struct GNUNET_MQ_Envelope *env;
3584 struct GNUNET_CADET_TunnelEncryptedMessage *ax_msg;
3585 struct CadetChannel *ch;
3586
3587 if (NULL != ctn)
3588 {
3589 ch = lookup_channel (t,
3590 *ctn);
3591 if ((NULL != ch) && GCCH_is_type_to_drop (ch, message))
3592 {
3593 GNUNET_break (0);
3594 return NULL;
3595 }
3596 }
3597
3598 if (CADET_TUNNEL_KEY_OK != t->estate)
3599 {
3600 GNUNET_break (0);
3601 return NULL;
3602 }
3603 payload_size = ntohs (message->size);
3604 LOG (GNUNET_ERROR_TYPE_DEBUG,
3605 "Encrypting %u bytes for %s\n",
3606 (unsigned int) payload_size,
3607 GCT_2s (t));
3608 env = GNUNET_MQ_msg_extra (ax_msg,
3609 payload_size,
3610 GNUNET_MESSAGE_TYPE_CADET_TUNNEL_ENCRYPTED);
3611 t_ax_encrypt (&t->ax,
3612 &ax_msg[1],
3613 message,
3614 payload_size);
3615 GNUNET_STATISTICS_update (stats,
3616 "# encrypted bytes",
3617 payload_size,
3618 GNUNET_NO);
3619 ax_msg->ax_header.Ns = htonl (t->ax.Ns++);
3620 ax_msg->ax_header.PNs = htonl (t->ax.PNs);
3621 /* FIXME: we should do this once, not once per message;
3622 this is a point multiplication, and DHRs does not
3623 change all the time. */
3624 GNUNET_CRYPTO_ecdhe_key_get_public (&t->ax.DHRs,
3625 &ax_msg->ax_header.DHRs);
3626 t_h_encrypt (&t->ax,
3627 ax_msg);
3628 t_hmac (&ax_msg->ax_header,
3629 sizeof(struct GNUNET_CADET_AxHeader) + payload_size,
3630 0,
3631 &t->ax.HKs,
3632 &ax_msg->hmac);
3633
3634 tq = GNUNET_malloc (sizeof(*tq));
3635 tq->t = t;
3636 tq->env = env;
3637 tq->cid = &ax_msg->cid; /* will initialize 'ax_msg->cid' once we know the connection */
3638 tq->cont = cont;
3639 tq->cont_cls = cont_cls;
3640 GNUNET_CONTAINER_DLL_insert_tail (t->tq_head,
3641 t->tq_tail,
3642 tq);
3643 if (NULL != t->send_task)
3644 GNUNET_SCHEDULER_cancel (t->send_task);
3645 t->send_task
3646 = GNUNET_SCHEDULER_add_now (&trigger_transmissions,
3647 t);
3648 return tq;
3649}
env
struct GNUNET_MQ_Envelope * env
Definition 005.c:1
GCCH_is_type_to_drop
int GCCH_is_type_to_drop(struct CadetChannel *ch, const struct GNUNET_MessageHeader *message)
Check if type of message is the one to drop.
Definition gnunet-service-cadet_channel.c:408
lookup_channel
static struct CadetChannel * lookup_channel(struct CadetTunnel *t, struct GNUNET_CADET_ChannelTunnelNumber ctn)
Lookup a channel by its ctn.
Definition gnunet-service-cadet_tunnels.c:669
t_hmac
static void t_hmac(const void *plaintext, size_t size, uint32_t iv, const struct GNUNET_CRYPTO_SymmetricSessionKey *key, struct GNUNET_ShortHashCode *hmac)
Calculate HMAC.
Definition gnunet-service-cadet_tunnels.c:755
trigger_transmissions
static void trigger_transmissions(void *cls)
Called when either we have a new connection, or a new message in the queue, or some existing connecti...
Definition gnunet-service-cadet_tunnels.c:2653
t_h_encrypt
static void t_h_encrypt(struct CadetTunnelAxolotl *ax, struct GNUNET_CADET_TunnelEncryptedMessage *msg)
Encrypt header with the axolotl header key.
Definition gnunet-service-cadet_tunnels.c:986
t_ax_encrypt
static void t_ax_encrypt(struct CadetTunnelAxolotl *ax, void *dst, const void *src, size_t size)
Encrypt data with the axolotl tunnel key.
Definition gnunet-service-cadet_tunnels.c:857
stats
static struct GNUNET_STATISTICS_Handle * stats
Handle to the statistics service.
Definition gnunet-zoneimport.c:270
GNUNET_CRYPTO_ecdhe_key_get_public
void GNUNET_CRYPTO_ecdhe_key_get_public(const struct GNUNET_CRYPTO_EcdhePrivateKey *priv, struct GNUNET_CRYPTO_EcdhePublicKey *pub)
Extract the public key for the given private key.
Definition crypto_ecc.c:217
GNUNET_CONTAINER_DLL_insert_tail
#define GNUNET_CONTAINER_DLL_insert_tail(head, tail, element)
Insert an element at the tail of a DLL.
Definition gnunet_container_lib.h:1822
GNUNET_break
#define GNUNET_break(cond)
Use this for internal assertion violations that are not fatal (can be handled) but should not occur.
Definition gnunet_common.h:1045
GNUNET_malloc
#define GNUNET_malloc(size)
Wrapper around malloc.
Definition gnunet_common.h:1355
GNUNET_MQ_msg_extra
#define GNUNET_MQ_msg_extra(mvar, esize, type)
Allocate an envelope, with extra space allocated after the space needed by the message struct.
Definition gnunet_mq_lib.h:61
GNUNET_MESSAGE_TYPE_CADET_TUNNEL_ENCRYPTED
#define GNUNET_MESSAGE_TYPE_CADET_TUNNEL_ENCRYPTED
Axolotl encrypted data.
Definition gnunet_protocols.h:3010
GNUNET_STATISTICS_update
void GNUNET_STATISTICS_update(struct GNUNET_STATISTICS_Handle *handle, const char *name, int64_t delta, int make_persistent)
Set statistic value for the peer.
Definition statistics_api.c:1324
CadetChannel
Struct containing all information regarding a channel to a remote client.
Definition gnunet-service-cadet_channel.c:250
CadetChannel::ctn
struct GNUNET_CADET_ChannelTunnelNumber ctn
Number identifying this channel in its tunnel.
Definition gnunet-service-cadet_channel.c:345
CadetTunnelQueueEntry
Struct used to save messages in a non-ready tunnel to send once connected.
Definition gnunet-service-cadet_tunnels.c:327
CadetTunnelQueueEntry::env
struct GNUNET_MQ_Envelope * env
Envelope of message to send follows.
Definition gnunet-service-cadet_tunnels.c:356
CadetTunnelQueueEntry::cont
GCT_SendContinuation cont
Continuation to call once sent (on the channel layer).
Definition gnunet-service-cadet_tunnels.c:346
CadetTunnelQueueEntry::cid
struct GNUNET_CADET_ConnectionTunnelIdentifier * cid
Where to put the connection identifier into the payload of the message in env once we have it?
Definition gnunet-service-cadet_tunnels.c:362
CadetTunnelQueueEntry::t
struct CadetTunnel * t
Tunnel these messages belong in.
Definition gnunet-service-cadet_tunnels.c:341
GNUNET_CADET_AxHeader
Encrypted axolotl header with numbers that identify which keys in which ratchet are to be used to dec...
Definition cadet_protocol.h:313
GNUNET_CADET_AxHeader::PNs
uint32_t PNs
Number of messages sent with the previous ratchet key.
Definition cadet_protocol.h:322
GNUNET_CADET_AxHeader::DHRs
struct GNUNET_CRYPTO_EcdhePublicKey DHRs
Current ratchet key.
Definition cadet_protocol.h:327
GNUNET_CADET_AxHeader::Ns
uint32_t Ns
Number of messages sent with the current ratchet key.
Definition cadet_protocol.h:317
GNUNET_CADET_TunnelEncryptedMessage
Axolotl-encrypted tunnel message with application payload.
Definition cadet_protocol.h:335
GNUNET_CADET_TunnelEncryptedMessage::ax_header
struct GNUNET_CADET_AxHeader ax_header
Axolotl-header that specifies which keys to use in which ratchet to decrypt the body that follows.
Definition cadet_protocol.h:362
GNUNET_CADET_TunnelEncryptedMessage::cid
struct GNUNET_CADET_ConnectionTunnelIdentifier cid
ID of the connection.
Definition cadet_protocol.h:349
GNUNET_CADET_TunnelEncryptedMessage::hmac
struct GNUNET_ShortHashCode hmac
MAC of the encrypted message, used to verify message integrity.
Definition cadet_protocol.h:356
GNUNET_MQ_Envelope
Definition mq.c:34

References GNUNET_CADET_TunnelEncryptedMessage::ax_header, CADET_TUNNEL_KEY_OK, ch, GNUNET_CADET_TunnelEncryptedMessage::cid, CadetTunnelQueueEntry::cid, CadetTunnelQueueEntry::cont, CadetTunnelQueueEntry::cont_cls, CadetChannel::ctn, GNUNET_CADET_AxHeader::DHRs, env, CadetTunnelQueueEntry::env, GCCH_is_type_to_drop(), GCT_2s(), GNUNET_break, GNUNET_CONTAINER_DLL_insert_tail, GNUNET_CRYPTO_ecdhe_key_get_public(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_malloc, GNUNET_MESSAGE_TYPE_CADET_TUNNEL_ENCRYPTED, GNUNET_MQ_msg_extra, GNUNET_NO, GNUNET_SCHEDULER_add_now(), GNUNET_SCHEDULER_cancel(), GNUNET_STATISTICS_update(), GNUNET_CADET_TunnelEncryptedMessage::hmac, LOG, lookup_channel(), GNUNET_CADET_AxHeader::Ns, GNUNET_CADET_AxHeader::PNs, GNUNET_MessageHeader::size, stats, t, CadetTunnelQueueEntry::t, t_ax_encrypt(), t_h_encrypt(), t_hmac(), and trigger_transmissions().

Referenced by GCCH_handle_local_data(), GCT_send_channel_destroy(), retry_transmission(), send_channel_data_ack(), send_channel_open(), send_keepalive(), and send_open_ack().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_send_cancel()

void GCT_send_cancel ( struct CadetTunnelQueueEntry q)

Cancel a previously sent message while it's in the queue.

ONLY can be called before the continuation given to the send function is called. Once the continuation is called, the message is no longer in the queue!

Parameters
qHandle to the queue entry to cancel.

Definition at line 3653 of file gnunet-service-cadet_tunnels.c.

3654{
3655 struct CadetTunnel *t = tq->t;
3656
3657 GNUNET_CONTAINER_DLL_remove (t->tq_head,
3658 t->tq_tail,
3659 tq);
3660 GNUNET_MQ_discard (tq->env);
3661 GNUNET_free (tq);
3662}
GNUNET_MQ_discard
void GNUNET_MQ_discard(struct GNUNET_MQ_Envelope *mqm)
Discard the message queue message, free all allocated resources.
Definition mq.c:285

References CadetTunnelQueueEntry::env, GNUNET_CONTAINER_DLL_remove, GNUNET_free, GNUNET_MQ_discard(), t, and CadetTunnelQueueEntry::t.

Referenced by channel_destroy(), destroy_tunnel(), GCC_destroy(), handle_matching_ack(), send_channel_data_ack(), send_channel_open(), and send_open_ack().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_count_channels()

unsigned int GCT_count_channels ( struct CadetTunnel t)

Returns the number of channels using a tunnel.

Parameters
tTunnel in question.
Returns
Number of channels using the tunnel.

Definition at line 655 of file gnunet-service-cadet_tunnels.c.

656{
657 return GNUNET_CONTAINER_multihashmap32_size (t->channels);
658}
GNUNET_CONTAINER_multihashmap32_size
unsigned int GNUNET_CONTAINER_multihashmap32_size(const struct GNUNET_CONTAINER_MultiHashMap32 *map)
Get the number of key-value pairs in the map.
Definition container_multihashmap32.c:200

References GNUNET_CONTAINER_multihashmap32_size(), and t.

Referenced by connection_ready_cb(), destroy_tunnel(), GCT_destroy_tunnel_now(), GCT_remove_channel(), get_all_tunnels_iterator(), and retry_kx().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_count_any_connections()

unsigned int GCT_count_any_connections ( const struct CadetTunnel t)

Counts the number of connections created for a tunnel, including busy connections.

Parameters
tTunnel to be counted.
Returns
Number of connections created for the tunnel.

Definition at line 678 of file gnunet-service-cadet_tunnels.c.

679{
680 return t->num_ready_connections + t->num_busy_connections;
681}

References t.

Referenced by consider_path_cb(), GCT_debug(), get_all_tunnels_iterator(), and maintain_connections_cb().

Here is the caller graph for this function:

◆ GCT_iterate_connections()

void GCT_iterate_connections ( struct CadetTunnel t,
GCT_ConnectionIterator  iter,
void *  iter_cls 
)

Iterate over all connections of a tunnel.

Parameters
tTunnel whose connections to iterate.
iterIterator.
iter_clsClosure for iter.

Definition at line 3673 of file gnunet-service-cadet_tunnels.c.

3676{
3677 struct CadetTConnection *n;
3678
3679 for (struct CadetTConnection *ct = t->connection_ready_head;
3680 NULL != ct;
3681 ct = n)
3682 {
3683 n = ct->next;
3684 iter (iter_cls,
3685 ct);
3686 }
3687 for (struct CadetTConnection *ct = t->connection_busy_head;
3688 NULL != ct;
3689 ct = n)
3690 {
3691 n = ct->next;
3692 iter (iter_cls,
3693 ct);
3694 }
3695}
CadetTConnection::next
struct CadetTConnection * next
Next in DLL.
Definition gnunet-service-cadet.h:112

References CadetTConnection::next, and t.

Referenced by consider_path_cb(), destroy_tunnel(), and maintain_connections_cb().

Here is the caller graph for this function:

◆ GCT_iterate_channels()

void GCT_iterate_channels ( struct CadetTunnel t,
GCT_ChannelIterator  iter,
void *  iter_cls 
)

Iterate over all channels of a tunnel.

Parameters
tTunnel whose channels to iterate.
iterIterator.
iter_clsClosure for iter.

Definition at line 3745 of file gnunet-service-cadet_tunnels.c.

3748{
3749 struct ChanIterCls ctx;
3750
3751 ctx.iter = iter;
3752 ctx.iter_cls = iter_cls;
3753 GNUNET_CONTAINER_multihashmap32_iterate (t->channels,
3754 &iterate_channels_cb,
3755 &ctx);
3756}
ctx
static struct GNUNET_FS_Handle * ctx
Definition gnunet-download.c:40
iterate_channels_cb
static int iterate_channels_cb(void *cls, uint32_t key, void *value)
Helper function for GCT_iterate_channels.
Definition gnunet-service-cadet_tunnels.c:3724
ChanIterCls
Closure for iterate_channels_cb.
Definition gnunet-service-cadet_tunnels.c:3702
ChanIterCls::iter_cls
void * iter_cls
Closure for iter.
Definition gnunet-service-cadet_tunnels.c:3711
ChanIterCls::iter
GCT_ChannelIterator iter
Function to call.
Definition gnunet-service-cadet_tunnels.c:3706

References ctx, GNUNET_CONTAINER_multihashmap32_iterate(), ChanIterCls::iter, ChanIterCls::iter_cls, iterate_channels_cb(), and t.

Here is the call graph for this function:

◆ GCT_get_estate()

enum CadetTunnelEState GCT_get_estate ( struct CadetTunnel t)

Get the encryption state of a tunnel.

Parameters
tTunnel.
Returns
Tunnel's encryption state.

Definition at line 710 of file gnunet-service-cadet_tunnels.c.

711{
712 return t->estate;
713}

References t.

Referenced by get_all_tunnels_iterator(), handle_connection_create(), send_create(), and send_keepalive().

Here is the caller graph for this function:

◆ GCT_change_estate()

void GCT_change_estate ( struct CadetTunnel t,
enum CadetTunnelEState  state 
)

Change the tunnel encryption state.

If the encryption state changes to OK, stop the rekey task.

Parameters
tTunnel whose encryption state to change, or NULL.
stateNew encryption state.

Definition at line 1385 of file gnunet-service-cadet_tunnels.c.

1387{
1388 enum CadetTunnelEState old = t->estate;
1389
1390 t->estate = state;
1391 LOG (GNUNET_ERROR_TYPE_DEBUG,
1392 "%s estate changed from %s to %s\n",
1393 GCT_2s (t),
1394 estate2s (old),
1395 estate2s (state));
1396
1397 if ((CADET_TUNNEL_KEY_OK != old) &&
1398 (CADET_TUNNEL_KEY_OK == t->estate))
1399 {
1400 if (NULL != t->kx_task)
1401 {
1402 GNUNET_SCHEDULER_cancel (t->kx_task);
1403 t->kx_task = NULL;
1404 }
1405 /* notify all channels that have been waiting */
1406 GNUNET_CONTAINER_multihashmap32_iterate (t->channels,
1407 &notify_tunnel_up_cb,
1408 t);
1409 if (NULL != t->send_task)
1410 GNUNET_SCHEDULER_cancel (t->send_task);
1411 t->send_task = GNUNET_SCHEDULER_add_now (&trigger_transmissions,
1412 t);
1413 }
1414}
state
static int state
The current state of the parser.
Definition gnunet-namestore-zonefile.c:318
notify_tunnel_up_cb
static int notify_tunnel_up_cb(void *cls, uint32_t key, void *value)
Our tunnel became ready for the first time, notify channels that have been waiting.
Definition gnunet-service-cadet_tunnels.c:1366
estate2s
static const char * estate2s(enum CadetTunnelEState es)
Get string description for tunnel encryption state.
Definition gnunet-service-cadet_tunnels.c:614
CadetTunnelEState
CadetTunnelEState
All the encryption states a tunnel can be in.
Definition gnunet-service-cadet_tunnels.h:44

References CADET_TUNNEL_KEY_OK, estate2s(), GCT_2s(), GNUNET_CONTAINER_multihashmap32_iterate(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_SCHEDULER_add_now(), GNUNET_SCHEDULER_cancel(), LOG, notify_tunnel_up_cb(), state, t, and trigger_transmissions().

Referenced by cont_GCT_handle_kx(), cont_GCT_handle_kx_auth(), GCT_handle_encrypted(), handle_connection_create(), send_kx(), and send_kx_auth().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_handle_kx()

void GCT_handle_kx ( struct CadetTConnection ct,
const struct GNUNET_CADET_TunnelKeyExchangeMessage msg 
)

Handle KX message that lacks authentication (and which will thus only be considered authenticated after we respond with our own KX_AUTH and finally successfully decrypt the payload).

Parameters
ctconnection/tunnel combo that received encrypted message
msgthe key exchange message

Handle KX message that lacks authentication (and which will thus only be considered authenticated after we respond with our own KX_AUTH and finally successfully decrypt the payload).

Parameters
clsclosure from updating AX by KX
retresult from the update call

Definition at line 1870 of file gnunet-service-cadet_tunnels.c.

1872{
1873 struct CadetTunnel *t = ct->t;
1874
1875 GNUNET_STATISTICS_update (stats,
1876 "# KX received",
1877 1,
1878 GNUNET_NO);
1879 if (GNUNET_YES ==
1880 GCT_alice_or_betty (GCP_get_id (t->destination)))
1881 {
1882 /* Betty/Bob is not allowed to send KX! */
1883 GNUNET_break_op (0);
1884 return;
1885 }
1886 LOG (GNUNET_ERROR_TYPE_DEBUG,
1887 "Received KX message from %s with ephemeral %s from %s on connection %s\n",
1888 GCT_2s (t),
1889 GNUNET_e2s (&msg->ephemeral_key),
1890 GNUNET_i2s (GCP_get_id (t->destination)),
1891 GCC_2s (ct->cc));
1892#if 1
1893 if ((0 ==
1894 memcmp (&t->ax.DHRr,
1895 &msg->ratchet_key,
1896 sizeof(msg->ratchet_key))) &&
1897 (0 ==
1898 memcmp (&t->ax.last_ephemeral,
1899 &msg->ephemeral_key,
1900 sizeof(msg->ephemeral_key))))
1901
1902 {
1903 GNUNET_STATISTICS_update (stats,
1904 "# Duplicate KX received",
1905 1,
1906 GNUNET_NO);
1907 send_kx_auth (t,
1908 ct,
1909 &t->ax,
1910 GNUNET_NO);
1911 return;
1912 }
1913#endif
1914 /* We only keep ONE unverified KX around, so if there is an existing one,
1915 clean it up. */
1916 if (NULL != t->unverified_ax)
1917 {
1918 if ((0 ==
1919 memcmp (&t->unverified_ax->DHRr,
1920 &msg->ratchet_key,
1921 sizeof(msg->ratchet_key))) &&
1922 (0 ==
1923 memcmp (&t->unverified_ax->last_ephemeral,
1924 &msg->ephemeral_key,
1925 sizeof(msg->ephemeral_key))))
1926 {
1927 GNUNET_STATISTICS_update (stats,
1928 "# Duplicate unverified KX received",
1929 1,
1930 GNUNET_NO);
1931#if 1
1932 send_kx_auth (t,
1933 ct,
1934 t->unverified_ax,
1935 GNUNET_NO);
1936 return;
1937#endif
1938 }
1939 if ((t->as.ecdh_op) &&
1940 (0 ==
1941 memcmp (&t->as.ratchet_key,
1942 &msg->ratchet_key,
1943 sizeof(msg->ratchet_key))) &&
1944 (0 ==
1945 memcmp (&t->as.ephemeral_key,
1946 &msg->ephemeral_key,
1947 sizeof(msg->ephemeral_key))))
1948 {
1949 LOG (GNUNET_ERROR_TYPE_DEBUG,
1950 "Waiting for previous ECDH operation\n");
1951 return;
1952 }
1953 LOG (GNUNET_ERROR_TYPE_DEBUG,
1954 "Dropping old unverified KX state.\n");
1955 GNUNET_STATISTICS_update (stats,
1956 "# Unverified KX dropped for fresh KX",
1957 1,
1958 GNUNET_NO);
1959 GNUNET_break (NULL == t->unverified_ax->skipped_head);
1960 memset (t->unverified_ax,
1961 0,
1962 sizeof(struct CadetTunnelAxolotl));
1963 }
1964 else
1965 {
1966 LOG (GNUNET_ERROR_TYPE_DEBUG,
1967 "Creating fresh unverified KX for %s\n",
1968 GCT_2s (t));
1969 GNUNET_STATISTICS_update (stats,
1970 "# Fresh KX setup",
1971 1,
1972 GNUNET_NO);
1973 t->unverified_ax = GNUNET_new (struct CadetTunnelAxolotl);
1974 }
1975 /* Set as the 'current' RK/DHRr the one we are currently using,
1976 so that the duplicate-detection logic of
1977 #update_ax_by_kx can work. */
1978 t->unverified_ax->RK = t->ax.RK;
1979 t->unverified_ax->DHRr = t->ax.DHRr;
1980 t->unverified_ax->DHRs = t->ax.DHRs;
1981 t->unverified_ax->kx_0 = t->ax.kx_0;
1982 t->unverified_attempts = 0;
1983
1984 t->as.ax = *(t->unverified_ax);
1985 GNUNET_memcpy (&t->as.peer_id, GCP_get_id (t->destination),
1986 sizeof (t->as.peer_id));
1987 GNUNET_memcpy (&t->as.ephemeral_key, &msg->ephemeral_key,
1988 sizeof (t->as.ephemeral_key));
1989 GNUNET_memcpy (&t->as.ratchet_key, &msg->ratchet_key,
1990 sizeof (t->as.ratchet_key));
1991 memset (&t->as.auth, 0, sizeof (t->as.auth));
1992 t->as.flags = 0;
1993 t->as.cb_cls = t;
1994 t->as.cb = &cont_GCT_handle_kx;
1995
1996 if (t->as.ecdh_op)
1997 {
1998 LOG (GNUNET_ERROR_TYPE_DEBUG,
1999 "Cancelling previous ECDH operation\n");
2000
2001 GNUNET_PILS_cancel (t->as.ecdh_op);
2002 }
2003
2004 t->as.ecdh_op = GNUNET_PILS_ecdh (pils, &msg->ephemeral_key,
2005 &update_ax_by_kx, &t->as);
2006}
cont_GCT_handle_kx
static void cont_GCT_handle_kx(void *cls, enum GNUNET_GenericReturnValue ret)
Continue to handle KX message.
Definition gnunet-service-cadet_tunnels.c:1821
send_kx_auth
static void send_kx_auth(struct CadetTunnel *t, struct CadetTConnection *ct, struct CadetTunnelAxolotl *ax, int force_reply)
Send a KX_AUTH message.
Definition gnunet-service-cadet_tunnels.c:1496
GCT_alice_or_betty
int GCT_alice_or_betty(const struct GNUNET_PeerIdentity *other)
Am I Alice or Betty (some call her Bob), or talking to myself?
Definition gnunet-service-cadet_tunnels.c:540
update_ax_by_kx
static void update_ax_by_kx(void *cls, const struct GNUNET_HashCode *key_result)
Update our Axolotl key state based on the KX data we received.
Definition gnunet-service-cadet_tunnels.c:1597
GNUNET_PILS_ecdh
struct GNUNET_PILS_Operation * GNUNET_PILS_ecdh(struct GNUNET_PILS_Handle *handle, const struct GNUNET_CRYPTO_EcdhePublicKey *pub, GNUNET_PILS_EcdhResultCallback cb, void *cb_cls)
Derive key material from a ECDH public key and our private key.
Definition pils_api.c:595
GNUNET_PILS_cancel
void GNUNET_PILS_cancel(struct GNUNET_PILS_Operation *op)
Cancel request.
Definition pils_api.c:623
GNUNET_memcpy
#define GNUNET_memcpy(dst, src, n)
Call memcpy() but check for n being 0 first.
Definition gnunet_common.h:1320
GNUNET_e2s
const char * GNUNET_e2s(const struct GNUNET_CRYPTO_EcdhePublicKey *p)
Convert a public key value to a string (for printing debug messages).
Definition common_logging.c:1272
CadetTunnelAxolotl
Axolotl data, according to https://github.com/trevp/axolotl/wiki .
Definition gnunet-service-cadet_tunnels.c:122

References CadetTConnection::cc, cont_GCT_handle_kx(), GCC_2s(), GCP_get_id(), GCT_2s(), GCT_alice_or_betty(), GNUNET_break, GNUNET_break_op, GNUNET_e2s(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_i2s(), GNUNET_memcpy, GNUNET_new, GNUNET_NO, GNUNET_PILS_cancel(), GNUNET_PILS_ecdh(), GNUNET_STATISTICS_update(), GNUNET_YES, LOG, msg, pils, send_kx_auth(), stats, t, CadetTConnection::t, and update_ax_by_kx().

Referenced by GCC_handle_kx().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_handle_kx_auth()

void GCT_handle_kx_auth ( struct CadetTConnection ct,
const struct GNUNET_CADET_TunnelKeyExchangeAuthMessage msg 
)

Handle KX_AUTH message.

Parameters
ctconnection/tunnel combo that received encrypted message
msgthe key exchange message

Definition at line 2127 of file gnunet-service-cadet_tunnels.c.

2129{
2130 struct CadetTunnel *t = ct->t;
2131
2132 GNUNET_STATISTICS_update (stats,
2133 "# KX_AUTH received",
2134 1,
2135 GNUNET_NO);
2136 if ((CADET_TUNNEL_KEY_UNINITIALIZED == t->estate) ||
2137 (CADET_TUNNEL_KEY_AX_RECV == t->estate))
2138 {
2139 /* Confusing, we got a KX_AUTH before we even send our own
2140 KX. This should not happen. We'll send our own KX ASAP anyway,
2141 so let's ignore this here. */
2142 GNUNET_break_op (0);
2143 return;
2144 }
2145 LOG (GNUNET_ERROR_TYPE_DEBUG,
2146 "Handling KX_AUTH message from %s with ephemeral %s\n",
2147 GCT_2s (t),
2148 GNUNET_e2s (&msg->kx.ephemeral_key));
2149 if ((t->as.ecdh_op) &&
2150 (0 ==
2151 memcmp (&t->as.ratchet_key,
2152 &msg->kx.ratchet_key,
2153 sizeof(msg->kx.ratchet_key))) &&
2154 (0 ==
2155 memcmp (&t->as.ephemeral_key,
2156 &msg->kx.ephemeral_key,
2157 sizeof(msg->kx.ephemeral_key))))
2158 {
2159 LOG (GNUNET_ERROR_TYPE_DEBUG,
2160 "Waiting for previous ECDH operation\n");
2161 return;
2162 }
2163 /* We do everything in a copy until we've checked the authentication
2164 so we don't clobber anything we care about by accident. */
2165 t->as.ax = t->ax;
2166 GNUNET_memcpy (&t->as.peer_id, GCP_get_id (t->destination),
2167 sizeof (t->as.peer_id));
2168 GNUNET_memcpy (&t->as.ephemeral_key, &msg->kx.ephemeral_key,
2169 sizeof (t->as.ephemeral_key));
2170 GNUNET_memcpy (&t->as.ratchet_key, &msg->kx.ratchet_key,
2171 sizeof (t->as.ratchet_key));
2172 t->as.auth = msg->auth;
2173 t->as.flags = msg->kx.flags;
2174 t->as.cb_cls = t;
2175 t->as.cb = &cont_GCT_handle_kx_auth;
2176
2177 if (t->as.ecdh_op)
2178 {
2179 LOG (GNUNET_ERROR_TYPE_DEBUG,
2180 "Cancelling previous ECDH operation\n");
2181
2182 GNUNET_PILS_cancel (t->as.ecdh_op);
2183 }
2184
2185 /* Update 'ax' by the new key material */
2186 t->as.ecdh_op = GNUNET_PILS_ecdh (pils, &msg->kx.ephemeral_key,
2187 &update_ax_by_kx, &t->as);
2188}
cont_GCT_handle_kx_auth
static void cont_GCT_handle_kx_auth(void *cls, enum GNUNET_GenericReturnValue ret)
Continue to handle KX_AUTH message.
Definition gnunet-service-cadet_tunnels.c:2016

References CADET_TUNNEL_KEY_AX_RECV, CADET_TUNNEL_KEY_UNINITIALIZED, cont_GCT_handle_kx_auth(), GCP_get_id(), GCT_2s(), GNUNET_break_op, GNUNET_e2s(), GNUNET_ERROR_TYPE_DEBUG, GNUNET_memcpy, GNUNET_NO, GNUNET_PILS_cancel(), GNUNET_PILS_ecdh(), GNUNET_STATISTICS_update(), LOG, msg, pils, stats, t, CadetTConnection::t, and update_ax_by_kx().

Referenced by GCC_handle_kx_auth().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_handle_encrypted()

void GCT_handle_encrypted ( struct CadetTConnection ct,
const struct GNUNET_CADET_TunnelEncryptedMessage msg 
)

Handle encrypted message.

Parameters
ctconnection/tunnel combo that received encrypted message
msgthe encrypted message to decrypt

Definition at line 3400 of file gnunet-service-cadet_tunnels.c.

3402{
3403 struct CadetTunnel *t = ct->t;
3404 uint16_t size = ntohs (msg->header.size);
3405 char cbuf[size] GNUNET_ALIGN;
3406 ssize_t decrypted_size;
3407
3408 LOG (GNUNET_ERROR_TYPE_DEBUG,
3409 "%s received %u bytes of encrypted data in state %d\n",
3410 GCT_2s (t),
3411 (unsigned int) size,
3412 t->estate);
3413
3414 switch (t->estate)
3415 {
3416 case CADET_TUNNEL_KEY_UNINITIALIZED:
3417 case CADET_TUNNEL_KEY_AX_RECV:
3418 /* We did not even SEND our KX, how can the other peer
3419 send us encrypted data? Must have been that we went
3420 down and the other peer still things we are up.
3421 Let's send it KX back. */
3422 GNUNET_STATISTICS_update (stats,
3423 "# received encrypted without any KX",
3424 1,
3425 GNUNET_NO);
3426 if (NULL != t->kx_task)
3427 {
3428 GNUNET_SCHEDULER_cancel (t->kx_task);
3429 t->kx_task = NULL;
3430 }
3431 send_kx (t,
3432 ct,
3433 &t->ax);
3434 return;
3435
3436 case CADET_TUNNEL_KEY_AX_SENT_AND_RECV:
3437 /* We send KX, and other peer send KX to us at the same time.
3438 Neither KX is AUTH'ed, so let's try KX_AUTH this time. */
3439 GNUNET_STATISTICS_update (stats,
3440 "# received encrypted without KX_AUTH",
3441 1,
3442 GNUNET_NO);
3443 if (NULL != t->kx_task)
3444 {
3445 GNUNET_SCHEDULER_cancel (t->kx_task);
3446 t->kx_task = NULL;
3447 }
3448 send_kx_auth (t,
3449 ct,
3450 &t->ax,
3451 GNUNET_YES);
3452 return;
3453
3454 case CADET_TUNNEL_KEY_AX_SENT:
3455 /* We did not get the KX of the other peer, but that
3456 might have been lost. Send our KX again immediately. */
3457 GNUNET_STATISTICS_update (stats,
3458 "# received encrypted without KX",
3459 1,
3460 GNUNET_NO);
3461 if (NULL != t->kx_task)
3462 {
3463 GNUNET_SCHEDULER_cancel (t->kx_task);
3464 t->kx_task = NULL;
3465 }
3466 send_kx (t,
3467 ct,
3468 &t->ax);
3469 return;
3470
3471 case CADET_TUNNEL_KEY_AX_AUTH_SENT:
3472 /* Great, first payload, we might graduate to OK! */
3473 case CADET_TUNNEL_KEY_OK:
3474 /* We are up and running, all good. */
3475 break;
3476 }
3477
3478 decrypted_size = -1;
3479 if (CADET_TUNNEL_KEY_OK == t->estate)
3480 {
3481 /* We have well-established key material available,
3482 try that. (This is the common case.) */
3483 decrypted_size = t_ax_decrypt_and_validate (&t->ax,
3484 cbuf,
3485 msg,
3486 size);
3487 }
3488
3489 if ((-1 == decrypted_size) &&
3490 (NULL != t->unverified_ax))
3491 {
3492 /* We have un-authenticated KX material available. We should try
3493 this as a back-up option, in case the sender crashed and
3494 switched keys. */
3495 decrypted_size = t_ax_decrypt_and_validate (t->unverified_ax,
3496 cbuf,
3497 msg,
3498 size);
3499 if (-1 != decrypted_size)
3500 {
3501 /* It worked! Treat this as authentication of the AX data! */
3502 cleanup_ax (&t->ax);
3503 t->ax = *t->unverified_ax;
3504 GNUNET_free (t->unverified_ax);
3505 t->unverified_ax = NULL;
3506 }
3507 if (CADET_TUNNEL_KEY_AX_AUTH_SENT == t->estate)
3508 {
3509 /* First time it worked, move tunnel into production! */
3510 GCT_change_estate (t,
3511 CADET_TUNNEL_KEY_OK);
3512 if (NULL != t->send_task)
3513 GNUNET_SCHEDULER_cancel (t->send_task);
3514 t->send_task = GNUNET_SCHEDULER_add_now (&trigger_transmissions,
3515 t);
3516 }
3517 }
3518 if (NULL != t->unverified_ax)
3519 {
3520 /* We had unverified KX material that was useless; so increment
3521 counter and eventually move to ignore it. Note that we even do
3522 this increment if we successfully decrypted with the old KX
3523 material and thus didn't even both with the new one. This is
3524 the ideal case, as a malicious injection of bogus KX data
3525 basically only causes us to increment a counter a few times. */t->unverified_attempts++;
3526 LOG (GNUNET_ERROR_TYPE_DEBUG,
3527 "Failed to decrypt message with unverified KX data %u times\n",
3528 t->unverified_attempts);
3529 if (t->unverified_attempts > MAX_UNVERIFIED_ATTEMPTS)
3530 {
3531 cleanup_ax (t->unverified_ax);
3532 GNUNET_free (t->unverified_ax);
3533 t->unverified_ax = NULL;
3534 }
3535 }
3536
3537 if (-1 == decrypted_size)
3538 {
3539 /* Decryption failed for good, complain. */
3540 LOG (GNUNET_ERROR_TYPE_WARNING,
3541 "%s failed to decrypt and validate encrypted data, retrying KX\n",
3542 GCT_2s (t));
3543 GNUNET_STATISTICS_update (stats,
3544 "# unable to decrypt",
3545 1,
3546 GNUNET_NO);
3547 if (NULL != t->kx_task)
3548 {
3549 GNUNET_SCHEDULER_cancel (t->kx_task);
3550 t->kx_task = NULL;
3551 }
3552 send_kx (t,
3553 ct,
3554 &t->ax);
3555 return;
3556 }
3557 GNUNET_STATISTICS_update (stats,
3558 "# decrypted bytes",
3559 decrypted_size,
3560 GNUNET_NO);
3561
3562 /* The MST will ultimately call #handle_decrypted() on each message. */
3563 t->current_ct = ct;
3564 GNUNET_break_op (GNUNET_OK ==
3565 GNUNET_MST_from_buffer (t->mst,
3566 cbuf,
3567 decrypted_size,
3568 GNUNET_YES,
3569 GNUNET_NO));
3570 t->current_ct = NULL;
3571}
cleanup_ax
static void cleanup_ax(struct CadetTunnelAxolotl *ax)
Cleanup state used by ax.
Definition gnunet-service-cadet_tunnels.c:1574
MAX_UNVERIFIED_ATTEMPTS
#define MAX_UNVERIFIED_ATTEMPTS
How often do we try to decrypt payload with unverified key material? Used to limit CPU increase upon ...
Definition gnunet-service-cadet_tunnels.c:54
GCT_change_estate
void GCT_change_estate(struct CadetTunnel *t, enum CadetTunnelEState state)
Change the tunnel encryption state.
Definition gnunet-service-cadet_tunnels.c:1385
send_kx
static void send_kx(struct CadetTunnel *t, struct CadetTConnection *ct, struct CadetTunnelAxolotl *ax)
Send a KX message.
Definition gnunet-service-cadet_tunnels.c:1426
t_ax_decrypt_and_validate
static ssize_t t_ax_decrypt_and_validate(struct CadetTunnelAxolotl *ax, void *dst, const struct GNUNET_CADET_TunnelEncryptedMessage *src, size_t size)
Decrypt and verify data with the appropriate tunnel key and verify that the data has not been altered...
Definition gnunet-service-cadet_tunnels.c:1251
GNUNET_ALIGN
#define GNUNET_ALIGN
gcc-ism to force alignment; we use this to align char-arrays that may then be cast to 'struct's.
Definition gnunet_common.h:256
GNUNET_ERROR_TYPE_WARNING
@ GNUNET_ERROR_TYPE_WARNING
Definition gnunet_common.h:418
GNUNET_MST_from_buffer
enum GNUNET_GenericReturnValue GNUNET_MST_from_buffer(struct GNUNET_MessageStreamTokenizer *mst, const char *buf, size_t size, int purge, int one_shot)
Add incoming data to the receive buffer and call the callback for all complete messages.
Definition mst.c:101
size
static unsigned int size
Size of the "table".
Definition peer.c:68

References CADET_TUNNEL_KEY_AX_AUTH_SENT, CADET_TUNNEL_KEY_AX_RECV, CADET_TUNNEL_KEY_AX_SENT, CADET_TUNNEL_KEY_AX_SENT_AND_RECV, CADET_TUNNEL_KEY_OK, CADET_TUNNEL_KEY_UNINITIALIZED, cleanup_ax(), GCT_2s(), GCT_change_estate(), GNUNET_ALIGN, GNUNET_break_op, GNUNET_ERROR_TYPE_DEBUG, GNUNET_ERROR_TYPE_WARNING, GNUNET_free, GNUNET_MST_from_buffer(), GNUNET_NO, GNUNET_OK, GNUNET_SCHEDULER_add_now(), GNUNET_SCHEDULER_cancel(), GNUNET_STATISTICS_update(), GNUNET_YES, LOG, MAX_UNVERIFIED_ATTEMPTS, msg, send_kx(), send_kx_auth(), GNUNET_MessageHeader::size, size, stats, t, CadetTConnection::t, t_ax_decrypt_and_validate(), and trigger_transmissions().

Referenced by GCC_handle_encrypted().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GCT_debug()

void GCT_debug ( const struct CadetTunnel t,
enum GNUNET_ErrorType  level 
)

Log all possible info about the tunnel state.

Parameters
tTunnel to debug.
levelDebug level to use.

Definition at line 3791 of file gnunet-service-cadet_tunnels.c.

3793{
3794#if ! defined(GNUNET_CULL_LOGGING)
3795 struct CadetTConnection *iter_c;
3796 int do_log;
3797
3798 do_log = GNUNET_get_log_call_status (level & (~GNUNET_ERROR_TYPE_BULK),
3799 "cadet-tun",
3800 __FILE__, __FUNCTION__, __LINE__);
3801 if (0 == do_log)
3802 return;
3803
3804 LOG2 (level,
3805 "TTT TUNNEL TOWARDS %s in estate %s tq_len: %u #cons: %u\n",
3806 GCT_2s (t),
3807 estate2s (t->estate),
3808 t->tq_len,
3809 GCT_count_any_connections (t));
3810 LOG2 (level,
3811 "TTT channels:\n");
3812 GNUNET_CONTAINER_multihashmap32_iterate (t->channels,
3813 &debug_channel,
3814 &level);
3815 LOG2 (level,
3816 "TTT connections:\n");
3817 for (iter_c = t->connection_ready_head; NULL != iter_c; iter_c = iter_c->next)
3818 GCC_debug (iter_c->cc,
3819 level);
3820 for (iter_c = t->connection_busy_head; NULL != iter_c; iter_c = iter_c->next)
3821 GCC_debug (iter_c->cc,
3822 level);
3823
3824 LOG2 (level,
3825 "TTT TUNNEL END\n");
3826#endif
3827}
GCC_debug
void GCC_debug(struct CadetConnection *cc, enum GNUNET_ErrorType level)
Log connection info.
Definition gnunet-service-cadet_connection.c:1083
debug_channel
static int debug_channel(void *cls, uint32_t key, void *value)
Call GCCH_debug() on a channel.
Definition gnunet-service-cadet_tunnels.c:3768
GCT_count_any_connections
unsigned int GCT_count_any_connections(const struct CadetTunnel *t)
Counts the number of connections created for a tunnel, including busy connections.
Definition gnunet-service-cadet_tunnels.c:678
LOG2
#define LOG2(level,...)
Definition gnunet-service-cadet_tunnels.c:3780
GNUNET_get_log_call_status
int GNUNET_get_log_call_status(int caller_level, const char *comp, const char *file, const char *function, int line)
Decides whether a particular logging call should or should not be allowed to be made.
Definition common_logging.c:500
GNUNET_ERROR_TYPE_BULK
@ GNUNET_ERROR_TYPE_BULK
Definition gnunet_common.h:426

References CadetTConnection::cc, debug_channel(), estate2s(), GCC_debug(), GCT_2s(), GCT_count_any_connections(), GNUNET_CONTAINER_multihashmap32_iterate(), GNUNET_ERROR_TYPE_BULK, GNUNET_get_log_call_status(), LOG2, CadetTConnection::next, and t.

Here is the call graph for this function: