GNUnet 0.26.2-114-g7c6b613e3
 
Loading...
Searching...
No Matches
Data Structures | Enumerations | Functions
gnunet-service-core_kx.h File Reference

code for managing the key exchange (SET_KEY, PING, PONG) with other peers More...

#include "gnunet_util_lib.h"
#include "gnunet_core_service.h"
Include dependency graph for gnunet-service-core_kx.h:
This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Data Structures

struct  InitiatorHelloPayload
 
struct  InitiatorHello
 TODO. More...
 
struct  ConfirmationAck
 The ACK. More...
 
struct  ResponderHello
 ResponderHello. More...
 
struct  ResponderHelloPayload
 
struct  InitiatorDone
 InitiatorDone. More...
 
struct  EncryptedMessage
 EncryptedMessage. More...
 
struct  Heartbeat
 KeyUpdate. More...
 

Enumerations

enum  HeartbeatFlags { GSC_HEARTBEAT_KEY_UPDATE_REQUESTED = 1 }
 Heartbeat flags. More...
 

Functions

void GSC_KX_encrypt_and_transmit (struct GSC_KeyExchangeInfo *kx, const void *payload, size_t payload_size)
 Encrypt and transmit a message with the given payload.
 
int GSC_KX_init (void)
 Initialize KX subsystem.
 
void GSC_KX_done (void)
 Shutdown KX subsystem.
 
int GSC_NEIGHBOURS_check_excess_bandwidth (const struct GSC_KeyExchangeInfo *target)
 Check if the given neighbour has excess bandwidth available.
 
unsigned int GSC_NEIGHBOURS_get_queue_length (const struct GSC_KeyExchangeInfo *target)
 Check how many messages are queued for the given neighbour.
 
void GSC_KX_handle_client_monitor_peers (struct GNUNET_MQ_Handle *mq)
 Handle GNUNET_MESSAGE_TYPE_CORE_MONITOR_PEERS request.
 

Detailed Description

code for managing the key exchange (SET_KEY, PING, PONG) with other peers

Author
Christian Grothoff

Definition in file gnunet-service-core_kx.h.

Enumeration Type Documentation

◆ HeartbeatFlags

enum HeartbeatFlags

Heartbeat flags.

Enumerator
GSC_HEARTBEAT_KEY_UPDATE_REQUESTED 

A key update is requested.

Definition at line 225 of file gnunet-service-core_kx.h.

226{
230 GSC_HEARTBEAT_KEY_UPDATE_REQUESTED = 1,
231
232};
GSC_HEARTBEAT_KEY_UPDATE_REQUESTED
@ GSC_HEARTBEAT_KEY_UPDATE_REQUESTED
A key update is requested.
Definition gnunet-service-core_kx.h:230

Function Documentation

◆ GSC_KX_encrypt_and_transmit()

void GSC_KX_encrypt_and_transmit ( struct GSC_KeyExchangeInfo kx,
const void *  payload,
size_t  payload_size 
)

Encrypt and transmit a message with the given payload.

Parameters
kxkey exchange context
payloadpayload of the message
payload_sizenumber of bytes in 'payload'

Encrypt and transmit a message with the given payload.

Parameters
kxkey exchange info
payloadthe payload
payload_sizesize of the payload

Definition at line 2754 of file gnunet-service-core_kx.c.

2757{
2758 struct GNUNET_MQ_Envelope *env;
2759 struct EncryptedMessage *encrypted_msg;
2760 unsigned char enc_key[AEAD_KEY_BYTES];
2761 unsigned char enc_nonce[AEAD_NONCE_BYTES];
2762 unsigned char seq_enc_k[crypto_stream_chacha20_ietf_KEYBYTES];
2763 uint64_t sqn;
2764 uint64_t epoch;
2765 int8_t ret;
2766
2767 encrypted_msg = NULL;
2768
2769 check_rekey (kx);
2770 sqn = kx->current_sqn;
2771 epoch = kx->current_epoch;
2772 /* We are the sender and as we are going to send,
2773 * we are using the initiator key material */
2774 derive_per_message_secrets (&kx->current_ats,
2775 sqn,
2776 enc_key,
2777 enc_nonce);
2778 kx->current_sqn++;
2779 derive_sn (&kx->current_ats,
2780 seq_enc_k,
2781 sizeof seq_enc_k);
2782 env = GNUNET_MQ_msg_extra (encrypted_msg,
2783 payload_size,
2784 GNUNET_MESSAGE_TYPE_CORE_ENCRYPTED_MESSAGE_CAKE);
2785 // only encrypt the payload for now
2786 // TODO encrypt other fields as well
2787 ret = crypto_aead_xchacha20poly1305_ietf_encrypt_detached (
2788 (unsigned char*) &encrypted_msg[1], // c - resulting ciphertext
2789 (unsigned char*) &encrypted_msg->tag, // mac - resulting mac/tag
2790 NULL, // maclen
2791 (unsigned char*) payload, // m - plain message
2792 payload_size, // mlen
2793 NULL, // ad - additional data TODO also cover the unencrypted part (epoch)
2794 0, // adlen
2795 NULL, // nsec - unused
2796 enc_nonce, // npub nonce
2797 enc_key // k - key
2798 );
2799 if (0 != ret)
2800 {
2801 GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
2802 "Something went wrong encrypting message\n");
2803 GNUNET_assert (0);
2804 }
2805 {
2806 /* compute the sequence number */
2807 unsigned char *seq_enc_nonce;
2808 uint64_t seq_nbo;
2809 uint32_t seq_enc_ctr;
2810
2811 seq_nbo = GNUNET_htonll (sqn);
2812 seq_enc_ctr = *((uint32_t*) encrypted_msg->tag);
2813 seq_enc_nonce = &encrypted_msg->tag[sizeof (uint32_t)];
2814 crypto_stream_chacha20_ietf_xor_ic (
2815 (unsigned char*) &encrypted_msg->sequence_number,
2816 (unsigned char*) &seq_nbo,
2817 sizeof seq_nbo,
2818 seq_enc_nonce,
2819 ntohl (seq_enc_ctr),
2820 seq_enc_k);
2821#if DEBUG_KX
2822 GNUNET_print_bytes (seq_enc_k,
2823 sizeof seq_enc_k,
2824 8,
2825 GNUNET_NO);
2826 GNUNET_print_bytes ((char*) &seq_enc_ctr,
2827 sizeof seq_enc_ctr,
2828 8,
2829 GNUNET_NO);
2830#endif
2831 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2832 "Sending encrypted message with E(SQN=%" PRIu64 ")=%" PRIu64
2833 "\n",
2834 sqn,
2835 encrypted_msg->sequence_number);
2836 }
2837 encrypted_msg->epoch = GNUNET_htonll (epoch);
2838
2839 // TODO actually copy payload
2840 GNUNET_MQ_send (kx->mq, env);
2841}
env
struct GNUNET_MQ_Envelope * env
Definition 005.c:1
ret
static int ret
Final status code.
Definition gnunet-arm.c:93
AEAD_NONCE_BYTES
#define AEAD_NONCE_BYTES
libsodium has very long symbol names
Definition gnunet-service-core_kx.c:66
check_rekey
static void check_rekey(struct GSC_KeyExchangeInfo *kx)
Definition gnunet-service-core_kx.c:2719
derive_per_message_secrets
static void derive_per_message_secrets(const struct GNUNET_ShortHashCode *ts, uint64_t seq, unsigned char key[crypto_aead_xchacha20poly1305_ietf_KEYBYTES], unsigned char nonce[crypto_aead_xchacha20poly1305_ietf_NPUBBYTES])
key = HKDF-Expand [I,R][A,H]TS, "key", 32) nonce = HKDF-Expand ([I,R][A,H]TS, "iv",...
Definition gnunet-service-core_kx.c:984
AEAD_KEY_BYTES
#define AEAD_KEY_BYTES
libsodium has very long symbol names
Definition gnunet-service-core_kx.c:61
derive_sn
static void derive_sn(const struct GNUNET_ShortHashCode *secret, unsigned char *sn, size_t sn_len)
Definition gnunet-service-core_kx.c:814
payload
static unsigned long long payload
How much data are we currently storing in the database?
Definition gnunet-service-datastore.c:183
GNUNET_log
#define GNUNET_log(kind,...)
Definition gnunet_common.h:551
GNUNET_htonll
uint64_t GNUNET_htonll(uint64_t n)
Convert unsigned 64-bit integer to network byte order.
Definition common_endian.c:37
GNUNET_NO
@ GNUNET_NO
Definition gnunet_common.h:113
GNUNET_print_bytes
void GNUNET_print_bytes(const void *buf, size_t buf_len, int fold, int in_be)
Print a byte string in hexadecimal ascii notation.
Definition common_logging.c:1619
GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition gnunet_common.h:960
GNUNET_ERROR_TYPE_ERROR
@ GNUNET_ERROR_TYPE_ERROR
Definition gnunet_common.h:417
GNUNET_ERROR_TYPE_DEBUG
@ GNUNET_ERROR_TYPE_DEBUG
Definition gnunet_common.h:424
GNUNET_MQ_send
void GNUNET_MQ_send(struct GNUNET_MQ_Handle *mq, struct GNUNET_MQ_Envelope *ev)
Send a message with the given message queue.
Definition mq.c:305
GNUNET_MQ_msg_extra
#define GNUNET_MQ_msg_extra(mvar, esize, type)
Allocate an envelope, with extra space allocated after the space needed by the message struct.
Definition gnunet_mq_lib.h:61
GNUNET_MESSAGE_TYPE_CORE_ENCRYPTED_MESSAGE_CAKE
#define GNUNET_MESSAGE_TYPE_CORE_ENCRYPTED_MESSAGE_CAKE
Encrypted message.
Definition gnunet_protocols.h:418
GNUNET_MQ_Envelope
Definition mq.c:34
GSC_KeyExchangeInfo::current_sqn
uint64_t current_sqn
Our current sequence number.
Definition gnunet-service-core_kx.c:333
GSC_KeyExchangeInfo::mq
struct GNUNET_MQ_Handle * mq
Message queue for sending messages to peer.
Definition gnunet-service-core_kx.c:222
GSC_KeyExchangeInfo::current_epoch
uint64_t current_epoch
Our currently used epoch for sending.
Definition gnunet-service-core_kx.c:317
GSC_KeyExchangeInfo::current_ats
struct GNUNET_ShortHashCode current_ats
*ATS - our current application traffic secret by epoch
Definition gnunet-service-core_kx.c:307

References AEAD_KEY_BYTES, AEAD_NONCE_BYTES, check_rekey(), GSC_KeyExchangeInfo::current_ats, GSC_KeyExchangeInfo::current_epoch, GSC_KeyExchangeInfo::current_sqn, derive_per_message_secrets(), derive_sn(), env, EncryptedMessage::epoch, GNUNET_assert, GNUNET_ERROR_TYPE_DEBUG, GNUNET_ERROR_TYPE_ERROR, GNUNET_htonll(), GNUNET_log, GNUNET_MESSAGE_TYPE_CORE_ENCRYPTED_MESSAGE_CAKE, GNUNET_MQ_msg_extra, GNUNET_MQ_send(), GNUNET_NO, GNUNET_print_bytes(), GSC_KeyExchangeInfo::mq, payload, ret, EncryptedMessage::sequence_number, and EncryptedMessage::tag.

Referenced by handle_heartbeat(), handle_initiator_done(), send_heartbeat(), and try_transmission().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GSC_KX_init()

int GSC_KX_init ( void  )

Initialize KX subsystem.

Returns
GNUNET_OK on success, GNUNET_SYSERR on failure

Definition at line 2915 of file gnunet-service-core_kx.c.

2916{
2917 GSC_pils = GNUNET_PILS_connect (GSC_cfg,
2918 &pid_change_cb,
2919 NULL);
2920 if (NULL == GSC_pils)
2921 {
2922 GSC_KX_done ();
2923 return GNUNET_SYSERR;
2924 }
2925
2926 return GNUNET_OK;
2927}
GSC_cfg
const struct GNUNET_CONFIGURATION_Handle * GSC_cfg
Our configuration.
Definition gnunet-service-core.c:120
GSC_pils
struct GNUNET_PILS_Handle * GSC_pils
For peer identity access.
Definition gnunet-service-core.c:135
GSC_KX_done
void GSC_KX_done()
Shutdown KX subsystem.
Definition gnunet-service-core_kx.c:2934
pid_change_cb
void pid_change_cb(void *cls, const struct GNUNET_HELLO_Parser *parser, const struct GNUNET_HashCode *hash)
Definition gnunet-service-core_kx.c:2898
GNUNET_PILS_connect
struct GNUNET_PILS_Handle * GNUNET_PILS_connect(const struct GNUNET_CONFIGURATION_Handle *cfg, GNUNET_PILS_PidChangeCallback pid_change_cb, void *cls)
Connect to the PILS service.
Definition pils_api.c:465
GNUNET_OK
@ GNUNET_OK
Definition gnunet_common.h:114
GNUNET_SYSERR
@ GNUNET_SYSERR
Definition gnunet_common.h:112

References GNUNET_OK, GNUNET_PILS_connect(), GNUNET_SYSERR, GSC_cfg, GSC_KX_done(), GSC_pils, and pid_change_cb().

Referenced by run().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GSC_KX_done()

void GSC_KX_done ( void  )

Shutdown KX subsystem.

Definition at line 2934 of file gnunet-service-core_kx.c.

2935{
2936 struct PilsRequest *pr;
2937 while (NULL != (pr = pils_requests_head))
2938 {
2939 GNUNET_CONTAINER_DLL_remove (pils_requests_head,
2940 pils_requests_tail,
2941 pr);
2942 if (NULL != pr->op)
2943 GNUNET_PILS_cancel (pr->op);
2944 GNUNET_free (pr);
2945 }
2946 if (NULL != GSC_pils)
2947 {
2948 GNUNET_PILS_disconnect (GSC_pils);
2949 GSC_pils = NULL;
2950 }
2951 if (NULL != transport)
2952 {
2953 GNUNET_TRANSPORT_core_disconnect (transport);
2954 transport = NULL;
2955 }
2956 if (NULL != rekey_task)
2957 {
2958 GNUNET_SCHEDULER_cancel (rekey_task);
2959 rekey_task = NULL;
2960 }
2961 if (NULL != nc)
2962 {
2963 GNUNET_notification_context_destroy (nc);
2964 nc = NULL;
2965 }
2966}
nc
static struct GNUNET_NotificationContext * nc
Notification context for broadcasting to monitors.
Definition gnunet-service-core_kx.c:436
pils_requests_head
static struct PilsRequest * pils_requests_head
PILS Operation DLL.
Definition gnunet-service-core_kx.c:404
pils_requests_tail
static struct PilsRequest * pils_requests_tail
PILS Operation DLL.
Definition gnunet-service-core_kx.c:409
rekey_task
static struct GNUNET_SCHEDULER_Task * rekey_task
Task scheduled for periodic re-generation (and thus rekeying) of our ephemeral key.
Definition gnunet-service-core_kx.c:431
transport
static struct GNUNET_TRANSPORT_CoreHandle * transport
Transport service.
Definition gnunet-service-core_kx.c:415
GNUNET_PILS_disconnect
void GNUNET_PILS_disconnect(struct GNUNET_PILS_Handle *handle)
Disconnect from the PILS service.
Definition pils_api.c:488
GNUNET_PILS_cancel
void GNUNET_PILS_cancel(struct GNUNET_PILS_Operation *op)
Cancel request.
Definition pils_api.c:623
GNUNET_TRANSPORT_core_disconnect
void GNUNET_TRANSPORT_core_disconnect(struct GNUNET_TRANSPORT_CoreHandle *handle)
Disconnect from the transport service.
GNUNET_CONTAINER_DLL_remove
#define GNUNET_CONTAINER_DLL_remove(head, tail, element)
Remove an element from a DLL.
Definition gnunet_container_lib.h:1920
GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition gnunet_common.h:1415
GNUNET_notification_context_destroy
void GNUNET_notification_context_destroy(struct GNUNET_NotificationContext *nc)
Destroy the context, force disconnect for all subscribers.
Definition nc.c:138
GNUNET_SCHEDULER_cancel
void * GNUNET_SCHEDULER_cancel(struct GNUNET_SCHEDULER_Task *task)
Cancel the task with the specified identifier.
Definition scheduler.c:986
PilsRequest::op
struct GNUNET_PILS_Operation * op
The pils operation.
Definition gnunet-service-cadet_hello.c:58

References GNUNET_CONTAINER_DLL_remove, GNUNET_free, GNUNET_notification_context_destroy(), GNUNET_PILS_cancel(), GNUNET_PILS_disconnect(), GNUNET_SCHEDULER_cancel(), GNUNET_TRANSPORT_core_disconnect(), GSC_pils, nc, PilsRequest::op, pils_requests_head, pils_requests_tail, rekey_task, and transport.

Referenced by GSC_KX_init(), GSC_KX_start(), and shutdown_task().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GSC_NEIGHBOURS_check_excess_bandwidth()

int GSC_NEIGHBOURS_check_excess_bandwidth ( const struct GSC_KeyExchangeInfo target)

Check if the given neighbour has excess bandwidth available.

Parameters
targetneighbour to check
Returns
GNUNET_YES if excess bandwidth is available, GNUNET_NO if not

Definition at line 2983 of file gnunet-service-core_kx.c.

2984{
2985 return kxinfo->has_excess_bandwidth;
2986}

References GSC_KeyExchangeInfo::has_excess_bandwidth.

Referenced by try_transmission().

Here is the caller graph for this function:

◆ GSC_NEIGHBOURS_get_queue_length()

unsigned int GSC_NEIGHBOURS_get_queue_length ( const struct GSC_KeyExchangeInfo kxinfo)

Check how many messages are queued for the given neighbour.

Parameters
targetneighbour to check
Returns
number of items in the message queue
Parameters
kxinfodata about neighbour to check
Returns
number of items in the message queue

Definition at line 2976 of file gnunet-service-core_kx.c.

2977{
2978 return GNUNET_MQ_get_length (kxinfo->mq);
2979}
GNUNET_MQ_get_length
unsigned int GNUNET_MQ_get_length(struct GNUNET_MQ_Handle *mq)
Obtain the current length of the message queue.
Definition mq.c:293

References GNUNET_MQ_get_length(), and GSC_KeyExchangeInfo::mq.

Referenced by try_transmission().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ GSC_KX_handle_client_monitor_peers()

void GSC_KX_handle_client_monitor_peers ( struct GNUNET_MQ_Handle mq)

Handle GNUNET_MESSAGE_TYPE_CORE_MONITOR_PEERS request.

For this request type, the client does not have to have transmitted an INIT request. All current peers are returned, regardless of which message types they accept.

Parameters
mqmessage queue to add for monitoring

Definition at line 2998 of file gnunet-service-core_kx.c.

2999{
3000 struct GNUNET_MQ_Envelope *env;
3001 struct MonitorNotifyMessage *done_msg;
3002 struct GSC_KeyExchangeInfo *kx;
3003
3004 GNUNET_notification_context_add (nc, mq);
3005 for (kx = kx_head; NULL != kx; kx = kx->next)
3006 {
3007 struct GNUNET_MQ_Envelope *env_notify;
3008 struct MonitorNotifyMessage *msg;
3009
3010 env_notify = GNUNET_MQ_msg (msg, GNUNET_MESSAGE_TYPE_CORE_MONITOR_NOTIFY);
3011 msg->state = htonl ((uint32_t) kx->status);
3012 msg->peer = kx->peer;
3013 msg->timeout = GNUNET_TIME_absolute_hton (kx->timeout);
3014 GNUNET_MQ_send (mq, env_notify);
3015 }
3016 env = GNUNET_MQ_msg (done_msg, GNUNET_MESSAGE_TYPE_CORE_MONITOR_NOTIFY);
3017 done_msg->state = htonl ((uint32_t) GNUNET_CORE_KX_ITERATION_FINISHED);
3018 done_msg->timeout = GNUNET_TIME_absolute_hton (GNUNET_TIME_UNIT_FOREVER_ABS);
3019 GNUNET_MQ_send (mq, env);
3020}
msg
struct GNUNET_MessageHeader * msg
Definition 005.c:2
kx_head
static struct GSC_KeyExchangeInfo * kx_head
DLL head.
Definition gnunet-service-core_kx.c:420
GNUNET_CORE_KX_ITERATION_FINISHED
@ GNUNET_CORE_KX_ITERATION_FINISHED
This is not a state in a peer's state machine, but a special value used with the GNUNET_CORE_MonitorC...
Definition gnunet_core_service.h:648
GNUNET_MQ_msg
#define GNUNET_MQ_msg(mvar, type)
Allocate a GNUNET_MQ_Envelope.
Definition gnunet_mq_lib.h:76
GNUNET_notification_context_add
void GNUNET_notification_context_add(struct GNUNET_NotificationContext *nc, struct GNUNET_MQ_Handle *mq)
Add a subscriber to the notification context.
Definition nc.c:161
GNUNET_MESSAGE_TYPE_CORE_MONITOR_NOTIFY
#define GNUNET_MESSAGE_TYPE_CORE_MONITOR_NOTIFY
Reply for monitor by CORE service.
Definition gnunet_protocols.h:392
GNUNET_TIME_absolute_hton
struct GNUNET_TIME_AbsoluteNBO GNUNET_TIME_absolute_hton(struct GNUNET_TIME_Absolute a)
Convert absolute time to network byte order.
Definition time.c:636
GNUNET_TIME_UNIT_FOREVER_ABS
#define GNUNET_TIME_UNIT_FOREVER_ABS
Constant used to specify "forever".
Definition gnunet_time_lib.h:203
mq
static struct GNUNET_MQ_Handle * mq
Our connection to the resolver service, created on-demand, but then persists until error or shutdown.
Definition resolver_api.c:64
GSC_KeyExchangeInfo
Information about the status of a key exchange with another peer.
Definition gnunet-service-core_kx.c:203
GSC_KeyExchangeInfo::next
struct GSC_KeyExchangeInfo * next
DLL.
Definition gnunet-service-core_kx.c:207
GSC_KeyExchangeInfo::peer
struct GNUNET_PeerIdentity peer
Identity of the peer.
Definition gnunet-service-core_kx.c:217
GSC_KeyExchangeInfo::timeout
struct GNUNET_TIME_Absolute timeout
When should the session time out (if there are no Acks to HEARTBEATs)?
Definition gnunet-service-core_kx.c:338
GSC_KeyExchangeInfo::status
enum GNUNET_CORE_KxState status
What is our connection state?
Definition gnunet-service-core_kx.c:370
MonitorNotifyMessage
Message sent by the service to monitor clients to notify them about a peer changing status.
Definition core.h:313
MonitorNotifyMessage::state
uint32_t state
New peer state, an enum GNUNET_CORE_KxState in NBO.
Definition core.h:322
MonitorNotifyMessage::timeout
struct GNUNET_TIME_AbsoluteNBO timeout
How long will we stay in this state (if nothing else happens)?
Definition core.h:332

References env, GNUNET_CORE_KX_ITERATION_FINISHED, GNUNET_MESSAGE_TYPE_CORE_MONITOR_NOTIFY, GNUNET_MQ_msg, GNUNET_MQ_send(), GNUNET_notification_context_add(), GNUNET_TIME_absolute_hton(), GNUNET_TIME_UNIT_FOREVER_ABS, kx_head, mq, msg, nc, GSC_KeyExchangeInfo::next, GSC_KeyExchangeInfo::peer, MonitorNotifyMessage::state, GSC_KeyExchangeInfo::status, MonitorNotifyMessage::timeout, and GSC_KeyExchangeInfo::timeout.

Referenced by handle_client_monitor_peers().

Here is the call graph for this function:
Here is the caller graph for this function: