2003-10-08 04:04:08 +02:00
|
|
|
/* Copyright 2001,2002,2003 Roger Dingledine, Matej Pfajfar. */
|
Implemented link padding and receiver token buckets
Each socket reads at most 'bandwidth' bytes per second sustained, but
can handle bursts of up to 10*bandwidth bytes.
Cells are now sent out at evenly-spaced intervals, with padding sent
out otherwise. Set Linkpadding=0 in the rc file to send cells as soon
as they're available (and to never send padding cells).
Added license/copyrights statements at the top of most files.
router->min and router->max have been merged into a single 'bandwidth'
value. We should make the routerinfo_t reflect this (want to do that,
Mat?)
As the bandwidth increases, and we want to stop sleeping more and more
frequently to send a single cell, cpu usage goes up. At 128kB/s we're
pretty much calling poll with a timeout of 1ms or even 0ms. The current
code takes a timeout of 0-9ms and makes it 10ms. prepare_for_poll()
handles everything that should have happened in the past, so as long as
our buffers don't get too full in that 10ms, we're ok.
Speaking of too full, if you run three servers at 100kB/s with -l debug,
it spends too much time printing debugging messages to be able to keep
up with the cells. The outbuf ultimately fills up and it kills that
connection. If you run with -l err, it works fine up through 500kB/s and
probably beyond. Down the road we'll want to teach it to recognize when
an outbuf is getting full, and back off.
svn:r50
2002-07-16 03:12:15 +02:00
|
|
|
/* See LICENSE for licensing information */
|
|
|
|
/* $Id$ */
|
2002-06-27 00:45:49 +02:00
|
|
|
|
|
|
|
#include "or.h"
|
|
|
|
|
2003-04-16 08:18:31 +02:00
|
|
|
extern or_options_t options; /* command-line and config-file options */
|
|
|
|
|
2004-03-09 23:01:17 +01:00
|
|
|
static int relay_crypt(circuit_t *circ, cell_t *cell, int cell_direction,
|
2003-12-19 06:09:51 +01:00
|
|
|
crypt_path_t **layer_hint, char *recognized);
|
|
|
|
static connection_t *relay_lookup_conn(circuit_t *circ, cell_t *cell, int cell_direction);
|
2003-09-16 07:41:49 +02:00
|
|
|
static void circuit_free_cpath_node(crypt_path_t *victim);
|
2003-12-19 20:55:02 +01:00
|
|
|
static uint16_t get_unique_circ_id_by_conn(connection_t *conn, int circ_id_type);
|
2004-03-20 05:59:29 +01:00
|
|
|
static void circuit_rep_hist_note_result(circuit_t *circ);
|
2003-09-16 07:41:49 +02:00
|
|
|
|
2003-10-02 22:00:38 +02:00
|
|
|
unsigned long stats_n_relay_cells_relayed = 0;
|
|
|
|
unsigned long stats_n_relay_cells_delivered = 0;
|
|
|
|
|
2002-06-27 00:45:49 +02:00
|
|
|
/********* START VARIABLES **********/
|
|
|
|
|
2002-07-05 08:27:23 +02:00
|
|
|
static circuit_t *global_circuitlist=NULL;
|
2002-09-22 00:41:48 +02:00
|
|
|
char *circuit_state_to_string[] = {
|
2003-11-17 02:23:15 +01:00
|
|
|
"doing handshakes", /* 0 */
|
|
|
|
"processing the onion", /* 1 */
|
|
|
|
"connecting to firsthop", /* 2 */
|
|
|
|
"open" /* 3 */
|
2002-09-22 00:41:48 +02:00
|
|
|
};
|
|
|
|
|
2002-06-27 00:45:49 +02:00
|
|
|
/********* END VARIABLES ************/
|
|
|
|
|
|
|
|
void circuit_add(circuit_t *circ) {
|
|
|
|
if(!global_circuitlist) { /* first one */
|
|
|
|
global_circuitlist = circ;
|
|
|
|
circ->next = NULL;
|
|
|
|
} else {
|
|
|
|
circ->next = global_circuitlist;
|
|
|
|
global_circuitlist = circ;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
void circuit_remove(circuit_t *circ) {
|
|
|
|
circuit_t *tmpcirc;
|
|
|
|
|
2002-07-05 08:27:23 +02:00
|
|
|
assert(circ && global_circuitlist);
|
2002-06-27 00:45:49 +02:00
|
|
|
|
|
|
|
if(global_circuitlist == circ) {
|
|
|
|
global_circuitlist = global_circuitlist->next;
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
for(tmpcirc = global_circuitlist;tmpcirc->next;tmpcirc = tmpcirc->next) {
|
|
|
|
if(tmpcirc->next == circ) {
|
|
|
|
tmpcirc->next = circ->next;
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2004-03-02 18:48:17 +01:00
|
|
|
void circuit_close_all_marked()
|
|
|
|
{
|
|
|
|
circuit_t *tmp,*m;
|
2004-03-03 03:24:17 +01:00
|
|
|
|
2004-03-02 18:48:17 +01:00
|
|
|
while (global_circuitlist && global_circuitlist->marked_for_close) {
|
2004-03-03 03:24:17 +01:00
|
|
|
|
2004-03-02 18:48:17 +01:00
|
|
|
tmp = global_circuitlist->next;
|
|
|
|
circuit_free(global_circuitlist);
|
|
|
|
global_circuitlist = tmp;
|
|
|
|
}
|
|
|
|
|
2004-03-03 02:37:54 +01:00
|
|
|
tmp = global_circuitlist;
|
|
|
|
while (tmp && tmp->next) {
|
|
|
|
if (tmp->next->marked_for_close) {
|
2004-03-02 18:48:17 +01:00
|
|
|
m = tmp->next->next;
|
|
|
|
circuit_free(tmp->next);
|
|
|
|
tmp->next = m;
|
2004-03-03 02:37:54 +01:00
|
|
|
/* Need to check new tmp->next; don't advance tmp. */
|
|
|
|
} else {
|
|
|
|
/* Advance tmp. */
|
|
|
|
tmp = tmp->next;
|
2004-03-02 18:48:17 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2003-12-19 20:55:02 +01:00
|
|
|
circuit_t *circuit_new(uint16_t p_circ_id, connection_t *p_conn) {
|
2003-12-17 22:09:31 +01:00
|
|
|
circuit_t *circ;
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-11-18 09:20:19 +01:00
|
|
|
circ = tor_malloc_zero(sizeof(circuit_t));
|
2004-02-25 08:31:46 +01:00
|
|
|
circ->magic = CIRCUIT_MAGIC;
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-10-04 05:29:09 +02:00
|
|
|
circ->timestamp_created = time(NULL);
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-11-11 04:01:48 +01:00
|
|
|
circ->p_circ_id = p_circ_id;
|
2002-06-27 00:45:49 +02:00
|
|
|
circ->p_conn = p_conn;
|
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
circ->state = CIRCUIT_STATE_ONIONSKIN_PENDING;
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-11-11 04:01:48 +01:00
|
|
|
/* CircIDs */
|
|
|
|
circ->p_circ_id = p_circ_id;
|
|
|
|
/* circ->n_circ_id remains 0 because we haven't identified the next hop yet */
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-05-20 08:41:23 +02:00
|
|
|
circ->package_window = CIRCWINDOW_START;
|
|
|
|
circ->deliver_window = CIRCWINDOW_START;
|
2002-07-18 08:37:58 +02:00
|
|
|
|
2003-12-28 05:46:09 +01:00
|
|
|
circ->next_stream_id = crypto_pseudo_rand_int(1<<16);
|
|
|
|
|
2002-06-27 00:45:49 +02:00
|
|
|
circuit_add(circ);
|
|
|
|
|
|
|
|
return circ;
|
|
|
|
}
|
|
|
|
|
|
|
|
void circuit_free(circuit_t *circ) {
|
2003-11-14 21:45:47 +01:00
|
|
|
assert(circ);
|
2004-02-25 08:31:46 +01:00
|
|
|
assert(circ->magic == CIRCUIT_MAGIC);
|
2002-08-22 09:30:03 +02:00
|
|
|
if (circ->n_crypto)
|
|
|
|
crypto_free_cipher_env(circ->n_crypto);
|
|
|
|
if (circ->p_crypto)
|
|
|
|
crypto_free_cipher_env(circ->p_crypto);
|
2003-12-17 06:58:30 +01:00
|
|
|
if (circ->n_digest)
|
|
|
|
crypto_free_digest_env(circ->n_digest);
|
|
|
|
if (circ->p_digest)
|
|
|
|
crypto_free_digest_env(circ->p_digest);
|
2003-11-16 18:00:02 +01:00
|
|
|
if(circ->build_state)
|
|
|
|
tor_free(circ->build_state->chosen_exit);
|
2003-11-14 21:45:47 +01:00
|
|
|
tor_free(circ->build_state);
|
2003-05-02 00:55:51 +02:00
|
|
|
circuit_free_cpath(circ->cpath);
|
2004-02-25 08:31:46 +01:00
|
|
|
memset(circ, 0xAA, sizeof(circuit_t)); /* poison memory */
|
2002-06-27 00:45:49 +02:00
|
|
|
free(circ);
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
}
|
|
|
|
|
2003-11-12 03:32:20 +01:00
|
|
|
void circuit_free_cpath(crypt_path_t *cpath) {
|
2003-05-02 00:55:51 +02:00
|
|
|
crypt_path_t *victim, *head=cpath;
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
|
2003-05-02 00:55:51 +02:00
|
|
|
if(!cpath)
|
|
|
|
return;
|
|
|
|
|
|
|
|
/* it's a doubly linked list, so we have to notice when we've
|
|
|
|
* gone through it once. */
|
|
|
|
while(cpath->next && cpath->next != head) {
|
|
|
|
victim = cpath;
|
|
|
|
cpath = victim->next;
|
|
|
|
circuit_free_cpath_node(victim);
|
|
|
|
}
|
|
|
|
|
|
|
|
circuit_free_cpath_node(cpath);
|
|
|
|
}
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-09-16 07:41:49 +02:00
|
|
|
static void circuit_free_cpath_node(crypt_path_t *victim) {
|
2003-05-02 00:55:51 +02:00
|
|
|
if(victim->f_crypto)
|
|
|
|
crypto_free_cipher_env(victim->f_crypto);
|
|
|
|
if(victim->b_crypto)
|
|
|
|
crypto_free_cipher_env(victim->b_crypto);
|
2003-12-16 09:21:58 +01:00
|
|
|
if(victim->f_digest)
|
|
|
|
crypto_free_digest_env(victim->f_digest);
|
|
|
|
if(victim->b_digest)
|
|
|
|
crypto_free_digest_env(victim->b_digest);
|
2003-05-06 01:24:46 +02:00
|
|
|
if(victim->handshake_state)
|
|
|
|
crypto_dh_free(victim->handshake_state);
|
2003-05-02 00:55:51 +02:00
|
|
|
free(victim);
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
|
2003-11-11 04:01:48 +01:00
|
|
|
/* return 0 if can't get a unique circ_id. */
|
2003-12-19 20:55:02 +01:00
|
|
|
static uint16_t get_unique_circ_id_by_conn(connection_t *conn, int circ_id_type) {
|
|
|
|
uint16_t test_circ_id;
|
2003-12-16 21:45:10 +01:00
|
|
|
int attempts=0;
|
2003-09-16 22:13:43 +02:00
|
|
|
uint16_t high_bit;
|
2003-09-26 12:03:50 +02:00
|
|
|
|
2003-12-16 21:45:10 +01:00
|
|
|
assert(conn && conn->type == CONN_TYPE_OR);
|
2003-11-11 04:01:48 +01:00
|
|
|
high_bit = (circ_id_type == CIRC_ID_TYPE_HIGHER) ? 1<<15 : 0;
|
2003-09-16 19:17:39 +02:00
|
|
|
do {
|
2003-12-16 21:45:10 +01:00
|
|
|
/* Sequentially iterate over test_circ_id=1...1<<15-1 until we find a
|
2003-11-11 04:01:48 +01:00
|
|
|
* circID such that (high_bit|test_circ_id) is not already used. */
|
|
|
|
test_circ_id = conn->next_circ_id++;
|
|
|
|
if (test_circ_id == 0 || test_circ_id >= 1<<15) {
|
|
|
|
test_circ_id = 1;
|
|
|
|
conn->next_circ_id = 2;
|
2003-09-16 22:13:43 +02:00
|
|
|
}
|
2003-12-16 21:45:10 +01:00
|
|
|
if(++attempts > 1<<15) {
|
|
|
|
/* Make sure we don't loop forever if all circ_id's are used. This
|
|
|
|
* matters because it's an external DoS vulnerability.
|
|
|
|
*/
|
|
|
|
log_fn(LOG_WARN,"No unused circ IDs. Failing.");
|
|
|
|
return 0;
|
|
|
|
}
|
2003-11-11 04:01:48 +01:00
|
|
|
test_circ_id |= high_bit;
|
|
|
|
} while(circuit_get_by_circ_id_conn(test_circ_id, conn));
|
|
|
|
return test_circ_id;
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
|
2003-12-19 20:55:02 +01:00
|
|
|
circuit_t *circuit_get_by_circ_id_conn(uint16_t circ_id, connection_t *conn) {
|
2002-06-27 00:45:49 +02:00
|
|
|
circuit_t *circ;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_t *tmpconn;
|
2002-06-27 00:45:49 +02:00
|
|
|
|
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2004-03-02 18:48:17 +01:00
|
|
|
if (circ->marked_for_close)
|
|
|
|
continue;
|
|
|
|
|
2003-11-11 04:01:48 +01:00
|
|
|
if(circ->p_circ_id == circ_id) {
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->p_conn == conn)
|
|
|
|
return circ;
|
|
|
|
for(tmpconn = circ->p_streams; tmpconn; tmpconn = tmpconn->next_stream) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
if(tmpconn == conn)
|
|
|
|
return circ;
|
|
|
|
}
|
|
|
|
}
|
2003-11-11 04:01:48 +01:00
|
|
|
if(circ->n_circ_id == circ_id) {
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->n_conn == conn)
|
|
|
|
return circ;
|
|
|
|
for(tmpconn = circ->n_streams; tmpconn; tmpconn = tmpconn->next_stream) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
if(tmpconn == conn)
|
|
|
|
return circ;
|
|
|
|
}
|
|
|
|
}
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
circuit_t *circuit_get_by_conn(connection_t *conn) {
|
|
|
|
circuit_t *circ;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_t *tmpconn;
|
2002-06-27 00:45:49 +02:00
|
|
|
|
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2004-03-02 18:48:17 +01:00
|
|
|
if (circ->marked_for_close)
|
|
|
|
continue;
|
|
|
|
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->p_conn == conn)
|
|
|
|
return circ;
|
|
|
|
if(circ->n_conn == conn)
|
|
|
|
return circ;
|
|
|
|
for(tmpconn = circ->p_streams; tmpconn; tmpconn=tmpconn->next_stream)
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
if(tmpconn == conn)
|
|
|
|
return circ;
|
2003-05-28 01:39:04 +02:00
|
|
|
for(tmpconn = circ->n_streams; tmpconn; tmpconn=tmpconn->next_stream)
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
if(tmpconn == conn)
|
|
|
|
return circ;
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
2003-11-16 22:49:52 +01:00
|
|
|
/* Find the newest circ that conn can use, preferably one which is
|
2003-12-16 23:56:50 +01:00
|
|
|
* dirty. Circ must not be too old.
|
2003-11-17 01:57:56 +01:00
|
|
|
* If !conn, return newest.
|
|
|
|
*
|
|
|
|
* If must_be_open, ignore circs not in CIRCUIT_STATE_OPEN.
|
2003-11-16 22:49:52 +01:00
|
|
|
*/
|
2003-11-17 01:57:56 +01:00
|
|
|
circuit_t *circuit_get_newest(connection_t *conn, int must_be_open) {
|
2003-11-16 22:49:52 +01:00
|
|
|
circuit_t *circ, *newest=NULL, *leastdirty=NULL;
|
2003-11-17 01:57:56 +01:00
|
|
|
routerinfo_t *exitrouter;
|
2003-02-06 09:00:49 +01:00
|
|
|
|
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2003-11-17 01:57:56 +01:00
|
|
|
if(!circ->cpath)
|
|
|
|
continue; /* this circ doesn't start at us */
|
|
|
|
if(must_be_open && (circ->state != CIRCUIT_STATE_OPEN || !circ->n_conn))
|
|
|
|
continue; /* ignore non-open circs */
|
2004-03-02 18:48:17 +01:00
|
|
|
if (circ->marked_for_close)
|
|
|
|
continue;
|
2003-11-17 01:57:56 +01:00
|
|
|
if(conn) {
|
|
|
|
if(circ->state == CIRCUIT_STATE_OPEN && circ->n_conn) /* open */
|
|
|
|
exitrouter = router_get_by_addr_port(circ->cpath->prev->addr, circ->cpath->prev->port);
|
|
|
|
else /* not open */
|
|
|
|
exitrouter = router_get_by_nickname(circ->build_state->chosen_exit);
|
2004-02-17 09:29:22 +01:00
|
|
|
if(!exitrouter || connection_ap_can_use_exit(conn, exitrouter) == ADDR_POLICY_REJECTED) {
|
2003-11-17 01:57:56 +01:00
|
|
|
/* can't exit from this router */
|
|
|
|
continue;
|
2003-11-16 22:49:52 +01:00
|
|
|
}
|
|
|
|
}
|
2003-11-17 01:57:56 +01:00
|
|
|
if(!newest || newest->timestamp_created < circ->timestamp_created) {
|
|
|
|
newest = circ;
|
|
|
|
}
|
|
|
|
if(conn && circ->timestamp_dirty &&
|
|
|
|
(!leastdirty || leastdirty->timestamp_dirty < circ->timestamp_dirty)) {
|
|
|
|
leastdirty = circ;
|
|
|
|
}
|
2003-11-16 22:49:52 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
if(leastdirty &&
|
|
|
|
leastdirty->timestamp_dirty+options.NewCircuitPeriod > time(NULL)) {
|
2003-11-19 14:12:43 +01:00
|
|
|
/* log_fn(LOG_DEBUG,"Choosing in-use circuit %s:%d:%d.",
|
|
|
|
leastdirty->n_conn->address, leastdirty->n_port, leastdirty->n_circ_id); */
|
2003-11-16 22:49:52 +01:00
|
|
|
return leastdirty;
|
|
|
|
}
|
|
|
|
if(newest) {
|
2003-11-19 14:12:43 +01:00
|
|
|
/* log_fn(LOG_DEBUG,"Choosing circuit %s:%d:%d.",
|
|
|
|
newest->n_conn->address, newest->n_port, newest->n_circ_id); */
|
2003-11-16 22:49:52 +01:00
|
|
|
return newest;
|
2003-02-06 09:00:49 +01:00
|
|
|
}
|
2003-11-16 22:49:52 +01:00
|
|
|
return NULL;
|
2003-02-06 09:00:49 +01:00
|
|
|
}
|
|
|
|
|
2004-01-30 20:31:39 +01:00
|
|
|
#define MIN_SECONDS_BEFORE_EXPIRING_CIRC 10
|
2003-11-18 08:48:00 +01:00
|
|
|
/* circuits that were born at the end of their second might be expired
|
2004-01-30 20:31:39 +01:00
|
|
|
* after 10.1 seconds; circuits born at the beginning might be expired
|
|
|
|
* after closer to 11 seconds.
|
2003-11-18 08:48:00 +01:00
|
|
|
*/
|
|
|
|
|
|
|
|
/* close all circuits that start at us, aren't open, and were born
|
|
|
|
* at least MIN_SECONDS_BEFORE_EXPIRING_CIRC seconds ago */
|
|
|
|
void circuit_expire_building(void) {
|
|
|
|
int now = time(NULL);
|
2003-11-18 10:53:03 +01:00
|
|
|
circuit_t *victim, *circ = global_circuitlist;
|
2003-11-18 08:48:00 +01:00
|
|
|
|
2003-11-18 10:53:03 +01:00
|
|
|
while(circ) {
|
|
|
|
victim = circ;
|
|
|
|
circ = circ->next;
|
|
|
|
if(victim->cpath &&
|
|
|
|
victim->state != CIRCUIT_STATE_OPEN &&
|
2004-03-02 18:48:17 +01:00
|
|
|
victim->timestamp_created + MIN_SECONDS_BEFORE_EXPIRING_CIRC+1 < now &&
|
|
|
|
!victim->marked_for_close) {
|
2003-11-18 10:53:03 +01:00
|
|
|
if(victim->n_conn)
|
2003-11-18 08:48:00 +01:00
|
|
|
log_fn(LOG_INFO,"Abandoning circ %s:%d:%d (state %d:%s)",
|
2003-11-18 10:53:03 +01:00
|
|
|
victim->n_conn->address, victim->n_port, victim->n_circ_id,
|
|
|
|
victim->state, circuit_state_to_string[victim->state]);
|
2003-11-18 08:48:00 +01:00
|
|
|
else
|
2003-11-18 10:53:03 +01:00
|
|
|
log_fn(LOG_INFO,"Abandoning circ %d (state %d:%s)", victim->n_circ_id,
|
|
|
|
victim->state, circuit_state_to_string[victim->state]);
|
2004-01-30 20:31:39 +01:00
|
|
|
circuit_log_path(LOG_INFO,victim);
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(victim);
|
2003-11-18 08:48:00 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/* count the number of circs starting at us that aren't open */
|
|
|
|
int circuit_count_building(void) {
|
|
|
|
circuit_t *circ;
|
|
|
|
int num=0;
|
|
|
|
|
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2004-03-02 18:48:17 +01:00
|
|
|
if(circ->cpath
|
|
|
|
&& circ->state != CIRCUIT_STATE_OPEN
|
|
|
|
&& !circ->marked_for_close)
|
2003-11-18 08:48:00 +01:00
|
|
|
num++;
|
|
|
|
}
|
|
|
|
return num;
|
|
|
|
}
|
|
|
|
|
2003-12-13 00:03:25 +01:00
|
|
|
#define MIN_CIRCUITS_HANDLING_STREAM 2
|
|
|
|
/* return 1 if at least MIN_CIRCUITS_HANDLING_STREAM non-open circuits
|
|
|
|
* will have an acceptable exit node for conn. Else return 0.
|
|
|
|
*/
|
|
|
|
int circuit_stream_is_being_handled(connection_t *conn) {
|
|
|
|
circuit_t *circ;
|
|
|
|
routerinfo_t *exitrouter;
|
|
|
|
int num=0;
|
|
|
|
|
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2004-03-02 18:48:17 +01:00
|
|
|
if(circ->cpath && circ->state != CIRCUIT_STATE_OPEN &&
|
|
|
|
!circ->marked_for_close) {
|
2003-12-13 00:03:25 +01:00
|
|
|
exitrouter = router_get_by_nickname(circ->build_state->chosen_exit);
|
2004-02-17 09:29:22 +01:00
|
|
|
if(exitrouter && connection_ap_can_use_exit(conn, exitrouter) != ADDR_POLICY_REJECTED)
|
2003-12-13 00:03:25 +01:00
|
|
|
if(++num >= MIN_CIRCUITS_HANDLING_STREAM)
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2003-12-16 23:56:50 +01:00
|
|
|
/* update digest from the payload of cell. assign integrity part to cell. */
|
2003-12-23 08:45:31 +01:00
|
|
|
static void relay_set_digest(crypto_digest_env_t *digest, cell_t *cell) {
|
2004-01-02 10:03:38 +01:00
|
|
|
char integrity[4];
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_t rh;
|
2003-12-16 23:56:50 +01:00
|
|
|
|
|
|
|
crypto_digest_add_bytes(digest, cell->payload, CELL_PAYLOAD_SIZE);
|
2004-01-02 10:03:38 +01:00
|
|
|
crypto_digest_get_digest(digest, integrity, 4);
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"Putting digest of %u %u %u %u into relay cell.",
|
|
|
|
// integrity[0], integrity[1], integrity[2], integrity[3]);
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_unpack(&rh, cell->payload);
|
2004-01-02 10:03:38 +01:00
|
|
|
memcpy(rh.integrity, integrity, 4);
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_pack(cell->payload, &rh);
|
2003-12-16 23:56:50 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
/* update digest from the payload of cell (with the integrity part set
|
2003-12-26 07:29:57 +01:00
|
|
|
* to 0). If the integrity part is valid return 1, else restore digest
|
|
|
|
* and cell to their original state and return 0.
|
2003-12-16 23:56:50 +01:00
|
|
|
*/
|
2003-12-26 07:29:57 +01:00
|
|
|
static int relay_digest_matches(crypto_digest_env_t *digest, cell_t *cell) {
|
2004-01-02 10:03:38 +01:00
|
|
|
char received_integrity[4], calculated_integrity[4];
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_t rh;
|
2003-12-26 07:29:57 +01:00
|
|
|
crypto_digest_env_t *backup_digest=NULL;
|
|
|
|
|
|
|
|
backup_digest = crypto_digest_dup(digest);
|
2003-12-19 06:09:51 +01:00
|
|
|
|
|
|
|
relay_header_unpack(&rh, cell->payload);
|
2004-01-02 10:03:38 +01:00
|
|
|
memcpy(received_integrity, rh.integrity, 4);
|
|
|
|
memset(rh.integrity, 0, 4);
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_pack(cell->payload, &rh);
|
2003-12-16 23:56:50 +01:00
|
|
|
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"Reading digest of %u %u %u %u from relay cell.",
|
|
|
|
// received_integrity[0], received_integrity[1],
|
|
|
|
// received_integrity[2], received_integrity[3]);
|
2003-12-16 23:56:50 +01:00
|
|
|
|
|
|
|
crypto_digest_add_bytes(digest, cell->payload, CELL_PAYLOAD_SIZE);
|
2004-01-02 10:03:38 +01:00
|
|
|
crypto_digest_get_digest(digest, calculated_integrity, 4);
|
2003-12-16 23:56:50 +01:00
|
|
|
|
2004-01-02 10:03:38 +01:00
|
|
|
if(memcmp(received_integrity, calculated_integrity, 4)) {
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_INFO,"Recognized=0 but bad digest. Not recognizing.");
|
2004-01-02 10:03:38 +01:00
|
|
|
// (%d vs %d).", received_integrity, calculated_integrity);
|
2003-12-26 07:29:57 +01:00
|
|
|
/* restore digest to its old form */
|
|
|
|
crypto_digest_assign(digest, backup_digest);
|
|
|
|
/* restore the relay header */
|
2004-01-02 10:03:38 +01:00
|
|
|
memcpy(rh.integrity, received_integrity, 4);
|
2003-12-26 07:29:57 +01:00
|
|
|
relay_header_pack(cell->payload, &rh);
|
|
|
|
crypto_free_digest_env(backup_digest);
|
|
|
|
return 0;
|
2003-12-16 23:56:50 +01:00
|
|
|
}
|
2003-12-26 07:29:57 +01:00
|
|
|
crypto_free_digest_env(backup_digest);
|
|
|
|
return 1;
|
2003-12-16 23:56:50 +01:00
|
|
|
}
|
|
|
|
|
2003-12-23 08:45:31 +01:00
|
|
|
static int relay_crypt_one_payload(crypto_cipher_env_t *cipher, char *in,
|
|
|
|
int encrypt_mode) {
|
|
|
|
char out[CELL_PAYLOAD_SIZE]; /* 'in' must be this size too */
|
|
|
|
relay_header_t rh;
|
|
|
|
|
|
|
|
relay_header_unpack(&rh, in);
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"before crypt: %d",rh.recognized);
|
2003-12-23 08:45:31 +01:00
|
|
|
if(( encrypt_mode && crypto_cipher_encrypt(cipher, in, CELL_PAYLOAD_SIZE, out)) ||
|
|
|
|
(!encrypt_mode && crypto_cipher_decrypt(cipher, in, CELL_PAYLOAD_SIZE, out))) {
|
|
|
|
log_fn(LOG_WARN,"Error during crypt: %s", crypto_perror());
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
memcpy(in,out,CELL_PAYLOAD_SIZE);
|
|
|
|
relay_header_unpack(&rh, in);
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"after crypt: %d",rh.recognized);
|
2003-12-23 08:45:31 +01:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
receive a relay cell:
|
|
|
|
- crypt it (encrypt APward, decrypt at AP, decrypt exitward)
|
|
|
|
- check if recognized (if exitward)
|
|
|
|
- if recognized, check digest, find right conn, deliver to edge.
|
|
|
|
- else connection_or_write_cell_to_buf to the right conn
|
|
|
|
*/
|
|
|
|
int circuit_receive_relay_cell(cell_t *cell, circuit_t *circ,
|
|
|
|
int cell_direction) {
|
2003-05-02 23:29:25 +02:00
|
|
|
connection_t *conn=NULL;
|
2003-12-23 08:45:31 +01:00
|
|
|
crypt_path_t *layer_hint=NULL;
|
2003-05-02 23:29:25 +02:00
|
|
|
char recognized=0;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
|
|
|
assert(cell && circ);
|
2003-12-17 22:09:31 +01:00
|
|
|
assert(cell_direction == CELL_DIRECTION_OUT || cell_direction == CELL_DIRECTION_IN);
|
2004-03-02 18:48:17 +01:00
|
|
|
if (circ->marked_for_close)
|
|
|
|
return 0;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
if(relay_crypt(circ, cell, cell_direction, &layer_hint, &recognized) < 0) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log_fn(LOG_WARN,"relay crypt failed. Dropping connection.");
|
2002-06-27 00:45:49 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2003-05-02 23:29:25 +02:00
|
|
|
if(recognized) {
|
2003-12-19 06:09:51 +01:00
|
|
|
conn = relay_lookup_conn(circ, cell, cell_direction);
|
2003-05-02 23:29:25 +02:00
|
|
|
if(cell_direction == CELL_DIRECTION_OUT) {
|
2003-10-02 22:00:38 +02:00
|
|
|
++stats_n_relay_cells_delivered;
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"Sending to exit.");
|
2003-11-14 08:15:52 +01:00
|
|
|
if (connection_edge_process_relay_cell(cell, circ, conn, EDGE_EXIT, NULL) < 0) {
|
|
|
|
log_fn(LOG_WARN,"connection_edge_process_relay_cell (at exit) failed.");
|
|
|
|
return -1;
|
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
}
|
|
|
|
if(cell_direction == CELL_DIRECTION_IN) {
|
2003-10-02 22:00:38 +02:00
|
|
|
++stats_n_relay_cells_delivered;
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"Sending to AP.");
|
2003-11-14 08:15:52 +01:00
|
|
|
if (connection_edge_process_relay_cell(cell, circ, conn, EDGE_AP, layer_hint) < 0) {
|
|
|
|
log_fn(LOG_WARN,"connection_edge_process_relay_cell (at AP) failed.");
|
|
|
|
return -1;
|
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
}
|
2003-11-16 18:31:19 +01:00
|
|
|
return 0;
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
|
|
|
|
/* not recognized. pass it on. */
|
2003-12-23 08:45:31 +01:00
|
|
|
if(cell_direction == CELL_DIRECTION_OUT) {
|
|
|
|
cell->circ_id = circ->n_circ_id; /* switch it */
|
2003-05-02 23:29:25 +02:00
|
|
|
conn = circ->n_conn;
|
2003-12-23 08:45:31 +01:00
|
|
|
} else {
|
|
|
|
cell->circ_id = circ->p_circ_id; /* switch it */
|
2003-05-02 23:29:25 +02:00
|
|
|
conn = circ->p_conn;
|
2003-12-23 08:45:31 +01:00
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-11-14 08:15:52 +01:00
|
|
|
if(!conn) {
|
2004-02-28 08:01:22 +01:00
|
|
|
log_fn(LOG_WARN,"Didn't recognize cell, but circ stops here! Closing circ.");
|
2004-02-28 05:48:46 +01:00
|
|
|
return -1;
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"Passing on unrecognized cell.");
|
2003-11-17 02:23:15 +01:00
|
|
|
++stats_n_relay_cells_relayed;
|
2003-10-09 20:45:14 +02:00
|
|
|
connection_or_write_cell_to_buf(cell, conn);
|
2003-10-04 04:38:18 +02:00
|
|
|
return 0;
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
|
2003-12-23 08:45:31 +01:00
|
|
|
/* wrap this into receive_relay_cell one day */
|
2004-03-09 23:01:17 +01:00
|
|
|
static int relay_crypt(circuit_t *circ, cell_t *cell, int cell_direction,
|
2003-12-19 06:09:51 +01:00
|
|
|
crypt_path_t **layer_hint, char *recognized) {
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
crypt_path_t *thishop;
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_t rh;
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
assert(circ && cell && recognized);
|
2003-12-19 06:09:51 +01:00
|
|
|
assert(cell_direction == CELL_DIRECTION_IN || cell_direction == CELL_DIRECTION_OUT);
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-12-17 22:09:31 +01:00
|
|
|
if(cell_direction == CELL_DIRECTION_IN) {
|
2003-12-16 09:21:58 +01:00
|
|
|
if(circ->cpath) { /* we're at the beginning of the circuit.
|
|
|
|
We'll want to do layered crypts. */
|
2003-05-02 00:55:51 +02:00
|
|
|
thishop = circ->cpath;
|
2003-05-06 01:24:46 +02:00
|
|
|
if(thishop->state != CPATH_STATE_OPEN) {
|
2004-02-28 08:01:22 +01:00
|
|
|
log_fn(LOG_WARN,"Relay cell before first created cell? Closing.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
do { /* Remember: cpath is in forward order, that is, first hop first. */
|
2003-05-02 00:55:51 +02:00
|
|
|
assert(thishop);
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
if(relay_crypt_one_payload(thishop->b_crypto, cell->payload, 0) < 0)
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
return -1;
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
relay_header_unpack(&rh, cell->payload);
|
2003-12-23 08:45:31 +01:00
|
|
|
if(rh.recognized == 0) {
|
2003-12-26 07:29:57 +01:00
|
|
|
/* it's possibly recognized. have to check digest to be sure. */
|
|
|
|
if(relay_digest_matches(thishop->b_digest, cell)) {
|
|
|
|
*recognized = 1;
|
|
|
|
*layer_hint = thishop;
|
|
|
|
return 0;
|
|
|
|
}
|
2003-05-20 08:41:23 +02:00
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-05-02 00:55:51 +02:00
|
|
|
thishop = thishop->next;
|
2003-05-06 01:24:46 +02:00
|
|
|
} while(thishop != circ->cpath && thishop->state == CPATH_STATE_OPEN);
|
2004-02-28 08:01:22 +01:00
|
|
|
log_fn(LOG_WARN,"in-cell at OP not recognized. Closing.");
|
|
|
|
return -1;
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
} else { /* we're in the middle. Just one crypt. */
|
2003-12-26 07:29:57 +01:00
|
|
|
if(relay_crypt_one_payload(circ->p_crypto, cell->payload, 1) < 0)
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
return -1;
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"Skipping recognized check, because we're not the OP.");
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
2003-12-19 06:09:51 +01:00
|
|
|
} else /* cell_direction == CELL_DIRECTION_OUT */ {
|
2003-12-23 08:45:31 +01:00
|
|
|
/* we're in the middle. Just one crypt. */
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
if(relay_crypt_one_payload(circ->n_crypto, cell->payload, 0) < 0)
|
2003-12-23 08:45:31 +01:00
|
|
|
return -1;
|
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
relay_header_unpack(&rh, cell->payload);
|
|
|
|
if (rh.recognized == 0) {
|
|
|
|
/* it's possibly recognized. have to check digest to be sure. */
|
|
|
|
if(relay_digest_matches(circ->n_digest, cell)) {
|
|
|
|
*recognized = 1;
|
|
|
|
return 0;
|
2003-12-23 08:45:31 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
package a relay cell:
|
2004-02-28 08:01:22 +01:00
|
|
|
1) encrypt it to the right conn
|
|
|
|
2) connection_or_write_cell_to_buf to the right conn
|
2003-12-23 08:45:31 +01:00
|
|
|
*/
|
|
|
|
int
|
|
|
|
circuit_package_relay_cell(cell_t *cell, circuit_t *circ,
|
|
|
|
int cell_direction,
|
|
|
|
crypt_path_t *layer_hint)
|
|
|
|
{
|
|
|
|
connection_t *conn; /* where to send the cell */
|
2003-12-26 07:29:57 +01:00
|
|
|
crypt_path_t *thishop; /* counter for repeated crypts */
|
2003-12-23 08:45:31 +01:00
|
|
|
|
|
|
|
if(cell_direction == CELL_DIRECTION_OUT) {
|
|
|
|
conn = circ->n_conn;
|
|
|
|
if(!conn) {
|
2004-02-28 08:01:22 +01:00
|
|
|
log_fn(LOG_WARN,"outgoing relay cell has n_conn==NULL. Dropping.");
|
2003-12-23 08:45:31 +01:00
|
|
|
return 0; /* just drop it */
|
|
|
|
}
|
2003-12-26 07:29:57 +01:00
|
|
|
relay_set_digest(layer_hint->f_digest, cell);
|
2003-12-23 08:45:31 +01:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
thishop = layer_hint;
|
|
|
|
/* moving from farthest to nearest hop */
|
|
|
|
do {
|
|
|
|
assert(thishop);
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-12-30 23:49:35 +01:00
|
|
|
log_fn(LOG_DEBUG,"crypting a layer of the relay cell.");
|
2003-12-26 07:29:57 +01:00
|
|
|
if(relay_crypt_one_payload(thishop->f_crypto, cell->payload, 1) < 0) {
|
Integrated onion proxy into or/
The 'or' process can now be told (by the global_role variable) what
roles this server should play -- connect to all ORs, listen for ORs,
listen for OPs, listen for APs, or any combination.
* everything in /src/op/ is now obsolete.
* connection_ap.c now handles all interactions with application proxies
* "port" is now or_port, op_port, ap_port. But routers are still always
referenced (say, in conn_get_by_addr_port()) by addr / or_port. We
should make routers.c actually read these new ports (currently I've
kludged it so op_port = or_port+10, ap_port=or_port+20)
* circuits currently know if they're at the beginning of the path because
circ->cpath is set. They use this instead for crypts (both ways),
if it's set.
* I still obey the "send a 0 back to the AP when you're ready" protocol,
but I think we should phase it out. I can simply not read from the AP
socket until I'm ready.
I need to do a lot of cleanup work here, but the code appears to work, so
now's a good time for a checkin.
svn:r22
2002-07-02 11:36:58 +02:00
|
|
|
return -1;
|
|
|
|
}
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-12-26 07:29:57 +01:00
|
|
|
thishop = thishop->prev;
|
|
|
|
} while (thishop != circ->cpath->prev);
|
2003-12-23 08:45:31 +01:00
|
|
|
|
|
|
|
} else { /* incoming cell */
|
|
|
|
conn = circ->p_conn;
|
|
|
|
if(!conn) {
|
2004-02-28 08:01:22 +01:00
|
|
|
log_fn(LOG_WARN,"incoming relay cell has p_conn==NULL. Dropping.");
|
2003-12-23 08:45:31 +01:00
|
|
|
return 0; /* just drop it */
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
2003-12-23 08:45:31 +01:00
|
|
|
relay_set_digest(circ->p_digest, cell);
|
|
|
|
if(relay_crypt_one_payload(circ->p_crypto, cell->payload, 1) < 0)
|
|
|
|
return -1;
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
2003-12-23 08:45:31 +01:00
|
|
|
++stats_n_relay_cells_relayed;
|
|
|
|
connection_or_write_cell_to_buf(cell, conn);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2003-12-23 08:45:31 +01:00
|
|
|
static connection_t *
|
|
|
|
relay_lookup_conn(circuit_t *circ, cell_t *cell, int cell_direction)
|
|
|
|
{
|
2003-05-02 23:29:25 +02:00
|
|
|
connection_t *tmpconn;
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_t rh;
|
2003-05-02 23:29:25 +02:00
|
|
|
|
2003-12-19 06:09:51 +01:00
|
|
|
relay_header_unpack(&rh, cell->payload);
|
|
|
|
|
|
|
|
if(!rh.stream_id)
|
|
|
|
return NULL;
|
2003-05-02 23:29:25 +02:00
|
|
|
|
|
|
|
if(cell_direction == CELL_DIRECTION_OUT)
|
2003-05-28 01:39:04 +02:00
|
|
|
tmpconn = circ->n_streams;
|
2003-05-02 23:29:25 +02:00
|
|
|
else
|
2003-05-28 01:39:04 +02:00
|
|
|
tmpconn = circ->p_streams;
|
2003-05-02 23:29:25 +02:00
|
|
|
|
|
|
|
for( ; tmpconn; tmpconn=tmpconn->next_stream) {
|
2003-12-19 06:09:51 +01:00
|
|
|
if(rh.stream_id == tmpconn->stream_id) {
|
|
|
|
log_fn(LOG_DEBUG,"found conn for stream %d.", rh.stream_id);
|
|
|
|
return tmpconn;
|
2003-05-02 23:29:25 +02:00
|
|
|
}
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"considered stream %d, not it.",tmpconn->stream_id);
|
2003-05-02 23:29:25 +02:00
|
|
|
}
|
2003-12-19 06:09:51 +01:00
|
|
|
return NULL; /* probably a begin relay cell */
|
2003-05-02 23:29:25 +02:00
|
|
|
}
|
|
|
|
|
2003-05-20 08:41:23 +02:00
|
|
|
void circuit_resume_edge_reading(circuit_t *circ, int edge_type, crypt_path_t *layer_hint) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_t *conn;
|
|
|
|
|
|
|
|
assert(edge_type == EDGE_EXIT || edge_type == EDGE_AP);
|
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"resuming");
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
2003-02-18 02:35:55 +01:00
|
|
|
if(edge_type == EDGE_EXIT)
|
2003-05-28 01:39:04 +02:00
|
|
|
conn = circ->n_streams;
|
2003-02-18 02:35:55 +01:00
|
|
|
else
|
2003-05-28 01:39:04 +02:00
|
|
|
conn = circ->p_streams;
|
2003-02-18 02:35:55 +01:00
|
|
|
|
2003-05-01 08:42:29 +02:00
|
|
|
for( ; conn; conn=conn->next_stream) {
|
2003-05-20 08:41:23 +02:00
|
|
|
if((edge_type == EDGE_EXIT && conn->package_window > 0) ||
|
|
|
|
(edge_type == EDGE_AP && conn->package_window > 0 && conn->cpath_layer == layer_hint)) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_start_reading(conn);
|
2003-10-09 20:45:14 +02:00
|
|
|
connection_edge_package_raw_inbuf(conn); /* handle whatever might still be on the inbuf */
|
2003-08-25 22:57:23 +02:00
|
|
|
|
|
|
|
/* If the circuit won't accept any more data, return without looking
|
|
|
|
* at any more of the streams. Any connections that should be stopped
|
2003-10-09 20:45:14 +02:00
|
|
|
* have already been stopped by connection_edge_package_raw_inbuf. */
|
2003-07-03 05:40:47 +02:00
|
|
|
if(circuit_consider_stop_edge_reading(circ, edge_type, layer_hint))
|
|
|
|
return;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/* returns 1 if the window is empty, else 0. If it's empty, tell edge conns to stop reading. */
|
2003-05-20 08:41:23 +02:00
|
|
|
int circuit_consider_stop_edge_reading(circuit_t *circ, int edge_type, crypt_path_t *layer_hint) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_t *conn = NULL;
|
|
|
|
|
|
|
|
assert(edge_type == EDGE_EXIT || edge_type == EDGE_AP);
|
2003-05-20 08:41:23 +02:00
|
|
|
assert(edge_type == EDGE_EXIT || layer_hint);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"considering");
|
2003-05-20 08:41:23 +02:00
|
|
|
if(edge_type == EDGE_EXIT && circ->package_window <= 0)
|
2003-05-28 01:39:04 +02:00
|
|
|
conn = circ->n_streams;
|
2003-05-20 08:41:23 +02:00
|
|
|
else if(edge_type == EDGE_AP && layer_hint->package_window <= 0)
|
2003-05-28 01:39:04 +02:00
|
|
|
conn = circ->p_streams;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
else
|
|
|
|
return 0;
|
|
|
|
|
2003-05-01 08:42:29 +02:00
|
|
|
for( ; conn; conn=conn->next_stream)
|
2003-05-20 08:41:23 +02:00
|
|
|
if(!layer_hint || conn->cpath_layer == layer_hint)
|
|
|
|
connection_stop_reading(conn);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"yes. stopped.");
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
2003-12-16 23:56:50 +01:00
|
|
|
void circuit_consider_sending_sendme(circuit_t *circ, int edge_type, crypt_path_t *layer_hint) {
|
|
|
|
while((edge_type == EDGE_AP ? layer_hint->deliver_window : circ->deliver_window) <
|
|
|
|
CIRCWINDOW_START - CIRCWINDOW_INCREMENT) {
|
|
|
|
log_fn(LOG_DEBUG,"Queueing circuit sendme.");
|
|
|
|
if(edge_type == EDGE_AP)
|
2003-05-20 08:41:23 +02:00
|
|
|
layer_hint->deliver_window += CIRCWINDOW_INCREMENT;
|
2003-12-16 23:56:50 +01:00
|
|
|
else
|
2003-05-20 08:41:23 +02:00
|
|
|
circ->deliver_window += CIRCWINDOW_INCREMENT;
|
2003-12-16 23:56:50 +01:00
|
|
|
if(connection_edge_send_command(NULL, circ, RELAY_COMMAND_SENDME,
|
|
|
|
NULL, 0, layer_hint) < 0) {
|
2004-02-28 08:01:22 +01:00
|
|
|
log_fn(LOG_WARN,"connection_edge_send_command failed. Circuit's closed.");
|
2003-12-16 23:56:50 +01:00
|
|
|
return; /* the circuit's closed, don't continue */
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
}
|
|
|
|
}
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
|
2004-03-02 18:48:17 +01:00
|
|
|
int _circuit_mark_for_close(circuit_t *circ) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_t *conn;
|
|
|
|
|
2004-03-02 18:48:17 +01:00
|
|
|
assert_circuit_ok(circ);
|
|
|
|
if (circ->marked_for_close < 0)
|
|
|
|
return -1;
|
|
|
|
|
2003-11-18 22:12:17 +01:00
|
|
|
if(circ->state == CIRCUIT_STATE_ONIONSKIN_PENDING) {
|
|
|
|
onion_pending_remove(circ);
|
|
|
|
}
|
2004-03-20 05:59:29 +01:00
|
|
|
/* If the circuit ever became OPEN, we sent it to the reputation history
|
|
|
|
* module then. If it isn't OPEN, we send it there now to remember which
|
|
|
|
* links worked and which didn't.
|
|
|
|
*/
|
|
|
|
if (circ->state != CIRCUIT_STATE_OPEN)
|
|
|
|
circuit_rep_hist_note_result(circ);
|
2003-11-18 22:12:17 +01:00
|
|
|
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->n_conn)
|
2003-11-11 04:01:48 +01:00
|
|
|
connection_send_destroy(circ->n_circ_id, circ->n_conn);
|
2003-05-28 01:39:04 +02:00
|
|
|
for(conn=circ->n_streams; conn; conn=conn->next_stream) {
|
2004-02-29 01:11:37 +01:00
|
|
|
connection_edge_destroy(circ->n_circ_id, conn);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
}
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->p_conn)
|
2003-11-11 04:01:48 +01:00
|
|
|
connection_send_destroy(circ->n_circ_id, circ->p_conn);
|
2003-05-28 01:39:04 +02:00
|
|
|
for(conn=circ->p_streams; conn; conn=conn->next_stream) {
|
2004-02-29 01:11:37 +01:00
|
|
|
connection_edge_destroy(circ->p_circ_id, conn);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
}
|
2003-12-13 08:42:18 +01:00
|
|
|
if (circ->state == CIRCUIT_STATE_BUILDING ||
|
|
|
|
circ->state == CIRCUIT_STATE_OR_WAIT) {
|
2003-11-19 03:22:52 +01:00
|
|
|
/* If we never built the circuit, note it as a failure. */
|
2003-12-16 23:56:50 +01:00
|
|
|
/* Note that we can't just check circ->cpath here, because if
|
|
|
|
* circuit-building failed immediately, it won't be set yet. */
|
2003-11-19 03:22:52 +01:00
|
|
|
circuit_increment_failure_count();
|
|
|
|
}
|
2004-03-02 18:48:17 +01:00
|
|
|
|
|
|
|
circ->marked_for_close = 1;
|
|
|
|
return 0;
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
|
2004-02-18 02:21:20 +01:00
|
|
|
void circuit_detach_stream(circuit_t *circ, connection_t *conn) {
|
|
|
|
connection_t *prevconn;
|
|
|
|
|
|
|
|
assert(circ);
|
|
|
|
assert(conn);
|
|
|
|
|
|
|
|
if(conn == circ->p_streams) {
|
|
|
|
circ->p_streams = conn->next_stream;
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
if(conn == circ->n_streams) {
|
|
|
|
circ->n_streams = conn->next_stream;
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
for(prevconn = circ->p_streams; prevconn && prevconn->next_stream && prevconn->next_stream != conn; prevconn = prevconn->next_stream) ;
|
|
|
|
if(prevconn && prevconn->next_stream) {
|
|
|
|
prevconn->next_stream = conn->next_stream;
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
for(prevconn = circ->n_streams; prevconn && prevconn->next_stream && prevconn->next_stream != conn; prevconn = prevconn->next_stream) ;
|
|
|
|
if(prevconn && prevconn->next_stream) {
|
|
|
|
prevconn->next_stream = conn->next_stream;
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
log_fn(LOG_ERR,"edge conn not in circuit's list?");
|
|
|
|
assert(0); /* should never get here */
|
|
|
|
}
|
|
|
|
|
2002-06-27 00:45:49 +02:00
|
|
|
void circuit_about_to_close_connection(connection_t *conn) {
|
|
|
|
/* send destroys for all circuits using conn */
|
|
|
|
/* currently, we assume it's too late to flush conn's buf here.
|
|
|
|
* down the road, maybe we'll consider that eof doesn't mean can't-write
|
|
|
|
*/
|
|
|
|
circuit_t *circ;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
2003-10-21 10:37:07 +02:00
|
|
|
switch(conn->type) {
|
|
|
|
case CONN_TYPE_OR:
|
|
|
|
/* We must close all the circuits on it. */
|
|
|
|
while((circ = circuit_get_by_conn(conn))) {
|
|
|
|
if(circ->n_conn == conn) /* it's closing in front of us */
|
|
|
|
circ->n_conn = NULL;
|
|
|
|
if(circ->p_conn == conn) /* it's closing behind us */
|
|
|
|
circ->p_conn = NULL;
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-12-17 22:09:31 +01:00
|
|
|
}
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
return;
|
2003-10-21 10:37:07 +02:00
|
|
|
case CONN_TYPE_AP:
|
|
|
|
case CONN_TYPE_EXIT:
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
|
2003-10-21 10:37:07 +02:00
|
|
|
/* It's an edge conn. Need to remove it from the linked list of
|
|
|
|
* conn's for this circuit. Confirm that 'end' relay command has
|
|
|
|
* been sent. But don't kill the circuit.
|
|
|
|
*/
|
2002-06-27 00:45:49 +02:00
|
|
|
|
2003-10-21 10:37:07 +02:00
|
|
|
circ = circuit_get_by_conn(conn);
|
|
|
|
if(!circ)
|
|
|
|
return;
|
|
|
|
|
|
|
|
if(!conn->has_sent_end) {
|
2004-02-27 23:00:26 +01:00
|
|
|
log_fn(LOG_WARN,"Edge connection hasn't sent end yet? Bug.");
|
|
|
|
connection_mark_for_close(conn, END_STREAM_REASON_MISC);
|
2003-10-21 10:37:07 +02:00
|
|
|
}
|
|
|
|
|
2004-02-18 02:21:20 +01:00
|
|
|
circuit_detach_stream(circ, conn);
|
|
|
|
|
2003-10-21 10:37:07 +02:00
|
|
|
} /* end switch */
|
2002-06-27 00:45:49 +02:00
|
|
|
}
|
|
|
|
|
2004-01-20 10:21:46 +01:00
|
|
|
void circuit_log_path(int severity, circuit_t *circ) {
|
2004-03-14 23:47:11 +01:00
|
|
|
char buf[1024];
|
|
|
|
char *s = buf;
|
2004-01-20 10:21:46 +01:00
|
|
|
struct crypt_path_t *hop;
|
2004-01-30 20:31:39 +01:00
|
|
|
char *states[] = {"closed", "waiting for keys", "open"};
|
2004-01-20 10:21:46 +01:00
|
|
|
routerinfo_t *router;
|
|
|
|
assert(circ->cpath);
|
2004-01-30 20:31:39 +01:00
|
|
|
|
2004-03-14 23:47:11 +01:00
|
|
|
snprintf(s, sizeof(buf)-1, "circ (length %d, exit %s): ",
|
2004-01-30 20:31:39 +01:00
|
|
|
circ->build_state->desired_path_len, circ->build_state->chosen_exit);
|
|
|
|
hop=circ->cpath;
|
|
|
|
do {
|
2004-03-14 23:47:11 +01:00
|
|
|
s = buf + strlen(buf);
|
2004-01-20 10:21:46 +01:00
|
|
|
router = router_get_by_addr_port(hop->addr,hop->port);
|
|
|
|
if(router) {
|
2004-03-14 23:47:11 +01:00
|
|
|
snprintf(s, sizeof(buf) - (s - buf), "%s(%s) ",
|
|
|
|
router->nickname, states[hop->state]);
|
2004-01-20 10:21:46 +01:00
|
|
|
} else {
|
2004-03-14 23:47:11 +01:00
|
|
|
snprintf(s, sizeof(buf) - (s - buf), "UNKNOWN ");
|
2004-01-20 10:21:46 +01:00
|
|
|
}
|
2004-01-30 20:31:39 +01:00
|
|
|
hop=hop->next;
|
|
|
|
} while(hop!=circ->cpath);
|
2004-03-14 23:47:11 +01:00
|
|
|
log_fn(severity,"%s",buf);
|
2004-01-20 10:21:46 +01:00
|
|
|
}
|
|
|
|
|
2004-03-20 05:59:29 +01:00
|
|
|
/* Tell the rep(utation)hist(ory) module about the status of the links
|
|
|
|
* in circ. Hops that have become OPEN are marked as successfully
|
|
|
|
* extended; the _first_ hop that isn't open (if any) is marked as
|
|
|
|
* unable to extend.
|
|
|
|
*/
|
|
|
|
static void
|
|
|
|
circuit_rep_hist_note_result(circuit_t *circ)
|
|
|
|
{
|
|
|
|
struct crypt_path_t *hop;
|
|
|
|
char *prev_nickname = NULL;
|
|
|
|
routerinfo_t *router;
|
|
|
|
hop = circ->cpath;
|
2004-03-20 21:21:20 +01:00
|
|
|
if(!hop) {
|
|
|
|
/* XXX
|
|
|
|
* if !hop, then we're not the beginning of this circuit.
|
|
|
|
* for now, just forget about it. later, we should remember when
|
|
|
|
* extends-through-us failed, too.
|
|
|
|
*/
|
|
|
|
return;
|
|
|
|
}
|
2004-03-20 05:59:29 +01:00
|
|
|
if (options.ORPort) {
|
|
|
|
prev_nickname = options.Nickname;
|
|
|
|
}
|
|
|
|
do {
|
|
|
|
router = router_get_by_addr_port(hop->addr,hop->port);
|
|
|
|
if (router) {
|
|
|
|
if (prev_nickname) {
|
|
|
|
if (hop->state == CPATH_STATE_OPEN)
|
|
|
|
rep_hist_note_extend_succeeded(prev_nickname, router->nickname);
|
|
|
|
else {
|
|
|
|
rep_hist_note_extend_failed(prev_nickname, router->nickname);
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
prev_nickname = router->nickname;
|
|
|
|
} else {
|
|
|
|
prev_nickname = NULL;
|
|
|
|
}
|
|
|
|
hop=hop->next;
|
|
|
|
} while (hop!=circ->cpath);
|
|
|
|
}
|
|
|
|
|
2004-01-20 10:21:46 +01:00
|
|
|
static void
|
|
|
|
circuit_dump_details(int severity, circuit_t *circ, int poll_index,
|
|
|
|
char *type, int this_circid, int other_circid) {
|
2003-11-17 10:30:29 +01:00
|
|
|
struct crypt_path_t *hop;
|
|
|
|
log(severity,"Conn %d has %s circuit: circID %d (other side %d), state %d (%s), born %d",
|
|
|
|
poll_index, type, this_circid, other_circid, circ->state,
|
|
|
|
circuit_state_to_string[circ->state], (int)circ->timestamp_created);
|
|
|
|
if(circ->cpath) { /* circ starts at this node */
|
|
|
|
if(circ->state == CIRCUIT_STATE_BUILDING)
|
|
|
|
log(severity,"Building: desired len %d, planned exit node %s.",
|
|
|
|
circ->build_state->desired_path_len, circ->build_state->chosen_exit);
|
|
|
|
for(hop=circ->cpath;hop->next != circ->cpath; hop=hop->next)
|
2004-03-18 20:22:56 +01:00
|
|
|
log(severity,"hop: state %d, addr 0x%.8x, port %d", hop->state,
|
2003-12-17 22:09:31 +01:00
|
|
|
(unsigned int)hop->addr,
|
2003-12-15 22:35:52 +01:00
|
|
|
(int)hop->port);
|
2003-11-17 10:30:29 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-10-15 20:28:32 +02:00
|
|
|
void circuit_dump_by_conn(connection_t *conn, int severity) {
|
2002-09-22 00:41:48 +02:00
|
|
|
circuit_t *circ;
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
connection_t *tmpconn;
|
2002-09-22 00:41:48 +02:00
|
|
|
|
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->p_conn == conn)
|
2003-11-17 10:30:29 +01:00
|
|
|
circuit_dump_details(severity, circ, conn->poll_index, "App-ward",
|
|
|
|
circ->p_circ_id, circ->n_circ_id);
|
2003-05-28 01:39:04 +02:00
|
|
|
for(tmpconn=circ->p_streams; tmpconn; tmpconn=tmpconn->next_stream) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
if(tmpconn == conn) {
|
2003-11-17 10:30:29 +01:00
|
|
|
circuit_dump_details(severity, circ, conn->poll_index, "App-ward",
|
|
|
|
circ->p_circ_id, circ->n_circ_id);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
}
|
2002-09-22 00:41:48 +02:00
|
|
|
}
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->n_conn == conn)
|
2003-11-17 10:30:29 +01:00
|
|
|
circuit_dump_details(severity, circ, conn->poll_index, "Exit-ward",
|
|
|
|
circ->n_circ_id, circ->p_circ_id);
|
2003-05-28 01:39:04 +02:00
|
|
|
for(tmpconn=circ->n_streams; tmpconn; tmpconn=tmpconn->next_stream) {
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
if(tmpconn == conn) {
|
2003-11-17 10:30:29 +01:00
|
|
|
circuit_dump_details(severity, circ, conn->poll_index, "Exit-ward",
|
|
|
|
circ->n_circ_id, circ->p_circ_id);
|
major overhaul: dns slave subsystem, topics
on startup, it forks off a master dns handler, which forks off dns
slaves (like the apache model). slaves as spawned as load increases,
and then reused. excess slaves are not ever killed, currently.
implemented topics. each topic has a receive window in each direction
at each edge of the circuit, and sends sendme's at the data level, as
per before. each circuit also has receive windows in each direction at
each hop; an edge sends a circuit-level sendme as soon as enough data
cells have arrived (regardless of whether the data cells were flushed
to the exit conns). removed the 'connected' cell type, since it's now
a topic command within data cells.
at the edge of the circuit, there can be multiple connections associated
with a single circuit. you find them via the linked list conn->next_topic.
currently each new ap connection starts its own circuit, so we ought
to see comparable performance to what we had before. but that's only
because i haven't written the code to reattach to old circuits. please
try to break it as-is, and then i'll make it reuse the same circuit and
we'll try to break that.
svn:r152
2003-01-26 10:02:24 +01:00
|
|
|
}
|
2002-09-22 00:41:48 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-04-16 08:18:31 +02:00
|
|
|
void circuit_expire_unused_circuits(void) {
|
|
|
|
circuit_t *circ, *tmpcirc;
|
2003-11-16 22:49:52 +01:00
|
|
|
time_t now = time(NULL);
|
2003-04-16 08:18:31 +02:00
|
|
|
|
|
|
|
circ = global_circuitlist;
|
|
|
|
while(circ) {
|
|
|
|
tmpcirc = circ;
|
|
|
|
circ = circ->next;
|
2003-11-16 22:49:52 +01:00
|
|
|
if(tmpcirc->timestamp_dirty &&
|
|
|
|
tmpcirc->timestamp_dirty + options.NewCircuitPeriod < now &&
|
2004-03-02 18:48:17 +01:00
|
|
|
!tmpcirc->p_conn && !tmpcirc->p_streams && !tmpcirc->marked_for_close) {
|
2003-11-11 04:01:48 +01:00
|
|
|
log_fn(LOG_DEBUG,"Closing n_circ_id %d",tmpcirc->n_circ_id);
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(tmpcirc);
|
2003-04-16 08:18:31 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-11-19 14:12:43 +01:00
|
|
|
/* Number of consecutive failures so far; should only be touched by
|
2003-11-19 03:22:52 +01:00
|
|
|
* circuit_launch_new and circuit_*_failure_count.
|
2003-11-19 14:12:43 +01:00
|
|
|
*/
|
2003-12-17 22:09:31 +01:00
|
|
|
static int n_circuit_failures = 0;
|
2003-11-19 03:22:52 +01:00
|
|
|
|
2003-11-19 14:12:43 +01:00
|
|
|
/* Return -1 if you aren't going to try to make a circuit, 0 if you did try. */
|
2003-11-19 03:22:52 +01:00
|
|
|
int circuit_launch_new(void) {
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-10-21 11:48:17 +02:00
|
|
|
if(!options.SocksPort) /* we're not an application proxy. no need for circuits. */
|
2003-11-16 22:49:52 +01:00
|
|
|
return -1;
|
2003-04-20 21:47:33 +02:00
|
|
|
|
2003-12-13 08:42:18 +01:00
|
|
|
if(n_circuit_failures > 5) { /* too many failed circs in a row. don't try. */
|
|
|
|
// log_fn(LOG_INFO,"%d failures so far, not trying.",n_circuit_failures);
|
2003-11-16 22:49:52 +01:00
|
|
|
return -1;
|
2003-12-13 08:42:18 +01:00
|
|
|
}
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2004-03-02 18:48:17 +01:00
|
|
|
/* try a circ. if it fails, circuit_mark_for_close will increment n_circuit_failures */
|
2003-11-19 14:12:43 +01:00
|
|
|
circuit_establish_circuit();
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-11-16 22:49:52 +01:00
|
|
|
return 0;
|
2003-04-16 08:18:31 +02:00
|
|
|
}
|
|
|
|
|
2003-11-19 03:22:52 +01:00
|
|
|
void circuit_increment_failure_count(void) {
|
|
|
|
++n_circuit_failures;
|
2003-12-13 08:42:18 +01:00
|
|
|
log_fn(LOG_DEBUG,"n_circuit_failures now %d.",n_circuit_failures);
|
2003-11-19 03:22:52 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
void circuit_reset_failure_count(void) {
|
|
|
|
n_circuit_failures = 0;
|
|
|
|
}
|
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
int circuit_establish_circuit(void) {
|
2003-04-16 08:18:31 +02:00
|
|
|
routerinfo_t *firsthop;
|
|
|
|
connection_t *n_conn;
|
|
|
|
circuit_t *circ;
|
|
|
|
|
2003-11-11 04:01:48 +01:00
|
|
|
circ = circuit_new(0, NULL); /* sets circ->p_circ_id and circ->p_conn */
|
2003-04-16 08:18:31 +02:00
|
|
|
circ->state = CIRCUIT_STATE_OR_WAIT;
|
2003-11-14 21:45:47 +01:00
|
|
|
circ->build_state = onion_new_cpath_build_state();
|
2003-11-16 18:00:02 +01:00
|
|
|
|
2003-11-14 21:45:47 +01:00
|
|
|
if (! circ->build_state) {
|
2003-11-12 03:55:38 +01:00
|
|
|
log_fn(LOG_INFO,"Generating cpath length failed.");
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-11-12 03:55:38 +01:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2003-11-14 21:45:47 +01:00
|
|
|
onion_extend_cpath(&circ->cpath, circ->build_state, &firsthop);
|
2003-05-06 01:24:46 +02:00
|
|
|
if(!circ->cpath) {
|
2003-11-12 03:55:38 +01:00
|
|
|
log_fn(LOG_INFO,"Generating first cpath hop failed.");
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* now see if we're already connected to the first OR in 'route' */
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"Looking for firsthop '%s:%u'",
|
2003-04-16 08:18:31 +02:00
|
|
|
firsthop->address,firsthop->or_port);
|
|
|
|
n_conn = connection_twin_get_by_addr_port(firsthop->addr,firsthop->or_port);
|
|
|
|
if(!n_conn || n_conn->state != OR_CONN_STATE_OPEN) { /* not currently connected */
|
|
|
|
circ->n_addr = firsthop->addr;
|
|
|
|
circ->n_port = firsthop->or_port;
|
2003-11-20 18:49:45 +01:00
|
|
|
if(options.ORPort) { /* we would be connected if he were up. and he's not. */
|
2003-09-26 12:03:50 +02:00
|
|
|
log_fn(LOG_INFO,"Route's firsthop isn't connected.");
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-04-16 08:18:31 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if(!n_conn) { /* launch the connection */
|
2003-05-28 04:03:25 +02:00
|
|
|
n_conn = connection_or_connect(firsthop);
|
2003-04-16 08:18:31 +02:00
|
|
|
if(!n_conn) { /* connect failed, forget the whole thing */
|
2003-09-26 12:03:50 +02:00
|
|
|
log_fn(LOG_INFO,"connect to firsthop failed. Closing.");
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-04-16 08:18:31 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"connecting in progress (or finished). Good.");
|
2003-04-16 08:18:31 +02:00
|
|
|
return 0; /* return success. The onion/circuit/etc will be taken care of automatically
|
|
|
|
* (may already have been) whenever n_conn reaches OR_CONN_STATE_OPEN.
|
2003-12-17 22:09:31 +01:00
|
|
|
*/
|
2003-04-16 08:18:31 +02:00
|
|
|
} else { /* it (or a twin) is already open. use it. */
|
|
|
|
circ->n_addr = n_conn->addr;
|
|
|
|
circ->n_port = n_conn->port;
|
2003-05-06 01:24:46 +02:00
|
|
|
circ->n_conn = n_conn;
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"Conn open. Delivering first onion skin.");
|
2003-05-06 01:24:46 +02:00
|
|
|
if(circuit_send_next_onion_skin(circ) < 0) {
|
2003-09-26 12:03:50 +02:00
|
|
|
log_fn(LOG_INFO,"circuit_send_next_onion_skin failed.");
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
2003-04-16 08:18:31 +02:00
|
|
|
}
|
2003-05-06 01:24:46 +02:00
|
|
|
return 0;
|
2003-04-16 08:18:31 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/* find circuits that are waiting on me, if any, and get them to send the onion */
|
|
|
|
void circuit_n_conn_open(connection_t *or_conn) {
|
|
|
|
circuit_t *circ;
|
|
|
|
|
2003-11-18 10:53:03 +01:00
|
|
|
for(circ=global_circuitlist;circ;circ = circ->next) {
|
2004-03-02 18:48:17 +01:00
|
|
|
if (circ->marked_for_close)
|
|
|
|
continue;
|
2003-11-18 10:53:03 +01:00
|
|
|
if(circ->cpath && circ->n_addr == or_conn->addr && circ->n_port == or_conn->port) {
|
|
|
|
assert(circ->state == CIRCUIT_STATE_OR_WAIT);
|
|
|
|
log_fn(LOG_DEBUG,"Found circ %d, sending onion skin.", circ->n_circ_id);
|
|
|
|
circ->n_conn = or_conn;
|
|
|
|
if(circuit_send_next_onion_skin(circ) < 0) {
|
|
|
|
log_fn(LOG_INFO,"send_next_onion_skin failed; circuit marked for closing.");
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-11-18 10:53:03 +01:00
|
|
|
continue;
|
2004-02-28 08:01:22 +01:00
|
|
|
/* XXX could this be bad, eg if next_onion_skin failed because conn died? */
|
2003-11-18 10:53:03 +01:00
|
|
|
}
|
2003-04-16 08:18:31 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
int circuit_send_next_onion_skin(circuit_t *circ) {
|
2003-04-16 08:18:31 +02:00
|
|
|
cell_t cell;
|
2003-05-06 01:24:46 +02:00
|
|
|
crypt_path_t *hop;
|
|
|
|
routerinfo_t *router;
|
2003-11-12 03:55:38 +01:00
|
|
|
int r;
|
2003-11-17 19:40:56 +01:00
|
|
|
int circ_id_type;
|
2003-12-17 06:58:30 +01:00
|
|
|
char payload[6+ONIONSKIN_CHALLENGE_LEN];
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-11-12 04:48:33 +01:00
|
|
|
assert(circ && circ->cpath);
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
if(circ->cpath->state == CPATH_STATE_CLOSED) {
|
2003-11-17 08:24:01 +01:00
|
|
|
assert(circ->n_conn && circ->n_conn->type == CONN_TYPE_OR);
|
2003-12-14 05:19:12 +01:00
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"First skin; sending create cell.");
|
2003-11-17 19:40:56 +01:00
|
|
|
circ_id_type = decide_circ_id_type(options.Nickname,
|
|
|
|
circ->n_conn->nickname);
|
|
|
|
circ->n_circ_id = get_unique_circ_id_by_conn(circ->n_conn, circ_id_type);
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
memset(&cell, 0, sizeof(cell_t));
|
2003-04-16 08:18:31 +02:00
|
|
|
cell.command = CELL_CREATE;
|
2003-11-11 04:01:48 +01:00
|
|
|
cell.circ_id = circ->n_circ_id;
|
2003-05-06 01:24:46 +02:00
|
|
|
|
2003-09-25 07:17:11 +02:00
|
|
|
if(onion_skin_create(circ->n_conn->onion_pkey, &(circ->cpath->handshake_state), cell.payload) < 0) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log_fn(LOG_WARN,"onion_skin_create (first hop) failed.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2003-10-09 20:45:14 +02:00
|
|
|
connection_or_write_cell_to_buf(&cell, circ->n_conn);
|
2003-05-06 01:24:46 +02:00
|
|
|
|
|
|
|
circ->cpath->state = CPATH_STATE_AWAITING_KEYS;
|
|
|
|
circ->state = CIRCUIT_STATE_BUILDING;
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"first skin; finished sending create cell.");
|
2003-05-06 01:24:46 +02:00
|
|
|
} else {
|
|
|
|
assert(circ->cpath->state == CPATH_STATE_OPEN);
|
|
|
|
assert(circ->state == CIRCUIT_STATE_BUILDING);
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"starting to send subsequent skin.");
|
2003-11-14 21:45:47 +01:00
|
|
|
r = onion_extend_cpath(&circ->cpath, circ->build_state, &router);
|
2003-11-12 04:01:38 +01:00
|
|
|
if (r==1) {
|
2003-11-12 03:55:38 +01:00
|
|
|
/* done building the circuit. whew. */
|
2003-05-06 01:24:46 +02:00
|
|
|
circ->state = CIRCUIT_STATE_OPEN;
|
2003-11-14 21:45:47 +01:00
|
|
|
log_fn(LOG_INFO,"circuit built!");
|
2003-11-19 03:22:52 +01:00
|
|
|
circuit_reset_failure_count();
|
2003-11-11 03:41:31 +01:00
|
|
|
/* Tell any AP connections that have been waiting for a new
|
|
|
|
* circuit that one is ready. */
|
|
|
|
connection_ap_attach_pending();
|
2003-05-06 01:24:46 +02:00
|
|
|
return 0;
|
2003-11-12 20:34:34 +01:00
|
|
|
} else if (r<0) {
|
2003-11-18 08:48:00 +01:00
|
|
|
log_fn(LOG_INFO,"Unable to extend circuit path.");
|
2003-11-12 03:55:38 +01:00
|
|
|
return -1;
|
2003-05-06 01:24:46 +02:00
|
|
|
}
|
2003-11-12 03:55:38 +01:00
|
|
|
hop = circ->cpath->prev;
|
2003-05-06 01:24:46 +02:00
|
|
|
|
2003-12-17 06:58:30 +01:00
|
|
|
*(uint32_t*)payload = htonl(hop->addr);
|
|
|
|
*(uint16_t*)(payload+4) = htons(hop->port);
|
|
|
|
if(onion_skin_create(router->onion_pkey, &(hop->handshake_state), payload+6) < 0) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log_fn(LOG_WARN,"onion_skin_create failed.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"Sending extend relay cell.");
|
2003-12-17 06:58:30 +01:00
|
|
|
/* send it to hop->prev, because it will transfer
|
|
|
|
* it to a create cell and then send to hop */
|
|
|
|
if(connection_edge_send_command(NULL, circ, RELAY_COMMAND_EXTEND,
|
|
|
|
payload, sizeof(payload), hop->prev) < 0)
|
2003-12-23 08:45:31 +01:00
|
|
|
return 0; /* circuit is closed */
|
2003-12-17 06:58:30 +01:00
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
hop->state = CPATH_STATE_AWAITING_KEYS;
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2003-09-18 10:11:31 +02:00
|
|
|
/* take the 'extend' cell, pull out addr/port plus the onion skin. Make
|
|
|
|
* sure we're connected to the next hop, and pass it the onion skin in
|
|
|
|
* a create cell.
|
2003-05-06 01:24:46 +02:00
|
|
|
*/
|
|
|
|
int circuit_extend(cell_t *cell, circuit_t *circ) {
|
|
|
|
connection_t *n_conn;
|
2003-11-11 04:01:48 +01:00
|
|
|
int circ_id_type;
|
2003-05-06 01:24:46 +02:00
|
|
|
cell_t newcell;
|
|
|
|
|
2003-05-28 01:39:04 +02:00
|
|
|
if(circ->n_conn) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log_fn(LOG_WARN,"n_conn already set. Bug/attack. Closing.");
|
2003-05-28 01:39:04 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
2004-03-20 10:30:30 +01:00
|
|
|
memcpy(&circ->n_addr, cell->payload+RELAY_HEADER_SIZE, 4);
|
|
|
|
circ->n_addr = ntohl(circ->n_addr);
|
|
|
|
memcpy(&circ->n_port, cell->payload+RELAY_HEADER_SIZE+4, 2);
|
|
|
|
circ->n_port = ntohs(circ->n_port);
|
|
|
|
|
|
|
|
// circ->n_addr = ntohl(*(uint32_t*)(cell->payload+RELAY_HEADER_SIZE));
|
|
|
|
// circ->n_port = ntohs(*(uint16_t*)(cell->payload+RELAY_HEADER_SIZE+4));
|
2003-05-06 01:24:46 +02:00
|
|
|
|
|
|
|
n_conn = connection_twin_get_by_addr_port(circ->n_addr,circ->n_port);
|
|
|
|
if(!n_conn || n_conn->type != CONN_TYPE_OR) {
|
2004-02-28 08:01:22 +01:00
|
|
|
/* I've disabled making connections through OPs, but it's definitely
|
|
|
|
* possible here. I'm not sure if it would be a bug or a feature.
|
|
|
|
*
|
|
|
|
* Note also that this will close circuits where the onion has the same
|
|
|
|
* router twice in a row in the path. I think that's ok.
|
2003-05-06 01:24:46 +02:00
|
|
|
*/
|
2003-08-11 22:22:48 +02:00
|
|
|
struct in_addr in;
|
|
|
|
in.s_addr = htonl(circ->n_addr);
|
2003-11-17 08:43:03 +01:00
|
|
|
log_fn(LOG_INFO,"Next router (%s:%d) not connected. Closing.", inet_ntoa(in), circ->n_port);
|
|
|
|
connection_edge_send_command(NULL, circ, RELAY_COMMAND_TRUNCATED,
|
|
|
|
NULL, 0, NULL);
|
|
|
|
return 0;
|
2003-05-06 01:24:46 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
circ->n_addr = n_conn->addr; /* these are different if we found a twin instead */
|
|
|
|
circ->n_port = n_conn->port;
|
|
|
|
|
|
|
|
circ->n_conn = n_conn;
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG,"n_conn is %s:%u",n_conn->address,n_conn->port);
|
2003-05-06 01:24:46 +02:00
|
|
|
|
2003-11-11 04:01:48 +01:00
|
|
|
circ_id_type = decide_circ_id_type(options.Nickname, n_conn->nickname);
|
2003-05-06 01:24:46 +02:00
|
|
|
|
2004-02-28 08:01:22 +01:00
|
|
|
// log_fn(LOG_DEBUG,"circ_id_type = %u.",circ_id_type);
|
2003-11-17 08:24:01 +01:00
|
|
|
circ->n_circ_id = get_unique_circ_id_by_conn(circ->n_conn, circ_id_type);
|
2003-11-11 04:01:48 +01:00
|
|
|
if(!circ->n_circ_id) {
|
|
|
|
log_fn(LOG_WARN,"failed to get unique circID.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
2003-11-11 04:01:48 +01:00
|
|
|
log_fn(LOG_DEBUG,"Chosen circID %u.",circ->n_circ_id);
|
2003-05-06 01:24:46 +02:00
|
|
|
|
|
|
|
memset(&newcell, 0, sizeof(cell_t));
|
|
|
|
newcell.command = CELL_CREATE;
|
2003-11-11 04:01:48 +01:00
|
|
|
newcell.circ_id = circ->n_circ_id;
|
2003-05-06 01:24:46 +02:00
|
|
|
|
2003-12-16 09:21:58 +01:00
|
|
|
memcpy(newcell.payload, cell->payload+RELAY_HEADER_SIZE+6,
|
|
|
|
ONIONSKIN_CHALLENGE_LEN);
|
2003-05-06 01:24:46 +02:00
|
|
|
|
2003-10-09 20:45:14 +02:00
|
|
|
connection_or_write_cell_to_buf(&newcell, circ->n_conn);
|
2003-05-06 01:24:46 +02:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2004-02-29 04:52:38 +01:00
|
|
|
extern int has_completed_circuit;
|
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
int circuit_finish_handshake(circuit_t *circ, char *reply) {
|
|
|
|
unsigned char iv[16];
|
2003-12-17 06:58:30 +01:00
|
|
|
unsigned char keys[40+32];
|
2003-05-06 01:24:46 +02:00
|
|
|
crypt_path_t *hop;
|
|
|
|
|
|
|
|
memset(iv, 0, 16);
|
|
|
|
|
|
|
|
assert(circ->cpath);
|
|
|
|
if(circ->cpath->state == CPATH_STATE_AWAITING_KEYS)
|
|
|
|
hop = circ->cpath;
|
|
|
|
else {
|
|
|
|
for(hop=circ->cpath->next;
|
|
|
|
hop != circ->cpath && hop->state == CPATH_STATE_OPEN;
|
|
|
|
hop=hop->next) ;
|
|
|
|
if(hop == circ->cpath) { /* got an extended when we're all done? */
|
2003-10-10 03:48:32 +02:00
|
|
|
log_fn(LOG_WARN,"got extended when circ already built? Closing.");
|
2003-09-14 10:17:14 +02:00
|
|
|
return -1;
|
2003-05-06 01:24:46 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
assert(hop->state == CPATH_STATE_AWAITING_KEYS);
|
|
|
|
|
2003-12-17 06:58:30 +01:00
|
|
|
if(onion_skin_client_handshake(hop->handshake_state, reply, keys, 40+32) < 0) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log_fn(LOG_WARN,"onion_skin_client_handshake failed.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
crypto_dh_free(hop->handshake_state); /* don't need it anymore */
|
|
|
|
hop->handshake_state = NULL;
|
|
|
|
|
2004-03-18 20:22:56 +01:00
|
|
|
log_fn(LOG_DEBUG,"hop init digest forward 0x%.8x, backward 0x%.8x.",
|
|
|
|
(unsigned int)*(uint32_t*)keys, (unsigned int)*(uint32_t*)(keys+20));
|
2003-12-17 06:58:30 +01:00
|
|
|
hop->f_digest = crypto_new_digest_env(CRYPTO_SHA1_DIGEST);
|
|
|
|
crypto_digest_add_bytes(hop->f_digest, keys, 20);
|
|
|
|
hop->b_digest = crypto_new_digest_env(CRYPTO_SHA1_DIGEST);
|
|
|
|
crypto_digest_add_bytes(hop->b_digest, keys+20, 20);
|
|
|
|
|
2004-03-18 20:22:56 +01:00
|
|
|
log_fn(LOG_DEBUG,"hop init cipher forward 0x%.8x, backward 0x%.8x.",
|
|
|
|
(unsigned int)*(uint32_t*)(keys+40), (unsigned int)*(uint32_t*)(keys+40+16));
|
2003-05-06 01:24:46 +02:00
|
|
|
if (!(hop->f_crypto =
|
2003-12-17 06:58:30 +01:00
|
|
|
crypto_create_init_cipher(CIRCUIT_CIPHER,keys+40,iv,1))) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log(LOG_WARN,"forward cipher initialization failed.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
if (!(hop->b_crypto =
|
2003-12-17 06:58:30 +01:00
|
|
|
crypto_create_init_cipher(CIRCUIT_CIPHER,keys+40+16,iv,0))) {
|
2003-10-10 03:48:32 +02:00
|
|
|
log(LOG_WARN,"backward cipher initialization failed.");
|
2003-05-06 01:24:46 +02:00
|
|
|
return -1;
|
|
|
|
}
|
2003-04-16 08:18:31 +02:00
|
|
|
|
2003-05-06 01:24:46 +02:00
|
|
|
hop->state = CPATH_STATE_OPEN;
|
2003-09-26 12:03:50 +02:00
|
|
|
log_fn(LOG_INFO,"finished");
|
2004-02-29 04:52:38 +01:00
|
|
|
if(!has_completed_circuit) {
|
|
|
|
has_completed_circuit=1;
|
|
|
|
log_fn(LOG_WARN,"Tor has successfully opened a circuit. Looks like it's working.");
|
|
|
|
}
|
2004-02-28 08:01:22 +01:00
|
|
|
circuit_log_path(LOG_INFO,circ);
|
2004-03-20 05:59:29 +01:00
|
|
|
circuit_rep_hist_note_result(circ);
|
2003-04-16 08:18:31 +02:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2003-06-12 12:16:33 +02:00
|
|
|
int circuit_truncated(circuit_t *circ, crypt_path_t *layer) {
|
|
|
|
crypt_path_t *victim;
|
|
|
|
connection_t *stream;
|
|
|
|
|
|
|
|
assert(circ);
|
|
|
|
assert(layer);
|
|
|
|
|
2003-12-09 03:06:58 +01:00
|
|
|
/* XXX Since we don't ask for truncates currently, getting a truncated
|
|
|
|
* means that a connection broke or an extend failed. For now,
|
|
|
|
* just give up.
|
|
|
|
*/
|
2004-03-02 18:48:17 +01:00
|
|
|
circuit_mark_for_close(circ);
|
2003-12-09 03:06:58 +01:00
|
|
|
return 0;
|
|
|
|
|
2003-06-12 12:16:33 +02:00
|
|
|
while(layer->next != circ->cpath) {
|
|
|
|
/* we need to clear out layer->next */
|
|
|
|
victim = layer->next;
|
2003-06-18 00:18:26 +02:00
|
|
|
log_fn(LOG_DEBUG, "Killing a layer of the cpath.");
|
2003-06-12 12:16:33 +02:00
|
|
|
|
|
|
|
for(stream = circ->p_streams; stream; stream=stream->next_stream) {
|
|
|
|
if(stream->cpath_layer == victim) {
|
2003-12-19 06:09:51 +01:00
|
|
|
log_fn(LOG_INFO, "Marking stream %d for close.", stream->stream_id);
|
2003-10-21 10:37:07 +02:00
|
|
|
/* no need to send 'end' relay cells,
|
|
|
|
* because the other side's already dead
|
|
|
|
*/
|
2004-02-27 23:00:26 +01:00
|
|
|
connection_mark_for_close(stream,0);
|
2003-06-12 12:16:33 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
layer->next = victim->next;
|
|
|
|
circuit_free_cpath_node(victim);
|
|
|
|
}
|
|
|
|
|
2003-09-26 12:03:50 +02:00
|
|
|
log_fn(LOG_INFO, "finished");
|
2003-06-12 12:16:33 +02:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
cleanups, bugfixes, more verbose logs
Fixed up the assert_*_ok funcs some (more work remains)
Changed config so it reads either /etc/torrc or the -f arg, never both
Finally tracked down a nasty bug with our use of tls:
It turns out that if you ask SSL_read() for no more than n bytes, it
will read the entire record from the network (and maybe part of the next
record, I'm not sure), give you n bytes of it, and keep the remaining
bytes internally. This is fine, except our poll-for-read looks at the
network, and there are no bytes pending on the network, so we never know
to ask SSL_read() for more bytes. Currently I've hacked it so if we ask
for n bytes and it returns n bytes, then it reads again right then. This
will interact poorly with our rate limiting; we need a cleaner solution.
svn:r481
2003-09-24 23:24:52 +02:00
|
|
|
void assert_cpath_layer_ok(const crypt_path_t *cp)
|
2003-09-16 21:36:19 +02:00
|
|
|
{
|
|
|
|
assert(cp->f_crypto);
|
|
|
|
assert(cp->b_crypto);
|
|
|
|
assert(cp->addr);
|
|
|
|
assert(cp->port);
|
2003-12-17 22:09:31 +01:00
|
|
|
switch(cp->state)
|
2003-09-16 21:36:19 +02:00
|
|
|
{
|
|
|
|
case CPATH_STATE_CLOSED:
|
|
|
|
case CPATH_STATE_OPEN:
|
|
|
|
assert(!cp->handshake_state);
|
cleanups, bugfixes, more verbose logs
Fixed up the assert_*_ok funcs some (more work remains)
Changed config so it reads either /etc/torrc or the -f arg, never both
Finally tracked down a nasty bug with our use of tls:
It turns out that if you ask SSL_read() for no more than n bytes, it
will read the entire record from the network (and maybe part of the next
record, I'm not sure), give you n bytes of it, and keep the remaining
bytes internally. This is fine, except our poll-for-read looks at the
network, and there are no bytes pending on the network, so we never know
to ask SSL_read() for more bytes. Currently I've hacked it so if we ask
for n bytes and it returns n bytes, then it reads again right then. This
will interact poorly with our rate limiting; we need a cleaner solution.
svn:r481
2003-09-24 23:24:52 +02:00
|
|
|
break;
|
2003-09-16 21:36:19 +02:00
|
|
|
case CPATH_STATE_AWAITING_KEYS:
|
|
|
|
assert(cp->handshake_state);
|
cleanups, bugfixes, more verbose logs
Fixed up the assert_*_ok funcs some (more work remains)
Changed config so it reads either /etc/torrc or the -f arg, never both
Finally tracked down a nasty bug with our use of tls:
It turns out that if you ask SSL_read() for no more than n bytes, it
will read the entire record from the network (and maybe part of the next
record, I'm not sure), give you n bytes of it, and keep the remaining
bytes internally. This is fine, except our poll-for-read looks at the
network, and there are no bytes pending on the network, so we never know
to ask SSL_read() for more bytes. Currently I've hacked it so if we ask
for n bytes and it returns n bytes, then it reads again right then. This
will interact poorly with our rate limiting; we need a cleaner solution.
svn:r481
2003-09-24 23:24:52 +02:00
|
|
|
break;
|
2003-09-16 21:36:19 +02:00
|
|
|
default:
|
|
|
|
assert(0);
|
|
|
|
}
|
|
|
|
assert(cp->package_window >= 0);
|
|
|
|
assert(cp->deliver_window >= 0);
|
|
|
|
}
|
|
|
|
|
cleanups, bugfixes, more verbose logs
Fixed up the assert_*_ok funcs some (more work remains)
Changed config so it reads either /etc/torrc or the -f arg, never both
Finally tracked down a nasty bug with our use of tls:
It turns out that if you ask SSL_read() for no more than n bytes, it
will read the entire record from the network (and maybe part of the next
record, I'm not sure), give you n bytes of it, and keep the remaining
bytes internally. This is fine, except our poll-for-read looks at the
network, and there are no bytes pending on the network, so we never know
to ask SSL_read() for more bytes. Currently I've hacked it so if we ask
for n bytes and it returns n bytes, then it reads again right then. This
will interact poorly with our rate limiting; we need a cleaner solution.
svn:r481
2003-09-24 23:24:52 +02:00
|
|
|
void assert_cpath_ok(const crypt_path_t *cp)
|
2003-09-16 21:36:19 +02:00
|
|
|
{
|
|
|
|
while(cp->prev)
|
|
|
|
cp = cp->prev;
|
|
|
|
|
|
|
|
while(cp->next) {
|
|
|
|
assert_cpath_layer_ok(cp);
|
|
|
|
/* layers must be in sequence of: "open* awaiting? closed*" */
|
|
|
|
if (cp->prev) {
|
|
|
|
if (cp->prev->state == CPATH_STATE_OPEN) {
|
|
|
|
assert(cp->state == CPATH_STATE_CLOSED ||
|
|
|
|
cp->state == CPATH_STATE_AWAITING_KEYS);
|
|
|
|
} else {
|
|
|
|
assert(cp->state == CPATH_STATE_CLOSED);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
cp = cp->next;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-12-17 22:09:31 +01:00
|
|
|
void assert_circuit_ok(const circuit_t *c)
|
2003-09-16 21:36:19 +02:00
|
|
|
{
|
|
|
|
connection_t *conn;
|
|
|
|
|
2004-02-25 08:31:46 +01:00
|
|
|
assert(c);
|
|
|
|
assert(c->magic == CIRCUIT_MAGIC);
|
2004-03-02 18:48:17 +01:00
|
|
|
|
2004-03-03 03:24:17 +01:00
|
|
|
if (c->n_conn)
|
|
|
|
assert(c->n_conn->type == CONN_TYPE_OR);
|
2003-09-16 21:36:19 +02:00
|
|
|
if (c->p_conn)
|
|
|
|
assert(c->p_conn->type == CONN_TYPE_OR);
|
|
|
|
for (conn = c->p_streams; conn; conn = conn->next_stream)
|
2004-03-03 05:11:18 +01:00
|
|
|
assert(conn->type == CONN_TYPE_AP);
|
2003-09-16 21:36:19 +02:00
|
|
|
for (conn = c->n_streams; conn; conn = conn->next_stream)
|
|
|
|
assert(conn->type == CONN_TYPE_EXIT);
|
|
|
|
|
|
|
|
assert(c->deliver_window >= 0);
|
|
|
|
assert(c->package_window >= 0);
|
|
|
|
if (c->state == CIRCUIT_STATE_OPEN) {
|
|
|
|
if (c->cpath) {
|
|
|
|
assert(!c->n_crypto);
|
|
|
|
assert(!c->p_crypto);
|
2004-03-03 03:24:17 +01:00
|
|
|
assert(!c->n_digest);
|
2003-12-17 06:58:30 +01:00
|
|
|
assert(!c->p_digest);
|
2003-09-16 21:36:19 +02:00
|
|
|
} else {
|
|
|
|
assert(c->n_crypto);
|
|
|
|
assert(c->p_crypto);
|
2003-12-17 06:58:30 +01:00
|
|
|
assert(c->n_digest);
|
|
|
|
assert(c->p_digest);
|
2003-09-16 21:36:19 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
if (c->cpath) {
|
2004-03-03 05:11:18 +01:00
|
|
|
//XXX assert_cpath_ok(c->cpath);
|
2003-09-16 21:36:19 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-04-07 04:12:02 +02:00
|
|
|
/*
|
|
|
|
Local Variables:
|
|
|
|
mode:c
|
|
|
|
indent-tabs-mode:nil
|
|
|
|
c-basic-offset:2
|
|
|
|
End:
|
|
|
|
*/
|