2 This file is part of GNUnet.
3 Copyright (C) 2011-2013 GNUnet e.V.
5 GNUnet is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published
7 by the Free Software Foundation; either version 3, or (at your
8 option) any later version.
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with GNUnet; see the file COPYING. If not, write to the
17 Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
18 Boston, MA 02110-1301, USA.
22 * @file gns/gnunet-service-gns_resolver.c
23 * @brief GNU Name System resolver logic
24 * @author Martin Schanzenbach
25 * @author Christian Grothoff
28 #include "gnunet_util_lib.h"
29 #include "gnunet_dnsstub_lib.h"
30 #include "gnunet_dht_service.h"
31 #include "gnunet_gnsrecord_lib.h"
32 #include "gnunet_namecache_service.h"
33 #include "gnunet_namestore_service.h"
34 #include "gnunet_dns_service.h"
35 #include "gnunet_resolver_service.h"
36 #include "gnunet_revocation_service.h"
37 #include "gnunet_dnsparser_lib.h"
38 #include "gnunet_tun_lib.h"
39 #include "gnunet_gns_service.h"
41 #include "gnunet-service-gns_resolver.h"
42 #include "gnunet-service-gns_shorten.h"
43 #include "gnunet_vpn_service.h"
47 * Default DHT timeout for lookups.
49 #define DHT_LOOKUP_TIMEOUT GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_SECONDS, 60)
52 * Default timeout for DNS lookups.
54 #define DNS_LOOKUP_TIMEOUT GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_SECONDS, 15)
57 * Default timeout for VPN redirections.
59 #define VPN_TIMEOUT GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_MINUTES, 30)
62 * DHT replication level
64 #define DHT_GNS_REPLICATION_LEVEL 5
67 * How deep do we allow recursions to go before we abort?
69 #define MAX_RECURSION 256
73 * DLL to hold the authority chain we had to pass in the resolution
81 struct AuthorityChain *prev;
86 struct AuthorityChain *next;
89 * Resolver handle this entry in the chain belongs to.
91 struct GNS_ResolverHandle *rh;
94 * label/name corresponding to the authority
99 * label/name suggested for shortening to the authority
101 char *suggested_shortening_label;
104 * Do we already try to shorten this authority?
106 int shortening_started;
109 * #GNUNET_YES if the authority was a GNS authority,
110 * #GNUNET_NO if the authority was a DNS authority.
115 * Information about the resolver authority for this label.
121 * The zone of the GNS authority
123 struct GNUNET_CRYPTO_EcdsaPublicKey gns_authority;
128 * Domain of the DNS resolver that is the authority.
129 * (appended to construct the DNS name to resolve;
130 * this is NOT the DNS name of the DNS server!).
132 char name[GNUNET_DNSPARSER_MAX_NAME_LENGTH + 1];
135 * IP address of the DNS resolver that is authoritative.
136 * (this implementation currently only supports one
139 struct sockaddr_storage dns_ip;
149 * A result we got from DNS.
157 struct DnsResult *next;
162 struct DnsResult *prev;
165 * Binary value stored in the DNS record (appended to this struct)
170 * Expiration time for the DNS record, 0 if we didn't
171 * get anything useful (i.e. 'gethostbyname()' was used).
173 uint64_t expiration_time;
176 * Number of bytes in @e data.
181 * Type of the GNS/DNS record.
183 uint32_t record_type;
189 * Closure for #vpn_allocation_cb.
195 * Which resolution process are we processing.
197 struct GNS_ResolverHandle *rh;
200 * Handle to the VPN request that we were performing.
202 struct GNUNET_VPN_RedirectionRequest *vpn_request;
205 * Number of records serialized in @e rd_data.
207 unsigned int rd_count;
210 * Serialized records.
215 * Number of bytes in @e rd_data.
222 * Information we keep during the resolution of an
223 * IP address for a DNS server while handling a
226 struct Gns2DnsContext
230 * DNS domain in which the resolution will continue
231 * (first part of the GNS2DNS record).
236 * Handle for the resolution of the IP part of the
237 * GNS2DNS record. Will return to us the addresses
238 * of the DNS resolver to use.
240 struct GNS_ResolverHandle *rh;
246 * Handle to a currenty pending resolution. On result (positive or
247 * negative) the #GNS_ResultProcessor is called.
249 struct GNS_ResolverHandle
255 struct GNS_ResolverHandle *next;
260 struct GNS_ResolverHandle *prev;
263 * The top-level GNS authoritative zone to query
265 struct GNUNET_CRYPTO_EcdsaPublicKey authority_zone;
268 * called when resolution phase finishes
270 GNS_ResultProcessor proc;
273 * closure passed to @e proc
278 * Handle used during GNS2DNS resolution for looking up the
279 * IP address of the DNS server.
281 struct Gns2DnsContext *g2dc;
284 * Handle for DHT lookups. should be NULL if no lookups are in progress
286 struct GNUNET_DHT_GetHandle *get_handle;
289 * Handle to a VPN request, NULL if none is active.
291 struct VpnContext *vpn_ctx;
294 * Socket for a DNS request, NULL if none is active.
296 struct GNUNET_DNSSTUB_RequestSocket *dns_request;
299 * Handle for standard DNS resolution, NULL if none is active.
301 struct GNUNET_RESOLVER_RequestHandle *std_resolve;
304 * Pending Namecache lookup task
306 struct GNUNET_NAMECACHE_QueueEntry *namecache_qe;
309 * Pending revocation check.
311 struct GNUNET_REVOCATION_Query *rev_check;
314 * Heap node associated with this lookup. Used to limit number of
315 * concurrent requests.
317 struct GNUNET_CONTAINER_HeapNode *dht_heap_node;
320 * DLL to store the authority chain
322 struct AuthorityChain *ac_head;
325 * DLL to store the authority chain
327 struct AuthorityChain *ac_tail;
330 * Private key of the shorten zone, NULL to not shorten.
332 struct GNUNET_CRYPTO_EcdsaPrivateKey *shorten_key;
335 * ID of a task associated with the resolution process.
337 struct GNUNET_SCHEDULER_Task * task_id;
340 * The name to resolve
345 * DLL of results we got from DNS.
347 struct DnsResult *dns_result_head;
350 * DLL of results we got from DNS.
352 struct DnsResult *dns_result_tail;
355 * Current offset in 'name' where we are resolving.
357 size_t name_resolution_pos;
362 enum GNUNET_GNS_LocalOptions options;
365 * For SRV and TLSA records, the number of the
366 * protocol specified in the name. 0 if no protocol was given.
371 * For SRV and TLSA records, the number of the
372 * service specified in the name. 0 if no service was given.
377 * Desired type for the resolution.
382 * We increment the loop limiter for each step in a recursive
383 * resolution. If it passes our threshold (i.e. due to
384 * self-recursion in the resolution, i.e CNAME fun), we stop.
386 unsigned int loop_limiter;
392 * Active namestore caching operations.
398 * Organized in a DLL.
400 struct CacheOps *next;
403 * Organized in a DLL.
405 struct CacheOps *prev;
408 * Pending Namestore caching task.
410 struct GNUNET_NAMECACHE_QueueEntry *namecache_qe_cache;
416 * Our handle to the namecache service
418 static struct GNUNET_NAMECACHE_Handle *namecache_handle;
421 * Our handle to the vpn service
423 static struct GNUNET_VPN_Handle *vpn_handle;
426 * Resolver handle to the dht
428 static struct GNUNET_DHT_Handle *dht_handle;
431 * Handle to perform DNS lookups.
433 static struct GNUNET_DNSSTUB_Context *dns_handle;
436 * Heap for limiting parallel DHT lookups
438 static struct GNUNET_CONTAINER_Heap *dht_lookup_heap;
441 * Maximum amount of parallel queries to the DHT
443 static unsigned long long max_allowed_background_queries;
446 * Head of resolver lookup list
448 static struct GNS_ResolverHandle *rlh_head;
451 * Tail of resolver lookup list
453 static struct GNS_ResolverHandle *rlh_tail;
456 * Organized in a DLL.
458 static struct CacheOps *co_head;
461 * Organized in a DLL.
463 static struct CacheOps *co_tail;
468 static int use_cache;
471 * Global configuration.
473 static const struct GNUNET_CONFIGURATION_Handle *cfg;
477 * Determine if this name is canonical (is a legal name in a zone, without delegation);
478 * note that we do not test that the name does not contain illegal characters, we only
479 * test for delegation. Note that service records (i.e. _foo._srv) are canonical names
480 * even though they consist of multiple labels.
483 * a.b.gnu = not canonical
485 * _foo._srv = canonical
486 * _f.bar = not canonical
488 * @param name the name to test
489 * @return #GNUNET_YES if canonical
492 is_canonical (const char *name)
497 if (NULL == strchr (name, '.'))
502 while (NULL != (dot = strchr (pos, '.')))
510 /* ************************** Resolution **************************** */
513 * Expands a name ending in .+ with the zone of origin.
515 * @param rh resolution context
516 * @param name name to modify (to be free'd or returned)
517 * @return updated name
520 translate_dot_plus (struct GNS_ResolverHandle *rh,
524 size_t s_len = strlen (name);
526 if (0 != strcmp (&name[s_len - 2],
528 return name; /* did not end in ".+" */
529 GNUNET_assert (GNUNET_YES == rh->ac_tail->gns_authority);
530 GNUNET_asprintf (&ret,
534 GNUNET_GNSRECORD_pkey_to_zkey (&rh->ac_tail->authority_info.gns_authority));
541 * Task scheduled to asynchronously fail a resolution.
543 * @param cls the 'struct GNS_ResolverHandle' of the resolution to fail
546 fail_resolution (void *cls)
548 struct GNS_ResolverHandle *rh = cls;
551 rh->proc (rh->proc_cls, 0, NULL);
552 GNS_resolver_lookup_cancel (rh);
556 #if (defined WINDOWS) || (defined DARWIN)
557 /* Don't have this on W32, here's a naive implementation
558 * Was somehow removed on OS X ... */
560 memrchr (const void *s,
564 const unsigned char *ucs = s;
567 for (i = n - 1; i >= 0; i--)
568 if (c == (int) ucs[i])
569 return (void *) &ucs[i];
576 * Get the next, rightmost label from the name that we are trying to resolve,
577 * and update the resolution position accordingly. Labels usually consist
578 * of up to 63 characters without a period ("."); however, we use a special
579 * convention to support SRV and TLSA records where the domain name
580 * includes an encoding for a service and protocol in the name. The
581 * syntax (see RFC 2782) here is "_Service._Proto.Name" and in this
582 * special case we include the "_Service._Proto" in the rightmost label.
583 * Thus, for "_443._tcp.foo.bar" we first return the label "bar" and then
584 * the label "_443._tcp.foo". The special case is detected by the
585 * presence of labels beginning with an underscore. Whenever a label
586 * begins with an underscore, it is combined with the label to its right
587 * (and the "." is preserved).
589 * @param rh handle to the resolution operation to get the next label from
590 * @return NULL if there are no more labels
593 resolver_lookup_get_next_label (struct GNS_ResolverHandle *rh)
604 if (0 == rh->name_resolution_pos)
606 dot = memrchr (rh->name,
608 rh->name_resolution_pos);
611 /* done, this was the last one */
612 len = rh->name_resolution_pos;
614 rh->name_resolution_pos = 0;
618 /* advance by one label */
619 len = rh->name_resolution_pos - (dot - rh->name) - 1;
621 rh->name_resolution_pos = dot - rh->name;
625 ret = GNUNET_strndup (rp, len);
626 /* If we have labels starting with underscore with label on
627 * the right (SRV/DANE/BOX case), determine port/protocol;
628 * The format of `rh->name` must be "_PORT._PROTOCOL".
630 if ( ('_' == rh->name[0]) &&
631 (NULL != (dot = memrchr (rh->name,
633 rh->name_resolution_pos))) &&
635 (NULL == memrchr (rh->name,
639 srv_name = GNUNET_strndup (&rh->name[1],
640 (dot - rh->name) - 1);
641 proto_name = GNUNET_strndup (&dot[2],
642 rh->name_resolution_pos - (dot - rh->name) - 1);
643 rh->name_resolution_pos = 0;
644 pe = getprotobyname (proto_name);
647 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
648 _("Protocol `%s' unknown, skipping labels.\n"),
650 GNUNET_free (proto_name);
651 GNUNET_free (srv_name);
654 se = getservbyname (srv_name,
658 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
659 _("Service `%s' unknown for protocol `%s', skipping labels.\n"),
662 GNUNET_free (proto_name);
663 GNUNET_free (srv_name);
666 rh->protocol = pe->p_proto;
667 rh->service = se->s_port;
674 * Gives the cummulative result obtained to the callback and clean up the request.
676 * @param rh resolution process that has culminated in a result
679 transmit_lookup_dns_result (struct GNS_ResolverHandle *rh)
681 struct DnsResult *pos;
686 for (pos = rh->dns_result_head; NULL != pos; pos = pos->next)
689 struct GNUNET_GNSRECORD_Data rd[n];
692 for (pos = rh->dns_result_head; NULL != pos; pos = pos->next)
694 rd[i].data = pos->data;
695 rd[i].data_size = pos->data_size;
696 rd[i].record_type = pos->record_type;
697 if (0 == pos->expiration_time)
699 rd[i].flags = GNUNET_GNSRECORD_RF_RELATIVE_EXPIRATION;
700 rd[i].expiration_time = 0;
704 rd[i].flags = GNUNET_GNSRECORD_RF_NONE;
705 rd[i].expiration_time = pos->expiration_time;
709 GNUNET_assert (i == n);
710 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
711 "Transmitting standard DNS result with %u records\n",
713 rh->proc (rh->proc_cls,
717 GNS_resolver_lookup_cancel (rh);
722 * Add a result from DNS to the records to be returned to the application.
724 * @param rh resolution request to extend with a result
725 * @param expiration_time expiration time for the answer
726 * @param record_type DNS record type of the answer
727 * @param data_size number of bytes in @a data
728 * @param data binary data to return in DNS record
731 add_dns_result (struct GNS_ResolverHandle *rh,
732 uint64_t expiration_time,
733 uint32_t record_type,
737 struct DnsResult *res;
739 res = GNUNET_malloc (sizeof (struct DnsResult) + data_size);
740 res->expiration_time = expiration_time;
741 res->data_size = data_size;
742 res->record_type = record_type;
744 GNUNET_memcpy (&res[1], data, data_size);
745 GNUNET_CONTAINER_DLL_insert (rh->dns_result_head,
752 * We had to do a DNS lookup. Convert the result (if any) and return
755 * @param cls closure with the `struct GNS_ResolverHandle`
756 * @param addr one of the addresses of the host, NULL for the last address
757 * @param addrlen length of the address
760 handle_dns_result (void *cls,
761 const struct sockaddr *addr,
764 struct GNS_ResolverHandle *rh = cls;
765 const struct sockaddr_in *sa4;
766 const struct sockaddr_in6 *sa6;
770 rh->std_resolve = NULL;
771 transmit_lookup_dns_result (rh);
774 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
775 "Received %u bytes of DNS IP data\n",
777 switch (addr->sa_family)
780 sa4 = (const struct sockaddr_in *) addr;
782 0 /* expiration time is unknown */,
783 GNUNET_DNSPARSER_TYPE_A,
784 sizeof (struct in_addr),
788 sa6 = (const struct sockaddr_in6 *) addr;
790 0 /* expiration time is unknown */,
791 GNUNET_DNSPARSER_TYPE_AAAA,
792 sizeof (struct in6_addr),
803 * Task scheduled to continue with the resolution process.
805 * @param cls the 'struct GNS_ResolverHandle' of the resolution
806 * @param tc task context
809 recursive_resolution (void *cls);
813 * Begin the resolution process from 'name', starting with
814 * the identification of the zone specified by 'name'.
816 * @param rh resolution to perform
819 start_resolver_lookup (struct GNS_ResolverHandle *rh);
823 * Function called with the result of a DNS resolution.
825 * @param cls the request handle of the resolution that
826 * we were attempting to make
827 * @param rs socket that received the response
828 * @param dns dns response, never NULL
829 * @param dns_len number of bytes in @a dns
832 dns_result_parser (void *cls,
833 struct GNUNET_DNSSTUB_RequestSocket *rs,
834 const struct GNUNET_TUN_DnsHeader *dns,
837 struct GNS_ResolverHandle *rh = cls;
838 struct GNUNET_DNSPARSER_Packet *p;
839 const struct GNUNET_DNSPARSER_Record *rec;
840 unsigned int rd_count;
843 rh->dns_request = NULL;
844 GNUNET_SCHEDULER_cancel (rh->task_id);
846 p = GNUNET_DNSPARSER_parse ((const char *) dns,
850 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
851 _("Failed to parse DNS response\n"));
852 rh->proc (rh->proc_cls, 0, NULL);
853 GNS_resolver_lookup_cancel (rh);
856 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
857 "Received DNS response for `%s' with %u answers\n",
859 (unsigned int) p->num_answers);
860 if ( (p->num_answers > 0) &&
861 (GNUNET_DNSPARSER_TYPE_CNAME == p->answers[0].type) &&
862 (GNUNET_DNSPARSER_TYPE_CNAME != rh->record_type) )
864 GNUNET_free (rh->name);
865 rh->name = GNUNET_strdup (p->answers[0].data.hostname);
866 rh->name_resolution_pos = strlen (rh->name);
867 start_resolver_lookup (rh);
868 GNUNET_DNSPARSER_free_packet (p);
872 /* convert from (parsed) DNS to (binary) GNS format! */
873 rd_count = p->num_answers + p->num_authority_records + p->num_additional_records;
875 struct GNUNET_GNSRECORD_Data rd[rd_count];
877 char buf[UINT16_MAX];
883 memset (rd, 0, sizeof (rd));
884 for (i=0;i<rd_count;i++)
886 if (i < p->num_answers)
887 rec = &p->answers[i];
888 else if (i < p->num_answers + p->num_authority_records)
889 rec = &p->authority_records[i - p->num_answers];
891 rec = &p->additional_records[i - p->num_answers - p->num_authority_records];
892 /* As we copied the full DNS name to 'rh->ac_tail->label', this
893 should be the correct check to see if this record is actually
894 a record for our label... */
895 if (0 != strcmp (rec->name,
898 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
899 "Dropping record `%s', does not match desired name `%s'\n",
905 rd[i - skip].record_type = rec->type;
906 rd[i - skip].expiration_time = rec->expiration_time.abs_value_us;
909 case GNUNET_DNSPARSER_TYPE_A:
910 if (rec->data.raw.data_len != sizeof (struct in_addr))
916 rd[i - skip].data_size = rec->data.raw.data_len;
917 rd[i - skip].data = rec->data.raw.data;
919 case GNUNET_DNSPARSER_TYPE_AAAA:
920 if (rec->data.raw.data_len != sizeof (struct in6_addr))
926 rd[i - skip].data_size = rec->data.raw.data_len;
927 rd[i - skip].data = rec->data.raw.data;
929 case GNUNET_DNSPARSER_TYPE_CNAME:
930 case GNUNET_DNSPARSER_TYPE_PTR:
931 case GNUNET_DNSPARSER_TYPE_NS:
934 GNUNET_DNSPARSER_builder_add_name (buf,
943 rd[i - skip].data_size = buf_off - buf_start;
944 rd[i - skip].data = &buf[buf_start];
946 case GNUNET_DNSPARSER_TYPE_SOA:
949 GNUNET_DNSPARSER_builder_add_soa (buf,
958 rd[i - skip].data_size = buf_off - buf_start;
959 rd[i - skip].data = &buf[buf_start];
961 case GNUNET_DNSPARSER_TYPE_MX:
964 GNUNET_DNSPARSER_builder_add_mx (buf,
973 rd[i - skip].data_size = buf_off - buf_start;
974 rd[i - skip].data = &buf[buf_start];
976 case GNUNET_DNSPARSER_TYPE_SRV:
979 GNUNET_DNSPARSER_builder_add_srv (buf,
988 rd[i - skip].data_size = buf_off - buf_start;
989 rd[i - skip].data = &buf[buf_start];
992 GNUNET_log (GNUNET_ERROR_TYPE_INFO,
993 _("Skipping record of unsupported type %d\n"),
999 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1000 "Returning DNS response for `%s' with %u answers\n",
1002 (unsigned int) p->num_answers);
1003 rh->proc (rh->proc_cls, rd_count - skip, rd);
1004 GNS_resolver_lookup_cancel (rh);
1006 GNUNET_DNSPARSER_free_packet (p);
1011 * Perform recursive DNS resolution. Asks the given DNS resolver to
1012 * resolve "rh->dns_name", possibly recursively proceeding following
1013 * NS delegations, CNAMES, etc., until 'rh->loop_limiter' bounds us or
1014 * we find the answer.
1016 * @param rh resolution information
1019 recursive_dns_resolution (struct GNS_ResolverHandle *rh)
1021 struct AuthorityChain *ac;
1023 struct GNUNET_DNSPARSER_Query *query;
1024 struct GNUNET_DNSPARSER_Packet *p;
1026 size_t dns_request_length;
1029 GNUNET_assert (NULL != ac);
1030 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1031 "Starting DNS lookup for `%s'\n",
1033 GNUNET_assert (GNUNET_NO == ac->gns_authority);
1034 switch (((const struct sockaddr *) &ac->authority_info.dns_authority.dns_ip)->sa_family)
1037 sa_len = sizeof (struct sockaddr_in);
1040 sa_len = sizeof (struct sockaddr_in6);
1044 rh->proc (rh->proc_cls, 0, NULL);
1045 GNS_resolver_lookup_cancel (rh);
1048 query = GNUNET_new (struct GNUNET_DNSPARSER_Query);
1049 query->name = GNUNET_strdup (ac->label);
1050 query->type = rh->record_type;
1051 query->dns_traffic_class = GNUNET_TUN_DNS_CLASS_INTERNET;
1052 p = GNUNET_new (struct GNUNET_DNSPARSER_Packet);
1055 p->id = (uint16_t) GNUNET_CRYPTO_random_u32 (GNUNET_CRYPTO_QUALITY_NONCE,
1057 p->flags.opcode = GNUNET_TUN_DNS_OPCODE_QUERY;
1058 p->flags.recursion_desired = 1;
1060 GNUNET_DNSPARSER_pack (p, 1024, &dns_request, &dns_request_length))
1063 rh->proc (rh->proc_cls, 0, NULL);
1064 GNS_resolver_lookup_cancel (rh);
1068 rh->dns_request = GNUNET_DNSSTUB_resolve (dns_handle,
1069 (const struct sockaddr *) &ac->authority_info.dns_authority.dns_ip,
1075 rh->task_id = GNUNET_SCHEDULER_add_delayed (DNS_LOOKUP_TIMEOUT,
1079 GNUNET_free (dns_request);
1080 GNUNET_DNSPARSER_free_packet (p);
1085 * We encountered a CNAME record during our resolution.
1086 * Merge it into our chain.
1088 * @param rh resolution we are performing
1089 * @param cname value of the cname record we got for the current
1090 * authority chain tail
1093 handle_gns_cname_result (struct GNS_ResolverHandle *rh,
1098 struct AuthorityChain *ac;
1100 nlen = strlen (cname);
1103 &cname[nlen - 2])) )
1105 /* CNAME resolution continues relative to current domain */
1106 if (0 == rh->name_resolution_pos)
1108 res = GNUNET_strndup (cname, nlen - 2);
1109 rh->name_resolution_pos = nlen - 2;
1113 GNUNET_asprintf (&res,
1115 (int) rh->name_resolution_pos,
1119 rh->name_resolution_pos = strlen (res);
1121 GNUNET_free (rh->name);
1123 ac = GNUNET_new (struct AuthorityChain);
1125 ac->gns_authority = GNUNET_YES;
1126 ac->authority_info.gns_authority = rh->ac_tail->authority_info.gns_authority;
1127 ac->label = resolver_lookup_get_next_label (rh);
1128 ac->suggested_shortening_label = NULL;
1129 ac->shortening_started = GNUNET_NO;
1130 /* add AC to tail */
1131 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1134 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1138 /* name is absolute, start from the beginning */
1139 GNUNET_free (rh->name);
1140 rh->name = GNUNET_strdup (cname);
1141 rh->name_resolution_pos = strlen (rh->name);
1142 start_resolver_lookup (rh);
1147 * Process a records that were decrypted from a block.
1149 * @param cls closure with the 'struct GNS_ResolverHandle'
1150 * @param rd_count number of entries in @a rd array
1151 * @param rd array of records with data to store
1154 handle_gns_resolution_result (void *cls,
1155 unsigned int rd_count,
1156 const struct GNUNET_GNSRECORD_Data *rd);
1160 * Callback invoked from the VPN service once a redirection is
1161 * available. Provides the IP address that can now be used to
1162 * reach the requested destination. Replaces the "VPN" record
1163 * with the respective A/AAAA record and continues processing.
1165 * @param cls closure
1166 * @param af address family, AF_INET or AF_INET6; AF_UNSPEC on error;
1167 * will match 'result_af' from the request
1168 * @param address IP address (struct in_addr or struct in_addr6, depending on 'af')
1169 * that the VPN allocated for the redirection;
1170 * traffic to this IP will now be redirected to the
1171 * specified target peer; NULL on error
1174 vpn_allocation_cb (void *cls,
1176 const void *address)
1178 struct VpnContext *vpn_ctx = cls;
1179 struct GNS_ResolverHandle *rh = vpn_ctx->rh;
1180 struct GNUNET_GNSRECORD_Data rd[vpn_ctx->rd_count];
1183 vpn_ctx->vpn_request = NULL;
1185 GNUNET_assert (GNUNET_OK ==
1186 GNUNET_GNSRECORD_records_deserialize (vpn_ctx->rd_data_size,
1190 for (i=0;i<vpn_ctx->rd_count;i++)
1192 if (GNUNET_GNSRECORD_TYPE_VPN == rd[i].record_type)
1197 rd[i].record_type = GNUNET_DNSPARSER_TYPE_A;
1198 rd[i].data_size = sizeof (struct in_addr);
1199 rd[i].expiration_time = GNUNET_TIME_relative_to_absolute (VPN_TIMEOUT).abs_value_us;
1201 rd[i].data = address;
1204 rd[i].record_type = GNUNET_DNSPARSER_TYPE_AAAA;
1205 rd[i].expiration_time = GNUNET_TIME_relative_to_absolute (VPN_TIMEOUT).abs_value_us;
1207 rd[i].data = address;
1208 rd[i].data_size = sizeof (struct in6_addr);
1216 GNUNET_assert (i < vpn_ctx->rd_count);
1217 handle_gns_resolution_result (rh,
1220 GNUNET_free (vpn_ctx->rd_data);
1221 GNUNET_free (vpn_ctx);
1226 * We've resolved the IP address for the DNS resolver to use
1227 * after encountering a GNS2DNS record.
1229 * TODO: Right now we only foward the request to ONE DNS resolver,
1230 * even if we get multiple IP addresses back; a correct implementation
1231 * should try all DNS resolvers.
1233 * @param cls the `struct GNS_ResolverHandle` where we encountered
1234 * the GNS2DNS record
1235 * @param rd_count number of records in @a rd
1236 * @param rd addresses for the DNS resolver (presumably)
1239 handle_gns2dns_result (void *cls,
1240 unsigned int rd_count,
1241 const struct GNUNET_GNSRECORD_Data *rd)
1243 struct GNS_ResolverHandle *rh = cls;
1244 struct AuthorityChain *ac;
1246 struct sockaddr *sa;
1247 struct sockaddr_in v4;
1248 struct sockaddr_in6 v6;
1251 /* find suitable A/AAAA record */
1252 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1253 "Received %u results for IP address of DNS server for GNS2DNS transition\n",
1255 /* enable cleanup of 'rh' handle that comes next... */
1256 GNUNET_CONTAINER_DLL_insert (rlh_head,
1259 rh->g2dc->rh = NULL;
1262 for (j=0;j<rd_count;j++)
1264 switch (rd[j].record_type)
1266 case GNUNET_DNSPARSER_TYPE_A:
1267 if (sizeof (struct in_addr) != rd[j].data_size)
1269 GNUNET_break_op (0);
1270 rh->proc (rh->proc_cls, 0, NULL);
1271 GNS_resolver_lookup_cancel (rh);
1274 /* FIXME: might want to check if we support IPv4 here,
1275 and otherwise skip this one and hope we find another */
1276 memset (&v4, 0, sizeof (v4));
1277 sa_len = sizeof (v4);
1278 v4.sin_family = AF_INET;
1279 v4.sin_port = htons (53);
1280 #if HAVE_SOCKADDR_IN_SIN_LEN
1281 v4.sin_len = (u_char) sa_len;
1283 GNUNET_memcpy (&v4.sin_addr,
1285 sizeof (struct in_addr));
1286 sa = (struct sockaddr *) &v4;
1288 case GNUNET_DNSPARSER_TYPE_AAAA:
1289 if (sizeof (struct in6_addr) != rd[j].data_size)
1291 GNUNET_break_op (0);
1292 rh->proc (rh->proc_cls, 0, NULL);
1293 GNS_resolver_lookup_cancel (rh);
1296 /* FIXME: might want to check if we support IPv6 here,
1297 and otherwise skip this one and hope we find another */
1298 memset (&v6, 0, sizeof (v6));
1299 sa_len = sizeof (v6);
1300 v6.sin6_family = AF_INET6;
1301 v6.sin6_port = htons (53);
1302 #if HAVE_SOCKADDR_IN_SIN_LEN
1303 v6.sin6_len = (u_char) sa_len;
1305 GNUNET_memcpy (&v6.sin6_addr,
1307 sizeof (struct in6_addr));
1308 sa = (struct sockaddr *) &v6;
1318 /* we cannot continue; NS without A/AAAA */
1319 rh->proc (rh->proc_cls, 0, NULL);
1320 GNS_resolver_lookup_cancel (rh);
1323 /* expand authority chain */
1324 ac = GNUNET_new (struct AuthorityChain);
1326 GNUNET_assert (strlen (rh->g2dc->ns) <= GNUNET_DNSPARSER_MAX_NAME_LENGTH);
1327 strcpy (ac->authority_info.dns_authority.name,
1329 GNUNET_memcpy (&ac->authority_info.dns_authority.dns_ip,
1332 /* for DNS recursion, the label is the full DNS name,
1333 created from the remainder of the GNS name and the
1334 name in the NS record */
1335 GNUNET_asprintf (&ac->label,
1337 (int) rh->name_resolution_pos,
1339 (0 != rh->name_resolution_pos) ? "." : "",
1341 GNUNET_free (rh->g2dc->ns);
1342 GNUNET_free (rh->g2dc);
1344 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1345 "Will continue resolution using DNS server `%s' to resolve `%s'\n",
1346 GNUNET_a2s (sa, sa_len),
1348 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1351 if (strlen (ac->label) > GNUNET_DNSPARSER_MAX_NAME_LENGTH)
1353 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1354 _("GNS lookup resulted in DNS name that is too long (`%s')\n"),
1356 rh->proc (rh->proc_cls, 0, NULL);
1357 GNS_resolver_lookup_cancel (rh);
1361 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1367 * Process a records that were decrypted from a block.
1369 * @param cls closure with the `struct GNS_ResolverHandle`
1370 * @param rd_count number of entries in @a rd array
1371 * @param rd array of records with data to store
1374 handle_gns_resolution_result (void *cls,
1375 unsigned int rd_count,
1376 const struct GNUNET_GNSRECORD_Data *rd)
1378 struct GNS_ResolverHandle *rh = cls;
1379 struct AuthorityChain *ac;
1380 struct AuthorityChain *shorten_ac;
1383 struct VpnContext *vpn_ctx;
1384 const struct GNUNET_TUN_GnsVpnRecord *vpn;
1386 struct GNUNET_HashCode vhash;
1388 char scratch[UINT16_MAX];
1390 size_t scratch_start;
1392 struct GNUNET_GNSRECORD_Data rd_new[rd_count];
1393 unsigned int rd_off;
1395 GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1396 "Resolution succeeded for `%s' in zone %s, got %u records\n",
1398 GNUNET_GNSRECORD_z2s (&rh->ac_tail->authority_info.gns_authority),
1400 if (0 == rh->name_resolution_pos)
1402 /* top-level match, are we done yet? */
1403 if ( (rd_count > 0) &&
1404 (GNUNET_DNSPARSER_TYPE_CNAME == rd[0].record_type) &&
1405 (GNUNET_DNSPARSER_TYPE_CNAME != rh->record_type) )
1408 cname = GNUNET_DNSPARSER_parse_name (rd[0].data,
1411 if ( (NULL == cname) ||
1412 (off != rd[0].data_size) )
1414 GNUNET_break_op (0);
1415 rh->proc (rh->proc_cls, 0, NULL);
1416 GNS_resolver_lookup_cancel (rh);
1417 GNUNET_free_non_null (cname);
1420 handle_gns_cname_result (rh,
1422 GNUNET_free (cname);
1425 /* If A/AAAA was requested, but we got a VPN
1426 record, we convert it to A/AAAA using GNUnet VPN */
1427 if ( (GNUNET_DNSPARSER_TYPE_A == rh->record_type) ||
1428 (GNUNET_DNSPARSER_TYPE_AAAA == rh->record_type) )
1430 for (i=0;i<rd_count;i++)
1432 switch (rd[i].record_type)
1434 case GNUNET_GNSRECORD_TYPE_VPN:
1436 af = (GNUNET_DNSPARSER_TYPE_A == rh->record_type) ? AF_INET : AF_INET6;
1437 if (sizeof (struct GNUNET_TUN_GnsVpnRecord) >
1440 GNUNET_break_op (0);
1441 rh->proc (rh->proc_cls, 0, NULL);
1442 GNS_resolver_lookup_cancel (rh);
1445 vpn = (const struct GNUNET_TUN_GnsVpnRecord *) rd[i].data;
1446 vname = (const char *) &vpn[1];
1447 if ('\0' != vname[rd[i].data_size - 1 - sizeof (struct GNUNET_TUN_GnsVpnRecord)])
1449 GNUNET_break_op (0);
1450 rh->proc (rh->proc_cls, 0, NULL);
1451 GNS_resolver_lookup_cancel (rh);
1454 GNUNET_TUN_service_name_to_hash (vname,
1456 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1457 "Attempting VPN allocation for %s-%s (AF: %d, proto %d)\n",
1458 GNUNET_i2s (&vpn->peer),
1461 (int) ntohs (vpn->proto));
1462 vpn_ctx = GNUNET_new (struct VpnContext);
1463 rh->vpn_ctx = vpn_ctx;
1465 vpn_ctx->rd_data_size = GNUNET_GNSRECORD_records_get_size (rd_count,
1467 vpn_ctx->rd_data = GNUNET_malloc (vpn_ctx->rd_data_size);
1468 vpn_ctx->rd_count = rd_count;
1469 GNUNET_assert (vpn_ctx->rd_data_size ==
1470 GNUNET_GNSRECORD_records_serialize (rd_count,
1472 vpn_ctx->rd_data_size,
1474 vpn_ctx->vpn_request = GNUNET_VPN_redirect_to_peer (vpn_handle,
1479 GNUNET_TIME_relative_to_absolute (VPN_TIMEOUT),
1484 case GNUNET_GNSRECORD_TYPE_GNS2DNS:
1486 /* delegation to DNS */
1487 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1488 "Found GNS2DNS record, delegating to DNS!\n");
1495 } /* end: name_resolution_pos */
1496 /* convert relative names in record values to absolute names,
1497 using 'scratch' array for memory allocations */
1500 shorten_ac = rh->ac_tail;
1501 for (i=0;i<rd_count;i++)
1503 if ( (0 != rh->protocol) &&
1504 (0 != rh->service) &&
1505 (GNUNET_GNSRECORD_TYPE_BOX != rd[i].record_type) )
1506 continue; /* we _only_ care about boxed records */
1508 rd_new[rd_off] = rd[i];
1509 /* Check if the embedded name(s) end in "+", and if so,
1510 replace the "+" with the zone at "ac_tail", changing the name
1511 to a ".zkey". The name is allocated on the 'scratch' array,
1512 so we can free it afterwards. */
1513 switch (rd[i].record_type)
1515 case GNUNET_DNSPARSER_TYPE_CNAME:
1520 cname = GNUNET_DNSPARSER_parse_name (rd[i].data,
1523 if ( (NULL == cname) ||
1524 (off != rd[i].data_size) )
1526 GNUNET_break_op (0); /* record not well-formed */
1530 cname = translate_dot_plus (rh, cname);
1531 GNUNET_break (NULL != cname);
1532 scratch_start = scratch_off;
1534 GNUNET_DNSPARSER_builder_add_name (scratch,
1543 rd_new[rd_off].data = &scratch[scratch_start];
1544 rd_new[rd_off].data_size = scratch_off - scratch_start;
1548 GNUNET_free_non_null (cname);
1551 case GNUNET_DNSPARSER_TYPE_SOA:
1553 struct GNUNET_DNSPARSER_SoaRecord *soa;
1556 soa = GNUNET_DNSPARSER_parse_soa (rd[i].data,
1559 if ( (NULL == soa) ||
1560 (off != rd[i].data_size) )
1562 GNUNET_break_op (0); /* record not well-formed */
1566 soa->mname = translate_dot_plus (rh, soa->mname);
1567 soa->rname = translate_dot_plus (rh, soa->rname);
1568 scratch_start = scratch_off;
1570 GNUNET_DNSPARSER_builder_add_soa (scratch,
1579 rd_new[rd_off].data = &scratch[scratch_start];
1580 rd_new[rd_off].data_size = scratch_off - scratch_start;
1585 GNUNET_DNSPARSER_free_soa (soa);
1588 case GNUNET_DNSPARSER_TYPE_MX:
1590 struct GNUNET_DNSPARSER_MxRecord *mx;
1593 mx = GNUNET_DNSPARSER_parse_mx (rd[i].data,
1596 if ( (NULL == mx) ||
1597 (off != rd[i].data_size) )
1599 GNUNET_break_op (0); /* record not well-formed */
1603 mx->mxhost = translate_dot_plus (rh, mx->mxhost);
1604 scratch_start = scratch_off;
1606 GNUNET_DNSPARSER_builder_add_mx (scratch,
1615 rd_new[rd_off].data = &scratch[scratch_start];
1616 rd_new[rd_off].data_size = scratch_off - scratch_start;
1621 GNUNET_DNSPARSER_free_mx (mx);
1624 case GNUNET_DNSPARSER_TYPE_SRV:
1626 struct GNUNET_DNSPARSER_SrvRecord *srv;
1629 srv = GNUNET_DNSPARSER_parse_srv (rd[i].data,
1632 if ( (NULL == srv) ||
1633 (off != rd[i].data_size) )
1635 GNUNET_break_op (0); /* record not well-formed */
1639 srv->target = translate_dot_plus (rh, srv->target);
1640 scratch_start = scratch_off;
1642 GNUNET_DNSPARSER_builder_add_srv (scratch,
1651 rd_new[rd_off].data = &scratch[scratch_start];
1652 rd_new[rd_off].data_size = scratch_off - scratch_start;
1657 GNUNET_DNSPARSER_free_srv (srv);
1661 case GNUNET_GNSRECORD_TYPE_NICK:
1666 if ((rd[i].data_size > 0) &&
1667 (nick[rd[i].data_size -1] != '\0'))
1669 GNUNET_break_op (0);
1672 if (NULL == shorten_ac->suggested_shortening_label)
1673 shorten_ac->suggested_shortening_label = GNUNET_strdup (nick);
1676 case GNUNET_GNSRECORD_TYPE_PKEY:
1678 struct GNUNET_CRYPTO_EcdsaPublicKey pub;
1680 if (rd[i].data_size != sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey))
1682 GNUNET_break_op (0);
1685 GNUNET_memcpy (&pub, rd[i].data, rd[i].data_size);
1687 if (GNUNET_GNSRECORD_TYPE_PKEY != rh->record_type)
1689 /* try to resolve "+" */
1690 struct AuthorityChain *ac;
1692 ac = GNUNET_new (struct AuthorityChain);
1694 ac->gns_authority = GNUNET_YES;
1695 ac->authority_info.gns_authority = pub;
1696 ac->label = GNUNET_strdup (GNUNET_GNS_MASTERZONE_STR);
1697 ac->suggested_shortening_label = NULL;
1698 ac->shortening_started = GNUNET_NO;
1699 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1702 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1708 case GNUNET_GNSRECORD_TYPE_GNS2DNS:
1710 /* delegation to DNS */
1711 if (GNUNET_GNSRECORD_TYPE_GNS2DNS == rh->record_type)
1714 break; /* do not follow to DNS, we wanted the GNS2DNS record! */
1716 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1717 "Found GNS2DNS record, delegating to DNS!\n");
1720 case GNUNET_GNSRECORD_TYPE_BOX:
1722 /* unbox SRV/TLSA records if a specific one was requested */
1723 if ( (0 != rh->protocol) &&
1724 (0 != rh->service) &&
1725 (rd[i].data_size >= sizeof (struct GNUNET_GNSRECORD_BoxRecord)) )
1727 const struct GNUNET_GNSRECORD_BoxRecord *box;
1730 if ( (ntohs (box->protocol) == rh->protocol) &&
1731 (ntohs (box->service) == rh->service) )
1733 /* Box matches, unbox! */
1734 rd_new[rd_off].record_type = ntohl (box->record_type);
1735 rd_new[rd_off].data_size -= sizeof (struct GNUNET_GNSRECORD_BoxRecord);
1736 rd_new[rd_off].data = &box[1];
1742 /* no specific protocol/service specified, preserve all BOX
1743 records (for modern, GNS-enabled applications) */
1751 } /* end: for rd_count */
1753 /* trigger shortening */
1754 if ((NULL != rh->shorten_key) &&
1755 (NULL != shorten_ac) &&
1756 (GNUNET_NO == shorten_ac->shortening_started) &&
1757 (NULL != shorten_ac->suggested_shortening_label))
1759 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1760 "Start shortening for label `%s' based on nick `%s'\n",
1762 shorten_ac->suggested_shortening_label);
1763 shorten_ac->shortening_started = GNUNET_YES;
1764 GNS_shorten_start (shorten_ac->label,
1765 shorten_ac->suggested_shortening_label,
1766 &shorten_ac->authority_info.gns_authority,
1770 /* yes, we are done, return result */
1771 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1772 "Returning GNS response for `%s' with %u answers\n",
1775 rh->proc (rh->proc_cls, rd_off, rd_new);
1776 GNS_resolver_lookup_cancel (rh);
1780 /* need to recurse, check if we can */
1781 for (i=0;i<rd_count;i++)
1783 switch (rd[i].record_type)
1785 case GNUNET_GNSRECORD_TYPE_PKEY:
1786 /* delegation to another zone */
1787 if (sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey) !=
1790 GNUNET_break_op (0);
1791 rh->proc (rh->proc_cls, 0, NULL);
1792 GNS_resolver_lookup_cancel (rh);
1795 /* expand authority chain */
1796 ac = GNUNET_new (struct AuthorityChain);
1798 ac->gns_authority = GNUNET_YES;
1799 ac->suggested_shortening_label = NULL;
1800 ac->shortening_started = GNUNET_NO;
1801 GNUNET_memcpy (&ac->authority_info.gns_authority,
1803 sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey));
1804 ac->label = resolver_lookup_get_next_label (rh);
1805 /* add AC to tail */
1806 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1810 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1813 case GNUNET_GNSRECORD_TYPE_GNS2DNS:
1815 /* resolution continues within DNS */
1816 struct Gns2DnsContext *g2dc;
1821 ns = GNUNET_DNSPARSER_parse_name (rd[i].data,
1824 ip = GNUNET_DNSPARSER_parse_name (rd[i].data,
1827 if ( (NULL == ns) ||
1829 (off != rd[i].data_size) )
1831 GNUNET_break_op (0);
1832 GNUNET_free_non_null (ns);
1833 GNUNET_free_non_null (ip);
1834 rh->proc (rh->proc_cls, 0, NULL);
1835 GNS_resolver_lookup_cancel (rh);
1838 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1839 "Resolving `%s' to determine IP address of DNS server for GNS2DNS transition\n",
1841 /* resolve 'ip' to determine the IP(s) of the DNS
1843 g2dc = GNUNET_new (struct Gns2DnsContext);
1846 g2dc->rh = GNUNET_new (struct GNS_ResolverHandle);
1847 g2dc->rh->authority_zone = rh->ac_tail->authority_info.gns_authority;
1848 ip = translate_dot_plus (rh, ip);
1849 g2dc->rh->name = ip;
1850 g2dc->rh->name_resolution_pos = strlen (ip);
1851 g2dc->rh->proc = &handle_gns2dns_result;
1852 g2dc->rh->proc_cls = rh;
1853 g2dc->rh->record_type = GNUNET_GNSRECORD_TYPE_ANY;
1854 g2dc->rh->options = GNUNET_GNS_LO_DEFAULT;
1855 g2dc->rh->loop_limiter = rh->loop_limiter + 1;
1857 start_resolver_lookup (g2dc->rh);
1860 case GNUNET_DNSPARSER_TYPE_CNAME:
1865 cname = GNUNET_DNSPARSER_parse_name (rd[i].data,
1868 if ( (NULL == cname) ||
1869 (off != rd[i].data_size) )
1871 GNUNET_break_op (0); /* record not well-formed */
1872 rh->proc (rh->proc_cls, 0, NULL);
1873 GNS_resolver_lookup_cancel (rh);
1874 GNUNET_free_non_null (cname);
1877 handle_gns_cname_result (rh,
1879 GNUNET_free (cname);
1882 /* FIXME: handle DNAME */
1888 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1889 _("GNS lookup recursion failed (no delegation record found)\n"));
1890 rh->proc (rh->proc_cls, 0, NULL);
1891 GNS_resolver_lookup_cancel (rh);
1896 * Function called once the namestore has completed the request for
1899 * @param cls closure with the `struct CacheOps`
1900 * @param success #GNUNET_OK on success
1901 * @param emsg error message
1904 namecache_cache_continuation (void *cls,
1908 struct CacheOps *co = cls;
1910 co->namecache_qe_cache = NULL;
1912 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1913 _("Failed to cache GNS resolution: %s\n"),
1915 GNUNET_CONTAINER_DLL_remove (co_head,
1923 * Iterator called on each result obtained for a DHT
1924 * operation that expects a reply
1926 * @param cls closure with the `struct GNS_ResolverHandle`
1927 * @param exp when will this value expire
1928 * @param key key of the result
1929 * @param get_path peers on reply path (or NULL if not recorded)
1930 * [0] = datastore's first neighbor, [length - 1] = local peer
1931 * @param get_path_length number of entries in @a get_path
1932 * @param put_path peers on the PUT path (or NULL if not recorded)
1933 * [0] = origin, [length - 1] = datastore
1934 * @param put_path_length number of entries in @a put_path
1935 * @param type type of the result
1936 * @param size number of bytes in data
1937 * @param data pointer to the result data
1940 handle_dht_response (void *cls,
1941 struct GNUNET_TIME_Absolute exp,
1942 const struct GNUNET_HashCode *key,
1943 const struct GNUNET_PeerIdentity *get_path,
1944 unsigned int get_path_length,
1945 const struct GNUNET_PeerIdentity *put_path,
1946 unsigned int put_path_length,
1947 enum GNUNET_BLOCK_Type type,
1948 size_t size, const void *data)
1950 struct GNS_ResolverHandle *rh = cls;
1951 struct AuthorityChain *ac = rh->ac_tail;
1952 const struct GNUNET_GNSRECORD_Block *block;
1953 struct CacheOps *co;
1955 GNUNET_DHT_get_stop (rh->get_handle);
1956 rh->get_handle = NULL;
1957 GNUNET_CONTAINER_heap_remove_node (rh->dht_heap_node);
1958 rh->dht_heap_node = NULL;
1959 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1960 "Handling response from the DHT\n");
1961 if (size < sizeof (struct GNUNET_GNSRECORD_Block))
1963 /* how did this pass DHT block validation!? */
1965 rh->proc (rh->proc_cls, 0, NULL);
1966 GNS_resolver_lookup_cancel (rh);
1971 ntohl (block->purpose.size) +
1972 sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey) +
1973 sizeof (struct GNUNET_CRYPTO_EcdsaSignature))
1975 /* how did this pass DHT block validation!? */
1977 rh->proc (rh->proc_cls, 0, NULL);
1978 GNS_resolver_lookup_cancel (rh);
1982 GNUNET_GNSRECORD_block_decrypt (block,
1983 &ac->authority_info.gns_authority,
1985 &handle_gns_resolution_result,
1988 GNUNET_break_op (0); /* block was ill-formed */
1989 rh->proc (rh->proc_cls, 0, NULL);
1990 GNS_resolver_lookup_cancel (rh);
1993 if (0 == GNUNET_TIME_absolute_get_remaining (GNUNET_TIME_absolute_ntoh (block->expiration_time)).rel_value_us)
1995 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1996 "Received expired block from the DHT, will not cache it.\n");
1999 /* Cache well-formed blocks */
2000 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2001 "Caching response from the DHT in namecache\n");
2002 co = GNUNET_new (struct CacheOps);
2003 co->namecache_qe_cache = GNUNET_NAMECACHE_block_cache (namecache_handle,
2005 &namecache_cache_continuation,
2007 GNUNET_CONTAINER_DLL_insert (co_head,
2014 * Initiate a DHT query for a set of GNS records.
2016 * @param rh resolution handle
2017 * @param query key to use in the DHT lookup
2020 start_dht_request (struct GNS_ResolverHandle *rh,
2021 const struct GNUNET_HashCode *query)
2023 struct GNS_ResolverHandle *rx;
2025 GNUNET_assert (NULL == rh->get_handle);
2026 rh->get_handle = GNUNET_DHT_get_start (dht_handle,
2027 GNUNET_BLOCK_TYPE_GNS_NAMERECORD,
2029 DHT_GNS_REPLICATION_LEVEL,
2030 GNUNET_DHT_RO_DEMULTIPLEX_EVERYWHERE,
2032 &handle_dht_response, rh);
2033 rh->dht_heap_node = GNUNET_CONTAINER_heap_insert (dht_lookup_heap,
2035 GNUNET_TIME_absolute_get ().abs_value_us);
2036 if (GNUNET_CONTAINER_heap_get_size (dht_lookup_heap) > max_allowed_background_queries)
2038 /* fail longest-standing DHT request */
2039 rx = GNUNET_CONTAINER_heap_peek (dht_lookup_heap);
2040 GNUNET_assert (NULL != rx);
2041 rx->proc (rx->proc_cls, 0, NULL);
2042 GNS_resolver_lookup_cancel (rx);
2048 * Process a records that were decrypted from a block that we got from
2049 * the namecache. Simply calls #handle_gns_resolution_result().
2051 * @param cls closure with the `struct GNS_ResolverHandle`
2052 * @param rd_count number of entries in @a rd array
2053 * @param rd array of records with data to store
2056 handle_gns_namecache_resolution_result (void *cls,
2057 unsigned int rd_count,
2058 const struct GNUNET_GNSRECORD_Data *rd)
2060 struct GNS_ResolverHandle *rh = cls;
2062 handle_gns_resolution_result (rh,
2069 * Process a record that was stored in the namecache.
2071 * @param cls closure with the `struct GNS_ResolverHandle`
2072 * @param block block that was stored in the namecache
2075 handle_namecache_block_response (void *cls,
2076 const struct GNUNET_GNSRECORD_Block *block)
2078 struct GNS_ResolverHandle *rh = cls;
2079 struct AuthorityChain *ac = rh->ac_tail;
2080 const char *label = ac->label;
2081 const struct GNUNET_CRYPTO_EcdsaPublicKey *auth = &ac->authority_info.gns_authority;
2082 struct GNUNET_HashCode query;
2084 GNUNET_assert (NULL != rh->namecache_qe);
2085 rh->namecache_qe = NULL;
2086 if ( ( (GNUNET_GNS_LO_DEFAULT == rh->options) ||
2087 ( (GNUNET_GNS_LO_LOCAL_MASTER == rh->options) &&
2088 (ac != rh->ac_head) ) ) &&
2089 ( (NULL == block) ||
2090 (0 == GNUNET_TIME_absolute_get_remaining (GNUNET_TIME_absolute_ntoh (block->expiration_time)).rel_value_us) ) )
2092 /* namecache knows nothing; try DHT lookup */
2093 GNUNET_GNSRECORD_query_from_public_key (auth,
2096 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2097 "Starting DHT lookup for `%s' in zone `%s' under key `%s'\n",
2099 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority),
2100 GNUNET_h2s (&query));
2101 start_dht_request (rh, &query);
2105 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2106 "Received result from namecache for label `%s'\n",
2109 if ( (NULL == block) ||
2110 (0 == GNUNET_TIME_absolute_get_remaining (GNUNET_TIME_absolute_ntoh (block->expiration_time)).rel_value_us) )
2112 /* DHT not permitted and no local result, fail */
2113 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2114 "Resolution failed for `%s' in zone %s (DHT lookup not permitted by configuration)\n",
2116 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2117 rh->proc (rh->proc_cls, 0, NULL);
2118 GNS_resolver_lookup_cancel (rh);
2122 GNUNET_GNSRECORD_block_decrypt (block,
2125 &handle_gns_namecache_resolution_result,
2128 GNUNET_break_op (0); /* block was ill-formed */
2129 /* try DHT instead */
2130 GNUNET_GNSRECORD_query_from_public_key (auth,
2133 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2134 "Starting DHT lookup for `%s' in zone `%s' under key `%s'\n",
2136 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority),
2137 GNUNET_h2s (&query));
2138 start_dht_request (rh, &query);
2145 * Lookup tail of our authority chain in the namecache.
2147 * @param rh query we are processing
2150 recursive_gns_resolution_namecache (struct GNS_ResolverHandle *rh)
2152 struct AuthorityChain *ac = rh->ac_tail;
2153 struct GNUNET_HashCode query;
2155 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2156 "Starting GNS resolution for `%s' in zone %s\n",
2158 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2159 GNUNET_GNSRECORD_query_from_public_key (&ac->authority_info.gns_authority,
2162 if (GNUNET_YES == use_cache)
2165 = GNUNET_NAMECACHE_lookup_block (namecache_handle,
2167 &handle_namecache_block_response,
2169 GNUNET_assert (NULL != rh->namecache_qe);
2173 start_dht_request (rh, &query);
2179 * Function called with the result from a revocation check.
2181 * @param cls the `struct GNS_ResovlerHandle`
2182 * @param is_valid #GNUNET_YES if the zone was not yet revoked
2185 handle_revocation_result (void *cls,
2188 struct GNS_ResolverHandle *rh = cls;
2189 struct AuthorityChain *ac = rh->ac_tail;
2191 rh->rev_check = NULL;
2192 if (GNUNET_YES != is_valid)
2194 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
2195 _("Zone %s was revoked, resolution fails\n"),
2196 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2197 rh->proc (rh->proc_cls, 0, NULL);
2198 GNS_resolver_lookup_cancel (rh);
2201 recursive_gns_resolution_namecache (rh);
2206 * Perform revocation check on tail of our authority chain.
2208 * @param rh query we are processing
2211 recursive_gns_resolution_revocation (struct GNS_ResolverHandle *rh)
2213 struct AuthorityChain *ac = rh->ac_tail;
2215 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2216 "Starting revocation check for zone %s\n",
2217 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2218 rh->rev_check = GNUNET_REVOCATION_query (cfg,
2219 &ac->authority_info.gns_authority,
2220 &handle_revocation_result,
2222 GNUNET_assert (NULL != rh->rev_check);
2227 * Task scheduled to continue with the resolution process.
2229 * @param cls the `struct GNS_ResolverHandle` of the resolution
2232 recursive_resolution (void *cls)
2234 struct GNS_ResolverHandle *rh = cls;
2237 if (MAX_RECURSION < rh->loop_limiter++)
2239 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
2240 "Encountered unbounded recursion resolving `%s'\n",
2242 rh->proc (rh->proc_cls, 0, NULL);
2243 GNS_resolver_lookup_cancel (rh);
2246 if (GNUNET_YES == rh->ac_tail->gns_authority)
2247 recursive_gns_resolution_revocation (rh);
2249 recursive_dns_resolution (rh);
2254 * Begin the resolution process from 'name', starting with
2255 * the identification of the zone specified by 'name'.
2257 * @param rh resolution to perform
2260 start_resolver_lookup (struct GNS_ResolverHandle *rh)
2262 struct AuthorityChain *ac;
2267 if (1 == inet_pton (AF_INET,
2271 /* name is IPv4 address, pretend it's an A record */
2272 struct GNUNET_GNSRECORD_Data rd;
2275 rd.data_size = sizeof (v4);
2276 rd.expiration_time = UINT64_MAX;
2277 rd.record_type = GNUNET_DNSPARSER_TYPE_A;
2279 rh->proc (rh->proc_cls, 1, &rd);
2280 GNS_resolver_lookup_cancel (rh);
2283 if (1 == inet_pton (AF_INET6,
2287 /* name is IPv6 address, pretend it's an AAAA record */
2288 struct GNUNET_GNSRECORD_Data rd;
2291 rd.data_size = sizeof (v6);
2292 rd.expiration_time = UINT64_MAX;
2293 rd.record_type = GNUNET_DNSPARSER_TYPE_AAAA;
2295 rh->proc (rh->proc_cls, 1, &rd);
2296 GNS_resolver_lookup_cancel (rh);
2299 if ( ( (GNUNET_YES == is_canonical (rh->name)) &&
2300 (0 != strcmp (GNUNET_GNS_TLD, rh->name)) ) ||
2301 ( (GNUNET_YES != is_gnu_tld (rh->name)) &&
2302 (GNUNET_YES != is_zkey_tld (rh->name)) ) )
2304 /* use standard DNS lookup */
2307 switch (rh->record_type)
2309 case GNUNET_DNSPARSER_TYPE_A:
2312 case GNUNET_DNSPARSER_TYPE_AAAA:
2319 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2320 "Doing standard DNS lookup for `%s'\n",
2322 rh->std_resolve = GNUNET_RESOLVER_ip_get (rh->name,
2329 if (is_zkey_tld (rh->name))
2331 /* Name ends with ".zkey", try to replace authority zone with zkey
2333 GNUNET_free (resolver_lookup_get_next_label (rh)); /* will return "zkey" */
2334 y = resolver_lookup_get_next_label (rh); /* will return 'y' coordinate */
2337 GNUNET_CRYPTO_ecdsa_public_key_from_string (y,
2339 &rh->authority_zone)) )
2341 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
2342 _("Hostname `%s' is not well-formed, resolution fails\n"),
2344 rh->task_id = GNUNET_SCHEDULER_add_now (&fail_resolution, rh);
2346 GNUNET_free_non_null (y);
2350 /* Name ends with ".gnu", eat ".gnu" and continue with resolution */
2351 GNUNET_free (resolver_lookup_get_next_label (rh));
2353 ac = GNUNET_new (struct AuthorityChain);
2355 ac->label = resolver_lookup_get_next_label (rh);
2356 ac->suggested_shortening_label = NULL;
2357 if (NULL == ac->label)
2358 /* name was just "gnu", so we default to label '+' */
2359 ac->label = GNUNET_strdup (GNUNET_GNS_MASTERZONE_STR);
2360 ac->gns_authority = GNUNET_YES;
2361 ac->authority_info.gns_authority = rh->authority_zone;
2362 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
2365 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
2371 * Lookup of a record in a specific zone calls lookup result processor
2374 * @param zone the zone to perform the lookup in
2375 * @param record_type the record type to look up
2376 * @param name the name to look up
2377 * @param shorten_key a private key for use with PSEU import (can be NULL)
2378 * @param options local options to control local lookup
2379 * @param proc the processor to call on result
2380 * @param proc_cls the closure to pass to @a proc
2381 * @return handle to cancel operation
2383 struct GNS_ResolverHandle *
2384 GNS_resolver_lookup (const struct GNUNET_CRYPTO_EcdsaPublicKey *zone,
2385 uint32_t record_type,
2387 const struct GNUNET_CRYPTO_EcdsaPrivateKey *shorten_key,
2388 enum GNUNET_GNS_LocalOptions options,
2389 GNS_ResultProcessor proc, void *proc_cls)
2391 struct GNS_ResolverHandle *rh;
2393 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2394 (NULL == shorten_key)
2395 ? "Starting lookup for `%s' with shortening disabled\n"
2396 : "Starting lookup for `%s' with shortening enabled\n",
2398 rh = GNUNET_new (struct GNS_ResolverHandle);
2399 GNUNET_CONTAINER_DLL_insert (rlh_head,
2402 rh->authority_zone = *zone;
2404 rh->proc_cls = proc_cls;
2405 rh->options = options;
2406 rh->record_type = record_type;
2407 rh->name = GNUNET_strdup (name);
2408 rh->name_resolution_pos = strlen (name);
2409 if (NULL != shorten_key)
2411 rh->shorten_key = GNUNET_new (struct GNUNET_CRYPTO_EcdsaPrivateKey);
2412 *rh->shorten_key = *shorten_key;
2414 start_resolver_lookup (rh);
2420 * Cancel active resolution (i.e. client disconnected).
2422 * @param rh resolution to abort
2425 GNS_resolver_lookup_cancel (struct GNS_ResolverHandle *rh)
2427 struct DnsResult *dr;
2428 struct AuthorityChain *ac;
2429 struct VpnContext *vpn_ctx;
2431 GNUNET_CONTAINER_DLL_remove (rlh_head,
2434 while (NULL != (ac = rh->ac_head))
2436 GNUNET_CONTAINER_DLL_remove (rh->ac_head,
2439 GNUNET_free (ac->label);
2440 GNUNET_free_non_null (ac->suggested_shortening_label);
2443 if (NULL != rh->g2dc)
2445 /* rh->g2dc->rh is NOT in the DLL yet, so to enable us
2446 using GNS_resolver_lookup_cancel here, we need to
2448 if (NULL != rh->g2dc->rh)
2450 GNUNET_CONTAINER_DLL_insert (rlh_head,
2453 GNS_resolver_lookup_cancel (rh->g2dc->rh);
2454 rh->g2dc->rh = NULL;
2456 GNUNET_free (rh->g2dc->ns);
2457 GNUNET_free (rh->g2dc);
2460 if (NULL != rh->task_id)
2462 GNUNET_SCHEDULER_cancel (rh->task_id);
2465 if (NULL != rh->get_handle)
2467 GNUNET_DHT_get_stop (rh->get_handle);
2468 rh->get_handle = NULL;
2470 if (NULL != rh->dht_heap_node)
2472 GNUNET_CONTAINER_heap_remove_node (rh->dht_heap_node);
2473 rh->dht_heap_node = NULL;
2475 if (NULL != (vpn_ctx = rh->vpn_ctx))
2477 GNUNET_VPN_cancel_request (vpn_ctx->vpn_request);
2478 GNUNET_free (vpn_ctx->rd_data);
2479 GNUNET_free (vpn_ctx);
2481 if (NULL != rh->dns_request)
2483 GNUNET_DNSSTUB_resolve_cancel (rh->dns_request);
2484 rh->dns_request = NULL;
2486 if (NULL != rh->namecache_qe)
2488 GNUNET_NAMECACHE_cancel (rh->namecache_qe);
2489 rh->namecache_qe = NULL;
2491 if (NULL != rh->rev_check)
2493 GNUNET_REVOCATION_query_cancel (rh->rev_check);
2494 rh->rev_check = NULL;
2496 if (NULL != rh->std_resolve)
2498 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2499 "Canceling standard DNS resolution\n");
2500 GNUNET_RESOLVER_request_cancel (rh->std_resolve);
2501 rh->std_resolve = NULL;
2503 while (NULL != (dr = rh->dns_result_head))
2505 GNUNET_CONTAINER_DLL_remove (rh->dns_result_head,
2506 rh->dns_result_tail,
2510 GNUNET_free_non_null (rh->shorten_key);
2511 GNUNET_free (rh->name);
2516 /* ***************** Resolver initialization ********************* */
2520 * Initialize the resolver
2522 * @param nc the namecache handle
2523 * @param dht the dht handle
2524 * @param c configuration handle
2525 * @param max_bg_queries maximum number of parallel background queries in dht
2528 GNS_resolver_init (struct GNUNET_NAMECACHE_Handle *nc,
2529 struct GNUNET_DHT_Handle *dht,
2530 const struct GNUNET_CONFIGURATION_Handle *c,
2531 unsigned long long max_bg_queries)
2536 namecache_handle = nc;
2539 GNUNET_CONTAINER_heap_create (GNUNET_CONTAINER_HEAP_ORDER_MIN);
2540 max_allowed_background_queries = max_bg_queries;
2541 if (GNUNET_SYSERR == (use_cache =
2542 GNUNET_CONFIGURATION_get_value_yesno (c,
2545 use_cache = GNUNET_YES;
2546 if (GNUNET_NO == use_cache)
2547 GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
2548 "Namecache disabled\n");
2551 GNUNET_CONFIGURATION_get_value_string (c,
2556 /* user did not specify DNS resolver, use 8.8.8.8 */
2557 dns_ip = GNUNET_strdup ("8.8.8.8");
2559 dns_handle = GNUNET_DNSSTUB_start (dns_ip);
2560 GNUNET_free (dns_ip);
2561 vpn_handle = GNUNET_VPN_connect (cfg);
2569 GNS_resolver_done ()
2571 struct GNS_ResolverHandle *rh;
2572 struct CacheOps *co;
2574 /* abort active resolutions */
2575 while (NULL != (rh = rlh_head))
2577 rh->proc (rh->proc_cls, 0, NULL);
2578 GNS_resolver_lookup_cancel (rh);
2580 while (NULL != (co = co_head))
2582 GNUNET_CONTAINER_DLL_remove (co_head,
2585 GNUNET_NAMECACHE_cancel (co->namecache_qe_cache);
2588 GNUNET_CONTAINER_heap_destroy (dht_lookup_heap);
2589 dht_lookup_heap = NULL;
2590 GNUNET_DNSSTUB_stop (dns_handle);
2592 GNUNET_VPN_disconnect (vpn_handle);
2595 namecache_handle = NULL;
2599 /* *************** common helper functions (do not really belong here) *********** */
2602 * Checks if @a name ends in ".TLD"
2604 * @param name the name to check
2605 * @param tld the TLD to check for
2606 * @return GNUNET_YES or GNUNET_NO
2609 is_tld (const char* name, const char* tld)
2613 if (strlen (name) <= strlen (tld))
2615 offset = strlen (name) - strlen (tld);
2616 if (0 != strcmp (name + offset, tld))
2622 /* end of gnunet-service-gns_resolver.c */
projects / oweals / gnunet.git / blob