2 This file is part of GNUnet.
3 (C) 2011-2013 Christian Grothoff (and other contributing authors)
5 GNUnet is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published
7 by the Free Software Foundation; either version 3, or (at your
8 option) any later version.
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with GNUnet; see the file COPYING. If not, write to the
17 Free Software Foundation, Inc., 59 Temple Place - Suite 330,
18 Boston, MA 02111-1307, USA.
22 * @file gns/gnunet-service-gns_resolver.c
23 * @brief GNU Name System resolver logic
24 * @author Martin Schanzenbach
25 * @author Christian Grothoff
28 #include "gnunet_util_lib.h"
29 #include "gnunet_dnsstub_lib.h"
30 #include "gnunet_dht_service.h"
31 #include "gnunet_gnsrecord_lib.h"
32 #include "gnunet_namecache_service.h"
33 #include "gnunet_namestore_service.h"
34 #include "gnunet_dns_service.h"
35 #include "gnunet_resolver_service.h"
36 #include "gnunet_revocation_service.h"
37 #include "gnunet_dnsparser_lib.h"
38 #include "gnunet_tun_lib.h"
39 #include "gnunet_gns_service.h"
41 #include "gnunet-service-gns_resolver.h"
42 #include "gnunet-service-gns_shorten.h"
43 #include "gnunet_vpn_service.h"
47 * Default DHT timeout for lookups.
49 #define DHT_LOOKUP_TIMEOUT GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_SECONDS, 60)
52 * Default timeout for DNS lookups.
54 #define DNS_LOOKUP_TIMEOUT GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_SECONDS, 5)
57 * Default timeout for VPN redirections.
59 #define VPN_TIMEOUT GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_MINUTES, 30)
62 * DHT replication level
64 #define DHT_GNS_REPLICATION_LEVEL 5
67 * How deep do we allow recursions to go before we abort?
69 #define MAX_RECURSION 256
73 * DLL to hold the authority chain we had to pass in the resolution
81 struct AuthorityChain *prev;
86 struct AuthorityChain *next;
89 * Resolver handle this entry in the chain belongs to.
91 struct GNS_ResolverHandle *rh;
94 * label/name corresponding to the authority
99 * label/name suggested for shortening to the authority
101 char *suggested_shortening_label;
104 * Do we already try to shorten this authority?
106 int shortening_started;
109 * #GNUNET_YES if the authority was a GNS authority,
110 * #GNUNET_NO if the authority was a DNS authority.
115 * Information about the resolver authority for this label.
121 * The zone of the GNS authority
123 struct GNUNET_CRYPTO_EcdsaPublicKey gns_authority;
128 * Domain of the DNS resolver that is the authority.
129 * (appended to construct the DNS name to resolve;
130 * this is NOT the DNS name of the DNS server!).
132 char name[GNUNET_DNSPARSER_MAX_NAME_LENGTH + 1];
135 * IP address of the DNS resolver that is authoritative.
136 * (this implementation currently only supports one
139 struct sockaddr_storage dns_ip;
149 * A result we got from DNS.
157 struct DnsResult *next;
162 struct DnsResult *prev;
165 * Binary value stored in the DNS record (appended to this struct)
170 * Expiration time for the DNS record, 0 if we didn't
171 * get anything useful (i.e. 'gethostbyname' was used).
173 uint64_t expiration_time;
176 * Number of bytes in @e data.
181 * Type of the GNS/DNS record.
183 uint32_t record_type;
189 * Closure for #vpn_allocation_cb.
195 * Which resolution process are we processing.
197 struct GNS_ResolverHandle *rh;
200 * Handle to the VPN request that we were performing.
202 struct GNUNET_VPN_RedirectionRequest *vpn_request;
205 * Number of records serialized in @e rd_data.
207 unsigned int rd_count;
210 * Serialized records.
215 * Number of bytes in @e rd_data.
222 * Information we keep during the resolution of an
223 * IP address for a DNS server while handling a
226 struct Gns2DnsContext
230 * DNS domain in which the resolution will continue
231 * (first part of the GNS2DNS record).
236 * Handle for the resolution of the IP part of the
237 * GNS2DNS record. Will return to us the addresses
238 * of the DNS resolver to use.
240 struct GNS_ResolverHandle *rh;
246 * Handle to a currenty pending resolution. On result (positive or
247 * negative) the #GNS_ResultProcessor is called.
249 struct GNS_ResolverHandle
255 struct GNS_ResolverHandle *next;
260 struct GNS_ResolverHandle *prev;
263 * The top-level GNS authoritative zone to query
265 struct GNUNET_CRYPTO_EcdsaPublicKey authority_zone;
268 * called when resolution phase finishes
270 GNS_ResultProcessor proc;
273 * closure passed to @e proc
278 * Handle used during GNS2DNS resolution for looking up the
279 * IP address of the DNS server.
281 struct Gns2DnsContext *g2dc;
284 * Handle for DHT lookups. should be NULL if no lookups are in progress
286 struct GNUNET_DHT_GetHandle *get_handle;
289 * Handle to a VPN request, NULL if none is active.
291 struct VpnContext *vpn_ctx;
294 * Socket for a DNS request, NULL if none is active.
296 struct GNUNET_DNSSTUB_RequestSocket *dns_request;
299 * Handle for standard DNS resolution, NULL if none is active.
301 struct GNUNET_RESOLVER_RequestHandle *std_resolve;
304 * Pending Namecache lookup task
306 struct GNUNET_NAMECACHE_QueueEntry *namecache_qe;
309 * Pending revocation check.
311 struct GNUNET_REVOCATION_Query *rev_check;
314 * Heap node associated with this lookup. Used to limit number of
315 * concurrent requests.
317 struct GNUNET_CONTAINER_HeapNode *dht_heap_node;
320 * DLL to store the authority chain
322 struct AuthorityChain *ac_head;
325 * DLL to store the authority chain
327 struct AuthorityChain *ac_tail;
330 * Private key of the shorten zone, NULL to not shorten.
332 struct GNUNET_CRYPTO_EcdsaPrivateKey *shorten_key;
335 * ID of a task associated with the resolution process.
337 struct GNUNET_SCHEDULER_Task * task_id;
340 * The name to resolve
345 * DLL of results we got from DNS.
347 struct DnsResult *dns_result_head;
350 * DLL of results we got from DNS.
352 struct DnsResult *dns_result_tail;
355 * Current offset in 'name' where we are resolving.
357 size_t name_resolution_pos;
362 enum GNUNET_GNS_LocalOptions options;
365 * For SRV and TLSA records, the number of the
366 * protocol specified in the name. 0 if no protocol was given.
371 * For SRV and TLSA records, the number of the
372 * service specified in the name. 0 if no service was given.
377 * Desired type for the resolution.
382 * We increment the loop limiter for each step in a recursive
383 * resolution. If it passes our threshold (i.e. due to
384 * self-recursion in the resolution, i.e CNAME fun), we stop.
386 unsigned int loop_limiter;
392 * Active namestore caching operations.
398 * Organized in a DLL.
400 struct CacheOps *next;
403 * Organized in a DLL.
405 struct CacheOps *prev;
408 * Pending Namestore caching task.
410 struct GNUNET_NAMECACHE_QueueEntry *namecache_qe_cache;
416 * Our handle to the namecache service
418 static struct GNUNET_NAMECACHE_Handle *namecache_handle;
421 * Our handle to the vpn service
423 static struct GNUNET_VPN_Handle *vpn_handle;
426 * Resolver handle to the dht
428 static struct GNUNET_DHT_Handle *dht_handle;
431 * Handle to perform DNS lookups.
433 static struct GNUNET_DNSSTUB_Context *dns_handle;
436 * Heap for limiting parallel DHT lookups
438 static struct GNUNET_CONTAINER_Heap *dht_lookup_heap;
441 * Maximum amount of parallel queries to the DHT
443 static unsigned long long max_allowed_background_queries;
446 * Head of resolver lookup list
448 static struct GNS_ResolverHandle *rlh_head;
451 * Tail of resolver lookup list
453 static struct GNS_ResolverHandle *rlh_tail;
456 * Organized in a DLL.
458 static struct CacheOps *co_head;
461 * Organized in a DLL.
463 static struct CacheOps *co_tail;
468 static int use_cache;
471 * Global configuration.
473 static const struct GNUNET_CONFIGURATION_Handle *cfg;
477 * Determine if this name is canonical (is a legal name in a zone, without delegation);
478 * note that we do not test that the name does not contain illegal characters, we only
479 * test for delegation. Note that service records (i.e. _foo._srv) are canonical names
480 * even though they consist of multiple labels.
483 * a.b.gnu = not canonical
485 * _foo._srv = canonical
486 * _f.bar = not canonical
488 * @param name the name to test
489 * @return #GNUNET_YES if canonical
492 is_canonical (const char *name)
497 if (NULL == strchr (name, '.'))
502 while (NULL != (dot = strchr (pos, '.')))
510 /* ************************** Resolution **************************** */
513 * Expands a name ending in .+ with the zone of origin.
515 * @param rh resolution context
516 * @param name name to modify (to be free'd or returned)
517 * @return updated name
520 translate_dot_plus (struct GNS_ResolverHandle *rh,
524 size_t s_len = strlen (name);
526 if (0 != strcmp (&name[s_len - 2],
528 return name; /* did not end in ".+" */
529 GNUNET_assert (GNUNET_YES == rh->ac_tail->gns_authority);
530 GNUNET_asprintf (&ret,
534 GNUNET_GNSRECORD_pkey_to_zkey (&rh->ac_tail->authority_info.gns_authority));
541 * Task scheduled to asynchronously fail a resolution.
543 * @param cls the 'struct GNS_ResolverHandle' of the resolution to fail
544 * @param tc task context
547 fail_resolution (void *cls,
548 const struct GNUNET_SCHEDULER_TaskContext *tc)
550 struct GNS_ResolverHandle *rh = cls;
553 rh->proc (rh->proc_cls, 0, NULL);
554 GNS_resolver_lookup_cancel (rh);
558 #if (defined WINDOWS) || (defined DARWIN)
559 /* Don't have this on W32, here's a naive implementation
560 * Was somehow removed on OS X ... */
562 memrchr (const void *s,
566 const unsigned char *ucs = s;
569 for (i = n - 1; i >= 0; i--)
570 if (c == (int) ucs[i])
571 return (void *) &ucs[i];
578 * Get the next, rightmost label from the name that we are trying to resolve,
579 * and update the resolution position accordingly. Labels usually consist
580 * of up to 63 characters without a period ("."); however, we use a special
581 * convention to support SRV and TLSA records where the domain name
582 * includes an encoding for a service and protocol in the name. The
583 * syntax (see RFC 2782) here is "_Service._Proto.Name" and in this
584 * special case we include the "_Service._Proto" in the rightmost label.
585 * Thus, for "_443._tcp.foo.bar" we first return the label "bar" and then
586 * the label "_443._tcp.foo". The special case is detected by the
587 * presence of labels beginning with an underscore. Whenever a label
588 * begins with an underscore, it is combined with the label to its right
589 * (and the "." is preserved).
591 * @param rh handle to the resolution operation to get the next label from
592 * @return NULL if there are no more labels
595 resolver_lookup_get_next_label (struct GNS_ResolverHandle *rh)
606 if (0 == rh->name_resolution_pos)
608 dot = memrchr (rh->name,
610 rh->name_resolution_pos);
613 /* done, this was the last one */
614 len = rh->name_resolution_pos;
616 rh->name_resolution_pos = 0;
620 /* advance by one label */
621 len = rh->name_resolution_pos - (dot - rh->name) - 1;
623 rh->name_resolution_pos = dot - rh->name;
627 ret = GNUNET_strndup (rp, len);
628 /* If we have labels starting with underscore with label on
629 * the right (SRV/DANE/BOX case), determine port/protocol;
630 * The format of `rh->name` must be "_PORT._PROTOCOL".
632 if ( ('_' == rh->name[0]) &&
633 (NULL != (dot = memrchr (rh->name,
635 rh->name_resolution_pos))) &&
637 (NULL == memrchr (rh->name,
641 srv_name = GNUNET_strndup (&rh->name[1],
642 (dot - rh->name) - 1);
643 proto_name = GNUNET_strndup (&dot[2],
644 rh->name_resolution_pos - (dot - rh->name) - 1);
645 rh->name_resolution_pos = 0;
646 pe = getprotobyname (proto_name);
649 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
650 _("Protocol `%s' unknown, skipping labels.\n"),
652 GNUNET_free (proto_name);
653 GNUNET_free (srv_name);
656 se = getservbyname (srv_name,
660 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
661 _("Service `%s' unknown for protocol `%s', skipping labels.\n"),
664 GNUNET_free (proto_name);
665 GNUNET_free (srv_name);
668 rh->protocol = pe->p_proto;
669 rh->service = se->s_port;
676 * Gives the cummulative result obtained to the callback and clean up the request.
678 * @param rh resolution process that has culminated in a result
681 transmit_lookup_dns_result (struct GNS_ResolverHandle *rh)
683 struct DnsResult *pos;
688 for (pos = rh->dns_result_head; NULL != pos; pos = pos->next)
691 struct GNUNET_GNSRECORD_Data rd[n];
694 for (pos = rh->dns_result_head; NULL != pos; pos = pos->next)
696 rd[i].data = pos->data;
697 rd[i].data_size = pos->data_size;
698 rd[i].record_type = pos->record_type;
699 if (0 == pos->expiration_time)
701 rd[i].flags = GNUNET_GNSRECORD_RF_RELATIVE_EXPIRATION;
702 rd[i].expiration_time = 0;
706 rd[i].flags = GNUNET_GNSRECORD_RF_NONE;
707 rd[i].expiration_time = pos->expiration_time;
711 GNUNET_assert (i == n);
712 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
713 "Transmitting standard DNS result with %u records\n",
715 rh->proc (rh->proc_cls,
719 GNS_resolver_lookup_cancel (rh);
724 * Add a result from DNS to the records to be returned to the application.
726 * @param rh resolution request to extend with a result
727 * @param expiration_time expiration time for the answer
728 * @param record_type DNS record type of the answer
729 * @param data_size number of bytes in @a data
730 * @param data binary data to return in DNS record
733 add_dns_result (struct GNS_ResolverHandle *rh,
734 uint64_t expiration_time,
735 uint32_t record_type,
739 struct DnsResult *res;
741 res = GNUNET_malloc (sizeof (struct DnsResult) + data_size);
742 res->expiration_time = expiration_time;
743 res->data_size = data_size;
744 res->record_type = record_type;
746 memcpy (&res[1], data, data_size);
747 GNUNET_CONTAINER_DLL_insert (rh->dns_result_head,
754 * We had to do a DNS lookup. Convert the result (if any) and return
757 * @param cls closure with the `struct GNS_ResolverHandle`
758 * @param addr one of the addresses of the host, NULL for the last address
759 * @param addrlen length of the address
762 handle_dns_result (void *cls,
763 const struct sockaddr *addr,
766 struct GNS_ResolverHandle *rh = cls;
767 const struct sockaddr_in *sa4;
768 const struct sockaddr_in6 *sa6;
772 rh->std_resolve = NULL;
773 transmit_lookup_dns_result (rh);
776 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
777 "Received %u bytes of DNS IP data\n",
779 switch (addr->sa_family)
782 sa4 = (const struct sockaddr_in *) addr;
784 0 /* expiration time is unknown */,
785 GNUNET_DNSPARSER_TYPE_A,
786 sizeof (struct in_addr),
790 sa6 = (const struct sockaddr_in6 *) addr;
792 0 /* expiration time is unknown */,
793 GNUNET_DNSPARSER_TYPE_AAAA,
794 sizeof (struct in6_addr),
805 * Task scheduled to continue with the resolution process.
807 * @param cls the 'struct GNS_ResolverHandle' of the resolution
808 * @param tc task context
811 recursive_resolution (void *cls,
812 const struct GNUNET_SCHEDULER_TaskContext *tc);
816 * Begin the resolution process from 'name', starting with
817 * the identification of the zone specified by 'name'.
819 * @param rh resolution to perform
822 start_resolver_lookup (struct GNS_ResolverHandle *rh);
826 * Function called with the result of a DNS resolution.
828 * @param cls the request handle of the resolution that
829 * we were attempting to make
830 * @param rs socket that received the response
831 * @param dns dns response, never NULL
832 * @param dns_len number of bytes in @a dns
835 dns_result_parser (void *cls,
836 struct GNUNET_DNSSTUB_RequestSocket *rs,
837 const struct GNUNET_TUN_DnsHeader *dns,
840 struct GNS_ResolverHandle *rh = cls;
841 struct GNUNET_DNSPARSER_Packet *p;
842 const struct GNUNET_DNSPARSER_Record *rec;
843 unsigned int rd_count;
846 rh->dns_request = NULL;
847 GNUNET_SCHEDULER_cancel (rh->task_id);
849 p = GNUNET_DNSPARSER_parse ((const char *) dns,
853 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
854 _("Failed to parse DNS response\n"));
855 rh->proc (rh->proc_cls, 0, NULL);
856 GNS_resolver_lookup_cancel (rh);
859 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
860 "Received DNS response for `%s' with %u answers\n",
862 (unsigned int) p->num_answers);
863 if ( (p->num_answers > 0) &&
864 (GNUNET_DNSPARSER_TYPE_CNAME == p->answers[0].type) &&
865 (GNUNET_DNSPARSER_TYPE_CNAME != rh->record_type) )
867 GNUNET_free (rh->name);
868 rh->name = GNUNET_strdup (p->answers[0].data.hostname);
869 rh->name_resolution_pos = strlen (rh->name);
870 start_resolver_lookup (rh);
871 GNUNET_DNSPARSER_free_packet (p);
875 /* convert from (parsed) DNS to (binary) GNS format! */
876 rd_count = p->num_answers + p->num_authority_records + p->num_additional_records;
878 struct GNUNET_GNSRECORD_Data rd[rd_count];
880 char buf[UINT16_MAX];
886 memset (rd, 0, sizeof (rd));
887 for (i=0;i<rd_count;i++)
889 if (i < p->num_answers)
890 rec = &p->answers[i];
891 else if (i < p->num_answers + p->num_authority_records)
892 rec = &p->authority_records[i - p->num_answers];
894 rec = &p->authority_records[i - p->num_answers - p->num_authority_records];
895 /* As we copied the full DNS name to 'rh->ac_tail->label', this
896 should be the correct check to see if this record is actually
897 a record for our label... */
898 if (0 != strcmp (rec->name,
901 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
902 "Dropping record `%s', does not match desired name `%s'\n",
908 rd[i - skip].record_type = rec->type;
909 rd[i - skip].expiration_time = rec->expiration_time.abs_value_us;
912 case GNUNET_DNSPARSER_TYPE_A:
913 if (rec->data.raw.data_len != sizeof (struct in_addr))
919 rd[i - skip].data_size = rec->data.raw.data_len;
920 rd[i - skip].data = rec->data.raw.data;
922 case GNUNET_DNSPARSER_TYPE_AAAA:
923 if (rec->data.raw.data_len != sizeof (struct in6_addr))
929 rd[i - skip].data_size = rec->data.raw.data_len;
930 rd[i - skip].data = rec->data.raw.data;
932 case GNUNET_DNSPARSER_TYPE_CNAME:
933 case GNUNET_DNSPARSER_TYPE_PTR:
934 case GNUNET_DNSPARSER_TYPE_NS:
937 GNUNET_DNSPARSER_builder_add_name (buf,
946 rd[i - skip].data_size = buf_off - buf_start;
947 rd[i - skip].data = &buf[buf_start];
949 case GNUNET_DNSPARSER_TYPE_SOA:
952 GNUNET_DNSPARSER_builder_add_soa (buf,
961 rd[i - skip].data_size = buf_off - buf_start;
962 rd[i - skip].data = &buf[buf_start];
964 case GNUNET_DNSPARSER_TYPE_MX:
967 GNUNET_DNSPARSER_builder_add_mx (buf,
976 rd[i - skip].data_size = buf_off - buf_start;
977 rd[i - skip].data = &buf[buf_start];
979 case GNUNET_DNSPARSER_TYPE_SRV:
982 GNUNET_DNSPARSER_builder_add_srv (buf,
991 rd[i - skip].data_size = buf_off - buf_start;
992 rd[i - skip].data = &buf[buf_start];
995 GNUNET_log (GNUNET_ERROR_TYPE_INFO,
996 _("Skipping record of unsupported type %d\n"),
1002 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1003 "Returning DNS response for `%s' with %u answers\n",
1005 (unsigned int) p->num_answers);
1006 rh->proc (rh->proc_cls, rd_count - skip, rd);
1007 GNS_resolver_lookup_cancel (rh);
1009 GNUNET_DNSPARSER_free_packet (p);
1014 * Perform recursive DNS resolution. Asks the given DNS resolver to
1015 * resolve "rh->dns_name", possibly recursively proceeding following
1016 * NS delegations, CNAMES, etc., until 'rh->loop_limiter' bounds us or
1017 * we find the answer.
1019 * @param rh resolution information
1022 recursive_dns_resolution (struct GNS_ResolverHandle *rh)
1024 struct AuthorityChain *ac;
1026 struct GNUNET_DNSPARSER_Query *query;
1027 struct GNUNET_DNSPARSER_Packet *p;
1029 size_t dns_request_length;
1032 GNUNET_assert (NULL != ac);
1033 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1034 "Starting DNS lookup for `%s'\n",
1036 GNUNET_assert (GNUNET_NO == ac->gns_authority);
1037 switch (((const struct sockaddr *) &ac->authority_info.dns_authority.dns_ip)->sa_family)
1040 sa_len = sizeof (struct sockaddr_in);
1043 sa_len = sizeof (struct sockaddr_in6);
1047 rh->proc (rh->proc_cls, 0, NULL);
1048 GNS_resolver_lookup_cancel (rh);
1051 query = GNUNET_new (struct GNUNET_DNSPARSER_Query);
1052 query->name = GNUNET_strdup (ac->label);
1053 query->type = rh->record_type;
1054 query->dns_traffic_class = GNUNET_TUN_DNS_CLASS_INTERNET;
1055 p = GNUNET_new (struct GNUNET_DNSPARSER_Packet);
1058 p->id = (uint16_t) GNUNET_CRYPTO_random_u32 (GNUNET_CRYPTO_QUALITY_NONCE,
1060 p->flags.opcode = GNUNET_TUN_DNS_OPCODE_QUERY;
1061 p->flags.recursion_desired = 1;
1063 GNUNET_DNSPARSER_pack (p, 1024, &dns_request, &dns_request_length))
1066 rh->proc (rh->proc_cls, 0, NULL);
1067 GNS_resolver_lookup_cancel (rh);
1071 rh->dns_request = GNUNET_DNSSTUB_resolve (dns_handle,
1072 (const struct sockaddr *) &ac->authority_info.dns_authority.dns_ip,
1078 rh->task_id = GNUNET_SCHEDULER_add_delayed (DNS_LOOKUP_TIMEOUT,
1082 GNUNET_free (dns_request);
1083 GNUNET_DNSPARSER_free_packet (p);
1088 * We encountered a CNAME record during our resolution.
1089 * Merge it into our chain.
1091 * @param rh resolution we are performing
1092 * @param cname value of the cname record we got for the current
1093 * authority chain tail
1096 handle_gns_cname_result (struct GNS_ResolverHandle *rh,
1101 struct AuthorityChain *ac;
1103 nlen = strlen (cname);
1106 &cname[nlen - 2])) )
1108 /* CNAME resolution continues relative to current domain */
1109 if (0 == rh->name_resolution_pos)
1111 res = GNUNET_strndup (cname, nlen - 2);
1112 rh->name_resolution_pos = nlen - 2;
1116 GNUNET_asprintf (&res,
1118 (int) rh->name_resolution_pos,
1122 rh->name_resolution_pos = strlen (res);
1124 GNUNET_free (rh->name);
1126 ac = GNUNET_new (struct AuthorityChain);
1128 ac->gns_authority = GNUNET_YES;
1129 ac->authority_info.gns_authority = rh->ac_tail->authority_info.gns_authority;
1130 ac->label = resolver_lookup_get_next_label (rh);
1131 ac->suggested_shortening_label = NULL;
1132 ac->shortening_started = GNUNET_NO;
1133 /* add AC to tail */
1134 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1137 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1141 /* name is absolute, start from the beginning */
1142 GNUNET_free (rh->name);
1143 rh->name = GNUNET_strdup (cname);
1144 rh->name_resolution_pos = strlen (rh->name);
1145 start_resolver_lookup (rh);
1150 * Process a records that were decrypted from a block.
1152 * @param cls closure with the 'struct GNS_ResolverHandle'
1153 * @param rd_count number of entries in @a rd array
1154 * @param rd array of records with data to store
1157 handle_gns_resolution_result (void *cls,
1158 unsigned int rd_count,
1159 const struct GNUNET_GNSRECORD_Data *rd);
1163 * Callback invoked from the VPN service once a redirection is
1164 * available. Provides the IP address that can now be used to
1165 * reach the requested destination. Replaces the "VPN" record
1166 * with the respective A/AAAA record and continues processing.
1168 * @param cls closure
1169 * @param af address family, AF_INET or AF_INET6; AF_UNSPEC on error;
1170 * will match 'result_af' from the request
1171 * @param address IP address (struct in_addr or struct in_addr6, depending on 'af')
1172 * that the VPN allocated for the redirection;
1173 * traffic to this IP will now be redirected to the
1174 * specified target peer; NULL on error
1177 vpn_allocation_cb (void *cls,
1179 const void *address)
1181 struct VpnContext *vpn_ctx = cls;
1182 struct GNS_ResolverHandle *rh = vpn_ctx->rh;
1183 struct GNUNET_GNSRECORD_Data rd[vpn_ctx->rd_count];
1186 vpn_ctx->vpn_request = NULL;
1188 GNUNET_assert (GNUNET_OK ==
1189 GNUNET_GNSRECORD_records_deserialize (vpn_ctx->rd_data_size,
1193 for (i=0;i<vpn_ctx->rd_count;i++)
1195 if (GNUNET_GNSRECORD_TYPE_VPN == rd[i].record_type)
1200 rd[i].record_type = GNUNET_DNSPARSER_TYPE_A;
1201 rd[i].data_size = sizeof (struct in_addr);
1202 rd[i].expiration_time = GNUNET_TIME_relative_to_absolute (VPN_TIMEOUT).abs_value_us;
1204 rd[i].data = address;
1207 rd[i].record_type = GNUNET_DNSPARSER_TYPE_AAAA;
1208 rd[i].expiration_time = GNUNET_TIME_relative_to_absolute (VPN_TIMEOUT).abs_value_us;
1210 rd[i].data = address;
1211 rd[i].data_size = sizeof (struct in6_addr);
1219 GNUNET_assert (i < vpn_ctx->rd_count);
1220 handle_gns_resolution_result (rh,
1223 GNUNET_free (vpn_ctx->rd_data);
1224 GNUNET_free (vpn_ctx);
1229 * We've resolved the IP address for the DNS resolver to use
1230 * after encountering a GNS2DNS record.
1232 * TODO: Right now we only foward the request to ONE DNS resolver,
1233 * even if we get multiple IP addresses back; a correct implementation
1234 * should try all DNS resolvers.
1236 * @param cls the `struct GNS_ResolverHandle` where we encountered
1237 * the GNS2DNS record
1238 * @param rd_count number of records in @a rd
1239 * @param rd addresses for the DNS resolver (presumably)
1242 handle_gns2dns_result (void *cls,
1243 unsigned int rd_count,
1244 const struct GNUNET_GNSRECORD_Data *rd)
1246 struct GNS_ResolverHandle *rh = cls;
1247 struct AuthorityChain *ac;
1249 struct sockaddr *sa;
1250 struct sockaddr_in v4;
1251 struct sockaddr_in6 v6;
1254 /* find suitable A/AAAA record */
1255 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1256 "Received %u results for IP address of DNS server for GNS2DNS transition\n",
1258 /* enable cleanup of 'rh' handle that comes next... */
1259 GNUNET_CONTAINER_DLL_insert (rlh_head,
1262 rh->g2dc->rh = NULL;
1265 for (j=0;j<rd_count;j++)
1267 switch (rd[j].record_type)
1269 case GNUNET_DNSPARSER_TYPE_A:
1270 if (sizeof (struct in_addr) != rd[j].data_size)
1272 GNUNET_break_op (0);
1273 rh->proc (rh->proc_cls, 0, NULL);
1274 GNS_resolver_lookup_cancel (rh);
1277 /* FIXME: might want to check if we support IPv4 here,
1278 and otherwise skip this one and hope we find another */
1279 memset (&v4, 0, sizeof (v4));
1280 sa_len = sizeof (v4);
1281 v4.sin_family = AF_INET;
1282 v4.sin_port = htons (53);
1283 #if HAVE_SOCKADDR_IN_SIN_LEN
1284 v4.sin_len = (u_char) sa_len;
1286 memcpy (&v4.sin_addr,
1288 sizeof (struct in_addr));
1289 sa = (struct sockaddr *) &v4;
1291 case GNUNET_DNSPARSER_TYPE_AAAA:
1292 if (sizeof (struct in6_addr) != rd[j].data_size)
1294 GNUNET_break_op (0);
1295 rh->proc (rh->proc_cls, 0, NULL);
1296 GNS_resolver_lookup_cancel (rh);
1299 /* FIXME: might want to check if we support IPv6 here,
1300 and otherwise skip this one and hope we find another */
1301 memset (&v6, 0, sizeof (v6));
1302 sa_len = sizeof (v6);
1303 v6.sin6_family = AF_INET6;
1304 v6.sin6_port = htons (53);
1305 #if HAVE_SOCKADDR_IN_SIN_LEN
1306 v6.sin6_len = (u_char) sa_len;
1308 memcpy (&v6.sin6_addr,
1310 sizeof (struct in6_addr));
1311 sa = (struct sockaddr *) &v6;
1321 /* we cannot continue; NS without A/AAAA */
1322 rh->proc (rh->proc_cls, 0, NULL);
1323 GNS_resolver_lookup_cancel (rh);
1326 /* expand authority chain */
1327 ac = GNUNET_new (struct AuthorityChain);
1329 strcpy (ac->authority_info.dns_authority.name,
1331 memcpy (&ac->authority_info.dns_authority.dns_ip,
1334 /* for DNS recursion, the label is the full DNS name,
1335 created from the remainder of the GNS name and the
1336 name in the NS record */
1337 GNUNET_asprintf (&ac->label,
1339 (int) rh->name_resolution_pos,
1341 (0 != rh->name_resolution_pos) ? "." : "",
1343 GNUNET_free (rh->g2dc->ns);
1344 GNUNET_free (rh->g2dc);
1346 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1347 "Will continue resolution using DNS server `%s' to resolve `%s'\n",
1348 GNUNET_a2s (sa, sa_len),
1350 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1353 if (strlen (ac->label) > GNUNET_DNSPARSER_MAX_NAME_LENGTH)
1355 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1356 _("GNS lookup resulted in DNS name that is too long (`%s')\n"),
1358 rh->proc (rh->proc_cls, 0, NULL);
1359 GNS_resolver_lookup_cancel (rh);
1363 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1369 * Process a records that were decrypted from a block.
1371 * @param cls closure with the `struct GNS_ResolverHandle`
1372 * @param rd_count number of entries in @a rd array
1373 * @param rd array of records with data to store
1376 handle_gns_resolution_result (void *cls,
1377 unsigned int rd_count,
1378 const struct GNUNET_GNSRECORD_Data *rd)
1380 struct GNS_ResolverHandle *rh = cls;
1381 struct AuthorityChain *ac;
1382 struct AuthorityChain *shorten_ac;
1385 struct VpnContext *vpn_ctx;
1386 const struct GNUNET_TUN_GnsVpnRecord *vpn;
1388 struct GNUNET_HashCode vhash;
1390 char scratch[UINT16_MAX];
1392 size_t scratch_start;
1394 struct GNUNET_GNSRECORD_Data rd_new[rd_count];
1395 unsigned int rd_off;
1397 GNUNET_log (GNUNET_ERROR_TYPE_INFO,
1398 "Resolution succeeded for `%s' in zone %s, got %u records\n",
1400 GNUNET_GNSRECORD_z2s (&rh->ac_tail->authority_info.gns_authority),
1402 if (0 == rh->name_resolution_pos)
1404 /* top-level match, are we done yet? */
1405 if ( (rd_count > 0) &&
1406 (GNUNET_DNSPARSER_TYPE_CNAME == rd[0].record_type) &&
1407 (GNUNET_DNSPARSER_TYPE_CNAME != rh->record_type) )
1410 cname = GNUNET_DNSPARSER_parse_name (rd[0].data,
1413 if ( (NULL == cname) ||
1414 (off != rd[0].data_size) )
1416 GNUNET_break_op (0);
1417 rh->proc (rh->proc_cls, 0, NULL);
1418 GNS_resolver_lookup_cancel (rh);
1419 GNUNET_free_non_null (cname);
1422 handle_gns_cname_result (rh,
1424 GNUNET_free (cname);
1427 /* If A/AAAA was requested, but we got a VPN
1428 record, we convert it to A/AAAA using GNUnet VPN */
1429 if ( (GNUNET_DNSPARSER_TYPE_A == rh->record_type) ||
1430 (GNUNET_DNSPARSER_TYPE_AAAA == rh->record_type) )
1432 for (i=0;i<rd_count;i++)
1434 switch (rd[i].record_type)
1436 case GNUNET_GNSRECORD_TYPE_VPN:
1438 af = (GNUNET_DNSPARSER_TYPE_A == rh->record_type) ? AF_INET : AF_INET6;
1439 if (sizeof (struct GNUNET_TUN_GnsVpnRecord) >
1442 GNUNET_break_op (0);
1443 rh->proc (rh->proc_cls, 0, NULL);
1444 GNS_resolver_lookup_cancel (rh);
1447 vpn = (const struct GNUNET_TUN_GnsVpnRecord *) rd[i].data;
1448 vname = (const char *) &vpn[1];
1449 if ('\0' != vname[rd[i].data_size - 1 - sizeof (struct GNUNET_TUN_GnsVpnRecord)])
1451 GNUNET_break_op (0);
1452 rh->proc (rh->proc_cls, 0, NULL);
1453 GNS_resolver_lookup_cancel (rh);
1456 GNUNET_TUN_service_name_to_hash (vname,
1458 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1459 "Attempting VPN allocation for %s-%s (AF: %d, proto %d)\n",
1460 GNUNET_i2s (&vpn->peer),
1463 (int) ntohs (vpn->proto));
1464 vpn_ctx = GNUNET_new (struct VpnContext);
1465 rh->vpn_ctx = vpn_ctx;
1467 vpn_ctx->rd_data_size = GNUNET_GNSRECORD_records_get_size (rd_count,
1469 vpn_ctx->rd_data = GNUNET_malloc (vpn_ctx->rd_data_size);
1470 vpn_ctx->rd_count = rd_count;
1471 GNUNET_assert (vpn_ctx->rd_data_size ==
1472 GNUNET_GNSRECORD_records_serialize (rd_count,
1474 vpn_ctx->rd_data_size,
1476 vpn_ctx->vpn_request = GNUNET_VPN_redirect_to_peer (vpn_handle,
1481 GNUNET_TIME_relative_to_absolute (VPN_TIMEOUT),
1486 case GNUNET_GNSRECORD_TYPE_GNS2DNS:
1488 /* delegation to DNS */
1489 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1490 "Found GNS2DNS record, delegating to DNS!\n");
1497 } /* end: name_resolution_pos */
1498 /* convert relative names in record values to absolute names,
1499 using 'scratch' array for memory allocations */
1502 shorten_ac = rh->ac_tail;
1503 for (i=0;i<rd_count;i++)
1505 if ( (0 != rh->protocol) &&
1506 (0 != rh->service) &&
1507 (GNUNET_GNSRECORD_TYPE_BOX != rd[i].record_type) )
1508 continue; /* we _only_ care about boxed records */
1510 rd_new[rd_off] = rd[i];
1511 /* Check if the embedded name(s) end in "+", and if so,
1512 replace the "+" with the zone at "ac_tail", changing the name
1513 to a ".zkey". The name is allocated on the 'scratch' array,
1514 so we can free it afterwards. */
1515 switch (rd[i].record_type)
1517 case GNUNET_DNSPARSER_TYPE_CNAME:
1522 cname = GNUNET_DNSPARSER_parse_name (rd[i].data,
1525 if ( (NULL == cname) ||
1526 (off != rd[i].data_size) )
1528 GNUNET_break_op (0); /* record not well-formed */
1532 cname = translate_dot_plus (rh, cname);
1533 GNUNET_break (NULL != cname);
1534 scratch_start = scratch_off;
1536 GNUNET_DNSPARSER_builder_add_name (scratch,
1545 rd_new[rd_off].data = &scratch[scratch_start];
1546 rd_new[rd_off].data_size = scratch_off - scratch_start;
1550 GNUNET_free_non_null (cname);
1553 case GNUNET_DNSPARSER_TYPE_SOA:
1555 struct GNUNET_DNSPARSER_SoaRecord *soa;
1558 soa = GNUNET_DNSPARSER_parse_soa (rd[i].data,
1561 if ( (NULL == soa) ||
1562 (off != rd[i].data_size) )
1564 GNUNET_break_op (0); /* record not well-formed */
1568 soa->mname = translate_dot_plus (rh, soa->mname);
1569 soa->rname = translate_dot_plus (rh, soa->rname);
1570 scratch_start = scratch_off;
1572 GNUNET_DNSPARSER_builder_add_soa (scratch,
1581 rd_new[rd_off].data = &scratch[scratch_start];
1582 rd_new[rd_off].data_size = scratch_off - scratch_start;
1587 GNUNET_DNSPARSER_free_soa (soa);
1590 case GNUNET_DNSPARSER_TYPE_MX:
1592 struct GNUNET_DNSPARSER_MxRecord *mx;
1595 mx = GNUNET_DNSPARSER_parse_mx (rd[i].data,
1598 if ( (NULL == mx) ||
1599 (off != rd[i].data_size) )
1601 GNUNET_break_op (0); /* record not well-formed */
1605 mx->mxhost = translate_dot_plus (rh, mx->mxhost);
1606 scratch_start = scratch_off;
1608 GNUNET_DNSPARSER_builder_add_mx (scratch,
1617 rd_new[rd_off].data = &scratch[scratch_start];
1618 rd_new[rd_off].data_size = scratch_off - scratch_start;
1623 GNUNET_DNSPARSER_free_mx (mx);
1626 case GNUNET_DNSPARSER_TYPE_SRV:
1628 struct GNUNET_DNSPARSER_SrvRecord *srv;
1631 srv = GNUNET_DNSPARSER_parse_srv (rd[i].data,
1634 if ( (NULL == srv) ||
1635 (off != rd[i].data_size) )
1637 GNUNET_break_op (0); /* record not well-formed */
1641 srv->target = translate_dot_plus (rh, srv->target);
1642 scratch_start = scratch_off;
1644 GNUNET_DNSPARSER_builder_add_srv (scratch,
1653 rd_new[rd_off].data = &scratch[scratch_start];
1654 rd_new[rd_off].data_size = scratch_off - scratch_start;
1659 GNUNET_DNSPARSER_free_srv (srv);
1663 case GNUNET_GNSRECORD_TYPE_NICK:
1668 if ((rd[i].data_size > 0) &&
1669 (nick[rd[i].data_size -1] != '\0'))
1671 GNUNET_break_op (0);
1674 if (NULL == shorten_ac->suggested_shortening_label)
1675 shorten_ac->suggested_shortening_label = GNUNET_strdup (nick);
1678 case GNUNET_GNSRECORD_TYPE_PKEY:
1680 struct GNUNET_CRYPTO_EcdsaPublicKey pub;
1682 if (rd[i].data_size != sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey))
1684 GNUNET_break_op (0);
1687 memcpy (&pub, rd[i].data, rd[i].data_size);
1689 if (GNUNET_GNSRECORD_TYPE_PKEY != rh->record_type)
1691 /* try to resolve "+" */
1692 struct AuthorityChain *ac;
1694 ac = GNUNET_new (struct AuthorityChain);
1696 ac->gns_authority = GNUNET_YES;
1697 ac->authority_info.gns_authority = pub;
1698 ac->label = GNUNET_strdup (GNUNET_GNS_MASTERZONE_STR);
1699 ac->suggested_shortening_label = NULL;
1700 ac->shortening_started = GNUNET_NO;
1701 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1704 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1710 case GNUNET_GNSRECORD_TYPE_GNS2DNS:
1712 /* delegation to DNS */
1713 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1714 "Found GNS2DNS record, delegating to DNS!\n");
1717 case GNUNET_GNSRECORD_TYPE_BOX:
1719 /* unbox SRV/TLSA records if a specific one was requested */
1720 if ( (0 != rh->protocol) &&
1721 (0 != rh->service) &&
1722 (rd[i].data_size >= sizeof (struct GNUNET_GNSRECORD_BoxRecord)) )
1724 const struct GNUNET_GNSRECORD_BoxRecord *box;
1727 if ( (ntohs (box->protocol) == rh->protocol) &&
1728 (ntohs (box->service) == rh->service) )
1730 /* Box matches, unbox! */
1731 rd_new[rd_off].record_type = ntohl (box->record_type);
1732 rd_new[rd_off].data_size -= sizeof (struct GNUNET_GNSRECORD_BoxRecord);
1733 rd_new[rd_off].data = &box[1];
1739 /* no specific protocol/service specified, preserve all BOX
1740 records (for modern, GNS-enabled applications) */
1748 } /* end: for rd_count */
1750 /* trigger shortening */
1751 if ((NULL != rh->shorten_key) &&
1752 (NULL != shorten_ac) &&
1753 (GNUNET_NO == shorten_ac->shortening_started) &&
1754 (NULL != shorten_ac->suggested_shortening_label))
1756 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1757 "Start shortening for label `%s' based on nick `%s'\n",
1759 shorten_ac->suggested_shortening_label);
1760 shorten_ac->shortening_started = GNUNET_YES;
1761 GNS_shorten_start (shorten_ac->label,
1762 shorten_ac->suggested_shortening_label,
1763 &shorten_ac->authority_info.gns_authority,
1767 /* yes, we are done, return result */
1768 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1769 "Returning GNS response for `%s' with %u answers\n",
1772 rh->proc (rh->proc_cls, rd_off, rd_new);
1773 GNS_resolver_lookup_cancel (rh);
1777 /* need to recurse, check if we can */
1778 for (i=0;i<rd_count;i++)
1780 switch (rd[i].record_type)
1782 case GNUNET_GNSRECORD_TYPE_PKEY:
1783 /* delegation to another zone */
1784 if (sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey) !=
1787 GNUNET_break_op (0);
1788 rh->proc (rh->proc_cls, 0, NULL);
1789 GNS_resolver_lookup_cancel (rh);
1792 /* expand authority chain */
1793 ac = GNUNET_new (struct AuthorityChain);
1795 ac->gns_authority = GNUNET_YES;
1796 ac->suggested_shortening_label = NULL;
1797 ac->shortening_started = GNUNET_NO;
1798 memcpy (&ac->authority_info.gns_authority,
1800 sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey));
1801 ac->label = resolver_lookup_get_next_label (rh);
1802 /* add AC to tail */
1803 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
1807 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
1810 case GNUNET_GNSRECORD_TYPE_GNS2DNS:
1812 /* resolution continues within DNS */
1813 struct Gns2DnsContext *g2dc;
1818 ns = GNUNET_DNSPARSER_parse_name (rd[i].data,
1821 ip = GNUNET_DNSPARSER_parse_name (rd[i].data,
1824 if ( (NULL == ns) ||
1826 (off != rd[i].data_size) )
1828 GNUNET_break_op (0);
1829 GNUNET_free_non_null (ns);
1830 GNUNET_free_non_null (ip);
1831 rh->proc (rh->proc_cls, 0, NULL);
1832 GNS_resolver_lookup_cancel (rh);
1835 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1836 "Resolving `%s' to determine IP address of DNS server for GNS2DNS transition\n",
1838 /* resolve 'ip' to determine the IP(s) of the DNS
1840 g2dc = GNUNET_new (struct Gns2DnsContext);
1843 g2dc->rh = GNUNET_new (struct GNS_ResolverHandle);
1844 g2dc->rh->authority_zone = rh->ac_tail->authority_info.gns_authority;
1845 ip = translate_dot_plus (rh, ip);
1846 g2dc->rh->name = ip;
1847 g2dc->rh->name_resolution_pos = strlen (ip);
1848 g2dc->rh->proc = &handle_gns2dns_result;
1849 g2dc->rh->proc_cls = rh;
1850 g2dc->rh->record_type = GNUNET_GNSRECORD_TYPE_ANY;
1851 g2dc->rh->options = GNUNET_GNS_LO_DEFAULT;
1852 g2dc->rh->loop_limiter = rh->loop_limiter + 1;
1854 start_resolver_lookup (g2dc->rh);
1857 case GNUNET_DNSPARSER_TYPE_CNAME:
1862 cname = GNUNET_DNSPARSER_parse_name (rd[i].data,
1865 if ( (NULL == cname) ||
1866 (off != rd[i].data_size) )
1868 GNUNET_break_op (0); /* record not well-formed */
1869 rh->proc (rh->proc_cls, 0, NULL);
1870 GNS_resolver_lookup_cancel (rh);
1871 GNUNET_free_non_null (cname);
1874 handle_gns_cname_result (rh,
1876 GNUNET_free (cname);
1879 /* FIXME: handle DNAME */
1885 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1886 _("GNS lookup recursion failed (no delegation record found)\n"));
1887 rh->proc (rh->proc_cls, 0, NULL);
1888 GNS_resolver_lookup_cancel (rh);
1893 * Function called once the namestore has completed the request for
1896 * @param cls closure with the `struct CacheOps`
1897 * @param success #GNUNET_OK on success
1898 * @param emsg error message
1901 namecache_cache_continuation (void *cls,
1905 struct CacheOps *co = cls;
1907 co->namecache_qe_cache = NULL;
1909 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
1910 _("Failed to cache GNS resolution: %s\n"),
1912 GNUNET_CONTAINER_DLL_remove (co_head,
1920 * Iterator called on each result obtained for a DHT
1921 * operation that expects a reply
1923 * @param cls closure with the `struct GNS_ResolverHandle`
1924 * @param exp when will this value expire
1925 * @param key key of the result
1926 * @param get_path peers on reply path (or NULL if not recorded)
1927 * [0] = datastore's first neighbor, [length - 1] = local peer
1928 * @param get_path_length number of entries in @a get_path
1929 * @param put_path peers on the PUT path (or NULL if not recorded)
1930 * [0] = origin, [length - 1] = datastore
1931 * @param put_path_length number of entries in @a put_path
1932 * @param type type of the result
1933 * @param size number of bytes in data
1934 * @param data pointer to the result data
1937 handle_dht_response (void *cls,
1938 struct GNUNET_TIME_Absolute exp,
1939 const struct GNUNET_HashCode *key,
1940 const struct GNUNET_PeerIdentity *get_path,
1941 unsigned int get_path_length,
1942 const struct GNUNET_PeerIdentity *put_path,
1943 unsigned int put_path_length,
1944 enum GNUNET_BLOCK_Type type,
1945 size_t size, const void *data)
1947 struct GNS_ResolverHandle *rh = cls;
1948 struct AuthorityChain *ac = rh->ac_tail;
1949 const struct GNUNET_GNSRECORD_Block *block;
1950 struct CacheOps *co;
1952 GNUNET_DHT_get_stop (rh->get_handle);
1953 rh->get_handle = NULL;
1954 GNUNET_CONTAINER_heap_remove_node (rh->dht_heap_node);
1955 rh->dht_heap_node = NULL;
1956 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1957 "Handling response from the DHT\n");
1958 if (size < sizeof (struct GNUNET_GNSRECORD_Block))
1960 /* how did this pass DHT block validation!? */
1962 rh->proc (rh->proc_cls, 0, NULL);
1963 GNS_resolver_lookup_cancel (rh);
1968 ntohl (block->purpose.size) +
1969 sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey) +
1970 sizeof (struct GNUNET_CRYPTO_EcdsaSignature))
1972 /* how did this pass DHT block validation!? */
1974 rh->proc (rh->proc_cls, 0, NULL);
1975 GNS_resolver_lookup_cancel (rh);
1979 GNUNET_GNSRECORD_block_decrypt (block,
1980 &ac->authority_info.gns_authority,
1982 &handle_gns_resolution_result,
1985 GNUNET_break_op (0); /* block was ill-formed */
1986 rh->proc (rh->proc_cls, 0, NULL);
1987 GNS_resolver_lookup_cancel (rh);
1990 if (0 == GNUNET_TIME_absolute_get_remaining (GNUNET_TIME_absolute_ntoh (block->expiration_time)).rel_value_us)
1992 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1993 "Received expired block from the DHT, will not cache it.\n");
1996 /* Cache well-formed blocks */
1997 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
1998 "Caching response from the DHT in namecache\n");
1999 co = GNUNET_new (struct CacheOps);
2000 co->namecache_qe_cache = GNUNET_NAMECACHE_block_cache (namecache_handle,
2002 &namecache_cache_continuation,
2004 GNUNET_CONTAINER_DLL_insert (co_head,
2011 * Initiate a DHT query for a set of GNS records.
2013 * @param rh resolution handle
2014 * @param query key to use in the DHT lookup
2017 start_dht_request (struct GNS_ResolverHandle *rh,
2018 const struct GNUNET_HashCode *query)
2020 struct GNS_ResolverHandle *rx;
2022 GNUNET_assert (NULL == rh->get_handle);
2023 rh->get_handle = GNUNET_DHT_get_start (dht_handle,
2024 GNUNET_BLOCK_TYPE_GNS_NAMERECORD,
2026 DHT_GNS_REPLICATION_LEVEL,
2027 GNUNET_DHT_RO_DEMULTIPLEX_EVERYWHERE,
2029 &handle_dht_response, rh);
2030 rh->dht_heap_node = GNUNET_CONTAINER_heap_insert (dht_lookup_heap,
2032 GNUNET_TIME_absolute_get ().abs_value_us);
2033 if (GNUNET_CONTAINER_heap_get_size (dht_lookup_heap) > max_allowed_background_queries)
2035 /* fail longest-standing DHT request */
2036 rx = GNUNET_CONTAINER_heap_peek (dht_lookup_heap);
2037 GNUNET_assert (NULL != rx);
2038 rx->proc (rx->proc_cls, 0, NULL);
2039 GNS_resolver_lookup_cancel (rx);
2045 * Process a records that were decrypted from a block that we got from
2046 * the namecache. Simply calls #handle_gns_resolution_result().
2048 * @param cls closure with the `struct GNS_ResolverHandle`
2049 * @param rd_count number of entries in @a rd array
2050 * @param rd array of records with data to store
2053 handle_gns_namecache_resolution_result (void *cls,
2054 unsigned int rd_count,
2055 const struct GNUNET_GNSRECORD_Data *rd)
2057 struct GNS_ResolverHandle *rh = cls;
2059 handle_gns_resolution_result (rh,
2066 * Process a record that was stored in the namecache.
2068 * @param cls closure with the `struct GNS_ResolverHandle`
2069 * @param block block that was stored in the namecache
2072 handle_namecache_block_response (void *cls,
2073 const struct GNUNET_GNSRECORD_Block *block)
2075 struct GNS_ResolverHandle *rh = cls;
2076 struct AuthorityChain *ac = rh->ac_tail;
2077 const char *label = ac->label;
2078 const struct GNUNET_CRYPTO_EcdsaPublicKey *auth = &ac->authority_info.gns_authority;
2079 struct GNUNET_HashCode query;
2081 GNUNET_assert (NULL != rh->namecache_qe);
2082 rh->namecache_qe = NULL;
2083 if ( ( (GNUNET_GNS_LO_DEFAULT == rh->options) ||
2084 ( (GNUNET_GNS_LO_LOCAL_MASTER == rh->options) &&
2085 (ac != rh->ac_head) ) ) &&
2086 ( (NULL == block) ||
2087 (0 == GNUNET_TIME_absolute_get_remaining (GNUNET_TIME_absolute_ntoh (block->expiration_time)).rel_value_us) ) )
2089 /* namecache knows nothing; try DHT lookup */
2090 GNUNET_GNSRECORD_query_from_public_key (auth,
2093 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2094 "Starting DHT lookup for `%s' in zone `%s' under key `%s'\n",
2096 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority),
2097 GNUNET_h2s (&query));
2098 start_dht_request (rh, &query);
2102 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2103 "Received result from namecache for label `%s'\n",
2106 if ( (NULL == block) ||
2107 (0 == GNUNET_TIME_absolute_get_remaining (GNUNET_TIME_absolute_ntoh (block->expiration_time)).rel_value_us) )
2109 /* DHT not permitted and no local result, fail */
2110 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2111 "Resolution failed for `%s' in zone %s (DHT lookup not permitted by configuration)\n",
2113 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2114 rh->proc (rh->proc_cls, 0, NULL);
2115 GNS_resolver_lookup_cancel (rh);
2119 GNUNET_GNSRECORD_block_decrypt (block,
2122 &handle_gns_namecache_resolution_result,
2125 GNUNET_break_op (0); /* block was ill-formed */
2126 /* try DHT instead */
2127 GNUNET_GNSRECORD_query_from_public_key (auth,
2130 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2131 "Starting DHT lookup for `%s' in zone `%s' under key `%s'\n",
2133 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority),
2134 GNUNET_h2s (&query));
2135 start_dht_request (rh, &query);
2142 * Lookup tail of our authority chain in the namecache.
2144 * @param rh query we are processing
2147 recursive_gns_resolution_namecache (struct GNS_ResolverHandle *rh)
2149 struct AuthorityChain *ac = rh->ac_tail;
2150 struct GNUNET_HashCode query;
2152 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2153 "Starting GNS resolution for `%s' in zone %s\n",
2155 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2156 GNUNET_GNSRECORD_query_from_public_key (&ac->authority_info.gns_authority,
2159 if (GNUNET_YES == use_cache)
2162 = GNUNET_NAMECACHE_lookup_block (namecache_handle,
2164 &handle_namecache_block_response,
2166 GNUNET_assert (NULL != rh->namecache_qe);
2170 start_dht_request (rh, &query);
2176 * Function called with the result from a revocation check.
2178 * @param cls the `struct GNS_ResovlerHandle`
2179 * @param is_valid #GNUNET_YES if the zone was not yet revoked
2182 handle_revocation_result (void *cls,
2185 struct GNS_ResolverHandle *rh = cls;
2186 struct AuthorityChain *ac = rh->ac_tail;
2188 rh->rev_check = NULL;
2189 if (GNUNET_YES != is_valid)
2191 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
2192 _("Zone %s was revoked, resolution fails\n"),
2193 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2194 rh->proc (rh->proc_cls, 0, NULL);
2195 GNS_resolver_lookup_cancel (rh);
2198 recursive_gns_resolution_namecache (rh);
2203 * Perform revocation check on tail of our authority chain.
2205 * @param rh query we are processing
2208 recursive_gns_resolution_revocation (struct GNS_ResolverHandle *rh)
2210 struct AuthorityChain *ac = rh->ac_tail;
2212 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2213 "Starting revocation check for zone %s\n",
2214 GNUNET_GNSRECORD_z2s (&ac->authority_info.gns_authority));
2215 rh->rev_check = GNUNET_REVOCATION_query (cfg,
2216 &ac->authority_info.gns_authority,
2217 &handle_revocation_result,
2219 GNUNET_assert (NULL != rh->rev_check);
2224 * Task scheduled to continue with the resolution process.
2226 * @param cls the `struct GNS_ResolverHandle` of the resolution
2227 * @param tc task context
2230 recursive_resolution (void *cls,
2231 const struct GNUNET_SCHEDULER_TaskContext *tc)
2233 struct GNS_ResolverHandle *rh = cls;
2236 if (MAX_RECURSION < rh->loop_limiter++)
2238 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
2239 "Encountered unbounded recursion resolving `%s'\n",
2241 rh->proc (rh->proc_cls, 0, NULL);
2242 GNS_resolver_lookup_cancel (rh);
2245 if (GNUNET_YES == rh->ac_tail->gns_authority)
2246 recursive_gns_resolution_revocation (rh);
2248 recursive_dns_resolution (rh);
2253 * Begin the resolution process from 'name', starting with
2254 * the identification of the zone specified by 'name'.
2256 * @param rh resolution to perform
2259 start_resolver_lookup (struct GNS_ResolverHandle *rh)
2261 struct AuthorityChain *ac;
2266 if (1 == inet_pton (AF_INET,
2270 /* name is IPv4 address, pretend it's an A record */
2271 struct GNUNET_GNSRECORD_Data rd;
2274 rd.data_size = sizeof (v4);
2275 rd.expiration_time = UINT64_MAX;
2276 rd.record_type = GNUNET_DNSPARSER_TYPE_A;
2278 rh->proc (rh->proc_cls, 1, &rd);
2279 GNS_resolver_lookup_cancel (rh);
2282 if (1 == inet_pton (AF_INET6,
2286 /* name is IPv6 address, pretend it's an AAAA record */
2287 struct GNUNET_GNSRECORD_Data rd;
2290 rd.data_size = sizeof (v6);
2291 rd.expiration_time = UINT64_MAX;
2292 rd.record_type = GNUNET_DNSPARSER_TYPE_AAAA;
2294 rh->proc (rh->proc_cls, 1, &rd);
2295 GNS_resolver_lookup_cancel (rh);
2298 if ( ( (GNUNET_YES == is_canonical (rh->name)) &&
2299 (0 != strcmp (GNUNET_GNS_TLD, rh->name)) ) ||
2300 ( (GNUNET_YES != is_gnu_tld (rh->name)) &&
2301 (GNUNET_YES != is_zkey_tld (rh->name)) ) )
2303 /* use standard DNS lookup */
2306 switch (rh->record_type)
2308 case GNUNET_DNSPARSER_TYPE_A:
2311 case GNUNET_DNSPARSER_TYPE_AAAA:
2318 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2319 "Doing standard DNS lookup for `%s'\n",
2321 rh->std_resolve = GNUNET_RESOLVER_ip_get (rh->name,
2328 if (is_zkey_tld (rh->name))
2330 /* Name ends with ".zkey", try to replace authority zone with zkey
2332 GNUNET_free (resolver_lookup_get_next_label (rh)); /* will return "zkey" */
2333 y = resolver_lookup_get_next_label (rh); /* will return 'y' coordinate */
2336 GNUNET_CRYPTO_ecdsa_public_key_from_string (y,
2338 &rh->authority_zone)) )
2340 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
2341 _("Hostname `%s' is not well-formed, resolution fails\n"),
2343 rh->task_id = GNUNET_SCHEDULER_add_now (&fail_resolution, rh);
2345 GNUNET_free_non_null (y);
2349 /* Name ends with ".gnu", eat ".gnu" and continue with resolution */
2350 GNUNET_free (resolver_lookup_get_next_label (rh));
2352 ac = GNUNET_new (struct AuthorityChain);
2354 ac->label = resolver_lookup_get_next_label (rh);
2355 ac->suggested_shortening_label = NULL;
2356 if (NULL == ac->label)
2357 /* name was just "gnu", so we default to label '+' */
2358 ac->label = GNUNET_strdup (GNUNET_GNS_MASTERZONE_STR);
2359 ac->gns_authority = GNUNET_YES;
2360 ac->authority_info.gns_authority = rh->authority_zone;
2361 GNUNET_CONTAINER_DLL_insert_tail (rh->ac_head,
2364 rh->task_id = GNUNET_SCHEDULER_add_now (&recursive_resolution,
2370 * Lookup of a record in a specific zone calls lookup result processor
2373 * @param zone the zone to perform the lookup in
2374 * @param record_type the record type to look up
2375 * @param name the name to look up
2376 * @param shorten_key a private key for use with PSEU import (can be NULL)
2377 * @param options local options to control local lookup
2378 * @param proc the processor to call on result
2379 * @param proc_cls the closure to pass to @a proc
2380 * @return handle to cancel operation
2382 struct GNS_ResolverHandle *
2383 GNS_resolver_lookup (const struct GNUNET_CRYPTO_EcdsaPublicKey *zone,
2384 uint32_t record_type,
2386 const struct GNUNET_CRYPTO_EcdsaPrivateKey *shorten_key,
2387 enum GNUNET_GNS_LocalOptions options,
2388 GNS_ResultProcessor proc, void *proc_cls)
2390 struct GNS_ResolverHandle *rh;
2392 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2393 (NULL == shorten_key)
2394 ? "Starting lookup for `%s' with shortening disabled\n"
2395 : "Starting lookup for `%s' with shortening enabled\n",
2397 rh = GNUNET_new (struct GNS_ResolverHandle);
2398 GNUNET_CONTAINER_DLL_insert (rlh_head,
2401 rh->authority_zone = *zone;
2403 rh->proc_cls = proc_cls;
2404 rh->options = options;
2405 rh->record_type = record_type;
2406 rh->name = GNUNET_strdup (name);
2407 rh->name_resolution_pos = strlen (name);
2408 if (NULL != shorten_key)
2410 rh->shorten_key = GNUNET_new (struct GNUNET_CRYPTO_EcdsaPrivateKey);
2411 *rh->shorten_key = *shorten_key;
2413 start_resolver_lookup (rh);
2419 * Cancel active resolution (i.e. client disconnected).
2421 * @param rh resolution to abort
2424 GNS_resolver_lookup_cancel (struct GNS_ResolverHandle *rh)
2426 struct DnsResult *dr;
2427 struct AuthorityChain *ac;
2428 struct VpnContext *vpn_ctx;
2430 GNUNET_CONTAINER_DLL_remove (rlh_head,
2433 while (NULL != (ac = rh->ac_head))
2435 GNUNET_CONTAINER_DLL_remove (rh->ac_head,
2438 GNUNET_free (ac->label);
2439 GNUNET_free_non_null (ac->suggested_shortening_label);
2442 if (NULL != rh->g2dc)
2444 /* rh->g2dc->rh is NOT in the DLL yet, so to enable us
2445 using GNS_resolver_lookup_cancel here, we need to
2447 if (NULL != rh->g2dc->rh)
2449 GNUNET_CONTAINER_DLL_insert (rlh_head,
2452 GNS_resolver_lookup_cancel (rh->g2dc->rh);
2453 rh->g2dc->rh = NULL;
2455 GNUNET_free (rh->g2dc->ns);
2456 GNUNET_free (rh->g2dc);
2459 if (NULL != rh->task_id)
2461 GNUNET_SCHEDULER_cancel (rh->task_id);
2464 if (NULL != rh->get_handle)
2466 GNUNET_DHT_get_stop (rh->get_handle);
2467 rh->get_handle = NULL;
2469 if (NULL != rh->dht_heap_node)
2471 GNUNET_CONTAINER_heap_remove_node (rh->dht_heap_node);
2472 rh->dht_heap_node = NULL;
2474 if (NULL != (vpn_ctx = rh->vpn_ctx))
2476 GNUNET_VPN_cancel_request (vpn_ctx->vpn_request);
2477 GNUNET_free (vpn_ctx->rd_data);
2478 GNUNET_free (vpn_ctx);
2480 if (NULL != rh->dns_request)
2482 GNUNET_DNSSTUB_resolve_cancel (rh->dns_request);
2483 rh->dns_request = NULL;
2485 if (NULL != rh->namecache_qe)
2487 GNUNET_NAMECACHE_cancel (rh->namecache_qe);
2488 rh->namecache_qe = NULL;
2490 if (NULL != rh->rev_check)
2492 GNUNET_REVOCATION_query_cancel (rh->rev_check);
2493 rh->rev_check = NULL;
2495 if (NULL != rh->std_resolve)
2497 GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
2498 "Canceling standard DNS resolution\n");
2499 GNUNET_RESOLVER_request_cancel (rh->std_resolve);
2500 rh->std_resolve = NULL;
2502 while (NULL != (dr = rh->dns_result_head))
2504 GNUNET_CONTAINER_DLL_remove (rh->dns_result_head,
2505 rh->dns_result_tail,
2509 GNUNET_free_non_null (rh->shorten_key);
2510 GNUNET_free (rh->name);
2515 /* ***************** Resolver initialization ********************* */
2519 * Initialize the resolver
2521 * @param nc the namecache handle
2522 * @param dht the dht handle
2523 * @param c configuration handle
2524 * @param max_bg_queries maximum number of parallel background queries in dht
2527 GNS_resolver_init (struct GNUNET_NAMECACHE_Handle *nc,
2528 struct GNUNET_DHT_Handle *dht,
2529 const struct GNUNET_CONFIGURATION_Handle *c,
2530 unsigned long long max_bg_queries)
2535 namecache_handle = nc;
2538 GNUNET_CONTAINER_heap_create (GNUNET_CONTAINER_HEAP_ORDER_MIN);
2539 max_allowed_background_queries = max_bg_queries;
2540 if (GNUNET_SYSERR == (use_cache = GNUNET_CONFIGURATION_get_value_yesno (c,
2543 use_cache = GNUNET_YES;
2544 if (GNUNET_NO == use_cache)
2545 GNUNET_log (GNUNET_ERROR_TYPE_ERROR, "Namecache disabled\n");
2548 GNUNET_CONFIGURATION_get_value_string (c,
2553 /* user did not specify DNS resolver, use 8.8.8.8 */
2554 dns_ip = GNUNET_strdup ("8.8.8.8");
2556 dns_handle = GNUNET_DNSSTUB_start (dns_ip);
2557 GNUNET_free (dns_ip);
2558 vpn_handle = GNUNET_VPN_connect (cfg);
2566 GNS_resolver_done ()
2568 struct GNS_ResolverHandle *rh;
2569 struct CacheOps *co;
2571 /* abort active resolutions */
2572 while (NULL != (rh = rlh_head))
2574 rh->proc (rh->proc_cls, 0, NULL);
2575 GNS_resolver_lookup_cancel (rh);
2577 while (NULL != (co = co_head))
2579 GNUNET_CONTAINER_DLL_remove (co_head,
2582 GNUNET_NAMECACHE_cancel (co->namecache_qe_cache);
2585 GNUNET_CONTAINER_heap_destroy (dht_lookup_heap);
2586 dht_lookup_heap = NULL;
2587 GNUNET_DNSSTUB_stop (dns_handle);
2589 GNUNET_VPN_disconnect (vpn_handle);
2592 namecache_handle = NULL;
2596 /* *************** common helper functions (do not really belong here) *********** */
2599 * Checks if @a name ends in ".TLD"
2601 * @param name the name to check
2602 * @param tld the TLD to check for
2603 * @return GNUNET_YES or GNUNET_NO
2606 is_tld (const char* name, const char* tld)
2610 if (strlen (name) <= strlen (tld))
2612 offset = strlen (name) - strlen (tld);
2613 if (0 != strcmp (name + offset, tld))
2619 /* end of gnunet-service-gns_resolver.c */
projects / oweals / gnunet.git / blob