add relay_sendme and the cell windows so that the

full consensus can be fetched without the windows closing, fixed bugs related to consensus fetching
jpbland1 · Sep 1, 2023 · 0a195e6 · 0a195e6
1 parent 2bdc34f
commit 0a195e6
Show file tree

Hide file tree

Showing 16 changed files with 291 additions and 137 deletions.
diff --git a/h/circuit.h b/h/circuit.h
@@ -52,7 +52,8 @@ int d_process_certs( DlConnection* or_connection, CellVariable* certs_cell, int
 int d_process_challenge( DlConnection* or_connection, CellVariable* challenge_cell, int length );
 int d_process_netinfo( DlConnection* or_connection, Cell* netinfo_cell );
 int d_router_begin_dir( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id );
-int d_rounter_relay_data_cell( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id, uint8_t* data, uint32_t data_len );
-int d_router_relay_end( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id );
+int d_router_relay_data_cell( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id, uint8_t* data, uint32_t data_len );
+int d_router_relay_end(OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id);
+int d_router_relay_sendme(OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id);
 
 #endif
diff --git a/h/constants.h b/h/constants.h
@@ -70,4 +70,7 @@ Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 
 #define WATCHDOG_TIMEOUT_PERIOD 30
 
+#define RELAY_WINDOW_DEFAULT 1000
+#define STREAM_RELAY_WINDOW_DEFAULT 500
+
 #endif
diff --git a/h/structures/cell.h b/h/structures/cell.h
@@ -461,6 +461,13 @@ typedef union __attribute__((__packed__)) CellPayload
       uint8_t destroy_code;
 
       uint8_t data[RELAY_PAYLOAD_LEN];
+
+      struct __attribute__((__packed__))
+      {
+        uint8_t version;
+        uint16_t data_len;
+        uint8_t data[];
+      } sendme;
     };
   } relay;
 

diff --git a/h/structures/circuit.h b/h/structures/circuit.h
@@ -96,6 +96,8 @@ typedef struct OnionCircuit
   int desc_index;
   int target_relay_index;
   int relay_early_count;
+  uint16_t stream_package_windows[5];
+  uint16_t stream_deliver_windows[5];
 } OnionCircuit;
 
 extern unsigned int circ_id_counter;

diff --git a/h/structures/consensus.h b/h/structures/consensus.h
@@ -108,6 +108,8 @@ struct DoublyLinkedOnionRelay {
   DoublyLinkedOnionRelay* next;
   OnionRelay* relay;
   RelayCrypto* relay_crypto;
+  unsigned int package_window;
+  unsigned int deliver_window;
 };
 
 typedef struct DoublyLinkedOnionRelayList {
@@ -119,7 +121,8 @@ typedef struct DoublyLinkedOnionRelayList {
 
 void v_add_relay_to_list( DoublyLinkedOnionRelay* node, DoublyLinkedOnionRelayList* list );
 void v_pop_relay_from_list_back( DoublyLinkedOnionRelayList* list );
-OnionRelay* px_get_relay_by_index( DoublyLinkedOnionRelayList* list, int index );
+DoublyLinkedOnionRelay* px_get_dl_relay_by_index(DoublyLinkedOnionRelayList* list, int index);
+OnionRelay* px_get_relay_by_index(DoublyLinkedOnionRelayList* list, int index);
 
 // shared state must be protected by mutex
 extern NetworkConsensus network_consensus;

diff --git a/h/structures/onion_message.h b/h/structures/onion_message.h
@@ -41,7 +41,6 @@ typedef enum OnionMessageType
   CLIENT_RELAY_END,
   CLIENT_CLOSED,
   CONSENSUS_FETCHED,
-  EXTERNAL_CONSENSUS_FETCHED,
 } OnionMessageType;
 
 typedef struct OnionMessage

diff --git a/src/cell.c b/src/cell.c
@@ -632,5 +632,6 @@ int d_decrypt_cell( Cell* cell, int circ_id_length, DoublyLinkedOnionRelayList*
     }
   }
 
-  return 0;
+  // return the circuit index that sent this cell
+  return i;
 }
diff --git a/src/circuit.c b/src/circuit.c
@@ -161,6 +161,9 @@ int d_prepare_onion_circuit( OnionCircuit* circuit, int length, OnionRelay* star
   if ( start_relay != NULL )
   {
     dl_relay = malloc( sizeof( DoublyLinkedOnionRelay ) );
+    memset(dl_relay, 0, sizeof(DoublyLinkedOnionRelay));
+    dl_relay->package_window = RELAY_WINDOW_DEFAULT;
+    dl_relay->deliver_window = RELAY_WINDOW_DEFAULT;
     dl_relay->relay = start_relay;
 
     dl_relay->next = circuit->relay_list.head;
@@ -183,8 +186,10 @@ int d_prepare_onion_circuit( OnionCircuit* circuit, int length, OnionRelay* star
   // append the destination_relay to the list
   if ( end_relay != NULL )
   {
-
     dl_relay = malloc( sizeof( DoublyLinkedOnionRelay ) );
+    memset(dl_relay, 0, sizeof(DoublyLinkedOnionRelay));
+    dl_relay->package_window = RELAY_WINDOW_DEFAULT;
+    dl_relay->deliver_window = RELAY_WINDOW_DEFAULT;
     dl_relay->relay = end_relay;
 
     v_add_relay_to_list( dl_relay, &circuit->relay_list );
@@ -207,48 +212,51 @@ int d_prepare_onion_circuit( OnionCircuit* circuit, int length, OnionRelay* star
 
 int d_get_suitable_relay( DoublyLinkedOnionRelayList* relay_list, int guard, uint8_t* exclude_start, uint8_t* exclude_end )
 {
-  DoublyLinkedOnionRelay* db_relay;
+  DoublyLinkedOnionRelay* dl_relay;
 
-  db_relay = malloc( sizeof( DoublyLinkedOnionRelay ) );
-  db_relay->relay = px_get_random_fast_relay( guard, relay_list, exclude_start, exclude_end );
+  dl_relay = malloc( sizeof( DoublyLinkedOnionRelay ) );
+  memset(dl_relay, 0, sizeof(DoublyLinkedOnionRelay));
+  dl_relay->package_window = RELAY_WINDOW_DEFAULT;
+  dl_relay->deliver_window = RELAY_WINDOW_DEFAULT;
+  dl_relay->relay = px_get_random_fast_relay( guard, relay_list, exclude_start, exclude_end );
 
-  if ( db_relay->relay == NULL )
+  if ( dl_relay->relay == NULL )
   {
     MINITOR_LOG( MINITOR_TAG, "Failed to get guard relay" );
 
-    free( db_relay );
+    free( dl_relay );
 
     return -1;
   }
 
-  v_add_relay_to_list( db_relay, relay_list );
+  v_add_relay_to_list( dl_relay, relay_list );
 
   return 0;
 }
 
 int d_get_suitable_onion_relays( DoublyLinkedOnionRelayList* relay_list, int desired_length, uint8_t* exclude_start, uint8_t* exclude_end )
 {
   int i;
-  DoublyLinkedOnionRelay* db_relay;
+  DoublyLinkedOnionRelay* dl_relay;
 
   for ( i = relay_list->length; i < desired_length; i++ )
   {
-    db_relay = malloc( sizeof( DoublyLinkedOnionRelay ) );
+    dl_relay = malloc( sizeof( DoublyLinkedOnionRelay ) );
 
     if ( i == 0 )
     {
-      db_relay->relay = px_get_random_fast_relay( 1, NULL, exclude_start, exclude_end );
+      dl_relay->relay = px_get_random_fast_relay( 1, NULL, exclude_start, exclude_end );
     }
     else
     {
-      db_relay->relay = px_get_random_fast_relay( 0, relay_list, exclude_start, exclude_end );
+      dl_relay->relay = px_get_random_fast_relay( 0, relay_list, exclude_start, exclude_end );
     }
 
-    if ( db_relay->relay == NULL )
+    if ( dl_relay->relay == NULL )
     {
       MINITOR_LOG( MINITOR_TAG, "Failed to get guard relay" );
 
-      free( db_relay );
+      free( dl_relay );
 
       while ( relay_list->length > 0 )
       {
@@ -258,7 +266,7 @@ int d_get_suitable_onion_relays( DoublyLinkedOnionRelayList* relay_list, int des
       return -1;
     }
 
-    v_add_relay_to_list( db_relay, relay_list );
+    v_add_relay_to_list( dl_relay, relay_list );
   }
 
   return 0;
@@ -632,7 +640,7 @@ int d_ntor_handshake_start( unsigned char* handshake_data, OnionRelay* relay, cu
   return 0;
 }
 
-int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db_relay, curve25519_key* key )
+int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* dl_relay, curve25519_key* key )
 {
   int wolf_succ;
   unsigned int idx;
@@ -654,12 +662,12 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
   wc_curve25519_init( &responder_handshake_public_key );
   wc_curve25519_init( &ntor_onion_key );
 
-  db_relay->relay_crypto = malloc( sizeof( RelayCrypto ) );
+  dl_relay->relay_crypto = malloc( sizeof( RelayCrypto ) );
 
-  wc_InitSha( &db_relay->relay_crypto->running_sha_forward );
-  wc_InitSha( &db_relay->relay_crypto->running_sha_backward );
-  wc_AesInit( &db_relay->relay_crypto->aes_forward, NULL, INVALID_DEVID );
-  wc_AesInit( &db_relay->relay_crypto->aes_backward, NULL, INVALID_DEVID );
+  wc_InitSha( &dl_relay->relay_crypto->running_sha_forward );
+  wc_InitSha( &dl_relay->relay_crypto->running_sha_backward );
+  wc_AesInit( &dl_relay->relay_crypto->aes_forward, NULL, INVALID_DEVID );
+  wc_AesInit( &dl_relay->relay_crypto->aes_backward, NULL, INVALID_DEVID );
 
   wolf_succ = wc_curve25519_import_public_ex( handshake_data, G_LENGTH, &responder_handshake_public_key, EC25519_LITTLE_ENDIAN );
 
@@ -670,7 +678,7 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
     goto fail;
   }
 
-  wolf_succ = wc_curve25519_import_public_ex( db_relay->relay->ntor_onion_key, H_LENGTH, &ntor_onion_key, EC25519_LITTLE_ENDIAN );
+  wolf_succ = wc_curve25519_import_public_ex( dl_relay->relay->ntor_onion_key, H_LENGTH, &ntor_onion_key, EC25519_LITTLE_ENDIAN );
 
   if ( wolf_succ < 0 )
   {
@@ -704,10 +712,10 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
 
   working_secret_input += 32;
 
-  memcpy( working_secret_input, db_relay->relay->identity, ID_LENGTH );
+  memcpy( working_secret_input, dl_relay->relay->identity, ID_LENGTH );
   working_secret_input += ID_LENGTH;
 
-  memcpy( working_secret_input, db_relay->relay->ntor_onion_key, H_LENGTH );
+  memcpy( working_secret_input, dl_relay->relay->ntor_onion_key, H_LENGTH );
   working_secret_input += H_LENGTH;
 
   idx = 32;
@@ -735,10 +743,10 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
 
   working_auth_input += WC_SHA256_DIGEST_SIZE;
 
-  memcpy( working_auth_input, db_relay->relay->identity, ID_LENGTH );
+  memcpy( working_auth_input, dl_relay->relay->identity, ID_LENGTH );
   working_auth_input += ID_LENGTH;
 
-  memcpy( working_auth_input, db_relay->relay->ntor_onion_key, H_LENGTH );
+  memcpy( working_auth_input, dl_relay->relay->ntor_onion_key, H_LENGTH );
   working_auth_input += H_LENGTH;
 
   memcpy( working_auth_input, handshake_data, G_LENGTH );
@@ -788,9 +796,9 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
   wc_HmacFree( &reusable_hmac );
 
   // seed the forward sha
-  wc_ShaUpdate( &db_relay->relay_crypto->running_sha_forward, reusable_hmac_digest, HASH_LEN );
+  wc_ShaUpdate( &dl_relay->relay_crypto->running_sha_forward, reusable_hmac_digest, HASH_LEN );
   // seed the first 16 bytes of backwards sha
-  wc_ShaUpdate( &db_relay->relay_crypto->running_sha_backward, reusable_hmac_digest + HASH_LEN, WC_SHA256_DIGEST_SIZE - HASH_LEN );
+  wc_ShaUpdate( &dl_relay->relay_crypto->running_sha_backward, reusable_hmac_digest + HASH_LEN, WC_SHA256_DIGEST_SIZE - HASH_LEN );
   // mark how many bytes we've written to the backwards sha and how many remain
   bytes_written = WC_SHA256_DIGEST_SIZE - HASH_LEN;
   bytes_remaining = HASH_LEN - bytes_written;
@@ -804,10 +812,10 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
   wc_HmacFree( &reusable_hmac );
 
   // seed the last 8 bytes of backward sha
-  wc_ShaUpdate( &db_relay->relay_crypto->running_sha_backward, reusable_hmac_digest, bytes_remaining );
+  wc_ShaUpdate( &dl_relay->relay_crypto->running_sha_backward, reusable_hmac_digest, bytes_remaining );
   // set the forward aes key
   memcpy( reusable_aes_key, reusable_hmac_digest + bytes_remaining, KEY_LEN );
-  wc_AesSetKeyDirect( &db_relay->relay_crypto->aes_forward, reusable_aes_key, KEY_LEN, aes_iv, AES_ENCRYPTION );
+  wc_AesSetKeyDirect( &dl_relay->relay_crypto->aes_forward, reusable_aes_key, KEY_LEN, aes_iv, AES_ENCRYPTION );
   // copy the first part of the backward key into the buffer
   memcpy( reusable_aes_key, reusable_hmac_digest + bytes_remaining + KEY_LEN, WC_SHA256_DIGEST_SIZE - bytes_remaining - KEY_LEN );
   // mark how many bytes we've written to the backwards key and how many remain
@@ -824,10 +832,10 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
 
   // copy the last part of the key into the buffer and initialize the key
   memcpy( reusable_aes_key + bytes_written, reusable_hmac_digest, bytes_remaining );
-  wc_AesSetKeyDirect( &db_relay->relay_crypto->aes_backward, reusable_aes_key, KEY_LEN, aes_iv, AES_ENCRYPTION );
+  wc_AesSetKeyDirect( &dl_relay->relay_crypto->aes_backward, reusable_aes_key, KEY_LEN, aes_iv, AES_ENCRYPTION );
 
   // copy the nonce
-  memcpy( db_relay->relay_crypto->nonce, reusable_hmac_digest + bytes_remaining, DIGEST_LEN );
+  memcpy( dl_relay->relay_crypto->nonce, reusable_hmac_digest + bytes_remaining, DIGEST_LEN );
 
   // free all the heap resources
   wc_curve25519_free( &responder_handshake_public_key );
@@ -839,12 +847,12 @@ int d_ntor_handshake_finish( uint8_t* handshake_data, DoublyLinkedOnionRelay* db
   return 0;
 
 fail:
-  wc_ShaFree( &db_relay->relay_crypto->running_sha_forward );
-  wc_ShaFree( &db_relay->relay_crypto->running_sha_backward );
-  wc_AesFree( &db_relay->relay_crypto->aes_forward );
-  wc_AesFree( &db_relay->relay_crypto->aes_backward );
+  wc_ShaFree( &dl_relay->relay_crypto->running_sha_forward );
+  wc_ShaFree( &dl_relay->relay_crypto->running_sha_backward );
+  wc_AesFree( &dl_relay->relay_crypto->aes_forward );
+  wc_AesFree( &dl_relay->relay_crypto->aes_backward );
 
-  free( db_relay->relay_crypto );
+  free( dl_relay->relay_crypto );
 
   wc_curve25519_free( &responder_handshake_public_key );
   wc_curve25519_free( &ntor_onion_key );
@@ -1737,7 +1745,7 @@ int d_router_begin_dir( OnionCircuit* circuit, DlConnection* or_connection, uint
   int ret;
   Cell* begin_dir_cell;
 
-  begin_dir_cell = malloc( MINITOR_CELL_LEN );
+  begin_dir_cell = malloc(MINITOR_CELL_LEN);
 
   begin_dir_cell->circ_id = circuit->circ_id;
   begin_dir_cell->command = RELAY;
@@ -1748,17 +1756,19 @@ int d_router_begin_dir( OnionCircuit* circuit, DlConnection* or_connection, uint
   begin_dir_cell->payload.relay.length = 0;
   begin_dir_cell->length = FIXED_CELL_HEADER_SIZE + RELAY_CELL_HEADER_SIZE + begin_dir_cell->payload.relay.length;
 
-  if ( d_send_relay_cell_and_free( or_connection, begin_dir_cell, &circuit->relay_list, NULL ) < 0 )
+  if (d_send_relay_cell_and_free(or_connection, begin_dir_cell, &circuit->relay_list, NULL) < 0)
   {
     MINITOR_LOG( MINITOR_TAG, "Failed to send RELAY_EXTEND2 cell" );
 
     return -1;
   }
 
+  circuit->stream_deliver_windows[stream_id - 1] = STREAM_RELAY_WINDOW_DEFAULT;
+
   return 0;
 }
 
-int d_rounter_relay_data_cell( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id, uint8_t* data, uint32_t data_len )
+int d_router_relay_data_cell( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id, uint8_t* data, uint32_t data_len )
 {
   Cell* data_cell;
 
@@ -1793,11 +1803,12 @@ int d_rounter_relay_data_cell( OnionCircuit* circuit, DlConnection* or_connectio
   return 0;
 }
 
-int d_router_relay_end( OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id )
+int d_router_relay_end(OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id)
 {
   Cell* end_cell;
 
   end_cell = malloc( MINITOR_CELL_LEN );
+  memset(end_cell, 0, MINITOR_CELL_LEN);
 
   end_cell->circ_id = circuit->circ_id;
   end_cell->command = RELAY;
@@ -1818,3 +1829,33 @@ int d_router_relay_end( OnionCircuit* circuit, DlConnection* or_connection, uint
 
   return 0;
 }
+
+int d_router_relay_sendme(OnionCircuit* circuit, DlConnection* or_connection, uint16_t stream_id)
+{
+  Cell* sendme_cell;
+
+  sendme_cell = malloc( MINITOR_CELL_LEN );
+  memset(sendme_cell, 0, MINITOR_CELL_LEN);
+
+  sendme_cell->circ_id = circuit->circ_id;
+  sendme_cell->command = RELAY;
+  sendme_cell->payload.relay.relay_command = RELAY_SENDME;
+  sendme_cell->payload.relay.recognized = 0;
+  sendme_cell->payload.relay.stream_id = stream_id;
+  sendme_cell->payload.relay.digest = 0;
+  sendme_cell->payload.relay.length = 3;
+
+  sendme_cell->payload.relay.sendme.version = 0;
+  sendme_cell->payload.relay.sendme.data_len = 0;
+
+  sendme_cell->length = FIXED_CELL_HEADER_SIZE + RELAY_CELL_HEADER_SIZE + sendme_cell->payload.relay.length;
+
+  if ( d_send_relay_cell_and_free( or_connection, sendme_cell, &circuit->relay_list, NULL ) < 0 )
+  {
+    MINITOR_LOG( MINITOR_TAG, "Failed to send RELAY_SENDME cell" );
+
+    return -1;
+  }
+
+  return 0;
+}
diff --git a/src/config.c b/src/config.c
@@ -30,6 +30,7 @@ const char* tor_authorities[] =
 // the identity can be found at /tor/status-vote/current/consensus
 // the ntor-onion-key can be found at /tor/server/all
 #ifdef MINITOR_CHUTNEY
+// ip:port:identity:nto_onion_key
 MINITOR_CHUTNEY_ADDRESS_STR ":5000:JM022IGoVYCo1n4HRKNmEyRJflI:jq+kM4ZFUbZqYWym4+sCmr9zOUn8DDlPSP0JP1crbBg",
 MINITOR_CHUTNEY_ADDRESS_STR ":5001:Ewduz4NDJe1DNGMPLcMZVB/U7oc:z5Yd0lVNE8VLmNjG0Wp3ui9Czbc6E60wKGDb5hQy6B0",
 MINITOR_CHUTNEY_ADDRESS_STR ":5002:biV7oePe1m9MXWyQteX44pcEnPI:HMHNA06WJOv/ywNk+6Hw/SUvOse4e12L7Z0/evLS1RI"