[GNUnet-SVN] r8646 - in gnunet: . src/core

gnunet-svn

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[GNUnet-SVN] r8646 - in gnunet: . src/core

From:	gnunet
Subject:	[GNUnet-SVN] r8646 - in gnunet: . src/core
Date:	Wed, 8 Jul 2009 16:11:46 -0600

Author: grothoff
Date: 2009-07-08 16:11:46 -0600 (Wed, 08 Jul 2009)
New Revision: 8646

Modified:
   gnunet/TODO
   gnunet/src/core/test_core_api.c
   gnunet/src/core/test_core_api_peer1.conf
   gnunet/src/core/test_core_api_peer2.conf
Log:
notes_and_debugging

Modified: gnunet/TODO
===================================================================
--- gnunet/TODO 2009-07-08 21:32:37 UTC (rev 8645)
+++ gnunet/TODO 2009-07-08 22:11:46 UTC (rev 8646)
@@ -1,12 +1,40 @@
 PHASE #1: (Goal: settle key design questions)
 
+core:
+- test fails with fresh /tmp directory (but passes when run a second time)
+  problem seems to be caused by HELLO validation (unvalidated 
+  HELLO not used to connect for good, then somehow SETKEY never happens);
+  * double-check crypto involved in HELLO validation (PONG signature check; 
+    what about MiM?  Might be trivial right now; adding source IP-address
+    to PONG signature might help?  How would we validate that (given that
+    we may be learning our source IP address(es) the same way...))
+    + if we add address to transport-level PONG, we may be able to simplify
+      WELCOME messages (no need to add addresses there anymore, right?);
+    + we probably want some kind of voting/counting for learning IP addresses
+      (maybe including IP addresses in ads proportional to how often others
+       report them? we at least need some protection against >64k HELLOs!),
+    + provide a way to give the user a list of "learned" IP addresses and
+      a way to easily "veto" addresses off the list!
+      => If MiM attacker uses vetoed address, blacklist the specific IP for
+         the presumed neighbour!
+ * Use special, non-WELCOMEing TCP-connection for HELLO/address validation;
+    that way, we can avoid confusion between a dozen parallel validating 
connections
+    and the real one, avoid queueing messages on validating connections and
+    shut those down immediately after sending/receiving the PONG
+    (and maybe avoid some signalling about connections to the other layers)
+  * core notifies clients about "encrypted" connections being up well before
+    we get the encrypted PONG; sometimes this may be OK (for topology killing
+    unwanted connnections), but of course not in general.  I suspect we want
+    to signal on PONG and have topology hook directly into transport to
+    kill plaintext connections before they have a chance to become encrypted
+    (may require minor hack in transport API)
+
 Util:
-* improve disk API [Nils]
+* improve disk API [Nils] (Nils, is this done? -Christian)
 * Windows: use events instead of pipes to signal select()s [Nils]
-* only connect() sockets that are ready (select())
-  [Nils: I'm not sure what you mean by this; fresh sockets are always
-   ready for connect(), just 'write' after connect needs select AFAIK;
-   please clarify. --Christian]
+* only connect() sockets that are ready (select()) [Nils]
+  [On W32, we need to select after calling socket before
+   doing connect etc.]
 
 TESTCASES WANTED:
 For these functions, it would be nice if we had testcases ("make check")

Modified: gnunet/src/core/test_core_api.c
===================================================================
--- gnunet/src/core/test_core_api.c     2009-07-08 21:32:37 UTC (rev 8645)
+++ gnunet/src/core/test_core_api.c     2009-07-08 22:11:46 UTC (rev 8646)
@@ -18,7 +18,7 @@
      Boston, MA 02111-1307, USA.
 */
 /**
- * @file transport/test_core_api.c
+ * @file core/test_core_api.c
  * @brief testcase for core_api.c
  *
  * FIXME:
@@ -34,7 +34,7 @@
 #include "gnunet_scheduler_lib.h"
 #include "gnunet_transport_service.h"
 
-#define VERBOSE GNUNET_NO
+#define VERBOSE GNUNET_YES
 
 #define START_ARM GNUNET_YES
 

Modified: gnunet/src/core/test_core_api_peer1.conf
===================================================================
--- gnunet/src/core/test_core_api_peer1.conf    2009-07-08 21:32:37 UTC (rev 
8645)
+++ gnunet/src/core/test_core_api_peer1.conf    2009-07-08 22:11:46 UTC (rev 
8646)
@@ -12,7 +12,7 @@
 #PREFIX = xterm -T transport1 -e
 #PREFIX = xterm -T transport1 -e gdb -x cmd --args
 #PREFIX = xterm -T transport1 -e valgrind --tool=memcheck
-#DEBUG = YES
+DEBUG = YES
 
 [arm]
 PORT = 12466

Modified: gnunet/src/core/test_core_api_peer2.conf
===================================================================
--- gnunet/src/core/test_core_api_peer2.conf    2009-07-08 21:32:37 UTC (rev 
8645)
+++ gnunet/src/core/test_core_api_peer2.conf    2009-07-08 22:11:46 UTC (rev 
8646)
@@ -11,7 +11,7 @@
 PLUGINS = tcp
 #PREFIX = xterm -T transport2 -e
 #PREFIX = xterm -T transport2 -e valgrind --tool=memcheck
-#DEBUG = YES
+DEBUG = YES
 
 [arm]
 PORT = 22466

[Prev in Thread]

Current Thread

[Next in Thread]

[GNUnet-SVN] r8646 - in gnunet: . src/core, gnunet <=

Prev by Date: [GNUnet-SVN] r8645 - gnunet/src/transport
Next by Date: [GNUnet-SVN] r8647 - in GNUnet/src: applications/dhtlog_mysql applications/dv_dht/module applications/dv_dht/tools applications/testing include
Previous by thread: [GNUnet-SVN] r8645 - gnunet/src/transport
Next by thread: [GNUnet-SVN] r8647 - in GNUnet/src: applications/dhtlog_mysql applications/dv_dht/module applications/dv_dht/tools applications/testing include
Index(es):
- Date
- Thread