Startsida Utforska Hjälp
Logga in
OWEALs
/
gnunet
spegling av https://gnunet.org/git/gnunet.git
2
0
Fork 0
Filer Ärenden 0 Wiki
Träd: 6cd1fc3aa2
Grenar Taggar
gnunet
/
src
/
vpn
/
vpn_api.c

vpn_api.c 15 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589 
  1. /*
    2. 

  2.      This file is part of GNUnet.
    3. 

  3.      (C) 2012 Christian Grothoff
    4. 

  4. 

  5.      GNUnet is free software; you can redistribute it and/or modify
    6. 

  6.      it under the terms of the GNU General Public License as published
    7. 

  7.      by the Free Software Foundation; either version 3, or (at your
    8. 

  8.      option) any later version.
    9. 

  9. 

  10.      GNUnet is distributed in the hope that it will be useful, but
    11. 

  11.      WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.      MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    13. 

  13.      General Public License for more details.
    14. 

  14. 

  15.      You should have received a copy of the GNU General Public License
    16. 

  16.      along with GNUnet; see the file COPYING.  If not, write to the
    17. 

  17.      Free Software Foundation, Inc., 59 Temple Place - Suite 330,
    18. 

  18.      Boston, MA 02111-1307, USA.
    19. 

  19. */
    20. 

  20. 

  21. /**
    22. 

  22.  * @file vpn/vpn_api.c
    23. 

  23.  * @brief library to access the VPN service and tell it how to redirect traffic
    24. 

  24.  * @author Christian Grothoff
    25. 

  25.  */
    26. 

  26. #include "platform.h"
    27. 

  27. #include "gnunet_vpn_service.h"
    28. 

  28. #include "vpn.h"
    29. 

  29. 

  30. 

  31. /**
    32. 

  32.  * Opaque VPN handle
    33. 

  33.  */
    34. 

  34. struct GNUNET_VPN_Handle
    35. 

  35. {
    36. 

  36.   /**
    37. 

  37.    * Configuration we use.
    38. 

  38.    */
    39. 

  39.   const struct GNUNET_CONFIGURATION_Handle *cfg;
    40. 

  40. 

  41.   /**
    42. 

  42.    * Connection to VPN service.
    43. 

  43.    */
    44. 

  44.   struct GNUNET_CLIENT_Connection *client;
    45. 

  45. 

  46.   /**
    47. 

  47.    * Active transmission request.
    48. 

  48.    */
    49. 

  49.   struct GNUNET_CLIENT_TransmitHandle *th;
    50. 

  50. 

  51.   /**
    52. 

  52.    * Head of list of active redirection requests.
    53. 

  53.    */
    54. 

  54.   struct GNUNET_VPN_RedirectionRequest *rr_head;
    55. 

  55. 

  56.   /**
    57. 

  57.    * Tail of list of active redirection requests.
    58. 

  58.    */
    59. 

  59.   struct GNUNET_VPN_RedirectionRequest *rr_tail;
    60. 

  60. 

  61.   /**
    62. 

  62.    * Identifier of a reconnect task.
    63. 

  63.    */
    64. 

  64.   GNUNET_SCHEDULER_TaskIdentifier rt;
    65. 

  65. 

  66.   /**
    67. 

  67.    * How long do we wait until we try to reconnect?
    68. 

  68.    */
    69. 

  69.   struct GNUNET_TIME_Relative backoff;
    70. 

  70. 

  71.   /**
    72. 

  72.    * ID of the last request that was submitted to the service.
    73. 

  73.    */
    74. 

  74.   uint64_t request_id_gen;
    75. 

  75. 

  76. };
    77. 

  77. 

  78. 

  79. /**
    80. 

  80.  * Opaque redirection request handle.
    81. 

  81.  */
    82. 

  82. struct GNUNET_VPN_RedirectionRequest
    83. 

  83. {
    84. 

  84.   /**
    85. 

  85.    * Element in DLL.
    86. 

  86.    */
    87. 

  87.   struct GNUNET_VPN_RedirectionRequest *next;
    88. 

  88. 

  89.   /**
    90. 

  90.    * Element in DLL.
    91. 

  91.    */
    92. 

  92.   struct GNUNET_VPN_RedirectionRequest *prev;
    93. 

  93. 

  94.   /**
    95. 

  95.    * Pointer to the VPN struct.
    96. 

  96.    */
    97. 

  97.   struct GNUNET_VPN_Handle *vh;
    98. 

  98. 

  99.   /**
    100. 

  100.    * Target IP address for the redirection, or NULL for
    101. 

  101.    * redirection to service.  Allocated after this struct.
    102. 

  102.    */
    103. 

  103.   const void *addr;
    104. 

  104. 

  105.   /**
    106. 

  106.    * Function to call with the designated IP address.
    107. 

  107.    */
    108. 

  108.   GNUNET_VPN_AllocationCallback cb;
    109. 

  109. 

  110.   /**
    111. 

  111.    * Closure for 'cb'.
    112. 

  112.    */
    113. 

  113.   void *cb_cls;
    114. 

  114. 

  115.   /**
    116. 

  116.    * For service redirection, identity of the peer offering the service.
    117. 

  117.    */
    118. 

  118.   struct GNUNET_PeerIdentity peer;
    119. 

  119. 

  120.   /**
    121. 

  121.    * For service redirection, service descriptor.
    122. 

  122.    */
    123. 

  123.   struct GNUNET_HashCode serv;
    124. 

  124. 

  125.   /**
    126. 

  126.    * At what time should the created service mapping expire?
    127. 

  127.    */
    128. 

  128.   struct GNUNET_TIME_Absolute expiration_time;
    129. 

  129. 

  130.   /**
    131. 

  131.    * non-zero if this request has been sent to the service.
    132. 

  132.    */
    133. 

  133.   uint64_t request_id;
    134. 

  134. 

  135.   /**
    136. 

  136.    * Desired address family for the result.
    137. 

  137.    */
    138. 

  138.   int result_af;
    139. 

  139. 

  140.   /**
    141. 

  141.    * Address family of 'addr'.  AF_INET or AF_INET6.
    142. 

  142.    */
    143. 

  143.   int addr_af;
    144. 

  144. 

  145.   /**
    146. 

  146.    * For service redirection, IPPROT_UDP or IPPROTO_TCP.
    147. 

  147.    */
    148. 

  148.   uint8_t protocol;
    149. 

  149. 

  150. };
    151. 

  151. 

  152. 

  153. /**
    154. 

  154.  * Disconnect from the service (communication error) and reconnect later.
    155. 

  155.  *
    156. 

  156.  * @param vh handle to reconnect.
    157. 

  157.  */
    158. 

  158. static void
    159. 

  159. reconnect (struct GNUNET_VPN_Handle *vh);
    160. 

  160. 

  161. 

  162. /**
    163. 

  163.  * Function called when we receive a message from the VPN service.
    164. 

  164.  *
    165. 

  165.  * @param cls the `struct GNUNET_VPN_Handle`
    166. 

  166.  * @param msg message received, NULL on timeout or fatal error
    167. 

  167.  */
    168. 

  168. static void
    169. 

  169. receive_response (void *cls,
    170. 

  170. 		  const struct GNUNET_MessageHeader* msg)
    171. 

  171. {
    172. 

  172.   struct GNUNET_VPN_Handle *vh = cls;
    173. 

  173.   const struct RedirectToIpResponseMessage *rm;
    174. 

  174.   struct GNUNET_VPN_RedirectionRequest *rr;
    175. 

  175.   size_t msize;
    176. 

  176.   size_t alen;
    177. 

  177.   int af;
    178. 

  178. 

  179.   if (NULL == msg)
    180. 

  180.   {
    181. 

  181.     reconnect (vh);
    182. 

  182.     return;
    183. 

  183.   }
    184. 

  184.   if ( (ntohs (msg->type) != GNUNET_MESSAGE_TYPE_VPN_CLIENT_USE_IP) ||
    185. 

  185.        (sizeof (struct RedirectToIpResponseMessage) > (msize = ntohs (msg->size))) )
    186. 

  186.   {
    187. 

  187.     GNUNET_break (0);
    188. 

  188.     reconnect (vh);
    189. 

  189.     return;
    190. 

  190.   }
    191. 

  191.   rm = (const struct RedirectToIpResponseMessage *) msg;
    192. 

  192.   af = (int) ntohl (rm->result_af);
    193. 

  193.   switch (af)
    194. 

  194.   {
    195. 

  195.   case AF_UNSPEC:
    196. 

  196.     alen = 0;
    197. 

  197.     break;
    198. 

  198.   case AF_INET:
    199. 

  199.     alen = sizeof (struct in_addr);
    200. 

  200.     break;
    201. 

  201.   case AF_INET6:
    202. 

  202.     alen = sizeof (struct in6_addr);
    203. 

  203.     break;
    204. 

  204.   default:
    205. 

  205.     GNUNET_break (0);
    206. 

  206.     reconnect (vh);
    207. 

  207.     return;
    208. 

  208.   }
    209. 

  209.   if ( (msize != alen + sizeof (struct RedirectToIpResponseMessage)) ||
    210. 

  210.        (0 == rm->request_id) )
    211. 

  211.   {
    212. 

  212.     GNUNET_break (0);
    213. 

  213.     reconnect (vh);
    214. 

  214.     return;
    215. 

  215.   }
    216. 

  216.   GNUNET_CLIENT_receive (vh->client,
    217. 

  217. 			 &receive_response, vh,
    218. 

  218. 			 GNUNET_TIME_UNIT_FOREVER_REL);
    219. 

  219.   for (rr = vh->rr_head; NULL != rr; rr = rr->next)
    220. 

  220.   {
    221. 

  221.     if (rr->request_id == rm->request_id)
    222. 

  222.     {
    223. 

  223.       GNUNET_CONTAINER_DLL_remove (vh->rr_head,
    224. 

  224. 				   vh->rr_tail,
    225. 

  225. 				   rr);
    226. 

  226.       rr->cb (rr->cb_cls,
    227. 

  227. 	      af,
    228. 

  228. 	      (af == AF_UNSPEC) ? NULL : &rm[1]);
    229. 

  229.       GNUNET_free (rr);
    230. 

  230.       break;
    231. 

  231.     }
    232. 

  232.   }
    233. 

  233. }
    234. 

  234. 

  235. 

  236. /**
    237. 

  237.  * We're ready to transmit a request to the VPN service. Do it.
    238. 

  238.  *
    239. 

  239.  * @param cls the 'struct GNUNET_VPN_Handle*'
    240. 

  240.  * @param size number of bytes available in buf
    241. 

  241.  * @param buf where to copy the request
    242. 

  242.  * @return number of bytes copied to 'buf'
    243. 

  243.  */
    244. 

  244. static size_t
    245. 

  245. transmit_request (void *cls,
    246. 

  246. 		  size_t size,
    247. 

  247. 		  void *buf)
    248. 

  248. {
    249. 

  249.   struct GNUNET_VPN_Handle *vh = cls;
    250. 

  250.   struct GNUNET_VPN_RedirectionRequest *rr;
    251. 

  251.   struct RedirectToIpRequestMessage rip;
    252. 

  252.   struct RedirectToServiceRequestMessage rs;
    253. 

  253.   char *cbuf;
    254. 

  254.   size_t alen;
    255. 

  255.   size_t ret;
    256. 

  256. 

  257.   vh->th = NULL;
    258. 

  258.   /* find a pending request */
    259. 

  259.   rr = vh->rr_head;
    260. 

  260.   while ( (NULL != rr) &&
    261. 

  261. 	  (0 != rr->request_id) )
    262. 

  262.     rr = rr->next;
    263. 

  263.   if (NULL == rr)
    264. 

  264.     return 0;
    265. 

  265.   if (0 == size)
    266. 

  266.   {
    267. 

  267.     reconnect (vh);
    268. 

  268.     return 0;
    269. 

  269.   }
    270. 

  270. 

  271.   /* if first request, start receive loop */
    272. 

  272.   if (0 == vh->request_id_gen)
    273. 

  273.     GNUNET_CLIENT_receive (vh->client,
    274. 

  274. 			   &receive_response, vh,
    275. 

  275. 			   GNUNET_TIME_UNIT_FOREVER_REL);
    276. 

  276.   if (NULL == rr->addr)
    277. 

  277.   {
    278. 

  278.     ret = sizeof (struct RedirectToServiceRequestMessage);
    279. 

  279.     GNUNET_assert (ret <= size);
    280. 

  280.     rs.header.size = htons ((uint16_t) ret);
    281. 

  281.     rs.header.type = htons (GNUNET_MESSAGE_TYPE_VPN_CLIENT_REDIRECT_TO_SERVICE);
    282. 

  282.     rs.reserved = htonl (0);
    283. 

  283.     rs.expiration_time = GNUNET_TIME_absolute_hton (rr->expiration_time);
    284. 

  284.     rs.protocol = htonl (rr->protocol);
    285. 

  285.     rs.result_af = htonl (rr->result_af);
    286. 

  286.     rs.target = rr->peer;
    287. 

  287.     rs.service_descriptor = rr->serv;
    288. 

  288.     rs.request_id = rr->request_id = ++vh->request_id_gen;
    289. 

  289.     memcpy (buf, &rs, sizeof (struct RedirectToServiceRequestMessage));
    290. 

  290.   }
    291. 

  291.   else
    292. 

  292.   {
    293. 

  293.     switch (rr->addr_af)
    294. 

  294.     {
    295. 

  295.     case AF_INET:
    296. 

  296.       alen = sizeof (struct in_addr);
    297. 

  297.       break;
    298. 

  298.     case AF_INET6:
    299. 

  299.       alen = sizeof (struct in6_addr);
    300. 

  300.       break;
    301. 

  301.     default:
    302. 

  302.       GNUNET_assert (0);
    303. 

  303.       return 0;
    304. 

  304.     }
    305. 

  305.     ret = alen + sizeof (struct RedirectToIpRequestMessage);
    306. 

  306.     GNUNET_assert (ret <= size);
    307. 

  307.     rip.header.size = htons ((uint16_t) ret);
    308. 

  308.     rip.header.type = htons (GNUNET_MESSAGE_TYPE_VPN_CLIENT_REDIRECT_TO_IP);
    309. 

  309.     rip.reserved = htonl (0);
    310. 

  310.     rip.expiration_time = GNUNET_TIME_absolute_hton (rr->expiration_time);
    311. 

  311.     rip.result_af = htonl (rr->result_af);
    312. 

  312.     rip.addr_af = htonl (rr->addr_af);
    313. 

  313.     rip.request_id = rr->request_id = ++vh->request_id_gen;
    314. 

  314.     cbuf = buf;
    315. 

  315.     memcpy (cbuf, &rip, sizeof (struct RedirectToIpRequestMessage));
    316. 

  316.     memcpy (&cbuf[sizeof (struct RedirectToIpRequestMessage)], rr->addr, alen);
    317. 

  317.   }
    318. 

  318.   /* test if there are more pending requests */
    319. 

  319.   while ( (NULL != rr) &&
    320. 

  320. 	  (0 != rr->request_id) )
    321. 

  321.     rr = rr->next;
    322. 

  322.   if (NULL != rr)
    323. 

  323.     vh->th = GNUNET_CLIENT_notify_transmit_ready (vh->client,
    324. 

  324. 						  sizeof (struct RedirectToServiceRequestMessage),
    325. 

  325. 						  GNUNET_TIME_UNIT_FOREVER_REL,
    326. 

  326. 						  GNUNET_NO,
    327. 

  327. 						  &transmit_request,
    328. 

  328. 						  vh);
    329. 

  329.   return ret;
    330. 

  330. }
    331. 

  331. 

  332. 

  333. /**
    334. 

  334.  * Add a request to our request queue and transmit it.
    335. 

  335.  *
    336. 

  336.  * @param rr request to queue and transmit.
    337. 

  337.  */
    338. 

  338. static void
    339. 

  339. queue_request (struct GNUNET_VPN_RedirectionRequest *rr)
    340. 

  340. {
    341. 

  341.   struct GNUNET_VPN_Handle *vh;
    342. 

  342. 

  343.   vh = rr->vh;
    344. 

  344.   GNUNET_CONTAINER_DLL_insert_tail (vh->rr_head,
    345. 

  345. 				    vh->rr_tail,
    346. 

  346. 				    rr);
    347. 

  347.   if ( (NULL == vh->th) &&
    348. 

  348.        (NULL != vh->client) )
    349. 

  349.     vh->th = GNUNET_CLIENT_notify_transmit_ready (vh->client,
    350. 

  350. 						  sizeof (struct RedirectToServiceRequestMessage),
    351. 

  351. 						  GNUNET_TIME_UNIT_FOREVER_REL,
    352. 

  352. 						  GNUNET_NO,
    353. 

  353. 						  &transmit_request,
    354. 

  354. 						  vh);
    355. 

  355. }
    356. 

  356. 

  357. 

  358. /**
    359. 

  359.  * Connect to the VPN service and start again to transmit our requests.
    360. 

  360.  *
    361. 

  361.  * @param cls the 'struct GNUNET_VPN_Handle *'
    362. 

  362.  * @param tc scheduler context
    363. 

  363.  */
    364. 

  364. static void
    365. 

  365. connect_task (void *cls,
    366. 

  366. 	      const struct GNUNET_SCHEDULER_TaskContext *tc)
    367. 

  367. {
    368. 

  368.   struct GNUNET_VPN_Handle *vh = cls;
    369. 

  369. 

  370.   vh->rt = GNUNET_SCHEDULER_NO_TASK;
    371. 

  371.   vh->client = GNUNET_CLIENT_connect ("vpn", vh->cfg);
    372. 

  372.   GNUNET_assert (NULL != vh->client);
    373. 

  373.   GNUNET_assert (NULL == vh->th);
    374. 

  374.   if (NULL != vh->rr_head)
    375. 

  375.     vh->th = GNUNET_CLIENT_notify_transmit_ready (vh->client,
    376. 

  376. 						  sizeof (struct RedirectToServiceRequestMessage),
    377. 

  377. 						  GNUNET_TIME_UNIT_FOREVER_REL,
    378. 

  378. 						  GNUNET_NO,
    379. 

  379. 						  &transmit_request,
    380. 

  380. 						  vh);
    381. 

  381. }
    382. 

  382. 

  383. 

  384. /**
    385. 

  385.  * Disconnect from the service (communication error) and reconnect later.
    386. 

  386.  *
    387. 

  387.  * @param vh handle to reconnect.
    388. 

  388.  */
    389. 

  389. static void
    390. 

  390. reconnect (struct GNUNET_VPN_Handle *vh)
    391. 

  391. {
    392. 

  392.   struct GNUNET_VPN_RedirectionRequest *rr;
    393. 

  393. 

  394.   if (NULL != vh->th)
    395. 

  395.   {
    396. 

  396.     GNUNET_CLIENT_notify_transmit_ready_cancel (vh->th);
    397. 

  397.     vh->th = NULL;
    398. 

  398.   }
    399. 

  399.   GNUNET_CLIENT_disconnect (vh->client);
    400. 

  400.   vh->client = NULL;
    401. 

  401.   vh->request_id_gen = 0;
    402. 

  402.   for (rr = vh->rr_head; NULL != rr; rr = rr->next)
    403. 

  403.     rr->request_id = 0;
    404. 

  404.   vh->backoff = GNUNET_TIME_relative_max (GNUNET_TIME_UNIT_MILLISECONDS,
    405. 

  405. 					  GNUNET_TIME_relative_min (GNUNET_TIME_relative_multiply (vh->backoff, 2),
    406. 

  406. 								    GNUNET_TIME_relative_multiply (GNUNET_TIME_UNIT_SECONDS, 30)));
    407. 

  407.   vh->rt = GNUNET_SCHEDULER_add_delayed (vh->backoff,
    408. 

  408. 					 &connect_task,
    409. 

  409. 					 vh);
    410. 

  410. }
    411. 

  411. 

  412. 

  413. /**
    414. 

  414.  * Cancel redirection request with the service.
    415. 

  415.  *
    416. 

  416.  * @param rr request to cancel
    417. 

  417.  */
    418. 

  418. void
    419. 

  419. GNUNET_VPN_cancel_request (struct GNUNET_VPN_RedirectionRequest *rr)
    420. 

  420. {
    421. 

  421.   struct GNUNET_VPN_Handle *vh;
    422. 

  422. 

  423.   vh = rr->vh;
    424. 

  424.   GNUNET_CONTAINER_DLL_remove (vh->rr_head,
    425. 

  425. 			       vh->rr_tail,
    426. 

  426. 			       rr);
    427. 

  427.   GNUNET_free (rr);
    428. 

  428. }
    429. 

  429. 

  430. 

  431. /**
    432. 

  432.  * Tell the VPN that a forwarding to a particular peer offering a
    433. 

  433.  * particular service is requested.  The VPN is to reserve a
    434. 

  434.  * particular IP for the redirection and return it.  The VPN will
    435. 

  435.  * begin the redirection as soon as possible and maintain it as long
    436. 

  436.  * as it is actively used and keeping it is feasible.  Given resource
    437. 

  437.  * limitations, the longest inactive mappings will be destroyed.
    438. 

  438.  *
    439. 

  439.  * @param vh VPN handle
    440. 

  440.  * @param result_af desired address family for the returned allocation
    441. 

  441.  *                  can also be AF_UNSPEC
    442. 

  442.  * @param protocol protocol, IPPROTO_UDP or IPPROTO_TCP
    443. 

  443.  * @param peer target peer for the redirection
    444. 

  444.  * @param serv service descriptor to give to the peer
    445. 

  445.  * @param expiration_time at what time should the redirection expire?
    446. 

  446.  *        (this should not impact connections that are active at that time)
    447. 

  447.  * @param cb function to call with the IP
    448. 

  448.  * @param cb_cls closure for cb
    449. 

  449.  * @return handle to cancel the request (means the callback won't be
    450. 

  450.  *         invoked anymore; the mapping may or may not be established
    451. 

  451.  *         anyway)
    452. 

  452.  */
    453. 

  453. struct GNUNET_VPN_RedirectionRequest *
    454. 

  454. GNUNET_VPN_redirect_to_peer (struct GNUNET_VPN_Handle *vh,
    455. 

  455. 			     int result_af,
    456. 

  456. 			     uint8_t protocol,
    457. 

  457. 			     const struct GNUNET_PeerIdentity *peer,
    458. 

  458. 			     const struct GNUNET_HashCode *serv,
    459. 

  459. 			     struct GNUNET_TIME_Absolute expiration_time,
    460. 

  460. 			     GNUNET_VPN_AllocationCallback cb,
    461. 

  461. 			     void *cb_cls)
    462. 

  462. {
    463. 

  463.   struct GNUNET_VPN_RedirectionRequest *rr;
    464. 

  464. 

  465.   rr = GNUNET_new (struct GNUNET_VPN_RedirectionRequest);
    466. 

  466.   rr->vh = vh;
    467. 

  467.   rr->cb = cb;
    468. 

  468.   rr->cb_cls = cb_cls;
    469. 

  469.   rr->peer = *peer;
    470. 

  470.   rr->serv = *serv;
    471. 

  471.   rr->expiration_time = expiration_time;
    472. 

  472.   rr->result_af = result_af;
    473. 

  473.   rr->protocol = protocol;
    474. 

  474.   queue_request (rr);
    475. 

  475.   return rr;
    476. 

  476. }
    477. 

  477. 

  478. 

  479. /**
    480. 

  480.  * Tell the VPN that forwarding to the Internet via some exit node is
    481. 

  481.  * requested.  Note that both UDP and TCP traffic will be forwarded,
    482. 

  482.  * but possibly to different exit nodes.  The VPN is to reserve a
    483. 

  483.  * particular IP for the redirection and return it.  The VPN will
    484. 

  484.  * begin the redirection as soon as possible and maintain it as long
    485. 

  485.  * as it is actively used and keeping it is feasible.  Given resource
    486. 

  486.  * limitations, the longest inactive mappings will be destroyed.
    487. 

  487.  *
    488. 

  488.  * @param vh VPN handle
    489. 

  489.  * @param result_af desired address family for the returned allocation
    490. 

  490.  * @param addr_af address family for 'addr', AF_INET or AF_INET6
    491. 

  491.  * @param addr destination IP address on the Internet; destination
    492. 

  492.  *             port is to be taken from the VPN packet itself
    493. 

  493.  * @param expiration_time at what time should the redirection expire?
    494. 

  494.  *        (this should not impact connections that are active at that time)
    495. 

  495.  * @param cb function to call with the IP
    496. 

  496.  * @param cb_cls closure for cb
    497. 

  497.  * @return handle to cancel the request (means the callback won't be
    498. 

  498.  *         invoked anymore; the mapping may or may not be established
    499. 

  499.  *         anyway)
    500. 

  500.  */
    501. 

  501. struct GNUNET_VPN_RedirectionRequest *
    502. 

  502. GNUNET_VPN_redirect_to_ip (struct GNUNET_VPN_Handle *vh,
    503. 

  503. 			   int result_af,
    504. 

  504. 			   int addr_af,
    505. 

  505. 			   const void *addr,
    506. 

  506. 			   struct GNUNET_TIME_Absolute expiration_time,
    507. 

  507. 			   GNUNET_VPN_AllocationCallback cb,
    508. 

  508. 			   void *cb_cls)
    509. 

  509. {
    510. 

  510.   struct GNUNET_VPN_RedirectionRequest *rr;
    511. 

  511.   size_t alen;
    512. 

  512. 

  513.   switch (addr_af)
    514. 

  514.   {
    515. 

  515.   case AF_INET:
    516. 

  516.     alen = sizeof (struct in_addr);
    517. 

  517.     break;
    518. 

  518.   case AF_INET6:
    519. 

  519.     alen = sizeof (struct in6_addr);
    520. 

  520.     break;
    521. 

  521.   default:
    522. 

  522.     GNUNET_break (0);
    523. 

  523.     return NULL;
    524. 

  524.   }
    525. 

  525.   rr = GNUNET_malloc (sizeof (struct GNUNET_VPN_RedirectionRequest) + alen);
    526. 

  526.   rr->vh = vh;
    527. 

  527.   rr->addr = &rr[1];
    528. 

  528.   rr->cb = cb;
    529. 

  529.   rr->cb_cls = cb_cls;
    530. 

  530.   rr->expiration_time = expiration_time;
    531. 

  531.   rr->result_af = result_af;
    532. 

  532.   rr->addr_af = addr_af;
    533. 

  533.   memcpy (&rr[1], addr, alen);
    534. 

  534.   queue_request (rr);
    535. 

  535.   return rr;
    536. 

  536. }
    537. 

  537. 

  538. 

  539. /**
    540. 

  540.  * Connect to the VPN service
    541. 

  541.  *
    542. 

  542.  * @param cfg configuration to use
    543. 

  543.  * @return VPN handle
    544. 

  544.  */
    545. 

  545. struct GNUNET_VPN_Handle *
    546. 

  546. GNUNET_VPN_connect (const struct GNUNET_CONFIGURATION_Handle *cfg)
    547. 

  547. {
    548. 

  548.   struct GNUNET_VPN_Handle *vh;
    549. 

  549. 

  550.   vh = GNUNET_new (struct GNUNET_VPN_Handle);
    551. 

  551.   vh->cfg = cfg;
    552. 

  552.   vh->client = GNUNET_CLIENT_connect ("vpn", cfg);
    553. 

  553.   if (NULL == vh->client)
    554. 

  554.   {
    555. 

  555.     GNUNET_free (vh);
    556. 

  556.     return NULL;
    557. 

  557.   }
    558. 

  558.   return vh;
    559. 

  559. }
    560. 

  560. 

  561. 

  562. /**
    563. 

  563.  * Disconnect from the VPN service.
    564. 

  564.  *
    565. 

  565.  * @param vh VPN handle
    566. 

  566.  */
    567. 

  567. void
    568. 

  568. GNUNET_VPN_disconnect (struct GNUNET_VPN_Handle *vh)
    569. 

  569. {
    570. 

  570.   GNUNET_assert (NULL == vh->rr_head);
    571. 

  571.   if (NULL != vh->th)
    572. 

  572.   {
    573. 

  573.     GNUNET_CLIENT_notify_transmit_ready_cancel (vh->th);
    574. 

  574.     vh->th = NULL;
    575. 

  575.   }
    576. 

  576.   if (NULL != vh->client)
    577. 

  577.   {
    578. 

  578.     GNUNET_CLIENT_disconnect (vh->client);
    579. 

  579.     vh->client = NULL;
    580. 

  580.   }
    581. 

  581.   if (GNUNET_SCHEDULER_NO_TASK != vh->rt)
    582. 

  582.   {
    583. 

  583.     GNUNET_SCHEDULER_cancel (vh->rt);
    584. 

  584.     vh->rt = GNUNET_SCHEDULER_NO_TASK;
    585. 

  585.   }
    586. 

  586.   GNUNET_free (vh);
    587. 

  587. }
    588. 

  588. 

  589. /* end of vpn_api.c */
    590.