diff options
author | Nick Mathewson <nickm@torproject.org> | 2004-04-24 22:17:50 +0000 |
---|---|---|
committer | Nick Mathewson <nickm@torproject.org> | 2004-04-24 22:17:50 +0000 |
commit | c44016e86ec8dfd9147b2ca58e5277cb03a92561 (patch) | |
tree | 98002278cf00e6c9373e96deb245e6661f890b8d /src/or/or.h | |
parent | 83081f5ad6fd3fd4450ce4f5a84c2873f5c4123b (diff) | |
download | tor-c44016e86ec8dfd9147b2ca58e5277cb03a92561.tar.gz tor-c44016e86ec8dfd9147b2ca58e5277cb03a92561.zip |
Merge flagday into main branch.
svn:r1683
Diffstat (limited to 'src/or/or.h')
-rw-r--r-- | src/or/or.h | 18 |
1 files changed, 12 insertions, 6 deletions
diff --git a/src/or/or.h b/src/or/or.h index bc6af6cb93..0b3110f76c 100644 --- a/src/or/or.h +++ b/src/or/or.h @@ -112,6 +112,9 @@ #define MAX_DNS_ENTRY_AGE (15*60) #endif +#define MIN_ONION_KEY_LIFETIME (120*60) +#define MAX_SSL_KEY_LIFETIME (120*60) + #define CIRC_ID_TYPE_LOWER 0 #define CIRC_ID_TYPE_HIGHER 1 @@ -381,7 +384,6 @@ struct connection_t { * strdup into this, because free_connection frees it */ crypto_pk_env_t *onion_pkey; /* public RSA key for the other side's onions */ - crypto_pk_env_t *link_pkey; /* public RSA key for the other side's TLS */ crypto_pk_env_t *identity_pkey; /* public RSA key for the other side's signing */ char *nickname; @@ -445,7 +447,6 @@ typedef struct { time_t published_on; crypto_pk_env_t *onion_pkey; /* public RSA key for onions */ - crypto_pk_env_t *link_pkey; /* public RSA key for TLS */ crypto_pk_env_t *identity_pkey; /* public RSA key for signing */ int is_running; @@ -492,8 +493,10 @@ struct crypt_path_t { }; #define DH_KEY_LEN DH_BYTES -#define ONIONSKIN_CHALLENGE_LEN (16+DH_KEY_LEN) -#define ONIONSKIN_REPLY_LEN (DH_KEY_LEN+20) +#define ONIONSKIN_CHALLENGE_LEN (PKCS1_OAEP_PADDING_OVERHEAD+\ + CIPHER_KEY_LEN+\ + DH_KEY_LEN) +#define ONIONSKIN_REPLY_LEN (DH_KEY_LEN+DIGEST_LEN) #define REND_COOKIE_LEN DIGEST_LEN typedef struct crypt_path_t crypt_path_t; @@ -882,6 +885,7 @@ void connection_or_write_cell_to_buf(const cell_t *cell, connection_t *conn); /********************************* cpuworker.c *****************************/ void cpu_init(void); +void cpuworkers_rotate(void); int connection_cpu_finished_flushing(connection_t *conn); int connection_cpu_process_inbuf(connection_t *conn); int cpuworker_main(void *data); @@ -948,6 +952,7 @@ int onion_skin_create(crypto_pk_env_t *router_key, int onion_skin_server_handshake(char *onion_skin, crypto_pk_env_t *private_key, + crypto_pk_env_t *prev_private_key, char *handshake_reply_out, char *key_out, int key_out_len); @@ -964,11 +969,13 @@ cpath_build_state_t *onion_new_cpath_build_state(uint8_t purpose, void set_onion_key(crypto_pk_env_t *k); crypto_pk_env_t *get_onion_key(void); +crypto_pk_env_t *get_previous_onion_key(void); +time_t get_onion_key_set_at(void); void set_identity_key(crypto_pk_env_t *k); crypto_pk_env_t *get_identity_key(void); -crypto_pk_env_t *get_link_key(void); int init_keys(void); crypto_pk_env_t *init_key_from_file(const char *fname); +void rotate_onion_key(void); void router_retry_connections(void); void router_upload_dir_desc_to_dirservers(void); @@ -989,7 +996,6 @@ routerinfo_t *router_choose_random_node(routerlist_t *dir, char *preferred, char *excluded, struct smartlist_t *excludedsmartlist); routerinfo_t *router_get_by_addr_port(uint32_t addr, uint16_t port); -routerinfo_t *router_get_by_link_pk(crypto_pk_env_t *pk); routerinfo_t *router_get_by_nickname(char *nickname); void router_get_routerlist(routerlist_t **prouterlist); void routerinfo_free(routerinfo_t *router); |