| blob | 8922d20a19d8aff09a022cf1347a428053810343 |
1 /* Copyright (c) 2001 Matej Pfajfar.
2 * Copyright (c) 2001-2004, Roger Dingledine.
3 * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
4 * Copyright (c) 2007-2021, The Tor Project, Inc. */
5 /* See LICENSE for licensing information */
7 /**
8 * \file selftest.c
9 * \brief Relay self-testing
10 *
11 * Relays need to make sure that their own ports are reachable, and estimate
12 * their own bandwidth, before publishing.
13 */
54 /** Whether we can reach our IPv4 ORPort from the outside. */
56 /** Whether we can reach our IPv6 ORPort from the outside. */
59 /** Has informed_testing_reachable logged a message about testing our IPv4
60 * ORPort? */
62 /** Has informed_testing_reachable logged a message about testing our IPv6
63 * ORPort? */
66 /** Forget what we have learned about our reachability status. */
67 void
69 {
71 have_informed_testing_or_port_ipv4 =
73 }
75 /** Return 1 if we won't do reachability checks, because:
76 * - AssumeReachable is set, or
77 * - the network is disabled.
78 * Otherwise, return 0.
79 */
80 static int
82 {
85 }
87 /** Return 0 if we need to do an ORPort reachability check, because:
88 * - no reachability check has been done yet, or
89 * - we've initiated reachability checks, but none have succeeded.
90 * Return 1 if we don't need to do an ORPort reachability check, because:
91 * - we've seen a successful reachability check, or
92 * - AssumeReachable is set, or
93 * - the network is disabled.
95 * If `family'`is AF_INET or AF_INET6, return true only when we should skip
96 * the given family's orport check (Because it's been checked, or because we
97 * aren't checking it.) If `family` is 0, return true if we can skip _all_
98 * orport checks.
99 */
100 int
103 {
108 }
110 // Note that we do a == 1 here, not just a boolean check. This value
111 // is also an autobool, so CFG_AUTO does not mean that we should
112 // assume IPv6 ports are reachable.
115 // Which reachability flags should we look at?
122 }
123 }
127 }
128 }
131 }
133 /** Relay DirPorts are no longer used (though authorities are). In either case,
134 * reachability self test is done anymore, since network re-entry towards an
135 * authority DirPort is not allowed. Thus, consider it always reachable. */
136 int
138 {
141 }
143 /** See if we currently believe our ORPort to be unreachable. If so, return 1
144 * else return 0. */
145 static int
147 {
154 /* Doesn't check our IPv6 address, see #34065. */
157 /* If we've excluded ourself, and StrictNodes is set, we can't test
158 * ourself. */
159 #define SELF_EXCLUDED_WARN_INTERVAL 3600
162 "Can't perform self-tests for this relay: we have "
163 "listed ourself in ExcludeNodes, and StrictNodes is set. "
164 "We cannot learn whether we are usable, and will not "
167 }
169 }
171 /**
172 * Return true if we have configured an ORPort for the given family that
173 * we would like to advertise.
174 *
175 * Like other self-testing functions, this function looks at our most
176 * recently built descriptor.
177 **/
178 static bool
180 {
186 tor_addr_port_t ap;
189 }
191 }
193 /** Allocate and return a new extend_info_t that can be used to build
194 * a circuit to or through the router <b>r</b>, using an address from
195 * <b>family</b> (if available).
196 *
197 * Clients don't have routerinfos, so this function should only be called on a
198 * server.
199 *
200 * If the requested address is not available, returns NULL. */
203 {
206 tor_addr_port_t ap;
210 }
212 /* Relays always assume that the first hop is reachable. They ignore
213 * ReachableAddresses. */
220 else
224 /* We don't have an ORPort for the requested family. */
226 }
229 ed_id_key,
234 }
236 /** Launch a self-testing circuit to one of our ORPorts, using an address from
237 * <b>family</b> (if available). The circuit can be used to test reachability
238 * or bandwidth. <b>me</b> is our own routerinfo.
239 *
240 * Logs an info-level status message. If <b>orport_reachable</b> is false,
241 * call it a reachability circuit. Otherwise, call it a bandwidth circuit.
242 *
243 * See router_do_reachability_checks() for details. */
244 static void
248 {
252 /* If we're trying to test IPv6, but we don't have an IPv6 ORPort, ei will
253 * be NULL. */
262 /* Only log if we are actually doing a reachability test to learn if our
263 * ORPort is reachable. Else, this prints a log notice if we are simply
264 * opening a bandwidth testing circuit even though we are reachable. */
266 }
269 CIRCLAUNCH_NEED_CAPACITY|
270 CIRCLAUNCH_IS_INTERNAL|
271 ipv6_flags);
273 }
274 }
276 /** Some time has passed, or we just got new directory information. See if we
277 * currently believe our ORPort to be unreachable. If so, launch a new test
278 * for it.
279 *
280 * For ORPort, we simply try making a circuit that ends at ourselves. Success
281 * is noticed in onionskin_answer().
282 */
283 void
285 {
295 /* At the moment, tor relays believe that they are reachable when they
296 * receive any create cell on an inbound connection, if the address
297 * family is correct.
298 */
301 }
304 }
305 }
306 }
308 /** Log a message informing the user that we are testing a port for
309 * reachability, if we have not already logged such a message.
310 *
311 * Calls to router_reset_reachability() will reset our view of whether we have
312 * logged this message for a given port. */
313 static void
315 {
324 }
327 /* We already told the user that we're testing this port; no need to
328 * do it again. */
330 }
339 addr_buf);
342 "(this may take up to %d minutes -- look for log "
348 }
350 /**
351 * Return true if this module knows of no reason why we shouldn't publish
352 * a server descriptor.
353 **/
354 static bool
356 {
359 }
361 /** Annotate that we found our ORPort reachable with a given address
362 * family. */
363 void
365 {
377 }
379 tor_addr_port_t ap;
382 }
389 address,
393 /* Make sure our descriptor is marked to publish the IPv6 if it is now
394 * reachable. This can change at runtime. */
399 }
400 /* This is a significant enough change to upload immediately,
401 * at least in a test network */
404 }
407 address);
409 }
410 }
412 /** We have enough testing circuits open. Send a bunch of "drop"
413 * cells down each of them, to exercise our bandwidth.
414 *
415 * May use IPv4 and IPv6 testing circuits (if available). */
416 void
418 {
420 CELL_MAX_NETWORK_SIZE);
428 CIRCUIT_PURPOSE_TESTING))) {
429 /* dump cells_per_circuit drop cells onto this circ */
436 RELAY_COMMAND_DROP,
439 }
440 }
441 }
442 }