adding option to disable use of ephemeral keys for HPC testing

author: Christian Grothoff <christian@grothoff.org> 2013-03-02 22:19:19 +0000
committer: Christian Grothoff <christian@grothoff.org> 2013-03-02 22:19:19 +0000
commit: 86d63901b65ec2a654bb7bb58a9fc962a6dc746d (patch)
tree: fec9da6c6d39755a9ccb6a51468a9aaba79af2a3 /src/core
parent: 3db319d5d3ce6510eb344a7d3c0ba10df8457443 (diff)
download: gnunet-86d63901b65ec2a654bb7bb58a9fc962a6dc746d.tar.gz
gnunet-86d63901b65ec2a654bb7bb58a9fc962a6dc746d.zip
2 files changed, 31 insertions, 15 deletions
diff --git a/src/core/core.conf.in b/src/core/core.conf.in
index ad39a8a79..839c21eeb 100644
--- a/src/core/core.conf.in
+++ b/src/core/core.conf.in
@@ -18,3 +18,7 @@ UNIX_MATCH_GID = YES
 # REJECT_FROM =
 # REJECT_FROM6 =
 # PREFIX =
+# Note: this MUST be set to YES in production, only set to NO for testing
+# for performance (testbed/cluster-scale use!).
+USE_EPHEMERAL_KEYS = YES
+\ No newline at end of file
diff --git a/src/core/gnunet-service-core_kx.c b/src/core/gnunet-service-core_kx.c
index 5a70b62ad..f0cc835e7 100644
--- a/src/core/gnunet-service-core_kx.c
+++ b/src/core/gnunet-service-core_kx.c
@@ -1510,19 +1510,30 @@ GSC_KX_init (struct GNUNET_CRYPTO_EccPrivateKey *pk)
  GNUNET_CRYPTO_ecc_key_get_public (my_private_key, &my_public_key);
  GNUNET_CRYPTO_hash (&my_public_key, sizeof (my_public_key),
                      &GSC_my_identity.hashPubKey);
-  my_ephemeral_key = GNUNET_CRYPTO_ecc_key_create ();
+  if (GNUNET_YES ==
-  if (NULL == my_ephemeral_key)
+      GNUNET_CONFIGURATION_get_value_yesno (GSC_cfg,
+                                            "core",
+                                            "USE_EPHEMERAL_KEYS"))
  {
-    GNUNET_break (0);
+    my_ephemeral_key = GNUNET_CRYPTO_ecc_key_create ();
-    GNUNET_CRYPTO_ecc_key_free (my_private_key);
+    if (NULL == my_ephemeral_key)
-    my_private_key = NULL;
+    {
-    return GNUNET_SYSERR;
+      GNUNET_break (0);
+      GNUNET_CRYPTO_ecc_key_free (my_private_key);
+      my_private_key = NULL;
+      return GNUNET_SYSERR;
+    }
+    sign_ephemeral_key ();
+    rekey_task = GNUNET_SCHEDULER_add_delayed (REKEY_FREQUENCY,
+                                               &do_rekey,
+                                               NULL);
+  }
+  else
+  {
+    my_ephemeral_key = my_private_key;
+    sign_ephemeral_key ();
  }
-  sign_ephemeral_key ();
  mst = GNUNET_SERVER_mst_create (&deliver_message, NULL);
-  rekey_task = GNUNET_SCHEDULER_add_delayed (REKEY_FREQUENCY,
-                                             &do_rekey,
-                                             NULL);
  return GNUNET_OK;
 }
@@ -1538,16 +1549,17 @@ GSC_KX_done ()
    GNUNET_SCHEDULER_cancel (rekey_task);
    rekey_task = GNUNET_SCHEDULER_NO_TASK;
  }
+  if ( (NULL != my_ephemeral_key) &&
+       (my_ephemeral_key != my_private_key) )
+  {
+    GNUNET_CRYPTO_ecc_key_free (my_ephemeral_key);
+    my_ephemeral_key = NULL;
+  }
  if (NULL != my_private_key)
  {
    GNUNET_CRYPTO_ecc_key_free (my_private_key);
    my_private_key = NULL;
  }
-  if (NULL != my_ephemeral_key)
-  {
-    GNUNET_CRYPTO_ecc_key_free (my_ephemeral_key);
-    my_ephemeral_key = NULL;
-  }
  if (NULL != mst)
  {
    GNUNET_SERVER_mst_destroy (mst);
author	Christian Grothoff <christian@grothoff.org>	2013-03-02 22:19:19 +0000
committer	Christian Grothoff <christian@grothoff.org>	2013-03-02 22:19:19 +0000
commit	86d63901b65ec2a654bb7bb58a9fc962a6dc746d (patch)
tree	fec9da6c6d39755a9ccb6a51468a9aaba79af2a3 /src/core
parent	3db319d5d3ce6510eb344a7d3c0ba10df8457443 (diff)
download	gnunet-86d63901b65ec2a654bb7bb58a9fc962a6dc746d.tar.gz gnunet-86d63901b65ec2a654bb7bb58a9fc962a6dc746d.zip