| blob | aa0e624efc1ee6f9d8df3c0740823d8f251077fc |
1 /* Copyright 2001 Matej Pfajfar.
2 * Copyright 2001-2004 Roger Dingledine.
3 * Copyright 2004 Roger Dingledine, Nick Mathewson. */
4 /* See LICENSE for licensing information */
5 /* $Id$ */
8 /**
9 * \file connection_or.c
10 * \brief Functions to handle OR connections, TLS handshaking, and
11 * cells on the network.
12 **/
16 /** How much clock skew do we tolerate when checking certificates for
17 * known routers? (sec) */
18 #define TIGHT_CERT_ALLOW_SKEW (90*60)
23 /**************************************************************/
25 /** Pack the cell_t host-order structure <b>src</b> into network-order
26 * in the buffer <b>dest</b>. See tor-spec.txt for details about the
27 * wire format.
28 */
33 }
35 /** Unpack the network-order buffer <b>src</b> into a host-order
36 * cell_t structure <b>dest</b>.
37 */
42 }
48 }
50 /** Handle any new bytes that have come in on connection <b>conn</b>.
51 * If conn is in 'open' state, hand it to
52 * connection_or_process_cells_from_inbuf()
53 * (else do nothing).
54 */
63 }
65 /** Connection <b>conn</b> has finished writing and has no bytes left on
66 * its outbuf.
67 *
68 * Otherwise it's in state "open": stop writing and return.
69 *
70 * If <b>conn</b> is broken, mark it for close and return -1, else
71 * return 0.
72 */
81 #ifdef TOR_FRAGILE
83 #endif
85 }
89 }
91 /** Connected handler for OR connections: begin the TLS handshake.
92 */
94 {
103 /* TLS handshaking error of some kind. */
106 }
108 }
110 /** Initialize <b>conn</b> to include all the relevant data from <b>router</b>.
111 * This function is called either from connection_or_connect(), if
112 * we initiated the connect, or from connection_tls_finish_handshake()
113 * if the other side initiated it.
114 */
115 static void
127 }
129 static void
133 {
141 }
144 /* This next part isn't really right, but it's good enough for now. */
147 /* If we're an authoritative directory server, we may know a
148 * nickname for this router. */
157 }
161 }
163 void
165 {
176 }
178 }
184 }
186 }
192 }
193 }
195 /** Launch a new OR connection to <b>addr</b>:<b>port</b> and expect to
196 * handshake with an OR with identity digest <b>id_digest</b>.
197 *
198 * If <b>id_digest</b> is me, do nothing. If we're already connected to it,
199 * return that connection. If the connect() is in progress, set the
200 * new conn's state to 'connecting' and return it. If connect() succeeds,
201 * call * connection_tls_start_handshake() on it.
202 *
203 * This function is called from router_retry_connections(), for
204 * ORs connecting to ORs, and circuit_establish_circuit(), for
205 * OPs connecting to ORs.
206 *
207 * Return the launched conn, or NULL if it failed.
208 */
220 }
222 /* this function should never be called if we're already connected to
223 * id_digest, but check first to be sure */
224 /*XXX this is getting called, at least by dirservers. */
228 log_fn(LOG_WARN,"Asked me to connect to router '%s', but there's already a connection.", conn->nickname);
230 }
234 /* set up conn so it's got all the data we need to remember */
247 /* writable indicates finish, readable indicates broken link,
248 error indicates broken link on windows */
250 /* case 1: fall through */
251 }
256 /* failure */
259 }
261 /** Begin the tls handshake with <b>conn</b>. <b>receiving</b> is 0 if
262 * we initiated the connection, else it's 1.
263 *
264 * Assign a new tls object to conn->tls, begin reading on <b>conn</b>, and pass
265 * <b>conn</b> to connection_tls_continue_handshake().
266 *
267 * Return -1 if <b>conn</b> is broken, else return 0.
268 */
275 }
280 }
282 }
284 /** Move forward with the tls handshake. If it finishes, hand
285 * <b>conn</b> to connection_tls_finish_handshake().
286 *
287 * Return -1 if <b>conn</b> is broken, else return 0.
288 */
304 }
306 }
311 {
317 else
319 }
321 /** The tls handshake is finished.
322 *
323 * Make sure we are happy with the person we just handshaked with:
324 * If it's an OP (that is, it has no certificate), make sure I'm an OR.
325 * If it's an OR (it has a certificate), make sure it has a recognized
326 * nickname, and its cert is signed by the identity key of that nickname.
327 * If I initiated the connection, make sure it's the right guy; and if
328 * he initiated the connection, make sure he's not already connected.
329 *
330 * If he initiated the conn, also initialize conn from the information
331 * in router.
332 *
333 * If either of us is an OP, set bandwidth to the default OP bandwidth.
334 *
335 * If all is successful and he's an OR, then call circuit_n_conn_done()
336 * to handle events that have been pending on the tls handshake
337 * completion, and set the directory to be dirty (only matters if I'm
338 * an authdirserver).
339 */
340 static int
354 /* XXX we should handle this case rather than just closing. */
356 }
361 }
366 log_fn(LOG_WARN,"Other side, which claims to be router '%s' (%s:%d), has a cert but it's invalid. Closing.",
369 }
370 #if 0
372 log_fn(LOG_WARN,"Other side '%s' (%s:%d) has a very highly skewed clock, or an expired certificate. Closing.",
375 }
376 #endif
384 }
391 log_fn(LOG_WARN, "Identity key not as expected for router claiming to be '%s' (%s:%d) ", nickname, conn->address, conn->port);
393 }
394 #if 0
396 /* This is a known router; don't cut it slack with its clock skew. */
398 log_fn(LOG_WARN,"Router '%s' (%s:%d) has a skewed clock, or an expired certificate; or else our clock is skewed. Closing.",
401 }
402 }
403 #endif
406 /* I initiated this connection. */
413 }
416 log_fn(LOG_INFO,"Router '%s' is already connected on fd %d. Dropping fd %d.", nickname, c->s, conn->s);
418 }
420 }
424 }
428 /* Note the success */
432 }
434 /** Pack <b>cell</b> into wire-format, and write it onto <b>conn</b>'s
435 * outbuf.
436 *
437 * (Commented out) If it's an OR conn, and an entire TLS record is
438 * ready, then try to flush the record now.
439 */
453 * because we're already round-robining in handle_read?
454 */
455 #define MIN_TLS_FLUSHLEN 15872
456 /* openssl tls record size is 16383, this is close. The goal here is to
457 * push data out as soon as we know there's enough for a tls record, so
458 * during periods of high load we won't read the entire megabyte from
459 * input before pushing any data out. */
467 }
471 }
472 }
473 #endif
475 }
477 /** Process cells from <b>conn</b>'s inbuf.
478 *
479 * Loop: while inbuf contains a cell, pull it off the inbuf, unpack it,
480 * and hand it to command_process_cell().
481 *
482 * Always return 0.
483 */
486 cell_t cell;
488 loop:
496 /* retrieve cell info from buf (create the host-order struct from the
497 * network-order string) */
503 }