| blob | ebe49f09a518cc9a75502d812afb0ee59412d16c |
1 /* Copyright (c) 2016-2019, The Tor Project, Inc. */
2 /* See LICENSE for licensing information */
4 /**
5 * \file hs_common.c
6 * \brief Contains code shared between different HS protocol version as well
7 * as useful data structures and accessors used by other subsystems.
8 * The rendcommon.c should only contains code relating to the v2
9 * protocol.
10 **/
12 #define HS_COMMON_PRIVATE
42 /* Trunnel */
45 /* Ed25519 Basepoint value. Taken from section 5 of
46 * https://tools.ietf.org/html/draft-josefsson-eddsa-ed25519-03 */
48 "(15112221349535400772501151409588531511"
49 "454012693041857206046113283949847762202, "
50 "463168356949264781694283940034751631413"
53 #ifdef HAVE_SYS_UN_H
55 /** Given <b>ports</b>, a smarlist containing rend_service_port_config_t,
56 * add the given <b>p</b>, a AF_UNIX port to the list. Return 0 on success
57 * else return -ENOSYS if AF_UNIX is not supported (see function in the
58 * #else statement below). */
59 static int
61 {
68 }
70 /** Given <b>conn</b> set it to use the given port <b>p</b> values. Return 0
71 * on success else return -ENOSYS if AF_UNIX is not supported (see function
72 * in the #else statement below). */
73 static int
75 {
85 }
89 static int
91 {
95 }
97 static int
99 {
103 }
107 /* Helper function: The key is a digest that we compare to a node_t object
108 * current hsdir_index. */
109 static int
111 {
115 }
117 /* Helper function: The key is a digest that we compare to a node_t object
118 * next hsdir_index. */
119 static int
122 {
126 }
128 /* Helper function: The key is a digest that we compare to a node_t object
129 * next hsdir_index. */
130 static int
133 {
137 }
139 /* Helper function: Compare two node_t objects current hsdir_index. */
140 static int
142 {
147 DIGEST256_LEN);
148 }
150 /* Helper function: Compare two node_t objects next hsdir_index. */
151 static int
153 {
158 DIGEST256_LEN);
159 }
161 /* Helper function: Compare two node_t objects next hsdir_index. */
162 static int
164 {
169 DIGEST256_LEN);
170 }
172 /* Allocate and return a string containing the path to filename in directory.
173 * This function will never return NULL. The caller must free this path. */
176 {
184 }
186 /* Make sure that the directory for <b>service</b> is private, using the config
187 * <b>username</b>.
188 * If <b>create</b> is true:
189 * - if the directory exists, change permissions if needed,
190 * - if the directory does not exist, create it with the correct permissions.
191 * If <b>create</b> is false:
192 * - if the directory exists, check permissions,
193 * - if the directory does not exist, check if we think we can create it.
194 * Return 0 on success, -1 on failure. */
195 int
199 {
209 }
212 }
213 /* Check/create directory */
216 }
218 }
220 /* Default, minimum, and maximum values for the maximum rendezvous failures
221 * consensus parameter. */
222 #define MAX_REND_FAILURES_DEFAULT 2
223 #define MAX_REND_FAILURES_MIN 1
224 #define MAX_REND_FAILURES_MAX 10
226 /** How many times will a hidden service operator attempt to connect to
227 * a requested rendezvous point before giving up? */
228 int
230 {
232 MAX_REND_FAILURES_DEFAULT,
233 MAX_REND_FAILURES_MIN,
234 MAX_REND_FAILURES_MAX);
235 }
237 /** Get the default HS time period length in minutes from the consensus. */
238 STATIC uint64_t
240 {
241 /* If we are on a test network, make the time period smaller than normal so
242 that we actually see it rotate. Specifically, make it the same length as
243 an SRV protocol run. */
246 /* An SRV run should take more than a minute (it's 24 rounds) */
248 /* Turn it from seconds to minutes before returning: */
250 }
253 HS_TIME_PERIOD_LENGTH_DEFAULT,
254 HS_TIME_PERIOD_LENGTH_MIN,
255 HS_TIME_PERIOD_LENGTH_MAX);
256 /* Make sure it's a positive value. */
258 /* uint64_t will always be able to contain a positive int32_t */
260 }
262 /** Get the HS time period number at time <b>now</b>. If <b>now</b> is not set,
263 * we try to get the time ourselves from a live consensus. */
264 uint64_t
266 {
270 /* If no time is specified, set current time based on consensus time, and
271 * only fall back to system time if that fails. */
277 }
279 /* Start by calculating minutes since the epoch */
283 /* Apply the rotation offset as specified by prop224 (section
284 * [TIME-PERIODS]), so that new time periods synchronize nicely with SRV
285 * publication */
291 /* Calculate the time period */
294 }
296 /** Get the number of the _upcoming_ HS time period, given that the current
297 * time is <b>now</b>. If <b>now</b> is not set, we try to get the time from a
298 * live consensus. */
299 uint64_t
301 {
303 }
305 /* Get the number of the _previous_ HS time period, given that the current time
306 * is <b>now</b>. If <b>now</b> is not set, we try to get the time from a live
307 * consensus. */
308 uint64_t
310 {
312 }
314 /* Return the start time of the upcoming time period based on <b>now</b>. If
315 <b>now</b> is not set, we try to get the time ourselves from a live
316 consensus. */
317 time_t
319 {
322 /* Get start time of next time period */
326 /* Apply rotation offset as specified by prop224 section [TIME-PERIODS] */
329 }
331 /* Create a new rend_data_t for a specific given <b>version</b>.
332 * Return a pointer to the newly allocated data structure. */
335 {
340 {
346 }
350 }
353 }
355 /** Free all storage associated with <b>data</b> */
356 void
358 {
361 }
362 /* By using our allocation function, this should always be set. */
364 /* Cleanup the HSDir identity digest. */
367 /* Depending on the version, cleanup. */
370 {
374 }
377 }
378 }
380 /* Allocate and return a deep copy of <b>data</b>. */
381 rend_data_t *
383 {
395 {
401 }
405 }
408 }
410 /* Compute the descriptor ID for each HS descriptor replica and save them. A
411 * valid onion address must be present in the <b>rend_data</b>.
412 *
413 * Return 0 on success else -1. */
414 static int
416 {
425 {
427 /* Compute descriptor ID for each replicas. */
429 replica++) {
436 }
437 }
439 }
442 }
444 end:
446 }
448 /* Allocate and initialize a rend_data_t object for a service using the
449 * provided arguments. All arguments are optional (can be NULL), except from
450 * <b>onion_address</b> which MUST be set. The <b>pk_digest</b> is the hash of
451 * the service private key. The <b>cookie</b> is the rendezvous cookie and
452 * <b>auth_type</b> is which authentiation this service is configured with.
453 *
454 * Return a valid rend_data_t pointer. This only returns a version 2 object of
455 * rend_data_t. */
456 rend_data_t *
459 {
460 /* Create a rend_data_t object for version 2. */
464 /* We need at least one else the call is wrong. */
469 }
472 }
478 }
480 /* Allocate and initialize a rend_data_t object for a client request using the
481 * given arguments. Either an onion address or a descriptor ID is needed. Both
482 * can be given but in this case only the onion address will be used to make
483 * the descriptor fetch. The <b>cookie</b> is the rendezvous cookie and
484 * <b>auth_type</b> is which authentiation the service is configured with.
485 *
486 * Return a valid rend_data_t pointer or NULL on error meaning the
487 * descriptor IDs couldn't be computed from the given data. */
488 rend_data_t *
491 {
492 /* Create a rend_data_t object for version 2. */
496 /* We need at least one else the call is wrong. */
501 }
504 }
509 }
510 }
516 error:
519 }
521 /* Return the onion address from the rend data. Depending on the version,
522 * the size of the address can vary but it's always NUL terminated. */
525 {
532 /* We should always have a supported version. */
534 }
535 }
537 /* Return the descriptor ID for a specific replica number from the rend
538 * data. The returned data is a binary digest and depending on the version its
539 * size can vary. The size of the descriptor ID is put in <b>len_out</b> if
540 * non NULL. */
544 {
552 }
555 /* We should always have a supported version. */
557 }
558 }
560 /* Return the public key digest using the given <b>rend_data</b>. The size of
561 * the digest is put in <b>len_out</b> (if set) which can differ depending on
562 * the version. */
565 {
570 {
574 }
576 }
578 /* We should always have a supported version. */
580 }
581 }
583 /* Using the given time period number, compute the disaster shared random
584 * value and put it in srv_out. It MUST be at least DIGEST256_LEN bytes. */
585 static void
587 {
594 /* Start setting up payload:
595 * H("shared-random-disaster" | INT_8(period_length) | INT_8(period_num)) */
597 HS_SRV_DISASTER_PREFIX_LEN);
599 /* Setup INT_8(period_length) | INT_8(period_num) */
600 {
611 }
615 }
617 /** Due to the high cost of computing the disaster SRV and that potentially we
618 * would have to do it thousands of times in a row, we always cache the
619 * computer disaster SRV (and its corresponding time period num) in case we
620 * want to reuse it soon after. We need to cache two SRVs, one for each active
621 * time period.
622 */
626 /** Compute the disaster SRV value for this <b>time_period_num</b> and put it
627 * in <b>srv_out</b> (of size at least DIGEST256_LEN). First check our caches
628 * to see if we have already computed it. */
629 STATIC void
631 {
640 // Replace the lower period number.
645 }
650 }
651 }
653 #ifdef TOR_UNIT_TESTS
655 /** Get the first cached disaster SRV. Only used by unittests. */
658 {
660 }
662 /** Get the second cached disaster SRV. Only used by unittests. */
665 {
667 }
671 /* When creating a blinded key, we need a parameter which construction is as
672 * follow: H(pubkey | [secret] | ed25519-basepoint | nonce).
673 *
674 * The nonce has a pre-defined format which uses the time period number
675 * period_num and the start of the period in second start_time_period.
676 *
677 * The secret of size secret_len is optional meaning that it can be NULL and
678 * thus will be ignored for the param construction.
679 *
680 * The result is put in param_out. */
681 static void
686 {
695 /* Create the nonce N. The construction is as follow:
696 * N = "key-blind" || INT_8(period_num) || INT_8(period_length) */
705 /* Generate the parameter h and the construction is as follow:
706 * h = H(BLIND_STRING | pubkey | [secret] | ed25519-basepoint | N) */
710 /* Optional secret. */
713 }
718 /* Extract digest and put it in the param. */
723 }
725 /* Using an ed25519 public key and version to build the checksum of an
726 * address. Put in checksum_out. Format is:
727 * SHA3-256(".onion checksum" || PUBKEY || VERSION)
728 *
729 * checksum_out must be large enough to receive 32 bytes (DIGEST256_LEN). */
730 static void
733 {
737 /* Build checksum data. */
739 HS_SERVICE_ADDR_CHECKSUM_PREFIX_LEN);
747 /* Hash the data payload to create the checksum. */
749 DIGEST_SHA3_256);
750 }
752 /* Using an ed25519 public key, checksum and version to build the binary
753 * representation of a service address. Put in addr_out. Format is:
754 * addr_out = PUBKEY || CHECKSUM || VERSION
755 *
756 * addr_out must be large enough to receive HS_SERVICE_ADDR_LEN bytes. */
757 static void
760 {
773 }
775 /* Helper for hs_parse_address(): Using a binary representation of a service
776 * address, parse its content into the key_out, checksum_out and version_out.
777 * Any out variable can be NULL in case the caller would want only one field.
778 * checksum_out MUST at least be 2 bytes long. address must be at least
779 * HS_SERVICE_ADDR_LEN bytes but doesn't need to be NUL terminated. */
780 static void
783 {
789 /* First is the key. */
791 }
794 /* Followed by a 2 bytes checksum. */
796 }
799 /* Finally, version value is 1 byte. */
801 }
803 /* Extra safety. */
805 }
807 /* Using the given identity public key and a blinded public key, compute the
808 * subcredential and put it in subcred_out (must be of size DIGEST256_LEN).
809 * This can't fail. */
810 void
814 {
822 /* First, build the credential. Construction is as follow:
823 * credential = H("credential" | public-identity-key) */
826 HS_CREDENTIAL_PREFIX_LEN);
828 ED25519_PUBKEY_LEN);
832 /* Now, compute the subcredential. Construction is as follow:
833 * subcredential = H("subcredential" | credential | blinded-public-key). */
836 HS_SUBCREDENTIAL_PREFIX_LEN);
840 ED25519_PUBKEY_LEN);
845 }
847 /* From the given list of hidden service ports, find the ones that match the
848 * given edge connection conn, pick one at random and use it to set the
849 * connection address. Return 0 on success or -1 if none. */
850 int
852 {
864 }
870 /* Unix port not supported so warn only once. */
872 "which is unsupported on this platform. "
875 }
876 warn_once++;
877 }
878 }
885 /* save the original destination before we overwrite it */
888 }
890 /* Get a non-AF_UNIX connection ready for connection_exit_connect() */
895 /* Simply impossible to end up here else we were able to add a Unix
896 * port without AF_UNIX support... ? */
898 }
899 }
900 }
902 }
904 /* Using a base32 representation of a service address, parse its content into
905 * the key_out, checksum_out and version_out. Any out variable can be NULL in
906 * case the caller would want only one field. checksum_out MUST at least be 2
907 * bytes long.
908 *
909 * Return 0 if parsing went well; return -1 in case of error. */
910 int
913 {
918 /* Obvious length check. */
926 }
928 /* Decode address so we can extract needed fields. */
933 }
935 /* Parse the decoded address into the fields we need. */
939 invalid:
941 }
943 /* Validate a given onion address. The length, the base32 decoding and
944 * checksum are validated. Return 1 if valid else 0. */
945 int
947 {
951 ed25519_public_key_t service_pubkey;
953 /* Parse the decoded address into the fields we need. */
956 }
958 /* Get the checksum it's suppose to be and compare it with what we have
959 * encoded in the address. */
965 }
967 /* Validate that this pubkey does not have a torsion component. We need to do
968 * this on the prop224 client-side so that attackers can't give equivalent
969 * forms of an onion address to users. */
974 }
976 /* Valid address. */
978 invalid:
980 }
982 /* Build a service address using an ed25519 public key and a given version.
983 * The returned address is base32 encoded and put in addr_out. The caller MUST
984 * make sure the addr_out is at least HS_SERVICE_ADDR_LEN_BASE32 + 1 long.
985 *
986 * Format is as follow:
987 * base32(PUBKEY || CHECKSUM || VERSION)
988 * CHECKSUM = H(".onion checksum" || PUBKEY || VERSION)
989 * */
990 void
993 {
1000 /* Get the checksum of the address. */
1002 /* Get the binary address representation. */
1005 /* Encode the address. addr_out will be NUL terminated after this. */
1008 /* Validate what we just built. */
1010 }
1012 /* Return a newly allocated copy of lspec. */
1013 link_specifier_t *
1015 {
1018 /* The unrecognized field is a dynamic array so make sure to copy its
1019 * content and not the pointer. */
1026 }
1028 }
1030 /* From a given ed25519 public key pk and an optional secret, compute a
1031 * blinded public key and put it in blinded_pk_out. This is only useful to
1032 * the client side because the client only has access to the identity public
1033 * key of the service. */
1034 void
1039 {
1040 /* Our blinding key API requires a 32 bytes parameter. */
1052 }
1054 /* From a given ed25519 keypair kp and an optional secret, compute a blinded
1055 * keypair for the current time period and put it in blinded_kp_out. This is
1056 * only useful by the service side because the client doesn't have access to
1057 * the identity secret key. */
1058 void
1063 {
1064 /* Our blinding key API requires a 32 bytes parameter. */
1069 /* Extra safety. A zeroed key is bad. */
1078 }
1080 /* Return true if we are currently in the time segment between a new time
1081 * period and a new SRV (in the real network that happens between 12:00 and
1082 * 00:00 UTC). Here is a diagram showing exactly when this returns true:
1083 *
1084 * +------------------------------------------------------------------+
1085 * | |
1086 * | 00:00 12:00 00:00 12:00 00:00 12:00 |
1087 * | SRV#1 TP#1 SRV#2 TP#2 SRV#3 TP#3 |
1088 * | |
1089 * | $==========|-----------$===========|-----------$===========| |
1090 * | ^^^^^^^^^^^^ ^^^^^^^^^^^^ |
1091 * | |
1092 * +------------------------------------------------------------------+
1093 */
1096 {
1104 }
1105 }
1107 /* Get start time of next TP and of current SRV protocol run, and check if we
1108 * are between them. */
1115 }
1118 }
1120 /* Return 1 if any virtual port in ports needs a circuit with good uptime.
1121 * Else return 0. */
1122 int
1124 {
1131 }
1134 }
1136 /* Build hs_index which is used to find the responsible hsdirs. This index
1137 * value is used to select the responsible HSDir where their hsdir_index is
1138 * closest to this value.
1139 * SHA3-256("store-at-idx" | blinded_public_key |
1140 * INT_8(replicanum) | INT_8(period_length) | INT_8(period_num) )
1141 *
1142 * hs_index_out must be large enough to receive DIGEST256_LEN bytes. */
1143 void
1146 {
1152 /* Build hs_index. See construction at top of function comment. */
1156 ED25519_PUBKEY_LEN);
1158 /* Now setup INT_8(replicanum) | INT_8(period_length) | INT_8(period_num) */
1159 {
1172 }
1176 }
1178 /* Build hsdir_index which is used to find the responsible hsdirs. This is the
1179 * index value that is compare to the hs_index when selecting an HSDir.
1180 * SHA3-256("node-idx" | node_identity |
1181 * shared_random_value | INT_8(period_length) | INT_8(period_num) )
1182 *
1183 * hsdir_index_out must be large enough to receive DIGEST256_LEN bytes. */
1184 void
1188 {
1195 /* Build hsdir_index. See construction at top of function comment. */
1199 ED25519_PUBKEY_LEN);
1202 {
1213 }
1217 }
1219 /* Return a newly allocated buffer containing the current shared random value
1220 * or if not present, a disaster value is computed using the given time period
1221 * number. If a consensus is provided in <b>ns</b>, use it to get the SRV
1222 * value. This function can't fail. */
1225 {
1232 /* Disaster mode. */
1234 }
1236 }
1238 /* Return a newly allocated buffer containing the previous shared random
1239 * value or if not present, a disaster value is computed using the given time
1240 * period number. This function can't fail. */
1243 {
1250 /* Disaster mode. */
1252 }
1254 }
1256 /* Return the number of replicas defined by a consensus parameter or the
1257 * default value. */
1258 int32_t
1260 {
1261 /* The [1,16] range is a specification requirement. */
1264 }
1266 /* Return the spread fetch value defined by a consensus parameter or the
1267 * default value. */
1268 int32_t
1270 {
1271 /* The [1,128] range is a specification requirement. */
1274 }
1276 /* Return the spread store value defined by a consensus parameter or the
1277 * default value. */
1278 int32_t
1280 {
1281 /* The [1,128] range is a specification requirement. */
1284 }
1286 /** <b>node</b> is an HSDir so make sure that we have assigned an hsdir index.
1287 * Return 0 if everything is as expected, else return -1. */
1288 static int
1290 {
1293 /* A node can't have an HSDir index without a descriptor since we need desc
1294 * to get its ed25519 key. for_direct_connect should be zero, since we
1295 * always use the consensus-indexed node's keys to build the hash ring, even
1296 * if some of the consensus-indexed nodes are also bridges. */
1299 }
1301 /* At this point, since the node has a desc, this node must also have an
1302 * hsdir index. If not, something went wrong, so BUG out. */
1304 DIGEST256_LEN))) {
1306 }
1308 DIGEST256_LEN))) {
1310 }
1312 DIGEST256_LEN))) {
1314 }
1317 }
1319 /* For a given blinded key and time period number, get the responsible HSDir
1320 * and put their routerstatus_t object in the responsible_dirs list. If
1321 * 'use_second_hsdir_index' is true, use the second hsdir_index of the node_t
1322 * is used. If 'for_fetching' is true, the spread fetch consensus parameter is
1323 * used else the spread store is used which is only for upload. This function
1324 * can't fail but it is possible that the responsible_dirs list contains fewer
1325 * nodes than expected.
1326 *
1327 * This function goes over the latest consensus routerstatus list and sorts it
1328 * by their node_t hsdir_index then does a binary search to find the closest
1329 * node. All of this makes it a bit CPU intensive so use it wisely. */
1330 void
1334 {
1336 /* The compare function used for the smartlist bsearch. We have two
1337 * different depending on is_next_period. */
1345 /* Make sure we actually have a live consensus */
1351 }
1353 /* Ensure the nodelist is fresh, since it contains the HSDir indices. */
1356 /* Add every node_t that support HSDir v3 for which we do have a valid
1357 * hsdir_index already computed for them for this consensus. */
1358 {
1360 /* Even though this node_t object won't be modified and should be const,
1361 * we can't add const object in a smartlist_t. */
1369 }
1371 }
1373 }
1377 }
1379 /* First thing we have to do is sort all node_t by hsdir_index. The
1380 * is_next_period tells us if we want the current or the next one. Set the
1381 * bsearch compare function also while we are at it. */
1391 }
1393 /* For all replicas, we'll select a set of HSDirs using the consensus
1394 * parameters and the sorted list. The replica starting at value 1 is
1395 * defined by the specification. */
1399 /* Number of node to add to the responsible dirs list depends on if we are
1400 * trying to fetch or store. A client always fetches. */
1404 /* Get the index that we should use to select the node. */
1406 /* The compare function pointer has been set correctly earlier. */
1409 /* Getting the length of the list if no member is greater than the key we
1410 * are looking for so start at the first element. */
1413 }
1416 /* If the node has already been selected which is possible between
1417 * replicas, the specification says to skip over. */
1421 }
1423 /* Wrap if we've reached the end of the list. */
1425 }
1427 /* We've gone over the whole list, stop and avoid infinite loop. */
1429 }
1430 }
1431 }
1433 done:
1435 }
1437 /*********************** HSDir request tracking ***************************/
1439 /** Return the period for which a hidden service directory cannot be queried
1440 * for the same descriptor ID again, taking TestingTorNetwork into account. */
1441 time_t
1443 {
1450 }
1451 }
1453 /** Tracks requests for fetching hidden service descriptors. It's used by
1454 * hidden service clients, to avoid querying HSDirs that have already failed
1455 * giving back a descriptor. The same data structure is used to track both v2
1456 * and v3 HS descriptor requests.
1457 *
1458 * The string map is a key/value store that contains the last request times to
1459 * hidden service directories for certain queries. Specifically:
1460 *
1461 * key = base32(hsdir_identity) + base32(hs_identity)
1462 * value = time_t of last request for that hs_identity to that HSDir
1463 *
1464 * where 'hsdir_identity' is the identity digest of the HSDir node, and
1465 * 'hs_identity' is the descriptor ID of the HS in the v2 case, or the ed25519
1466 * blinded public key of the HS in the v3 case. */
1469 /** Returns last_hid_serv_requests_, initializing it to a new strmap if
1470 * necessary. */
1471 STATIC strmap_t *
1473 {
1477 }
1479 /** Look up the last request time to hidden service directory <b>hs_dir</b>
1480 * for descriptor request key <b>req_key_str</b> which is the descriptor ID
1481 * for a v2 service or the blinded key for v3. If <b>set</b> is non-zero,
1482 * assign the current time <b>now</b> and return that. Otherwise, return the
1483 * most recent request time, or 0 if no such request has been sent before. */
1484 time_t
1488 {
1494 /* Create the key */
1504 last_request_ptr);
1508 hsdir_desc_comb_id);
1509 }
1513 }
1515 /** Clean the history of request times to hidden service directories, so that
1516 * it does not contain requests older than REND_HID_SERV_DIR_REQUERY_PERIOD
1517 * seconds any more. */
1518 void
1520 {
1536 }
1537 }
1538 }
1540 /** Remove all requests related to the descriptor request key string
1541 * <b>req_key_str</b> from the history of times of requests to hidden service
1542 * directories.
1543 *
1544 * This is called from rend_client_note_connection_attempt_ended(), which
1545 * must be idempotent, so any future changes to this function must leave it
1546 * idempotent too. */
1547 void
1549 {
1559 /* XXX: The use of REND_DESC_ID_V2_LEN_BASE32 is very wrong in terms of
1560 * semantic, see #23305. */
1562 /* This strmap contains variable-sized elements so this is a basic length
1563 * check on the strings we are about to compare. The key is variable sized
1564 * since it's composed as follows:
1565 * key = base32(hsdir_identity) + base32(req_key_str)
1566 * where 'req_key_str' is the descriptor ID of the HS in the v2 case, or
1567 * the ed25519 blinded public key of the HS in the v3 case. */
1571 }
1573 /* Check if the tracked request matches our request key */
1580 }
1581 }
1582 }
1584 /** Purge the history of request times to hidden service directories,
1585 * so that future lookups of an HS descriptor will not fail because we
1586 * accessed all of the HSDir relays responsible for the descriptor
1587 * recently. */
1588 void
1590 {
1591 /* Don't create the table if it doesn't exist yet (and it may very
1592 * well not exist if the user hasn't accessed any HSes)... */
1594 /* ... and let get_last_hid_serv_requests re-create it for us if
1595 * necessary. */
1601 }
1602 }
1604 /***********************************************************************/
1606 /** Given the list of responsible HSDirs in <b>responsible_dirs</b>, pick the
1607 * one that we should use to fetch a descriptor right now. Take into account
1608 * previous failed attempts at fetching this descriptor from HSDirs using the
1609 * string identifier <b>req_key_str</b>.
1610 *
1611 * Steals ownership of <b>responsible_dirs</b>.
1612 *
1613 * Return the routerstatus of the chosen HSDir if successful, otherwise return
1614 * NULL if no HSDirs are worth trying right now. */
1615 routerstatus_t *
1617 {
1626 /* Clean outdated request history first. */
1629 /* Only select those hidden service directories to which we did not send a
1630 * request recently and for which we have a router descriptor here.
1631 *
1632 * Use for_direct_connect==0 even if we will be connecting to the node
1633 * directly, since we always use the key information in the
1634 * consensus-indexed node descriptors for building the index.
1635 **/
1643 }
1646 }
1649 excluded_some =
1655 }
1661 "service directories, because we requested them all "
1665 "requested hidden service: they are all either down or "
1667 }
1669 /* Remember that we are requesting a descriptor from this hidden service
1670 * directory now. */
1672 }
1675 }
1677 /* From a list of link specifier, an onion key and if we are requesting a
1678 * direct connection (ex: single onion service), return a newly allocated
1679 * extend_info_t object. This function always returns an extend info with
1680 * an IPv4 address, or NULL.
1681 *
1682 * It performs the following checks:
1683 * if either IPv4 or legacy ID is missing, return NULL.
1684 * if direct_conn, and we can't reach the IPv4 address, return NULL.
1685 */
1686 extend_info_t *
1690 {
1694 tor_addr_t addr_v4;
1695 ed25519_public_key_t ed25519_pk;
1703 /* Skip if we already seen a v4. */
1711 /* Make sure we do have enough bytes for the legacy ID. */
1714 }
1722 ED25519_PUBKEY_LEN);
1726 /* Ignore unknown. */
1728 }
1731 /* Legacy ID is mandatory, and we require IPv4. */
1734 }
1736 /* We know we have IPv4, because we just checked. */
1738 /* All clients can extend to any IPv4 via a 3-hop path. */
1742 FIREWALL_OR_CONNECTION,
1744 /* Direct connection and we can reach it in IPv4 so go for it. */
1747 /* We will add support for falling back to a 3-hop path in a later
1748 * release. */
1750 /* If we can't reach IPv4, return NULL. */
1752 }
1754 /* We will add support for IPv6 in a later release. */
1756 validate:
1757 /* We'll validate now that the address we've picked isn't a private one. If
1758 * it is, are we allowing to extend to private address? */
1761 "Requested address is private and we are not allowed to extend to "
1764 }
1766 /* We do have everything for which we think we can connect successfully. */
1770 done:
1772 }
1774 /***********************************************************************/
1776 /* Initialize the entire HS subsytem. This is called in tor_init() before any
1777 * torrc options are loaded. Only for >= v3. */
1778 void
1780 {
1784 }
1786 /* Release and cleanup all memory of the HS subsystem (all version). This is
1787 * called by tor_free_all(). */
1788 void
1790 {
1795 }
1797 /* For the given origin circuit circ, decrement the number of rendezvous
1798 * stream counter. This handles every hidden service version. */
1799 void
1801 {
1809 /* Should not be called if this circuit is not for hidden service. */
1811 }
1812 }
1814 /* For the given origin circuit circ, increment the number of rendezvous
1815 * stream counter. This handles every hidden service version. */
1816 void
1818 {
1826 /* Should not be called if this circuit is not for hidden service. */
1828 }
1829 }