| blob | 033f86288eea65adb01b32ad10dd5fbb1b6ff305 |
1 /* Copyright (c) 2001 Matej Pfajfar.
2 * Copyright (c) 2001-2004, Roger Dingledine.
3 * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
4 * Copyright (c) 2007-2013, The Tor Project, Inc. */
5 /* See LICENSE for licensing information */
7 /**
8 * \file buffers.c
9 * \brief Implements a generic interface buffer. Buffers are
10 * fairly opaque string holders that can read to or flush from:
11 * memory, file descriptors, or TLS connections.
12 **/
13 #define BUFFERS_PRIVATE
25 #ifdef HAVE_UNISTD_H
26 #include <unistd.h>
27 #endif
29 //#define PARANOIA
31 #ifdef PARANOIA
32 /** Helper: If PARANOIA is defined, assert that the buffer in local variable
33 * <b>buf</b> is well-formed. */
34 #define check() STMT_BEGIN assert_buf_ok(buf); STMT_END
35 #else
36 #define check() STMT_NIL
37 #endif
39 /* Implementation notes:
40 *
41 * After flirting with memmove, and dallying with ring-buffers, we're finally
42 * getting up to speed with the 1970s and implementing buffers as a linked
43 * list of small chunks. Each buffer has such a list; data is removed from
44 * the head of the list, and added at the tail. The list is singly linked,
45 * and the buffer keeps a pointer to the head and the tail.
46 *
47 * Every chunk, except the tail, contains at least one byte of data. Data in
48 * each chunk is contiguous.
49 *
50 * When you need to treat the first N characters on a buffer as a contiguous
51 * string, use the buf_pullup function to make them so. Don't do this more
52 * than necessary.
53 *
54 * The major free Unix kernels have handled buffers like this since, like,
55 * forever.
56 */
65 /* Chunk manipulation functions */
67 #define CHUNK_HEADER_LEN STRUCT_OFFSET(chunk_t, mem[0])
69 /** Return the number of bytes needed to allocate a chunk to hold
70 * <b>memlen</b> bytes. */
71 #define CHUNK_ALLOC_SIZE(memlen) (CHUNK_HEADER_LEN + (memlen))
72 /** Return the number of usable bytes in a chunk allocated with
73 * malloc(<b>memlen</b>). */
74 #define CHUNK_SIZE_WITH_ALLOC(memlen) ((memlen) - CHUNK_HEADER_LEN)
76 /** Return the next character in <b>chunk</b> onto which data can be appended.
77 * If the chunk is full, this might be off the end of chunk->mem. */
80 {
82 }
84 /** Return the number of bytes that can be written onto <b>chunk</b> without
85 * running out of space. */
88 {
90 }
92 /** Move all bytes stored in <b>chunk</b> to the front of <b>chunk</b>->mem,
93 * to free up space at the end. */
96 {
99 }
101 }
103 /** Keep track of total size of allocated chunks for consistency asserts */
106 #if defined(ENABLE_BUF_FREELISTS) || defined(RUNNING_DOXYGEN)
107 /** A freelist of chunks. */
111 * freelist. */
113 * chunks beyond lowest_length.*/
116 * last time we cleaned this freelist? */
123 /** Macro to help define freelists. */
124 #define FL(a,m,s) { a, m, s, 0, 0, 0, 0, 0, NULL }
126 /** Static array of freelists, sorted by alloc_len, terminated by an entry
127 * with alloc_size of 0. */
131 };
132 #undef FL
133 /** How many times have we looked for a chunk of a size that no freelist
134 * could help with? */
139 /** Return the freelist to hold chunks of size <b>alloc</b>, or NULL if
140 * no freelist exists for that size. */
143 {
149 }
150 }
152 }
154 /** Deallocate a chunk or put it on a freelist */
155 static void
157 {
170 #ifdef DEBUG_CHUNK_ALLOC
172 #endif
176 }
177 }
179 /** Allocate a new chunk with a given allocation size, or get one from the
180 * freelist. Note that a chunk with allocation size A can actually hold only
181 * CHUNK_SIZE_WITH_ALLOC(A) bytes in its mem field. */
184 {
198 else
201 #ifdef DEBUG_CHUNK_ALLOC
203 #endif
205 }
211 }
212 #else
213 static void
215 {
218 #ifdef DEBUG_CHUNK_ALLOC
220 #endif
225 }
228 {
233 #ifdef DEBUG_CHUNK_ALLOC
235 #endif
240 }
241 #endif
243 /** Expand <b>chunk</b> until it can hold <b>sz</b> bytes, and return a
244 * new pointer to <b>chunk</b>. Old pointers are no longer valid. */
247 {
248 off_t offset;
255 #ifdef DEBUG_CHUNK_ALLOC
258 #endif
259 total_bytes_allocated_in_chunks +=
262 }
264 /** If a read onto the end of a chunk would be smaller than this number, then
265 * just start a new chunk. */
266 #define MIN_READ_LEN 8
267 /** Every chunk should take up at least this many bytes. */
268 #define MIN_CHUNK_ALLOC 256
269 /** No chunk should take up more than this many bytes. */
270 #define MAX_CHUNK_ALLOC 65536
272 /** Return the allocation size we'd like to use to hold <b>target</b>
273 * bytes. */
276 {
280 }
282 }
284 /** Remove from the freelists most chunks that have not been used since the
285 * last call to buf_shrink_freelists(). Return the amount of memory
286 * freed. */
287 size_t
289 {
290 #ifdef ENABLE_BUF_FREELISTS
315 }
316 // tor_assert((*chp)->next);
319 }
324 #ifdef DEBUG_CHUNK_ALLOC
326 #endif
336 }
341 "keep %d. I wanted to free %d. I freed %d. I somehow think "
345 }
346 // tor_assert(!n_to_free);
353 }
356 }
357 done:
360 #else
363 #endif
364 }
366 /** Describe the current status of the freelists at log level <b>severity</b>.
367 */
368 void
370 {
371 #ifdef ENABLE_BUF_FREELISTS
378 U64_FORMAT" bytes in %d %d-byte chunks ["U64_FORMAT
385 }
388 #else
390 #endif
391 }
393 /** Collapse data from the first N chunks from <b>buf</b> into buf->head,
394 * growing it as necessary, until buf->head has the first <b>bytes</b> bytes
395 * of data from the buffer, or until buf->head has all the data in <b>buf</b>.
396 *
397 * If <b>nulterminate</b> is true, ensure that there is a 0 byte in
398 * buf->head->mem right after all the data. */
399 STATIC void
401 {
402 /* XXXX nothing uses nulterminate; remove it. */
417 }
422 }
425 /* We don't need to grow the first chunk, but we might need to repack it.*/
433 /* We need to grow the chunk. */
442 }
443 }
463 }
464 }
469 }
472 }
474 #ifdef TOR_UNIT_TESTS
475 void
477 {
484 }
485 }
486 #endif
488 /** Resize buf so it won't hold extra memory that we haven't been
489 * using lately.
490 */
491 void
493 {
495 }
497 /** Remove the first <b>n</b> bytes from buf. */
500 {
517 }
518 }
520 }
522 /** Create and return a new buf with default chunk capacity <b>size</b>.
523 */
524 buf_t *
526 {
530 }
532 /** Allocate and return a new buffer with default capacity. */
533 buf_t *
535 {
540 }
542 size_t
544 {
546 }
548 /** Remove all data from <b>buf</b>. */
549 void
551 {
557 }
559 }
561 /** Return the number of bytes stored in <b>buf</b> */
562 size_t
564 {
566 }
568 /** Return the total length of all chunks used in <b>buf</b>. */
569 size_t
571 {
576 }
578 }
580 /** Return the number of bytes that can be added to <b>buf</b> without
581 * performing any additional allocation. */
582 size_t
584 {
587 else
589 }
591 /** Release storage held by <b>buf</b>. */
592 void
594 {
601 }
603 /** Return a new copy of <b>in_chunk</b> */
606 {
609 #ifdef DEBUG_CHUNK_ALLOC
611 #endif
616 }
618 }
620 /** Return a new copy of <b>buf</b> */
621 buf_t *
623 {
634 }
635 }
638 }
640 /** Append a new chunk with enough capacity to hold <b>capacity</b> bytes to
641 * the tail of <b>buf</b>. If <b>capped</b>, don't allocate a chunk bigger
642 * than MAX_CHUNK_ALLOC. */
645 {
654 }
666 }
669 }
671 /** Return the age of the oldest chunk in the buffer <b>buf</b>, in
672 * milliseconds. Requires the current time, in truncated milliseconds since
673 * the epoch, as its input <b>now</b>.
674 */
675 uint32_t
677 {
682 }
683 }
685 size_t
687 {
689 }
691 /** Read up to <b>at_most</b> bytes from the socket <b>fd</b> into
692 * <b>chunk</b> (which must be on <b>buf</b>). If we get an EOF, set
693 * *<b>reached_eof</b> to 1. Return -1 on error, 0 on eof or blocking,
694 * and the number of bytes read otherwise. */
698 {
699 ssize_t read_result;
707 #ifdef _WIN32
710 #endif
713 }
726 }
727 }
729 /** As read_to_chunk(), but return (negative) error code on error, blocking,
730 * or TLS, and the number of bytes read otherwise. */
734 {
744 }
746 /** Read from socket <b>s</b>, writing onto end of <b>buf</b>. Read at most
747 * <b>at_most</b> bytes, growing the buffer as necessary. If recv() returns 0
748 * (because of EOF), set *<b>reached_eof</b> to 1 and return 0. Return -1 on
749 * error; else return the number of bytes read.
750 */
751 /* XXXX024 indicate "read blocked" somehow? */
752 int
755 {
756 /* XXXX024 It's stupid to overload the return values for these functions:
757 * "error status" and "number of bytes read" are not mutually exclusive.
758 */
778 }
788 }
789 }
791 }
793 /** As read_to_buf, but reads from a TLS connection, and returns a TLS
794 * status value rather than the number of bytes read.
795 *
796 * Using TLS on OR connections complicates matters in two ways.
797 *
798 * First, a TLS stream has its own read buffer independent of the
799 * connection's read buffer. (TLS needs to read an entire frame from
800 * the network before it can decrypt any data. Thus, trying to read 1
801 * byte from TLS can require that several KB be read from the network
802 * and decrypted. The extra data is stored in TLS's decrypt buffer.)
803 * Because the data hasn't been read by Tor (it's still inside the TLS),
804 * this means that sometimes a connection "has stuff to read" even when
805 * poll() didn't return POLLIN. The tor_tls_get_pending_bytes function is
806 * used in connection.c to detect TLS objects with non-empty internal
807 * buffers and read from them again.
808 *
809 * Second, the TLS stream's events do not correspond directly to network
810 * events: sometimes, before a TLS stream can read, the network must be
811 * ready to write -- or vice versa.
812 */
813 int
815 {
835 }
845 }
847 }
849 /** Helper for flush_buf(): try to write <b>sz</b> bytes from chunk
850 * <b>chunk</b> of buffer <b>buf</b> onto socket <b>s</b>. On success, deduct
851 * the bytes written from *<b>buf_flushlen</b>. Return the number of bytes
852 * written on success, 0 on blocking, -1 on failure.
853 */
857 {
858 ssize_t write_result;
867 #ifdef _WIN32
870 #endif
872 }
880 }
881 }
883 /** Helper for flush_buf_tls(): try to write <b>sz</b> bytes from chunk
884 * <b>chunk</b> of buffer <b>buf</b> onto socket <b>s</b>. (Tries to write
885 * more if there is a forced pending write size.) On success, deduct the
886 * bytes written from *<b>buf_flushlen</b>. Return the number of bytes
887 * written on success, and a TOR_TLS error code on failure or blocking.
888 */
892 {
906 }
912 else
918 }
920 /** Write data from <b>buf</b> to the socket <b>s</b>. Write at most
921 * <b>sz</b> bytes, decrement *<b>buf_flushlen</b> by
922 * the number of bytes actually written, and remove the written bytes
923 * from the buffer. Return the number of bytes written on success,
924 * -1 on failure. Return 0 if write() would block.
925 */
926 int
928 {
929 /* XXXX024 It's stupid to overload the return values for these functions:
930 * "error status" and "number of bytes flushed" are not mutually exclusive.
931 */
945 else
956 }
959 }
961 /** As flush_buf(), but writes data to a TLS connection. Can write more than
962 * <b>flushlen</b> bytes.
963 */
964 int
967 {
970 ssize_t sz;
976 /* we want to let tls write even if flushlen is zero, because it might
977 * have a partial record pending */
986 else
990 }
1003 }
1005 /** Append <b>string_len</b> bytes from <b>string</b> to the end of
1006 * <b>buf</b>.
1007 *
1008 * Return the new length of the buffer on success, -1 on failure.
1009 */
1010 int
1012 {
1030 }
1035 }
1037 /** Helper: copy the first <b>string_len</b> bytes from <b>buf</b>
1038 * onto <b>string</b>.
1039 */
1042 {
1046 /* make sure we don't ask for too much */
1048 /* assert_buf_ok(buf); */
1060 }
1061 }
1063 /** Remove <b>string_len</b> bytes from the front of <b>buf</b>, and store
1064 * them into <b>string</b>. Return the new buffer size. <b>string_len</b>
1065 * must be \<= the number of bytes on the buffer.
1066 */
1067 int
1069 {
1070 /* There must be string_len bytes in buf; write them onto string,
1071 * then memmove buf back (that is, remove them from buf).
1072 *
1073 * Return the number of bytes still on the buffer. */
1081 }
1083 /** True iff the cell command <b>command</b> is one that implies a
1084 * variable-length cell in Tor link protocol <b>linkproto</b>. */
1087 {
1088 /* If linkproto is v2 (2), CELL_VERSIONS is the only variable-length cells
1089 * work as implemented here. If it's 1, there are no variable-length cells.
1090 * Tor does not support other versions right now, and so can't negotiate
1091 * them.
1092 */
1095 /* Link protocol version 1 has no variable-length cells. */
1098 /* In link protocol version 2, VERSIONS is the only variable-length cell */
1103 /* In link protocol version 3 and later, and in version "unknown",
1104 * commands 128 and higher indicate variable-length. VERSIONS is
1105 * grandfathered in. */
1107 }
1108 }
1110 /** Check <b>buf</b> for a variable-length cell according to the rules of link
1111 * protocol version <b>linkproto</b>. If one is found, pull it off the buffer
1112 * and assign a newly allocated var_cell_t to *<b>out</b>, and return 1.
1113 * Return 0 if whatever is on the start of buf_t is not a variable-length
1114 * cell. Return 1 and set *<b>out</b> to NULL if there seems to be the start
1115 * of a variable-length cell on <b>buf</b>, but the whole thing isn't there
1116 * yet. */
1117 int
1119 {
1144 else
1154 }
1156 #ifdef USE_BUFFEREVENTS
1157 /** Try to read <b>n</b> bytes from <b>buf</b> at <b>pos</b> (which may be
1158 * NULL for the start of the buffer), copying the data only if necessary. Set
1159 * *<b>data_out</b> to a pointer to the desired bytes. Set <b>free_out</b>
1160 * to 1 if we needed to malloc *<b>data</b> because the original bytes were
1161 * noncontiguous; 0 otherwise. Return the number of bytes actually available
1162 * at *<b>data_out</b>.
1163 */
1164 static ssize_t
1167 {
1184 ev_ssize_t copied;
1190 }
1191 }
1193 /** As fetch_var_cell_from_buf, buf works on an evbuffer. */
1194 int
1197 {
1221 }
1227 }
1233 else
1240 done:
1244 }
1245 #endif
1247 /** Move up to *<b>buf_flushlen</b> bytes from <b>buf_in</b> to
1248 * <b>buf_out</b>, and modify *<b>buf_flushlen</b> appropriately.
1249 * Return the number of bytes actually copied.
1250 */
1251 int
1253 {
1254 /* We can do way better here, but this doesn't turn up in any profiles. */
1264 /* This isn't the most efficient implementation one could imagine, since
1265 * it does two copies instead of 1, but I kinda doubt that this will be
1266 * critical path. */
1271 }
1274 }
1276 /** Internal structure: represents a position in a buffer. */
1283 /** Initialize <b>out</b> to point to the first character of <b>buf</b>.*/
1284 static void
1286 {
1290 }
1292 /** Advance <b>out</b> to the first appearance of <b>ch</b> at the current
1293 * position of <b>out</b>, or later. Return -1 if no instances are found;
1294 * otherwise returns the absolute position of the character. */
1295 static off_t
1297 {
1306 }
1307 }
1319 }
1320 }
1322 }
1324 /** Advance <b>pos</b> by a single character, if there are any more characters
1325 * in the buffer. Returns 0 on success, -1 on failure. */
1328 {
1336 }
1338 }
1340 /** Return true iff the <b>n</b>-character string in <b>s</b> appears
1341 * (verbatim) at <b>pos</b>. */
1342 static int
1344 {
1345 buf_pos_t p;
1356 /* If we're out of characters that don't match, we match. Check this
1357 * _before_ we test incrementing pos, in case we're at the end of the
1358 * string. */
1363 }
1364 }
1366 /** Return the first position in <b>buf</b> at which the <b>n</b>-character
1367 * string <b>s</b> occurs, or -1 if it does not occur. */
1368 STATIC int
1370 {
1371 buf_pos_t pos;
1380 }
1381 }
1383 }
1385 /** There is a (possibly incomplete) http statement on <b>buf</b>, of the
1386 * form "\%s\\r\\n\\r\\n\%s", headers, body. (body may contain NULs.)
1387 * If a) the headers include a Content-Length field and all bytes in
1388 * the body are present, or b) there's no Content-Length field and
1389 * all headers are present, then:
1390 *
1391 * - strdup headers into <b>*headers_out</b>, and NUL-terminate it.
1392 * - memdup body into <b>*body_out</b>, and NUL-terminate it.
1393 * - Then remove them from <b>buf</b>, and return 1.
1394 *
1395 * - If headers or body is NULL, discard that part of the buf.
1396 * - If a headers or body doesn't fit in the arg, return -1.
1397 * (We ensure that the headers or body don't exceed max len,
1398 * _even if_ we're planning to discard them.)
1399 * - If force_complete is true, then succeed even if not all of the
1400 * content has arrived.
1401 *
1402 * Else, change nothing and return 0.
1403 */
1404 int
1409 {
1426 }
1427 /* Okay, we have a full header. Make sure it all appears in the first
1428 * chunk. */
1441 }
1446 }
1457 }
1459 /* if content-length is malformed, then our body length is 0. fine. */
1465 }
1466 }
1470 }
1471 }
1472 /* all happy. copy into the appropriate places, and return 1 */
1477 }
1484 }
1487 }
1489 #ifdef USE_BUFFEREVENTS
1490 /** As fetch_from_buf_http, buf works on an evbuffer. */
1491 int
1496 {
1500 /* Find the first \r\n\r\n in the buffer */
1503 /* We didn't find one. */
1509 }
1516 /* Look for the first occurrence of CONTENT_LENGTH insize buf before the
1517 * crlfcrlf */
1522 /* We found a content_length: parse it and figure out if the body is here
1523 * yet. */
1529 EVBUFFER_PTR_ADD);
1544 }
1546 /* if content-length is malformed, then our body length is 0. fine. */
1552 }
1553 }
1557 }
1558 }
1564 }
1572 }
1574 }
1575 #endif
1577 /**
1578 * Wait this many seconds before warning the user about using SOCKS unsafely
1579 * again (requires that WarnUnsafeSocks is turned on). */
1580 #define SOCKS_WARN_INTERVAL 5
1582 /** Warn that the user application has made an unsafe socks request using
1583 * protocol <b>socks_protocol</b> on port <b>port</b>. Don't warn more than
1584 * once per SOCKS_WARN_INTERVAL, unless <b>safe_socks</b> is set. */
1585 static void
1588 {
1596 "Your application (using socks%d to port %d) is giving "
1597 "Tor only an IP address. Applications that do DNS resolves "
1598 "themselves may leak information. Consider using Socks4A "
1599 "(e.g. via privoxy or socat) instead. For more information, "
1600 "please see https://wiki.torproject.org/TheOnionRouter/"
1602 socks_protocol,
1605 }
1609 }
1611 /** Do not attempt to parse socks messages longer than this. This value is
1612 * actually significantly higher than the longest possible socks message. */
1613 #define MAX_SOCKS_MESSAGE_LEN 512
1615 /** Return a new socks_request_t. */
1616 socks_request_t *
1618 {
1620 }
1622 /** Free all storage held in the socks_request_t <b>req</b>. */
1623 void
1625 {
1631 }
1635 }
1638 }
1640 /** There is a (possibly incomplete) socks handshake on <b>buf</b>, of one
1641 * of the forms
1642 * - socks4: "socksheader username\\0"
1643 * - socks4a: "socksheader username\\0 destaddr\\0"
1644 * - socks5 phase one: "version #methods methods"
1645 * - socks5 phase two: "version command 0 addresstype..."
1646 * If it's a complete and valid handshake, and destaddr fits in
1647 * MAX_SOCKS_ADDR_LEN bytes, then pull the handshake off the buf,
1648 * assign to <b>req</b>, and return 1.
1649 *
1650 * If it's invalid or too big, return -1.
1651 *
1652 * Else it's not all there yet, leave buf alone and return 0.
1653 *
1654 * If you want to specify the socks reply, write it into <b>req->reply</b>
1655 * and set <b>req->replylen</b>, else leave <b>req->replylen</b> alone.
1656 *
1657 * If <b>log_sockstype</b> is non-zero, then do a notice-level log of whether
1658 * the connection is possibly leaking DNS requests locally or not.
1659 *
1660 * If <b>safe_socks</b> is true, then reject unsafe socks protocols.
1661 *
1662 * If returning 0 or -1, <b>req->address</b> and <b>req->port</b> are
1663 * undefined.
1664 */
1665 int
1668 {
1670 ssize_t n_drain;
1694 }
1696 #ifdef USE_BUFFEREVENTS
1697 /* As fetch_from_buf_socks(), but targets an evbuffer instead. */
1698 int
1701 {
1703 ssize_t n_drain;
1711 {
1712 /* See if we can find the socks request in the first chunk of the buffer.
1713 */
1733 }
1735 /* Okay, the first chunk of the buffer didn't have a complete socks request.
1736 * That means that either we don't have a whole socks request at all, or
1737 * it's gotten split up. We're going to try passing parse_socks() bigger
1738 * and bigger chunks until either it says "Okay, I got it", or it says it
1739 * will need more data than we currently have. */
1741 /* Loop while we have more data that we haven't given parse_socks() yet. */
1762 /* If we drained nothing, and we didn't ask for more than last time,
1763 * then we probably wanted more data than the buffer actually had,
1764 * and we're finding out that we're not satisified with it. It's
1765 * time to break until we have more data. */
1767 }
1773 }
1774 #endif
1776 /** The size of the header of an Extended ORPort message: 2 bytes for
1777 * COMMAND, 2 bytes for BODYLEN */
1778 #define EXT_OR_CMD_HEADER_SIZE 4
1780 /** Read <b>buf</b>, which should contain an Extended ORPort message
1781 * from a transport proxy. If well-formed, create and populate
1782 * <b>out</b> with the Extended ORport message. Return 0 if the
1783 * buffer was incomplete, 1 if it was well-formed and -1 if we
1784 * encountered an error while parsing it. */
1785 int
1787 {
1804 }
1806 #ifdef USE_BUFFEREVENTS
1807 /** Read <b>buf</b>, which should contain an Extended ORPort message
1808 * from a transport proxy. If well-formed, create and populate
1809 * <b>out</b> with the Extended ORport message. Return 0 if the
1810 * buffer was incomplete, 1 if it was well-formed and -1 if we
1811 * encountered an error while parsing it. */
1812 int
1814 {
1831 }
1832 #endif
1834 /** Implementation helper to implement fetch_from_*_socks. Instead of looking
1835 * at a buffer's contents, we look at the <b>datalen</b> bytes of data in
1836 * <b>data</b>. Instead of removing data from the buffer, we set
1837 * <b>drain_out</b> to the amount of data that should be removed (or -1 if the
1838 * buffer should be cleared). Instead of pulling more data into the first
1839 * chunk of the buffer, we set *<b>want_length_out</b> to the number of bytes
1840 * we'd like to see in the input buffer, if they're available. */
1841 static int
1845 {
1848 tor_addr_t destaddr;
1856 /* We always need at least 2 bytes. */
1859 }
1862 /* See if we have received authentication. Strictly speaking, we should
1863 also check whether we actually negotiated username/password
1864 authentication. But some broken clients will send us authentication
1865 even if we negotiated SOCKS_NO_AUTH. */
1867 /* Format is: authversion [1 byte] == 1
1868 usernamelen [1 byte]
1869 username [usernamelen bytes]
1870 passlen [1 byte]
1871 password [passlen bytes] */
1876 }
1881 }
1890 }
1894 }
1900 /* unknown version byte */
1904 }
1905 }
1920 }
1930 auth method */
1936 method */
1942 "socks5: offered methods don't include 'no auth' or "
1946 }
1947 /* Remove packet from buf. Some SOCKS clients will have sent extra
1948 * junk at this point; let's hope it's an authentication message. */
1952 }
1957 }
1958 /* we know the method; read in the request */
1963 }
1968 /* not a connect or resolve or a resolve_ptr? we don't support it. */
1972 }
1982 }
1986 else
1993 "socks5 IP takes %d bytes, which doesn't fit in %d. "
1997 }
2006 }
2008 }
2015 }
2020 }
2023 "socks5 hostname is %d bytes, which doesn't fit in "
2026 }
2033 "Your application (using socks5 to port %d) gave Tor "
2037 }
2040 "Your application (using socks5 to port %d) instructed "
2041 "Tor to take care of the DNS resolution itself if "
2048 }
2053 /* http://ss5.sourceforge.net/socks4.protocol.txt */
2054 /* http://ss5.sourceforge.net/socks4A.protocol.txt */
2060 }
2061 // buf_pullup(buf, 1280, 0);
2065 /* not a connect or resolve? we don't support it. (No resolve_ptr with
2066 * socks4.) */
2070 }
2077 }
2086 }
2091 }
2100 }
2104 }
2115 }
2121 }
2128 }
2132 }
2136 }
2137 // tor_assert(next < buf->cur+buf->datalen);
2141 "Your application (using socks4a to port %d) instructed "
2142 "Tor to take care of the DNS resolution itself if "
2144 }
2150 "Your application (using socks4 to port %d) gave Tor "
2154 }
2159 }
2160 /* next points to the final \0 on inbuf */
2163 }
2178 "It appears you have configured your web browser to use Tor as an HTTP proxy."
2185 "https://www.torproject.org/documentation.html</a> for more "
2187 "<!-- Plus this comment, to make the body response more than 512 bytes, so "
2188 " IE will be willing to display it. Comment comment comment comment "
2195 /* fall through */
2200 {
2201 /* Tell the controller the first 8 bytes. */
2207 }
2209 }
2210 }
2212 /** Inspect a reply from SOCKS server stored in <b>buf</b> according
2213 * to <b>state</b>, removing the protocol data upon success. Return 0 on
2214 * incomplete response, 1 on success and -1 on error, in which case
2215 * <b>reason</b> is set to a descriptive message (free() when finished
2216 * with it).
2217 *
2218 * As a special case, 2 is returned when user/pass is required
2219 * during SOCKS5 handshake and user/pass is configured.
2220 */
2221 int
2223 {
2240 }
2242 #ifdef USE_BUFFEREVENTS
2243 /** As fetch_from_buf_socks_client, buf works on an evbuffer */
2244 int
2247 {
2253 /* Linearize the SOCKS response in the buffer, up to 128 bytes.
2254 * (parse_socks_client shouldn't need to see anything beyond that.) */
2267 }
2268 #endif
2270 /** Implementation logic for fetch_from_*_socks_client. */
2271 static int
2275 {
2283 /* Wait for the complete response */
2290 }
2292 /* Success */
2297 /* we don't have any credentials */
2302 }
2309 /* we have a username and password. return 1 if we can proceed without
2310 * providing authentication, or 2 otherwise. */
2321 /* fall through */
2322 }
2329 /* handle server reply to rfc1929 authentication */
2333 }
2340 /* response is variable length. BND.ADDR, etc, isn't needed
2341 * (don't bother with buf_pullup()), but make sure to eat all
2342 * the data used */
2344 /* wait for address type field to arrive */
2363 }
2365 /* wait for address and port */
2372 }
2376 }
2378 /* shouldn't get here... */
2382 }
2384 /** Return 1 iff buf looks more like it has an (obsolete) v0 controller
2385 * command on it than any valid v1 controller command. */
2386 int
2388 {
2396 }
2398 }
2400 #ifdef USE_BUFFEREVENTS
2401 int
2403 {
2416 }
2418 }
2419 #endif
2421 /** Return the index within <b>buf</b> at which <b>ch</b> first appears,
2422 * or -1 if <b>ch</b> does not appear on buf. */
2423 static off_t
2425 {
2432 else
2434 }
2436 }
2438 /** Try to read a single LF-terminated line from <b>buf</b>, and write it
2439 * (including the LF), NUL-terminated, into the *<b>data_len</b> byte buffer
2440 * at <b>data_out</b>. Set *<b>data_len</b> to the number of bytes in the
2441 * line, not counting the terminating NUL. Return 1 if we read a whole line,
2442 * return 0 if we don't have a whole line yet, and return -1 if the line
2443 * length exceeds *<b>data_len</b>.
2444 */
2445 int
2447 {
2449 off_t offset;
2461 }
2466 }
2468 /** Compress on uncompress the <b>data_len</b> bytes in <b>data</b> using the
2469 * zlib state <b>state</b>, appending the result to <b>buf</b>. If
2470 * <b>done</b> is true, flush the data in the state and finish the
2471 * compression/uncompression. Return -1 on failure, 0 on success. */
2472 int
2476 {
2486 }
2501 /* Zlib says we need more room (ZLIB_BUF_FULL). Start a new chunk
2502 * automatically, whether were going to or not. */
2504 }
2506 }
2511 }
2516 }
2518 #ifdef USE_BUFFEREVENTS
2519 int
2523 {
2529 {
2533 /* XXXX NM this strategy is fragmentation-prone. We should really have
2534 * two iovecs, and write first into the one, and then into the
2535 * second if the first gets full. */
2538 }
2555 /* Zlib says we need more room (ZLIB_BUF_FULL). Start a new chunk
2556 * automatically, whether were going to or not. */
2557 }
2559 }
2561 /* XXXX possible infinite loop on BUF_FULL. */
2568 }
2569 #endif
2571 /** Set *<b>output</b> to contain a copy of the data in *<b>input</b> */
2572 int
2575 {
2576 #ifdef USE_BUFFEREVENTS
2584 }
2598 }
2599 }
2600 #else
2604 #endif
2606 }
2608 /** Log an error and exit if <b>buf</b> is corrupted.
2609 */
2610 void
2612 {
2631 }
2633 }
2634 }
2636 #ifdef ENABLE_BUF_FREELISTS
2637 /** Log an error and exit if <b>fl</b> is corrupted.
2638 */
2639 static void
2641 {
2649 }
2653 }
2654 #endif