| blob | 603da1bb6e79b767de956b99df6aecd971917f12 |
1 /* Copyright (c) 2001 Matej Pfajfar.
2 * Copyright (c) 2001-2004, Roger Dingledine.
3 * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
4 * Copyright (c) 2007-2016, The Tor Project, Inc. */
5 /* See LICENSE for licensing information */
7 /**
8 * \file buffers.c
9 * \brief Implements a generic buffer interface.
10 *
11 * A buf_t is a (fairly) opaque byte-oriented FIFO that can read to or flush
12 * from memory, sockets, file descriptors, TLS connections, or another buf_t.
13 * Buffers are implemented as linked lists of memory chunks.
14 *
15 * All socket-backed and TLS-based connection_t objects have a pair of
16 * buffers: one for incoming data, and one for outcoming data. These are fed
17 * and drained from functions in connection.c, trigged by events that are
18 * monitored in main.c.
19 *
20 * This module has basic support for reading and writing on buf_t objects. It
21 * also contains specialized functions for handling particular protocols
22 * on a buf_t backend, including SOCKS (used in connection_edge.c), Tor cells
23 * (used in connection_or.c and channeltls.c), HTTP (used in directory.c), and
24 * line-oriented communication (used in control.c).
25 **/
26 #define BUFFERS_PRIVATE
38 #ifdef HAVE_UNISTD_H
39 #include <unistd.h>
40 #endif
42 //#define PARANOIA
44 #ifdef PARANOIA
45 /** Helper: If PARANOIA is defined, assert that the buffer in local variable
46 * <b>buf</b> is well-formed. */
47 #define check() STMT_BEGIN assert_buf_ok(buf); STMT_END
48 #else
49 #define check() STMT_NIL
50 #endif
52 /* Implementation notes:
53 *
54 * After flirting with memmove, and dallying with ring-buffers, we're finally
55 * getting up to speed with the 1970s and implementing buffers as a linked
56 * list of small chunks. Each buffer has such a list; data is removed from
57 * the head of the list, and added at the tail. The list is singly linked,
58 * and the buffer keeps a pointer to the head and the tail.
59 *
60 * Every chunk, except the tail, contains at least one byte of data. Data in
61 * each chunk is contiguous.
62 *
63 * When you need to treat the first N characters on a buffer as a contiguous
64 * string, use the buf_pullup function to make them so. Don't do this more
65 * than necessary.
66 *
67 * The major free Unix kernels have handled buffers like this since, like,
68 * forever.
69 */
72 socks5_reply_status_t reason);
81 /* Chunk manipulation functions */
83 #define CHUNK_HEADER_LEN STRUCT_OFFSET(chunk_t, mem[0])
85 /* We leave this many NUL bytes at the end of the buffer. */
86 #define SENTINEL_LEN 4
88 /* Header size plus NUL bytes at the end */
89 #define CHUNK_OVERHEAD (CHUNK_HEADER_LEN + SENTINEL_LEN)
91 /** Return the number of bytes needed to allocate a chunk to hold
92 * <b>memlen</b> bytes. */
93 #define CHUNK_ALLOC_SIZE(memlen) (CHUNK_OVERHEAD + (memlen))
94 /** Return the number of usable bytes in a chunk allocated with
95 * malloc(<b>memlen</b>). */
96 #define CHUNK_SIZE_WITH_ALLOC(memlen) ((memlen) - CHUNK_OVERHEAD)
98 #define DEBUG_SENTINEL
100 #ifdef DEBUG_SENTINEL
101 #define DBG_S(s) s
102 #else
103 #define DBG_S(s) (void)0
104 #endif
106 #define CHUNK_SET_SENTINEL(chunk, alloclen) do { \
107 uint8_t *a = (uint8_t*) &(chunk)->mem[(chunk)->memlen]; \
108 DBG_S(uint8_t *b = &((uint8_t*)(chunk))[(alloclen)-SENTINEL_LEN]); \
109 DBG_S(tor_assert(a == b)); \
110 memset(a,0,SENTINEL_LEN); \
111 } while (0)
113 /** Return the next character in <b>chunk</b> onto which data can be appended.
114 * If the chunk is full, this might be off the end of chunk->mem. */
117 {
119 }
121 /** Return the number of bytes that can be written onto <b>chunk</b> without
122 * running out of space. */
125 {
127 }
129 /** Move all bytes stored in <b>chunk</b> to the front of <b>chunk</b>->mem,
130 * to free up space at the end. */
133 {
136 }
138 }
140 /** Keep track of total size of allocated chunks for consistency asserts */
142 static void
144 {
147 #ifdef DEBUG_CHUNK_ALLOC
149 #endif
154 }
157 {
162 #ifdef DEBUG_CHUNK_ALLOC
164 #endif
170 }
172 /** Expand <b>chunk</b> until it can hold <b>sz</b> bytes, and return a
173 * new pointer to <b>chunk</b>. Old pointers are no longer valid. */
176 {
177 off_t offset;
186 #ifdef DEBUG_CHUNK_ALLOC
189 #endif
193 }
195 /** If a read onto the end of a chunk would be smaller than this number, then
196 * just start a new chunk. */
197 #define MIN_READ_LEN 8
198 /** Every chunk should take up at least this many bytes. */
199 #define MIN_CHUNK_ALLOC 256
200 /** No chunk should take up more than this many bytes. */
201 #define MAX_CHUNK_ALLOC 65536
203 /** Return the allocation size we'd like to use to hold <b>target</b>
204 * bytes. */
205 STATIC size_t
207 {
214 }
216 }
218 /** Collapse data from the first N chunks from <b>buf</b> into buf->head,
219 * growing it as necessary, until buf->head has the first <b>bytes</b> bytes
220 * of data from the buffer, or until buf->head has all the data in <b>buf</b>.
221 */
222 STATIC void
224 {
239 /* We don't need to grow the first chunk, but we might need to repack it.*/
247 /* We need to grow the chunk. */
256 }
257 }
277 }
278 }
281 }
283 #ifdef TOR_UNIT_TESTS
284 /* Return the data from the first chunk of buf in cp, and its length in sz. */
285 void
287 {
294 }
295 }
297 /* Write sz bytes from cp into a newly allocated buffer buf.
298 * Returns NULL when passed a NULL cp or zero sz.
299 * Asserts on failure: only for use in unit tests.
300 * buf must be freed using buf_free(). */
301 buf_t *
303 {
304 /* Validate arguments */
307 }
311 /* Allocate a buffer */
317 /* Allocate a chunk that is sz bytes long */
324 /* Copy the data and size the buffers */
333 /* Make sure everything is large enough */
336 /* Does the buffer implementation allocate more than the requested size?
337 * (for example, by rounding up). If so, these checks will fail. */
342 }
343 #endif
345 /** Remove the first <b>n</b> bytes from buf. */
348 {
365 }
366 }
368 }
370 /** Create and return a new buf with default chunk capacity <b>size</b>.
371 */
372 buf_t *
374 {
378 }
380 /** Allocate and return a new buffer with default capacity. */
381 buf_t *
383 {
388 }
390 size_t
392 {
394 }
396 /** Remove all data from <b>buf</b>. */
397 void
399 {
405 }
407 }
409 /** Return the number of bytes stored in <b>buf</b> */
412 {
414 }
416 /** Return the total length of all chunks used in <b>buf</b>. */
417 size_t
419 {
424 }
426 }
428 /** Return the number of bytes that can be added to <b>buf</b> without
429 * performing any additional allocation. */
430 size_t
432 {
435 else
437 }
439 /** Release storage held by <b>buf</b>. */
440 void
442 {
449 }
451 /** Return a new copy of <b>in_chunk</b> */
454 {
457 #ifdef DEBUG_CHUNK_ALLOC
459 #endif
464 }
466 }
468 /** Return a new copy of <b>buf</b> */
469 buf_t *
471 {
482 }
483 }
486 }
488 /** Append a new chunk with enough capacity to hold <b>capacity</b> bytes to
489 * the tail of <b>buf</b>. If <b>capped</b>, don't allocate a chunk bigger
490 * than MAX_CHUNK_ALLOC. */
493 {
502 }
513 }
516 }
518 /** Return the age of the oldest chunk in the buffer <b>buf</b>, in
519 * milliseconds. Requires the current monotonic time, in truncated msec,
520 * as its input <b>now</b>.
521 */
522 uint32_t
524 {
529 }
530 }
532 size_t
534 {
536 }
538 /** Read up to <b>at_most</b> bytes from the socket <b>fd</b> into
539 * <b>chunk</b> (which must be on <b>buf</b>). If we get an EOF, set
540 * *<b>reached_eof</b> to 1. Return -1 on error, 0 on eof or blocking,
541 * and the number of bytes read otherwise. */
545 {
546 ssize_t read_result;
554 #ifdef _WIN32
557 #endif
560 }
573 }
574 }
576 /** As read_to_chunk(), but return (negative) error code on error, blocking,
577 * or TLS, and the number of bytes read otherwise. */
581 {
591 }
593 /** Read from socket <b>s</b>, writing onto end of <b>buf</b>. Read at most
594 * <b>at_most</b> bytes, growing the buffer as necessary. If recv() returns 0
595 * (because of EOF), set *<b>reached_eof</b> to 1 and return 0. Return -1 on
596 * error; else return the number of bytes read.
597 */
598 /* XXXX indicate "read blocked" somehow? */
599 int
602 {
603 /* XXXX It's stupid to overload the return values for these functions:
604 * "error status" and "number of bytes read" are not mutually exclusive.
605 */
630 }
640 }
641 }
643 }
645 /** As read_to_buf, but reads from a TLS connection, and returns a TLS
646 * status value rather than the number of bytes read.
647 *
648 * Using TLS on OR connections complicates matters in two ways.
649 *
650 * First, a TLS stream has its own read buffer independent of the
651 * connection's read buffer. (TLS needs to read an entire frame from
652 * the network before it can decrypt any data. Thus, trying to read 1
653 * byte from TLS can require that several KB be read from the network
654 * and decrypted. The extra data is stored in TLS's decrypt buffer.)
655 * Because the data hasn't been read by Tor (it's still inside the TLS),
656 * this means that sometimes a connection "has stuff to read" even when
657 * poll() didn't return POLLIN. The tor_tls_get_pending_bytes function is
658 * used in connection.c to detect TLS objects with non-empty internal
659 * buffers and read from them again.
660 *
661 * Second, the TLS stream's events do not correspond directly to network
662 * events: sometimes, before a TLS stream can read, the network must be
663 * ready to write -- or vice versa.
664 */
665 int
667 {
692 }
702 }
704 }
706 /** Helper for flush_buf(): try to write <b>sz</b> bytes from chunk
707 * <b>chunk</b> of buffer <b>buf</b> onto socket <b>s</b>. On success, deduct
708 * the bytes written from *<b>buf_flushlen</b>. Return the number of bytes
709 * written on success, 0 on blocking, -1 on failure.
710 */
714 {
715 ssize_t write_result;
724 #ifdef _WIN32
727 #endif
729 }
737 }
738 }
740 /** Helper for flush_buf_tls(): try to write <b>sz</b> bytes from chunk
741 * <b>chunk</b> of buffer <b>buf</b> onto socket <b>s</b>. (Tries to write
742 * more if there is a forced pending write size.) On success, deduct the
743 * bytes written from *<b>buf_flushlen</b>. Return the number of bytes
744 * written on success, and a TOR_TLS error code on failure or blocking.
745 */
749 {
763 }
769 else
775 }
777 /** Write data from <b>buf</b> to the socket <b>s</b>. Write at most
778 * <b>sz</b> bytes, decrement *<b>buf_flushlen</b> by
779 * the number of bytes actually written, and remove the written bytes
780 * from the buffer. Return the number of bytes written on success,
781 * -1 on failure. Return 0 if write() would block.
782 */
783 int
785 {
786 /* XXXX It's stupid to overload the return values for these functions:
787 * "error status" and "number of bytes flushed" are not mutually exclusive.
788 */
802 else
813 }
816 }
818 /** As flush_buf(), but writes data to a TLS connection. Can write more than
819 * <b>flushlen</b> bytes.
820 */
821 int
824 {
827 ssize_t sz;
833 /* we want to let tls write even if flushlen is zero, because it might
834 * have a partial record pending */
843 else
847 }
860 }
862 /** Append <b>string_len</b> bytes from <b>string</b> to the end of
863 * <b>buf</b>.
864 *
865 * Return the new length of the buffer on success, -1 on failure.
866 */
867 int
869 {
892 }
897 }
899 /** Helper: copy the first <b>string_len</b> bytes from <b>buf</b>
900 * onto <b>string</b>.
901 */
904 {
908 /* make sure we don't ask for too much */
910 /* assert_buf_ok(buf); */
922 }
923 }
925 /** Remove <b>string_len</b> bytes from the front of <b>buf</b>, and store
926 * them into <b>string</b>. Return the new buffer size. <b>string_len</b>
927 * must be \<= the number of bytes on the buffer.
928 */
929 int
931 {
932 /* There must be string_len bytes in buf; write them onto string,
933 * then memmove buf back (that is, remove them from buf).
934 *
935 * Return the number of bytes still on the buffer. */
943 }
945 /** True iff the cell command <b>command</b> is one that implies a
946 * variable-length cell in Tor link protocol <b>linkproto</b>. */
949 {
950 /* If linkproto is v2 (2), CELL_VERSIONS is the only variable-length cells
951 * work as implemented here. If it's 1, there are no variable-length cells.
952 * Tor does not support other versions right now, and so can't negotiate
953 * them.
954 */
957 /* Link protocol version 1 has no variable-length cells. */
960 /* In link protocol version 2, VERSIONS is the only variable-length cell */
965 /* In link protocol version 3 and later, and in version "unknown",
966 * commands 128 and higher indicate variable-length. VERSIONS is
967 * grandfathered in. */
969 }
970 }
972 /** Check <b>buf</b> for a variable-length cell according to the rules of link
973 * protocol version <b>linkproto</b>. If one is found, pull it off the buffer
974 * and assign a newly allocated var_cell_t to *<b>out</b>, and return 1.
975 * Return 0 if whatever is on the start of buf_t is not a variable-length
976 * cell. Return 1 and set *<b>out</b> to NULL if there seems to be the start
977 * of a variable-length cell on <b>buf</b>, but the whole thing isn't there
978 * yet. */
979 int
981 {
1006 else
1016 }
1018 /** Move up to *<b>buf_flushlen</b> bytes from <b>buf_in</b> to
1019 * <b>buf_out</b>, and modify *<b>buf_flushlen</b> appropriately.
1020 * Return the number of bytes actually copied.
1021 */
1022 int
1024 {
1025 /* We can do way better here, but this doesn't turn up in any profiles. */
1041 /* This isn't the most efficient implementation one could imagine, since
1042 * it does two copies instead of 1, but I kinda doubt that this will be
1043 * critical path. */
1048 }
1051 }
1053 /** Internal structure: represents a position in a buffer. */
1060 /** Initialize <b>out</b> to point to the first character of <b>buf</b>.*/
1061 static void
1063 {
1067 }
1069 /** Advance <b>out</b> to the first appearance of <b>ch</b> at the current
1070 * position of <b>out</b>, or later. Return -1 if no instances are found;
1071 * otherwise returns the absolute position of the character. */
1072 static off_t
1074 {
1083 }
1084 }
1096 }
1097 }
1099 }
1101 /** Advance <b>pos</b> by a single character, if there are any more characters
1102 * in the buffer. Returns 0 on success, -1 on failure. */
1105 {
1113 }
1115 }
1117 /** Return true iff the <b>n</b>-character string in <b>s</b> appears
1118 * (verbatim) at <b>pos</b>. */
1119 static int
1121 {
1122 buf_pos_t p;
1133 /* If we're out of characters that don't match, we match. Check this
1134 * _before_ we test incrementing pos, in case we're at the end of the
1135 * string. */
1140 }
1141 }
1143 /** Return the first position in <b>buf</b> at which the <b>n</b>-character
1144 * string <b>s</b> occurs, or -1 if it does not occur. */
1145 STATIC int
1147 {
1148 buf_pos_t pos;
1157 }
1158 }
1160 }
1162 /**
1163 * Scan the HTTP headers in the <b>headerlen</b>-byte memory range at
1164 * <b>headers</b>, looking for a "Content-Length" header. Try to set
1165 * *<b>result_out</b> to the numeric value of that header if possible.
1166 * Return -1 if the header was malformed, 0 if it was missing, and 1 if
1167 * it was present and well-formed.
1168 */
1169 STATIC int
1172 {
1178 * return value is 1, but let's prevent confusion */
1195 /* We limit the size to INT_MAX because other parts of the buffer.c
1196 * code don't like buffers to be any bigger than that. */
1202 }
1206 }
1208 /** There is a (possibly incomplete) http statement on <b>buf</b>, of the
1209 * form "\%s\\r\\n\\r\\n\%s", headers, body. (body may contain NULs.)
1210 * If a) the headers include a Content-Length field and all bytes in
1211 * the body are present, or b) there's no Content-Length field and
1212 * all headers are present, then:
1213 *
1214 * - strdup headers into <b>*headers_out</b>, and NUL-terminate it.
1215 * - memdup body into <b>*body_out</b>, and NUL-terminate it.
1216 * - Then remove them from <b>buf</b>, and return 1.
1217 *
1218 * - If headers or body is NULL, discard that part of the buf.
1219 * - If a headers or body doesn't fit in the arg, return -1.
1220 * (We ensure that the headers or body don't exceed max len,
1221 * _even if_ we're planning to discard them.)
1222 * - If force_complete is true, then succeed even if not all of the
1223 * content has arrived.
1224 *
1225 * Else, change nothing and return 0.
1226 */
1227 int
1232 {
1250 }
1251 /* Okay, we have a full header. Make sure it all appears in the first
1252 * chunk. */
1265 }
1270 }
1278 /* if content-length is malformed, then our body length is 0. fine. */
1284 }
1285 }
1289 }
1292 /* Leave bodylen alone */
1293 }
1295 /* all happy. copy into the appropriate places, and return 1 */
1300 }
1307 }
1310 }
1312 /**
1313 * Wait this many seconds before warning the user about using SOCKS unsafely
1314 * again (requires that WarnUnsafeSocks is turned on). */
1315 #define SOCKS_WARN_INTERVAL 5
1317 /** Warn that the user application has made an unsafe socks request using
1318 * protocol <b>socks_protocol</b> on port <b>port</b>. Don't warn more than
1319 * once per SOCKS_WARN_INTERVAL, unless <b>safe_socks</b> is set. */
1320 static void
1323 {
1331 "Your application (using socks%d to port %d) is giving "
1332 "Tor only an IP address. Applications that do DNS resolves "
1333 "themselves may leak information. Consider using Socks4A "
1334 "(e.g. via privoxy or socat) instead. For more information, "
1335 "please see https://wiki.torproject.org/TheOnionRouter/"
1337 socks_protocol,
1340 }
1344 }
1346 /** Do not attempt to parse socks messages longer than this. This value is
1347 * actually significantly higher than the longest possible socks message. */
1348 #define MAX_SOCKS_MESSAGE_LEN 512
1350 /** Return a new socks_request_t. */
1351 socks_request_t *
1353 {
1355 }
1357 /** Free all storage held in the socks_request_t <b>req</b>. */
1358 void
1360 {
1366 }
1370 }
1373 }
1375 /** There is a (possibly incomplete) socks handshake on <b>buf</b>, of one
1376 * of the forms
1377 * - socks4: "socksheader username\\0"
1378 * - socks4a: "socksheader username\\0 destaddr\\0"
1379 * - socks5 phase one: "version #methods methods"
1380 * - socks5 phase two: "version command 0 addresstype..."
1381 * If it's a complete and valid handshake, and destaddr fits in
1382 * MAX_SOCKS_ADDR_LEN bytes, then pull the handshake off the buf,
1383 * assign to <b>req</b>, and return 1.
1384 *
1385 * If it's invalid or too big, return -1.
1386 *
1387 * Else it's not all there yet, leave buf alone and return 0.
1388 *
1389 * If you want to specify the socks reply, write it into <b>req->reply</b>
1390 * and set <b>req->replylen</b>, else leave <b>req->replylen</b> alone.
1391 *
1392 * If <b>log_sockstype</b> is non-zero, then do a notice-level log of whether
1393 * the connection is possibly leaking DNS requests locally or not.
1394 *
1395 * If <b>safe_socks</b> is true, then reject unsafe socks protocols.
1396 *
1397 * If returning 0 or -1, <b>req->address</b> and <b>req->port</b> are
1398 * undefined.
1399 */
1400 int
1403 {
1405 ssize_t n_drain;
1429 }
1431 /** The size of the header of an Extended ORPort message: 2 bytes for
1432 * COMMAND, 2 bytes for BODYLEN */
1433 #define EXT_OR_CMD_HEADER_SIZE 4
1435 /** Read <b>buf</b>, which should contain an Extended ORPort message
1436 * from a transport proxy. If well-formed, create and populate
1437 * <b>out</b> with the Extended ORport message. Return 0 if the
1438 * buffer was incomplete, 1 if it was well-formed and -1 if we
1439 * encountered an error while parsing it. */
1440 int
1442 {
1459 }
1461 /** Create a SOCKS5 reply message with <b>reason</b> in its REP field and
1462 * have Tor send it as error response to <b>req</b>.
1463 */
1464 static void
1466 socks5_reply_status_t reason)
1467 {
1474 }
1476 /** Implementation helper to implement fetch_from_*_socks. Instead of looking
1477 * at a buffer's contents, we look at the <b>datalen</b> bytes of data in
1478 * <b>data</b>. Instead of removing data from the buffer, we set
1479 * <b>drain_out</b> to the amount of data that should be removed (or -1 if the
1480 * buffer should be cleared). Instead of pulling more data into the first
1481 * chunk of the buffer, we set *<b>want_length_out</b> to the number of bytes
1482 * we'd like to see in the input buffer, if they're available. */
1483 static int
1487 {
1490 tor_addr_t destaddr;
1498 /* We always need at least 2 bytes. */
1501 }
1504 /* See if we have received authentication. Strictly speaking, we should
1505 also check whether we actually negotiated username/password
1506 authentication. But some broken clients will send us authentication
1507 even if we negotiated SOCKS_NO_AUTH. */
1509 /* Format is: authversion [1 byte] == 1
1510 usernamelen [1 byte]
1511 username [usernamelen bytes]
1512 passlen [1 byte]
1513 password [passlen bytes] */
1518 }
1523 }
1532 }
1536 }
1542 /* unknown version byte */
1546 }
1547 }
1562 }
1572 auth method */
1578 method */
1584 "socks5: offered methods don't include 'no auth' or "
1588 }
1589 /* Remove packet from buf. Some SOCKS clients will have sent extra
1590 * junk at this point; let's hope it's an authentication message. */
1594 }
1599 }
1600 /* we know the method; read in the request */
1605 }
1610 /* not a connect or resolve or a resolve_ptr? we don't support it. */
1616 }
1626 }
1630 else
1638 "socks5 IP takes %d bytes, which doesn't fit in %d. "
1642 }
1652 }
1653 }
1655 }
1660 SOCKS5_ADDRESS_TYPE_NOT_SUPPORTED);
1664 }
1669 }
1673 "socks5 hostname is %d bytes, which doesn't fit in "
1676 }
1689 }
1694 "Your application (using socks5 to port %d) gave Tor "
1698 }
1701 "Your application (using socks5 to port %d) instructed "
1702 "Tor to take care of the DNS resolution itself if "
1707 SOCKS5_ADDRESS_TYPE_NOT_SUPPORTED);
1711 }
1716 /* http://ss5.sourceforge.net/socks4.protocol.txt */
1717 /* http://ss5.sourceforge.net/socks4A.protocol.txt */
1723 }
1724 // buf_pullup(buf, 1280);
1728 /* not a connect or resolve? we don't support it. (No resolve_ptr with
1729 * socks4.) */
1733 }
1740 }
1749 }
1754 }
1763 }
1767 }
1778 }
1784 }
1791 }
1795 }
1799 }
1800 // tor_assert(next < buf->cur+buf->datalen);
1804 "Your application (using socks4a to port %d) instructed "
1805 "Tor to take care of the DNS resolution itself if "
1807 }
1813 "Your application (using socks4 to port %d) gave Tor "
1817 }
1822 }
1823 /* next points to the final \0 on inbuf */
1826 }
1841 "It appears you have configured your web browser to use Tor as an HTTP proxy."
1848 "https://www.torproject.org/documentation.html</a> for more "
1850 "<!-- Plus this comment, to make the body response more than 512 bytes, so "
1851 " IE will be willing to display it. Comment comment comment comment "
1858 /* fall through */
1863 {
1864 /* Tell the controller the first 8 bytes. */
1870 }
1872 }
1873 }
1875 /** Inspect a reply from SOCKS server stored in <b>buf</b> according
1876 * to <b>state</b>, removing the protocol data upon success. Return 0 on
1877 * incomplete response, 1 on success and -1 on error, in which case
1878 * <b>reason</b> is set to a descriptive message (free() when finished
1879 * with it).
1880 *
1881 * As a special case, 2 is returned when user/pass is required
1882 * during SOCKS5 handshake and user/pass is configured.
1883 */
1884 int
1886 {
1903 }
1905 /** Implementation logic for fetch_from_*_socks_client. */
1906 static int
1910 {
1918 /* Wait for the complete response */
1925 }
1927 /* Success */
1932 /* we don't have any credentials */
1937 }
1944 /* we have a username and password. return 1 if we can proceed without
1945 * providing authentication, or 2 otherwise. */
1956 /* fall through */
1957 }
1964 /* handle server reply to rfc1929 authentication */
1968 }
1975 /* response is variable length. BND.ADDR, etc, isn't needed
1976 * (don't bother with buf_pullup()), but make sure to eat all
1977 * the data used */
1979 /* wait for address type field to arrive */
1998 }
2000 /* wait for address and port */
2007 }
2011 }
2013 /* shouldn't get here... */
2017 }
2019 /** Return 1 iff buf looks more like it has an (obsolete) v0 controller
2020 * command on it than any valid v1 controller command. */
2021 int
2023 {
2031 }
2033 }
2035 /** Return the index within <b>buf</b> at which <b>ch</b> first appears,
2036 * or -1 if <b>ch</b> does not appear on buf. */
2037 static off_t
2039 {
2046 else
2048 }
2050 }
2052 /** Try to read a single LF-terminated line from <b>buf</b>, and write it
2053 * (including the LF), NUL-terminated, into the *<b>data_len</b> byte buffer
2054 * at <b>data_out</b>. Set *<b>data_len</b> to the number of bytes in the
2055 * line, not counting the terminating NUL. Return 1 if we read a whole line,
2056 * return 0 if we don't have a whole line yet, and return -1 if the line
2057 * length exceeds *<b>data_len</b>.
2058 */
2059 int
2061 {
2063 off_t offset;
2075 }
2080 }
2082 /** Compress on uncompress the <b>data_len</b> bytes in <b>data</b> using the
2083 * zlib state <b>state</b>, appending the result to <b>buf</b>. If
2084 * <b>done</b> is true, flush the data in the state and finish the
2085 * compression/uncompression. Return -1 on failure, 0 on success. */
2086 int
2090 {
2100 }
2115 /* Zlib says we need more room (ZLIB_BUF_FULL). Start a new chunk
2116 * automatically, whether were going to or not. */
2118 }
2120 }
2125 }
2130 }
2132 /** Set *<b>output</b> to contain a copy of the data in *<b>input</b> */
2133 int
2136 {
2141 }
2143 /** Log an error and exit if <b>buf</b> is corrupted.
2144 */
2145 void
2147 {
2168 }
2169 }
2173 }
2175 }
2176 }