search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
add another heuristic for changes stanzas
[tor.git] / src / or / command.c
blob00d9af33fac5dea7ce2759f2dd047843990d4979
1 /* Copyright (c) 2001 Matej Pfajfar.
2 * Copyright (c) 2001-2004, Roger Dingledine.
3 * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
4 * Copyright (c) 2007-2011, The Tor Project, Inc. */
5 /* See LICENSE for licensing information */
6
7 /**
8 * \file command.c
9 * \brief Functions for processing incoming cells.
10 **/
11
12 /* In-points to command.c:
13 *
14 * - command_process_cell(), called from
15 * connection_or_process_cells_from_inbuf() in connection_or.c
16 */
17
18 #include "or.h"
19 #include "circuitbuild.h"
20 #include "circuitlist.h"
21 #include "command.h"
22 #include "connection.h"
23 #include "connection_or.h"
24 #include "config.h"
25 #include "control.h"
26 #include "cpuworker.h"
27 #include "hibernate.h"
28 #include "onion.h"
29 #include "relay.h"
30 #include "router.h"
31 #include "routerlist.h"
32
33 /** How many CELL_PADDING cells have we received, ever? */
34 uint64_t stats_n_padding_cells_processed = 0;
35 /** How many CELL_CREATE cells have we received, ever? */
36 uint64_t stats_n_create_cells_processed = 0;
37 /** How many CELL_CREATED cells have we received, ever? */
38 uint64_t stats_n_created_cells_processed = 0;
39 /** How many CELL_RELAY cells have we received, ever? */
40 uint64_t stats_n_relay_cells_processed = 0;
41 /** How many CELL_DESTROY cells have we received, ever? */
42 uint64_t stats_n_destroy_cells_processed = 0;
43 /** How many CELL_VERSIONS cells have we received, ever? */
44 uint64_t stats_n_versions_cells_processed = 0;
45 /** How many CELL_NETINFO cells have we received, ever? */
46 uint64_t stats_n_netinfo_cells_processed = 0;
47
48 /* These are the main functions for processing cells */
49 static void command_process_create_cell(cell_t *cell, or_connection_t *conn);
50 static void command_process_created_cell(cell_t *cell, or_connection_t *conn);
51 static void command_process_relay_cell(cell_t *cell, or_connection_t *conn);
52 static void command_process_destroy_cell(cell_t *cell, or_connection_t *conn);
53 static void command_process_versions_cell(var_cell_t *cell,
54 or_connection_t *conn);
55 static void command_process_netinfo_cell(cell_t *cell, or_connection_t *conn);
56
57 #ifdef KEEP_TIMING_STATS
58 /** This is a wrapper function around the actual function that processes the
59 * <b>cell</b> that just arrived on <b>conn</b>. Increment <b>*time</b>
60 * by the number of microseconds used by the call to <b>*func(cell, conn)</b>.
61 */
62 static void
63 command_time_process_cell(cell_t *cell, or_connection_t *conn, int *time,
64 void (*func)(cell_t *, or_connection_t *))
65 {
66 struct timeval start, end;
67 long time_passed;
68
69 tor_gettimeofday(&start);
70
71 (*func)(cell, conn);
72
73 tor_gettimeofday(&end);
74 time_passed = tv_udiff(&start, &end) ;
75
76 if (time_passed > 10000) { /* more than 10ms */
77 log_debug(LD_OR,"That call just took %ld ms.",time_passed/1000);
78 }
79 if (time_passed < 0) {
80 log_info(LD_GENERAL,"That call took us back in time!");
81 time_passed = 0;
82 }
83 *time += time_passed;
84 }
85 #endif
86
87 /** Process a <b>cell</b> that was just received on <b>conn</b>. Keep internal
88 * statistics about how many of each cell we've processed so far
89 * this second, and the total number of microseconds it took to
90 * process each type of cell.
91 */
92 void
93 command_process_cell(cell_t *cell, or_connection_t *conn)
94 {
95 int handshaking = (conn->_base.state == OR_CONN_STATE_OR_HANDSHAKING);
96 #ifdef KEEP_TIMING_STATS
97 /* how many of each cell have we seen so far this second? needs better
98 * name. */
99 static int num_create=0, num_created=0, num_relay=0, num_destroy=0;
100 /* how long has it taken to process each type of cell? */
101 static int create_time=0, created_time=0, relay_time=0, destroy_time=0;
102 static time_t current_second = 0; /* from previous calls to time */
103
104 time_t now = time(NULL);
105
106 if (now > current_second) { /* the second has rolled over */
107 /* print stats */
108 log_info(LD_OR,
109 "At end of second: %d creates (%d ms), %d createds (%d ms), "
110 "%d relays (%d ms), %d destroys (%d ms)",
111 num_create, create_time/1000,
112 num_created, created_time/1000,
113 num_relay, relay_time/1000,
114 num_destroy, destroy_time/1000);
115
116 /* zero out stats */
117 num_create = num_created = num_relay = num_destroy = 0;
118 create_time = created_time = relay_time = destroy_time = 0;
119
120 /* remember which second it is, for next time */
121 current_second = now;
122 }
123 #endif
124
125 #ifdef KEEP_TIMING_STATS
126 #define PROCESS_CELL(tp, cl, cn) STMT_BEGIN { \
127 ++num ## tp; \
128 command_time_process_cell(cl, cn, & tp ## time , \
129 command_process_ ## tp ## _cell); \
130 } STMT_END
131 #else
132 #define PROCESS_CELL(tp, cl, cn) command_process_ ## tp ## _cell(cl, cn)
133 #endif
134
135 /* Reject all but VERSIONS and NETINFO when handshaking. */
136 if (handshaking && cell->command != CELL_VERSIONS &&
137 cell->command != CELL_NETINFO)
138 return;
139
140 switch (cell->command) {
141 case CELL_PADDING:
142 ++stats_n_padding_cells_processed;
143 /* do nothing */
144 break;
145 case CELL_CREATE:
146 case CELL_CREATE_FAST:
147 ++stats_n_create_cells_processed;
148 PROCESS_CELL(create, cell, conn);
149 break;
150 case CELL_CREATED:
151 case CELL_CREATED_FAST:
152 ++stats_n_created_cells_processed;
153 PROCESS_CELL(created, cell, conn);
154 break;
155 case CELL_RELAY:
156 case CELL_RELAY_EARLY:
157 ++stats_n_relay_cells_processed;
158 PROCESS_CELL(relay, cell, conn);
159 break;
160 case CELL_DESTROY:
161 ++stats_n_destroy_cells_processed;
162 PROCESS_CELL(destroy, cell, conn);
163 break;
164 case CELL_VERSIONS:
165 tor_fragile_assert();
166 break;
167 case CELL_NETINFO:
168 ++stats_n_netinfo_cells_processed;
169 PROCESS_CELL(netinfo, cell, conn);
170 break;
171 default:
172 log_fn(LOG_INFO, LD_PROTOCOL,
173 "Cell of unknown type (%d) received. Dropping.", cell->command);
174 break;
175 }
176 }
177
178 /** Process a <b>cell</b> that was just received on <b>conn</b>. Keep internal
179 * statistics about how many of each cell we've processed so far
180 * this second, and the total number of microseconds it took to
181 * process each type of cell.
182 */
183 void
184 command_process_var_cell(var_cell_t *cell, or_connection_t *conn)
185 {
186 #ifdef KEEP_TIMING_STATS
187 /* how many of each cell have we seen so far this second? needs better
188 * name. */
189 static int num_versions=0, num_cert=0;
190
191 time_t now = time(NULL);
192
193 if (now > current_second) { /* the second has rolled over */
194 /* print stats */
195 log_info(LD_OR,
196 "At end of second: %d versions (%d ms), %d cert (%d ms)",
197 num_versions, versions_time/1000,
198 cert, cert_time/1000);
199
200 num_versions = num_cert = 0;
201 versions_time = cert_time = 0;
202
203 /* remember which second it is, for next time */
204 current_second = now;
205 }
206 #endif
207
208 /* reject all when not handshaking. */
209 if (conn->_base.state != OR_CONN_STATE_OR_HANDSHAKING)
210 return;
211
212 switch (cell->command) {
213 case CELL_VERSIONS:
214 ++stats_n_versions_cells_processed;
215 PROCESS_CELL(versions, cell, conn);
216 break;
217 default:
218 log_warn(LD_BUG,
219 "Variable-length cell of unknown type (%d) received.",
220 cell->command);
221 tor_fragile_assert();
222 break;
223 }
224 }
225
226 /** Process a 'create' <b>cell</b> that just arrived from <b>conn</b>. Make a
227 * new circuit with the p_circ_id specified in cell. Put the circuit in state
228 * onionskin_pending, and pass the onionskin to the cpuworker. Circ will get
229 * picked up again when the cpuworker finishes decrypting it.
230 */
231 static void
232 command_process_create_cell(cell_t *cell, or_connection_t *conn)
233 {
234 or_circuit_t *circ;
235 int id_is_high;
236
237 if (we_are_hibernating()) {
238 log_info(LD_OR,
239 "Received create cell but we're shutting down. Sending back "
240 "destroy.");
241 connection_or_send_destroy(cell->circ_id, conn,
242 END_CIRC_REASON_HIBERNATING);
243 return;
244 }
245
246 if (!server_mode(get_options())) {
247 log_fn(LOG_PROTOCOL_WARN, LD_PROTOCOL,
248 "Received create cell (type %d) from %s:%d, but we're a client. "
249 "Sending back a destroy.",
250 (int)cell->command, conn->_base.address, conn->_base.port);
251 connection_or_send_destroy(cell->circ_id, conn,
252 END_CIRC_REASON_TORPROTOCOL);
253 return;
254 }
255
256 /* If the high bit of the circuit ID is not as expected, close the
257 * circ. */
258 id_is_high = cell->circ_id & (1<<15);
259 if ((id_is_high && conn->circ_id_type == CIRC_ID_TYPE_HIGHER) ||
260 (!id_is_high && conn->circ_id_type == CIRC_ID_TYPE_LOWER)) {
261 log_fn(LOG_PROTOCOL_WARN, LD_PROTOCOL,
262 "Received create cell with unexpected circ_id %d. Closing.",
263 cell->circ_id);
264 connection_or_send_destroy(cell->circ_id, conn,
265 END_CIRC_REASON_TORPROTOCOL);
266 return;
267 }
268
269 if (circuit_id_in_use_on_orconn(cell->circ_id, conn)) {
270 routerinfo_t *router = router_get_by_digest(conn->identity_digest);
271 log_fn(LOG_PROTOCOL_WARN, LD_PROTOCOL,
272 "Received CREATE cell (circID %d) for known circ. "
273 "Dropping (age %d).",
274 cell->circ_id, (int)(time(NULL) - conn->_base.timestamp_created));
275 if (router)
276 log_fn(LOG_PROTOCOL_WARN, LD_PROTOCOL,
277 "Details: nickname \"%s\", platform %s.",
278 router->nickname, escaped(router->platform));
279 return;
280 }
281
282 circ = or_circuit_new(cell->circ_id, conn);
283 circ->_base.purpose = CIRCUIT_PURPOSE_OR;
284 circuit_set_state(TO_CIRCUIT(circ), CIRCUIT_STATE_ONIONSKIN_PENDING);
285 if (cell->command == CELL_CREATE) {
286 char *onionskin = tor_malloc(ONIONSKIN_CHALLENGE_LEN);
287 memcpy(onionskin, cell->payload, ONIONSKIN_CHALLENGE_LEN);
288
289 /* hand it off to the cpuworkers, and then return. */
290 if (assign_onionskin_to_cpuworker(NULL, circ, onionskin) < 0) {
291 #define WARN_HANDOFF_FAILURE_INTERVAL (6*60*60)
292 static ratelim_t handoff_warning =
293 RATELIM_INIT(WARN_HANDOFF_FAILURE_INTERVAL);
294 char *m;
295 if ((m = rate_limit_log(&handoff_warning, approx_time()))) {
296 log_warn(LD_GENERAL,"Failed to hand off onionskin. Closing.%s",m);
297 tor_free(m);
298 }
299 circuit_mark_for_close(TO_CIRCUIT(circ), END_CIRC_REASON_INTERNAL);
300 return;
301 }
302 log_debug(LD_OR,"success: handed off onionskin.");
303 } else {
304 /* This is a CREATE_FAST cell; we can handle it immediately without using
305 * a CPU worker. */
306 char keys[CPATH_KEY_MATERIAL_LEN];
307 char reply[DIGEST_LEN*2];
308 tor_assert(cell->command == CELL_CREATE_FAST);
309 if (fast_server_handshake(cell->payload, (uint8_t*)reply,
310 (uint8_t*)keys, sizeof(keys))<0) {
311 log_warn(LD_OR,"Failed to generate key material. Closing.");
312 circuit_mark_for_close(TO_CIRCUIT(circ), END_CIRC_REASON_INTERNAL);
313 return;
314 }
315 if (onionskin_answer(circ, CELL_CREATED_FAST, reply, keys)<0) {
316 log_warn(LD_OR,"Failed to reply to CREATE_FAST cell. Closing.");
317 circuit_mark_for_close(TO_CIRCUIT(circ), END_CIRC_REASON_INTERNAL);
318 return;
319 }
320 }
321 }
322
323 /** Process a 'created' <b>cell</b> that just arrived from <b>conn</b>.
324 * Find the circuit
325 * that it's intended for. If we're not the origin of the circuit, package
326 * the 'created' cell in an 'extended' relay cell and pass it back. If we
327 * are the origin of the circuit, send it to circuit_finish_handshake() to
328 * finish processing keys, and then call circuit_send_next_onion_skin() to
329 * extend to the next hop in the circuit if necessary.
330 */
331 static void
332 command_process_created_cell(cell_t *cell, or_connection_t *conn)
333 {
334 circuit_t *circ;
335
336 circ = circuit_get_by_circid_orconn(cell->circ_id, conn);
337
338 if (!circ) {
339 log_info(LD_OR,
340 "(circID %d) unknown circ (probably got a destroy earlier). "
341 "Dropping.", cell->circ_id);
342 return;
343 }
344
345 if (circ->n_circ_id != cell->circ_id) {
346 log_fn(LOG_PROTOCOL_WARN,LD_PROTOCOL,
347 "got created cell from Tor client? Closing.");
348 circuit_mark_for_close(circ, END_CIRC_REASON_TORPROTOCOL);
349 return;
350 }
351
352 if (CIRCUIT_IS_ORIGIN(circ)) { /* we're the OP. Handshake this. */
353 origin_circuit_t *origin_circ = TO_ORIGIN_CIRCUIT(circ);
354 int err_reason = 0;
355 log_debug(LD_OR,"at OP. Finishing handshake.");
356 if ((err_reason = circuit_finish_handshake(origin_circ, cell->command,
357 cell->payload)) < 0) {
358 log_warn(LD_OR,"circuit_finish_handshake failed.");
359 circuit_mark_for_close(circ, -err_reason);
360 return;
361 }
362 log_debug(LD_OR,"Moving to next skin.");
363 if ((err_reason = circuit_send_next_onion_skin(origin_circ)) < 0) {
364 log_info(LD_OR,"circuit_send_next_onion_skin failed.");
365 /* XXX push this circuit_close lower */
366 circuit_mark_for_close(circ, -err_reason);
367 return;
368 }
369 } else { /* pack it into an extended relay cell, and send it. */
370 log_debug(LD_OR,
371 "Converting created cell to extended relay cell, sending.");
372 relay_send_command_from_edge(0, circ, RELAY_COMMAND_EXTENDED,
373 (char*)cell->payload, ONIONSKIN_REPLY_LEN,
374 NULL);
375 }
376 }
377
378 /** Process a 'relay' or 'relay_early' <b>cell</b> that just arrived from
379 * <b>conn</b>. Make sure it came in with a recognized circ_id. Pass it on to
380 * circuit_receive_relay_cell() for actual processing.
381 */
382 static void
383 command_process_relay_cell(cell_t *cell, or_connection_t *conn)
384 {
385 circuit_t *circ;
386 int reason, direction;
387
388 circ = circuit_get_by_circid_orconn(cell->circ_id, conn);
389
390 if (!circ) {
391 log_debug(LD_OR,
392 "unknown circuit %d on connection from %s:%d. Dropping.",
393 cell->circ_id, conn->_base.address, conn->_base.port);
394 return;
395 }
396
397 if (circ->state == CIRCUIT_STATE_ONIONSKIN_PENDING) {
398 log_fn(LOG_PROTOCOL_WARN,LD_PROTOCOL,"circuit in create_wait. Closing.");
399 circuit_mark_for_close(circ, END_CIRC_REASON_TORPROTOCOL);
400 return;
401 }
402
403 if (CIRCUIT_IS_ORIGIN(circ)) {
404 /* if we're a relay and treating connections with recent local
405 * traffic better, then this is one of them. */
406 conn->client_used = time(NULL);
407 }
408
409 if (!CIRCUIT_IS_ORIGIN(circ) &&
410 cell->circ_id == TO_OR_CIRCUIT(circ)->p_circ_id)
411 direction = CELL_DIRECTION_OUT;
412 else
413 direction = CELL_DIRECTION_IN;
414
415 /* If we have a relay_early cell, make sure that it's outbound, and we've
416 * gotten no more than MAX_RELAY_EARLY_CELLS_PER_CIRCUIT of them. */
417 if (cell->command == CELL_RELAY_EARLY) {
418 if (direction == CELL_DIRECTION_IN) {
419 /* Allow an unlimited number of inbound relay_early cells,
420 * for hidden service compatibility. There isn't any way to make
421 * a long circuit through inbound relay_early cells anyway. See
422 * bug 1038. -RD */
423 } else {
424 or_circuit_t *or_circ = TO_OR_CIRCUIT(circ);
425 if (or_circ->remaining_relay_early_cells == 0) {
426 log_fn(LOG_PROTOCOL_WARN, LD_OR,
427 "Received too many RELAY_EARLY cells on circ %d from %s:%d."
428 " Closing circuit.",
429 cell->circ_id, safe_str(conn->_base.address),
430 conn->_base.port);
431 circuit_mark_for_close(circ, END_CIRC_REASON_TORPROTOCOL);
432 return;
433 }
434 --or_circ->remaining_relay_early_cells;
435 }
436 }
437
438 if ((reason = circuit_receive_relay_cell(cell, circ, direction)) < 0) {
439 log_fn(LOG_PROTOCOL_WARN,LD_PROTOCOL,"circuit_receive_relay_cell "
440 "(%s) failed. Closing.",
441 direction==CELL_DIRECTION_OUT?"forward":"backward");
442 circuit_mark_for_close(circ, -reason);
443 }
444 }
445
446 /** Process a 'destroy' <b>cell</b> that just arrived from
447 * <b>conn</b>. Find the circ that it refers to (if any).
448 *
449 * If the circ is in state
450 * onionskin_pending, then call onion_pending_remove() to remove it
451 * from the pending onion list (note that if it's already being
452 * processed by the cpuworker, it won't be in the list anymore; but
453 * when the cpuworker returns it, the circuit will be gone, and the
454 * cpuworker response will be dropped).
455 *
456 * Then mark the circuit for close (which marks all edges for close,
457 * and passes the destroy cell onward if necessary).
458 */
459 static void
460 command_process_destroy_cell(cell_t *cell, or_connection_t *conn)
461 {
462 circuit_t *circ;
463 int reason;
464
465 circ = circuit_get_by_circid_orconn(cell->circ_id, conn);
466 reason = (uint8_t)cell->payload[0];
467 if (!circ) {
468 log_info(LD_OR,"unknown circuit %d on connection from %s:%d. Dropping.",
469 cell->circ_id, conn->_base.address, conn->_base.port);
470 return;
471 }
472 log_debug(LD_OR,"Received for circID %d.",cell->circ_id);
473
474 if (!CIRCUIT_IS_ORIGIN(circ) &&
475 cell->circ_id == TO_OR_CIRCUIT(circ)->p_circ_id) {
476 /* the destroy came from behind */
477 circuit_set_p_circid_orconn(TO_OR_CIRCUIT(circ), 0, NULL);
478 circuit_mark_for_close(circ, reason|END_CIRC_REASON_FLAG_REMOTE);
479 } else { /* the destroy came from ahead */
480 circuit_set_n_circid_orconn(circ, 0, NULL);
481 if (CIRCUIT_IS_ORIGIN(circ)) {
482 circuit_mark_for_close(circ, reason|END_CIRC_REASON_FLAG_REMOTE);
483 } else {
484 char payload[1];
485 log_debug(LD_OR, "Delivering 'truncated' back.");
486 payload[0] = (char)reason;
487 relay_send_command_from_edge(0, circ, RELAY_COMMAND_TRUNCATED,
488 payload, sizeof(payload), NULL);
489 }
490 }
491 }
492
493 /** Process a 'versions' cell. The current link protocol version must be 0
494 * to indicate that no version has yet been negotiated. We compare the
495 * versions in the cell to the list of versions we support, pick the
496 * highest version we have in common, and continue the negotiation from
497 * there.
498 */
499 static void
500 command_process_versions_cell(var_cell_t *cell, or_connection_t *conn)
501 {
502 int highest_supported_version = 0;
503 const uint8_t *cp, *end;
504 if (conn->link_proto != 0 ||
505 conn->_base.state != OR_CONN_STATE_OR_HANDSHAKING ||
506 (conn->handshake_state && conn->handshake_state->received_versions)) {
507 log_fn(LOG_PROTOCOL_WARN, LD_OR,
508 "Received a VERSIONS cell on a connection with its version "
509 "already set to %d; dropping", (int) conn->link_proto);
510 return;
511 }
512 tor_assert(conn->handshake_state);
513 end = cell->payload + cell->payload_len;
514 for (cp = cell->payload; cp+1 < end; ++cp) {
515 uint16_t v = ntohs(get_uint16(cp));
516 if (is_or_protocol_version_known(v) && v > highest_supported_version)
517 highest_supported_version = v;
518 }
519 if (!highest_supported_version) {
520 log_fn(LOG_PROTOCOL_WARN, LD_OR,
521 "Couldn't find a version in common between my version list and the "
522 "list in the VERSIONS cell; closing connection.");
523 connection_mark_for_close(TO_CONN(conn));
524 return;
525 } else if (highest_supported_version == 1) {
526 /* Negotiating version 1 makes no sense, since version 1 has no VERSIONS
527 * cells. */
528 log_fn(LOG_PROTOCOL_WARN, LD_OR,
529 "Used version negotiation protocol to negotiate a v1 connection. "
530 "That's crazily non-compliant. Closing connection.");
531 connection_mark_for_close(TO_CONN(conn));
532 return;
533 }
534 conn->link_proto = highest_supported_version;
535 conn->handshake_state->received_versions = 1;
536
537 log_info(LD_OR, "Negotiated version %d with %s:%d; sending NETINFO.",
538 highest_supported_version,
539 safe_str_client(conn->_base.address),
540 conn->_base.port);
541 tor_assert(conn->link_proto >= 2);
542
543 if (connection_or_send_netinfo(conn) < 0) {
544 connection_mark_for_close(TO_CONN(conn));
545 return;
546 }
547 }
548
549 /** Process a 'netinfo' cell: read and act on its contents, and set the
550 * connection state to "open". */
551 static void
552 command_process_netinfo_cell(cell_t *cell, or_connection_t *conn)
553 {
554 time_t timestamp;
555 uint8_t my_addr_type;
556 uint8_t my_addr_len;
557 const uint8_t *my_addr_ptr;
558 const uint8_t *cp, *end;
559 uint8_t n_other_addrs;
560 time_t now = time(NULL);
561
562 long apparent_skew = 0;
563 uint32_t my_apparent_addr = 0;
564
565 if (conn->link_proto < 2) {
566 log_fn(LOG_PROTOCOL_WARN, LD_OR,
567 "Received a NETINFO cell on %s connection; dropping.",
568 conn->link_proto == 0 ? "non-versioned" : "a v1");
569 return;
570 }
571 if (conn->_base.state != OR_CONN_STATE_OR_HANDSHAKING) {
572 log_fn(LOG_PROTOCOL_WARN, LD_OR,
573 "Received a NETINFO cell on non-handshaking connection; dropping.");
574 return;
575 }
576 tor_assert(conn->handshake_state &&
577 conn->handshake_state->received_versions);
578 /* Decode the cell. */
579 timestamp = ntohl(get_uint32(cell->payload));
580 if (labs(now - conn->handshake_state->sent_versions_at) < 180) {
581 apparent_skew = now - timestamp;
582 }
583
584 my_addr_type = (uint8_t) cell->payload[4];
585 my_addr_len = (uint8_t) cell->payload[5];
586 my_addr_ptr = (uint8_t*) cell->payload + 6;
587 end = cell->payload + CELL_PAYLOAD_SIZE;
588 cp = cell->payload + 6 + my_addr_len;
589 if (cp >= end) {
590 log_fn(LOG_PROTOCOL_WARN, LD_OR,
591 "Addresses too long in netinfo cell; closing connection.");
592 connection_mark_for_close(TO_CONN(conn));
593 return;
594 } else if (my_addr_type == RESOLVED_TYPE_IPV4 && my_addr_len == 4) {
595 my_apparent_addr = ntohl(get_uint32(my_addr_ptr));
596 }
597
598 n_other_addrs = (uint8_t) *cp++;
599 while (n_other_addrs && cp < end-2) {
600 /* Consider all the other addresses; if any matches, this connection is
601 * "canonical." */
602 tor_addr_t addr;
603 const uint8_t *next =
604 decode_address_from_payload(&addr, cp, (int)(end-cp));
605 if (next == NULL) {
606 log_fn(LOG_PROTOCOL_WARN, LD_OR,
607 "Bad address in netinfo cell; closing connection.");
608 connection_mark_for_close(TO_CONN(conn));
609 return;
610 }
611 if (tor_addr_eq(&addr, &conn->real_addr)) {
612 conn->is_canonical = 1;
613 break;
614 }
615 cp = next;
616 --n_other_addrs;
617 }
618
619 /* Act on apparent skew. */
620 /** Warn when we get a netinfo skew with at least this value. */
621 #define NETINFO_NOTICE_SKEW 3600
622 if (labs(apparent_skew) > NETINFO_NOTICE_SKEW &&
623 router_get_by_digest(conn->identity_digest)) {
624 char dbuf[64];
625 int severity;
626 /*XXXX be smarter about when everybody says we are skewed. */
627 if (router_digest_is_trusted_dir(conn->identity_digest))
628 severity = LOG_WARN;
629 else
630 severity = LOG_INFO;
631 format_time_interval(dbuf, sizeof(dbuf), apparent_skew);
632 log_fn(severity, LD_GENERAL, "Received NETINFO cell with skewed time from "
633 "server at %s:%d. It seems that our clock is %s by %s, or "
634 "that theirs is %s. Tor requires an accurate clock to work: "
635 "please check your time and date settings.",
636 conn->_base.address, (int)conn->_base.port,
637 apparent_skew>0 ? "ahead" : "behind", dbuf,
638 apparent_skew>0 ? "behind" : "ahead");
639 if (severity == LOG_WARN) /* only tell the controller if an authority */
640 control_event_general_status(LOG_WARN,
641 "CLOCK_SKEW SKEW=%ld SOURCE=OR:%s:%d",
642 apparent_skew,
643 conn->_base.address, conn->_base.port);
644 }
645
646 /* XXX maybe act on my_apparent_addr, if the source is sufficiently
647 * trustworthy. */
648
649 if (connection_or_set_state_open(conn)<0)
650 connection_mark_for_close(TO_CONN(conn));
651 else
652 log_info(LD_OR, "Got good NETINFO cell from %s:%d; OR connection is now "
653 "open, using protocol version %d",
654 safe_str_client(conn->_base.address),
655 conn->_base.port, (int)conn->link_proto);
656 assert_connection_ok(TO_CONN(conn),time(NULL));
657 }
658
The Onion Router