search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
if >=2 circs are being built that handle a given stream,
[tor.git] / src / or / routerlist.c
blob602ae27e8a6759f4844c06c5f8141ba5e110ba18
1 /* Copyright 2001-2003 Roger Dingledine, Matej Pfajfar. */
2 /* See LICENSE for licensing information */
3 /* $Id$ */
4
5 #define OR_PUBLICKEY_BEGIN_TAG "-----BEGIN RSA PUBLIC KEY-----\n"
6 #define OR_PUBLICKEY_END_TAG "-----END RSA PUBLIC KEY-----\n"
7 #define OR_SIGNATURE_BEGIN_TAG "-----BEGIN SIGNATURE-----\n"
8 #define OR_SIGNATURE_END_TAG "-----END SIGNATURE-----\n"
9
10 #define _GNU_SOURCE
11 /* XXX this is required on rh7 to make strptime not complain. how bad
12 * is this for portability?
13 */
14
15 #include "or.h"
16
17 /****************************************************************************/
18
19 static routerlist_t *routerlist = NULL; /* router array */
20 extern or_options_t options; /* command-line and config-file options */
21
22 /****************************************************************************/
23
24 /* Enumeration of possible token types. The ones starting with K_ correspond
25 * to directory 'keywords'. _SIGNATURE and _PUBLIC_KEY are self-explanitory.
26 * _ERR is an error in the tokenizing process, _EOF is an end-of-file marker,
27 * and _NIL is used to encode not-a-token.
28 */
29 typedef enum {
30 K_ACCEPT,
31 K_DIRECTORY_SIGNATURE,
32 K_RECOMMENDED_SOFTWARE,
33 K_REJECT,
34 K_ROUTER,
35 K_SIGNED_DIRECTORY,
36 K_SIGNING_KEY,
37 K_ONION_KEY,
38 K_LINK_KEY,
39 K_ROUTER_SIGNATURE,
40 K_PUBLISHED,
41 K_RUNNING_ROUTERS,
42 K_PLATFORM,
43 _SIGNATURE,
44 _PUBLIC_KEY,
45 _ERR,
46 _EOF,
47 _NIL
48 } directory_keyword;
49
50 /* Struct containing a directory token. */
51 #define MAX_ARGS 1024
52 typedef struct directory_token_t {
53 directory_keyword tp; /* Type of the token. */
54 union {
55 struct {
56 char *args[MAX_ARGS+1]; /* For K_xxx tokens only: an array and count */
57 int n_args; /* of arguments provided on the same line */
58 } cmd;
59 char *signature; /* For _SIGNATURE tokens only. */
60 char *error; /* For _ERR tokens only. */
61 crypto_pk_env_t *public_key; /* For _PUBLIC_KEY tokens only. */
62 } val;
63 } directory_token_t;
64
65 /****************************************************************************/
66
67
68
69 /* static function prototypes */
70 static int router_set_routerlist_from_string(const char *s);
71 static int
72 router_get_list_from_string_impl(const char **s, routerlist_t **dest,
73 int n_good_nicknames,
74 const char **good_nickname_lst);
75 static int
76 router_get_routerlist_from_directory_impl(const char *s, routerlist_t **dest,
77 crypto_pk_env_t *pkey);
78 static int router_add_exit_policy(routerinfo_t *router,
79 directory_token_t *tok);
80 static int router_resolve_routerlist(routerlist_t *dir);
81
82
83
84 static int _router_get_next_token(const char **s, directory_token_t *tok);
85 #ifdef DEBUG_ROUTER_TOKENS
86 static int router_get_next_token(const char **s, directory_token_t *tok);
87 #else
88 #define router_get_next_token _router_get_next_token
89 #endif
90 static int router_get_hash_impl(const char *s, char *digest,
91 const char *start_str,
92 const char *end_str);
93 static void router_release_token(directory_token_t *tok);
94
95
96 /****************************************************************************/
97 routerinfo_t *router_pick_directory_server(void) {
98 /* pick a random running router with a positive dir_port */
99 int i,j;
100 routerinfo_t *router, *dirserver=NULL;
101 int num_dirservers=0;
102
103 if(!routerlist)
104 return NULL;
105
106 for(i=0;i<routerlist->n_routers;i++) {
107 router = routerlist->routers[i];
108 if(router->dir_port > 0 && router->is_running)
109 num_dirservers++;
110 }
111
112 if(!num_dirservers) {
113 log_fn(LOG_INFO,"No dirservers are reachable. Trying them all again.");
114 /* no running dir servers found? go through and mark them all as up,
115 * and we'll cycle through the list again. */
116 for(i=0;i<routerlist->n_routers;i++) {
117 router = routerlist->routers[i];
118 if(router->dir_port > 0) {
119 router->is_running = 1;
120 dirserver = router;
121 }
122 }
123 return dirserver;
124 }
125
126 j = crypto_pseudo_rand_int(num_dirservers);
127 for (i=0;i<routerlist->n_routers;i++) {
128 router = routerlist->routers[i];
129 if (router->dir_port > 0 && router->is_running) {
130 if (j)
131 --j;
132 else {
133 log_fn(LOG_DEBUG, "Chose server '%s'", router->nickname);
134 return router;
135 }
136 }
137 }
138 assert(0);
139 return NULL;
140 }
141
142 routerinfo_t *router_pick_randomly_from_running(void) {
143 int i,j;
144 int num_running=0;
145
146 if(!routerlist)
147 return NULL;
148
149 for(i=0;i<routerlist->n_routers;i++) {
150 if(routerlist->routers[i]->is_running)
151 num_running++;
152 }
153
154 if(!num_running) {
155 log_fn(LOG_INFO,"No routers are running. Returning NULL.");
156 return NULL;
157 }
158 j = crypto_pseudo_rand_int(num_running);
159 for (i=0;i<routerlist->n_routers;i++) {
160 if (routerlist->routers[i]->is_running) {
161 if (j)
162 --j;
163 else {
164 log_fn(LOG_DEBUG, "Chose server '%s'", routerlist->routers[i]->nickname);
165 return routerlist->routers[i];
166 }
167 }
168 }
169 assert(0);
170 return NULL;
171 }
172
173 routerinfo_t *router_get_by_addr_port(uint32_t addr, uint16_t port) {
174 int i;
175 routerinfo_t *router;
176
177 assert(routerlist);
178
179 for(i=0;i<routerlist->n_routers;i++) {
180 router = routerlist->routers[i];
181 if ((router->addr == addr) && (router->or_port == port))
182 return router;
183 }
184 return NULL;
185 }
186
187 routerinfo_t *router_get_by_link_pk(crypto_pk_env_t *pk)
188 {
189 int i;
190 routerinfo_t *router;
191
192 assert(routerlist);
193
194 for(i=0;i<routerlist->n_routers;i++) {
195 router = routerlist->routers[i];
196 if (0 == crypto_pk_cmp_keys(router->link_pkey, pk))
197 return router;
198 }
199 return NULL;
200 }
201
202 routerinfo_t *router_get_by_nickname(char *nickname)
203 {
204 int i;
205 routerinfo_t *router;
206
207 assert(routerlist);
208
209 for(i=0;i<routerlist->n_routers;i++) {
210 router = routerlist->routers[i];
211 if (0 == strcmp(router->nickname, nickname))
212 return router;
213 }
214 return NULL;
215 }
216
217 /* a way to access routerlist outside this file */
218 void router_get_routerlist(routerlist_t **prouterlist) {
219 *prouterlist = routerlist;
220 }
221
222 /* delete a router from memory */
223 void routerinfo_free(routerinfo_t *router)
224 {
225 struct exit_policy_t *e;
226
227 if (!router)
228 return;
229
230 tor_free(router->address);
231 tor_free(router->nickname);
232 if (router->onion_pkey)
233 crypto_free_pk_env(router->onion_pkey);
234 if (router->link_pkey)
235 crypto_free_pk_env(router->link_pkey);
236 if (router->identity_pkey)
237 crypto_free_pk_env(router->identity_pkey);
238 while (router->exit_policy) {
239 e = router->exit_policy;
240 router->exit_policy = e->next;
241 tor_free(e->string);
242 free(e);
243 }
244 free(router);
245 }
246
247 static void routerlist_free(routerlist_t *rl)
248 {
249 int i;
250 for (i = 0; i < rl->n_routers; ++i)
251 routerinfo_free(rl->routers[i]);
252 tor_free(rl->routers);
253 tor_free(rl->software_versions);
254 free(rl);
255 }
256
257 void router_mark_as_down(char *nickname) {
258 routerinfo_t *router = router_get_by_nickname(nickname);
259 if(!router) /* we don't seem to know about him in the first place */
260 return;
261 log_fn(LOG_DEBUG,"Marking %s as down.",router->nickname);
262 router->is_running = 0;
263 }
264
265 /* ------------------------------------------------------------ */
266
267 /* Replace the current router list with the one stored in 'routerfile'. */
268 int router_set_routerlist_from_file(char *routerfile)
269 {
270 char *string;
271
272 string = read_file_to_str(routerfile);
273 if(!string) {
274 log_fn(LOG_WARN,"Failed to load routerfile %s.",routerfile);
275 return -1;
276 }
277
278 if(router_set_routerlist_from_string(string) < 0) {
279 log_fn(LOG_WARN,"The routerfile itself was corrupt.");
280 free(string);
281 return -1;
282 }
283
284 free(string);
285 return 0;
286 }
287
288
289 /* Helper function: read routerinfo elements from s, and throw out the
290 * ones that don't parse and resolve. Replace the current
291 * routerlist. */
292 static int router_set_routerlist_from_string(const char *s)
293 {
294 if (router_get_list_from_string_impl(&s, &routerlist, -1, NULL)) {
295 log(LOG_WARN, "Error parsing router file");
296 return -1;
297 }
298 if (router_resolve_routerlist(routerlist)) {
299 log(LOG_WARN, "Error resolving routerlist");
300 return -1;
301 }
302 return 0;
303 }
304
305 /* Set 'digest' to the SHA-1 digest of the hash of the directory in 's'.
306 * Return 0 on success, nonzero on failure.
307 */
308 int router_get_dir_hash(const char *s, char *digest)
309 {
310 return router_get_hash_impl(s,digest,
311 "signed-directory","directory-signature");
312 }
313 /* Set 'digest' to the SHA-1 digest of the hash of the first router in 's'.
314 * Return 0 on success, nonzero on failure.
315 */
316 int router_get_router_hash(const char *s, char *digest)
317 {
318 return router_get_hash_impl(s,digest,
319 "router ","router-signature");
320 }
321
322 /* return 0 if myversion is in versionlist. Else return -1. (versionlist
323 * contains a comma-separated list of versions.) */
324 int compare_recommended_versions(const char *myversion,
325 const char *versionlist) {
326 int len_myversion = strlen(myversion);
327 char *comma;
328 const char *end = versionlist + strlen(versionlist);
329
330 log_fn(LOG_DEBUG,"checking '%s' in '%s'.", myversion, versionlist);
331
332 for(;;) {
333 comma = strchr(versionlist, ',');
334 if( ((comma ? comma : end) - versionlist == len_myversion) &&
335 !strncmp(versionlist, myversion, len_myversion))
336 /* only do strncmp if the length matches */
337 return 0; /* success, it's there */
338 if(!comma)
339 return -1; /* nope */
340 versionlist = comma+1;
341 }
342 }
343
344 /* Replace the current routerlist with the routers stored in the directory
345 * 's'. If pkey is provided, make sure that 's' is signed with pkey.
346 */
347 int router_set_routerlist_from_directory(const char *s, crypto_pk_env_t *pkey)
348 {
349 if (router_get_routerlist_from_directory_impl(s, &routerlist, pkey)) {
350 log_fn(LOG_WARN, "Couldn't parse directory.");
351 return -1;
352 }
353 if (router_resolve_routerlist(routerlist)) {
354 log_fn(LOG_WARN, "Error resolving routerlist");
355 return -1;
356 }
357 if (compare_recommended_versions(VERSION, routerlist->software_versions) < 0) {
358 log(options.IgnoreVersion ? LOG_WARN : LOG_ERR,
359 "You are running Tor version %s, which is not recommended.\n"
360 "Please upgrade to one of %s.",
361 VERSION, routerlist->software_versions);
362 if(options.IgnoreVersion) {
363 log(LOG_WARN, "IgnoreVersion is set. If it breaks, we told you so.");
364 } else {
365 fflush(0);
366 exit(0);
367 }
368 }
369
370 return 0;
371 }
372
373 /* Helper function: resolve the hostname for 'router' */
374 static int
375 router_resolve(routerinfo_t *router)
376 {
377 struct hostent *rent;
378
379 rent = (struct hostent *)gethostbyname(router->address);
380 if (!rent) {
381 log_fn(LOG_WARN,"Could not get address for router %s.",router->address);
382 return -1;
383 }
384 assert(rent->h_length == 4);
385 memcpy(&router->addr, rent->h_addr,rent->h_length);
386 router->addr = ntohl(router->addr); /* get it back into host order */
387
388 return 0;
389 }
390
391 /* Helper function: resolve every router in rl. */
392 static int
393 router_resolve_routerlist(routerlist_t *rl)
394 {
395 int i, max, remove;
396 if (!rl)
397 rl = routerlist;
398
399 max = rl->n_routers;
400 for (i = 0; i < max; ++i) {
401 remove = 0;
402 if (router_resolve(rl->routers[i])) {
403 log_fn(LOG_WARN, "Couldn't resolve router %s; not using",
404 rl->routers[i]->address);
405 remove = 1;
406 } else if (options.Nickname &&
407 !strcmp(rl->routers[i]->nickname, options.Nickname)) {
408 remove = 1;
409 }
410 if (remove) {
411 routerinfo_free(rl->routers[i]);
412 rl->routers[i] = rl->routers[--max];
413 --rl->n_routers;
414 --i;
415 }
416 }
417
418 return 0;
419 }
420
421 /* Addr is 0 for "IP unknown".
422 *
423 * Returns -1 for 'rejected', 0 for accepted, 1 for 'maybe' (since IP is
424 * unknown.
425 */
426 int router_supports_exit_address(uint32_t addr, uint16_t port,
427 routerinfo_t *router)
428 {
429 return router_compare_addr_to_exit_policy(addr, port, router->exit_policy);
430 }
431
432 /* Addr is 0 for "IP unknown".
433 *
434 * Returns -1 for 'rejected', 0 for accepted, 1 for 'maybe' (since IP is
435 * unknown.
436 */
437 int router_compare_addr_to_exit_policy(uint32_t addr, uint16_t port,
438 struct exit_policy_t *policy)
439 {
440 int maybe_reject = 0;
441 int match = 0;
442 struct in_addr in;
443 struct exit_policy_t *tmpe;
444
445 for(tmpe=policy; tmpe; tmpe=tmpe->next) {
446 log_fn(LOG_DEBUG,"Considering exit policy %s", tmpe->string);
447 if (!addr) {
448 /* Address is unknown. */
449 if (tmpe->msk == 0 && (!tmpe || port == tmpe->prt)) {
450 /* The exit policy is accept/reject *:port */
451 match = 1;
452 } else if ((!tmpe->prt || port == tmpe->prt) &&
453 tmpe->policy_type == EXIT_POLICY_REJECT) {
454 /* The exit policy is reject ???:port */
455 maybe_reject = 1;
456 }
457 } else {
458 /* Address is known */
459 if ( (addr & tmpe->msk) == (tmpe->addr & tmpe->msk) &&
460 (!tmpe->prt || port == tmpe->prt) ) {
461 /* Exact match for the policy */
462 match = 1;
463 }
464 }
465 if (match) {
466 in.s_addr = htonl(addr);
467 log_fn(LOG_INFO,"Address %s:%d matches exit policy '%s'",
468 inet_ntoa(in), port, tmpe->string);
469 if(tmpe->policy_type == EXIT_POLICY_ACCEPT)
470 return 0;
471 else
472 return -1;
473 }
474 }
475 if (maybe_reject)
476 return 1;
477 else
478 return 0; /* accept all by default. */
479 }
480
481 /* return 1 if all running routers will reject addr:port, return 0 if
482 any might accept it. */
483 int router_exit_policy_all_routers_reject(uint32_t addr, uint16_t port) {
484 int i;
485 routerinfo_t *router;
486
487 for (i=0;i<routerlist->n_routers;i++) {
488 router = routerlist->routers[i];
489 if (router->is_running && router_compare_addr_to_exit_policy(addr,
490 port, router->exit_policy) >= 0)
491 return 0; /* this one could be ok. good enough. */
492 }
493 return 1; /* all will reject. */
494 }
495
496 int router_exit_policy_rejects_all(routerinfo_t *router) {
497 if (router_compare_addr_to_exit_policy(0, 0, router->exit_policy) < 0)
498 return 1; /* yes, rejects all */
499 else
500 return 0; /* no, might accept some */
501 }
502
503
504 /* Helper function: parse a directory from 's' and, when done, store the
505 * resulting routerlist in *dest, freeing the old value if necessary.
506 * If pkey is provided, we check the directory signature with pkey.
507 */
508 static int
509 router_get_routerlist_from_directory_impl(const char *s, routerlist_t **dest,
510 crypto_pk_env_t *pkey)
511 {
512 directory_token_t tok;
513 char digest[20];
514 char signed_digest[128];
515 routerlist_t *new_dir = NULL;
516 char *versions = NULL;
517 struct tm published;
518 time_t published_on;
519 char *good_nickname_lst[1024];
520 int n_good_nicknames = 0;
521 int i;
522
523 /* Local helper macro: get the next token from s (advancing s) and
524 * bail on failure. */
525 #define NEXT_TOK() \
526 do { \
527 if (router_get_next_token(&s, &tok)) { \
528 log_fn(LOG_WARN, "Error reading directory: %s", tok.val.error); \
529 goto err; \
530 } } while (0)
531 /* Local helper macro: bail if the most recently read token is not of
532 * the given type. */
533 #define TOK_IS(type,name) \
534 do { \
535 if (tok.tp != type) { \
536 router_release_token(&tok); \
537 log_fn(LOG_WARN, "Error reading directory: expected %s", name); \
538 goto err; \
539 } } while(0)
540 /* Local helper macro: Number of args in most recent token. */
541 #define N_ARGS tok.val.cmd.n_args
542 /* Local helper macro: Array of args to most recent token. */
543 #define ARGS tok.val.cmd.args
544
545 tok.tp = _NIL;
546
547 if (router_get_dir_hash(s, digest)) {
548 log_fn(LOG_WARN, "Unable to compute digest of directory");
549 goto err;
550 }
551 log(LOG_DEBUG,"Received directory hashes to %02x:%02x:%02x:%02x",
552 ((int)digest[0])&0xff,((int)digest[1])&0xff,
553 ((int)digest[2])&0xff,((int)digest[3])&0xff);
554
555 NEXT_TOK();
556 TOK_IS(K_SIGNED_DIRECTORY, "signed-directory");
557
558 NEXT_TOK();
559 TOK_IS(K_PUBLISHED, "published");
560 assert(N_ARGS == 1);
561 if (!strptime(ARGS[0], "%Y-%m-%d %H:%M:%S", &published)) {
562 log_fn(LOG_WARN, "Published time was unparseable"); goto err;
563 }
564 published_on = tor_timegm(&published);
565
566 NEXT_TOK();
567 TOK_IS(K_RECOMMENDED_SOFTWARE, "recommended-software");
568 if (N_ARGS != 1) {
569 log_fn(LOG_WARN, "Invalid recommended-software line");
570 goto err;
571 }
572 versions = ARGS[0];
573 tok.val.cmd.n_args = 0; /* Don't let the versions string get freed. */
574
575 NEXT_TOK();
576 TOK_IS(K_RUNNING_ROUTERS, "running-routers");
577 n_good_nicknames = N_ARGS;
578 memcpy(good_nickname_lst, ARGS, n_good_nicknames*sizeof(char *));
579 N_ARGS = 0; /* Don't free the strings in good_nickname_lst. */
580
581 /* Read the router list from s, advancing s up past the end of the last
582 * router. */
583 if (router_get_list_from_string_impl(&s, &new_dir,
584 n_good_nicknames,
585 (const char**)good_nickname_lst)) {
586 log_fn(LOG_WARN, "Error reading routers from directory");
587 goto err;
588 }
589 new_dir->software_versions = versions; versions = NULL;
590 new_dir->published_on = published_on;
591
592 NEXT_TOK();
593 TOK_IS(K_DIRECTORY_SIGNATURE, "directory-signature");
594 NEXT_TOK();
595 TOK_IS(_SIGNATURE, "signature");
596 if (pkey) {
597 if (crypto_pk_public_checksig(pkey, tok.val.signature, 128, signed_digest)
598 != 20) {
599 log_fn(LOG_WARN, "Error reading directory: invalid signature.");
600 goto err;
601 }
602 log(LOG_DEBUG,"Signed directory hash starts %02x:%02x:%02x:%02x",
603 ((int)signed_digest[0])&0xff,((int)signed_digest[1])&0xff,
604 ((int)signed_digest[2])&0xff,((int)signed_digest[3])&0xff);
605 if (memcmp(digest, signed_digest, 20)) {
606 log_fn(LOG_WARN, "Error reading directory: signature does not match.");
607 goto err;
608 }
609 }
610
611 NEXT_TOK();
612 TOK_IS(_EOF, "end of directory");
613
614 if (*dest)
615 routerlist_free(*dest);
616 *dest = new_dir;
617
618 return 0;
619
620 err:
621 router_release_token(&tok);
622 if (new_dir)
623 routerlist_free(new_dir);
624 tor_free(versions);
625 for (i = 0; i < n_good_nicknames; ++i) {
626 tor_free(good_nickname_lst[i]);
627 }
628 return -1;
629 #undef NEXT_TOK
630 #undef TOK_IS
631 #undef ARGS
632 #undef N_ARGS
633 }
634
635 /* Helper function: Given a string *s containing a concatenated
636 * sequence of router descriptors, parses them and stores the result
637 * in *dest. If good_nickname_lst is provided, then routers whose
638 * nicknames are not listed are marked as nonrunning. Advances *s to
639 * a point immediately following the last router entry. Returns 0 on
640 * success and -1 on failure.
641 */
642 static int
643 router_get_list_from_string_impl(const char **s, routerlist_t **dest,
644 int n_good_nicknames,
645 const char **good_nickname_lst)
646 {
647 routerinfo_t *router;
648 routerinfo_t **rarray;
649 int rarray_len = 0;
650 int i;
651
652 assert(s && *s);
653
654 rarray = (routerinfo_t **)
655 tor_malloc((sizeof(routerinfo_t *))*MAX_ROUTERS_IN_DIR);
656
657 while (1) {
658 *s = eat_whitespace(*s);
659 /* Don't start parsing the rest of *s unless it contains a router. */
660 if (strncmp(*s, "router ", 7)!=0)
661 break;
662 router = router_get_entry_from_string(s);
663 if (!router) {
664 log_fn(LOG_WARN, "Error reading router");
665 for(i=0;i<rarray_len;i++)
666 routerinfo_free(rarray[i]);
667 free(rarray);
668 return -1;
669 }
670 if (rarray_len >= MAX_ROUTERS_IN_DIR) {
671 log_fn(LOG_WARN, "too many routers");
672 routerinfo_free(router);
673 continue;
674 }
675 if (n_good_nicknames>=0) {
676 router->is_running = 0;
677 for (i = 0; i < n_good_nicknames; ++i) {
678 if (0==strcasecmp(good_nickname_lst[i], router->nickname)) {
679 router->is_running = 1;
680 break;
681 }
682 }
683 } else {
684 router->is_running = 1; /* start out assuming all dirservers are up */
685 }
686 rarray[rarray_len++] = router;
687 log_fn(LOG_DEBUG,"just added router #%d.",rarray_len);
688 }
689
690 if (*dest)
691 routerlist_free(*dest);
692 *dest = (routerlist_t *)tor_malloc(sizeof(routerlist_t));
693 (*dest)->routers = rarray;
694 (*dest)->n_routers = rarray_len;
695 (*dest)->software_versions = NULL;
696 return 0;
697 }
698
699
700 /* Helper function: reads a single router entry from *s, and advances
701 * *s so it points to just after the router it just read.
702 * mallocs a new router and returns it if all goes well, else returns
703 * NULL.
704 */
705 routerinfo_t *router_get_entry_from_string(const char**s) {
706 routerinfo_t *router = NULL;
707 char signed_digest[128];
708 char digest[128];
709 directory_token_t _tok;
710 directory_token_t *tok = &_tok;
711 struct tm published;
712 int t;
713
714 /* Helper macro: read the next token from *s, advance *s, and bail
715 if there's an error */
716 #define NEXT_TOKEN() \
717 do { if (router_get_next_token(s, tok)) { \
718 log_fn(LOG_WARN, "Error reading directory: %s", tok->val.error);\
719 goto err; \
720 } } while(0)
721
722 #define ARGS tok->val.cmd.args
723 #define N_ARGS tok->val.cmd.n_args
724
725 _tok.tp = _NIL;
726
727 if (router_get_router_hash(*s, digest) < 0) {
728 log_fn(LOG_WARN, "Couldn't compute router hash.");
729 return NULL;
730 }
731
732 NEXT_TOKEN();
733
734 if (tok->tp != K_ROUTER) {
735 log_fn(LOG_WARN,"Entry does not start with \"router\"");
736 goto err;
737 }
738
739 router = tor_malloc_zero(sizeof(routerinfo_t));
740 router->onion_pkey = router->identity_pkey = router->link_pkey = NULL;
741
742 if (N_ARGS != 6) {
743 log_fn(LOG_WARN,"Wrong # of arguments to \"router\"");
744 goto err;
745 }
746 router->nickname = tor_strdup(ARGS[0]);
747 if (strlen(router->nickname) > MAX_NICKNAME_LEN) {
748 log_fn(LOG_WARN,"Router nickname too long.");
749 goto err;
750 }
751 if (strspn(router->nickname, LEGAL_NICKNAME_CHARACTERS) !=
752 strlen(router->nickname)) {
753 log_fn(LOG_WARN, "Router nickname contains illegal characters.");
754 goto err;
755 }
756
757 /* read router.address */
758 router->address = tor_strdup(ARGS[1]);
759 router->addr = 0;
760
761 /* Read router->or_port */
762 router->or_port = atoi(ARGS[2]);
763 if(!router->or_port) {
764 log_fn(LOG_WARN,"or_port unreadable or 0. Failing.");
765 goto err;
766 }
767
768 /* Router->socks_port */
769 router->socks_port = atoi(ARGS[3]);
770
771 /* Router->dir_port */
772 router->dir_port = atoi(ARGS[4]);
773
774 /* Router->bandwidth */
775 router->bandwidth = atoi(ARGS[5]);
776 if (!router->bandwidth) {
777 log_fn(LOG_WARN,"bandwidth unreadable or 0. Failing.");
778 goto err;
779 }
780
781 log_fn(LOG_DEBUG,"or_port %d, socks_port %d, dir_port %d, bandwidth %d.",
782 router->or_port, router->socks_port, router->dir_port, router->bandwidth);
783
784 /* XXX Later, require platform before published. */
785 NEXT_TOKEN();
786 if (tok->tp == K_PLATFORM) {
787 NEXT_TOKEN();
788 }
789
790 if (tok->tp != K_PUBLISHED) {
791 log_fn(LOG_WARN, "Missing published time"); goto err;
792 }
793 assert(N_ARGS == 1);
794 if (!strptime(ARGS[0], "%Y-%m-%d %H:%M:%S", &published)) {
795 log_fn(LOG_WARN, "Published time was unparseable"); goto err;
796 }
797 router->published_on = tor_timegm(&published);
798
799 NEXT_TOKEN();
800 if (tok->tp != K_ONION_KEY) {
801 log_fn(LOG_WARN, "Missing onion-key"); goto err;
802 }
803 NEXT_TOKEN();
804 if (tok->tp != _PUBLIC_KEY) {
805 log_fn(LOG_WARN, "Missing onion key"); goto err;
806 } /* XXX Check key length */
807 router->onion_pkey = tok->val.public_key;
808
809 NEXT_TOKEN();
810 if (tok->tp != K_LINK_KEY) {
811 log_fn(LOG_WARN, "Missing link-key"); goto err;
812 }
813 NEXT_TOKEN();
814 if (tok->tp != _PUBLIC_KEY) {
815 log_fn(LOG_WARN, "Missing link key"); goto err;
816 } /* XXX Check key length */
817 router->link_pkey = tok->val.public_key;
818
819 NEXT_TOKEN();
820 if (tok->tp != K_SIGNING_KEY) {
821 log_fn(LOG_WARN, "Missing signing-key"); goto err;
822 }
823 NEXT_TOKEN();
824 if (tok->tp != _PUBLIC_KEY) {
825 log_fn(LOG_WARN, "Missing signing key"); goto err;
826 }
827 router->identity_pkey = tok->val.public_key;
828
829 NEXT_TOKEN();
830 while (tok->tp == K_ACCEPT || tok->tp == K_REJECT) {
831 router_add_exit_policy(router, tok);
832 NEXT_TOKEN();
833 }
834
835 if (tok->tp != K_ROUTER_SIGNATURE) {
836 log_fn(LOG_WARN,"Missing router signature");
837 goto err;
838 }
839 NEXT_TOKEN();
840 if (tok->tp != _SIGNATURE) {
841 log_fn(LOG_WARN,"Missing router signature");
842 goto err;
843 }
844 assert (router->identity_pkey);
845
846 if ((t=crypto_pk_public_checksig(router->identity_pkey, tok->val.signature,
847 128, signed_digest)) != 20) {
848 log_fn(LOG_WARN, "Invalid signature %d",t);
849 goto err;
850 }
851 if (memcmp(digest, signed_digest, 20)) {
852 log_fn(LOG_WARN, "Mismatched signature");
853 goto err;
854 }
855
856 router_release_token(tok); /* free the signature */
857 return router;
858
859 err:
860 router_release_token(tok);
861 routerinfo_free(router);
862 return NULL;
863 #undef ARGS
864 #undef N_ARGS
865 #undef NEXT_TOKEN
866 }
867
868 /* Parse the exit policy in the string 's' and add it to 'router'.
869 */
870 int
871 router_add_exit_policy_from_string(routerinfo_t *router, const char *s)
872 {
873 directory_token_t tok;
874 const char *cp;
875 char *tmp;
876 int r;
877 int len, idx;
878
879 tok.tp = _NIL;
880
881 /* *s might not end with \n, so we need to extend it with one. */
882 len = strlen(s);
883 cp = tmp = tor_malloc(len+2);
884 for (idx = 0; idx < len; ++idx) {
885 tmp[idx] = tolower(s[idx]);
886 }
887 tmp[len]='\n';
888 tmp[len+1]='\0';
889 if (router_get_next_token(&cp, &tok)) {
890 log_fn(LOG_WARN, "Error reading exit policy: %s", tok.val.error);
891 free(tmp);
892 return -1;
893 }
894 if (tok.tp != K_ACCEPT && tok.tp != K_REJECT) {
895 log_fn(LOG_WARN, "Expected 'accept' or 'reject'.");
896 free(tmp);
897 return -1;
898 }
899
900 /* Now that we've gotten an exit policy, add it to the router. */
901 r = router_add_exit_policy(router, &tok);
902 free(tmp);
903 return r;
904 }
905
906 /* Given a K_ACCEPT or K_REJECT token and a router, create a new exit_policy_t
907 * corresponding to the token, and add it to 'router' */
908 static int router_add_exit_policy(routerinfo_t *router,
909 directory_token_t *tok) {
910
911 struct exit_policy_t *tmpe, *newe;
912 struct in_addr in;
913 char *arg, *address, *mask, *port, *endptr;
914 int bits;
915
916 assert(tok->tp == K_REJECT || tok->tp == K_ACCEPT);
917
918 if (tok->val.cmd.n_args != 1)
919 return -1;
920 arg = tok->val.cmd.args[0];
921
922 newe = tor_malloc_zero(sizeof(struct exit_policy_t));
923
924 newe->string = tor_malloc(8+strlen(arg));
925 if (tok->tp == K_REJECT) {
926 strcpy(newe->string, "reject ");
927 newe->policy_type = EXIT_POLICY_REJECT;
928 } else {
929 strcpy(newe->string, "accept ");
930 newe->policy_type = EXIT_POLICY_ACCEPT;
931 }
932 strcat(newe->string, arg);
933
934 address = arg;
935 mask = strchr(arg,'/');
936 port = strchr(mask?mask:arg,':');
937 if(!port)
938 goto policy_read_failed;
939 if (mask)
940 *mask++ = 0;
941 *port++ = 0;
942
943 if (strcmp(address, "*") == 0) {
944 newe->addr = 0;
945 } else if (inet_aton(address, &in) != 0) {
946 newe->addr = ntohl(in.s_addr);
947 } else {
948 log_fn(LOG_WARN, "Malformed IP %s in exit policy; rejecting.",
949 address);
950 goto policy_read_failed;
951 }
952 if (!mask) {
953 if (strcmp(address, "*") == 0)
954 newe->msk = 0;
955 else
956 newe->msk = 0xFFFFFFFFu;
957 } else {
958 endptr = NULL;
959 bits = (int) strtol(mask, &endptr, 10);
960 if (!*endptr) {
961 /* strtol handled the whole mask. */
962 newe->msk = ~((1<<(32-bits))-1);
963 } else if (inet_aton(mask, &in) != 0) {
964 newe->msk = ntohl(in.s_addr);
965 } else {
966 log_fn(LOG_WARN, "Malformed mask %s on exit policy; rejecting.",
967 mask);
968 goto policy_read_failed;
969 }
970 }
971 if (strcmp(port, "*") == 0) {
972 newe->prt = 0;
973 } else {
974 endptr = NULL;
975 newe->prt = strtol(port, &endptr, 10);
976 if (*endptr) {
977 log_fn(LOG_WARN, "Malformed port %s on exit policy; rejecting.",
978 port);
979 goto policy_read_failed;
980 }
981 }
982
983 in.s_addr = htonl(newe->addr);
984 address = tor_strdup(inet_ntoa(in));
985 in.s_addr = htonl(newe->msk);
986 log_fn(LOG_DEBUG,"%s %s/%s:%d",
987 newe->policy_type == EXIT_POLICY_REJECT ? "reject" : "accept",
988 address, inet_ntoa(in), newe->prt);
989 tor_free(address);
990
991 /* now link newe onto the end of exit_policy */
992
993 if(!router->exit_policy) {
994 router->exit_policy = newe;
995 return 0;
996 }
997
998 for(tmpe=router->exit_policy; tmpe->next; tmpe=tmpe->next) ;
999 tmpe->next = newe;
1000
1001 return 0;
1002
1003 policy_read_failed:
1004 assert(newe->string);
1005 log_fn(LOG_WARN,"Couldn't parse line '%s'. Dropping", newe->string);
1006 tor_free(newe->string);
1007 free(newe);
1008 return -1;
1009 }
1010
1011 /* ------------------------------------------------------------ */
1012 /* Tokenizer for router descriptors and directories. */
1013
1014 /* Every keyword takes either... */
1015 typedef enum {
1016 NO_ARGS, /* (1) no arguments, ever */
1017 ARGS, /* (2) a list of arguments separated by spaces */
1018 CONCAT_ARGS, /* or (3) the rest of the line, treated as a single argument. */
1019 } arg_syntax;
1020
1021 /* Table mapping keywods to token value and to argument rules. */
1022 static struct { char *t; int v; arg_syntax s; } token_table[] = {
1023 { "accept", K_ACCEPT, ARGS },
1024 { "directory-signature", K_DIRECTORY_SIGNATURE, NO_ARGS },
1025 { "reject", K_REJECT, ARGS },
1026 { "router", K_ROUTER, ARGS },
1027 { "recommended-software", K_RECOMMENDED_SOFTWARE, ARGS },
1028 { "signed-directory", K_SIGNED_DIRECTORY, NO_ARGS },
1029 { "signing-key", K_SIGNING_KEY, NO_ARGS },
1030 { "onion-key", K_ONION_KEY, NO_ARGS },
1031 { "link-key", K_LINK_KEY, NO_ARGS },
1032 { "router-signature", K_ROUTER_SIGNATURE, NO_ARGS },
1033 { "published", K_PUBLISHED, CONCAT_ARGS },
1034 { "running-routers", K_RUNNING_ROUTERS, ARGS },
1035 { "platform", K_PLATFORM, ARGS },
1036 { NULL, -1 }
1037 };
1038
1039 /* Free any malloced resources allocated for a token. Does not free
1040 * the token itself.
1041 */
1042 static void
1043 router_release_token(directory_token_t *tok)
1044 {
1045 int i;
1046 switch (tok->tp)
1047 {
1048 case _SIGNATURE:
1049 free(tok->val.signature);
1050 break;
1051 case _PUBLIC_KEY:
1052 crypto_free_pk_env(tok->val.public_key);
1053 break;
1054 case _ERR:
1055 case _EOF:
1056 case _NIL:
1057 break;
1058 default:
1059 for (i = 0; i < tok->val.cmd.n_args; ++i) {
1060 tor_free(tok->val.cmd.args[i]);
1061 }
1062 }
1063 tok->tp = _NIL;
1064 }
1065
1066 /* Helper function: read the next token from *s, and stores it into *tok.
1067 * If *tok already contains a token (tok->tp != _NIL), free the resources
1068 * held by *tok. Advance *s to a point immediately after the token.
1069 *
1070 *
1071 */
1072 static int
1073 _router_get_next_token(const char **s, directory_token_t *tok) {
1074 const char *next;
1075 crypto_pk_env_t *pkey = NULL;
1076 char *signature = NULL;
1077 int i, done;
1078
1079 tok->tp = _ERR;
1080 tok->val.error = "";
1081
1082 router_release_token(tok);
1083
1084 *s = eat_whitespace(*s);
1085 if (!**s) {
1086 tok->tp = _EOF;
1087 return 0;
1088 } else if (**s == '-') {
1089 next = strchr(*s, '\n');
1090 if (! next) { tok->val.error = "No newline at EOF"; return -1; }
1091 ++next;
1092 if (! strncmp(*s, OR_PUBLICKEY_BEGIN_TAG, next-*s)) {
1093 /* We have a ----BEGIN PUBLIC KEY----- */
1094 next = strstr(*s, OR_PUBLICKEY_END_TAG);
1095 if (!next) { tok->val.error = "No public key end tag found"; return -1; }
1096 next = strchr(next, '\n'); /* Part of OR_PUBLICKEY_END_TAG; can't fail.*/
1097 ++next;
1098 if (!(pkey = crypto_new_pk_env(CRYPTO_PK_RSA)))
1099 return -1;
1100 if (crypto_pk_read_public_key_from_string(pkey, *s, next-*s)) {
1101 crypto_free_pk_env(pkey);
1102 tok->val.error = "Couldn't parse public key.";
1103 return -1;
1104 }
1105 tok->tp = _PUBLIC_KEY;
1106 tok->val.public_key = pkey;
1107 *s = next;
1108 return 0;
1109 } else if (! strncmp(*s, OR_SIGNATURE_BEGIN_TAG, next-*s)) {
1110 /* We have a -----BEGIN SIGNATURE----- */
1111 /* Advance past newline; can't fail. */
1112 *s = strchr(*s, '\n');
1113 ++*s;
1114 /* Find end of base64'd data */
1115 next = strstr(*s, OR_SIGNATURE_END_TAG);
1116 if (!next) { tok->val.error = "No signature end tag found"; return -1; }
1117
1118 signature = tor_malloc(256);
1119 i = base64_decode(signature, 256, *s, next-*s);
1120 if (i<0) {
1121 free(signature);
1122 tok->val.error = "Error decoding signature."; return -1;
1123 } else if (i != 128) {
1124 free(signature);
1125 tok->val.error = "Bad length on decoded signature."; return -1;
1126 }
1127 tok->tp = _SIGNATURE;
1128 tok->val.signature = signature;
1129
1130 next = strchr(next, '\n'); /* Part of OR_SIGNATURE_END_TAG; can't fail.*/
1131 *s = next+1;
1132 return 0;
1133 } else {
1134 tok->val.error = "Unrecognized begin line"; return -1;
1135 }
1136 } else {
1137 next = find_whitespace(*s);
1138 if (!next) {
1139 tok->val.error = "Unexpected EOF"; return -1;
1140 }
1141 /* It's a keyword... but which one? */
1142 for (i = 0 ; token_table[i].t ; ++i) {
1143 if (!strncmp(token_table[i].t, *s, next-*s)) {
1144 /* We've found the keyword. */
1145 tok->tp = token_table[i].v;
1146
1147 if (token_table[i].s == ARGS) {
1148 /* This keyword takes multiple arguments. */
1149 i = 0;
1150 done = (*next == '\n');
1151 *s = eat_whitespace_no_nl(next);
1152 while (**s != '\n' && i < MAX_ARGS && !done) {
1153 next = find_whitespace(*s);
1154 if (*next == '\n')
1155 done = 1;
1156 tok->val.cmd.args[i++] = tor_strndup(*s,next-*s);
1157 *s = eat_whitespace_no_nl(next+1);
1158 }
1159 tok->val.cmd.n_args = i;
1160 if (i >= MAX_ARGS) {
1161 /* XXX free args[0..i] */
1162 tok->tp = _ERR;
1163 tok->val.error = "Too many arguments"; return -1;
1164 }
1165 } else if (token_table[i].s == CONCAT_ARGS) {
1166 /* The keyword takes the line as a single argument */
1167 *s = eat_whitespace_no_nl(next);
1168 next = strchr(*s, '\n');
1169 if (!next) {
1170 tok->tp = _ERR;
1171 tok->val.error = "Unexpected EOF"; return -1;
1172 }
1173 tok->val.cmd.args[0] = tor_strndup(*s,next-*s);
1174 tok->val.cmd.n_args = 1;
1175 *s = eat_whitespace_no_nl(next+1);
1176 } else {
1177 /* The keyword takes no arguments. */
1178 *s = eat_whitespace_no_nl(next);
1179 if (**s != '\n') {
1180 tok->tp = _ERR;
1181 tok->val.error = "Unexpected arguments"; return -1;
1182 }
1183 tok->val.cmd.n_args = 0;
1184 *s = eat_whitespace_no_nl(*s+1);
1185 }
1186 return 0;
1187 }
1188 }
1189 tok->val.error = "Unrecognized command"; return -1;
1190 }
1191 }
1192
1193 #ifdef DEBUG_ROUTER_TOKENS
1194 static void
1195 router_dump_token(directory_token_t *tok) {
1196 int i;
1197 switch(tok->tp)
1198 {
1199 case _SIGNATURE:
1200 puts("(signature)");
1201 return;
1202 case _PUBLIC_KEY:
1203 puts("(public key)");
1204 return;
1205 case _ERR:
1206 printf("(Error: %s\n)", tok->val.error);
1207 return;
1208 case _EOF:
1209 puts("EOF");
1210 return;
1211 case K_ACCEPT: printf("Accept"); break;
1212 case K_DIRECTORY_SIGNATURE: printf("Directory-Signature"); break;
1213 case K_REJECT: printf("Reject"); break;
1214 case K_RECOMMENDED_SOFTWARE: printf("Server-Software"); break;
1215 case K_ROUTER: printf("Router"); break;
1216 case K_SIGNED_DIRECTORY: printf("Signed-Directory"); break;
1217 case K_SIGNING_KEY: printf("Signing-Key"); break;
1218 case K_ONION_KEY: printf("Onion-key"); break;
1219 case K_LINK_KEY: printf("Link-key"); break;
1220 case K_ROUTER_SIGNATURE: printf("Router-signature"); break;
1221 case K_PUBLISHED: printf("Published"); break;
1222 case K_RUNNING_ROUTERS: printf("Running-routers"); break;
1223 case K_PLATFORM: printf("Platform"); break;
1224 default:
1225 printf("?????? %d\n", tok->tp); return;
1226 }
1227 for (i = 0; i < tok->val.cmd.n_args; ++i) {
1228 printf(" \"%s\"", tok->val.cmd.args[i]);
1229 }
1230 printf("\n");
1231 return;
1232 }
1233 static int
1234 router_get_next_token(const char **s, directory_token_t *tok) {
1235 int i;
1236 i = _router_get_next_token(s, tok);
1237 router_dump_token(tok);
1238 return i;
1239 }
1240 #else
1241 #define router_get_next_token _router_get_next_token
1242 #endif
1243
1244 /* Compute the SHA digest of the substring of s taken from the first
1245 * occurrence of start_str through the first newline after the first
1246 * subsequent occurrence of end_str; store the 20-byte result in 'digest';
1247 * return 0 on success.
1248 *
1249 * If no such substring exists, return -1.
1250 */
1251 static int router_get_hash_impl(const char *s, char *digest,
1252 const char *start_str,
1253 const char *end_str)
1254 {
1255 char *start, *end;
1256 start = strstr(s, start_str);
1257 if (!start) {
1258 log_fn(LOG_WARN,"couldn't find \"%s\"",start_str);
1259 return -1;
1260 }
1261 end = strstr(start+strlen(start_str), end_str);
1262 if (!end) {
1263 log_fn(LOG_WARN,"couldn't find \"%s\"",end_str);
1264 return -1;
1265 }
1266 end = strchr(end, '\n');
1267 if (!end) {
1268 log_fn(LOG_WARN,"couldn't find EOL");
1269 return -1;
1270 }
1271 ++end;
1272
1273 if (crypto_SHA_digest(start, end-start, digest)) {
1274 log_fn(LOG_WARN,"couldn't compute digest");
1275 return -1;
1276 }
1277
1278 return 0;
1279 }
1280
1281
1282
1283 /*
1284 Local Variables:
1285 mode:c
1286 indent-tabs-mode:nil
1287 c-basic-offset:2
1288 End:
1289 */
The Onion Router