| blob | cb4d6c02e5c6b474f2a05dbb0b42ec208d0a17ff |
1 /* Copyright (c) 2016-2017, The Tor Project, Inc. */
2 /* See LICENSE for licensing information */
4 /**
5 * \file hs_intropoint.c
6 * \brief Implement next generation introductions point functionality
7 **/
9 #define HS_INTROPOINT_PRIVATE
20 /* Trunnel */
31 /** Extract the authentication key from an ESTABLISH_INTRO or INTRODUCE1 using
32 * the given <b>cell_type</b> from <b>cell</b> and place it in
33 * <b>auth_key_out</b>. */
34 STATIC void
37 {
46 {
51 }
53 {
58 }
60 /* Getting here is really bad as it means we got a unknown cell type from
61 * this file where every call has an hardcoded value. */
63 }
67 }
69 /** We received an ESTABLISH_INTRO <b>cell</b>. Verify its signature and MAC,
70 * given <b>circuit_key_material</b>. Return 0 on success else -1 on error. */
71 STATIC int
75 {
76 /* We only reach this function if the first byte of the cell is 0x02 which
77 * means that auth_key_type is of ed25519 type, hence this check should
78 * always pass. See hs_intro_received_establish_intro(). */
81 }
83 /* Make sure the auth key length is of the right size for this type. For
84 * EXTRA safety, we check both the size of the array and the length which
85 * must be the same. Safety first!*/
91 }
95 /* Verify the sig */
96 {
97 ed25519_signature_t sig_struct;
101 /* Make sure the signature length is of the right size. For EXTRA safety,
102 * we check both the size of the array and the length which must be the
103 * same. Safety first!*/
109 }
110 /* We are now sure that sig_len is of the right size. */
113 ed25519_public_key_t auth_key;
119 ESTABLISH_INTRO_SIG_PREFIX,
125 }
126 }
128 /* Verify the MAC */
129 {
139 }
140 }
143 }
145 /* Send an INTRO_ESTABLISHED cell to <b>circ</b>. */
148 {
157 /* Build the cell payload. */
162 /* Encode the cell to binary format. */
167 cell);
171 RELAY_COMMAND_INTRO_ESTABLISHED,
173 NULL);
174 /* On failure, the above function will close the circuit. */
178 }
180 /** We received an ESTABLISH_INTRO <b>parsed_cell</b> on <b>circ</b>. It's
181 * well-formed and passed our verifications. Perform appropriate actions to
182 * establish an intro point. */
183 static int
186 {
187 /* Get the auth key of this intro point */
188 ed25519_public_key_t auth_key;
190 parsed_cell);
192 /* Then notify the hidden service that the intro point is established by
193 sending an INTRO_ESTABLISHED cell */
197 }
199 /* Associate intro point auth key with this circuit. */
201 /* Repurpose this circuit into an intro circuit. */
205 }
207 /** We just received an ESTABLISH_INTRO cell in <b>circ</b> with payload in
208 * <b>request</b>. Handle it by making <b>circ</b> an intro circuit. Return 0
209 * if everything went well, or -1 if there were errors. */
210 static int
213 {
223 /* Check that the circuit is in shape to become an intro point */
226 }
228 /* Parse the cell */
236 }
245 }
247 /* This cell is legit. Take the appropriate actions. */
251 }
253 /* We are done! */
257 err:
260 done:
263 }
265 /* Return True if circuit is suitable for being an intro circuit. */
266 static int
269 {
273 /* Basic circuit state sanity checks. */
278 }
284 }
286 /* Suitable. */
288 }
290 /* Return True if circuit is suitable for being service-side intro circuit. */
291 int
293 {
295 }
297 /* We just received an ESTABLISH_INTRO cell in <b>circ</b>. Figure out of it's
298 * a legacy or a next gen cell, and pass it to the appropriate handler. */
299 int
302 {
309 }
311 /* Using the first byte of the cell, figure out the version of
312 * ESTABLISH_INTRO and pass it to the appropriate cell handler */
324 }
326 err:
329 }
331 /* Send an INTRODUCE_ACK cell onto the circuit <b>circ</b> with the status
332 * value in <b>status</b>. Depending on the status, it can be ACK or a NACK.
333 * Return 0 on success else a negative value on error which will close the
334 * circuit. */
335 static int
337 {
346 /* Setup the INTRODUCE_ACK cell. We have no extensions so the N_EXTENSIONS
347 * field is set to 0 by default with a new object. */
350 /* We have no cell extensions in an INTRODUCE_ACK cell. */
354 /* A wrong status is a very bad code flow error as this value is controlled
355 * by the code in this file and not an external input. This means we use a
356 * code that is not known by the trunnel ABI. */
358 /* Encode the payload. We should never fail to get the encoded length. */
366 RELAY_COMMAND_INTRODUCE_ACK,
368 NULL);
369 /* On failure, the above function will close the circuit. */
373 }
375 /* Validate a parsed INTRODUCE1 <b>cell</b>. Return 0 if valid or else a
376 * negative value for an invalid cell that should be NACKed. */
377 STATIC int
379 {
385 /* This code path SHOULD NEVER be reached if the cell is a legacy type so
386 * safety net here. The legacy ID must be zeroes in this case. */
391 }
393 /* The auth key of an INTRODUCE1 should be of type ed25519 thus leading to a
394 * known fixed length as well. */
396 HS_INTRO_AUTH_KEY_TYPE_ED25519) {
398 "Rejecting invalid INTRODUCE1 cell auth key type. "
401 }
405 "Rejecting invalid INTRODUCE1 cell auth key length. "
408 }
411 "Rejecting invalid INTRODUCE1 cell encrypted length. "
414 }
417 invalid:
419 }
421 /* We just received a non legacy INTRODUCE1 cell on <b>client_circ</b> with
422 * the payload in <b>request</b> of size <b>request_len</b>. Return 0 if
423 * everything went well, or -1 if an error occured. This function is in charge
424 * of sending back an INTRODUCE_ACK cell and will close client_circ on error.
425 */
426 STATIC int
429 {
438 /* Parse cell. Note that we can only parse the non encrypted section for
439 * which we'll use the authentication key to find the service introduction
440 * circuit and relay the cell on it. */
442 request_len);
447 /* Inform client that the INTRODUCE1 has a bad format. */
450 }
452 /* Once parsed validate the cell format. */
454 /* Inform client that the INTRODUCE1 has bad format. */
457 }
459 /* Find introduction circuit through our circuit map. */
460 {
461 ed25519_public_key_t auth_key;
471 /* Inform the client that we don't know the requested service ID. */
474 }
475 }
477 /* Relay the cell to the service on its intro circuit with an INTRODUCE2
478 * cell which is the same exact payload. */
480 RELAY_COMMAND_INTRODUCE2,
483 /* Inform the client that we can't relay the cell. */
486 }
488 /* Success! Send an INTRODUCE_ACK success status onto the client circuit. */
492 send_ack:
493 /* Send INTRODUCE_ACK or INTRODUCE_NACK to client */
497 /* Circuit has been closed on failure of transmission. */
499 }
501 /* We just sent a NACK that is a non success status code so close the
502 * circuit because it's not useful to keep it open. Remember, a client can
503 * only send one INTRODUCE1 cell on a circuit. */
505 }
506 done:
509 }
511 /* Identify if the encoded cell we just received is a legacy one or not. The
512 * <b>request</b> should be at least DIGEST_LEN bytes long. */
513 STATIC int
515 {
518 /* If the first 20 bytes of the cell (DIGEST_LEN) are NOT zeroes, it
519 * indicates a legacy cell (v2). */
521 /* Legacy cell. */
523 }
524 /* Not a legacy cell. */
526 }
528 /* Return true iff the circuit <b>circ</b> is suitable for receiving an
529 * INTRODUCE1 cell. */
530 STATIC int
532 {
535 /* Is this circuit an intro point circuit? */
538 }
542 "Blocking multiple introductions on the same circuit. "
543 "Someone might be trying to attack a hidden service through "
546 }
549 }
551 /* We just received an INTRODUCE1 cell on <b>circ</b>. Figure out which type
552 * it is and pass it to the appropriate handler. Return 0 on success else a
553 * negative value and the circuit is closed. */
554 int
557 {
563 /* A cell that can't hold a DIGEST_LEN is invalid as we need to check if
564 * it's a legacy cell or not using the first DIGEST_LEN bytes. */
568 }
570 /* Make sure we have a circuit that can have an INTRODUCE1 cell on it. */
572 /* We do not send a NACK because the circuit is not suitable for any kind
573 * of response or transmission as it's a violation of the protocol. */
575 }
576 /* Mark the circuit that we got this cell. None are allowed after this as a
577 * DoS mitigation since one circuit with one client can hammer a service. */
580 /* We are sure here to have at least DIGEST_LEN bytes. */
582 /* Handle a legacy cell. */
585 /* Handle a non legacy cell. */
587 }
590 err:
593 }
595 /* Clear memory allocated by the given intropoint object ip (but don't free the
596 * object itself). */
597 void
599 {
602 }
608 }