Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 2be35f4d61
Branches Tags
tor
/
src
/
feature
/
dirparse
/
microdesc_parse.c

microdesc_parse.c 8.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267 
  1. /* Copyright (c) 2001 Matej Pfajfar.
    2. 

  2.  * Copyright (c) 2001-2004, Roger Dingledine.
    3. 

  3.  * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
    4. 

  4.  * Copyright (c) 2007-2018, The Tor Project, Inc. */
    5. 

  5. /* See LICENSE for licensing information */
    6. 

  6. 

  7. /**
    8. 

  8.  * \file microdesc_parse.c
    9. 

  9.  * \brief Code to parse and validate microdescriptors.
    10. 

  10.  **/
    11. 

  11. 

  12. #include "core/or/or.h"
    13. 

  13. 

  14. #include "app/config/config.h"
    15. 

  15. #include "core/or/policies.h"
    16. 

  16. #include "feature/dirparse/microdesc_parse.h"
    17. 

  17. #include "feature/dirparse/parsecommon.h"
    18. 

  18. #include "feature/dirparse/routerparse.h"
    19. 

  19. #include "feature/nodelist/microdesc.h"
    20. 

  20. #include "feature/nodelist/nickname.h"
    21. 

  21. #include "feature/relay/router.h"
    22. 

  22. #include "lib/crypt_ops/crypto_curve25519.h"
    23. 

  23. #include "lib/crypt_ops/crypto_ed25519.h"
    24. 

  24. #include "lib/crypt_ops/crypto_format.h"
    25. 

  25. #include "lib/memarea/memarea.h"
    26. 

  26. 

  27. #include "feature/nodelist/microdesc_st.h"
    28. 

  28. 

  29. /** List of tokens recognized in microdescriptors */
    30. 

  30. static token_rule_t microdesc_token_table[] = {
    31. 

  31.   T1_START("onion-key",        K_ONION_KEY,        NO_ARGS,     NEED_KEY_1024),
    32. 

  32.   T01("ntor-onion-key",        K_ONION_KEY_NTOR,   GE(1),       NO_OBJ ),
    33. 

  33.   T0N("id",                    K_ID,               GE(2),       NO_OBJ ),
    34. 

  34.   T0N("a",                     K_A,                GE(1),       NO_OBJ ),
    35. 

  35.   T01("family",                K_FAMILY,           ARGS,        NO_OBJ ),
    36. 

  36.   T01("p",                     K_P,                CONCAT_ARGS, NO_OBJ ),
    37. 

  37.   T01("p6",                    K_P6,               CONCAT_ARGS, NO_OBJ ),
    38. 

  38.   A01("@last-listed",          A_LAST_LISTED,      CONCAT_ARGS, NO_OBJ ),
    39. 

  39.   END_OF_TABLE
    40. 

  40. };
    41. 

  41. 

  42. /** Assuming that s starts with a microdesc, return the start of the
    43. 

  43.  * *NEXT* one.  Return NULL on "not found." */
    44. 

  44. static const char *
    45. 

  45. find_start_of_next_microdesc(const char *s, const char *eos)
    46. 

  46. {
    47. 

  47.   int started_with_annotations;
    48. 

  48.   s = eat_whitespace_eos(s, eos);
    49. 

  49.   if (!s)
    50. 

  50.     return NULL;
    51. 

  51. 

  52. #define CHECK_LENGTH() STMT_BEGIN \
    53. 

  53.     if (s+32 > eos)               \
    54. 

  54.       return NULL;                \
    55. 

  55.   STMT_END
    56. 

  56. 

  57. #define NEXT_LINE() STMT_BEGIN            \
    58. 

  58.     s = memchr(s, '\n', eos-s);           \
    59. 

  59.     if (!s || s+1 >= eos)                 \
    60. 

  60.       return NULL;                        \
    61. 

  61.     s++;                                  \
    62. 

  62.   STMT_END
    63. 

  63. 

  64.   CHECK_LENGTH();
    65. 

  65. 

  66.   started_with_annotations = (*s == '@');
    67. 

  67. 

  68.   if (started_with_annotations) {
    69. 

  69.     /* Start by advancing to the first non-annotation line. */
    70. 

  70.     while (*s == '@')
    71. 

  71.       NEXT_LINE();
    72. 

  72.   }
    73. 

  73.   CHECK_LENGTH();
    74. 

  74. 

  75.   /* Now we should be pointed at an onion-key line.  If we are, then skip
    76. 

  76.    * it. */
    77. 

  77.   if (!strcmpstart(s, "onion-key"))
    78. 

  78.     NEXT_LINE();
    79. 

  79. 

  80.   /* Okay, now we're pointed at the first line of the microdescriptor which is
    81. 

  81.      not an annotation or onion-key.  The next line that _is_ an annotation or
    82. 

  82.      onion-key is the start of the next microdescriptor. */
    83. 

  83.   while (s+32 < eos) {
    84. 

  84.     if (*s == '@' || !strcmpstart(s, "onion-key"))
    85. 

  85.       return s;
    86. 

  86.     NEXT_LINE();
    87. 

  87.   }
    88. 

  88.   return NULL;
    89. 

  89. 

  90. #undef CHECK_LENGTH
    91. 

  91. #undef NEXT_LINE
    92. 

  92. }
    93. 

  93. 

  94. /** Parse as many microdescriptors as are found from the string starting at
    95. 

  95.  * <b>s</b> and ending at <b>eos</b>.  If allow_annotations is set, read any
    96. 

  96.  * annotations we recognize and ignore ones we don't.
    97. 

  97.  *
    98. 

  98.  * If <b>saved_location</b> isn't SAVED_IN_CACHE, make a local copy of each
    99. 

  99.  * descriptor in the body field of each microdesc_t.
    100. 

  100.  *
    101. 

  101.  * Return all newly parsed microdescriptors in a newly allocated
    102. 

  102.  * smartlist_t. If <b>invalid_disgests_out</b> is provided, add a SHA256
    103. 

  103.  * microdesc digest to it for every microdesc that we found to be badly
    104. 

  104.  * formed. (This may cause duplicates) */
    105. 

  105. smartlist_t *
    106. 

  106. microdescs_parse_from_string(const char *s, const char *eos,
    107. 

  107.                              int allow_annotations,
    108. 

  108.                              saved_location_t where,
    109. 

  109.                              smartlist_t *invalid_digests_out)
    110. 

  110. {
    111. 

  111.   smartlist_t *tokens;
    112. 

  112.   smartlist_t *result;
    113. 

  113.   microdesc_t *md = NULL;
    114. 

  114.   memarea_t *area;
    115. 

  115.   const char *start = s;
    116. 

  116.   const char *start_of_next_microdesc;
    117. 

  117.   int flags = allow_annotations ? TS_ANNOTATIONS_OK : 0;
    118. 

  118.   const int copy_body = (where != SAVED_IN_CACHE);
    119. 

  119. 

  120.   directory_token_t *tok;
    121. 

  121. 

  122.   if (!eos)
    123. 

  123.     eos = s + strlen(s);
    124. 

  124. 

  125.   s = eat_whitespace_eos(s, eos);
    126. 

  126.   area = memarea_new();
    127. 

  127.   result = smartlist_new();
    128. 

  128.   tokens = smartlist_new();
    129. 

  129. 

  130.   while (s < eos) {
    131. 

  131.     int okay = 0;
    132. 

  132. 

  133.     start_of_next_microdesc = find_start_of_next_microdesc(s, eos);
    134. 

  134.     if (!start_of_next_microdesc)
    135. 

  135.       start_of_next_microdesc = eos;
    136. 

  136. 

  137.     md = tor_malloc_zero(sizeof(microdesc_t));
    138. 

  138.     {
    139. 

  139.       const char *cp = tor_memstr(s, start_of_next_microdesc-s,
    140. 

  140.                                   "onion-key");
    141. 

  141.       const int no_onion_key = (cp == NULL);
    142. 

  142.       if (no_onion_key) {
    143. 

  143.         cp = s; /* So that we have *some* junk to put in the body */
    144. 

  144.       }
    145. 

  145. 

  146.       md->bodylen = start_of_next_microdesc - cp;
    147. 

  147.       md->saved_location = where;
    148. 

  148.       if (copy_body)
    149. 

  149.         md->body = tor_memdup_nulterm(cp, md->bodylen);
    150. 

  150.       else
    151. 

  151.         md->body = (char*)cp;
    152. 

  152.       md->off = cp - start;
    153. 

  153.       crypto_digest256(md->digest, md->body, md->bodylen, DIGEST_SHA256);
    154. 

  154.       if (no_onion_key) {
    155. 

  155.         log_fn(LOG_PROTOCOL_WARN, LD_DIR, "Malformed or truncated descriptor");
    156. 

  156.         goto next;
    157. 

  157.       }
    158. 

  158.     }
    159. 

  159. 

  160.     if (tokenize_string(area, s, start_of_next_microdesc, tokens,
    161. 

  161.                         microdesc_token_table, flags)) {
    162. 

  162.       log_warn(LD_DIR, "Unparseable microdescriptor");
    163. 

  163.       goto next;
    164. 

  164.     }
    165. 

  165. 

  166.     if ((tok = find_opt_by_keyword(tokens, A_LAST_LISTED))) {
    167. 

  167.       if (parse_iso_time(tok->args[0], &md->last_listed)) {
    168. 

  168.         log_warn(LD_DIR, "Bad last-listed time in microdescriptor");
    169. 

  169.         goto next;
    170. 

  170.       }
    171. 

  171.     }
    172. 

  172. 

  173.     tok = find_by_keyword(tokens, K_ONION_KEY);
    174. 

  174.     if (!crypto_pk_public_exponent_ok(tok->key)) {
    175. 

  175.       log_warn(LD_DIR,
    176. 

  176.                "Relay's onion key had invalid exponent.");
    177. 

  177.       goto next;
    178. 

  178.     }
    179. 

  179.     router_set_rsa_onion_pkey(tok->key, &md->onion_pkey,
    180. 

  180.                               &md->onion_pkey_len);
    181. 

  181.     crypto_pk_free(tok->key);
    182. 

  182. 

  183.     if ((tok = find_opt_by_keyword(tokens, K_ONION_KEY_NTOR))) {
    184. 

  184.       curve25519_public_key_t k;
    185. 

  185.       tor_assert(tok->n_args >= 1);
    186. 

  186.       if (curve25519_public_from_base64(&k, tok->args[0]) < 0) {
    187. 

  187.         log_warn(LD_DIR, "Bogus ntor-onion-key in microdesc");
    188. 

  188.         goto next;
    189. 

  189.       }
    190. 

  190.       md->onion_curve25519_pkey =
    191. 

  191.         tor_memdup(&k, sizeof(curve25519_public_key_t));
    192. 

  192.     }
    193. 

  193. 

  194.     smartlist_t *id_lines = find_all_by_keyword(tokens, K_ID);
    195. 

  195.     if (id_lines) {
    196. 

  196.       SMARTLIST_FOREACH_BEGIN(id_lines, directory_token_t *, t) {
    197. 

  197.         tor_assert(t->n_args >= 2);
    198. 

  198.         if (!strcmp(t->args[0], "ed25519")) {
    199. 

  199.           if (md->ed25519_identity_pkey) {
    200. 

  200.             log_warn(LD_DIR, "Extra ed25519 key in microdesc");
    201. 

  201.             smartlist_free(id_lines);
    202. 

  202.             goto next;
    203. 

  203.           }
    204. 

  204.           ed25519_public_key_t k;
    205. 

  205.           if (ed25519_public_from_base64(&k, t->args[1])<0) {
    206. 

  206.             log_warn(LD_DIR, "Bogus ed25519 key in microdesc");
    207. 

  207.             smartlist_free(id_lines);
    208. 

  208.             goto next;
    209. 

  209.           }
    210. 

  210.           md->ed25519_identity_pkey = tor_memdup(&k, sizeof(k));
    211. 

  211.         }
    212. 

  212.       } SMARTLIST_FOREACH_END(t);
    213. 

  213.       smartlist_free(id_lines);
    214. 

  214.     }
    215. 

  215. 

  216.     {
    217. 

  217.       smartlist_t *a_lines = find_all_by_keyword(tokens, K_A);
    218. 

  218.       if (a_lines) {
    219. 

  219.         find_single_ipv6_orport(a_lines, &md->ipv6_addr, &md->ipv6_orport);
    220. 

  220.         smartlist_free(a_lines);
    221. 

  221.       }
    222. 

  222.     }
    223. 

  223. 

  224.     if ((tok = find_opt_by_keyword(tokens, K_FAMILY))) {
    225. 

  225.       int i;
    226. 

  226.       md->family = smartlist_new();
    227. 

  227.       for (i=0;i<tok->n_args;++i) {
    228. 

  228.         if (!is_legal_nickname_or_hexdigest(tok->args[i])) {
    229. 

  229.           log_warn(LD_DIR, "Illegal nickname %s in family line",
    230. 

  230.                    escaped(tok->args[i]));
    231. 

  231.           goto next;
    232. 

  232.         }
    233. 

  233.         smartlist_add_strdup(md->family, tok->args[i]);
    234. 

  234.       }
    235. 

  235.     }
    236. 

  236. 

  237.     if ((tok = find_opt_by_keyword(tokens, K_P))) {
    238. 

  238.       md->exit_policy = parse_short_policy(tok->args[0]);
    239. 

  239.     }
    240. 

  240.     if ((tok = find_opt_by_keyword(tokens, K_P6))) {
    241. 

  241.       md->ipv6_exit_policy = parse_short_policy(tok->args[0]);
    242. 

  242.     }
    243. 

  243. 

  244.     smartlist_add(result, md);
    245. 

  245.     okay = 1;
    246. 

  246. 

  247.     md = NULL;
    248. 

  248.   next:
    249. 

  249.     if (! okay && invalid_digests_out) {
    250. 

  250.       smartlist_add(invalid_digests_out,
    251. 

  251.                     tor_memdup(md->digest, DIGEST256_LEN));
    252. 

  252.     }
    253. 

  253.     microdesc_free(md);
    254. 

  254.     md = NULL;
    255. 

  255. 

  256.     SMARTLIST_FOREACH(tokens, directory_token_t *, t, token_clear(t));
    257. 

  257.     memarea_clear(area);
    258. 

  258.     smartlist_clear(tokens);
    259. 

  259.     s = start_of_next_microdesc;
    260. 

  260.   }
    261. 

  261. 

  262.   SMARTLIST_FOREACH(tokens, directory_token_t *, t, token_clear(t));
    263. 

  263.   memarea_drop_all(area);
    264. 

  264.   smartlist_free(tokens);
    265. 

  265. 

  266.   return result;
    267. 

  267. }
    268.