test_hs.c 40 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005
  1. /* Copyright (c) 2007-2019, The Tor Project, Inc. */
  2. /* See LICENSE for licensing information */
  3. /**
  4. * \file test_hs.c
  5. * \brief Unit tests for hidden service.
  6. **/
  7. #define CONTROL_EVENTS_PRIVATE
  8. #define CIRCUITBUILD_PRIVATE
  9. #define RENDCOMMON_PRIVATE
  10. #define RENDSERVICE_PRIVATE
  11. #define HS_SERVICE_PRIVATE
  12. #include "core/or/or.h"
  13. #include "test/test.h"
  14. #include "feature/control/control.h"
  15. #include "feature/control/control_events.h"
  16. #include "feature/control/control_fmt.h"
  17. #include "app/config/config.h"
  18. #include "feature/hs/hs_common.h"
  19. #include "feature/rend/rendcommon.h"
  20. #include "feature/rend/rendservice.h"
  21. #include "feature/nodelist/routerlist.h"
  22. #include "feature/nodelist/routerset.h"
  23. #include "core/or/circuitbuild.h"
  24. #include "feature/nodelist/node_st.h"
  25. #include "feature/rend/rend_encoded_v2_service_descriptor_st.h"
  26. #include "feature/rend/rend_intro_point_st.h"
  27. #include "feature/nodelist/routerinfo_st.h"
  28. #include "test/test_helpers.h"
  29. #ifdef HAVE_UNISTD_H
  30. #include <unistd.h>
  31. #endif
  32. /* mock ID digest and longname for node that's in nodelist */
  33. #define HSDIR_EXIST_ID "\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA" \
  34. "\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA"
  35. #define STR_HSDIR_EXIST_LONGNAME \
  36. "$AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=TestDir"
  37. /* mock ID digest and longname for node that's not in nodelist */
  38. #define HSDIR_NONE_EXIST_ID "\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB" \
  39. "\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB"
  40. #define STR_HSDIR_NONE_EXIST_LONGNAME \
  41. "$BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB"
  42. /* DuckDuckGo descriptor as an example. This one has extra "\r" at the end so
  43. * the control port is happy. */
  44. static const char *hs_desc_content_control = "\
  45. rendezvous-service-descriptor g5ojobzupf275beh5ra72uyhb3dkpxwg\r\n\
  46. version 2\r\n\
  47. permanent-key\r\n\
  48. -----BEGIN RSA PUBLIC KEY-----\r\n\
  49. MIGJAoGBAJ/SzzgrXPxTlFrKVhXh3buCWv2QfcNgncUpDpKouLn3AtPH5Ocys0jE\r\n\
  50. aZSKdvaiQ62md2gOwj4x61cFNdi05tdQjS+2thHKEm/KsB9BGLSLBNJYY356bupg\r\n\
  51. I5gQozM65ENelfxYlysBjJ52xSDBd8C4f/p9umdzaaaCmzXG/nhzAgMBAAE=\r\n\
  52. -----END RSA PUBLIC KEY-----\r\n\
  53. secret-id-part anmjoxxwiupreyajjt5yasimfmwcnxlf\r\n\
  54. publication-time 2015-03-11 19:00:00\r\n\
  55. protocol-versions 2,3\r\n\
  56. introduction-points\r\n\
  57. -----BEGIN MESSAGE-----\r\n\
  58. aW50cm9kdWN0aW9uLXBvaW50IDd1bnd4cmg2dG5kNGh6eWt1Z3EzaGZzdHduc2ll\r\n\
  59. cmhyCmlwLWFkZHJlc3MgMTg4LjEzOC4xMjEuMTE4Cm9uaW9uLXBvcnQgOTAwMQpv\r\n\
  60. bmlvbi1rZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dC\r\n\
  61. QUxGRVVyeVpDbk9ROEhURmV5cDVjMTRObWVqL1BhekFLTTBxRENTNElKUWh0Y3g1\r\n\
  62. NXpRSFdOVWIKQ2hHZ0JqR1RjV3ZGRnA0N3FkdGF6WUZhVXE2c0lQKzVqeWZ5b0Q4\r\n\
  63. UmJ1bzBwQmFWclJjMmNhYUptWWM0RDh6Vgpuby9sZnhzOVVaQnZ1cWY4eHIrMDB2\r\n\
  64. S0JJNmFSMlA2OE1WeDhrMExqcUpUU2RKOE9idm9yQWdNQkFBRT0KLS0tLS1FTkQg\r\n\
  65. UlNBIFBVQkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQ\r\n\
  66. VUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTnJHb0ozeTlHNXQzN2F2ekI1cTlwN1hG\r\n\
  67. VUplRUVYMUNOaExnWmJXWGJhVk5OcXpoZFhyL0xTUQppM1Z6dW5OaUs3cndUVnE2\r\n\
  68. K2QyZ1lRckhMMmIvMXBBY3ZKWjJiNSs0bTRRc0NibFpjRENXTktRbHJnRWN5WXRJ\r\n\
  69. CkdscXJTbFFEaXA0ZnNrUFMvNDVkWTI0QmJsQ3NGU1k3RzVLVkxJck4zZFpGbmJr\r\n\
  70. NEZIS1hBZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJv\r\n\
  71. ZHVjdGlvbi1wb2ludCBiNGM3enlxNXNheGZzN2prNXFibG1wN3I1b3pwdHRvagpp\r\n\
  72. cC1hZGRyZXNzIDEwOS4xNjkuNDUuMjI2Cm9uaW9uLXBvcnQgOTAwMQpvbmlvbi1r\r\n\
  73. ZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dCQU8xSXpw\r\n\
  74. WFFUTUY3RXZUb1NEUXpzVnZiRVFRQUQrcGZ6NzczMVRXZzVaUEJZY1EyUkRaeVp4\r\n\
  75. OEQKNUVQSU1FeUE1RE83cGd0ak5LaXJvYXJGMC8yempjMkRXTUlSaXZyU29YUWVZ\r\n\
  76. ZXlMM1pzKzFIajJhMDlCdkYxZAp6MEswblRFdVhoNVR5V3lyMHdsbGI1SFBnTlI0\r\n\
  77. MS9oYkprZzkwZitPVCtIeGhKL1duUml2QWdNQkFBRT0KLS0tLS1FTkQgUlNBIFBV\r\n\
  78. QkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQVUJMSUMg\r\n\
  79. S0VZLS0tLS0KTUlHSkFvR0JBSzNWZEJ2ajFtQllLL3JrcHNwcm9Ub0llNUtHVmth\r\n\
  80. QkxvMW1tK1I2YUVJek1VZFE1SjkwNGtyRwpCd3k5NC8rV0lGNFpGYXh5Z2phejl1\r\n\
  81. N2pKY1k3ZGJhd1pFeG1hYXFCRlRwL2h2ZG9rcHQ4a1ByRVk4OTJPRHJ1CmJORUox\r\n\
  82. N1FPSmVMTVZZZk5Kcjl4TWZCQ3JQai8zOGh2RUdrbWVRNmRVWElvbVFNaUJGOVRB\r\n\
  83. Z01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJvZHVjdGlv\r\n\
  84. bi1wb2ludCBhdjVtcWl0Y2Q3cjJkandsYmN0c2Jlc2R3eGt0ZWtvegppcC1hZGRy\r\n\
  85. ZXNzIDE0NC43Ni44LjczCm9uaW9uLXBvcnQgNDQzCm9uaW9uLWtleQotLS0tLUJF\r\n\
  86. R0lOIFJTQSBQVUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTzVweVZzQmpZQmNmMXBE\r\n\
  87. dklHUlpmWXUzQ05nNldka0ZLMGlvdTBXTGZtejZRVDN0NWhzd3cyVwpjejlHMXhx\r\n\
  88. MmN0Nkd6VWkrNnVkTDlITTRVOUdHTi9BbW8wRG9GV1hKWHpBQkFXd2YyMVdsd1lW\r\n\
  89. eFJQMHRydi9WCkN6UDkzcHc5OG5vSmdGUGRUZ05iMjdKYmVUZENLVFBrTEtscXFt\r\n\
  90. b3NveUN2RitRa25vUS9BZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0t\r\n\
  91. LS0tCnNlcnZpY2Uta2V5Ci0tLS0tQkVHSU4gUlNBIFBVQkxJQyBLRVktLS0tLQpN\r\n\
  92. SUdKQW9HQkFMVjNKSmtWN3lTNU9jc1lHMHNFYzFQOTVRclFRR3ZzbGJ6Wi9zRGxl\r\n\
  93. RlpKYXFSOUYvYjRUVERNClNGcFMxcU1GbldkZDgxVmRGMEdYRmN2WVpLamRJdHU2\r\n\
  94. SndBaTRJeEhxeXZtdTRKdUxrcXNaTEFLaXRLVkx4eGsKeERlMjlDNzRWMmJrOTRJ\r\n\
  95. MEgybTNKS2tzTHVwc3VxWWRVUmhOVXN0SElKZmgyZmNIalF0bEFnTUJBQUU9Ci0t\r\n\
  96. LS0tRU5EIFJTQSBQVUJMSUMgS0VZLS0tLS0KCg==\r\n\
  97. -----END MESSAGE-----\r\n\
  98. signature\r\n\
  99. -----BEGIN SIGNATURE-----\r\n\
  100. d4OuCE5OLAOnRB6cQN6WyMEmg/BHem144Vec+eYgeWoKwx3MxXFplUjFxgnMlmwN\r\n\
  101. PcftsZf2ztN0sbNCtPgDL3d0PqvxY3iHTQAI8EbaGq/IAJUZ8U4y963dD5+Bn6JQ\r\n\
  102. myE3ctmh0vy5+QxSiRjmQBkuEpCyks7LvWvHYrhnmcg=\r\n\
  103. -----END SIGNATURE-----";
  104. /* DuckDuckGo descriptor as an example. */
  105. static const char *hs_desc_content = "\
  106. rendezvous-service-descriptor g5ojobzupf275beh5ra72uyhb3dkpxwg\n\
  107. version 2\n\
  108. permanent-key\n\
  109. -----BEGIN RSA PUBLIC KEY-----\n\
  110. MIGJAoGBAJ/SzzgrXPxTlFrKVhXh3buCWv2QfcNgncUpDpKouLn3AtPH5Ocys0jE\n\
  111. aZSKdvaiQ62md2gOwj4x61cFNdi05tdQjS+2thHKEm/KsB9BGLSLBNJYY356bupg\n\
  112. I5gQozM65ENelfxYlysBjJ52xSDBd8C4f/p9umdzaaaCmzXG/nhzAgMBAAE=\n\
  113. -----END RSA PUBLIC KEY-----\n\
  114. secret-id-part anmjoxxwiupreyajjt5yasimfmwcnxlf\n\
  115. publication-time 2015-03-11 19:00:00\n\
  116. protocol-versions 2,3\n\
  117. introduction-points\n\
  118. -----BEGIN MESSAGE-----\n\
  119. aW50cm9kdWN0aW9uLXBvaW50IDd1bnd4cmg2dG5kNGh6eWt1Z3EzaGZzdHduc2ll\n\
  120. cmhyCmlwLWFkZHJlc3MgMTg4LjEzOC4xMjEuMTE4Cm9uaW9uLXBvcnQgOTAwMQpv\n\
  121. bmlvbi1rZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dC\n\
  122. QUxGRVVyeVpDbk9ROEhURmV5cDVjMTRObWVqL1BhekFLTTBxRENTNElKUWh0Y3g1\n\
  123. NXpRSFdOVWIKQ2hHZ0JqR1RjV3ZGRnA0N3FkdGF6WUZhVXE2c0lQKzVqeWZ5b0Q4\n\
  124. UmJ1bzBwQmFWclJjMmNhYUptWWM0RDh6Vgpuby9sZnhzOVVaQnZ1cWY4eHIrMDB2\n\
  125. S0JJNmFSMlA2OE1WeDhrMExqcUpUU2RKOE9idm9yQWdNQkFBRT0KLS0tLS1FTkQg\n\
  126. UlNBIFBVQkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQ\n\
  127. VUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTnJHb0ozeTlHNXQzN2F2ekI1cTlwN1hG\n\
  128. VUplRUVYMUNOaExnWmJXWGJhVk5OcXpoZFhyL0xTUQppM1Z6dW5OaUs3cndUVnE2\n\
  129. K2QyZ1lRckhMMmIvMXBBY3ZKWjJiNSs0bTRRc0NibFpjRENXTktRbHJnRWN5WXRJ\n\
  130. CkdscXJTbFFEaXA0ZnNrUFMvNDVkWTI0QmJsQ3NGU1k3RzVLVkxJck4zZFpGbmJr\n\
  131. NEZIS1hBZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJv\n\
  132. ZHVjdGlvbi1wb2ludCBiNGM3enlxNXNheGZzN2prNXFibG1wN3I1b3pwdHRvagpp\n\
  133. cC1hZGRyZXNzIDEwOS4xNjkuNDUuMjI2Cm9uaW9uLXBvcnQgOTAwMQpvbmlvbi1r\n\
  134. ZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dCQU8xSXpw\n\
  135. WFFUTUY3RXZUb1NEUXpzVnZiRVFRQUQrcGZ6NzczMVRXZzVaUEJZY1EyUkRaeVp4\n\
  136. OEQKNUVQSU1FeUE1RE83cGd0ak5LaXJvYXJGMC8yempjMkRXTUlSaXZyU29YUWVZ\n\
  137. ZXlMM1pzKzFIajJhMDlCdkYxZAp6MEswblRFdVhoNVR5V3lyMHdsbGI1SFBnTlI0\n\
  138. MS9oYkprZzkwZitPVCtIeGhKL1duUml2QWdNQkFBRT0KLS0tLS1FTkQgUlNBIFBV\n\
  139. QkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQVUJMSUMg\n\
  140. S0VZLS0tLS0KTUlHSkFvR0JBSzNWZEJ2ajFtQllLL3JrcHNwcm9Ub0llNUtHVmth\n\
  141. QkxvMW1tK1I2YUVJek1VZFE1SjkwNGtyRwpCd3k5NC8rV0lGNFpGYXh5Z2phejl1\n\
  142. N2pKY1k3ZGJhd1pFeG1hYXFCRlRwL2h2ZG9rcHQ4a1ByRVk4OTJPRHJ1CmJORUox\n\
  143. N1FPSmVMTVZZZk5Kcjl4TWZCQ3JQai8zOGh2RUdrbWVRNmRVWElvbVFNaUJGOVRB\n\
  144. Z01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJvZHVjdGlv\n\
  145. bi1wb2ludCBhdjVtcWl0Y2Q3cjJkandsYmN0c2Jlc2R3eGt0ZWtvegppcC1hZGRy\n\
  146. ZXNzIDE0NC43Ni44LjczCm9uaW9uLXBvcnQgNDQzCm9uaW9uLWtleQotLS0tLUJF\n\
  147. R0lOIFJTQSBQVUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTzVweVZzQmpZQmNmMXBE\n\
  148. dklHUlpmWXUzQ05nNldka0ZLMGlvdTBXTGZtejZRVDN0NWhzd3cyVwpjejlHMXhx\n\
  149. MmN0Nkd6VWkrNnVkTDlITTRVOUdHTi9BbW8wRG9GV1hKWHpBQkFXd2YyMVdsd1lW\n\
  150. eFJQMHRydi9WCkN6UDkzcHc5OG5vSmdGUGRUZ05iMjdKYmVUZENLVFBrTEtscXFt\n\
  151. b3NveUN2RitRa25vUS9BZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0t\n\
  152. LS0tCnNlcnZpY2Uta2V5Ci0tLS0tQkVHSU4gUlNBIFBVQkxJQyBLRVktLS0tLQpN\n\
  153. SUdKQW9HQkFMVjNKSmtWN3lTNU9jc1lHMHNFYzFQOTVRclFRR3ZzbGJ6Wi9zRGxl\n\
  154. RlpKYXFSOUYvYjRUVERNClNGcFMxcU1GbldkZDgxVmRGMEdYRmN2WVpLamRJdHU2\n\
  155. SndBaTRJeEhxeXZtdTRKdUxrcXNaTEFLaXRLVkx4eGsKeERlMjlDNzRWMmJrOTRJ\n\
  156. MEgybTNKS2tzTHVwc3VxWWRVUmhOVXN0SElKZmgyZmNIalF0bEFnTUJBQUU9Ci0t\n\
  157. LS0tRU5EIFJTQSBQVUJMSUMgS0VZLS0tLS0KCg==\n\
  158. -----END MESSAGE-----\n\
  159. signature\n\
  160. -----BEGIN SIGNATURE-----\n\
  161. d4OuCE5OLAOnRB6cQN6WyMEmg/BHem144Vec+eYgeWoKwx3MxXFplUjFxgnMlmwN\n\
  162. PcftsZf2ztN0sbNCtPgDL3d0PqvxY3iHTQAI8EbaGq/IAJUZ8U4y963dD5+Bn6JQ\n\
  163. myE3ctmh0vy5+QxSiRjmQBkuEpCyks7LvWvHYrhnmcg=\n\
  164. -----END SIGNATURE-----";
  165. /* Helper global variable for hidden service descriptor event test.
  166. * It's used as a pointer to dynamically created message buffer in
  167. * send_control_event_string_replacement function, which mocks
  168. * send_control_event_string function.
  169. *
  170. * Always free it after use! */
  171. static char *received_msg = NULL;
  172. /** Mock function for send_control_event_string
  173. */
  174. static void
  175. queue_control_event_string_replacement(uint16_t event, char *msg)
  176. {
  177. (void) event;
  178. tor_free(received_msg);
  179. received_msg = msg;
  180. }
  181. /** Mock function for node_describe_longname_by_id, it returns either
  182. * STR_HSDIR_EXIST_LONGNAME or STR_HSDIR_NONE_EXIST_LONGNAME
  183. */
  184. static const char *
  185. node_describe_longname_by_id_replacement(const char *id_digest)
  186. {
  187. if (!strcmp(id_digest, HSDIR_EXIST_ID)) {
  188. return STR_HSDIR_EXIST_LONGNAME;
  189. } else {
  190. return STR_HSDIR_NONE_EXIST_LONGNAME;
  191. }
  192. }
  193. /** Test that we can parse a hardcoded v2 HS desc. */
  194. static void
  195. test_hs_parse_static_v2_desc(void *arg)
  196. {
  197. int ret;
  198. rend_encoded_v2_service_descriptor_t desc;
  199. (void) arg;
  200. /* Test an obviously not parseable string */
  201. desc.desc_str = tor_strdup("ceci n'est pas un HS descriptor");
  202. ret = rend_desc_v2_is_parsable(&desc);
  203. tor_free(desc.desc_str);
  204. tt_int_op(ret, OP_EQ, 0);
  205. /* Test an actual descriptor */
  206. desc.desc_str = tor_strdup(hs_desc_content);
  207. ret = rend_desc_v2_is_parsable(&desc);
  208. tor_free(desc.desc_str);
  209. tt_int_op(ret, OP_EQ, 1);
  210. done: ;
  211. }
  212. /** Make sure each hidden service descriptor async event generation
  213. *
  214. * function generates the message in expected format.
  215. */
  216. static void
  217. test_hs_desc_event(void *arg)
  218. {
  219. #define STR_HS_ADDR "ajhb7kljbiru65qo"
  220. #define STR_HS_CONTENT_DESC_ID "g5ojobzupf275beh5ra72uyhb3dkpxwg"
  221. #define STR_DESC_ID_BASE32 "hba3gmcgpfivzfhx5rtfqkfdhv65yrj3"
  222. int ret;
  223. rend_data_v2_t rend_query;
  224. const char *expected_msg;
  225. char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
  226. (void) arg;
  227. MOCK(queue_control_event_string,
  228. queue_control_event_string_replacement);
  229. MOCK(node_describe_longname_by_id,
  230. node_describe_longname_by_id_replacement);
  231. /* setup rend_query struct */
  232. memset(&rend_query, 0, sizeof(rend_query));
  233. rend_query.base_.version = 2;
  234. strncpy(rend_query.onion_address, STR_HS_ADDR,
  235. REND_SERVICE_ID_LEN_BASE32+1);
  236. rend_query.auth_type = REND_NO_AUTH;
  237. rend_query.base_.hsdirs_fp = smartlist_new();
  238. smartlist_add(rend_query.base_.hsdirs_fp, tor_memdup(HSDIR_EXIST_ID,
  239. DIGEST_LEN));
  240. /* Compute descriptor ID for replica 0, should be STR_DESC_ID_BASE32. */
  241. ret = rend_compute_v2_desc_id(rend_query.descriptor_id[0],
  242. rend_query.onion_address,
  243. NULL, 0, 0);
  244. tt_int_op(ret, OP_EQ, 0);
  245. base32_encode(desc_id_base32, sizeof(desc_id_base32),
  246. rend_query.descriptor_id[0], DIGEST_LEN);
  247. /* Make sure rend_compute_v2_desc_id works properly. */
  248. tt_mem_op(desc_id_base32, OP_EQ, STR_DESC_ID_BASE32,
  249. sizeof(desc_id_base32));
  250. /* test request event */
  251. control_event_hs_descriptor_requested(rend_query.onion_address,
  252. rend_query.auth_type, HSDIR_EXIST_ID,
  253. STR_DESC_ID_BASE32, NULL);
  254. expected_msg = "650 HS_DESC REQUESTED "STR_HS_ADDR" NO_AUTH "\
  255. STR_HSDIR_EXIST_LONGNAME " " STR_DESC_ID_BASE32 "\r\n";
  256. tt_assert(received_msg);
  257. tt_str_op(received_msg,OP_EQ, expected_msg);
  258. tor_free(received_msg);
  259. /* test received event */
  260. rend_query.auth_type = REND_BASIC_AUTH;
  261. control_event_hsv2_descriptor_received(rend_query.onion_address,
  262. &rend_query.base_, HSDIR_EXIST_ID);
  263. expected_msg = "650 HS_DESC RECEIVED "STR_HS_ADDR" BASIC_AUTH "\
  264. STR_HSDIR_EXIST_LONGNAME " " STR_DESC_ID_BASE32"\r\n";
  265. tt_assert(received_msg);
  266. tt_str_op(received_msg,OP_EQ, expected_msg);
  267. tor_free(received_msg);
  268. /* test failed event */
  269. rend_query.auth_type = REND_STEALTH_AUTH;
  270. control_event_hsv2_descriptor_failed(&rend_query.base_,
  271. HSDIR_NONE_EXIST_ID,
  272. "QUERY_REJECTED");
  273. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" STEALTH_AUTH "\
  274. STR_HSDIR_NONE_EXIST_LONGNAME" REASON=QUERY_REJECTED\r\n";
  275. tt_assert(received_msg);
  276. tt_str_op(received_msg,OP_EQ, expected_msg);
  277. tor_free(received_msg);
  278. /* test invalid auth type */
  279. rend_query.auth_type = 999;
  280. control_event_hsv2_descriptor_failed(&rend_query.base_,
  281. HSDIR_EXIST_ID,
  282. "QUERY_REJECTED");
  283. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" UNKNOWN "\
  284. STR_HSDIR_EXIST_LONGNAME " " STR_DESC_ID_BASE32\
  285. " REASON=QUERY_REJECTED\r\n";
  286. tt_assert(received_msg);
  287. tt_str_op(received_msg,OP_EQ, expected_msg);
  288. tor_free(received_msg);
  289. /* test no HSDir fingerprint type */
  290. rend_query.auth_type = REND_NO_AUTH;
  291. control_event_hsv2_descriptor_failed(&rend_query.base_, NULL,
  292. "QUERY_NO_HSDIR");
  293. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" NO_AUTH " \
  294. "UNKNOWN REASON=QUERY_NO_HSDIR\r\n";
  295. tt_assert(received_msg);
  296. tt_str_op(received_msg,OP_EQ, expected_msg);
  297. tor_free(received_msg);
  298. /* test HSDir rate limited */
  299. rend_query.auth_type = REND_NO_AUTH;
  300. control_event_hsv2_descriptor_failed(&rend_query.base_, NULL,
  301. "QUERY_RATE_LIMITED");
  302. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" NO_AUTH " \
  303. "UNKNOWN REASON=QUERY_RATE_LIMITED\r\n";
  304. tt_assert(received_msg);
  305. tt_str_op(received_msg,OP_EQ, expected_msg);
  306. tor_free(received_msg);
  307. /* Test invalid content with no HSDir fingerprint. */
  308. char *exp_msg;
  309. control_event_hs_descriptor_content(rend_query.onion_address,
  310. STR_HS_CONTENT_DESC_ID, NULL, NULL);
  311. tor_asprintf(&exp_msg, "650+HS_DESC_CONTENT " STR_HS_ADDR " "\
  312. STR_HS_CONTENT_DESC_ID " UNKNOWN" \
  313. "\r\n\r\n.\r\n650 OK\r\n");
  314. tt_assert(received_msg);
  315. tt_str_op(received_msg, OP_EQ, exp_msg);
  316. tor_free(received_msg);
  317. tor_free(exp_msg);
  318. /* test valid content. */
  319. control_event_hs_descriptor_content(rend_query.onion_address,
  320. STR_HS_CONTENT_DESC_ID, HSDIR_EXIST_ID,
  321. hs_desc_content_control);
  322. tor_asprintf(&exp_msg, "650+HS_DESC_CONTENT " STR_HS_ADDR " "\
  323. STR_HS_CONTENT_DESC_ID " " STR_HSDIR_EXIST_LONGNAME\
  324. "\r\n%s\r\n.\r\n650 OK\r\n", hs_desc_content_control);
  325. tt_assert(received_msg);
  326. tt_str_op(received_msg, OP_EQ, exp_msg);
  327. tor_free(received_msg);
  328. tor_free(exp_msg);
  329. SMARTLIST_FOREACH(rend_query.base_.hsdirs_fp, char *, d, tor_free(d));
  330. smartlist_free(rend_query.base_.hsdirs_fp);
  331. done:
  332. UNMOCK(queue_control_event_string);
  333. UNMOCK(node_describe_longname_by_id);
  334. tor_free(received_msg);
  335. }
  336. /* Make sure rend_data_t is valid at creation, destruction and when
  337. * duplicated. */
  338. static void
  339. test_hs_rend_data(void *arg)
  340. {
  341. int rep;
  342. rend_data_t *client = NULL, *client_dup = NULL;
  343. /* Binary format of a descriptor ID. */
  344. char desc_id[DIGEST_LEN];
  345. char client_cookie[REND_DESC_COOKIE_LEN];
  346. time_t now = time(NULL);
  347. rend_data_t *service_dup = NULL;
  348. rend_data_t *service = NULL;
  349. (void)arg;
  350. base32_decode(desc_id, sizeof(desc_id), STR_DESC_ID_BASE32,
  351. REND_DESC_ID_V2_LEN_BASE32);
  352. memset(client_cookie, 'e', sizeof(client_cookie));
  353. client = rend_data_client_create(STR_HS_ADDR, desc_id, client_cookie,
  354. REND_NO_AUTH);
  355. tt_assert(client);
  356. rend_data_v2_t *client_v2 = TO_REND_DATA_V2(client);
  357. tt_int_op(client_v2->auth_type, OP_EQ, REND_NO_AUTH);
  358. tt_str_op(client_v2->onion_address, OP_EQ, STR_HS_ADDR);
  359. tt_mem_op(client_v2->desc_id_fetch, OP_EQ, desc_id, sizeof(desc_id));
  360. tt_mem_op(client_v2->descriptor_cookie, OP_EQ, client_cookie,
  361. sizeof(client_cookie));
  362. tt_assert(client->hsdirs_fp);
  363. tt_int_op(smartlist_len(client->hsdirs_fp), OP_EQ, 0);
  364. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  365. int ret = rend_compute_v2_desc_id(desc_id, client_v2->onion_address,
  366. client_v2->descriptor_cookie, now, rep);
  367. /* That shouldn't never fail. */
  368. tt_int_op(ret, OP_EQ, 0);
  369. tt_mem_op(client_v2->descriptor_id[rep], OP_EQ, desc_id,
  370. sizeof(desc_id));
  371. }
  372. /* The rest should be zeroed because this is a client request. */
  373. tt_int_op(tor_digest_is_zero(client_v2->rend_pk_digest), OP_EQ, 1);
  374. tt_int_op(tor_digest_is_zero(client->rend_cookie), OP_EQ, 1);
  375. /* Test dup(). */
  376. client_dup = rend_data_dup(client);
  377. tt_assert(client_dup);
  378. rend_data_v2_t *client_dup_v2 = TO_REND_DATA_V2(client_dup);
  379. tt_int_op(client_dup_v2->auth_type, OP_EQ, client_v2->auth_type);
  380. tt_str_op(client_dup_v2->onion_address, OP_EQ, client_v2->onion_address);
  381. tt_mem_op(client_dup_v2->desc_id_fetch, OP_EQ, client_v2->desc_id_fetch,
  382. sizeof(client_dup_v2->desc_id_fetch));
  383. tt_mem_op(client_dup_v2->descriptor_cookie, OP_EQ,
  384. client_v2->descriptor_cookie,
  385. sizeof(client_dup_v2->descriptor_cookie));
  386. tt_assert(client_dup->hsdirs_fp);
  387. tt_int_op(smartlist_len(client_dup->hsdirs_fp), OP_EQ, 0);
  388. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  389. tt_mem_op(client_dup_v2->descriptor_id[rep], OP_EQ,
  390. client_v2->descriptor_id[rep], DIGEST_LEN);
  391. }
  392. /* The rest should be zeroed because this is a client request. */
  393. tt_int_op(tor_digest_is_zero(client_dup_v2->rend_pk_digest), OP_EQ, 1);
  394. tt_int_op(tor_digest_is_zero(client_dup->rend_cookie), OP_EQ, 1);
  395. rend_data_free(client);
  396. client = NULL;
  397. rend_data_free(client_dup);
  398. client_dup = NULL;
  399. /* Reset state. */
  400. base32_decode(desc_id, sizeof(desc_id), STR_DESC_ID_BASE32,
  401. REND_DESC_ID_V2_LEN_BASE32);
  402. memset(client_cookie, 'e', sizeof(client_cookie));
  403. /* Try with different parameters here for which some content should be
  404. * zeroed out. */
  405. client = rend_data_client_create(NULL, desc_id, NULL, REND_BASIC_AUTH);
  406. tt_assert(client);
  407. client_v2 = TO_REND_DATA_V2(client);
  408. tt_int_op(client_v2->auth_type, OP_EQ, REND_BASIC_AUTH);
  409. tt_int_op(strlen(client_v2->onion_address), OP_EQ, 0);
  410. tt_mem_op(client_v2->desc_id_fetch, OP_EQ, desc_id, sizeof(desc_id));
  411. tt_int_op(fast_mem_is_zero(client_v2->descriptor_cookie,
  412. sizeof(client_v2->descriptor_cookie)), OP_EQ, 1);
  413. tt_assert(client->hsdirs_fp);
  414. tt_int_op(smartlist_len(client->hsdirs_fp), OP_EQ, 0);
  415. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  416. tt_int_op(tor_digest_is_zero(client_v2->descriptor_id[rep]), OP_EQ, 1);
  417. }
  418. /* The rest should be zeroed because this is a client request. */
  419. tt_int_op(tor_digest_is_zero(client_v2->rend_pk_digest), OP_EQ, 1);
  420. tt_int_op(tor_digest_is_zero(client->rend_cookie), OP_EQ, 1);
  421. rend_data_free(client);
  422. client = NULL;
  423. /* Let's test the service object now. */
  424. char rend_pk_digest[DIGEST_LEN];
  425. uint8_t rend_cookie[DIGEST_LEN];
  426. memset(rend_pk_digest, 'f', sizeof(rend_pk_digest));
  427. memset(rend_cookie, 'g', sizeof(rend_cookie));
  428. service = rend_data_service_create(STR_HS_ADDR, rend_pk_digest,
  429. rend_cookie, REND_NO_AUTH);
  430. tt_assert(service);
  431. rend_data_v2_t *service_v2 = TO_REND_DATA_V2(service);
  432. tt_int_op(service_v2->auth_type, OP_EQ, REND_NO_AUTH);
  433. tt_str_op(service_v2->onion_address, OP_EQ, STR_HS_ADDR);
  434. tt_mem_op(service_v2->rend_pk_digest, OP_EQ, rend_pk_digest,
  435. sizeof(rend_pk_digest));
  436. tt_mem_op(service->rend_cookie, OP_EQ, rend_cookie, sizeof(rend_cookie));
  437. tt_assert(service->hsdirs_fp);
  438. tt_int_op(smartlist_len(service->hsdirs_fp), OP_EQ, 0);
  439. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  440. tt_int_op(tor_digest_is_zero(service_v2->descriptor_id[rep]), OP_EQ, 1);
  441. }
  442. /* The rest should be zeroed because this is a service request. */
  443. tt_int_op(tor_digest_is_zero(service_v2->descriptor_cookie), OP_EQ, 1);
  444. tt_int_op(tor_digest_is_zero(service_v2->desc_id_fetch), OP_EQ, 1);
  445. /* Test dup(). */
  446. service_dup = rend_data_dup(service);
  447. rend_data_v2_t *service_dup_v2 = TO_REND_DATA_V2(service_dup);
  448. tt_assert(service_dup);
  449. tt_int_op(service_dup_v2->auth_type, OP_EQ, service_v2->auth_type);
  450. tt_str_op(service_dup_v2->onion_address, OP_EQ, service_v2->onion_address);
  451. tt_mem_op(service_dup_v2->rend_pk_digest, OP_EQ, service_v2->rend_pk_digest,
  452. sizeof(service_dup_v2->rend_pk_digest));
  453. tt_mem_op(service_dup->rend_cookie, OP_EQ, service->rend_cookie,
  454. sizeof(service_dup->rend_cookie));
  455. tt_assert(service_dup->hsdirs_fp);
  456. tt_int_op(smartlist_len(service_dup->hsdirs_fp), OP_EQ, 0);
  457. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  458. tt_assert(tor_digest_is_zero(service_dup_v2->descriptor_id[rep]));
  459. }
  460. /* The rest should be zeroed because this is a service request. */
  461. tt_int_op(tor_digest_is_zero(service_dup_v2->descriptor_cookie), OP_EQ, 1);
  462. tt_int_op(tor_digest_is_zero(service_dup_v2->desc_id_fetch), OP_EQ, 1);
  463. done:
  464. rend_data_free(service);
  465. rend_data_free(service_dup);
  466. rend_data_free(client);
  467. rend_data_free(client_dup);
  468. }
  469. /* Test encoding and decoding service authorization cookies */
  470. static void
  471. test_hs_auth_cookies(void *arg)
  472. {
  473. #define TEST_COOKIE_RAW ((const uint8_t *) "abcdefghijklmnop")
  474. #define TEST_COOKIE_ENCODED "YWJjZGVmZ2hpamtsbW5vcA"
  475. #define TEST_COOKIE_ENCODED_STEALTH "YWJjZGVmZ2hpamtsbW5vcB"
  476. #define TEST_COOKIE_ENCODED_INVALID "YWJjZGVmZ2hpamtsbW5vcD"
  477. char *encoded_cookie = NULL;
  478. uint8_t raw_cookie[REND_DESC_COOKIE_LEN];
  479. rend_auth_type_t auth_type;
  480. char *err_msg = NULL;
  481. int re;
  482. (void)arg;
  483. /* Test that encoding gives the expected result */
  484. encoded_cookie = rend_auth_encode_cookie(TEST_COOKIE_RAW, REND_BASIC_AUTH);
  485. tt_str_op(encoded_cookie, OP_EQ, TEST_COOKIE_ENCODED);
  486. tor_free(encoded_cookie);
  487. encoded_cookie = rend_auth_encode_cookie(TEST_COOKIE_RAW, REND_STEALTH_AUTH);
  488. tt_str_op(encoded_cookie, OP_EQ, TEST_COOKIE_ENCODED_STEALTH);
  489. tor_free(encoded_cookie);
  490. /* Decoding should give the original value */
  491. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED, raw_cookie, &auth_type,
  492. &err_msg);
  493. tt_assert(!re);
  494. tt_ptr_op(err_msg, OP_EQ, NULL);
  495. tt_mem_op(raw_cookie, OP_EQ, TEST_COOKIE_RAW, REND_DESC_COOKIE_LEN);
  496. tt_int_op(auth_type, OP_EQ, REND_BASIC_AUTH);
  497. memset(raw_cookie, 0, sizeof(raw_cookie));
  498. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED_STEALTH, raw_cookie,
  499. &auth_type, &err_msg);
  500. tt_assert(!re);
  501. tt_ptr_op(err_msg, OP_EQ, NULL);
  502. tt_mem_op(raw_cookie, OP_EQ, TEST_COOKIE_RAW, REND_DESC_COOKIE_LEN);
  503. tt_int_op(auth_type, OP_EQ, REND_STEALTH_AUTH);
  504. memset(raw_cookie, 0, sizeof(raw_cookie));
  505. /* Decoding with padding characters should also work */
  506. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED "==", raw_cookie, NULL,
  507. &err_msg);
  508. tt_assert(!re);
  509. tt_ptr_op(err_msg, OP_EQ, NULL);
  510. tt_mem_op(raw_cookie, OP_EQ, TEST_COOKIE_RAW, REND_DESC_COOKIE_LEN);
  511. /* Decoding with an unknown type should fail */
  512. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED_INVALID, raw_cookie,
  513. &auth_type, &err_msg);
  514. tt_int_op(re, OP_LT, 0);
  515. tt_assert(err_msg);
  516. tor_free(err_msg);
  517. done:
  518. tor_free(encoded_cookie);
  519. tor_free(err_msg);
  520. return;
  521. }
  522. static int mock_get_options_calls = 0;
  523. static or_options_t *mock_options = NULL;
  524. static void
  525. reset_options(or_options_t *options, int *get_options_calls)
  526. {
  527. memset(options, 0, sizeof(or_options_t));
  528. options->TestingTorNetwork = 1;
  529. *get_options_calls = 0;
  530. }
  531. static const or_options_t *
  532. mock_get_options(void)
  533. {
  534. ++mock_get_options_calls;
  535. tor_assert(mock_options);
  536. return mock_options;
  537. }
  538. /* arg can't be 0 (the test fails) or 2 (the test is skipped) */
  539. #define CREATE_HS_DIR_NONE ((intptr_t)0x04)
  540. #define CREATE_HS_DIR1 ((intptr_t)0x08)
  541. #define CREATE_HS_DIR2 ((intptr_t)0x10)
  542. /* Test that single onion poisoning works. */
  543. static void
  544. test_single_onion_poisoning(void *arg)
  545. {
  546. or_options_t opt;
  547. mock_options = &opt;
  548. reset_options(mock_options, &mock_get_options_calls);
  549. MOCK(get_options, mock_get_options);
  550. int ret = -1;
  551. intptr_t create_dir_mask = (intptr_t)arg;
  552. /* Get directories with a random suffix so we can repeat the tests */
  553. mock_options->DataDirectory = tor_strdup(get_fname_rnd("test_data_dir"));
  554. rend_service_t *service_1 = tor_malloc_zero(sizeof(rend_service_t));
  555. char *dir1 = tor_strdup(get_fname_rnd("test_hs_dir1"));
  556. rend_service_t *service_2 = tor_malloc_zero(sizeof(rend_service_t));
  557. char *dir2 = tor_strdup(get_fname_rnd("test_hs_dir2"));
  558. smartlist_t *services = smartlist_new();
  559. char *poison_path = NULL;
  560. char *err_msg = NULL;
  561. mock_options->HiddenServiceSingleHopMode = 1;
  562. mock_options->HiddenServiceNonAnonymousMode = 1;
  563. /* Create the data directory, and, if the correct bit in arg is set,
  564. * create a directory for that service.
  565. * The data directory is required for the lockfile, which is used when
  566. * loading keys. */
  567. ret = check_private_dir(mock_options->DataDirectory, CPD_CREATE, NULL);
  568. tt_int_op(ret, OP_EQ, 0);
  569. if (create_dir_mask & CREATE_HS_DIR1) {
  570. ret = check_private_dir(dir1, CPD_CREATE, NULL);
  571. tt_int_op(ret, OP_EQ, 0);
  572. }
  573. if (create_dir_mask & CREATE_HS_DIR2) {
  574. ret = check_private_dir(dir2, CPD_CREATE, NULL);
  575. tt_int_op(ret, OP_EQ, 0);
  576. }
  577. service_1->directory = dir1;
  578. service_2->directory = dir2;
  579. /* The services own the directory pointers now */
  580. dir1 = dir2 = NULL;
  581. /* Add port to service 1 */
  582. service_1->ports = smartlist_new();
  583. service_2->ports = smartlist_new();
  584. rend_service_port_config_t *port1 = rend_service_parse_port_config("80", " ",
  585. &err_msg);
  586. tt_assert(port1);
  587. tt_ptr_op(err_msg, OP_EQ, NULL);
  588. smartlist_add(service_1->ports, port1);
  589. rend_service_port_config_t *port2 = rend_service_parse_port_config("90", " ",
  590. &err_msg);
  591. /* Add port to service 2 */
  592. tt_assert(port2);
  593. tt_ptr_op(err_msg, OP_EQ, NULL);
  594. smartlist_add(service_2->ports, port2);
  595. /* No services, a service to verify, no problem! */
  596. mock_options->HiddenServiceSingleHopMode = 0;
  597. mock_options->HiddenServiceNonAnonymousMode = 0;
  598. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  599. tt_int_op(ret, OP_EQ, 0);
  600. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  601. tt_int_op(ret, OP_EQ, 0);
  602. /* Either way, no problem. */
  603. mock_options->HiddenServiceSingleHopMode = 1;
  604. mock_options->HiddenServiceNonAnonymousMode = 1;
  605. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  606. tt_int_op(ret, OP_EQ, 0);
  607. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  608. tt_int_op(ret, OP_EQ, 0);
  609. /* Add the first service */
  610. ret = hs_check_service_private_dir(mock_options->User, service_1->directory,
  611. service_1->dir_group_readable, 1);
  612. tt_int_op(ret, OP_EQ, 0);
  613. smartlist_add(services, service_1);
  614. /* But don't add the second service yet. */
  615. /* Service directories, but no previous keys, no problem! */
  616. mock_options->HiddenServiceSingleHopMode = 0;
  617. mock_options->HiddenServiceNonAnonymousMode = 0;
  618. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  619. tt_int_op(ret, OP_EQ, 0);
  620. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  621. tt_int_op(ret, OP_EQ, 0);
  622. /* Either way, no problem. */
  623. mock_options->HiddenServiceSingleHopMode = 1;
  624. mock_options->HiddenServiceNonAnonymousMode = 1;
  625. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  626. tt_int_op(ret, OP_EQ, 0);
  627. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  628. tt_int_op(ret, OP_EQ, 0);
  629. /* Poison! Poison! Poison!
  630. * This can only be done in HiddenServiceSingleHopMode. */
  631. mock_options->HiddenServiceSingleHopMode = 1;
  632. mock_options->HiddenServiceNonAnonymousMode = 1;
  633. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  634. tt_int_op(ret, OP_EQ, 0);
  635. /* Poisoning twice is a no-op. */
  636. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  637. tt_int_op(ret, OP_EQ, 0);
  638. /* Poisoned service directories, but no previous keys, no problem! */
  639. mock_options->HiddenServiceSingleHopMode = 0;
  640. mock_options->HiddenServiceNonAnonymousMode = 0;
  641. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  642. tt_int_op(ret, OP_EQ, 0);
  643. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  644. tt_int_op(ret, OP_EQ, 0);
  645. /* Either way, no problem. */
  646. mock_options->HiddenServiceSingleHopMode = 1;
  647. mock_options->HiddenServiceNonAnonymousMode = 1;
  648. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  649. tt_int_op(ret, OP_EQ, 0);
  650. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  651. tt_int_op(ret, OP_EQ, 0);
  652. /* Now add some keys, and we'll have a problem. */
  653. ret = rend_service_load_all_keys(services);
  654. tt_int_op(ret, OP_EQ, 0);
  655. /* Poisoned service directories with previous keys are not allowed. */
  656. mock_options->HiddenServiceSingleHopMode = 0;
  657. mock_options->HiddenServiceNonAnonymousMode = 0;
  658. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  659. tt_int_op(ret, OP_LT, 0);
  660. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  661. tt_int_op(ret, OP_EQ, 0);
  662. /* But they are allowed if we're in non-anonymous mode. */
  663. mock_options->HiddenServiceSingleHopMode = 1;
  664. mock_options->HiddenServiceNonAnonymousMode = 1;
  665. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  666. tt_int_op(ret, OP_EQ, 0);
  667. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  668. tt_int_op(ret, OP_EQ, 0);
  669. /* Re-poisoning directories with existing keys is a no-op, because
  670. * directories with existing keys are ignored. */
  671. mock_options->HiddenServiceSingleHopMode = 1;
  672. mock_options->HiddenServiceNonAnonymousMode = 1;
  673. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  674. tt_int_op(ret, OP_EQ, 0);
  675. /* And it keeps the poison. */
  676. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  677. tt_int_op(ret, OP_EQ, 0);
  678. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  679. tt_int_op(ret, OP_EQ, 0);
  680. /* Now add the second service: it has no key and no poison file */
  681. ret = hs_check_service_private_dir(mock_options->User, service_2->directory,
  682. service_2->dir_group_readable, 1);
  683. tt_int_op(ret, OP_EQ, 0);
  684. smartlist_add(services, service_2);
  685. /* A new service, and an existing poisoned service. Not ok. */
  686. mock_options->HiddenServiceSingleHopMode = 0;
  687. mock_options->HiddenServiceNonAnonymousMode = 0;
  688. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  689. tt_int_op(ret, OP_LT, 0);
  690. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  691. tt_int_op(ret, OP_EQ, 0);
  692. /* But ok to add in non-anonymous mode. */
  693. mock_options->HiddenServiceSingleHopMode = 1;
  694. mock_options->HiddenServiceNonAnonymousMode = 1;
  695. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  696. tt_int_op(ret, OP_EQ, 0);
  697. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  698. tt_int_op(ret, OP_EQ, 0);
  699. /* Now remove the poisoning from the first service, and we have the opposite
  700. * problem. */
  701. poison_path = rend_service_sos_poison_path(service_1);
  702. tt_assert(poison_path);
  703. ret = unlink(poison_path);
  704. tt_int_op(ret, OP_EQ, 0);
  705. /* Unpoisoned service directories with previous keys are ok, as are empty
  706. * directories. */
  707. mock_options->HiddenServiceSingleHopMode = 0;
  708. mock_options->HiddenServiceNonAnonymousMode = 0;
  709. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  710. tt_int_op(ret, OP_EQ, 0);
  711. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  712. tt_int_op(ret, OP_EQ, 0);
  713. /* But the existing unpoisoned key is not ok in non-anonymous mode, even if
  714. * there is an empty service. */
  715. mock_options->HiddenServiceSingleHopMode = 1;
  716. mock_options->HiddenServiceNonAnonymousMode = 1;
  717. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  718. tt_int_op(ret, OP_LT, 0);
  719. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  720. tt_int_op(ret, OP_EQ, 0);
  721. /* Poisoning directories with existing keys is a no-op, because directories
  722. * with existing keys are ignored. But the new directory should poison. */
  723. mock_options->HiddenServiceSingleHopMode = 1;
  724. mock_options->HiddenServiceNonAnonymousMode = 1;
  725. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  726. tt_int_op(ret, OP_EQ, 0);
  727. ret = rend_service_poison_new_single_onion_dir(service_2, mock_options);
  728. tt_int_op(ret, OP_EQ, 0);
  729. /* And the old directory remains unpoisoned. */
  730. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  731. tt_int_op(ret, OP_LT, 0);
  732. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  733. tt_int_op(ret, OP_EQ, 0);
  734. /* And the new directory should be ignored, because it has no key. */
  735. mock_options->HiddenServiceSingleHopMode = 0;
  736. mock_options->HiddenServiceNonAnonymousMode = 0;
  737. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  738. tt_int_op(ret, OP_EQ, 0);
  739. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  740. tt_int_op(ret, OP_EQ, 0);
  741. /* Re-poisoning directories without existing keys is a no-op. */
  742. mock_options->HiddenServiceSingleHopMode = 1;
  743. mock_options->HiddenServiceNonAnonymousMode = 1;
  744. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  745. tt_int_op(ret, OP_EQ, 0);
  746. ret = rend_service_poison_new_single_onion_dir(service_2, mock_options);
  747. tt_int_op(ret, OP_EQ, 0);
  748. /* And the old directory remains unpoisoned. */
  749. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  750. tt_int_op(ret, OP_LT, 0);
  751. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  752. tt_int_op(ret, OP_EQ, 0);
  753. done:
  754. /* The test harness deletes the directories at exit */
  755. tor_free(poison_path);
  756. tor_free(dir1);
  757. tor_free(dir2);
  758. smartlist_free(services);
  759. rend_service_free(service_1);
  760. rend_service_free(service_2);
  761. UNMOCK(get_options);
  762. tor_free(mock_options->DataDirectory);
  763. tor_free(err_msg);
  764. }
  765. static rend_service_t *
  766. helper_create_rend_service(const char *path)
  767. {
  768. rend_service_t *s = tor_malloc_zero(sizeof(rend_service_t));
  769. s->ports = smartlist_new();
  770. s->intro_nodes = smartlist_new();
  771. s->expiring_nodes = smartlist_new();
  772. if (path) {
  773. s->directory = tor_strdup(path);
  774. }
  775. return s;
  776. }
  777. static void
  778. test_prune_services_on_reload(void *arg)
  779. {
  780. smartlist_t *new = smartlist_new(), *old = smartlist_new();
  781. /* Non ephemeral service. */
  782. rend_service_t *s1 = helper_create_rend_service("SomePath");
  783. /* Create a non ephemeral service with the _same_ path as so we can test the
  784. * transfer of introduction point between the same services on reload. */
  785. rend_service_t *s2 = helper_create_rend_service(s1->directory);
  786. /* Ephemeral service (directory is NULL). */
  787. rend_service_t *e1 = helper_create_rend_service(NULL);
  788. rend_service_t *e2 = helper_create_rend_service(NULL);
  789. (void) arg;
  790. {
  791. /* Add both services to the old list. */
  792. smartlist_add(old, s1);
  793. smartlist_add(old, e1);
  794. /* Only put the non ephemeral in the new list. */
  795. smartlist_add(new, s1);
  796. set_rend_service_list(old);
  797. set_rend_rend_service_staging_list(new);
  798. rend_service_prune_list_impl_();
  799. /* We expect that the ephemeral one is in the new list but removed from
  800. * the old one. */
  801. tt_int_op(smartlist_len(old), OP_EQ, 1);
  802. tt_assert(smartlist_get(old, 0) == s1);
  803. tt_int_op(smartlist_len(new), OP_EQ, 2);
  804. tt_assert(smartlist_get(new, 0) == s1);
  805. tt_assert(smartlist_get(new, 1) == e1);
  806. /* Cleanup for next test. */
  807. smartlist_clear(new);
  808. smartlist_clear(old);
  809. }
  810. {
  811. /* This test will make sure that only the ephemeral service is kept if the
  812. * new list is empty. The old list should contain only the non ephemeral
  813. * one. */
  814. smartlist_add(old, s1);
  815. smartlist_add(old, e1);
  816. set_rend_service_list(old);
  817. set_rend_rend_service_staging_list(new);
  818. rend_service_prune_list_impl_();
  819. tt_int_op(smartlist_len(old), OP_EQ, 1);
  820. tt_assert(smartlist_get(old, 0) == s1);
  821. tt_int_op(smartlist_len(new), OP_EQ, 1);
  822. tt_assert(smartlist_get(new, 0) == e1);
  823. /* Cleanup for next test. */
  824. smartlist_clear(new);
  825. smartlist_clear(old);
  826. }
  827. {
  828. /* This test makes sure that the new list stays the same even from the old
  829. * list being completely different. */
  830. smartlist_add(new, s1);
  831. smartlist_add(new, e1);
  832. set_rend_service_list(old);
  833. set_rend_rend_service_staging_list(new);
  834. rend_service_prune_list_impl_();
  835. tt_int_op(smartlist_len(old), OP_EQ, 0);
  836. tt_int_op(smartlist_len(new), OP_EQ, 2);
  837. tt_assert(smartlist_get(new, 0) == s1);
  838. tt_assert(smartlist_get(new, 1) == e1);
  839. /* Cleanup for next test. */
  840. smartlist_clear(new);
  841. }
  842. {
  843. rend_intro_point_t ip1;
  844. /* This IP should be found in the s2 service after pruning. */
  845. smartlist_add(s1->intro_nodes, &ip1);
  846. /* Setup our list. */
  847. smartlist_add(old, s1);
  848. smartlist_add(new, s2);
  849. set_rend_service_list(old);
  850. set_rend_rend_service_staging_list(new);
  851. rend_service_prune_list_impl_();
  852. tt_int_op(smartlist_len(old), OP_EQ, 1);
  853. /* Intro nodes have been moved to the s2 in theory so it must be empty. */
  854. tt_int_op(smartlist_len(s1->intro_nodes), OP_EQ, 0);
  855. tt_int_op(smartlist_len(new), OP_EQ, 1);
  856. rend_service_t *elem = smartlist_get(new, 0);
  857. tt_assert(elem);
  858. tt_assert(elem == s2);
  859. tt_int_op(smartlist_len(elem->intro_nodes), OP_EQ, 1);
  860. tt_assert(smartlist_get(elem->intro_nodes, 0) == &ip1);
  861. smartlist_clear(s1->intro_nodes);
  862. smartlist_clear(s2->intro_nodes);
  863. /* Cleanup for next test. */
  864. smartlist_clear(new);
  865. smartlist_clear(old);
  866. }
  867. {
  868. /* Test two ephemeral services. */
  869. smartlist_add(old, e1);
  870. smartlist_add(old, e2);
  871. set_rend_service_list(old);
  872. set_rend_rend_service_staging_list(new);
  873. rend_service_prune_list_impl_();
  874. /* Check if they've all been transferred. */
  875. tt_int_op(smartlist_len(old), OP_EQ, 0);
  876. tt_int_op(smartlist_len(new), OP_EQ, 2);
  877. }
  878. done:
  879. rend_service_free(s1);
  880. rend_service_free(s2);
  881. rend_service_free(e1);
  882. rend_service_free(e2);
  883. smartlist_free(new);
  884. smartlist_free(old);
  885. }
  886. struct testcase_t hs_tests[] = {
  887. { "hs_rend_data", test_hs_rend_data, TT_FORK,
  888. NULL, NULL },
  889. { "hs_parse_static_v2_desc", test_hs_parse_static_v2_desc, TT_FORK,
  890. NULL, NULL },
  891. { "hs_desc_event", test_hs_desc_event, TT_FORK,
  892. NULL, NULL },
  893. { "hs_auth_cookies", test_hs_auth_cookies, TT_FORK,
  894. NULL, NULL },
  895. { "single_onion_poisoning_create_dir_none", test_single_onion_poisoning,
  896. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR_NONE) },
  897. { "single_onion_poisoning_create_dir1", test_single_onion_poisoning,
  898. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR1) },
  899. { "single_onion_poisoning_create_dir2", test_single_onion_poisoning,
  900. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR2) },
  901. { "single_onion_poisoning_create_dir_both", test_single_onion_poisoning,
  902. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR1 | CREATE_HS_DIR2) },
  903. { "prune_services_on_reload", test_prune_services_on_reload, TT_FORK,
  904. NULL, NULL },
  905. END_OF_TESTCASES
  906. };