test_hs.c 41 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053
  1. /* Copyright (c) 2007-2017, The Tor Project, Inc. */
  2. /* See LICENSE for licensing information */
  3. /**
  4. * \file test_hs.c
  5. * \brief Unit tests for hidden service.
  6. **/
  7. #define CONTROL_PRIVATE
  8. #define CIRCUITBUILD_PRIVATE
  9. #define RENDCOMMON_PRIVATE
  10. #define RENDSERVICE_PRIVATE
  11. #define HS_SERVICE_PRIVATE
  12. #include "or.h"
  13. #include "test.h"
  14. #include "control.h"
  15. #include "config.h"
  16. #include "hs_common.h"
  17. #include "rendcommon.h"
  18. #include "rendservice.h"
  19. #include "routerset.h"
  20. #include "circuitbuild.h"
  21. #include "test_helpers.h"
  22. /* mock ID digest and longname for node that's in nodelist */
  23. #define HSDIR_EXIST_ID "\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA" \
  24. "\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA\xAA"
  25. #define STR_HSDIR_EXIST_LONGNAME \
  26. "$AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=TestDir"
  27. /* mock ID digest and longname for node that's not in nodelist */
  28. #define HSDIR_NONE_EXIST_ID "\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB" \
  29. "\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB\xBB"
  30. #define STR_HSDIR_NONE_EXIST_LONGNAME \
  31. "$BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB"
  32. /* DuckDuckGo descriptor as an example. This one has extra "\r" at the end so
  33. * the control port is happy. */
  34. static const char *hs_desc_content_control = "\
  35. rendezvous-service-descriptor g5ojobzupf275beh5ra72uyhb3dkpxwg\r\n\
  36. version 2\r\n\
  37. permanent-key\r\n\
  38. -----BEGIN RSA PUBLIC KEY-----\r\n\
  39. MIGJAoGBAJ/SzzgrXPxTlFrKVhXh3buCWv2QfcNgncUpDpKouLn3AtPH5Ocys0jE\r\n\
  40. aZSKdvaiQ62md2gOwj4x61cFNdi05tdQjS+2thHKEm/KsB9BGLSLBNJYY356bupg\r\n\
  41. I5gQozM65ENelfxYlysBjJ52xSDBd8C4f/p9umdzaaaCmzXG/nhzAgMBAAE=\r\n\
  42. -----END RSA PUBLIC KEY-----\r\n\
  43. secret-id-part anmjoxxwiupreyajjt5yasimfmwcnxlf\r\n\
  44. publication-time 2015-03-11 19:00:00\r\n\
  45. protocol-versions 2,3\r\n\
  46. introduction-points\r\n\
  47. -----BEGIN MESSAGE-----\r\n\
  48. aW50cm9kdWN0aW9uLXBvaW50IDd1bnd4cmg2dG5kNGh6eWt1Z3EzaGZzdHduc2ll\r\n\
  49. cmhyCmlwLWFkZHJlc3MgMTg4LjEzOC4xMjEuMTE4Cm9uaW9uLXBvcnQgOTAwMQpv\r\n\
  50. bmlvbi1rZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dC\r\n\
  51. QUxGRVVyeVpDbk9ROEhURmV5cDVjMTRObWVqL1BhekFLTTBxRENTNElKUWh0Y3g1\r\n\
  52. NXpRSFdOVWIKQ2hHZ0JqR1RjV3ZGRnA0N3FkdGF6WUZhVXE2c0lQKzVqeWZ5b0Q4\r\n\
  53. UmJ1bzBwQmFWclJjMmNhYUptWWM0RDh6Vgpuby9sZnhzOVVaQnZ1cWY4eHIrMDB2\r\n\
  54. S0JJNmFSMlA2OE1WeDhrMExqcUpUU2RKOE9idm9yQWdNQkFBRT0KLS0tLS1FTkQg\r\n\
  55. UlNBIFBVQkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQ\r\n\
  56. VUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTnJHb0ozeTlHNXQzN2F2ekI1cTlwN1hG\r\n\
  57. VUplRUVYMUNOaExnWmJXWGJhVk5OcXpoZFhyL0xTUQppM1Z6dW5OaUs3cndUVnE2\r\n\
  58. K2QyZ1lRckhMMmIvMXBBY3ZKWjJiNSs0bTRRc0NibFpjRENXTktRbHJnRWN5WXRJ\r\n\
  59. CkdscXJTbFFEaXA0ZnNrUFMvNDVkWTI0QmJsQ3NGU1k3RzVLVkxJck4zZFpGbmJr\r\n\
  60. NEZIS1hBZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJv\r\n\
  61. ZHVjdGlvbi1wb2ludCBiNGM3enlxNXNheGZzN2prNXFibG1wN3I1b3pwdHRvagpp\r\n\
  62. cC1hZGRyZXNzIDEwOS4xNjkuNDUuMjI2Cm9uaW9uLXBvcnQgOTAwMQpvbmlvbi1r\r\n\
  63. ZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dCQU8xSXpw\r\n\
  64. WFFUTUY3RXZUb1NEUXpzVnZiRVFRQUQrcGZ6NzczMVRXZzVaUEJZY1EyUkRaeVp4\r\n\
  65. OEQKNUVQSU1FeUE1RE83cGd0ak5LaXJvYXJGMC8yempjMkRXTUlSaXZyU29YUWVZ\r\n\
  66. ZXlMM1pzKzFIajJhMDlCdkYxZAp6MEswblRFdVhoNVR5V3lyMHdsbGI1SFBnTlI0\r\n\
  67. MS9oYkprZzkwZitPVCtIeGhKL1duUml2QWdNQkFBRT0KLS0tLS1FTkQgUlNBIFBV\r\n\
  68. QkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQVUJMSUMg\r\n\
  69. S0VZLS0tLS0KTUlHSkFvR0JBSzNWZEJ2ajFtQllLL3JrcHNwcm9Ub0llNUtHVmth\r\n\
  70. QkxvMW1tK1I2YUVJek1VZFE1SjkwNGtyRwpCd3k5NC8rV0lGNFpGYXh5Z2phejl1\r\n\
  71. N2pKY1k3ZGJhd1pFeG1hYXFCRlRwL2h2ZG9rcHQ4a1ByRVk4OTJPRHJ1CmJORUox\r\n\
  72. N1FPSmVMTVZZZk5Kcjl4TWZCQ3JQai8zOGh2RUdrbWVRNmRVWElvbVFNaUJGOVRB\r\n\
  73. Z01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJvZHVjdGlv\r\n\
  74. bi1wb2ludCBhdjVtcWl0Y2Q3cjJkandsYmN0c2Jlc2R3eGt0ZWtvegppcC1hZGRy\r\n\
  75. ZXNzIDE0NC43Ni44LjczCm9uaW9uLXBvcnQgNDQzCm9uaW9uLWtleQotLS0tLUJF\r\n\
  76. R0lOIFJTQSBQVUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTzVweVZzQmpZQmNmMXBE\r\n\
  77. dklHUlpmWXUzQ05nNldka0ZLMGlvdTBXTGZtejZRVDN0NWhzd3cyVwpjejlHMXhx\r\n\
  78. MmN0Nkd6VWkrNnVkTDlITTRVOUdHTi9BbW8wRG9GV1hKWHpBQkFXd2YyMVdsd1lW\r\n\
  79. eFJQMHRydi9WCkN6UDkzcHc5OG5vSmdGUGRUZ05iMjdKYmVUZENLVFBrTEtscXFt\r\n\
  80. b3NveUN2RitRa25vUS9BZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0t\r\n\
  81. LS0tCnNlcnZpY2Uta2V5Ci0tLS0tQkVHSU4gUlNBIFBVQkxJQyBLRVktLS0tLQpN\r\n\
  82. SUdKQW9HQkFMVjNKSmtWN3lTNU9jc1lHMHNFYzFQOTVRclFRR3ZzbGJ6Wi9zRGxl\r\n\
  83. RlpKYXFSOUYvYjRUVERNClNGcFMxcU1GbldkZDgxVmRGMEdYRmN2WVpLamRJdHU2\r\n\
  84. SndBaTRJeEhxeXZtdTRKdUxrcXNaTEFLaXRLVkx4eGsKeERlMjlDNzRWMmJrOTRJ\r\n\
  85. MEgybTNKS2tzTHVwc3VxWWRVUmhOVXN0SElKZmgyZmNIalF0bEFnTUJBQUU9Ci0t\r\n\
  86. LS0tRU5EIFJTQSBQVUJMSUMgS0VZLS0tLS0KCg==\r\n\
  87. -----END MESSAGE-----\r\n\
  88. signature\r\n\
  89. -----BEGIN SIGNATURE-----\r\n\
  90. d4OuCE5OLAOnRB6cQN6WyMEmg/BHem144Vec+eYgeWoKwx3MxXFplUjFxgnMlmwN\r\n\
  91. PcftsZf2ztN0sbNCtPgDL3d0PqvxY3iHTQAI8EbaGq/IAJUZ8U4y963dD5+Bn6JQ\r\n\
  92. myE3ctmh0vy5+QxSiRjmQBkuEpCyks7LvWvHYrhnmcg=\r\n\
  93. -----END SIGNATURE-----";
  94. /* DuckDuckGo descriptor as an example. */
  95. static const char *hs_desc_content = "\
  96. rendezvous-service-descriptor g5ojobzupf275beh5ra72uyhb3dkpxwg\n\
  97. version 2\n\
  98. permanent-key\n\
  99. -----BEGIN RSA PUBLIC KEY-----\n\
  100. MIGJAoGBAJ/SzzgrXPxTlFrKVhXh3buCWv2QfcNgncUpDpKouLn3AtPH5Ocys0jE\n\
  101. aZSKdvaiQ62md2gOwj4x61cFNdi05tdQjS+2thHKEm/KsB9BGLSLBNJYY356bupg\n\
  102. I5gQozM65ENelfxYlysBjJ52xSDBd8C4f/p9umdzaaaCmzXG/nhzAgMBAAE=\n\
  103. -----END RSA PUBLIC KEY-----\n\
  104. secret-id-part anmjoxxwiupreyajjt5yasimfmwcnxlf\n\
  105. publication-time 2015-03-11 19:00:00\n\
  106. protocol-versions 2,3\n\
  107. introduction-points\n\
  108. -----BEGIN MESSAGE-----\n\
  109. aW50cm9kdWN0aW9uLXBvaW50IDd1bnd4cmg2dG5kNGh6eWt1Z3EzaGZzdHduc2ll\n\
  110. cmhyCmlwLWFkZHJlc3MgMTg4LjEzOC4xMjEuMTE4Cm9uaW9uLXBvcnQgOTAwMQpv\n\
  111. bmlvbi1rZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dC\n\
  112. QUxGRVVyeVpDbk9ROEhURmV5cDVjMTRObWVqL1BhekFLTTBxRENTNElKUWh0Y3g1\n\
  113. NXpRSFdOVWIKQ2hHZ0JqR1RjV3ZGRnA0N3FkdGF6WUZhVXE2c0lQKzVqeWZ5b0Q4\n\
  114. UmJ1bzBwQmFWclJjMmNhYUptWWM0RDh6Vgpuby9sZnhzOVVaQnZ1cWY4eHIrMDB2\n\
  115. S0JJNmFSMlA2OE1WeDhrMExqcUpUU2RKOE9idm9yQWdNQkFBRT0KLS0tLS1FTkQg\n\
  116. UlNBIFBVQkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQ\n\
  117. VUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTnJHb0ozeTlHNXQzN2F2ekI1cTlwN1hG\n\
  118. VUplRUVYMUNOaExnWmJXWGJhVk5OcXpoZFhyL0xTUQppM1Z6dW5OaUs3cndUVnE2\n\
  119. K2QyZ1lRckhMMmIvMXBBY3ZKWjJiNSs0bTRRc0NibFpjRENXTktRbHJnRWN5WXRJ\n\
  120. CkdscXJTbFFEaXA0ZnNrUFMvNDVkWTI0QmJsQ3NGU1k3RzVLVkxJck4zZFpGbmJr\n\
  121. NEZIS1hBZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJv\n\
  122. ZHVjdGlvbi1wb2ludCBiNGM3enlxNXNheGZzN2prNXFibG1wN3I1b3pwdHRvagpp\n\
  123. cC1hZGRyZXNzIDEwOS4xNjkuNDUuMjI2Cm9uaW9uLXBvcnQgOTAwMQpvbmlvbi1r\n\
  124. ZXkKLS0tLS1CRUdJTiBSU0EgUFVCTElDIEtFWS0tLS0tCk1JR0pBb0dCQU8xSXpw\n\
  125. WFFUTUY3RXZUb1NEUXpzVnZiRVFRQUQrcGZ6NzczMVRXZzVaUEJZY1EyUkRaeVp4\n\
  126. OEQKNUVQSU1FeUE1RE83cGd0ak5LaXJvYXJGMC8yempjMkRXTUlSaXZyU29YUWVZ\n\
  127. ZXlMM1pzKzFIajJhMDlCdkYxZAp6MEswblRFdVhoNVR5V3lyMHdsbGI1SFBnTlI0\n\
  128. MS9oYkprZzkwZitPVCtIeGhKL1duUml2QWdNQkFBRT0KLS0tLS1FTkQgUlNBIFBV\n\
  129. QkxJQyBLRVktLS0tLQpzZXJ2aWNlLWtleQotLS0tLUJFR0lOIFJTQSBQVUJMSUMg\n\
  130. S0VZLS0tLS0KTUlHSkFvR0JBSzNWZEJ2ajFtQllLL3JrcHNwcm9Ub0llNUtHVmth\n\
  131. QkxvMW1tK1I2YUVJek1VZFE1SjkwNGtyRwpCd3k5NC8rV0lGNFpGYXh5Z2phejl1\n\
  132. N2pKY1k3ZGJhd1pFeG1hYXFCRlRwL2h2ZG9rcHQ4a1ByRVk4OTJPRHJ1CmJORUox\n\
  133. N1FPSmVMTVZZZk5Kcjl4TWZCQ3JQai8zOGh2RUdrbWVRNmRVWElvbVFNaUJGOVRB\n\
  134. Z01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0tLS0tCmludHJvZHVjdGlv\n\
  135. bi1wb2ludCBhdjVtcWl0Y2Q3cjJkandsYmN0c2Jlc2R3eGt0ZWtvegppcC1hZGRy\n\
  136. ZXNzIDE0NC43Ni44LjczCm9uaW9uLXBvcnQgNDQzCm9uaW9uLWtleQotLS0tLUJF\n\
  137. R0lOIFJTQSBQVUJMSUMgS0VZLS0tLS0KTUlHSkFvR0JBTzVweVZzQmpZQmNmMXBE\n\
  138. dklHUlpmWXUzQ05nNldka0ZLMGlvdTBXTGZtejZRVDN0NWhzd3cyVwpjejlHMXhx\n\
  139. MmN0Nkd6VWkrNnVkTDlITTRVOUdHTi9BbW8wRG9GV1hKWHpBQkFXd2YyMVdsd1lW\n\
  140. eFJQMHRydi9WCkN6UDkzcHc5OG5vSmdGUGRUZ05iMjdKYmVUZENLVFBrTEtscXFt\n\
  141. b3NveUN2RitRa25vUS9BZ01CQUFFPQotLS0tLUVORCBSU0EgUFVCTElDIEtFWS0t\n\
  142. LS0tCnNlcnZpY2Uta2V5Ci0tLS0tQkVHSU4gUlNBIFBVQkxJQyBLRVktLS0tLQpN\n\
  143. SUdKQW9HQkFMVjNKSmtWN3lTNU9jc1lHMHNFYzFQOTVRclFRR3ZzbGJ6Wi9zRGxl\n\
  144. RlpKYXFSOUYvYjRUVERNClNGcFMxcU1GbldkZDgxVmRGMEdYRmN2WVpLamRJdHU2\n\
  145. SndBaTRJeEhxeXZtdTRKdUxrcXNaTEFLaXRLVkx4eGsKeERlMjlDNzRWMmJrOTRJ\n\
  146. MEgybTNKS2tzTHVwc3VxWWRVUmhOVXN0SElKZmgyZmNIalF0bEFnTUJBQUU9Ci0t\n\
  147. LS0tRU5EIFJTQSBQVUJMSUMgS0VZLS0tLS0KCg==\n\
  148. -----END MESSAGE-----\n\
  149. signature\n\
  150. -----BEGIN SIGNATURE-----\n\
  151. d4OuCE5OLAOnRB6cQN6WyMEmg/BHem144Vec+eYgeWoKwx3MxXFplUjFxgnMlmwN\n\
  152. PcftsZf2ztN0sbNCtPgDL3d0PqvxY3iHTQAI8EbaGq/IAJUZ8U4y963dD5+Bn6JQ\n\
  153. myE3ctmh0vy5+QxSiRjmQBkuEpCyks7LvWvHYrhnmcg=\n\
  154. -----END SIGNATURE-----";
  155. /* Helper global variable for hidden service descriptor event test.
  156. * It's used as a pointer to dynamically created message buffer in
  157. * send_control_event_string_replacement function, which mocks
  158. * send_control_event_string function.
  159. *
  160. * Always free it after use! */
  161. static char *received_msg = NULL;
  162. /** Mock function for send_control_event_string
  163. */
  164. static void
  165. queue_control_event_string_replacement(uint16_t event, char *msg)
  166. {
  167. (void) event;
  168. tor_free(received_msg);
  169. received_msg = msg;
  170. }
  171. /** Mock function for node_describe_longname_by_id, it returns either
  172. * STR_HSDIR_EXIST_LONGNAME or STR_HSDIR_NONE_EXIST_LONGNAME
  173. */
  174. static const char *
  175. node_describe_longname_by_id_replacement(const char *id_digest)
  176. {
  177. if (!strcmp(id_digest, HSDIR_EXIST_ID)) {
  178. return STR_HSDIR_EXIST_LONGNAME;
  179. } else {
  180. return STR_HSDIR_NONE_EXIST_LONGNAME;
  181. }
  182. }
  183. /** Test that we can parse a hardcoded v2 HS desc. */
  184. static void
  185. test_hs_parse_static_v2_desc(void *arg)
  186. {
  187. int ret;
  188. rend_encoded_v2_service_descriptor_t desc;
  189. (void) arg;
  190. /* Test an obviously not parseable string */
  191. desc.desc_str = tor_strdup("ceci n'est pas un HS descriptor");
  192. ret = rend_desc_v2_is_parsable(&desc);
  193. tor_free(desc.desc_str);
  194. tt_int_op(ret, OP_EQ, 0);
  195. /* Test an actual descriptor */
  196. desc.desc_str = tor_strdup(hs_desc_content);
  197. ret = rend_desc_v2_is_parsable(&desc);
  198. tor_free(desc.desc_str);
  199. tt_int_op(ret, OP_EQ, 1);
  200. done: ;
  201. }
  202. /** Make sure each hidden service descriptor async event generation
  203. *
  204. * function generates the message in expected format.
  205. */
  206. static void
  207. test_hs_desc_event(void *arg)
  208. {
  209. #define STR_HS_ADDR "ajhb7kljbiru65qo"
  210. #define STR_HS_CONTENT_DESC_ID "g5ojobzupf275beh5ra72uyhb3dkpxwg"
  211. #define STR_DESC_ID_BASE32 "hba3gmcgpfivzfhx5rtfqkfdhv65yrj3"
  212. int ret;
  213. rend_data_v2_t rend_query;
  214. const char *expected_msg;
  215. char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
  216. (void) arg;
  217. MOCK(queue_control_event_string,
  218. queue_control_event_string_replacement);
  219. MOCK(node_describe_longname_by_id,
  220. node_describe_longname_by_id_replacement);
  221. /* setup rend_query struct */
  222. memset(&rend_query, 0, sizeof(rend_query));
  223. rend_query.base_.version = 2;
  224. strncpy(rend_query.onion_address, STR_HS_ADDR,
  225. REND_SERVICE_ID_LEN_BASE32+1);
  226. rend_query.auth_type = REND_NO_AUTH;
  227. rend_query.base_.hsdirs_fp = smartlist_new();
  228. smartlist_add(rend_query.base_.hsdirs_fp, tor_memdup(HSDIR_EXIST_ID,
  229. DIGEST_LEN));
  230. /* Compute descriptor ID for replica 0, should be STR_DESC_ID_BASE32. */
  231. ret = rend_compute_v2_desc_id(rend_query.descriptor_id[0],
  232. rend_query.onion_address,
  233. NULL, 0, 0);
  234. tt_int_op(ret, ==, 0);
  235. base32_encode(desc_id_base32, sizeof(desc_id_base32),
  236. rend_query.descriptor_id[0], DIGEST_LEN);
  237. /* Make sure rend_compute_v2_desc_id works properly. */
  238. tt_mem_op(desc_id_base32, OP_EQ, STR_DESC_ID_BASE32,
  239. sizeof(desc_id_base32));
  240. /* test request event */
  241. control_event_hs_descriptor_requested(&rend_query.base_, HSDIR_EXIST_ID,
  242. STR_DESC_ID_BASE32);
  243. expected_msg = "650 HS_DESC REQUESTED "STR_HS_ADDR" NO_AUTH "\
  244. STR_HSDIR_EXIST_LONGNAME " " STR_DESC_ID_BASE32 "\r\n";
  245. tt_assert(received_msg);
  246. tt_str_op(received_msg,OP_EQ, expected_msg);
  247. tor_free(received_msg);
  248. /* test received event */
  249. rend_query.auth_type = REND_BASIC_AUTH;
  250. control_event_hs_descriptor_received(rend_query.onion_address,
  251. &rend_query.base_, HSDIR_EXIST_ID);
  252. expected_msg = "650 HS_DESC RECEIVED "STR_HS_ADDR" BASIC_AUTH "\
  253. STR_HSDIR_EXIST_LONGNAME " " STR_DESC_ID_BASE32"\r\n";
  254. tt_assert(received_msg);
  255. tt_str_op(received_msg,OP_EQ, expected_msg);
  256. tor_free(received_msg);
  257. /* test failed event */
  258. rend_query.auth_type = REND_STEALTH_AUTH;
  259. control_event_hs_descriptor_failed(&rend_query.base_,
  260. HSDIR_NONE_EXIST_ID,
  261. "QUERY_REJECTED");
  262. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" STEALTH_AUTH "\
  263. STR_HSDIR_NONE_EXIST_LONGNAME" REASON=QUERY_REJECTED\r\n";
  264. tt_assert(received_msg);
  265. tt_str_op(received_msg,OP_EQ, expected_msg);
  266. tor_free(received_msg);
  267. /* test invalid auth type */
  268. rend_query.auth_type = 999;
  269. control_event_hs_descriptor_failed(&rend_query.base_,
  270. HSDIR_EXIST_ID,
  271. "QUERY_REJECTED");
  272. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" UNKNOWN "\
  273. STR_HSDIR_EXIST_LONGNAME " " STR_DESC_ID_BASE32\
  274. " REASON=QUERY_REJECTED\r\n";
  275. tt_assert(received_msg);
  276. tt_str_op(received_msg,OP_EQ, expected_msg);
  277. tor_free(received_msg);
  278. /* test no HSDir fingerprint type */
  279. rend_query.auth_type = REND_NO_AUTH;
  280. control_event_hs_descriptor_failed(&rend_query.base_, NULL,
  281. "QUERY_NO_HSDIR");
  282. expected_msg = "650 HS_DESC FAILED "STR_HS_ADDR" NO_AUTH " \
  283. "UNKNOWN REASON=QUERY_NO_HSDIR\r\n";
  284. tt_assert(received_msg);
  285. tt_str_op(received_msg,OP_EQ, expected_msg);
  286. tor_free(received_msg);
  287. /* Test invalid content with no HSDir fingerprint. */
  288. char *exp_msg;
  289. control_event_hs_descriptor_content(rend_query.onion_address,
  290. STR_HS_CONTENT_DESC_ID, NULL, NULL);
  291. tor_asprintf(&exp_msg, "650+HS_DESC_CONTENT " STR_HS_ADDR " "\
  292. STR_HS_CONTENT_DESC_ID " UNKNOWN" \
  293. "\r\n\r\n.\r\n650 OK\r\n");
  294. tt_assert(received_msg);
  295. tt_str_op(received_msg, OP_EQ, exp_msg);
  296. tor_free(received_msg);
  297. tor_free(exp_msg);
  298. /* test valid content. */
  299. control_event_hs_descriptor_content(rend_query.onion_address,
  300. STR_HS_CONTENT_DESC_ID, HSDIR_EXIST_ID,
  301. hs_desc_content_control);
  302. tor_asprintf(&exp_msg, "650+HS_DESC_CONTENT " STR_HS_ADDR " "\
  303. STR_HS_CONTENT_DESC_ID " " STR_HSDIR_EXIST_LONGNAME\
  304. "\r\n%s\r\n.\r\n650 OK\r\n", hs_desc_content_control);
  305. tt_assert(received_msg);
  306. tt_str_op(received_msg, OP_EQ, exp_msg);
  307. tor_free(received_msg);
  308. tor_free(exp_msg);
  309. SMARTLIST_FOREACH(rend_query.base_.hsdirs_fp, char *, d, tor_free(d));
  310. smartlist_free(rend_query.base_.hsdirs_fp);
  311. done:
  312. UNMOCK(queue_control_event_string);
  313. UNMOCK(node_describe_longname_by_id);
  314. tor_free(received_msg);
  315. }
  316. /* Make sure we always pick the right RP, given a well formatted
  317. * Tor2webRendezvousPoints value. */
  318. static void
  319. test_pick_tor2web_rendezvous_node(void *arg)
  320. {
  321. or_options_t *options = get_options_mutable();
  322. const node_t *chosen_rp = NULL;
  323. router_crn_flags_t flags = CRN_NEED_DESC;
  324. int retval, i;
  325. const char *tor2web_rendezvous_str = "test003r";
  326. (void) arg;
  327. /* Setup fake routerlist. */
  328. helper_setup_fake_routerlist();
  329. /* Parse Tor2webRendezvousPoints as a routerset. */
  330. options->Tor2webRendezvousPoints = routerset_new();
  331. retval = routerset_parse(options->Tor2webRendezvousPoints,
  332. tor2web_rendezvous_str,
  333. "test_tor2web_rp");
  334. tt_int_op(retval, >=, 0);
  335. /* Pick rendezvous point. Make sure the correct one is
  336. picked. Repeat many times to make sure it works properly. */
  337. for (i = 0; i < 50 ; i++) {
  338. chosen_rp = pick_tor2web_rendezvous_node(flags, options);
  339. tt_assert(chosen_rp);
  340. tt_str_op(chosen_rp->ri->nickname, ==, tor2web_rendezvous_str);
  341. }
  342. done:
  343. routerset_free(options->Tor2webRendezvousPoints);
  344. }
  345. /* Make sure we never pick an RP if Tor2webRendezvousPoints doesn't
  346. * correspond to an actual node. */
  347. static void
  348. test_pick_bad_tor2web_rendezvous_node(void *arg)
  349. {
  350. or_options_t *options = get_options_mutable();
  351. const node_t *chosen_rp = NULL;
  352. router_crn_flags_t flags = CRN_NEED_DESC;
  353. int retval, i;
  354. const char *tor2web_rendezvous_str = "dummy";
  355. (void) arg;
  356. /* Setup fake routerlist. */
  357. helper_setup_fake_routerlist();
  358. /* Parse Tor2webRendezvousPoints as a routerset. */
  359. options->Tor2webRendezvousPoints = routerset_new();
  360. retval = routerset_parse(options->Tor2webRendezvousPoints,
  361. tor2web_rendezvous_str,
  362. "test_tor2web_rp");
  363. tt_int_op(retval, >=, 0);
  364. /* Pick rendezvous point. Since Tor2webRendezvousPoints was set to a
  365. dummy value, we shouldn't find any eligible RPs. */
  366. for (i = 0; i < 50 ; i++) {
  367. chosen_rp = pick_tor2web_rendezvous_node(flags, options);
  368. tt_assert(!chosen_rp);
  369. }
  370. done:
  371. routerset_free(options->Tor2webRendezvousPoints);
  372. }
  373. /* Make sure rend_data_t is valid at creation, destruction and when
  374. * duplicated. */
  375. static void
  376. test_hs_rend_data(void *arg)
  377. {
  378. int rep;
  379. rend_data_t *client = NULL, *client_dup = NULL;
  380. /* Binary format of a descriptor ID. */
  381. char desc_id[DIGEST_LEN];
  382. char client_cookie[REND_DESC_COOKIE_LEN];
  383. time_t now = time(NULL);
  384. rend_data_t *service_dup = NULL;
  385. rend_data_t *service = NULL;
  386. (void)arg;
  387. base32_decode(desc_id, sizeof(desc_id), STR_DESC_ID_BASE32,
  388. REND_DESC_ID_V2_LEN_BASE32);
  389. memset(client_cookie, 'e', sizeof(client_cookie));
  390. client = rend_data_client_create(STR_HS_ADDR, desc_id, client_cookie,
  391. REND_NO_AUTH);
  392. tt_assert(client);
  393. rend_data_v2_t *client_v2 = TO_REND_DATA_V2(client);
  394. tt_int_op(client_v2->auth_type, ==, REND_NO_AUTH);
  395. tt_str_op(client_v2->onion_address, OP_EQ, STR_HS_ADDR);
  396. tt_mem_op(client_v2->desc_id_fetch, OP_EQ, desc_id, sizeof(desc_id));
  397. tt_mem_op(client_v2->descriptor_cookie, OP_EQ, client_cookie,
  398. sizeof(client_cookie));
  399. tt_assert(client->hsdirs_fp);
  400. tt_int_op(smartlist_len(client->hsdirs_fp), ==, 0);
  401. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  402. int ret = rend_compute_v2_desc_id(desc_id, client_v2->onion_address,
  403. client_v2->descriptor_cookie, now, rep);
  404. /* That shouldn't never fail. */
  405. tt_int_op(ret, ==, 0);
  406. tt_mem_op(client_v2->descriptor_id[rep], OP_EQ, desc_id,
  407. sizeof(desc_id));
  408. }
  409. /* The rest should be zeroed because this is a client request. */
  410. tt_int_op(tor_digest_is_zero(client_v2->rend_pk_digest), ==, 1);
  411. tt_int_op(tor_digest_is_zero(client->rend_cookie), ==, 1);
  412. /* Test dup(). */
  413. client_dup = rend_data_dup(client);
  414. tt_assert(client_dup);
  415. rend_data_v2_t *client_dup_v2 = TO_REND_DATA_V2(client_dup);
  416. tt_int_op(client_dup_v2->auth_type, ==, client_v2->auth_type);
  417. tt_str_op(client_dup_v2->onion_address, OP_EQ, client_v2->onion_address);
  418. tt_mem_op(client_dup_v2->desc_id_fetch, OP_EQ, client_v2->desc_id_fetch,
  419. sizeof(client_dup_v2->desc_id_fetch));
  420. tt_mem_op(client_dup_v2->descriptor_cookie, OP_EQ,
  421. client_v2->descriptor_cookie,
  422. sizeof(client_dup_v2->descriptor_cookie));
  423. tt_assert(client_dup->hsdirs_fp);
  424. tt_int_op(smartlist_len(client_dup->hsdirs_fp), ==, 0);
  425. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  426. tt_mem_op(client_dup_v2->descriptor_id[rep], OP_EQ,
  427. client_v2->descriptor_id[rep], DIGEST_LEN);
  428. }
  429. /* The rest should be zeroed because this is a client request. */
  430. tt_int_op(tor_digest_is_zero(client_dup_v2->rend_pk_digest), ==, 1);
  431. tt_int_op(tor_digest_is_zero(client_dup->rend_cookie), ==, 1);
  432. rend_data_free(client);
  433. client = NULL;
  434. rend_data_free(client_dup);
  435. client_dup = NULL;
  436. /* Reset state. */
  437. base32_decode(desc_id, sizeof(desc_id), STR_DESC_ID_BASE32,
  438. REND_DESC_ID_V2_LEN_BASE32);
  439. memset(client_cookie, 'e', sizeof(client_cookie));
  440. /* Try with different parameters here for which some content should be
  441. * zeroed out. */
  442. client = rend_data_client_create(NULL, desc_id, NULL, REND_BASIC_AUTH);
  443. tt_assert(client);
  444. client_v2 = TO_REND_DATA_V2(client);
  445. tt_int_op(client_v2->auth_type, ==, REND_BASIC_AUTH);
  446. tt_int_op(strlen(client_v2->onion_address), ==, 0);
  447. tt_mem_op(client_v2->desc_id_fetch, OP_EQ, desc_id, sizeof(desc_id));
  448. tt_int_op(tor_mem_is_zero(client_v2->descriptor_cookie,
  449. sizeof(client_v2->descriptor_cookie)), ==, 1);
  450. tt_assert(client->hsdirs_fp);
  451. tt_int_op(smartlist_len(client->hsdirs_fp), ==, 0);
  452. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  453. tt_int_op(tor_digest_is_zero(client_v2->descriptor_id[rep]), ==, 1);
  454. }
  455. /* The rest should be zeroed because this is a client request. */
  456. tt_int_op(tor_digest_is_zero(client_v2->rend_pk_digest), ==, 1);
  457. tt_int_op(tor_digest_is_zero(client->rend_cookie), ==, 1);
  458. rend_data_free(client);
  459. client = NULL;
  460. /* Let's test the service object now. */
  461. char rend_pk_digest[DIGEST_LEN];
  462. uint8_t rend_cookie[DIGEST_LEN];
  463. memset(rend_pk_digest, 'f', sizeof(rend_pk_digest));
  464. memset(rend_cookie, 'g', sizeof(rend_cookie));
  465. service = rend_data_service_create(STR_HS_ADDR, rend_pk_digest,
  466. rend_cookie, REND_NO_AUTH);
  467. tt_assert(service);
  468. rend_data_v2_t *service_v2 = TO_REND_DATA_V2(service);
  469. tt_int_op(service_v2->auth_type, ==, REND_NO_AUTH);
  470. tt_str_op(service_v2->onion_address, OP_EQ, STR_HS_ADDR);
  471. tt_mem_op(service_v2->rend_pk_digest, OP_EQ, rend_pk_digest,
  472. sizeof(rend_pk_digest));
  473. tt_mem_op(service->rend_cookie, OP_EQ, rend_cookie, sizeof(rend_cookie));
  474. tt_assert(service->hsdirs_fp);
  475. tt_int_op(smartlist_len(service->hsdirs_fp), ==, 0);
  476. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  477. tt_int_op(tor_digest_is_zero(service_v2->descriptor_id[rep]), ==, 1);
  478. }
  479. /* The rest should be zeroed because this is a service request. */
  480. tt_int_op(tor_digest_is_zero(service_v2->descriptor_cookie), ==, 1);
  481. tt_int_op(tor_digest_is_zero(service_v2->desc_id_fetch), ==, 1);
  482. /* Test dup(). */
  483. service_dup = rend_data_dup(service);
  484. rend_data_v2_t *service_dup_v2 = TO_REND_DATA_V2(service_dup);
  485. tt_assert(service_dup);
  486. tt_int_op(service_dup_v2->auth_type, ==, service_v2->auth_type);
  487. tt_str_op(service_dup_v2->onion_address, OP_EQ, service_v2->onion_address);
  488. tt_mem_op(service_dup_v2->rend_pk_digest, OP_EQ, service_v2->rend_pk_digest,
  489. sizeof(service_dup_v2->rend_pk_digest));
  490. tt_mem_op(service_dup->rend_cookie, OP_EQ, service->rend_cookie,
  491. sizeof(service_dup->rend_cookie));
  492. tt_assert(service_dup->hsdirs_fp);
  493. tt_int_op(smartlist_len(service_dup->hsdirs_fp), ==, 0);
  494. for (rep = 0; rep < REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS; rep++) {
  495. tt_int_op(tor_digest_is_zero(service_dup_v2->descriptor_id[rep]), ==, 1);
  496. }
  497. /* The rest should be zeroed because this is a service request. */
  498. tt_int_op(tor_digest_is_zero(service_dup_v2->descriptor_cookie), ==, 1);
  499. tt_int_op(tor_digest_is_zero(service_dup_v2->desc_id_fetch), ==, 1);
  500. done:
  501. rend_data_free(service);
  502. rend_data_free(service_dup);
  503. rend_data_free(client);
  504. rend_data_free(client_dup);
  505. }
  506. /* Test encoding and decoding service authorization cookies */
  507. static void
  508. test_hs_auth_cookies(void *arg)
  509. {
  510. #define TEST_COOKIE_RAW ((const uint8_t *) "abcdefghijklmnop")
  511. #define TEST_COOKIE_ENCODED "YWJjZGVmZ2hpamtsbW5vcA"
  512. #define TEST_COOKIE_ENCODED_STEALTH "YWJjZGVmZ2hpamtsbW5vcB"
  513. #define TEST_COOKIE_ENCODED_INVALID "YWJjZGVmZ2hpamtsbW5vcD"
  514. char *encoded_cookie;
  515. uint8_t raw_cookie[REND_DESC_COOKIE_LEN];
  516. rend_auth_type_t auth_type;
  517. char *err_msg;
  518. int re;
  519. (void)arg;
  520. /* Test that encoding gives the expected result */
  521. encoded_cookie = rend_auth_encode_cookie(TEST_COOKIE_RAW, REND_BASIC_AUTH);
  522. tt_str_op(encoded_cookie, OP_EQ, TEST_COOKIE_ENCODED);
  523. tor_free(encoded_cookie);
  524. encoded_cookie = rend_auth_encode_cookie(TEST_COOKIE_RAW, REND_STEALTH_AUTH);
  525. tt_str_op(encoded_cookie, OP_EQ, TEST_COOKIE_ENCODED_STEALTH);
  526. tor_free(encoded_cookie);
  527. /* Decoding should give the original value */
  528. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED, raw_cookie, &auth_type,
  529. &err_msg);
  530. tt_assert(!re);
  531. tt_assert(!err_msg);
  532. tt_mem_op(raw_cookie, OP_EQ, TEST_COOKIE_RAW, REND_DESC_COOKIE_LEN);
  533. tt_int_op(auth_type, OP_EQ, REND_BASIC_AUTH);
  534. memset(raw_cookie, 0, sizeof(raw_cookie));
  535. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED_STEALTH, raw_cookie,
  536. &auth_type, &err_msg);
  537. tt_assert(!re);
  538. tt_assert(!err_msg);
  539. tt_mem_op(raw_cookie, OP_EQ, TEST_COOKIE_RAW, REND_DESC_COOKIE_LEN);
  540. tt_int_op(auth_type, OP_EQ, REND_STEALTH_AUTH);
  541. memset(raw_cookie, 0, sizeof(raw_cookie));
  542. /* Decoding with padding characters should also work */
  543. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED "==", raw_cookie, NULL,
  544. &err_msg);
  545. tt_assert(!re);
  546. tt_assert(!err_msg);
  547. tt_mem_op(raw_cookie, OP_EQ, TEST_COOKIE_RAW, REND_DESC_COOKIE_LEN);
  548. /* Decoding with an unknown type should fail */
  549. re = rend_auth_decode_cookie(TEST_COOKIE_ENCODED_INVALID, raw_cookie,
  550. &auth_type, &err_msg);
  551. tt_int_op(re, OP_LT, 0);
  552. tt_assert(err_msg);
  553. tor_free(err_msg);
  554. done:
  555. return;
  556. }
  557. static int mock_get_options_calls = 0;
  558. static or_options_t *mock_options = NULL;
  559. static void
  560. reset_options(or_options_t *options, int *get_options_calls)
  561. {
  562. memset(options, 0, sizeof(or_options_t));
  563. options->TestingTorNetwork = 1;
  564. *get_options_calls = 0;
  565. }
  566. static const or_options_t *
  567. mock_get_options(void)
  568. {
  569. ++mock_get_options_calls;
  570. tor_assert(mock_options);
  571. return mock_options;
  572. }
  573. /* arg can't be 0 (the test fails) or 2 (the test is skipped) */
  574. #define CREATE_HS_DIR_NONE ((intptr_t)0x04)
  575. #define CREATE_HS_DIR1 ((intptr_t)0x08)
  576. #define CREATE_HS_DIR2 ((intptr_t)0x10)
  577. /* Test that single onion poisoning works. */
  578. static void
  579. test_single_onion_poisoning(void *arg)
  580. {
  581. or_options_t opt;
  582. mock_options = &opt;
  583. reset_options(mock_options, &mock_get_options_calls);
  584. MOCK(get_options, mock_get_options);
  585. int ret = -1;
  586. intptr_t create_dir_mask = (intptr_t)arg;
  587. /* Get directories with a random suffix so we can repeat the tests */
  588. mock_options->DataDirectory = tor_strdup(get_fname_rnd("test_data_dir"));
  589. rend_service_t *service_1 = tor_malloc_zero(sizeof(rend_service_t));
  590. char *dir1 = tor_strdup(get_fname_rnd("test_hs_dir1"));
  591. rend_service_t *service_2 = tor_malloc_zero(sizeof(rend_service_t));
  592. char *dir2 = tor_strdup(get_fname_rnd("test_hs_dir2"));
  593. smartlist_t *services = smartlist_new();
  594. char *poison_path = NULL;
  595. char *err_msg = NULL;
  596. mock_options->HiddenServiceSingleHopMode = 1;
  597. mock_options->HiddenServiceNonAnonymousMode = 1;
  598. /* Create the data directory, and, if the correct bit in arg is set,
  599. * create a directory for that service.
  600. * The data directory is required for the lockfile, which is used when
  601. * loading keys. */
  602. ret = check_private_dir(mock_options->DataDirectory, CPD_CREATE, NULL);
  603. tt_assert(ret == 0);
  604. if (create_dir_mask & CREATE_HS_DIR1) {
  605. ret = check_private_dir(dir1, CPD_CREATE, NULL);
  606. tt_assert(ret == 0);
  607. }
  608. if (create_dir_mask & CREATE_HS_DIR2) {
  609. ret = check_private_dir(dir2, CPD_CREATE, NULL);
  610. tt_assert(ret == 0);
  611. }
  612. service_1->directory = dir1;
  613. service_2->directory = dir2;
  614. /* The services own the directory pointers now */
  615. dir1 = dir2 = NULL;
  616. /* Add port to service 1 */
  617. service_1->ports = smartlist_new();
  618. service_2->ports = smartlist_new();
  619. rend_service_port_config_t *port1 = rend_service_parse_port_config("80", " ",
  620. &err_msg);
  621. tt_assert(port1);
  622. tt_assert(!err_msg);
  623. smartlist_add(service_1->ports, port1);
  624. rend_service_port_config_t *port2 = rend_service_parse_port_config("90", " ",
  625. &err_msg);
  626. /* Add port to service 2 */
  627. tt_assert(port2);
  628. tt_assert(!err_msg);
  629. smartlist_add(service_2->ports, port2);
  630. /* No services, a service to verify, no problem! */
  631. mock_options->HiddenServiceSingleHopMode = 0;
  632. mock_options->HiddenServiceNonAnonymousMode = 0;
  633. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  634. tt_assert(ret == 0);
  635. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  636. tt_assert(ret == 0);
  637. /* Either way, no problem. */
  638. mock_options->HiddenServiceSingleHopMode = 1;
  639. mock_options->HiddenServiceNonAnonymousMode = 1;
  640. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  641. tt_assert(ret == 0);
  642. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  643. tt_assert(ret == 0);
  644. /* Add the first service */
  645. ret = hs_check_service_private_dir(mock_options->User, service_1->directory,
  646. service_1->dir_group_readable, 1);
  647. tt_int_op(ret, OP_EQ, 0);
  648. smartlist_add(services, service_1);
  649. /* But don't add the second service yet. */
  650. /* Service directories, but no previous keys, no problem! */
  651. mock_options->HiddenServiceSingleHopMode = 0;
  652. mock_options->HiddenServiceNonAnonymousMode = 0;
  653. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  654. tt_assert(ret == 0);
  655. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  656. tt_assert(ret == 0);
  657. /* Either way, no problem. */
  658. mock_options->HiddenServiceSingleHopMode = 1;
  659. mock_options->HiddenServiceNonAnonymousMode = 1;
  660. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  661. tt_assert(ret == 0);
  662. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  663. tt_assert(ret == 0);
  664. /* Poison! Poison! Poison!
  665. * This can only be done in HiddenServiceSingleHopMode. */
  666. mock_options->HiddenServiceSingleHopMode = 1;
  667. mock_options->HiddenServiceNonAnonymousMode = 1;
  668. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  669. tt_assert(ret == 0);
  670. /* Poisoning twice is a no-op. */
  671. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  672. tt_assert(ret == 0);
  673. /* Poisoned service directories, but no previous keys, no problem! */
  674. mock_options->HiddenServiceSingleHopMode = 0;
  675. mock_options->HiddenServiceNonAnonymousMode = 0;
  676. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  677. tt_assert(ret == 0);
  678. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  679. tt_assert(ret == 0);
  680. /* Either way, no problem. */
  681. mock_options->HiddenServiceSingleHopMode = 1;
  682. mock_options->HiddenServiceNonAnonymousMode = 1;
  683. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  684. tt_assert(ret == 0);
  685. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  686. tt_assert(ret == 0);
  687. /* Now add some keys, and we'll have a problem. */
  688. ret = rend_service_load_all_keys(services);
  689. tt_assert(ret == 0);
  690. /* Poisoned service directories with previous keys are not allowed. */
  691. mock_options->HiddenServiceSingleHopMode = 0;
  692. mock_options->HiddenServiceNonAnonymousMode = 0;
  693. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  694. tt_assert(ret < 0);
  695. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  696. tt_assert(ret == 0);
  697. /* But they are allowed if we're in non-anonymous mode. */
  698. mock_options->HiddenServiceSingleHopMode = 1;
  699. mock_options->HiddenServiceNonAnonymousMode = 1;
  700. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  701. tt_assert(ret == 0);
  702. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  703. tt_assert(ret == 0);
  704. /* Re-poisoning directories with existing keys is a no-op, because
  705. * directories with existing keys are ignored. */
  706. mock_options->HiddenServiceSingleHopMode = 1;
  707. mock_options->HiddenServiceNonAnonymousMode = 1;
  708. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  709. tt_assert(ret == 0);
  710. /* And it keeps the poison. */
  711. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  712. tt_assert(ret == 0);
  713. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  714. tt_assert(ret == 0);
  715. /* Now add the second service: it has no key and no poison file */
  716. ret = hs_check_service_private_dir(mock_options->User, service_2->directory,
  717. service_2->dir_group_readable, 1);
  718. tt_int_op(ret, OP_EQ, 0);
  719. smartlist_add(services, service_2);
  720. /* A new service, and an existing poisoned service. Not ok. */
  721. mock_options->HiddenServiceSingleHopMode = 0;
  722. mock_options->HiddenServiceNonAnonymousMode = 0;
  723. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  724. tt_assert(ret < 0);
  725. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  726. tt_assert(ret == 0);
  727. /* But ok to add in non-anonymous mode. */
  728. mock_options->HiddenServiceSingleHopMode = 1;
  729. mock_options->HiddenServiceNonAnonymousMode = 1;
  730. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  731. tt_assert(ret == 0);
  732. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  733. tt_assert(ret == 0);
  734. /* Now remove the poisoning from the first service, and we have the opposite
  735. * problem. */
  736. poison_path = rend_service_sos_poison_path(service_1);
  737. tt_assert(poison_path);
  738. ret = unlink(poison_path);
  739. tt_assert(ret == 0);
  740. /* Unpoisoned service directories with previous keys are ok, as are empty
  741. * directories. */
  742. mock_options->HiddenServiceSingleHopMode = 0;
  743. mock_options->HiddenServiceNonAnonymousMode = 0;
  744. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  745. tt_assert(ret == 0);
  746. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  747. tt_assert(ret == 0);
  748. /* But the existing unpoisoned key is not ok in non-anonymous mode, even if
  749. * there is an empty service. */
  750. mock_options->HiddenServiceSingleHopMode = 1;
  751. mock_options->HiddenServiceNonAnonymousMode = 1;
  752. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  753. tt_assert(ret < 0);
  754. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  755. tt_assert(ret == 0);
  756. /* Poisoning directories with existing keys is a no-op, because directories
  757. * with existing keys are ignored. But the new directory should poison. */
  758. mock_options->HiddenServiceSingleHopMode = 1;
  759. mock_options->HiddenServiceNonAnonymousMode = 1;
  760. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  761. tt_assert(ret == 0);
  762. ret = rend_service_poison_new_single_onion_dir(service_2, mock_options);
  763. tt_assert(ret == 0);
  764. /* And the old directory remains unpoisoned. */
  765. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  766. tt_assert(ret < 0);
  767. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  768. tt_assert(ret == 0);
  769. /* And the new directory should be ignored, because it has no key. */
  770. mock_options->HiddenServiceSingleHopMode = 0;
  771. mock_options->HiddenServiceNonAnonymousMode = 0;
  772. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  773. tt_assert(ret == 0);
  774. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  775. tt_assert(ret == 0);
  776. /* Re-poisoning directories without existing keys is a no-op. */
  777. mock_options->HiddenServiceSingleHopMode = 1;
  778. mock_options->HiddenServiceNonAnonymousMode = 1;
  779. ret = rend_service_poison_new_single_onion_dir(service_1, mock_options);
  780. tt_assert(ret == 0);
  781. ret = rend_service_poison_new_single_onion_dir(service_2, mock_options);
  782. tt_assert(ret == 0);
  783. /* And the old directory remains unpoisoned. */
  784. ret = rend_service_verify_single_onion_poison(service_1, mock_options);
  785. tt_assert(ret < 0);
  786. ret = rend_service_verify_single_onion_poison(service_2, mock_options);
  787. tt_assert(ret == 0);
  788. done:
  789. /* The test harness deletes the directories at exit */
  790. tor_free(poison_path);
  791. tor_free(dir1);
  792. tor_free(dir2);
  793. smartlist_free(services);
  794. rend_service_free(service_1);
  795. rend_service_free(service_2);
  796. UNMOCK(get_options);
  797. tor_free(mock_options->DataDirectory);
  798. tor_free(err_msg);
  799. }
  800. static rend_service_t *
  801. helper_create_rend_service(const char *path)
  802. {
  803. rend_service_t *s = tor_malloc_zero(sizeof(rend_service_t));
  804. s->ports = smartlist_new();
  805. s->intro_nodes = smartlist_new();
  806. s->expiring_nodes = smartlist_new();
  807. if (path) {
  808. s->directory = tor_strdup(path);
  809. }
  810. return s;
  811. }
  812. static void
  813. test_prune_services_on_reload(void *arg)
  814. {
  815. smartlist_t *new = smartlist_new(), *old = smartlist_new();
  816. /* Non ephemeral service. */
  817. rend_service_t *s1 = helper_create_rend_service("SomePath");
  818. /* Create a non ephemeral service with the _same_ path as so we can test the
  819. * transfer of introduction point between the same services on reload. */
  820. rend_service_t *s2 = helper_create_rend_service(s1->directory);
  821. /* Ephemeral service (directory is NULL). */
  822. rend_service_t *e1 = helper_create_rend_service(NULL);
  823. rend_service_t *e2 = helper_create_rend_service(NULL);
  824. (void) arg;
  825. {
  826. /* Add both services to the old list. */
  827. smartlist_add(old, s1);
  828. smartlist_add(old, e1);
  829. /* Only put the non ephemeral in the new list. */
  830. smartlist_add(new, s1);
  831. set_rend_service_list(old);
  832. set_rend_rend_service_staging_list(new);
  833. rend_service_prune_list_impl_();
  834. /* We expect that the ephemeral one is in the new list but removed from
  835. * the old one. */
  836. tt_int_op(smartlist_len(old), OP_EQ, 1);
  837. tt_assert(smartlist_get(old, 0) == s1);
  838. tt_int_op(smartlist_len(new), OP_EQ, 2);
  839. tt_assert(smartlist_get(new, 0) == s1);
  840. tt_assert(smartlist_get(new, 1) == e1);
  841. /* Cleanup for next test. */
  842. smartlist_clear(new);
  843. smartlist_clear(old);
  844. }
  845. {
  846. /* This test will make sure that only the ephemeral service is kept if the
  847. * new list is empty. The old list should contain only the non ephemeral
  848. * one. */
  849. smartlist_add(old, s1);
  850. smartlist_add(old, e1);
  851. set_rend_service_list(old);
  852. set_rend_rend_service_staging_list(new);
  853. rend_service_prune_list_impl_();
  854. tt_int_op(smartlist_len(old), OP_EQ, 1);
  855. tt_assert(smartlist_get(old, 0) == s1);
  856. tt_int_op(smartlist_len(new), OP_EQ, 1);
  857. tt_assert(smartlist_get(new, 0) == e1);
  858. /* Cleanup for next test. */
  859. smartlist_clear(new);
  860. smartlist_clear(old);
  861. }
  862. {
  863. /* This test makes sure that the new list stays the same even from the old
  864. * list being completely different. */
  865. smartlist_add(new, s1);
  866. smartlist_add(new, e1);
  867. set_rend_service_list(old);
  868. set_rend_rend_service_staging_list(new);
  869. rend_service_prune_list_impl_();
  870. tt_int_op(smartlist_len(old), OP_EQ, 0);
  871. tt_int_op(smartlist_len(new), OP_EQ, 2);
  872. tt_assert(smartlist_get(new, 0) == s1);
  873. tt_assert(smartlist_get(new, 1) == e1);
  874. /* Cleanup for next test. */
  875. smartlist_clear(new);
  876. }
  877. {
  878. rend_intro_point_t ip1;
  879. /* This IP should be found in the s2 service after pruning. */
  880. smartlist_add(s1->intro_nodes, &ip1);
  881. /* Setup our list. */
  882. smartlist_add(old, s1);
  883. smartlist_add(new, s2);
  884. set_rend_service_list(old);
  885. set_rend_rend_service_staging_list(new);
  886. rend_service_prune_list_impl_();
  887. tt_int_op(smartlist_len(old), OP_EQ, 1);
  888. /* Intro nodes have been moved to the s2 in theory so it must be empty. */
  889. tt_int_op(smartlist_len(s1->intro_nodes), OP_EQ, 0);
  890. tt_int_op(smartlist_len(new), OP_EQ, 1);
  891. rend_service_t *elem = smartlist_get(new, 0);
  892. tt_assert(elem);
  893. tt_assert(elem == s2);
  894. tt_int_op(smartlist_len(elem->intro_nodes), OP_EQ, 1);
  895. tt_assert(smartlist_get(elem->intro_nodes, 0) == &ip1);
  896. smartlist_clear(s1->intro_nodes);
  897. smartlist_clear(s2->intro_nodes);
  898. /* Cleanup for next test. */
  899. smartlist_clear(new);
  900. smartlist_clear(old);
  901. }
  902. {
  903. /* Test two ephemeral services. */
  904. smartlist_add(old, e1);
  905. smartlist_add(old, e2);
  906. set_rend_service_list(old);
  907. set_rend_rend_service_staging_list(new);
  908. rend_service_prune_list_impl_();
  909. /* Check if they've all been transfered. */
  910. tt_int_op(smartlist_len(old), OP_EQ, 0);
  911. tt_int_op(smartlist_len(new), OP_EQ, 2);
  912. }
  913. done:
  914. rend_service_free(s1);
  915. rend_service_free(s2);
  916. rend_service_free(e1);
  917. rend_service_free(e2);
  918. smartlist_free(new);
  919. smartlist_free(old);
  920. }
  921. struct testcase_t hs_tests[] = {
  922. { "hs_rend_data", test_hs_rend_data, TT_FORK,
  923. NULL, NULL },
  924. { "hs_parse_static_v2_desc", test_hs_parse_static_v2_desc, TT_FORK,
  925. NULL, NULL },
  926. { "hs_desc_event", test_hs_desc_event, TT_FORK,
  927. NULL, NULL },
  928. { "pick_tor2web_rendezvous_node", test_pick_tor2web_rendezvous_node, TT_FORK,
  929. NULL, NULL },
  930. { "pick_bad_tor2web_rendezvous_node",
  931. test_pick_bad_tor2web_rendezvous_node, TT_FORK,
  932. NULL, NULL },
  933. { "hs_auth_cookies", test_hs_auth_cookies, TT_FORK,
  934. NULL, NULL },
  935. { "single_onion_poisoning_create_dir_none", test_single_onion_poisoning,
  936. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR_NONE) },
  937. { "single_onion_poisoning_create_dir1", test_single_onion_poisoning,
  938. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR1) },
  939. { "single_onion_poisoning_create_dir2", test_single_onion_poisoning,
  940. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR2) },
  941. { "single_onion_poisoning_create_dir_both", test_single_onion_poisoning,
  942. TT_FORK, &passthrough_setup, (void*)(CREATE_HS_DIR1 | CREATE_HS_DIR2) },
  943. { "prune_services_on_reload", test_prune_services_on_reload, TT_FORK,
  944. NULL, NULL },
  945. END_OF_TESTCASES
  946. };