test_dir_common.c 15 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419
  1. /* Copyright (c) 2001-2004, Roger Dingledine.
  2. * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
  3. * Copyright (c) 2007-2016, The Tor Project, Inc. */
  4. /* See LICENSE for licensing information */
  5. #include "orconfig.h"
  6. #define DIRVOTE_PRIVATE
  7. #include "crypto.h"
  8. #include "test.h"
  9. #include "container.h"
  10. #include "or.h"
  11. #include "dirvote.h"
  12. #include "nodelist.h"
  13. #include "routerlist.h"
  14. #include "test_dir_common.h"
  15. void dir_common_setup_vote(networkstatus_t **vote, time_t now);
  16. networkstatus_t * dir_common_add_rs_and_parse(networkstatus_t *vote,
  17. networkstatus_t **vote_out,
  18. vote_routerstatus_t * (*vrs_gen)(int idx, time_t now),
  19. crypto_pk_t *sign_skey, int *n_vrs,
  20. time_t now, int clear_rl);
  21. /** Initialize and set auth certs and keys
  22. * Returns 0 on success, -1 on failure. Clean up handled by caller.
  23. */
  24. int
  25. dir_common_authority_pk_init(authority_cert_t **cert1,
  26. authority_cert_t **cert2,
  27. authority_cert_t **cert3,
  28. crypto_pk_t **sign_skey_1,
  29. crypto_pk_t **sign_skey_2,
  30. crypto_pk_t **sign_skey_3)
  31. {
  32. /* Parse certificates and keys. */
  33. authority_cert_t *cert;
  34. cert = authority_cert_parse_from_string(AUTHORITY_CERT_1, NULL);
  35. tt_assert(cert);
  36. tt_assert(cert->identity_key);
  37. *cert1 = cert;
  38. tt_assert(*cert1);
  39. *cert2 = authority_cert_parse_from_string(AUTHORITY_CERT_2, NULL);
  40. tt_assert(*cert2);
  41. *cert3 = authority_cert_parse_from_string(AUTHORITY_CERT_3, NULL);
  42. tt_assert(*cert3);
  43. *sign_skey_1 = crypto_pk_new();
  44. *sign_skey_2 = crypto_pk_new();
  45. *sign_skey_3 = crypto_pk_new();
  46. tt_assert(!crypto_pk_read_private_key_from_string(*sign_skey_1,
  47. AUTHORITY_SIGNKEY_1, -1));
  48. tt_assert(!crypto_pk_read_private_key_from_string(*sign_skey_2,
  49. AUTHORITY_SIGNKEY_2, -1));
  50. tt_assert(!crypto_pk_read_private_key_from_string(*sign_skey_3,
  51. AUTHORITY_SIGNKEY_3, -1));
  52. tt_assert(!crypto_pk_cmp_keys(*sign_skey_1, (*cert1)->signing_key));
  53. tt_assert(!crypto_pk_cmp_keys(*sign_skey_2, (*cert2)->signing_key));
  54. return 0;
  55. done:
  56. return -1;
  57. }
  58. /**
  59. * Generate a routerstatus for v3_networkstatus test.
  60. */
  61. vote_routerstatus_t *
  62. dir_common_gen_routerstatus_for_v3ns(int idx, time_t now)
  63. {
  64. vote_routerstatus_t *vrs=NULL;
  65. routerstatus_t *rs = NULL;
  66. tor_addr_t addr_ipv6;
  67. char *method_list = NULL;
  68. switch (idx) {
  69. case 0:
  70. /* Generate the first routerstatus. */
  71. vrs = tor_malloc_zero(sizeof(vote_routerstatus_t));
  72. rs = &vrs->status;
  73. vrs->version = tor_strdup("0.1.2.14");
  74. rs->published_on = now-1500;
  75. strlcpy(rs->nickname, "router2", sizeof(rs->nickname));
  76. memset(rs->identity_digest, TEST_DIR_ROUTER_ID_1, DIGEST_LEN);
  77. memset(rs->descriptor_digest, TEST_DIR_ROUTER_DD_1, DIGEST_LEN);
  78. rs->addr = 0x99008801;
  79. rs->or_port = 443;
  80. rs->dir_port = 8000;
  81. /* all flags but running and v2dir cleared */
  82. rs->is_flagged_running = 1;
  83. rs->is_v2_dir = 1;
  84. rs->is_valid = 1; /* xxxxx */
  85. break;
  86. case 1:
  87. /* Generate the second routerstatus. */
  88. vrs = tor_malloc_zero(sizeof(vote_routerstatus_t));
  89. rs = &vrs->status;
  90. vrs->version = tor_strdup("0.2.0.5");
  91. rs->published_on = now-1000;
  92. strlcpy(rs->nickname, "router1", sizeof(rs->nickname));
  93. memset(rs->identity_digest, TEST_DIR_ROUTER_ID_2, DIGEST_LEN);
  94. memset(rs->descriptor_digest, TEST_DIR_ROUTER_DD_2, DIGEST_LEN);
  95. rs->addr = 0x99009901;
  96. rs->or_port = 443;
  97. rs->dir_port = 0;
  98. tor_addr_parse(&addr_ipv6, "[1:2:3::4]");
  99. tor_addr_copy(&rs->ipv6_addr, &addr_ipv6);
  100. rs->ipv6_orport = 4711;
  101. rs->is_exit = rs->is_stable = rs->is_fast = rs->is_flagged_running =
  102. rs->is_valid = rs->is_possible_guard = rs->is_v2_dir = 1;
  103. break;
  104. case 2:
  105. /* Generate the third routerstatus. */
  106. vrs = tor_malloc_zero(sizeof(vote_routerstatus_t));
  107. rs = &vrs->status;
  108. vrs->version = tor_strdup("0.1.0.3");
  109. rs->published_on = now-1000;
  110. strlcpy(rs->nickname, "router3", sizeof(rs->nickname));
  111. memset(rs->identity_digest, TEST_DIR_ROUTER_ID_3, DIGEST_LEN);
  112. memset(rs->descriptor_digest, TEST_DIR_ROUTER_DD_3, DIGEST_LEN);
  113. rs->addr = 0xAA009901;
  114. rs->or_port = 400;
  115. rs->dir_port = 9999;
  116. rs->is_authority = rs->is_exit = rs->is_stable = rs->is_fast =
  117. rs->is_flagged_running = rs->is_valid = rs->is_v2_dir =
  118. rs->is_possible_guard = 1;
  119. break;
  120. case 3:
  121. /* Generate a fourth routerstatus that is not running. */
  122. vrs = tor_malloc_zero(sizeof(vote_routerstatus_t));
  123. rs = &vrs->status;
  124. vrs->version = tor_strdup("0.1.6.3");
  125. rs->published_on = now-1000;
  126. strlcpy(rs->nickname, "router4", sizeof(rs->nickname));
  127. memset(rs->identity_digest, TEST_DIR_ROUTER_ID_4, DIGEST_LEN);
  128. memset(rs->descriptor_digest, TEST_DIR_ROUTER_DD_4, DIGEST_LEN);
  129. rs->addr = 0xC0000203;
  130. rs->or_port = 500;
  131. rs->dir_port = 1999;
  132. rs->is_v2_dir = 1;
  133. /* Running flag (and others) cleared */
  134. break;
  135. case 4:
  136. /* No more for this test; return NULL */
  137. vrs = NULL;
  138. break;
  139. default:
  140. /* Shouldn't happen */
  141. tt_assert(0);
  142. }
  143. if (vrs) {
  144. vrs->microdesc = tor_malloc_zero(sizeof(vote_microdesc_hash_t));
  145. method_list = make_consensus_method_list(MIN_SUPPORTED_CONSENSUS_METHOD,
  146. MAX_SUPPORTED_CONSENSUS_METHOD,
  147. ",");
  148. tor_asprintf(&vrs->microdesc->microdesc_hash_line,
  149. "m %s "
  150. "sha256=xyzajkldsdsajdadlsdjaslsdksdjlsdjsdaskdaaa%d\n",
  151. method_list, idx);
  152. }
  153. done:
  154. tor_free(method_list);
  155. return vrs;
  156. }
  157. /** Initialize networkstatus vote object attributes. */
  158. void
  159. dir_common_setup_vote(networkstatus_t **vote, time_t now)
  160. {
  161. *vote = tor_malloc_zero(sizeof(networkstatus_t));
  162. (*vote)->type = NS_TYPE_VOTE;
  163. (*vote)->published = now;
  164. (*vote)->supported_methods = smartlist_new();
  165. (*vote)->known_flags = smartlist_new();
  166. (*vote)->net_params = smartlist_new();
  167. (*vote)->routerstatus_list = smartlist_new();
  168. (*vote)->voters = smartlist_new();
  169. }
  170. /** Helper: Make a new routerinfo containing the right information for a
  171. * given vote_routerstatus_t. */
  172. routerinfo_t *
  173. dir_common_generate_ri_from_rs(const vote_routerstatus_t *vrs)
  174. {
  175. routerinfo_t *r;
  176. const routerstatus_t *rs = &vrs->status;
  177. static time_t published = 0;
  178. r = tor_malloc_zero(sizeof(routerinfo_t));
  179. r->cert_expiration_time = TIME_MAX;
  180. memcpy(r->cache_info.identity_digest, rs->identity_digest, DIGEST_LEN);
  181. memcpy(r->cache_info.signed_descriptor_digest, rs->descriptor_digest,
  182. DIGEST_LEN);
  183. r->cache_info.do_not_cache = 1;
  184. r->cache_info.routerlist_index = -1;
  185. r->cache_info.signed_descriptor_body =
  186. tor_strdup("123456789012345678901234567890123");
  187. r->cache_info.signed_descriptor_len =
  188. strlen(r->cache_info.signed_descriptor_body);
  189. r->exit_policy = smartlist_new();
  190. r->cache_info.published_on = ++published + time(NULL);
  191. if (rs->has_bandwidth) {
  192. /*
  193. * Multiply by 1000 because the routerinfo_t and the routerstatus_t
  194. * seem to use different units (*sigh*) and because we seem stuck on
  195. * icky and perverse decimal kilobytes (*double sigh*) - see
  196. * router_get_advertised_bandwidth_capped() of routerlist.c and
  197. * routerstatus_format_entry() of dirserv.c.
  198. */
  199. r->bandwidthrate = rs->bandwidth_kb * 1000;
  200. r->bandwidthcapacity = rs->bandwidth_kb * 1000;
  201. }
  202. return r;
  203. }
  204. /** Create routerstatuses and signed vote.
  205. * Create routerstatuses using *vrs_gen* and add them to global routerlist.
  206. * Next, create signed vote using *sign_skey* and *vote*, which should have
  207. * predefined header fields.
  208. * Setting *clear_rl* clears the global routerlist before adding the new
  209. * routers.
  210. * Return the signed vote, same as *vote_out*. Save the number of routers added
  211. * in *n_vrs*.
  212. */
  213. networkstatus_t *
  214. dir_common_add_rs_and_parse(networkstatus_t *vote, networkstatus_t **vote_out,
  215. vote_routerstatus_t * (*vrs_gen)(int idx, time_t now),
  216. crypto_pk_t *sign_skey, int *n_vrs, time_t now,
  217. int clear_rl)
  218. {
  219. vote_routerstatus_t *vrs;
  220. char *v_text=NULL;
  221. const char *msg=NULL;
  222. int idx;
  223. was_router_added_t router_added = -1;
  224. *vote_out = NULL;
  225. if (clear_rl) {
  226. nodelist_free_all();
  227. routerlist_free_all();
  228. }
  229. idx = 0;
  230. do {
  231. vrs = vrs_gen(idx, now);
  232. if (vrs) {
  233. smartlist_add(vote->routerstatus_list, vrs);
  234. router_added =
  235. router_add_to_routerlist(dir_common_generate_ri_from_rs(vrs),
  236. &msg,0,0);
  237. tt_assert(router_added >= 0);
  238. ++idx;
  239. }
  240. } while (vrs);
  241. *n_vrs = idx;
  242. /* dump the vote and try to parse it. */
  243. v_text = format_networkstatus_vote(sign_skey, vote);
  244. tt_assert(v_text);
  245. *vote_out = networkstatus_parse_vote_from_string(v_text, NULL, NS_TYPE_VOTE);
  246. done:
  247. if (v_text)
  248. tor_free(v_text);
  249. return *vote_out;
  250. }
  251. /** Create a fake *vote* where *cert* describes the signer, *sign_skey*
  252. * is the signing key, and *vrs_gen* is the function we'll use to create the
  253. * routers on which we're voting.
  254. * We pass *vote_out*, *n_vrs*, and *clear_rl* directly to vrs_gen().
  255. * Return 0 on success, return -1 on failure.
  256. */
  257. int
  258. dir_common_construct_vote_1(networkstatus_t **vote, authority_cert_t *cert,
  259. crypto_pk_t *sign_skey,
  260. vote_routerstatus_t * (*vrs_gen)(int idx, time_t now),
  261. networkstatus_t **vote_out, int *n_vrs,
  262. time_t now, int clear_rl)
  263. {
  264. networkstatus_voter_info_t *voter;
  265. dir_common_setup_vote(vote, now);
  266. (*vote)->valid_after = now+1000;
  267. (*vote)->fresh_until = now+2000;
  268. (*vote)->valid_until = now+3000;
  269. (*vote)->vote_seconds = 100;
  270. (*vote)->dist_seconds = 200;
  271. smartlist_split_string((*vote)->supported_methods, "1 2 3", NULL, 0, -1);
  272. (*vote)->client_versions = tor_strdup("0.1.2.14,0.1.2.15");
  273. (*vote)->server_versions = tor_strdup("0.1.2.14,0.1.2.15,0.1.2.16");
  274. smartlist_split_string((*vote)->known_flags,
  275. "Authority Exit Fast Guard Running Stable V2Dir Valid",
  276. 0, SPLIT_SKIP_SPACE|SPLIT_IGNORE_BLANK, 0);
  277. voter = tor_malloc_zero(sizeof(networkstatus_voter_info_t));
  278. voter->nickname = tor_strdup("Voter1");
  279. voter->address = tor_strdup("1.2.3.4");
  280. voter->addr = 0x01020304;
  281. voter->dir_port = 80;
  282. voter->or_port = 9000;
  283. voter->contact = tor_strdup("voter@example.com");
  284. crypto_pk_get_digest(cert->identity_key, voter->identity_digest);
  285. /*
  286. * Set up a vote; generate it; try to parse it.
  287. */
  288. smartlist_add((*vote)->voters, voter);
  289. (*vote)->cert = authority_cert_dup(cert);
  290. smartlist_split_string((*vote)->net_params, "circuitwindow=101 foo=990",
  291. NULL, 0, 0);
  292. *n_vrs = 0;
  293. /* add routerstatuses */
  294. if (!dir_common_add_rs_and_parse(*vote, vote_out, vrs_gen, sign_skey,
  295. n_vrs, now, clear_rl))
  296. return -1;
  297. return 0;
  298. }
  299. /** See dir_common_construct_vote_1.
  300. * Produces a vote with slightly different values.
  301. */
  302. int
  303. dir_common_construct_vote_2(networkstatus_t **vote, authority_cert_t *cert,
  304. crypto_pk_t *sign_skey,
  305. vote_routerstatus_t * (*vrs_gen)(int idx, time_t now),
  306. networkstatus_t **vote_out, int *n_vrs,
  307. time_t now, int clear_rl)
  308. {
  309. networkstatus_voter_info_t *voter;
  310. dir_common_setup_vote(vote, now);
  311. (*vote)->type = NS_TYPE_VOTE;
  312. (*vote)->published += 1;
  313. (*vote)->valid_after = now+1000;
  314. (*vote)->fresh_until = now+3005;
  315. (*vote)->valid_until = now+3000;
  316. (*vote)->vote_seconds = 100;
  317. (*vote)->dist_seconds = 300;
  318. smartlist_split_string((*vote)->supported_methods, "1 2 3", NULL, 0, -1);
  319. smartlist_split_string((*vote)->known_flags,
  320. "Authority Exit Fast Guard MadeOfCheese MadeOfTin "
  321. "Running Stable V2Dir Valid", 0,
  322. SPLIT_SKIP_SPACE|SPLIT_IGNORE_BLANK, 0);
  323. voter = tor_malloc_zero(sizeof(networkstatus_voter_info_t));
  324. voter->nickname = tor_strdup("Voter2");
  325. voter->address = tor_strdup("2.3.4.5");
  326. voter->addr = 0x02030405;
  327. voter->dir_port = 80;
  328. voter->or_port = 9000;
  329. voter->contact = tor_strdup("voter@example.com");
  330. crypto_pk_get_digest(cert->identity_key, voter->identity_digest);
  331. /*
  332. * Set up a vote; generate it; try to parse it.
  333. */
  334. smartlist_add((*vote)->voters, voter);
  335. (*vote)->cert = authority_cert_dup(cert);
  336. if (! (*vote)->net_params)
  337. (*vote)->net_params = smartlist_new();
  338. smartlist_split_string((*vote)->net_params,
  339. "bar=2000000000 circuitwindow=20",
  340. NULL, 0, 0);
  341. /* add routerstatuses */
  342. /* dump the vote and try to parse it. */
  343. dir_common_add_rs_and_parse(*vote, vote_out, vrs_gen, sign_skey,
  344. n_vrs, now, clear_rl);
  345. return 0;
  346. }
  347. /** See dir_common_construct_vote_1.
  348. * Produces a vote with slightly different values. Adds a legacy key.
  349. */
  350. int
  351. dir_common_construct_vote_3(networkstatus_t **vote, authority_cert_t *cert,
  352. crypto_pk_t *sign_skey,
  353. vote_routerstatus_t * (*vrs_gen)(int idx, time_t now),
  354. networkstatus_t **vote_out, int *n_vrs,
  355. time_t now, int clear_rl)
  356. {
  357. networkstatus_voter_info_t *voter;
  358. dir_common_setup_vote(vote, now);
  359. (*vote)->valid_after = now+1000;
  360. (*vote)->fresh_until = now+2003;
  361. (*vote)->valid_until = now+3000;
  362. (*vote)->vote_seconds = 100;
  363. (*vote)->dist_seconds = 250;
  364. smartlist_split_string((*vote)->supported_methods, "1 2 3 4", NULL, 0, -1);
  365. (*vote)->client_versions = tor_strdup("0.1.2.14,0.1.2.17");
  366. (*vote)->server_versions = tor_strdup("0.1.2.10,0.1.2.15,0.1.2.16");
  367. smartlist_split_string((*vote)->known_flags,
  368. "Authority Exit Fast Guard Running Stable V2Dir Valid",
  369. 0, SPLIT_SKIP_SPACE|SPLIT_IGNORE_BLANK, 0);
  370. voter = tor_malloc_zero(sizeof(networkstatus_voter_info_t));
  371. voter->nickname = tor_strdup("Voter2");
  372. voter->address = tor_strdup("3.4.5.6");
  373. voter->addr = 0x03040506;
  374. voter->dir_port = 80;
  375. voter->or_port = 9000;
  376. voter->contact = tor_strdup("voter@example.com");
  377. crypto_pk_get_digest(cert->identity_key, voter->identity_digest);
  378. memset(voter->legacy_id_digest, (int)'A', DIGEST_LEN);
  379. /*
  380. * Set up a vote; generate it; try to parse it.
  381. */
  382. smartlist_add((*vote)->voters, voter);
  383. (*vote)->cert = authority_cert_dup(cert);
  384. smartlist_split_string((*vote)->net_params, "circuitwindow=80 foo=660",
  385. NULL, 0, 0);
  386. /* add routerstatuses */
  387. /* dump the vote and try to parse it. */
  388. dir_common_add_rs_and_parse(*vote, vote_out, vrs_gen, sign_skey,
  389. n_vrs, now, clear_rl);
  390. return 0;
  391. }