nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-13 22:53:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

r8835@totoro: nickm | 2006-10-02 12:54:41 -0400

Browse Source 
Improve error messages from AUTHENTICATE attempts to controller.


svn:r8574
This commit is contained in:
Nick Mathewson 2006-10-02 18:08:46 +00:00
parent a3efc8e3d1
commit 14f9b537d1
3 changed files with 26 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
ChangeLog
View File

@ -50,6 +50,7 @@ Changes in version 0.1.2.2-alpha - 2006-10-??
- Avoid choosing Exit nodes for entry or middle hops when the bandwidth - Avoid choosing Exit nodes for entry or middle hops when the bandwidth
available in non-Exit nodes is much higher then the bandwidth available available in non-Exit nodes is much higher then the bandwidth available
in Exit nodes. (Fixes bug 200.) in Exit nodes. (Fixes bug 200.)
- Give more meaningful errors on control authentication failure.
o Security Fixes, minor: o Security Fixes, minor:
- If a client asked for a server by name, and we didn't have a - If a client asked for a server by name, and we didn't have a

7
doc/control-spec.txt
View File

@ -788,12 +788,7 @@ $Id$
If the 'CookieAuthentication' option is true, Tor writes a "magic cookie" If the 'CookieAuthentication' option is true, Tor writes a "magic cookie"
file named "control_auth_cookie" into its data directory. To authenticate, file named "control_auth_cookie" into its data directory. To authenticate,
the controller must send the contents of this file. the controller must send the contents of this file, encoded in hexadecimal.
[With the v1 controller protocol, what we really mean is that you should
send the base16 of the contents of this file. Is this it, or is there
more to it? Should we write a control_auth_cookie.asc file too that
makes this step easier for people doing it manually? -RD]
If the 'HashedControlPassword' option is set, it must contain the salted If the 'HashedControlPassword' option is set, it must contain the salted
hash of a secret password. The salted hash is computed according to the hash of a secret password. The salted hash is computed according to the

32
src/or/control.c
View File

@ -1010,6 +1010,7 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len,
{ {
int used_quoted_string = 0; int used_quoted_string = 0;
or_options_t *options = get_options(); or_options_t *options = get_options();
const char *errstr = NULL;
char *password; char *password;
size_t password_len; size_t password_len;
if (STATE_IS_V0(conn->_base.state)) { if (STATE_IS_V0(conn->_base.state)) {
@ -1043,8 +1044,16 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len,
} }
} }
if (options->CookieAuthentication) { if (options->CookieAuthentication) {
if (password_len == AUTHENTICATION_COOKIE_LEN && if (password_len != AUTHENTICATION_COOKIE_LEN) {
!memcmp(authentication_cookie, password, password_len)) { log_warn(LD_CONTROL, "Got authentication cookie with wrong length (%d)",
password_len);
errstr = "Wrong length on authentication cookie.";
goto err;
} else if (memcmp(authentication_cookie, password, password_len)) {
log_warn(LD_CONTROL, "Got mismatched authentication cookie");
errstr = "Authentication cookie did not match expected value.";
goto err;
} else {
goto ok; goto ok;
} }
} else if (options->HashedControlPassword) { } else if (options->HashedControlPassword) {
@ -1053,11 +1062,20 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len,
if (decode_hashed_password(expected, options->HashedControlPassword)<0) { if (decode_hashed_password(expected, options->HashedControlPassword)<0) {
log_warn(LD_CONTROL, log_warn(LD_CONTROL,
"Couldn't decode HashedControlPassword: invalid base16"); "Couldn't decode HashedControlPassword: invalid base16");
errstr = "Couldn't decode HashedControlPassword value in configuration.";
goto err; goto err;
} }
secret_to_key(received,DIGEST_LEN,password,password_len,expected); secret_to_key(received,DIGEST_LEN,password,password_len,expected);
if (!memcmp(expected+S2K_SPECIFIER_LEN, received, DIGEST_LEN)) if (!memcmp(expected+S2K_SPECIFIER_LEN, received, DIGEST_LEN))
goto ok; goto ok;
if (used_quoted_string)
errstr = "Password did not match HashedControlPassword value from "
"configuration";
else
errstr = "Password did not match HashedControlPassword value from "
"configuration. Maybe you tried a plain text password? "
"If so, the standard requires you put it in double quotes.";
goto err; goto err;
} else { } else {
/* if Tor doesn't demand any stronger authentication, then /* if Tor doesn't demand any stronger authentication, then
@ -1071,12 +1089,10 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len,
"Authentication failed"); "Authentication failed");
else { else {
tor_free(password); tor_free(password);
if (used_quoted_string) if (!errstr)
connection_write_str_to_buf("515 Authentication failed\r\n", conn); errstr = "Unknown reason.";
else connection_printf_to_buf(conn, "515 Authentication failed: %s\r\n",
connection_write_str_to_buf( errstr);
"515 Authentication failed. Maybe you tried a plain text password? "
"If so, the standard requires you put it in double quotes.\r\n",conn);
} }
return 0; return 0;
ok: ok: