/* Copyright 2004 Roger Dingledine */ /* See LICENSE for licensing information */ /* $Id$ */ /* This module implements the hidden-service side of rendezvous functionality. */ #include "or.h" /* Represents the mapping from a virtual port of a rendezvous service to * a real port on some IP. */ typedef struct rend_service_port_config_t { uint16_t virtual_port; uint16_t real_port; uint32_t real_address; } rend_service_port_config_t; /* Represents a single hidden service running at this OP. */ typedef struct rend_service_t { /* Fields specified in config file */ char *directory; smartlist_t *ports; /* Other fields */ crypto_pk_env_t *private_key; char service_id[REND_SERVICE_ID_LEN+1]; } rend_service_t; /* A list of rend_service_t. */ static smartlist_t *rend_service_list = NULL; static void rend_service_free(rend_service_t *config) { int i; if (!config) return; tor_free(config->directory); for (i=0; iports->num_used; ++i) { tor_free(config->ports->list[i]); } smartlist_free(config->ports); if (config->private_key) crypto_free_pk_env(config->private_key); } static void rend_service_free_all(void) { int i; if (!rend_service_list) { rend_service_list = smartlist_create(); return; } for (i=0; i < rend_service_list->num_used; ++i) { rend_service_free(rend_service_list->list[i]); } smartlist_free(rend_service_list); rend_service_list = smartlist_create(); } static void add_service(rend_service_t *service) { int i; rend_service_port_config_t *p; struct in_addr addr; if (!service->ports->num_used) { log_fn(LOG_WARN, "Hidden service with no ports configured; ignoring."); rend_service_free(service); } else { smartlist_set_capacity(service->ports, service->ports->num_used); smartlist_add(rend_service_list, service); log_fn(LOG_INFO,"Configuring service with directory %s",service->directory); for (i = 0; i < service->ports->num_used; ++i) { p = (rend_service_port_config_t *) service->ports->list[i]; addr.s_addr = htonl(p->real_address); log_fn(LOG_INFO,"Service maps port %d to %s:%d", p->virtual_port, inet_ntoa(addr), p->real_port); } } } /* Format: VirtualPort (IP|RealPort|IP:RealPort)? * IP defaults to 127.0.0.1; RealPort defaults to VirtualPort. */ static rend_service_port_config_t *parse_port_config(const char *string) { int virtport, realport, r; struct in_addr addr; char *endptr, *colon, *addrstring; rend_service_port_config_t *result; virtport = (int) strtol(string, &endptr, 10); if (endptr == string) { log_fn(LOG_WARN, "Missing port in hidden service port configuration"); return NULL; } if (virtport < 1 || virtport > 65535) { log_fn(LOG_WARN, "Port out of range in hidden service port configuration"); return NULL; } string = endptr + strspn(endptr, " \t"); if (!*string) { /* No addr:port part; use default. */ realport = virtport; addr.s_addr = htonl(0x7F000001u); } else { colon = strchr(string, ':'); if (colon) { /* Try to parse addr:port. */ addrstring = tor_strndup(string, colon-string); r = tor_inet_aton(addrstring, &addr); tor_free(addrstring); if (!r) { log_fn(LOG_WARN,"Unparseable address in hidden service port configuration"); return NULL; } realport = strtol(colon+1, &endptr, 10); if (*endptr) { log_fn(LOG_WARN,"Unparseable or missing port in hidden service port configuration."); return NULL; } } else if (strchr(string, '.') && tor_inet_aton(string, &addr)) { /* We have addr; use deafult port. */ realport = virtport; } else { /* No addr:port, no addr -- must be port. */ realport = strtol(string, &endptr, 10); if (*endptr) { log_fn(LOG_WARN, "Unparseable of missing port in hidden service port configuration."); return NULL; } addr.s_addr = htonl(0x7F000001u); /* Default to 127.0.0.1 */ } } if (realport < 1 || realport > 65535) { log_fn(LOG_WARN, "Port out of range in hidden service port configuration."); return NULL; } result = tor_malloc(sizeof(rend_service_port_config_t)); result->virtual_port = virtport; result->real_port = realport; result->real_address = (uint32_t) ntohl(addr.s_addr); return result; } /* Set up rend_service_list, based on the values of HiddenServiceDir and * HiddenServicePort in 'options'. Return 0 on success and -1 on * failure. */ int rend_config_services(or_options_t *options) { struct config_line_t *line; rend_service_t *service = NULL; rend_service_port_config_t *portcfg; rend_service_free_all(); for (line = options->RendConfigLines; line; line = line->next) { if (!strcasecmp(line->key, "HiddenServiceDir")) { if (service) add_service(service); service = tor_malloc_zero(sizeof(rend_service_t)); service->directory = tor_strdup(line->value); service->ports = smartlist_create(); } else { assert(!strcasecmp(line->key, "HiddenServicePort")); if (!service) { log_fn(LOG_WARN, "HiddenServicePort with no preceeding HiddenServiceDir directive"); rend_service_free(service); return -1; } portcfg = parse_port_config(line->value); if (!portcfg) { rend_service_free(service); return -1; } smartlist_add(service->ports, portcfg); } } if (service) add_service(service); return 0; } /* Load and/or generate private keys for all hidden services. Return 0 on * success, -1 on failure. */ int rend_service_init_keys(void) { int i; rend_service_t *s; char fname[512]; char buf[128]; for (i=0; i < rend_service_list->num_used; ++i) { s = (rend_service_t*) rend_service_list->list[i]; if (s->private_key) continue; /* Check/create directory */ if (check_private_dir(s->directory, 1) < 0) return -1; /* Load key */ if (strlcpy(fname,s->directory,512) >= 512 || strlcat(fname,"/private_key",512) >= 512) { log_fn(LOG_WARN, "Directory name too long: '%s'", s->directory); return -1; } s->private_key = init_key_from_file(fname); if (!s->private_key) return -1; /* Create service file */ if (rend_get_service_id(s->private_key, s->service_id)<0) { log_fn(LOG_WARN, "Couldn't encode service ID"); return -1; } if (strlcpy(fname,s->directory,512) >= 512 || strlcat(fname,"/hostname",512) >= 512) { log_fn(LOG_WARN, "Directory name too long: '%s'", s->directory); return -1; } sprintf(buf, "%s.onion\n", s->service_id); if (write_str_to_file(fname,buf)<0) return -1; } return 0; }