12 #define NS_PARSE_PRIVATE 33 #include "feature/dirauth/vote_microdesc_hash_st.h" 34 #include "feature/nodelist/authority_cert_st.h" 35 #include "feature/nodelist/document_signature_st.h" 36 #include "feature/nodelist/networkstatus_st.h" 37 #include "feature/nodelist/networkstatus_voter_info_st.h" 38 #include "feature/nodelist/vote_routerstatus_st.h" 61 T1_START(
"network-status-version", K_NETWORK_STATUS_VERSION,
63 T1(
"vote-status", K_VOTE_STATUS,
GE(1),
NO_OBJ ),
68 T1(
"voting-delay", K_VOTING_DELAY,
GE(2),
NO_OBJ ),
74 T0N(
"shared-rand-commit", K_COMMIT,
GE(3),
NO_OBJ ),
75 T01(
"shared-rand-previous-value", K_PREVIOUS_SRV,
EQ(2),
NO_OBJ ),
76 T01(
"shared-rand-current-value", K_CURRENT_SRV,
EQ(2),
NO_OBJ ),
78 T01(
"recommended-client-protocols", K_RECOMMENDED_CLIENT_PROTOCOLS,
80 T01(
"recommended-relay-protocols", K_RECOMMENDED_RELAY_PROTOCOLS,
82 T01(
"required-client-protocols", K_REQUIRED_CLIENT_PROTOCOLS,
84 T01(
"required-relay-protocols", K_REQUIRED_RELAY_PROTOCOLS,
87 #include "feature/dirparse/authcert_members.i" 91 T1(
"dir-source", K_DIR_SOURCE,
GE(6),
NO_OBJ ),
92 T01(
"legacy-dir-key", K_LEGACY_DIR_KEY,
GE(1),
NO_OBJ ),
96 T1(
"consensus-methods", K_CONSENSUS_METHODS,
GE(1),
NO_OBJ ),
102 static token_rule_t networkstatus_consensus_token_table[] = {
103 T1_START(
"network-status-version", K_NETWORK_STATUS_VERSION,
105 T1(
"vote-status", K_VOTE_STATUS,
GE(1),
NO_OBJ ),
109 T1(
"voting-delay", K_VOTING_DELAY,
GE(2),
NO_OBJ ),
121 T01(
"consensus-method", K_CONSENSUS_METHOD,
EQ(1),
NO_OBJ),
124 T01(
"shared-rand-previous-value", K_PREVIOUS_SRV,
EQ(2),
NO_OBJ ),
125 T01(
"shared-rand-current-value", K_CURRENT_SRV,
EQ(2),
NO_OBJ ),
127 T01(
"recommended-client-protocols", K_RECOMMENDED_CLIENT_PROTOCOLS,
129 T01(
"recommended-relay-protocols", K_RECOMMENDED_RELAY_PROTOCOLS,
131 T01(
"required-client-protocols", K_REQUIRED_CLIENT_PROTOCOLS,
133 T01(
"required-relay-protocols", K_REQUIRED_RELAY_PROTOCOLS,
140 static token_rule_t networkstatus_vote_footer_token_table[] = {
143 T(
"directory-signature", K_DIRECTORY_SIGNATURE,
GE(2),
NEED_OBJ ),
155 const char **start_out,
156 const char **end_out)
159 "network-status-version",
160 "\ndirectory-signature",
170 const char *s,
size_t len)
172 const char *start, *end;
191 "network-status-version",
192 "\ndirectory-signature",
200 static inline const char *
201 find_start_of_next_routerstatus(
const char *s,
const char *s_eos)
203 const char *eos, *footer, *sig;
204 if ((eos = tor_memstr(s, s_eos - s,
"\nr ")))
209 footer = tor_memstr(s, eos-s,
"\ndirectory-footer");
210 sig = tor_memstr(s, eos-s,
"\ndirectory-signature");
213 return MIN(footer, sig) + 1;
228 routerstatus_parse_guardfraction(
const char *guardfraction_str,
234 const char *end_of_header = NULL;
235 int is_consensus = !vote_rs;
236 uint32_t guardfraction;
246 end_of_header = strchr(guardfraction_str,
'=');
247 if (!end_of_header) {
252 10, 0, 100, &ok, NULL);
254 log_warn(
LD_DIR,
"Invalid GuardFraction %s",
escaped(guardfraction_str));
258 log_debug(
LD_GENERAL,
"[*] Parsed %s guardfraction '%s' for '%s'.",
259 is_consensus ?
"consensus" :
"vote",
271 log_warn(
LD_BUG,
"Got GuardFraction for non-guard %s. " 272 "This is not supposed to happen. Not applying. ", rs->
nickname);
294 routerstatus_parse_entry_from_string(
memarea_t *area,
295 const char **s,
const char *s_eos,
299 int consensus_method,
302 const char *eos, *s_dup = *s;
305 char timebuf[ISO_TIME_LEN+1];
311 if (!consensus_method)
313 tor_assert(flav == FLAV_NS || flav == FLAV_MICRODESC);
315 eos = find_start_of_next_routerstatus(*s, s_eos);
318 log_warn(
LD_DIR,
"Error tokenizing router status");
321 if (smartlist_len(tokens) < 1) {
322 log_warn(
LD_DIR,
"Impossibly short router status");
325 tok = find_by_keyword(tokens, K_R);
327 if (flav == FLAV_NS) {
329 log_warn(
LD_DIR,
"Too few arguments to r");
332 }
else if (flav == FLAV_MICRODESC) {
344 "Invalid nickname %s in router status; skipping.",
351 log_warn(
LD_DIR,
"Error decoding identity digest %s",
356 if (flav == FLAV_NS) {
358 log_warn(
LD_DIR,
"Error decoding descriptor digest %s",
365 tok->
args[3+offset], tok->
args[4+offset]) < 0 ||
367 log_warn(
LD_DIR,
"Error parsing time '%s %s' [%d %d]",
368 tok->
args[3+offset], tok->
args[4+offset],
374 log_warn(
LD_DIR,
"Error parsing router address in network-status %s",
378 rs->
addr = ntohl(in.s_addr);
381 10,0,65535,NULL,NULL);
383 10,0,65535,NULL,NULL);
389 smartlist_free(a_lines);
397 for (i=0; i < tok->
n_args; ++i) {
400 vote_rs->
flags |= (UINT64_C(1)<<p);
402 log_warn(
LD_DIR,
"Flags line had a flag %s not listed in known_flags.",
410 for (i=0; i < tok->
n_args; ++i) {
411 if (!strcmp(tok->
args[i],
"Exit"))
413 else if (!strcmp(tok->
args[i],
"Stable"))
415 else if (!strcmp(tok->
args[i],
"Fast"))
417 else if (!strcmp(tok->
args[i],
"Running"))
419 else if (!strcmp(tok->
args[i],
"Named"))
421 else if (!strcmp(tok->
args[i],
"Valid"))
423 else if (!strcmp(tok->
args[i],
"Guard"))
425 else if (!strcmp(tok->
args[i],
"BadExit"))
427 else if (!strcmp(tok->
args[i],
"Authority"))
429 else if (!strcmp(tok->
args[i],
"Unnamed") &&
430 consensus_method >= 2) {
433 }
else if (!strcmp(tok->
args[i],
"HSDir")) {
435 }
else if (!strcmp(tok->
args[i],
"V2Dir")) {
437 }
else if (!strcmp(tok->
args[i],
"StaleDesc")) {
447 const char *protocols = NULL, *version = NULL;
450 protocols = tok->
args[0];
454 version = tok->
args[0];
466 for (i=0; i < tok->
n_args; ++i) {
482 10, 0, UINT32_MAX, &ok, NULL);
484 log_warn(
LD_DIR,
"Invalid Measured Bandwidth %s",
493 if (routerstatus_parse_guardfraction(tok->
args[i],
494 vote, vote_rs, rs) < 0) {
506 log_warn(
LD_DIR,
"Unknown exit policy summary type %s.",
520 if (t->tp == K_M && t->n_args) {
529 if (!strcmp(t->args[0],
"ed25519")) {
531 if (strcmp(t->args[1],
"none") &&
534 log_warn(
LD_DIR,
"Bogus ed25519 key in networkstatus vote");
539 if (t->tp == K_PROTO) {
541 vote_rs->
protocols = tor_strdup(t->args[0]);
543 } SMARTLIST_FOREACH_END(t);
544 }
else if (flav == FLAV_MICRODESC) {
549 log_warn(
LD_DIR,
"Error decoding microdescriptor digest %s",
554 log_info(
LD_BUG,
"Found an entry in networkstatus with no " 555 "microdescriptor digest. (Router %s ($%s) at %s:%d.)",
566 dump_desc(s_dup,
"routerstatus entry");
568 routerstatus_free(rs);
574 DUMP_AREA(area,
"routerstatus entry");
583 compare_vote_routerstatus_entries(
const void **_a,
const void **_b)
594 int64_t G=0, M=0, E=0, D=0,
T=0;
595 double Wgg, Wgm, Wgd, Wmg, Wmm, Wme, Wmd, Weg, Wem, Wee, Wed;
596 double Gtotal=0, Mtotal=0, Etotal=0;
597 const char *casename = NULL;
599 (void) consensus_method;
615 if (Wgg<0 || Wgm<0 || Wgd<0 || Wmg<0 || Wmm<0 || Wme<0 || Wmd<0 || Weg<0
616 || Wem<0 || Wee<0 || Wed<0) {
617 log_warn(
LD_BUG,
"No bandwidth weights produced in consensus!");
624 if (fabs(Wmm - weight_scale) > 1) {
625 log_warn(
LD_BUG,
"Wmm=%f != %"PRId64,
626 Wmm, (weight_scale));
630 if (fabs(Wem - Wee) > 1) {
631 log_warn(
LD_BUG,
"Wem=%f != Wee=%f", Wem, Wee);
635 if (fabs(Wgm - Wgg) > 1) {
636 log_warn(
LD_BUG,
"Wgm=%f != Wgg=%f", Wgm, Wgg);
640 if (fabs(Weg - Wed) > 1) {
641 log_warn(
LD_BUG,
"Wed=%f != Weg=%f", Wed, Weg);
645 if (fabs(Wgg + Wmg - weight_scale) > 0.001*weight_scale) {
646 log_warn(
LD_BUG,
"Wgg=%f != %"PRId64
" - Wmg=%f", Wgg,
647 (weight_scale), Wmg);
651 if (fabs(Wee + Wme - weight_scale) > 0.001*weight_scale) {
652 log_warn(
LD_BUG,
"Wee=%f != %"PRId64
" - Wme=%f", Wee,
653 (weight_scale), Wme);
657 if (fabs(Wgd + Wmd + Wed - weight_scale) > 0.001*weight_scale) {
658 log_warn(
LD_BUG,
"Wgd=%f + Wmd=%f + Wed=%f != %"PRId64,
659 Wgd, Wmd, Wed, (weight_scale));
664 Wgm /= weight_scale; (void) Wgm;
672 Weg /= weight_scale; (void) Weg;
673 Wem /= weight_scale; (void) Wem;
689 }
else if (is_exit) {
702 log_warn(
LD_BUG,
"Missing consensus bandwidth for router %s",
705 } SMARTLIST_FOREACH_END(rs);
711 if (3*E >=
T && 3*G >=
T) {
714 if (fabs(Etotal-Mtotal) > 0.01*
MAX(Etotal,Mtotal)) {
716 "Bw Weight Failure for %s: Etotal %f != Mtotal %f. " 717 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
719 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
720 casename, Etotal, Mtotal,
723 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
726 if (fabs(Etotal-Gtotal) > 0.01*
MAX(Etotal,Gtotal)) {
728 "Bw Weight Failure for %s: Etotal %f != Gtotal %f. " 729 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
731 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
732 casename, Etotal, Gtotal,
735 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
738 if (fabs(Gtotal-Mtotal) > 0.01*
MAX(Gtotal,Mtotal)) {
740 "Bw Weight Failure for %s: Mtotal %f != Gtotal %f. " 741 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
743 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
744 casename, Mtotal, Gtotal,
747 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
750 }
else if (3*E <
T && 3*G <
T) {
751 int64_t R = MIN(E, G);
752 int64_t S =
MAX(E, G);
760 double Rtotal, Stotal;
768 casename =
"Case 2a";
770 if (Rtotal > Stotal) {
772 "Bw Weight Failure for %s: Rtotal %f > Stotal %f. " 773 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
775 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
776 casename, Rtotal, Stotal,
779 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
785 "Bw Weight Failure for %s: 3*Rtotal %f > T " 786 "%"PRId64
". G=%"PRId64
" M=%"PRId64
" E=%"PRId64
787 " D=%"PRId64
" T=%"PRId64
". " 788 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
789 casename, Rtotal*3, (
T),
792 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
798 "Bw Weight Failure for %s: 3*Stotal %f > T " 799 "%"PRId64
". G=%"PRId64
" M=%"PRId64
" E=%"PRId64
800 " D=%"PRId64
" T=%"PRId64
". " 801 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
802 casename, Stotal*3, (
T),
805 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
811 "Bw Weight Failure for %s: 3*Mtotal %f < T " 813 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
815 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
816 casename, Mtotal*3, (
T),
819 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
823 casename =
"Case 2b";
826 if (D != 0 && 3*M <
T) {
827 casename =
"Case 2b (balanced)";
828 if (fabs(Etotal-Mtotal) > 0.01*
MAX(Etotal,Mtotal)) {
830 "Bw Weight Failure for %s: Etotal %f != Mtotal %f. " 831 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
833 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
834 casename, Etotal, Mtotal,
837 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
840 if (fabs(Etotal-Gtotal) > 0.01*
MAX(Etotal,Gtotal)) {
842 "Bw Weight Failure for %s: Etotal %f != Gtotal %f. " 843 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
845 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
846 casename, Etotal, Gtotal,
849 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
852 if (fabs(Gtotal-Mtotal) > 0.01*
MAX(Gtotal,Mtotal)) {
854 "Bw Weight Failure for %s: Mtotal %f != Gtotal %f. " 855 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
857 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
858 casename, Mtotal, Gtotal,
861 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
865 if (fabs(Etotal-Gtotal) > 0.01*
MAX(Etotal,Gtotal)) {
867 "Bw Weight Failure for %s: Etotal %f != Gtotal %f. " 868 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
870 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
871 casename, Etotal, Gtotal,
874 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
880 int64_t S = MIN(E, G);
881 int64_t NS =
MAX(E, G);
886 casename =
"Case 3a (G scarce)";
890 casename =
"Case 3a (E scarce)";
897 "Bw Weight Failure for %s: 3*Stotal %f > T " 898 "%"PRId64
". G=%"PRId64
" M=%"PRId64
" E=%"PRId64
899 " D=%"PRId64
" T=%"PRId64
". " 900 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
901 casename, Stotal*3, (
T),
904 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
908 if (fabs(NStotal-Mtotal) > 0.01*
MAX(NStotal,Mtotal)) {
910 "Bw Weight Failure for %s: NStotal %f != Mtotal %f. " 911 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
913 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
914 casename, NStotal, Mtotal,
917 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
924 "Bw Weight Failure for %s: 3*NStotal %f < T " 925 "%"PRId64
". G=%"PRId64
" M=%"PRId64
926 " E=%"PRId64
" D=%"PRId64
" T=%"PRId64
". " 927 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
928 casename, NStotal*3, (
T),
931 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
936 casename =
"Case 3b";
937 if (fabs(Etotal-Mtotal) > 0.01*
MAX(Etotal,Mtotal)) {
939 "Bw Weight Failure for %s: Etotal %f != Mtotal %f. " 940 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
942 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
943 casename, Etotal, Mtotal,
946 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
949 if (fabs(Etotal-Gtotal) > 0.01*
MAX(Etotal,Gtotal)) {
951 "Bw Weight Failure for %s: Etotal %f != Gtotal %f. " 952 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
954 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
955 casename, Etotal, Gtotal,
958 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
961 if (fabs(Gtotal-Mtotal) > 0.01*
MAX(Gtotal,Mtotal)) {
963 "Bw Weight Failure for %s: Mtotal %f != Gtotal %f. " 964 "G=%"PRId64
" M=%"PRId64
" E=%"PRId64
" D=%"PRId64
966 "Wgg=%f Wgd=%f Wmg=%f Wme=%f Wmd=%f Wee=%f Wed=%f",
967 casename, Mtotal, Gtotal,
970 Wgg, Wgd, Wmg, Wme, Wmd, Wee, Wed);
977 log_notice(
LD_DIR,
"Bandwidth-weight %s is verified and valid.",
998 chunks = smartlist_new();
1005 for (
int i = 0; i < tok->
n_args; i++) {
1008 srv = sr_parse_srv(chunks);
1017 smartlist_free(chunks);
1026 const char *voter_identity;
1034 if (ns->
type == NS_TYPE_VOTE) {
1035 voter = smartlist_get(ns->
voters, 0);
1041 voter_identity =
"consensus";
1046 if (extract_one_srv(tokens, K_PREVIOUS_SRV, &ns->
sr_info.previous_srv) < 0) {
1047 log_warn(
LD_DIR,
"SR: Unable to parse previous SRV from %s",
1051 if (extract_one_srv(tokens, K_CURRENT_SRV, &ns->
sr_info.current_srv) < 0) {
1052 log_warn(
LD_DIR,
"SR: Unable to parse current SRV from %s",
1062 const char **eos_out,
1063 networkstatus_type_t ns_type)
1066 smartlist_t *rs_tokens = NULL, *footer_tokens = NULL;
1071 const char *cert, *end_of_header, *end_of_footer, *s_dup = s;
1074 int i, inorder, n_signatures = 0;
1075 memarea_t *area = NULL, *rs_area = NULL;
1077 char *last_kwd=NULL;
1078 const char *eos = s + s_len;
1088 log_warn(
LD_DIR,
"Unable to compute digest of network-status");
1093 end_of_header = find_start_of_next_routerstatus(s, eos);
1095 (ns_type == NS_TYPE_CONSENSUS) ?
1096 networkstatus_consensus_token_table :
1097 networkstatus_token_table, 0)) {
1098 log_warn(
LD_DIR,
"Error tokenizing network-status header");
1103 memcpy(&ns->
digests, &ns_digests,
sizeof(ns_digests));
1106 tok = find_by_keyword(tokens, K_NETWORK_STATUS_VERSION);
1111 log_warn(
LD_DIR,
"Can't parse document with unknown flavor %s",
1115 ns->
flavor = flav = flavor;
1117 if (flav != FLAV_NS && ns_type != NS_TYPE_CONSENSUS) {
1118 log_warn(
LD_DIR,
"Flavor found on non-consensus networkstatus.");
1122 if (ns_type != NS_TYPE_CONSENSUS) {
1123 const char *end_of_cert = NULL;
1124 if (!(cert = tor_memstr(s, end_of_header - s,
1125 "\ndir-key-certificate-version")))
1130 if (!ns->
cert || !end_of_cert || end_of_cert > end_of_header)
1134 tok = find_by_keyword(tokens, K_VOTE_STATUS);
1136 if (!strcmp(tok->
args[0],
"vote")) {
1137 ns->
type = NS_TYPE_VOTE;
1138 }
else if (!strcmp(tok->
args[0],
"consensus")) {
1139 ns->
type = NS_TYPE_CONSENSUS;
1140 }
else if (!strcmp(tok->
args[0],
"opinion")) {
1141 ns->
type = NS_TYPE_OPINION;
1143 log_warn(
LD_DIR,
"Unrecognized vote status %s in network-status",
1147 if (ns_type != ns->
type) {
1148 log_warn(
LD_DIR,
"Got the wrong kind of v3 networkstatus.");
1152 if (ns->
type == NS_TYPE_VOTE || ns->
type == NS_TYPE_OPINION) {
1153 tok = find_by_keyword(tokens, K_PUBLISHED);
1160 for (i=0; i < tok->
n_args; ++i)
1179 ns->recommended_client_protocols = tor_strdup(tok->
args[0]);
1183 ns->required_client_protocols = tor_strdup(tok->
args[0]);
1185 ns->required_relay_protocols = tor_strdup(tok->
args[0]);
1187 tok = find_by_keyword(tokens, K_VALID_AFTER);
1191 tok = find_by_keyword(tokens, K_FRESH_UNTIL);
1195 tok = find_by_keyword(tokens, K_VALID_UNTIL);
1199 tok = find_by_keyword(tokens, K_VOTING_DELAY);
1213 (get_options()->TestingTorNetwork ?
1215 log_warn(
LD_DIR,
"Vote/consensus freshness interval is too short");
1219 (get_options()->TestingTorNetwork ?
1221 log_warn(
LD_DIR,
"Vote/consensus liveness interval is too short");
1225 log_warn(
LD_DIR,
"Vote seconds is too short");
1229 log_warn(
LD_DIR,
"Dist seconds is too short");
1237 ns->server_versions = tor_strdup(tok->
args[0]);
1247 smartlist_free(package_lst);
1250 tok = find_by_keyword(tokens, K_KNOWN_FLAGS);
1253 for (i = 0; i < tok->
n_args; ++i) {
1255 if (i>0 && strcmp(tok->
args[i-1], tok->
args[i])>= 0) {
1261 log_warn(
LD_DIR,
"known-flags not in order");
1264 if (ns->
type != NS_TYPE_CONSENSUS &&
1265 smartlist_len(ns->
known_flags) > MAX_KNOWN_FLAGS_IN_VOTE) {
1271 log_warn(
LD_DIR,
"Too many known-flags in consensus vote or opinion");
1280 for (i = 0; i < tok->
n_args; ++i) {
1282 char *eq = strchr(tok->
args[i],
'=');
1288 eq_pos = eq-tok->
args[i];
1294 if (i > 0 && strcmp(tok->
args[i-1], tok->
args[i]) >= 0) {
1298 if (last_kwd && eq_pos == strlen(last_kwd) &&
1299 fast_memeq(last_kwd, tok->
args[i], eq_pos)) {
1300 log_warn(
LD_DIR,
"Duplicate value for %s parameter",
1305 last_kwd = tor_strndup(tok->
args[i], eq_pos);
1309 log_warn(
LD_DIR,
"params not in order");
1313 log_warn(
LD_DIR,
"Duplicate in parameters");
1318 ns->
voters = smartlist_new();
1322 if (tok->
tp == K_DIR_SOURCE) {
1328 voter->
sigs = smartlist_new();
1329 if (ns->
type != NS_TYPE_CONSENSUS)
1337 log_warn(
LD_DIR,
"Error decoding identity digest %s in " 1338 "network-status document.",
escaped(tok->
args[1]));
1341 if (ns->
type != NS_TYPE_CONSENSUS &&
1344 log_warn(
LD_DIR,
"Mismatch between identities in certificate and vote");
1347 if (ns->
type != NS_TYPE_CONSENSUS) {
1349 log_warn(
LD_DIR,
"Rejecting vote signature made with blacklisted " 1357 log_warn(
LD_DIR,
"Error decoding IP address %s in network-status.",
1361 voter->
addr = ntohl(in.s_addr);
1371 }
else if (tok->
tp == K_CONTACT) {
1372 if (!voter || voter->
contact) {
1373 log_warn(
LD_DIR,
"contact element is out of place.");
1377 }
else if (tok->
tp == K_VOTE_DIGEST) {
1381 log_warn(
LD_DIR,
"vote-digest element is out of place.");
1388 log_warn(
LD_DIR,
"Error decoding vote digest %s in " 1389 "network-status consensus.",
escaped(tok->
args[0]));
1393 } SMARTLIST_FOREACH_END(_tok);
1398 if (smartlist_len(ns->
voters) == 0) {
1399 log_warn(
LD_DIR,
"Missing dir-source elements in a networkstatus.");
1401 }
else if (ns->
type != NS_TYPE_CONSENSUS && smartlist_len(ns->
voters) != 1) {
1402 log_warn(
LD_DIR,
"Too many dir-source elements in a vote networkstatus.");
1406 if (ns->
type != NS_TYPE_CONSENSUS &&
1418 log_warn(
LD_DIR,
"Invalid legacy key digest %s on vote.",
1425 if (ns->
type == NS_TYPE_VOTE) {
1426 dirvote_parse_sr_commits(ns, tokens);
1429 if (ns->
type == NS_TYPE_VOTE || ns->
type == NS_TYPE_CONSENSUS) {
1430 extract_shared_random_srvs(ns, tokens);
1434 rs_tokens = smartlist_new();
1439 while (eos - s >= 2 && fast_memeq(s,
"r ", 2)) {
1440 if (ns->
type != NS_TYPE_CONSENSUS) {
1442 if (routerstatus_parse_entry_from_string(rs_area, &s, eos, rs_tokens, ns,
1446 vote_routerstatus_free(rs);
1450 if ((rs = routerstatus_parse_entry_from_string(rs_area, &s, eos,
1462 if (ns->
type != NS_TYPE_CONSENSUS) {
1472 log_warn(
LD_DIR,
"Networkstatus entries not sorted by identity digest");
1476 if (ns_type != NS_TYPE_CONSENSUS) {
1477 digest256map_t *ed_id_map = digest256map_new();
1480 if (! vrs->has_ed25519_listing ||
1483 if (digest256map_get(ed_id_map, vrs->ed25519_id) != NULL) {
1484 log_warn(
LD_DIR,
"Vote networkstatus ed25519 identities were not " 1486 digest256map_free(ed_id_map, NULL);
1489 digest256map_set(ed_id_map, vrs->ed25519_id, (
void*)1);
1490 } SMARTLIST_FOREACH_END(vrs);
1491 digest256map_free(ed_id_map, NULL);
1495 footer_tokens = smartlist_new();
1496 if ((end_of_footer = tor_memstr(s, eos-s,
"\nnetwork-status-version ")))
1499 end_of_footer = eos;
1501 networkstatus_vote_footer_token_table, 0)) {
1502 log_warn(
LD_DIR,
"Error tokenizing network-status vote footer.");
1510 if (tok->
tp == K_DIRECTORY_SIGNATURE)
1512 else if (found_sig) {
1513 log_warn(
LD_DIR,
"Extraneous token after first directory-signature");
1516 } SMARTLIST_FOREACH_END(_tok);
1520 if (tok != smartlist_get(footer_tokens, 0)) {
1521 log_warn(
LD_DIR,
"Misplaced directory-footer token");
1529 for (i = 0; i < tok->
n_args; ++i) {
1531 char *eq = strchr(tok->
args[i],
'=');
1533 log_warn(
LD_DIR,
"Bad element '%s' in weight params",
1550 const char *id_hexdigest = NULL;
1551 const char *sk_hexdigest = NULL;
1552 digest_algorithm_t alg = DIGEST_SHA1;
1554 if (tok->
tp != K_DIRECTORY_SIGNATURE)
1558 id_hexdigest = tok->
args[0];
1559 sk_hexdigest = tok->
args[1];
1561 const char *algname = tok->
args[0];
1563 id_hexdigest = tok->
args[1];
1564 sk_hexdigest = tok->
args[2];
1567 log_warn(
LD_DIR,
"Unknown digest algorithm %s; skipping",
1577 log_warn(
LD_DIR,
"Bad object type or length on directory-signature");
1584 !=
sizeof(declared_identity)) {
1585 log_warn(
LD_DIR,
"Error decoding declared identity %s in " 1586 "network-status document.",
escaped(id_hexdigest));
1590 log_warn(
LD_DIR,
"ID on signature on network-status document does " 1591 "not match any declared directory source.");
1601 log_warn(
LD_DIR,
"Error decoding declared signing key digest %s in " 1602 "network-status document.",
escaped(sk_hexdigest));
1607 if (ns->
type != NS_TYPE_CONSENSUS) {
1610 log_warn(
LD_DIR,
"Digest mismatch between declared and actual on " 1611 "network-status vote.");
1620 log_fn(LOG_PROTOCOL_WARN,
LD_DIR,
"We received a networkstatus " 1621 "that contains two signatures from the same voter with the same " 1622 "algorithm. Ignoring the second signature.");
1627 if (ns->
type != NS_TYPE_CONSENSUS) {
1630 "network-status document")) {
1646 } SMARTLIST_FOREACH_END(_tok);
1648 if (! n_signatures) {
1649 log_warn(
LD_DIR,
"No signatures on networkstatus document.");
1651 }
else if (ns->
type == NS_TYPE_VOTE && n_signatures != 1) {
1652 log_warn(
LD_DIR,
"Received more than one signature on a " 1653 "network-status vote.");
1658 *eos_out = end_of_footer;
1662 dump_desc(s_dup,
"v3 networkstatus");
1663 networkstatus_vote_free(ns);
1668 smartlist_free(tokens);
1673 document_signature_free(sig));
1674 smartlist_free(voter->
sigs);
1683 smartlist_free(rs_tokens);
1685 if (footer_tokens) {
1687 smartlist_free(footer_tokens);
1690 DUMP_AREA(area,
"v3 networkstatus");
1691 memarea_drop_all(area);
1694 memarea_drop_all(rs_area);
networkstatus_type_t type
networkstatus_voter_info_t * networkstatus_get_voter_by_id(networkstatus_t *vote, const char *identity)
int should_apply_guardfraction(const networkstatus_t *ns)
document_signature_t * networkstatus_get_voter_sig_by_alg(const networkstatus_voter_info_t *voter, digest_algorithm_t alg)
int router_get_hash_impl_helper(const char *s, size_t s_len, const char *start_str, const char *end_str, char end_c, int log_severity, const char **start_out, const char **end_out)
smartlist_t * find_all_by_keyword(const smartlist_t *s, directory_keyword k)
Header file for circuitbuild.c.
#define SMARTLIST_FOREACH_BEGIN(sl, type, var)
void summarize_protover_flags(protover_summary_flags_t *out, const char *protocols, const char *version)
networkstatus_sr_info_t sr_info
protover_summary_flags_t pv
#define MIN_VOTE_INTERVAL
networkstatus_t * networkstatus_parse_vote_from_string(const char *s, size_t len, const char **eos_out, enum networkstatus_type_t ns_type)
void smartlist_add_strdup(struct smartlist_t *sl, const char *string)
unsigned long tor_parse_ulong(const char *s, int base, unsigned long min, unsigned long max, int *ok, char **next)
char identity_digest[DIGEST_LEN]
Header file for describe.c.
int crypto_digest_algorithm_parse_name(const char *name)
void smartlist_add(smartlist_t *sl, void *element)
Header file for config.c.
Header file for authcert.c.
Header file for nickname.c.
uint8_t digest_sha3_as_signed[DIGEST256_LEN]
int fast_mem_is_zero(const char *mem, size_t len)
int tor_inet_aton(const char *str, struct in_addr *addr)
int strcmpstart(const char *s1, const char *s2)
int smartlist_string_pos(const smartlist_t *sl, const char *element)
char vote_digest[DIGEST_LEN]
char legacy_id_digest[DIGEST_LEN]
#define T1_START(s, t, a, o)
unsigned int has_guardfraction
Header file for versions.c.
signed_descriptor_t cache_info
void memarea_clear(memarea_t *area)
memarea_t * memarea_new(void)
unsigned int is_authority
int find_single_ipv6_orport(const smartlist_t *list, tor_addr_t *addr_out, uint16_t *port_out)
smartlist_t * weight_params
int networkstatus_parse_flavor_name(const char *flavname)
unsigned int good_signature
unsigned int has_measured_bw
Header file for unparseable.c.
int router_get_networkstatus_v3_signed_boundaries(const char *s, size_t len, const char **start_out, const char **end_out)
char signing_key_digest[DIGEST_LEN]
int32_t networkstatus_get_bw_weight(networkstatus_t *ns, const char *weight_name, int32_t default_val)
struct vote_microdesc_hash_t * next
int networkstatus_verify_bw_weights(networkstatus_t *ns, int)
unsigned int is_staledesc
Master header file for Tor-specific functionality.
const char * hex_str(const char *from, size_t fromlen)
unsigned int has_measured_bws
int router_get_networkstatus_v3_sha3_as_signed(uint8_t *digest_out, const char *s, size_t len)
smartlist_t * supported_methods
char * microdesc_hash_line
char identity_digest[DIGEST_LEN]
const char * fmt_addr32(uint32_t addr)
char signing_key_digest[DIGEST_LEN]
crypto_pk_t * signing_key
Header file for shared_random_client.c.
const char * routerstatus_describe(const routerstatus_t *rs)
char nickname[MAX_NICKNAME_LEN+1]
Header file for authcert_parse.c.
authority_cert_t * authority_cert_parse_from_string(const char *s, size_t maxlen, const char **end_of_string)
smartlist_t * known_flags
directory_token_t * find_opt_by_keyword(const smartlist_t *s, directory_keyword keyword)
int tor_digest_is_zero(const char *digest)
unsigned int has_ed25519_listing
smartlist_t * routerstatus_list
unsigned int has_bandwidth
char descriptor_digest[DIGEST256_LEN]
int is_legal_nickname(const char *s)
#define UNNAMED_ROUTER_NICKNAME
unsigned int is_possible_guard
consensus_flavor_t flavor
Header file for parsecommon.c.
char identity_digest[DIGEST_LEN]
uint8_t ed25519_id[ED25519_PUBKEY_LEN]
Header file for ns_parse.c.
int tor_snprintf(char *str, size_t size, const char *format,...)
Header file for dirvote.c.
#define SMARTLIST_FOREACH(sl, type, var, cmd)
const char * escaped(const char *s)
unsigned int has_exitsummary
#define log_fn(severity, domain, args,...)
int router_get_hashes_impl(const char *s, size_t s_len, common_digests_t *digests, const char *start_str, const char *end_str, char end_c)
int authority_cert_is_blacklisted(const authority_cert_t *cert)
vote_microdesc_hash_t * microdesc
#define fast_memcmp(a, b, c)
char identity_digest[DIGEST_LEN]
smartlist_t * package_lines
void token_clear(directory_token_t *tok)
long tor_parse_long(const char *s, int base, long min, long max, int *ok, char **next)
int networkstatus_get_weight_scale_param(networkstatus_t *ns)
int base16_decode(char *dest, size_t destlen, const char *src, size_t srclen)
unsigned int bw_is_unmeasured
unsigned int is_flagged_running
int crypto_digest256(char *digest, const char *m, size_t len, digest_algorithm_t algorithm)
int parse_iso_time(const char *cp, time_t *t)
int check_signature_token(const char *digest, ssize_t digest_len, directory_token_t *tok, crypto_pk_t *pkey, int flags, const char *doctype)
char * recommended_relay_protocols
void smartlist_clear(smartlist_t *sl)
uint32_t guardfraction_percentage
int tokenize_string(memarea_t *area, const char *start, const char *end, smartlist_t *out, const token_rule_t *table, int flags)
#define MIN_VOTE_INTERVAL_TESTING
Header file for sigcommon.c.
struct authority_cert_t * cert
int router_get_networkstatus_v3_hashes(const char *s, size_t len, common_digests_t *digests)
Header file for networkstatus.c.
Header file for routerparse.c.
