2020-05-22 15:18:41 +02:00
/*
2025-01-14 02:36:27 +01:00
* Copyright ( c ) 2013 - 2025 , The PurpleI2P Project
2020-05-22 15:18:41 +02:00
*
* This file is part of Purple i2pd project and licensed under BSD3
*
* See full license text in LICENSE file at top of project tree
*/
2014-01-09 20:56:07 +01:00
# include "I2PEndian.h"
2013-11-11 00:19:49 +01:00
# include <string.h>
2016-05-11 21:12:38 +02:00
# include "Crypto.h"
2013-11-11 00:19:49 +01:00
# include "Log.h"
2017-04-22 02:04:16 +02:00
# include "NetDb.hpp"
2013-11-11 00:19:49 +01:00
# include "I2NPProtocol.h"
# include "Transports.h"
2014-07-10 18:44:49 +02:00
# include "RouterContext.h"
2016-11-09 20:51:55 +01:00
# include "Timestamp.h"
2013-11-11 00:19:49 +01:00
# include "TunnelEndpoint.h"
namespace i2p
{
namespace tunnel
{
2024-12-18 02:50:54 +01:00
2015-06-19 20:38:31 +02:00
void TunnelEndpoint : : HandleDecryptedTunnelDataMsg ( std : : shared_ptr < I2NPMessage > msg )
2013-11-11 00:19:49 +01:00
{
2013-12-10 14:10:49 +01:00
m_NumReceivedBytes + = TUNNEL_DATA_MSG_SIZE ;
2018-01-06 04:48:51 +01:00
2013-11-11 00:19:49 +01:00
uint8_t * decrypted = msg - > GetPayload ( ) + 20 ; // 4 + 16
2021-11-12 17:33:51 +01:00
uint8_t * zero = ( uint8_t * ) memchr ( decrypted + 4 , 0 , TUNNEL_DATA_ENCRYPTED_SIZE - 4 ) ; // without 4-byte checksum
2013-11-11 00:19:49 +01:00
if ( zero )
2018-01-06 04:48:51 +01:00
{
2013-11-11 00:19:49 +01:00
uint8_t * fragment = zero + 1 ;
2014-06-28 02:11:21 +02:00
// verify checksum
memcpy ( msg - > GetPayload ( ) + TUNNEL_DATA_MSG_SIZE , msg - > GetPayload ( ) + 4 , 16 ) ; // copy iv to the end
uint8_t hash [ 32 ] ;
2015-11-03 15:15:49 +01:00
SHA256 ( fragment , TUNNEL_DATA_MSG_SIZE - ( fragment - msg - > GetPayload ( ) ) + 16 , hash ) ; // payload + iv
2014-06-28 02:11:21 +02:00
if ( memcmp ( hash , decrypted , 4 ) )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " TunnelMessage: Checksum verification failed " ) ;
2014-06-28 02:11:21 +02:00
return ;
2018-01-06 04:48:51 +01:00
}
2014-06-28 02:11:21 +02:00
// process fragments
2013-12-10 14:10:49 +01:00
while ( fragment < decrypted + TUNNEL_DATA_ENCRYPTED_SIZE )
2013-11-11 00:19:49 +01:00
{
uint8_t flag = fragment [ 0 ] ;
fragment + + ;
2018-01-06 04:48:51 +01:00
bool isFollowOnFragment = flag & 0x80 , isLastFragment = true ;
2013-11-11 00:19:49 +01:00
uint32_t msgID = 0 ;
2014-06-11 16:56:20 +02:00
int fragmentNum = 0 ;
2013-11-11 00:19:49 +01:00
if ( ! isFollowOnFragment )
2018-01-06 04:48:51 +01:00
{
2013-11-11 00:19:49 +01:00
// first fragment
2021-06-26 13:18:42 +02:00
if ( m_CurrentMsgID )
AddIncompleteCurrentMessage ( ) ; // we have got a new message while previous is not complete
2021-11-27 21:30:35 +01:00
2021-06-26 23:40:25 +02:00
m_CurrentMessage . deliveryType = ( TunnelDeliveryType ) ( ( flag > > 5 ) & 0x03 ) ;
switch ( m_CurrentMessage . deliveryType )
2013-11-11 00:19:49 +01:00
{
case eDeliveryTypeLocal : // 0
break ;
2018-01-06 05:01:44 +01:00
case eDeliveryTypeTunnel : // 1
2021-06-26 23:40:25 +02:00
m_CurrentMessage . tunnelID = bufbe32toh ( fragment ) ;
2013-11-11 00:19:49 +01:00
fragment + = 4 ; // tunnelID
2021-06-26 23:40:25 +02:00
m_CurrentMessage . hash = i2p : : data : : IdentHash ( fragment ) ;
2013-11-11 00:19:49 +01:00
fragment + = 32 ; // hash
break ;
case eDeliveryTypeRouter : // 2
2021-06-26 23:40:25 +02:00
m_CurrentMessage . hash = i2p : : data : : IdentHash ( fragment ) ;
2013-11-11 00:19:49 +01:00
fragment + = 32 ; // to hash
break ;
2020-03-01 11:25:50 +01:00
default : ;
2018-01-06 04:48:51 +01:00
}
2013-11-11 00:19:49 +01:00
bool isFragmented = flag & 0x08 ;
if ( isFragmented )
{
// Message ID
2018-01-06 04:48:51 +01:00
msgID = bufbe32toh ( fragment ) ;
2013-11-11 00:19:49 +01:00
fragment + = 4 ;
2021-06-26 13:18:42 +02:00
m_CurrentMsgID = msgID ;
2013-11-11 00:19:49 +01:00
isLastFragment = false ;
2018-01-06 04:48:51 +01:00
}
2013-11-11 00:19:49 +01:00
}
else
{
// follow on
2018-01-06 04:48:51 +01:00
msgID = bufbe32toh ( fragment ) ; // MessageID
fragment + = 4 ;
2014-06-11 16:56:20 +02:00
fragmentNum = ( flag > > 1 ) & 0x3F ; // 6 bits
2013-11-11 00:19:49 +01:00
isLastFragment = flag & 0x01 ;
2018-01-06 04:48:51 +01:00
}
2014-12-29 23:04:02 +01:00
uint16_t size = bufbe16toh ( fragment ) ;
2013-11-11 00:19:49 +01:00
fragment + = 2 ;
2021-06-26 23:40:25 +02:00
// handle fragment
if ( isFollowOnFragment )
2013-11-11 00:19:49 +01:00
{
2021-06-26 23:40:25 +02:00
// existing message
if ( m_CurrentMsgID & & m_CurrentMsgID = = msgID & & m_CurrentMessage . nextFragmentNum = = fragmentNum )
HandleCurrenMessageFollowOnFragment ( fragment , size , isLastFragment ) ; // previous
else
{
HandleFollowOnFragment ( msgID , isLastFragment , fragmentNum , fragment , size ) ; // another
m_CurrentMsgID = 0 ; m_CurrentMessage . data = nullptr ;
2021-11-27 21:30:35 +01:00
}
}
2013-11-11 00:19:49 +01:00
else
2021-06-26 23:40:25 +02:00
{
// new message
msg - > offset = fragment - msg - > buf ;
msg - > len = msg - > offset + size ;
// check message size
if ( msg - > len > msg - > maxLen )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " TunnelMessage: Fragment is too long " , ( int ) size ) ;
2021-06-26 23:40:25 +02:00
m_CurrentMsgID = 0 ; m_CurrentMessage . data = nullptr ;
return ;
}
// create new or assign I2NP message
if ( fragment + size < decrypted + TUNNEL_DATA_ENCRYPTED_SIZE )
{
// this is not last message. we have to copy it
2021-06-27 21:49:57 +02:00
m_CurrentMessage . data = NewI2NPTunnelMessage ( true ) ;
2021-06-26 23:40:25 +02:00
* ( m_CurrentMessage . data ) = * msg ;
}
else
m_CurrentMessage . data = msg ;
2021-11-27 21:30:35 +01:00
2021-06-26 13:18:42 +02:00
if ( isLastFragment )
2021-11-27 21:30:35 +01:00
{
2021-06-26 23:40:25 +02:00
// single message
HandleNextMessage ( m_CurrentMessage ) ;
2021-06-26 13:18:42 +02:00
m_CurrentMsgID = 0 ; m_CurrentMessage . data = nullptr ;
2021-11-27 21:30:35 +01:00
}
2021-06-26 13:18:42 +02:00
else if ( msgID )
2013-11-11 00:19:49 +01:00
{
2021-06-26 23:40:25 +02:00
// first fragment of a new message
2021-06-26 13:18:42 +02:00
m_CurrentMessage . nextFragmentNum = 1 ;
m_CurrentMessage . receiveTime = i2p : : util : : GetMillisecondsSinceEpoch ( ) ;
HandleOutOfSequenceFragments ( msgID , m_CurrentMessage ) ;
2021-11-27 21:30:35 +01:00
}
2018-01-06 04:48:51 +01:00
else
2021-11-27 21:30:35 +01:00
{
2016-01-20 01:00:00 +01:00
LogPrint ( eLogError , " TunnelMessage: Message is fragmented, but msgID is not presented " ) ;
2021-06-26 13:18:42 +02:00
m_CurrentMsgID = 0 ; m_CurrentMessage . data = nullptr ;
2021-11-27 21:30:35 +01:00
}
}
2013-11-11 00:19:49 +01:00
fragment + = size ;
2018-01-06 04:48:51 +01:00
}
}
2013-11-11 00:19:49 +01:00
else
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " TunnelMessage: Zero not found " ) ;
2018-01-06 04:48:51 +01:00
}
2013-11-11 00:19:49 +01:00
2021-11-27 21:30:35 +01:00
void TunnelEndpoint : : HandleFollowOnFragment ( uint32_t msgID , bool isLastFragment ,
2021-06-26 23:40:25 +02:00
uint8_t fragmentNum , const uint8_t * fragment , size_t size )
2014-07-05 02:54:03 +02:00
{
auto it = m_IncompleteMessages . find ( msgID ) ;
if ( it ! = m_IncompleteMessages . end ( ) )
{
2014-09-11 03:31:32 +02:00
auto & msg = it - > second ;
2021-06-26 23:40:25 +02:00
if ( fragmentNum = = msg . nextFragmentNum )
2014-07-05 02:54:03 +02:00
{
2021-06-26 13:18:42 +02:00
if ( ConcatFollowOnFragment ( msg , fragment , size ) )
2018-01-06 04:48:51 +01:00
{
2014-07-05 02:54:03 +02:00
if ( isLastFragment )
{
// message complete
2018-01-06 04:48:51 +01:00
HandleNextMessage ( msg ) ;
m_IncompleteMessages . erase ( it ) ;
}
2014-07-05 02:54:03 +02:00
else
2018-01-06 04:48:51 +01:00
{
2014-09-11 03:31:32 +02:00
msg . nextFragmentNum + + ;
2016-11-08 21:37:27 +01:00
HandleOutOfSequenceFragments ( msgID , msg ) ;
2018-01-06 04:48:51 +01:00
}
2014-07-05 02:54:03 +02:00
}
else
{
2021-06-26 23:40:25 +02:00
LogPrint ( eLogError , " TunnelMessage: Fragment " , fragmentNum , " of message " , msgID , " exceeds max I2NP message size, message dropped " ) ;
2014-07-05 02:54:03 +02:00
m_IncompleteMessages . erase ( it ) ;
}
}
else
2018-01-06 04:48:51 +01:00
{
2021-06-26 23:40:25 +02:00
LogPrint ( eLogWarning , " TunnelMessage: Unexpected fragment " , ( int ) fragmentNum , " instead " , ( int ) msg . nextFragmentNum , " of message " , msgID , " , saved " ) ;
AddOutOfSequenceFragment ( msgID , fragmentNum , isLastFragment , fragment , size ) ;
2014-07-05 02:54:03 +02:00
}
}
else
2018-01-06 04:48:51 +01:00
{
2021-06-27 03:44:51 +02:00
LogPrint ( eLogDebug , " TunnelMessage: First fragment of message " , msgID , " not found, saved " ) ;
2021-06-26 23:40:25 +02:00
AddOutOfSequenceFragment ( msgID , fragmentNum , isLastFragment , fragment , size ) ;
2018-01-06 04:48:51 +01:00
}
}
2014-09-11 03:31:32 +02:00
2021-06-26 13:18:42 +02:00
bool TunnelEndpoint : : ConcatFollowOnFragment ( TunnelMessageBlockEx & msg , const uint8_t * fragment , size_t size ) const
{
if ( msg . data - > len + size < I2NP_MAX_MESSAGE_SIZE ) // check if message is not too long
{
if ( msg . data - > len + size > msg . data - > maxLen )
{
// LogPrint (eLogWarning, "TunnelMessage: I2NP message size ", msg.data->maxLen, " is not enough");
2023-03-18 20:32:05 +01:00
auto newMsg = NewI2NPMessage ( msg . data - > len + size ) ;
2021-06-26 13:18:42 +02:00
* newMsg = * ( msg . data ) ;
msg . data = newMsg ;
}
if ( msg . data - > Concat ( fragment , size ) < size ) // concatenate fragment
2021-11-27 21:30:35 +01:00
{
2021-06-26 13:18:42 +02:00
LogPrint ( eLogError , " TunnelMessage: I2NP buffer overflow " , msg . data - > maxLen ) ;
return false ;
2021-11-27 21:30:35 +01:00
}
2021-06-26 13:18:42 +02:00
}
else
return false ;
return true ;
2021-11-27 21:30:35 +01:00
}
2021-06-26 13:18:42 +02:00
void TunnelEndpoint : : HandleCurrenMessageFollowOnFragment ( const uint8_t * fragment , size_t size , bool isLastFragment )
{
if ( ConcatFollowOnFragment ( m_CurrentMessage , fragment , size ) )
{
if ( isLastFragment )
{
// message complete
HandleNextMessage ( m_CurrentMessage ) ;
m_CurrentMsgID = 0 ; m_CurrentMessage . data = nullptr ;
}
else
{
m_CurrentMessage . nextFragmentNum + + ;
HandleOutOfSequenceFragments ( m_CurrentMsgID , m_CurrentMessage ) ;
}
}
else
{
LogPrint ( eLogError , " TunnelMessage: Fragment " , m_CurrentMessage . nextFragmentNum , " of message " , m_CurrentMsgID , " exceeds max I2NP message size, message dropped " ) ;
m_CurrentMsgID = 0 ; m_CurrentMessage . data = nullptr ;
}
2021-11-27 21:30:35 +01:00
}
2021-06-26 13:18:42 +02:00
void TunnelEndpoint : : AddIncompleteCurrentMessage ( )
{
if ( m_CurrentMsgID )
{
auto ret = m_IncompleteMessages . emplace ( m_CurrentMsgID , m_CurrentMessage ) ;
if ( ! ret . second )
LogPrint ( eLogError , " TunnelMessage: Incomplete message " , m_CurrentMsgID , " already exists " ) ;
m_CurrentMessage . data = nullptr ;
m_CurrentMsgID = 0 ;
2021-11-27 21:30:35 +01:00
}
}
2021-06-26 23:40:25 +02:00
void TunnelEndpoint : : AddOutOfSequenceFragment ( uint32_t msgID , uint8_t fragmentNum ,
bool isLastFragment , const uint8_t * fragment , size_t size )
2014-09-11 03:31:32 +02:00
{
2025-01-14 02:36:27 +01:00
if ( ! m_OutOfSequenceFragments . try_emplace ( ( uint64_t ) msgID < < 32 | fragmentNum ,
isLastFragment , i2p : : util : : GetMillisecondsSinceEpoch ( ) , fragment , size ) . second )
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " TunnelMessage: Duplicate out-of-sequence fragment " , fragmentNum , " of message " , msgID ) ;
2018-01-06 04:48:51 +01:00
}
2014-07-05 02:54:03 +02:00
2016-11-08 21:37:27 +01:00
void TunnelEndpoint : : HandleOutOfSequenceFragments ( uint32_t msgID , TunnelMessageBlockEx & msg )
2014-09-11 03:31:32 +02:00
{
2018-01-06 04:48:51 +01:00
while ( ConcatNextOutOfSequenceFragment ( msgID , msg ) )
2014-09-11 03:31:32 +02:00
{
2016-11-08 21:37:27 +01:00
if ( ! msg . nextFragmentNum ) // message complete
{
2018-01-06 04:48:51 +01:00
HandleNextMessage ( msg ) ;
2021-06-26 13:18:42 +02:00
if ( & msg = = & m_CurrentMessage )
{
2021-11-27 21:30:35 +01:00
m_CurrentMsgID = 0 ;
2021-06-26 13:18:42 +02:00
m_CurrentMessage . data = nullptr ;
2021-11-27 21:30:35 +01:00
}
else
2021-06-26 13:18:42 +02:00
m_IncompleteMessages . erase ( msgID ) ;
2021-06-27 03:44:51 +02:00
LogPrint ( eLogDebug , " TunnelMessage: All fragments of message " , msgID , " found " ) ;
2016-11-08 21:37:27 +01:00
break ;
}
}
}
bool TunnelEndpoint : : ConcatNextOutOfSequenceFragment ( uint32_t msgID , TunnelMessageBlockEx & msg )
{
2021-06-26 13:18:42 +02:00
auto it = m_OutOfSequenceFragments . find ( ( uint64_t ) msgID < < 32 | msg . nextFragmentNum ) ;
2016-11-08 21:37:27 +01:00
if ( it ! = m_OutOfSequenceFragments . end ( ) )
2018-01-06 04:48:51 +01:00
{
2016-11-09 20:51:55 +01:00
LogPrint ( eLogDebug , " TunnelMessage: Out-of-sequence fragment " , ( int ) msg . nextFragmentNum , " of message " , msgID , " found " ) ;
2025-01-14 02:36:27 +01:00
size_t size = it - > second . data . size ( ) ;
2016-11-09 20:51:55 +01:00
if ( msg . data - > len + size > msg . data - > maxLen )
2014-09-11 03:31:32 +02:00
{
2016-11-09 20:51:55 +01:00
LogPrint ( eLogWarning , " TunnelMessage: Tunnel endpoint I2NP message size " , msg . data - > maxLen , " is not enough " ) ;
2023-03-18 20:32:05 +01:00
auto newMsg = NewI2NPMessage ( msg . data - > len + size ) ;
2016-11-09 20:51:55 +01:00
* newMsg = * ( msg . data ) ;
msg . data = newMsg ;
2016-11-08 21:37:27 +01:00
}
2025-01-14 02:36:27 +01:00
if ( msg . data - > Concat ( it - > second . data . data ( ) , size ) < size ) // concatenate out-of-sync fragment
2016-11-09 20:51:55 +01:00
LogPrint ( eLogError , " TunnelMessage: Tunnel endpoint I2NP buffer overflow " , msg . data - > maxLen ) ;
2025-01-14 02:36:27 +01:00
if ( it - > second . isLastFragment )
2016-11-09 20:51:55 +01:00
// message complete
msg . nextFragmentNum = 0 ;
2016-11-08 21:37:27 +01:00
else
2016-11-09 20:51:55 +01:00
msg . nextFragmentNum + + ;
m_OutOfSequenceFragments . erase ( it ) ;
2018-01-06 04:48:51 +01:00
return true ;
}
2016-11-08 21:37:27 +01:00
return false ;
2018-01-06 04:48:51 +01:00
}
2013-11-11 00:19:49 +01:00
void TunnelEndpoint : : HandleNextMessage ( const TunnelMessageBlock & msg )
{
2016-01-19 17:16:50 +01:00
if ( ! m_IsInbound & & msg . data - > IsExpired ( ) )
2016-01-19 03:13:43 +01:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " TunnelMessage: Message expired " ) ;
2016-01-19 03:13:43 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2016-06-28 18:20:18 +02:00
uint8_t typeID = msg . data - > GetTypeID ( ) ;
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " TunnelMessage: Handle fragment of " , msg . data - > GetLength ( ) , " bytes, msg type " , ( int ) typeID ) ;
2023-05-04 15:39:37 +02:00
2013-11-11 00:19:49 +01:00
switch ( msg . deliveryType )
{
case eDeliveryTypeLocal :
2014-03-13 01:13:49 +01:00
i2p : : HandleI2NPMessage ( msg . data ) ;
2013-11-11 00:19:49 +01:00
break ;
case eDeliveryTypeTunnel :
2015-12-09 16:03:51 +01:00
if ( ! m_IsInbound ) // outbound transit tunnel
2024-12-18 02:50:54 +01:00
SendMessageTo ( msg . hash , i2p : : CreateTunnelGatewayMsg ( msg . tunnelID , msg . data ) ) ;
2014-07-10 18:44:49 +02:00
else
2016-01-20 01:00:00 +01:00
LogPrint ( eLogError , " TunnelMessage: Delivery type 'tunnel' arrived from an inbound tunnel, dropped " ) ;
2015-12-09 16:03:51 +01:00
break ;
2018-01-06 04:48:51 +01:00
case eDeliveryTypeRouter :
2015-12-09 16:03:51 +01:00
if ( ! m_IsInbound ) // outbound transit tunnel
2024-12-18 02:50:54 +01:00
i2p : : transport : : transports . SendMessage ( msg . hash , msg . data ) ; // send right away, because most likely it's single message
2018-01-06 04:48:51 +01:00
else // we shouldn't send this message. possible leakage
2016-01-20 01:00:00 +01:00
LogPrint ( eLogError , " TunnelMessage: Delivery type 'router' arrived from an inbound tunnel, dropped " ) ;
2013-11-11 00:19:49 +01:00
break ;
default :
2015-02-05 04:05:09 +01:00
LogPrint ( eLogError , " TunnelMessage: Unknown delivery type " , ( int ) msg . deliveryType ) ;
2018-01-06 04:48:51 +01:00
} ;
2016-11-09 20:51:55 +01:00
}
void TunnelEndpoint : : Cleanup ( )
{
auto ts = i2p : : util : : GetMillisecondsSinceEpoch ( ) ;
// out-of-sequence fragments
for ( auto it = m_OutOfSequenceFragments . begin ( ) ; it ! = m_OutOfSequenceFragments . end ( ) ; )
{
2025-01-14 02:36:27 +01:00
if ( ts > it - > second . receiveTime + i2p : : I2NP_MESSAGE_EXPIRATION_TIMEOUT )
2016-11-09 20:51:55 +01:00
it = m_OutOfSequenceFragments . erase ( it ) ;
else
+ + it ;
}
2016-12-06 22:23:52 +01:00
// incomplete messages
for ( auto it = m_IncompleteMessages . begin ( ) ; it ! = m_IncompleteMessages . end ( ) ; )
{
if ( ts > it - > second . receiveTime + i2p : : I2NP_MESSAGE_EXPIRATION_TIMEOUT )
it = m_IncompleteMessages . erase ( it ) ;
else
+ + it ;
}
2018-01-06 04:48:51 +01:00
}
2024-12-18 02:50:54 +01:00
void TunnelEndpoint : : SendMessageTo ( const i2p : : data : : IdentHash & to , std : : shared_ptr < i2p : : I2NPMessage > msg )
{
if ( msg )
{
if ( ! m_Sender & & m_I2NPMsgs . empty ( ) ) // first message
m_CurrentHash = to ;
else if ( m_CurrentHash ! = to ) // new target router
{
FlushI2NPMsgs ( ) ; // flush message to previous
if ( m_Sender ) m_Sender - > Reset ( ) ; // reset sender
m_CurrentHash = to ; // set new target router
} // otherwise add msg to the list for current target router
m_I2NPMsgs . push_back ( msg ) ;
}
}
void TunnelEndpoint : : FlushI2NPMsgs ( )
{
if ( ! m_I2NPMsgs . empty ( ) )
{
if ( ! m_Sender ) m_Sender = std : : make_unique < TunnelTransportSender > ( ) ;
m_Sender - > SendMessagesTo ( m_CurrentHash , m_I2NPMsgs ) ; // send and clear
}
}
const i2p : : data : : IdentHash * TunnelEndpoint : : GetCurrentHash ( ) const
{
return ( m_Sender | | ! m_I2NPMsgs . empty ( ) ) ? & m_CurrentHash : nullptr ;
}
2018-01-06 04:48:51 +01:00
}
2013-11-11 00:19:49 +01:00
}