i2pd/TunnelEndpoint.cpp

257 lines
8 KiB
C++
Raw Normal View History

#include "I2PEndian.h"
2013-11-11 00:19:49 +01:00
#include <string.h>
2015-11-03 15:15:49 +01:00
#include <openssl/sha.h>
2013-11-11 00:19:49 +01:00
#include "Log.h"
#include "NetDb.h"
2013-11-11 00:19:49 +01:00
#include "I2NPProtocol.h"
#include "Transports.h"
#include "RouterContext.h"
2013-11-11 00:19:49 +01:00
#include "TunnelEndpoint.h"
namespace i2p
{
namespace tunnel
{
2014-07-05 14:33:08 +02:00
TunnelEndpoint::~TunnelEndpoint ()
{
}
void TunnelEndpoint::HandleDecryptedTunnelDataMsg (std::shared_ptr<I2NPMessage> msg)
2013-11-11 00:19:49 +01:00
{
2013-12-10 14:10:49 +01:00
m_NumReceivedBytes += TUNNEL_DATA_MSG_SIZE;
2013-11-11 00:19:49 +01:00
uint8_t * decrypted = msg->GetPayload () + 20; // 4 + 16
2013-12-10 14:10:49 +01:00
uint8_t * zero = (uint8_t *)memchr (decrypted + 4, 0, TUNNEL_DATA_ENCRYPTED_SIZE - 4); // witout 4-byte checksum
2013-11-11 00:19:49 +01:00
if (zero)
{
uint8_t * fragment = zero + 1;
2014-06-28 02:11:21 +02:00
// verify checksum
memcpy (msg->GetPayload () + TUNNEL_DATA_MSG_SIZE, msg->GetPayload () + 4, 16); // copy iv to the end
uint8_t hash[32];
2015-11-03 15:15:49 +01:00
SHA256(fragment, TUNNEL_DATA_MSG_SIZE -(fragment - msg->GetPayload ()) + 16, hash); // payload + iv
2014-06-28 02:11:21 +02:00
if (memcmp (hash, decrypted, 4))
{
2015-02-05 04:05:09 +01:00
LogPrint (eLogError, "TunnelMessage: checksum verification failed");
2014-06-28 02:11:21 +02:00
return;
}
// process fragments
2013-12-10 14:10:49 +01:00
while (fragment < decrypted + TUNNEL_DATA_ENCRYPTED_SIZE)
2013-11-11 00:19:49 +01:00
{
uint8_t flag = fragment[0];
fragment++;
bool isFollowOnFragment = flag & 0x80, isLastFragment = true;
uint32_t msgID = 0;
2014-06-11 16:56:20 +02:00
int fragmentNum = 0;
TunnelMessageBlockEx m;
2013-11-11 00:19:49 +01:00
if (!isFollowOnFragment)
{
// first fragment
m.deliveryType = (TunnelDeliveryType)((flag >> 5) & 0x03);
switch (m.deliveryType)
{
case eDeliveryTypeLocal: // 0
break;
case eDeliveryTypeTunnel: // 1
m.tunnelID = bufbe32toh (fragment);
2013-11-11 00:19:49 +01:00
fragment += 4; // tunnelID
2014-01-21 00:37:51 +01:00
m.hash = i2p::data::IdentHash (fragment);
2013-11-11 00:19:49 +01:00
fragment += 32; // hash
break;
case eDeliveryTypeRouter: // 2
2014-01-21 00:37:51 +01:00
m.hash = i2p::data::IdentHash (fragment);
2013-11-11 00:19:49 +01:00
fragment += 32; // to hash
break;
default:
;
}
bool isFragmented = flag & 0x08;
if (isFragmented)
{
// Message ID
msgID = bufbe32toh (fragment);
2013-11-11 00:19:49 +01:00
fragment += 4;
isLastFragment = false;
}
}
else
{
// follow on
msgID = bufbe32toh (fragment); // MessageID
2013-11-11 00:19:49 +01:00
fragment += 4;
2014-06-11 16:56:20 +02:00
fragmentNum = (flag >> 1) & 0x3F; // 6 bits
2013-11-11 00:19:49 +01:00
isLastFragment = flag & 0x01;
}
uint16_t size = bufbe16toh (fragment);
2013-11-11 00:19:49 +01:00
fragment += 2;
msg->offset = fragment - msg->buf;
msg->len = msg->offset + size;
2013-12-10 14:10:49 +01:00
if (fragment + size < decrypted + TUNNEL_DATA_ENCRYPTED_SIZE)
2013-11-11 00:19:49 +01:00
{
// this is not last message. we have to copy it
2015-11-24 19:09:12 +01:00
m.data = NewI2NPShortMessage ();
2015-01-02 00:53:44 +01:00
m.data->offset += TUNNEL_GATEWAY_HEADER_SIZE; // reserve room for TunnelGateway header
m.data->len += TUNNEL_GATEWAY_HEADER_SIZE;
2013-11-11 00:19:49 +01:00
*(m.data) = *msg;
}
else
m.data = msg;
if (!isFollowOnFragment && isLastFragment)
HandleNextMessage (m);
else
{
if (msgID) // msgID is presented, assume message is fragmented
{
if (!isFollowOnFragment) // create new incomlete message
2014-06-11 16:56:20 +02:00
{
m.nextFragmentNum = 1;
2015-02-05 04:16:44 +01:00
auto ret = m_IncompleteMessages.insert (std::pair<uint32_t, TunnelMessageBlockEx>(msgID, m));
if (ret.second)
HandleOutOfSequenceFragment (msgID, ret.first->second);
else
LogPrint (eLogError, "Incomplete message ", msgID, "already exists");
2014-06-11 16:56:20 +02:00
}
2013-11-11 00:19:49 +01:00
else
{
2014-07-05 02:54:03 +02:00
m.nextFragmentNum = fragmentNum;
HandleFollowOnFragment (msgID, isLastFragment, m);
2013-11-11 00:19:49 +01:00
}
}
2015-02-05 04:05:09 +01:00
else
LogPrint (eLogError, "Message is fragmented, but msgID is not presented");
2013-11-11 00:19:49 +01:00
}
fragment += size;
}
}
else
2015-02-05 04:05:09 +01:00
LogPrint (eLogError, "TunnelMessage: zero not found");
2013-11-11 00:19:49 +01:00
}
2014-07-05 02:54:03 +02:00
void TunnelEndpoint::HandleFollowOnFragment (uint32_t msgID, bool isLastFragment, const TunnelMessageBlockEx& m)
{
auto fragment = m.data->GetBuffer ();
auto size = m.data->GetLength ();
auto it = m_IncompleteMessages.find (msgID);
if (it != m_IncompleteMessages.end())
{
auto& msg = it->second;
if (m.nextFragmentNum == msg.nextFragmentNum)
2014-07-05 02:54:03 +02:00
{
2015-03-11 18:24:13 +01:00
if (msg.data->len + size < I2NP_MAX_MESSAGE_SIZE) // check if message is not too long
2014-07-05 02:54:03 +02:00
{
2015-03-11 18:24:13 +01:00
if (msg.data->len + size > msg.data->maxLen)
{
LogPrint (eLogInfo, "Tunnel endpoint I2NP message size ", msg.data->maxLen, " is not enough");
2015-11-24 19:09:12 +01:00
auto newMsg = NewI2NPMessage ();
2015-03-11 18:24:13 +01:00
*newMsg = *(msg.data);
msg.data = newMsg;
}
2016-01-05 20:29:18 +01:00
if (msg.data->Concat (fragment, size) < size) // concatenate fragment
LogPrint (eLogError, "Tunnel endpoint I2NP buffer overflow ", msg.data->maxLen);
2014-07-05 02:54:03 +02:00
if (isLastFragment)
{
// message complete
HandleNextMessage (msg);
2014-07-05 02:54:03 +02:00
m_IncompleteMessages.erase (it);
}
else
{
msg.nextFragmentNum++;
HandleOutOfSequenceFragment (msgID, msg);
}
2014-07-05 02:54:03 +02:00
}
else
{
2015-02-05 04:05:09 +01:00
LogPrint (eLogError, "Fragment ", m.nextFragmentNum, " of message ", msgID, "exceeds max I2NP message size. Message dropped");
2014-07-05 02:54:03 +02:00
m_IncompleteMessages.erase (it);
}
}
else
{
2015-02-05 04:05:09 +01:00
LogPrint (eLogInfo, "Unexpected fragment ", (int)m.nextFragmentNum, " instead ", (int)msg.nextFragmentNum, " of message ", msgID, ". Saved");
AddOutOfSequenceFragment (msgID, m.nextFragmentNum, isLastFragment, m.data);
2014-07-05 02:54:03 +02:00
}
}
else
{
2015-02-05 04:05:09 +01:00
LogPrint (eLogInfo, "First fragment of message ", msgID, " not found. Saved");
AddOutOfSequenceFragment (msgID, m.nextFragmentNum, isLastFragment, m.data);
}
}
void TunnelEndpoint::AddOutOfSequenceFragment (uint32_t msgID, uint8_t fragmentNum, bool isLastFragment, std::shared_ptr<I2NPMessage> data)
{
auto it = m_OutOfSequenceFragments.find (msgID);
if (it == m_OutOfSequenceFragments.end ())
m_OutOfSequenceFragments.insert (std::pair<uint32_t, Fragment> (msgID, {fragmentNum, isLastFragment, data}));
}
2014-07-05 02:54:03 +02:00
void TunnelEndpoint::HandleOutOfSequenceFragment (uint32_t msgID, TunnelMessageBlockEx& msg)
{
auto it = m_OutOfSequenceFragments.find (msgID);
if (it != m_OutOfSequenceFragments.end ())
{
if (it->second.fragmentNum == msg.nextFragmentNum)
{
2015-02-05 04:05:09 +01:00
LogPrint (eLogInfo, "Out-of-sequence fragment ", (int)it->second.fragmentNum, " of message ", msgID, " found");
auto size = it->second.data->GetLength ();
2015-03-11 18:24:13 +01:00
if (msg.data->len + size > msg.data->maxLen)
{
LogPrint (eLogInfo, "Tunnel endpoint I2NP message size ", msg.data->maxLen, " is not enough");
2015-11-24 19:09:12 +01:00
auto newMsg = NewI2NPMessage ();
2015-03-11 18:24:13 +01:00
*newMsg = *(msg.data);
msg.data = newMsg;
}
2016-01-05 20:29:18 +01:00
if (msg.data->Concat (it->second.data->GetBuffer (), size) < size) // concatenate out-of-sync fragment
LogPrint (eLogError, "Tunnel endpoint I2NP buffer overflow ", msg.data->maxLen);
if (it->second.isLastFragment)
{
// message complete
HandleNextMessage (msg);
m_IncompleteMessages.erase (msgID);
}
else
msg.nextFragmentNum++;
m_OutOfSequenceFragments.erase (it);
}
}
2014-07-05 02:54:03 +02:00
}
2013-11-11 00:19:49 +01:00
void TunnelEndpoint::HandleNextMessage (const TunnelMessageBlock& msg)
{
2015-12-09 16:03:51 +01:00
auto typeID = msg.data->GetTypeID ();
2016-01-18 01:00:00 +01:00
LogPrint (eLogDebug, "TunnelMessage: handle fragment of ", msg.data->GetLength (), " bytes, msg type ", (int)typeID);
2013-11-11 00:19:49 +01:00
switch (msg.deliveryType)
{
case eDeliveryTypeLocal:
i2p::HandleI2NPMessage (msg.data);
2013-11-11 00:19:49 +01:00
break;
case eDeliveryTypeTunnel:
2015-12-09 16:03:51 +01:00
if (!m_IsInbound) // outbound transit tunnel
i2p::transport::transports.SendMessage (msg.hash, i2p::CreateTunnelGatewayMsg (msg.tunnelID, msg.data));
else
2015-12-09 16:03:51 +01:00
LogPrint (eLogError, "Delivery type tunnel arrived from an inbound tunnel. Dropped");
break;
case eDeliveryTypeRouter:
if (!m_IsInbound) // outbound transit tunnel
i2p::transport::transports.SendMessage (msg.hash, msg.data);
else // we shouldn't send this message. possible leakage
LogPrint (eLogError, "Delivery type router arrived from an inbound tunnel. Dropped");
2013-11-11 00:19:49 +01:00
break;
default:
2015-02-05 04:05:09 +01:00
LogPrint (eLogError, "TunnelMessage: Unknown delivery type ", (int)msg.deliveryType);
2013-11-11 00:19:49 +01:00
};
2015-12-09 16:03:51 +01:00
// catch RI or reply with new list of routers
if ((IsRouterInfoMsg (msg.data) || typeID == eI2NPDatabaseSearchReply) &&
2015-12-09 16:03:51 +01:00
!m_IsInbound && msg.deliveryType != eDeliveryTypeLocal)
i2p::data::netdb.PostI2NPMsg (msg.data);
2013-11-11 00:19:49 +01:00
}
}
}