i2pd/libi2pd/TunnelEndpoint.cpp

371 lines
11 KiB
C++
Raw Normal View History

/*
2023-03-18 19:32:05 +00:00
* Copyright (c) 2013-2023, The PurpleI2P Project
*
* This file is part of Purple i2pd project and licensed under BSD3
*
* See full license text in LICENSE file at top of project tree
*/
#include "I2PEndian.h"
2013-11-10 23:19:49 +00:00
#include <string.h>
2016-05-11 19:12:38 +00:00
#include "Crypto.h"
2013-11-10 23:19:49 +00:00
#include "Log.h"
#include "NetDb.hpp"
2013-11-10 23:19:49 +00:00
#include "I2NPProtocol.h"
#include "Transports.h"
#include "RouterContext.h"
#include "Timestamp.h"
2013-11-10 23:19:49 +00:00
#include "TunnelEndpoint.h"
namespace i2p
{
namespace tunnel
{
2014-07-05 12:33:08 +00:00
TunnelEndpoint::~TunnelEndpoint ()
{
2018-01-06 03:48:51 +00:00
}
void TunnelEndpoint::HandleDecryptedTunnelDataMsg (std::shared_ptr<I2NPMessage> msg)
2013-11-10 23:19:49 +00:00
{
2013-12-10 13:10:49 +00:00
m_NumReceivedBytes += TUNNEL_DATA_MSG_SIZE;
2018-01-06 03:48:51 +00:00
2013-11-10 23:19:49 +00:00
uint8_t * decrypted = msg->GetPayload () + 20; // 4 + 16
2021-11-12 16:33:51 +00:00
uint8_t * zero = (uint8_t *)memchr (decrypted + 4, 0, TUNNEL_DATA_ENCRYPTED_SIZE - 4); // without 4-byte checksum
2013-11-10 23:19:49 +00:00
if (zero)
2018-01-06 03:48:51 +00:00
{
2013-11-10 23:19:49 +00:00
uint8_t * fragment = zero + 1;
2014-06-28 00:11:21 +00:00
// verify checksum
memcpy (msg->GetPayload () + TUNNEL_DATA_MSG_SIZE, msg->GetPayload () + 4, 16); // copy iv to the end
uint8_t hash[32];
2015-11-03 14:15:49 +00:00
SHA256(fragment, TUNNEL_DATA_MSG_SIZE -(fragment - msg->GetPayload ()) + 16, hash); // payload + iv
2014-06-28 00:11:21 +00:00
if (memcmp (hash, decrypted, 4))
{
LogPrint (eLogError, "TunnelMessage: Checksum verification failed");
2014-06-28 00:11:21 +00:00
return;
2018-01-06 03:48:51 +00:00
}
2014-06-28 00:11:21 +00:00
// process fragments
2013-12-10 13:10:49 +00:00
while (fragment < decrypted + TUNNEL_DATA_ENCRYPTED_SIZE)
2013-11-10 23:19:49 +00:00
{
uint8_t flag = fragment[0];
fragment++;
2018-01-06 03:48:51 +00:00
bool isFollowOnFragment = flag & 0x80, isLastFragment = true;
2013-11-10 23:19:49 +00:00
uint32_t msgID = 0;
2014-06-11 14:56:20 +00:00
int fragmentNum = 0;
2013-11-10 23:19:49 +00:00
if (!isFollowOnFragment)
2018-01-06 03:48:51 +00:00
{
2013-11-10 23:19:49 +00:00
// first fragment
if (m_CurrentMsgID)
AddIncompleteCurrentMessage (); // we have got a new message while previous is not complete
m_CurrentMessage.deliveryType = (TunnelDeliveryType)((flag >> 5) & 0x03);
switch (m_CurrentMessage.deliveryType)
2013-11-10 23:19:49 +00:00
{
case eDeliveryTypeLocal: // 0
break;
2018-01-06 04:01:44 +00:00
case eDeliveryTypeTunnel: // 1
m_CurrentMessage.tunnelID = bufbe32toh (fragment);
2013-11-10 23:19:49 +00:00
fragment += 4; // tunnelID
m_CurrentMessage.hash = i2p::data::IdentHash (fragment);
2013-11-10 23:19:49 +00:00
fragment += 32; // hash
break;
case eDeliveryTypeRouter: // 2
m_CurrentMessage.hash = i2p::data::IdentHash (fragment);
2013-11-10 23:19:49 +00:00
fragment += 32; // to hash
break;
default: ;
2018-01-06 03:48:51 +00:00
}
2013-11-10 23:19:49 +00:00
bool isFragmented = flag & 0x08;
if (isFragmented)
{
// Message ID
2018-01-06 03:48:51 +00:00
msgID = bufbe32toh (fragment);
2013-11-10 23:19:49 +00:00
fragment += 4;
m_CurrentMsgID = msgID;
2013-11-10 23:19:49 +00:00
isLastFragment = false;
2018-01-06 03:48:51 +00:00
}
2013-11-10 23:19:49 +00:00
}
else
{
// follow on
2018-01-06 03:48:51 +00:00
msgID = bufbe32toh (fragment); // MessageID
fragment += 4;
2014-06-11 14:56:20 +00:00
fragmentNum = (flag >> 1) & 0x3F; // 6 bits
2013-11-10 23:19:49 +00:00
isLastFragment = flag & 0x01;
2018-01-06 03:48:51 +00:00
}
uint16_t size = bufbe16toh (fragment);
2013-11-10 23:19:49 +00:00
fragment += 2;
// handle fragment
if (isFollowOnFragment)
2013-11-10 23:19:49 +00:00
{
// existing message
if (m_CurrentMsgID && m_CurrentMsgID == msgID && m_CurrentMessage.nextFragmentNum == fragmentNum)
HandleCurrenMessageFollowOnFragment (fragment, size, isLastFragment); // previous
else
{
HandleFollowOnFragment (msgID, isLastFragment, fragmentNum, fragment, size); // another
m_CurrentMsgID = 0; m_CurrentMessage.data = nullptr;
}
}
2013-11-10 23:19:49 +00:00
else
{
// new message
msg->offset = fragment - msg->buf;
msg->len = msg->offset + size;
// check message size
if (msg->len > msg->maxLen)
{
LogPrint (eLogError, "TunnelMessage: Fragment is too long ", (int)size);
m_CurrentMsgID = 0; m_CurrentMessage.data = nullptr;
return;
}
// create new or assign I2NP message
if (fragment + size < decrypted + TUNNEL_DATA_ENCRYPTED_SIZE)
{
// this is not last message. we have to copy it
m_CurrentMessage.data = NewI2NPTunnelMessage (true);
*(m_CurrentMessage.data) = *msg;
}
else
m_CurrentMessage.data = msg;
if (isLastFragment)
{
// single message
HandleNextMessage (m_CurrentMessage);
m_CurrentMsgID = 0; m_CurrentMessage.data = nullptr;
}
else if (msgID)
2013-11-10 23:19:49 +00:00
{
// first fragment of a new message
m_CurrentMessage.nextFragmentNum = 1;
m_CurrentMessage.receiveTime = i2p::util::GetMillisecondsSinceEpoch ();
HandleOutOfSequenceFragments (msgID, m_CurrentMessage);
}
2018-01-06 03:48:51 +00:00
else
{
2016-01-20 00:00:00 +00:00
LogPrint (eLogError, "TunnelMessage: Message is fragmented, but msgID is not presented");
m_CurrentMsgID = 0; m_CurrentMessage.data = nullptr;
}
}
2013-11-10 23:19:49 +00:00
fragment += size;
2018-01-06 03:48:51 +00:00
}
}
2013-11-10 23:19:49 +00:00
else
LogPrint (eLogError, "TunnelMessage: Zero not found");
2018-01-06 03:48:51 +00:00
}
2013-11-10 23:19:49 +00:00
void TunnelEndpoint::HandleFollowOnFragment (uint32_t msgID, bool isLastFragment,
uint8_t fragmentNum, const uint8_t * fragment, size_t size)
2014-07-05 00:54:03 +00:00
{
auto it = m_IncompleteMessages.find (msgID);
if (it != m_IncompleteMessages.end())
{
auto& msg = it->second;
if (fragmentNum == msg.nextFragmentNum)
2014-07-05 00:54:03 +00:00
{
if (ConcatFollowOnFragment (msg, fragment, size))
2018-01-06 03:48:51 +00:00
{
2014-07-05 00:54:03 +00:00
if (isLastFragment)
{
// message complete
2018-01-06 03:48:51 +00:00
HandleNextMessage (msg);
m_IncompleteMessages.erase (it);
}
2014-07-05 00:54:03 +00:00
else
2018-01-06 03:48:51 +00:00
{
msg.nextFragmentNum++;
HandleOutOfSequenceFragments (msgID, msg);
2018-01-06 03:48:51 +00:00
}
2014-07-05 00:54:03 +00:00
}
else
{
LogPrint (eLogError, "TunnelMessage: Fragment ", fragmentNum, " of message ", msgID, "exceeds max I2NP message size, message dropped");
2014-07-05 00:54:03 +00:00
m_IncompleteMessages.erase (it);
}
}
else
2018-01-06 03:48:51 +00:00
{
LogPrint (eLogWarning, "TunnelMessage: Unexpected fragment ", (int)fragmentNum, " instead ", (int)msg.nextFragmentNum, " of message ", msgID, ", saved");
AddOutOfSequenceFragment (msgID, fragmentNum, isLastFragment, fragment, size);
2014-07-05 00:54:03 +00:00
}
}
else
2018-01-06 03:48:51 +00:00
{
2021-06-27 01:44:51 +00:00
LogPrint (eLogDebug, "TunnelMessage: First fragment of message ", msgID, " not found, saved");
AddOutOfSequenceFragment (msgID, fragmentNum, isLastFragment, fragment, size);
2018-01-06 03:48:51 +00:00
}
}
bool TunnelEndpoint::ConcatFollowOnFragment (TunnelMessageBlockEx& msg, const uint8_t * fragment, size_t size) const
{
if (msg.data->len + size < I2NP_MAX_MESSAGE_SIZE) // check if message is not too long
{
if (msg.data->len + size > msg.data->maxLen)
{
// LogPrint (eLogWarning, "TunnelMessage: I2NP message size ", msg.data->maxLen, " is not enough");
2023-03-18 19:32:05 +00:00
auto newMsg = NewI2NPMessage (msg.data->len + size);
*newMsg = *(msg.data);
msg.data = newMsg;
}
if (msg.data->Concat (fragment, size) < size) // concatenate fragment
{
LogPrint (eLogError, "TunnelMessage: I2NP buffer overflow ", msg.data->maxLen);
return false;
}
}
else
return false;
return true;
}
void TunnelEndpoint::HandleCurrenMessageFollowOnFragment (const uint8_t * fragment, size_t size, bool isLastFragment)
{
if (ConcatFollowOnFragment (m_CurrentMessage, fragment, size))
{
if (isLastFragment)
{
// message complete
HandleNextMessage (m_CurrentMessage);
m_CurrentMsgID = 0; m_CurrentMessage.data = nullptr;
}
else
{
m_CurrentMessage.nextFragmentNum++;
HandleOutOfSequenceFragments (m_CurrentMsgID, m_CurrentMessage);
}
}
else
{
LogPrint (eLogError, "TunnelMessage: Fragment ", m_CurrentMessage.nextFragmentNum, " of message ", m_CurrentMsgID, " exceeds max I2NP message size, message dropped");
m_CurrentMsgID = 0; m_CurrentMessage.data = nullptr;
}
}
void TunnelEndpoint::AddIncompleteCurrentMessage ()
{
if (m_CurrentMsgID)
{
auto ret = m_IncompleteMessages.emplace (m_CurrentMsgID, m_CurrentMessage);
if (!ret.second)
LogPrint (eLogError, "TunnelMessage: Incomplete message ", m_CurrentMsgID, " already exists");
m_CurrentMessage.data = nullptr;
m_CurrentMsgID = 0;
}
}
void TunnelEndpoint::AddOutOfSequenceFragment (uint32_t msgID, uint8_t fragmentNum,
bool isLastFragment, const uint8_t * fragment, size_t size)
{
std::unique_ptr<Fragment> f(new Fragment (isLastFragment, i2p::util::GetMillisecondsSinceEpoch (), size));
memcpy (f->data.data (), fragment, size);
if (!m_OutOfSequenceFragments.emplace ((uint64_t)msgID << 32 | fragmentNum, std::move (f)).second)
LogPrint (eLogInfo, "TunnelMessage: Duplicate out-of-sequence fragment ", fragmentNum, " of message ", msgID);
2018-01-06 03:48:51 +00:00
}
2014-07-05 00:54:03 +00:00
void TunnelEndpoint::HandleOutOfSequenceFragments (uint32_t msgID, TunnelMessageBlockEx& msg)
{
2018-01-06 03:48:51 +00:00
while (ConcatNextOutOfSequenceFragment (msgID, msg))
{
if (!msg.nextFragmentNum) // message complete
{
2018-01-06 03:48:51 +00:00
HandleNextMessage (msg);
if (&msg == &m_CurrentMessage)
{
m_CurrentMsgID = 0;
m_CurrentMessage.data = nullptr;
}
else
m_IncompleteMessages.erase (msgID);
2021-06-27 01:44:51 +00:00
LogPrint (eLogDebug, "TunnelMessage: All fragments of message ", msgID, " found");
break;
}
}
}
bool TunnelEndpoint::ConcatNextOutOfSequenceFragment (uint32_t msgID, TunnelMessageBlockEx& msg)
{
auto it = m_OutOfSequenceFragments.find ((uint64_t)msgID << 32 | msg.nextFragmentNum);
if (it != m_OutOfSequenceFragments.end ())
2018-01-06 03:48:51 +00:00
{
LogPrint (eLogDebug, "TunnelMessage: Out-of-sequence fragment ", (int)msg.nextFragmentNum, " of message ", msgID, " found");
size_t size = it->second->data.size ();
if (msg.data->len + size > msg.data->maxLen)
{
LogPrint (eLogWarning, "TunnelMessage: Tunnel endpoint I2NP message size ", msg.data->maxLen, " is not enough");
2023-03-18 19:32:05 +00:00
auto newMsg = NewI2NPMessage (msg.data->len + size);
*newMsg = *(msg.data);
msg.data = newMsg;
}
2023-03-18 19:32:05 +00:00
if (msg.data->Concat (it->second->data.data (), size) < size) // concatenate out-of-sync fragment
LogPrint (eLogError, "TunnelMessage: Tunnel endpoint I2NP buffer overflow ", msg.data->maxLen);
if (it->second->isLastFragment)
// message complete
msg.nextFragmentNum = 0;
else
msg.nextFragmentNum++;
m_OutOfSequenceFragments.erase (it);
2018-01-06 03:48:51 +00:00
return true;
}
return false;
2018-01-06 03:48:51 +00:00
}
2013-11-10 23:19:49 +00:00
void TunnelEndpoint::HandleNextMessage (const TunnelMessageBlock& msg)
{
2016-01-19 16:16:50 +00:00
if (!m_IsInbound && msg.data->IsExpired ())
2016-01-19 02:13:43 +00:00
{
LogPrint (eLogInfo, "TunnelMessage: Message expired");
2016-01-19 02:13:43 +00:00
return;
2018-01-06 03:48:51 +00:00
}
2016-06-28 16:20:18 +00:00
uint8_t typeID = msg.data->GetTypeID ();
LogPrint (eLogDebug, "TunnelMessage: Handle fragment of ", msg.data->GetLength (), " bytes, msg type ", (int)typeID);
2023-05-04 13:39:37 +00:00
2013-11-10 23:19:49 +00:00
switch (msg.deliveryType)
{
case eDeliveryTypeLocal:
i2p::HandleI2NPMessage (msg.data);
2013-11-10 23:19:49 +00:00
break;
case eDeliveryTypeTunnel:
2015-12-09 15:03:51 +00:00
if (!m_IsInbound) // outbound transit tunnel
i2p::transport::transports.SendMessage (msg.hash, i2p::CreateTunnelGatewayMsg (msg.tunnelID, msg.data));
else
2016-01-20 00:00:00 +00:00
LogPrint (eLogError, "TunnelMessage: Delivery type 'tunnel' arrived from an inbound tunnel, dropped");
2015-12-09 15:03:51 +00:00
break;
2018-01-06 03:48:51 +00:00
case eDeliveryTypeRouter:
2015-12-09 15:03:51 +00:00
if (!m_IsInbound) // outbound transit tunnel
i2p::transport::transports.SendMessage (msg.hash, msg.data);
2018-01-06 03:48:51 +00:00
else // we shouldn't send this message. possible leakage
2016-01-20 00:00:00 +00:00
LogPrint (eLogError, "TunnelMessage: Delivery type 'router' arrived from an inbound tunnel, dropped");
2013-11-10 23:19:49 +00:00
break;
default:
2015-02-05 03:05:09 +00:00
LogPrint (eLogError, "TunnelMessage: Unknown delivery type ", (int)msg.deliveryType);
2018-01-06 03:48:51 +00:00
};
}
void TunnelEndpoint::Cleanup ()
{
auto ts = i2p::util::GetMillisecondsSinceEpoch ();
// out-of-sequence fragments
for (auto it = m_OutOfSequenceFragments.begin (); it != m_OutOfSequenceFragments.end ();)
{
if (ts > it->second->receiveTime + i2p::I2NP_MESSAGE_EXPIRATION_TIMEOUT)
it = m_OutOfSequenceFragments.erase (it);
else
++it;
}
2016-12-06 21:23:52 +00:00
// incomplete messages
for (auto it = m_IncompleteMessages.begin (); it != m_IncompleteMessages.end ();)
{
if (ts > it->second.receiveTime + i2p::I2NP_MESSAGE_EXPIRATION_TIMEOUT)
it = m_IncompleteMessages.erase (it);
else
++it;
}
2018-01-06 03:48:51 +00:00
}
}
2013-11-10 23:19:49 +00:00
}