| blob | 374ff5fd1bfdee7b7a2d648735ad0ab478b4623d |
1 // A module for TorBrowser that provides an asynchronous controller for
2 // Tor, through its ControlPort.
3 //
4 // This file is written in call stack order (later functions
5 // call earlier functions). The file can be processed
6 // with docco.js to produce pretty documentation.
7 //
8 // To import the module, use
9 //
10 // let { configureControlPortModule, controller, wait_for_controller } =
11 // Components.utils.import("path/to/tor-control-port.js", {});
12 //
13 // See the third-to-last function defined in this file:
14 // configureControlPortModule(ipcFile, host, port, password)
15 // for usage of the configureControlPortModule function.
16 //
17 // See the last functions defined in this file:
18 // controller(avoidCache), wait_for_controller(avoidCache)
19 // for usage of the controller functions.
21 /* jshint esnext: true */
22 /* jshint -W097 */
23 /* global console */
26 // ### Import Mozilla Services
32 "resource://gre/modules/TorMonitorService.jsm"
33 );
35 // tor-launcher observer topics
38 });
40 // __log__.
41 // Logging function
46 // ### announce this file
52 Ci.nsISocketTransportService
53 );
69 "@mozilla.org/scriptableinputstream;1"
73 }
75 // asynchronously write string to underlying socket and return number of bytes written
78 // asyncWait next write request
86 );
87 }
88 };
90 // output stream can only have 1 registered callback at a time, so multiple writes
91 // need to be queued up (see nsIAsyncOutputStream.idl)
93 // Implement an nsIOutputStreamCallback:
94 onOutputStreamReady: () => {
98 // remove this callback object from queue as it is now completed
101 // request next wait if there is one
104 // finally resolve promise
107 // reject promise on error
109 }
110 },
111 });
113 // length 1 imples that there is no in-flight asyncWait, so we may immediately
114 // follow through on this write
117 }
118 });
119 }
121 // asynchronously read string from underlying socket and return it
131 );
132 }
133 };
138 // read our string from input stream
141 );
143 // remove this callback object from queue now that we have read
146 // request next wait if there is one
149 // finally resolve promise
153 }
154 },
155 });
157 // length 1 imples that there is no in-flight asyncWait, so we may immediately
158 // follow through on this read
161 }
162 });
163 }
168 }
169 }
180 // mainDispatcher pushes only async notifications (650) to notificationDispatcher
184 );
185 // callback for handling responses and errors
189 );
194 }
196 // blocks until an entire line is read and returns it
197 // immediately returns next line in queue (pendingLines) if present
199 // keep reading from socket until we have a full line to return
201 // read data from our socket and spit on newline tokens
205 // the last line will either be empty string, or a partial read of a response/event
206 // so save it off for the next socket read
209 // copy remaining full lines to our pendingLines list
211 }
213 }
215 // blocks until an entire message is ready and returns it
217 // whether we are searching for the end of a multi-line values
218 // See control-spec section 3.9
228 // look for end of multiline
231 }
233 // 'Multiline values' are possible. We avoid interrupting one by detecting it
234 // and waiting for a terminating "." on its own line.
235 // (See control-spec section 3.9 and https://trac.torproject.org/16990#comment:28
236 // Ensure this is the first line of a new message
237 // eslint-disable-next-line no-lonely-if
240 }
241 // look for end of message (note the space character at end of the regex)
250 }
251 }
252 }
253 }
256 // join our lines back together to form one message
258 }
266 }
271 }
273 }
274 }
280 }
285 }
287 // this promise is resolved either in _handleCommandReply, or
288 // in _startMessagePump (on stream error)
291 commandString,
292 resolve,
293 reject,
294 };
299 }
300 });
301 }
309 // Add Tor-specific information to the Error object.
316 }
322 )
323 );
324 }
326 // send next command if one is available
329 }
330 }
334 }
339 }
343 }
347 }
348 }
350 // ## io
351 // I/O utilities namespace
355 // __io.callbackDispatcher()__.
356 // Returns dispatcher object with three member functions:
357 // dispatcher.addCallback(regex, callback), dispatcher.removeCallback(callback),
358 // and dispatcher.pushMessage(message).
359 // Pass pushMessage to another function that needs a callback with a single string
360 // argument. Whenever dispatcher.pushMessage receives a string, the dispatcher will
361 // check for any regex matches and pass the string on to the corresponding callback(s).
367 });
368 },
372 }
375 };
376 },
381 }
382 }
383 };
385 pushMessage,
386 removeCallback,
387 addCallback,
388 };
389 };
391 // __io.controlSocket(ipcFile, host, port, password)__.
392 // Instantiates and returns a socket to a tor ControlPort at ipcFile or
393 // host:port, authenticating with the given password. Example:
394 //
395 // // Open the socket
396 // let socket = await io.controlSocket(undefined, "127.0.0.1", 9151, "MyPassw0rd");
397 // // Send command and receive "250" response reply or error is thrown
398 // await socket.sendCommand(commandText);
399 // // Register or deregister for "650" notifications
400 // // that match regex
401 // socket.addNotificationCallback(regex, callback);
402 // socket.removeNotificationCallback(callback);
403 // // Close the socket permanently
404 // socket.close();
409 // Log in to control port.
411 // Activate needed events.
415 };
417 // ## utils
418 // A namespace for utility functions
421 // __utils.identity(x)__.
422 // Returns its argument unchanged.
425 };
427 // __utils.isString(x)__.
428 // Returns true iff x is a string.
431 };
433 // __utils.capture(string, regex)__.
434 // Takes a string and returns an array of capture items, where regex must have a single
435 // capturing group and use the suffix /.../g to specify a global search.
438 // Special trick to use string.replace for capturing multiple matches.
441 });
443 };
445 // __utils.extractor(regex)__.
446 // Returns a function that takes a string and returns an array of regex matches. The
447 // regex must use the suffix /.../g to specify a global search.
451 };
452 };
454 // __utils.splitLines(string)__.
455 // Splits a string into an array of strings, each corresponding to a line.
458 };
460 // __utils.splitAtSpaces(string)__.
461 // Splits a string into chunks between spaces. Does not split at spaces
462 // inside pairs of quotation marks.
465 // __utils.splitAtFirst(string, regex)__.
466 // Splits a string at the first instance of regex match. If no match is
467 // found, returns the whole string.
470 return match
471 ? [
474 ]
476 };
478 // __utils.splitAtEquals(string)__.
479 // Splits a string into chunks between equals. Does not split at equals
480 // inside pairs of quotation marks.
483 // __utils.mergeObjects(arrayOfObjects)__.
484 // Takes an array of objects like [{"a":"b"},{"c":"d"}] and merges to a single object.
485 // Pure function.
491 }
492 }
494 };
496 // __utils.listMapData(parameterString, listNames)__.
497 // Takes a list of parameters separated by spaces, of which the first several are
498 // unnamed, and the remainder are named, in the form `NAME=VALUE`. Apply listNames
499 // to the unnamed parameters, and combine them in a map with the named parameters.
500 // Example: `40 FAILED 0 95.78.59.36:80 REASON=CANT_ATTACH`
501 //
502 // utils.listMapData("40 FAILED 0 95.78.59.36:80 REASON=CANT_ATTACH",
503 // ["streamID", "event", "circuitID", "IP"])
504 // // --> {"streamID" : "40", "event" : "FAILED", "circuitID" : "0",
505 // // "address" : "95.78.59.36:80", "REASON" : "CANT_ATTACH"}"
507 // Split out the space-delimited parameters.
509 dataMap = {};
510 // Assign listNames to the first n = listNames.length parameters.
513 }
514 // Read key-value pairs and copy these to the dataMap.
519 }
520 }
522 };
524 // __utils.rejectPromise(errorMessage)__.
525 // Returns a rejected promise with the given error message.
528 // ## info
529 // A namespace for functions related to tor's GETINFO and GETCONF command.
532 // __info.keyValueStringsFromMessage(messageText)__.
533 // Takes a message (text) response to GETINFO or GETCONF and provides
534 // a series of key-value strings, which are either multiline (with a `250+` prefix):
535 //
536 // 250+config/defaults=
537 // AccountingMax "0 bytes"
538 // AllowDotExit "0"
539 // .
540 //
541 // or single-line (with a `250-` or `250 ` prefix):
542 //
543 // 250-version=0.2.6.0-alpha-dev (git-b408125288ad6943)
545 /^(250\+[\s\S]+?^\.|250[- ].+?)$/gim
546 );
548 // __info.applyPerLine(transformFunction)__.
549 // Returns a function that splits text into lines,
550 // and applies transformFunction to each line.
554 };
555 };
557 // __info.routerStatusParser(valueString)__.
558 // Parses a router status entry as, described in
559 // https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt
560 // (search for "router status entry")
563 objects = [];
565 // Drop first character and grab data following it.
567 // Accumulate more maps with data, depending on the first character in the line.
568 dataFun = {
579 ]),
588 }
589 }
591 };
593 // __info.circuitStatusParser(line)__.
594 // Parse the output of a circuit status line.
598 // Parse out the individual circuit IDs and names.
602 });
603 }
605 };
607 // __info.streamStatusParser(line)__.
608 // Parse the output of a stream status line.
615 ]);
616 };
618 // TODO: fix this parsing logic to handle bridgeLine correctly
619 // fingerprint/id is an optional parameter
620 // __info.bridgeParser(bridgeLine)__.
621 // Takes a single line from a `getconf bridge` result and returns
622 // a map containing the bridge's type, address, and ID.
626 // First check if we have a "vanilla" bridge:
630 // Several bridge types have a similar format:
634 [
644 ) {
646 }
647 }
649 };
651 // __info.parsers__.
652 // A map of GETINFO and GETCONF keys to parsing function, which convert
653 // result strings to JavaScript data.
659 // Currently unused parsers:
660 // "ns/name/" : info.routerStatusParser,
661 // "stream-status" : info.applyPerLine(info.streamStatusParser),
662 // "version" : utils.identity,
663 // "config-file" : utils.identity,
664 };
666 // __info.getParser(key)__.
667 // Takes a key and determines the parser function that should be used to
668 // convert its corresponding valueString to JavaScript data.
673 );
674 };
676 // __info.stringToValue(string)__.
677 // Converts a key-value string as from GETINFO or GETCONF to a value.
679 // key should look something like `250+circuit-status=` or `250-circuit-status=...`
680 // or `250 circuit-status=...`
685 }
686 // matchResult finds a single-line result for `250-` or `250 `,
687 // or a multi-line one for `250+`.
691 // Retrieve the captured group (the text of the value in the key-value pair)
693 // Get the parser function for the key found.
697 }
698 // Return value produced by the parser.
700 };
702 // __info.getMultipleResponseValues(message)__.
703 // Process multiple responses to a GETINFO or GETCONF request.
705 return info
709 };
711 // __info.getInfo(controlSocket, key)__.
712 // Sends GETINFO for a single key. Returns a promise with the result.
716 }
717 return aControlSocket
720 };
722 // __info.getConf(aControlSocket, key)__.
723 // Sends GETCONF for a single key. Returns a promise with the result.
725 // GETCONF with a single argument returns results with
726 // one or more lines that look like `250[- ]key=value`.
727 // Any GETCONF lines that contain a single keyword only are currently dropped.
728 // So we can use similar parsing to that for getInfo.
731 }
732 return aControlSocket
735 };
737 // ## onionAuth
738 // A namespace for functions related to tor's ONION_CLIENT_AUTH_* commands.
747 );
748 };
750 // __onionAuth.viewKeys()__.
751 // Sends a ONION_CLIENT_AUTH_VIEW command to retrieve the list of private keys.
752 // Returns a promise that is fulfilled with an array of key info objects which
753 // contain the following properties:
754 // hsAddress
755 // typeAndKey
756 // Flags (e.g., "Permanent")
759 return aControlSocket
762 };
764 // __onionAuth.add(controlSocket, hsAddress, b64PrivateKey, isPermanent)__.
765 // Sends a ONION_CLIENT_AUTH_ADD command to add a private key to the
766 // Tor configuration.
768 aControlSocket,
769 hsAddress,
770 b64PrivateKey,
771 isPermanent
772 ) {
775 }
779 }
785 }
787 };
789 // __onionAuth.remove(controlSocket, hsAddress)__.
790 // Sends a ONION_CLIENT_AUTH_REMOVE command to remove a private key from the
791 // Tor configuration.
795 }
799 };
801 // ## event
802 // Handlers for events
806 // __event.parsers__.
807 // A map of EVENT keys to parsing functions, which convert result strings to JavaScript
808 // data.
811 // Currently unused:
812 // "circ" : info.circuitStatusParser,
813 };
815 // __event.messageToData(type, message)__.
816 // Extract the data from an event. Note, at present
817 // we only extract streams that look like `"650" SP...`
823 };
825 // __event.watchEvent(controlSocket, type, filter, onData)__.
826 // Watches for a particular type of event. If filter(data) returns true, the event's
827 // data is passed to the onData callback. Returns a zero arg function that
828 // stops watching the event. Note: we only observe `"650" SP...` events
829 // currently (no `650+...` or `650-...` events).
839 }
841 }
842 }
843 );
844 };
846 // ## tor
847 // Things related to the main controller.
850 // __tor.controllerCache__.
851 // A map from "unix:socketpath" or "host:port" to controller objects. Prevents
852 // redundant instantiation of control sockets.
855 // __tor.controller(ipcFile, host, port, password)__.
856 // Creates a tor controller at the given ipcFile or host and port, with the
857 // given password.
870 close: () => {
872 },
874 };
875 };
877 // ## Export
881 // __configureControlPortModule(ipcFile, host, port, password)__.
882 // Sets Tor control port connection parameters to be used in future calls to
883 // the controller() function. Example:
884 // configureControlPortModule(undefined, "127.0.0.1", 9151, "MyPassw0rd");
890 };
892 // __controller(avoidCache)__.
893 // Instantiates and returns a controller object that is connected and
894 // authenticated to a Tor ControlPort using the connection parameters
895 // provided in the most recent call to configureControlPortModule(), if
896 // the controller doesn't yet exist. Otherwise returns the existing
897 // controller to the given ipcFile or host:port. Throws on error.
898 //
899 // Example:
900 //
901 // // Get a new controller
902 // const avoidCache = true;
903 // let c = controller(avoidCache);
904 // // Send command and receive `250` reply or error message in a promise:
905 // let replyPromise = c.getInfo("ip-to-country/16.16.16.16");
906 // // Close the controller permanently
907 // c.close();
911 }
917 // constructor shorthand
923 controlPortInfo.password
924 );
925 };
927 // avoid cache so always return a new controller
930 }
932 // first check our cache and see if we already have one
936 }
938 // create a new one and store in the map
940 // overwrite the close() function to prevent consumers from closing a shared/cached controller
943 };
947 };
949 // __wait_for_controller(avoidCache)
950 // Same as controller() function, but explicitly waits until there is a tor daemon
951 // to connect to (either launched by tor-launcher, or if we have an existing system
952 // tor daemon)
954 // if tor process is running (either ours or system) immediately return controller
957 }
959 // otherwise we must wait for tor to finish launching before resolving
968 }
970 }
971 },
972 };
974 });
975 };
977 // Export functions for external use.
982 ];