2 libloc - A library to determine the location of someone on the Internet
4 Copyright (C) 2017 IPFire Development Team <info@ipfire.org>
6 This library is free software; you can redistribute it and/or
7 modify it under the terms of the GNU Lesser General Public
8 License as published by the Free Software Foundation; either
9 version 2.1 of the License, or (at your option) any later version.
11 This library is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
22 #include <sys/queue.h>
29 #include <openssl/bio.h>
30 #include <openssl/err.h>
31 #include <openssl/evp.h>
32 #include <openssl/pem.h>
34 #include <loc/libloc.h>
36 #include <loc/compat.h>
37 #include <loc/country.h>
38 #include <loc/database.h>
39 #include <loc/format.h>
40 #include <loc/network.h>
41 #include <loc/private.h>
42 #include <loc/writer.h>
48 struct loc_stringpool
* pool
;
53 // Private key to sign any databases
54 EVP_PKEY
* private_key
;
59 struct loc_country
** countries
;
60 size_t countries_count
;
62 struct loc_network_tree
* networks
;
65 static int parse_private_key(struct loc_writer
* writer
, FILE* f
) {
66 // Free any previously loaded keys
67 if (writer
->private_key
)
68 EVP_PKEY_free(writer
->private_key
);
71 writer
->private_key
= PEM_read_PrivateKey(f
, NULL
, NULL
, NULL
);
74 if (!writer
->private_key
) {
75 char* error
= ERR_error_string(ERR_get_error(), NULL
);
76 ERROR(writer
->ctx
, "Could not parse private key: %s\n", error
);
84 LOC_EXPORT
int loc_writer_new(struct loc_ctx
* ctx
, struct loc_writer
** writer
, FILE* fkey
) {
85 struct loc_writer
* w
= calloc(1, sizeof(*w
));
89 w
->ctx
= loc_ref(ctx
);
92 int r
= loc_stringpool_new(ctx
, &w
->pool
);
98 // Initialize the network tree
99 r
= loc_network_tree_new(ctx
, &w
->networks
);
105 // Load the private key to sign databases
107 r
= parse_private_key(w
, fkey
);
118 LOC_EXPORT
struct loc_writer
* loc_writer_ref(struct loc_writer
* writer
) {
124 static void loc_writer_free(struct loc_writer
* writer
) {
125 DEBUG(writer
->ctx
, "Releasing writer at %p\n", writer
);
128 if (writer
->private_key
)
129 EVP_PKEY_free(writer
->private_key
);
132 for (unsigned int i
= 0; i
< writer
->as_count
; i
++) {
133 loc_as_unref(writer
->as
[i
]);
136 // Release network tree
137 if (writer
->networks
)
138 loc_network_tree_unref(writer
->networks
);
140 // Unref the string pool
141 loc_stringpool_unref(writer
->pool
);
143 loc_unref(writer
->ctx
);
147 LOC_EXPORT
struct loc_writer
* loc_writer_unref(struct loc_writer
* writer
) {
148 if (--writer
->refcount
> 0)
151 loc_writer_free(writer
);
156 LOC_EXPORT
const char* loc_writer_get_vendor(struct loc_writer
* writer
) {
157 return loc_stringpool_get(writer
->pool
, writer
->vendor
);
160 LOC_EXPORT
int loc_writer_set_vendor(struct loc_writer
* writer
, const char* vendor
) {
161 // Add the string to the string pool
162 off_t offset
= loc_stringpool_add(writer
->pool
, vendor
);
166 writer
->vendor
= offset
;
170 LOC_EXPORT
const char* loc_writer_get_description(struct loc_writer
* writer
) {
171 return loc_stringpool_get(writer
->pool
, writer
->description
);
174 LOC_EXPORT
int loc_writer_set_description(struct loc_writer
* writer
, const char* description
) {
175 // Add the string to the string pool
176 off_t offset
= loc_stringpool_add(writer
->pool
, description
);
180 writer
->description
= offset
;
184 LOC_EXPORT
const char* loc_writer_get_license(struct loc_writer
* writer
) {
185 return loc_stringpool_get(writer
->pool
, writer
->license
);
188 LOC_EXPORT
int loc_writer_set_license(struct loc_writer
* writer
, const char* license
) {
189 // Add the string to the string pool
190 off_t offset
= loc_stringpool_add(writer
->pool
, license
);
194 writer
->license
= offset
;
198 static int __loc_as_cmp(const void* as1
, const void* as2
) {
199 return loc_as_cmp(*(struct loc_as
**)as1
, *(struct loc_as
**)as2
);
202 LOC_EXPORT
int loc_writer_add_as(struct loc_writer
* writer
, struct loc_as
** as
, uint32_t number
) {
203 int r
= loc_as_new(writer
->ctx
, as
, number
);
207 // We have a new AS to add
211 writer
->as
= realloc(writer
->as
, sizeof(*writer
->as
) * writer
->as_count
);
215 // Add as last element
216 writer
->as
[writer
->as_count
- 1] = loc_as_ref(*as
);
219 qsort(writer
->as
, writer
->as_count
, sizeof(*writer
->as
), __loc_as_cmp
);
224 LOC_EXPORT
int loc_writer_add_network(struct loc_writer
* writer
, struct loc_network
** network
, const char* string
) {
227 // Create a new network object
228 r
= loc_network_new_from_string(writer
->ctx
, network
, string
);
232 // Add it to the local tree
233 return loc_network_tree_add_network(writer
->networks
, *network
);
236 static int __loc_country_cmp(const void* country1
, const void* country2
) {
237 return loc_country_cmp(*(struct loc_country
**)country1
, *(struct loc_country
**)country2
);
240 LOC_EXPORT
int loc_writer_add_country(struct loc_writer
* writer
, struct loc_country
** country
, const char* country_code
) {
241 int r
= loc_country_new(writer
->ctx
, country
, country_code
);
245 // We have a new country to add
246 writer
->countries_count
++;
249 writer
->countries
= realloc(writer
->countries
, sizeof(*writer
->countries
) * writer
->countries_count
);
250 if (!writer
->countries
)
253 // Add as last element
254 writer
->countries
[writer
->countries_count
- 1] = loc_country_ref(*country
);
257 qsort(writer
->countries
, writer
->countries_count
, sizeof(*writer
->countries
), __loc_country_cmp
);
262 static void make_magic(struct loc_writer
* writer
, struct loc_database_magic
* magic
) {
264 for (unsigned int i
= 0; i
< strlen(LOC_DATABASE_MAGIC
); i
++)
265 magic
->magic
[i
] = LOC_DATABASE_MAGIC
[i
];
268 magic
->version
= htobe16(LOC_DATABASE_VERSION
);
271 static void align_page_boundary(off_t
* offset
, FILE* f
) {
272 // Move to next page boundary
273 while (*offset
% LOC_DATABASE_PAGE_SIZE
> 0)
274 *offset
+= fwrite("", 1, 1, f
);
277 static int loc_database_write_pool(struct loc_writer
* writer
,
278 struct loc_database_header_v0
* header
, off_t
* offset
, FILE* f
) {
279 // Save the offset of the pool section
280 DEBUG(writer
->ctx
, "Pool starts at %jd bytes\n", (intmax_t)*offset
);
281 header
->pool_offset
= htobe32(*offset
);
284 size_t pool_length
= loc_stringpool_write(writer
->pool
, f
);
285 *offset
+= pool_length
;
287 DEBUG(writer
->ctx
, "Pool has a length of %zu bytes\n", pool_length
);
288 header
->pool_length
= htobe32(pool_length
);
293 static int loc_database_write_as_section(struct loc_writer
* writer
,
294 struct loc_database_header_v0
* header
, off_t
* offset
, FILE* f
) {
295 DEBUG(writer
->ctx
, "AS section starts at %jd bytes\n", (intmax_t)*offset
);
296 header
->as_offset
= htobe32(*offset
);
298 size_t as_length
= 0;
300 struct loc_database_as_v0 as
;
301 for (unsigned int i
= 0; i
< writer
->as_count
; i
++) {
302 // Convert AS into database format
303 loc_as_to_database_v0(writer
->as
[i
], writer
->pool
, &as
);
306 *offset
+= fwrite(&as
, 1, sizeof(as
), f
);
307 as_length
+= sizeof(as
);
310 DEBUG(writer
->ctx
, "AS section has a length of %zu bytes\n", as_length
);
311 header
->as_length
= htobe32(as_length
);
313 align_page_boundary(offset
, f
);
319 TAILQ_ENTRY(node
) nodes
;
321 struct loc_network_tree_node
* node
;
323 // Indices of the child nodes
328 static struct node
* make_node(struct loc_network_tree_node
* node
) {
329 struct node
* n
= malloc(sizeof(*n
));
333 n
->node
= loc_network_tree_node_ref(node
);
334 n
->index_zero
= n
->index_one
= 0;
339 static void free_node(struct node
* node
) {
340 loc_network_tree_node_unref(node
->node
);
346 TAILQ_ENTRY(network
) networks
;
348 struct loc_network
* network
;
351 static struct network
* make_network(struct loc_network
* network
) {
352 struct network
* n
= malloc(sizeof(*n
));
356 n
->network
= loc_network_ref(network
);
361 static void free_network(struct network
* network
) {
362 loc_network_unref(network
->network
);
367 static int loc_database_write_networks(struct loc_writer
* writer
,
368 struct loc_database_header_v0
* header
, off_t
* offset
, FILE* f
) {
369 // Write the network tree
370 DEBUG(writer
->ctx
, "Network tree starts at %jd bytes\n", (intmax_t)*offset
);
371 header
->network_tree_offset
= htobe32(*offset
);
373 size_t network_tree_length
= 0;
374 size_t network_data_length
= 0;
377 struct node
* child_node
;
380 uint32_t network_index
= 0;
382 struct loc_database_network_v0 db_network
;
383 struct loc_database_network_node_v0 db_node
;
385 // Initialize queue for nodes
386 TAILQ_HEAD(node_t
, node
) nodes
;
389 // Initialize queue for networks
390 TAILQ_HEAD(network_t
, network
) networks
;
391 TAILQ_INIT(&networks
);
394 struct loc_network_tree_node
* root
= loc_network_tree_get_root(writer
->networks
);
395 node
= make_node(root
);
397 TAILQ_INSERT_TAIL(&nodes
, node
, nodes
);
399 while (!TAILQ_EMPTY(&nodes
)) {
400 // Pop first node in list
401 node
= TAILQ_FIRST(&nodes
);
402 TAILQ_REMOVE(&nodes
, node
, nodes
);
404 DEBUG(writer
->ctx
, "Processing node %p\n", node
);
407 struct loc_network_tree_node
* node_zero
= loc_network_tree_node_get(node
->node
, 0);
409 node
->index_zero
= ++index
;
411 child_node
= make_node(node_zero
);
412 loc_network_tree_node_unref(node_zero
);
414 TAILQ_INSERT_TAIL(&nodes
, child_node
, nodes
);
417 struct loc_network_tree_node
* node_one
= loc_network_tree_node_get(node
->node
, 1);
419 node
->index_one
= ++index
;
421 child_node
= make_node(node_one
);
422 loc_network_tree_node_unref(node_one
);
424 TAILQ_INSERT_TAIL(&nodes
, child_node
, nodes
);
427 // Prepare what we are writing to disk
428 db_node
.zero
= htobe32(node
->index_zero
);
429 db_node
.one
= htobe32(node
->index_one
);
431 if (loc_network_tree_node_is_leaf(node
->node
)) {
432 struct loc_network
* network
= loc_network_tree_node_get_network(node
->node
);
434 // Append network to be written out later
435 struct network
* nw
= make_network(network
);
436 TAILQ_INSERT_TAIL(&networks
, nw
, networks
);
438 db_node
.network
= htobe32(network_index
++);
439 loc_network_unref(network
);
441 db_node
.network
= htobe32(0xffffffff);
444 // Write the current node
445 DEBUG(writer
->ctx
, "Writing node %p (0 = %d, 1 = %d)\n",
446 node
, node
->index_zero
, node
->index_one
);
448 *offset
+= fwrite(&db_node
, 1, sizeof(db_node
), f
);
449 network_tree_length
+= sizeof(db_node
);
454 loc_network_tree_node_unref(root
);
456 header
->network_tree_length
= htobe32(network_tree_length
);
458 align_page_boundary(offset
, f
);
460 DEBUG(writer
->ctx
, "Networks data section starts at %jd bytes\n", (intmax_t)*offset
);
461 header
->network_data_offset
= htobe32(*offset
);
463 // We have now written the entire tree and have all networks
464 // in a queue in order as they are indexed
465 while (!TAILQ_EMPTY(&networks
)) {
466 struct network
* nw
= TAILQ_FIRST(&networks
);
467 TAILQ_REMOVE(&networks
, nw
, networks
);
469 // Prepare what we are writing to disk
470 int r
= loc_network_to_database_v0(nw
->network
, &db_network
);
474 *offset
+= fwrite(&db_network
, 1, sizeof(db_network
), f
);
475 network_data_length
+= sizeof(db_network
);
480 header
->network_data_length
= htobe32(network_data_length
);
482 align_page_boundary(offset
, f
);
487 static int loc_database_write_countries(struct loc_writer
* writer
,
488 struct loc_database_header_v0
* header
, off_t
* offset
, FILE* f
) {
489 DEBUG(writer
->ctx
, "Countries section starts at %jd bytes\n", (intmax_t)*offset
);
490 header
->countries_offset
= htobe32(*offset
);
492 size_t countries_length
= 0;
494 struct loc_database_country_v0 country
;
495 for (unsigned int i
= 0; i
< writer
->countries_count
; i
++) {
496 // Convert country into database format
497 loc_country_to_database_v0(writer
->countries
[i
], writer
->pool
, &country
);
500 *offset
+= fwrite(&country
, 1, sizeof(country
), f
);
501 countries_length
+= sizeof(country
);
504 DEBUG(writer
->ctx
, "Countries section has a length of %zu bytes\n", countries_length
);
505 header
->countries_length
= htobe32(countries_length
);
507 align_page_boundary(offset
, f
);
512 static int loc_writer_create_signature(struct loc_writer
* writer
,
513 struct loc_database_header_v0
* header
, FILE* f
) {
514 DEBUG(writer
->ctx
, "Signing database...\n");
516 // Read file from the beginning
519 // Create a new context for signing
520 EVP_MD_CTX
* mdctx
= EVP_MD_CTX_new();
522 // Initialise the context
523 int r
= EVP_DigestSignInit(mdctx
, NULL
, NULL
, NULL
, writer
->private_key
);
525 ERROR(writer
->ctx
, "%s\n", ERR_error_string(ERR_get_error(), NULL
));
530 struct loc_database_magic magic
;
531 fread(&magic
, 1, sizeof(magic
), f
);
533 // Feed magic into the signature
534 r
= EVP_DigestSignUpdate(mdctx
, &magic
, sizeof(magic
));
536 ERROR(writer
->ctx
, "%s\n", ERR_error_string(ERR_get_error(), NULL
));
540 // Feed the header into the signature
541 r
= EVP_DigestSignUpdate(mdctx
, header
, sizeof(header
));
543 ERROR(writer
->ctx
, "%s\n", ERR_error_string(ERR_get_error(), NULL
));
548 fseek(f
, sizeof(header
), SEEK_CUR
);
550 // Walk through the file in chunks of 64kB
551 char buffer
[64 * 1024];
553 size_t bytes_read
= fread(buffer
, 1, sizeof(buffer
), f
);
556 ERROR(writer
->ctx
, "Error reading from file: %s\n", strerror(errno
));
561 r
= EVP_DigestSignUpdate(mdctx
, buffer
, bytes_read
);
563 ERROR(writer
->ctx
, "%s\n", ERR_error_string(ERR_get_error(), NULL
));
568 // Compute the signature
569 size_t signature_length
= sizeof(header
->signature
);
571 r
= EVP_DigestSignFinal(mdctx
,
572 (unsigned char*)header
->signature
, &signature_length
);
574 ERROR(writer
->ctx
, "%s\n", ERR_error_string(ERR_get_error(), NULL
));
578 // Save length of the signature
579 header
->signature_length
= htobe32(signature_length
);
581 DEBUG(writer
->ctx
, "Successfully generated signature of %lu bytes\n",
586 hexdump(writer
->ctx
, header
->signature
, signature_length
);
589 EVP_MD_CTX_free(mdctx
);
594 LOC_EXPORT
int loc_writer_write(struct loc_writer
* writer
, FILE* f
) {
595 struct loc_database_magic magic
;
596 make_magic(writer
, &magic
);
599 struct loc_database_header_v0 header
;
600 header
.vendor
= htobe32(writer
->vendor
);
601 header
.description
= htobe32(writer
->description
);
602 header
.license
= htobe32(writer
->license
);
604 time_t now
= time(NULL
);
605 header
.created_at
= htobe64(now
);
607 // Clear the signature
608 header
.signature_length
= 0;
609 for (unsigned int i
= 0; i
< sizeof(header
.signature
); i
++)
610 header
.signature
[i
] = '\0';
615 // Start writing at the beginning of the file
616 r
= fseek(f
, 0, SEEK_SET
);
621 offset
+= fwrite(&magic
, 1, sizeof(magic
), f
);
623 // Skip the space we need to write the header later
624 r
= fseek(f
, sizeof(header
), SEEK_CUR
);
626 DEBUG(writer
->ctx
, "Could not seek to position after header\n");
629 offset
+= sizeof(header
);
631 align_page_boundary(&offset
, f
);
634 r
= loc_database_write_as_section(writer
, &header
, &offset
, f
);
638 // Write all networks
639 r
= loc_database_write_networks(writer
, &header
, &offset
, f
);
644 r
= loc_database_write_countries(writer
, &header
, &offset
, f
);
649 r
= loc_database_write_pool(writer
, &header
, &offset
, f
);
653 // Create the signature
654 if (writer
->private_key
) {
655 r
= loc_writer_create_signature(writer
, &header
, f
);
661 r
= fseek(f
, sizeof(magic
), SEEK_SET
);
665 fwrite(&header
, 1, sizeof(header
), f
);