aboutsummaryrefslogtreecommitdiff
path: root/src/or
diff options
context:
space:
mode:
authorteor <teor2345@gmail.com>2016-11-04 16:04:05 +1100
committerteor <teor2345@gmail.com>2016-11-18 13:35:09 +1100
commit8bdedab8da25382aa5f33297bedddfa4b8715c43 (patch)
tree16198079a9b99d1d480d15449f83f6f919414fc4 /src/or
parent98057d274c8928ae14ed6adc2903fce4a9f87214 (diff)
downloadtor-8bdedab8da25382aa5f33297bedddfa4b8715c43.tar.gz
tor-8bdedab8da25382aa5f33297bedddfa4b8715c43.zip
Refactor duplicate code out of rend_config_services
Put that code in rend_service_check_dir_and_add. No behaviour change. This is a defence in depth measure against similar bugs to 20529.
Diffstat (limited to 'src/or')
-rw-r--r--src/or/rendservice.c61
1 files changed, 40 insertions, 21 deletions
diff --git a/src/or/rendservice.c b/src/or/rendservice.c
index 15b7feb13c..cf71db59ba 100644
--- a/src/or/rendservice.c
+++ b/src/or/rendservice.c
@@ -218,6 +218,7 @@ rend_service_free_all(void)
/** Validate <b>service</b> and add it to rend_service_list if possible.
* Return 0 on success. On failure, free <b>service</b> and return -1.
+ * Takes ownership of <b>service</b>.
*/
static int
rend_add_service(rend_service_t *service)
@@ -444,6 +445,34 @@ rend_service_port_config_free(rend_service_port_config_t *p)
tor_free(p);
}
+/* Check the directory for <b>service</b>, and add the service to the global
+ * list if <b>validate_only</b> is false.
+ * If <b>validate_only</b> is true, free the service.
+ * If <b>service</b> is NULL, ignore it, and return 0.
+ * Returns 0 on success, and -1 on failure.
+ * Takes ownership of <b>service</b>.
+ */
+static int
+rend_service_check_dir_and_add(const or_options_t *options,
+ rend_service_t *service,
+ int validate_only)
+{
+ if (service) { /* register the one we just finished parsing */
+ if (rend_service_check_private_dir(options, service, !validate_only)
+ < 0) {
+ rend_service_free(service);
+ return -1;
+ }
+
+ if (validate_only)
+ rend_service_free(service);
+ else
+ rend_add_service(service);
+ }
+
+ return 0;
+}
+
/** Set up rend_service_list, based on the values of HiddenServiceDir and
* HiddenServicePort in <b>options</b>. Return 0 on success and -1 on
* failure. (If <b>validate_only</b> is set, parse, warn and return as
@@ -465,17 +494,12 @@ rend_config_services(const or_options_t *options, int validate_only)
for (line = options->RendConfigLines; line; line = line->next) {
if (!strcasecmp(line->key, "HiddenServiceDir")) {
- if (service) { /* register the one we just finished parsing */
- if (rend_service_check_private_dir(options, service, !validate_only)
- < 0) {
- rend_service_free(service);
+ /* register the service we just finished parsing
+ * this code registers every service except the last one parsed,
+ * which is registered below the loop */
+ if (rend_service_check_dir_and_add(options, service, !validate_only)
+ < 0) {
return -1;
- }
-
- if (validate_only)
- rend_service_free(service);
- else
- rend_add_service(service);
}
service = tor_malloc_zero(sizeof(rend_service_t));
service->directory = tor_strdup(line->value);
@@ -681,17 +705,12 @@ rend_config_services(const or_options_t *options, int validate_only)
}
}
}
- if (service) {
- if (rend_service_check_private_dir(options, service, !validate_only) < 0) {
- rend_service_free(service);
- return -1;
- }
-
- if (validate_only) {
- rend_service_free(service);
- } else {
- rend_add_service(service);
- }
+ /* register the final service after we have finished parsing all services
+ * this code only registers the last service, other services are registered
+ * within the loop */
+ if (rend_service_check_dir_and_add(options, service, !validate_only)
+ < 0) {
+ return -1;
}
/* If this is a reload and there were hidden services configured before,