diff options
Diffstat (limited to 'internal')
-rw-r--r-- | internal/onionloc/onionloc.go | 74 | ||||
-rw-r--r-- | internal/onionloc/onionloc_test.go | 277 |
2 files changed, 351 insertions, 0 deletions
diff --git a/internal/onionloc/onionloc.go b/internal/onionloc/onionloc.go new file mode 100644 index 0000000..63e512a --- /dev/null +++ b/internal/onionloc/onionloc.go @@ -0,0 +1,74 @@ +package onionloc + +import ( + "net/http" + "strings" + + "golang.org/x/net/html" +) + +const ( + HTTPHeaderName = "Onion-Location" +) + +func HTTP(rsp *http.Response) (string, bool) { + v, ok := rsp.Header[HTTPHeaderName] + if !ok { + return "", false + } + if len(v) != 1 { + return "", false + } + return v[0], true +} + +func HTML(rsp *http.Response) (string, bool) { + z := html.NewTokenizer(rsp.Body) + for { + tt := z.Next() + if tt == html.ErrorToken { + return "", false // EOF and other errors + } + + switch tt { + case html.StartTagToken, html.SelfClosingTagToken: + t := z.Token() + + // Looking for the html meta tag, see: + // https://www.w3schools.com/tags/tag_meta.asp + // + // We expect two attributes: "key" and "content" + if strings.ToLower(t.Data) != "meta" { + break + } + if len(t.Attr) != 2 { + break + } + + // We're looking for the "http-equiv" key, see: + // https://www.w3schools.com/tags/att_meta_http_equiv.asp + // + // In particular with the value "onion-location", see: + // https://community.torproject.org/onion-services/advanced/onion-location/ + // + // If we have all this and a following content + // attribute, that is the Onion-Location URL that this + // page advertises. We make no attempt to validate + // whether the content value is really an onion address. + attr := t.Attr[0] + if strings.ToLower(attr.Key) != "http-equiv" { + break + } + if strings.ToLower(attr.Val) != "onion-location" { + break + } + attr = t.Attr[1] + if strings.ToLower(attr.Key) != "content" { + break + } + + return attr.Val, true + default: + } + } +} diff --git a/internal/onionloc/onionloc_test.go b/internal/onionloc/onionloc_test.go new file mode 100644 index 0000000..4d20876 --- /dev/null +++ b/internal/onionloc/onionloc_test.go @@ -0,0 +1,277 @@ +package onionloc + +import ( + "io" + "net/http" + "strings" + "testing" +) + +func TestHTML(t *testing.T) { + for _, table := range []struct { + desc string + html string + want string + }{ + {"onion location set", htmlNoOnionLocation, ""}, + {"onion location unset", htmlOnionLocation, htmlOnionLocationValue}, + } { + var r http.Response + r.Body = io.NopCloser(strings.NewReader(table.html)) + + v, ok := HTML(&r) + if got, want := ok, table.want != ""; got != want { + t.Errorf("%s: got ok %v but wanted %v", table.desc, got, want) + continue + } + if !ok { + continue + } + if got, want := v, table.want; got != want { + t.Errorf("%s: got %s but wanted %s", table.desc, got, want) + } + } +} + +// curl -s https://www.rgdd.se/ +const htmlNoOnionLocation = `<!DOCTYPE html> +<html lang=""><head> + <meta name="generator" content="Hugo 0.105.0"> + <meta charset="utf-8"> + <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> + + <title>rgdd.se</title> + <meta name="description" content="A simple monospaced resume theme for Hugo."> + <meta name="author" content='Rasmus Dahlberg'> + + <link rel="stylesheet" href="/cdnjs/bootstrap.min.css"> + <link rel="stylesheet" href="/cdnjs/all.min.css"> + <link rel="stylesheet" href="/fontawesome/all.css"> + + + <link rel="stylesheet" href="/sass/researcher.min.css"> + + + + <link rel="alternate" type="application/rss+xml" href="https://www.rgdd.se/index.xml" title="rgdd.se" /> + + + +</head> + + <body><div class="container mt-5"> + <nav class="navbar navbar-expand-sm flex-column flex-sm-row text-nowrap p-0"> + <a class="navbar-brand mx-0 mr-sm-auto" href="https://www.rgdd.se" title="rgdd.se"> + + rgdd.se + </a> + <div class="navbar-nav flex-row flex-wrap justify-content-center"> + + + + <a class="nav-item nav-link" href="/post" title="Blog"> + Blog + </a> + + + + </div> + </nav> +</div> +<hr> +<div id="content"> +<div class="container"> + <figure class="avatar"><img src="img/author.jpg" + alt="avatar"/> +</figure> + +<p>PhD student at <a href="https://www.kau.se/en/">Karlstad University</a>. Software engineer at <a href="https://www.glasklarteknik.se/">Glasklar Teknik</a>. +I am passionate about transparency logs, anonymity networks, and Linux. I have +a keen interest for the overlap between research, engineering, and operations. +Off-work I cook, walk, socialize, lift weights, and spoil my cat.</p> +<h1 id="project-involvement">Project involvement</h1> +<p>I am a core member of the following projects:</p> +<ul> +<li><a href="https://www.sigsum.org/">Sigsum</a>: a free and open source software project that makes a signer’s +key-usage transparent. It can be used as a building block to secure the +supply chain and more.</li> +<li><a href="https://www.system-transparency.org/">System Transparency</a>: an open source project that provides a security +architecture for bare metal servers. A system’s entire boot chain becomes +protected and auditable.</li> +<li><a href="https://www.torproject.org/">Tor</a>: a 501(c)(3) US nonprofit that advance human rights and defend online +privacy through free software and open networks.</li> +</ul> +<h1 id="selected-publications">Selected publications</h1> +<ul> +<li>Rasmus Dahlberg, Tobias Pulls. +<a href="https://www.usenix.org/conference/usenixsecurity23/presentation/dahlberg">Timeless Timing Attacks and Preload Defenses in Tor’s DNS Cache</a>. +USENIX Security (2023)</li> +<li>Rasmus Dahlberg, Tobias Pulls, Tom Ritter, and Paul Syverson. +<a href="https://petsymposium.org/2021/files/papers/issue2/popets-2021-0024.pdf">Privacy-Preserving & Incrementally-Deployable Support for Certificate Transparency in Tor</a>. +PETS (2021)</li> +<li>Tobias Pulls and Rasmus Dahlberg. +<a href="https://petsymposium.org/2020/files/papers/issue1/popets-2020-0013.pdf">Website Fingerprinting with Website Oracles</a>. +PETS (2020)</li> +<li>Rasmus Dahlberg, Tobias Pulls, Jonathan Vestin, Toke Høiland-Jørgensen, and Andreas Kassler. +<a href="https://arxiv.org/pdf/1806.08817.pdf">Aggregation-Based Certificate Transparency Gossip</a>. +SECUREWARE (2019)</li> +<li>Tobias Pulls and Rasmus Dahlberg. +<a href="https://eprint.iacr.org/2018/737.pdf">Steady: A Simple End-to-End Secure Logging System</a>. +NordSec (2018)</li> +</ul> +<h1 id="contact">Contact</h1> +<p>Feel free to reach out on email or other platforms as you see fit.</p> + +</div> + + </div><div id="footer" class="mb-5"> + <hr> + + <div class="container text-center"> + + <a href="https://www.instagram.com/__rgdd" class="fab fa-instagram fa-1x" title="Instagram"></a> + + <a href="https://mastodon.social/@rgdd" class="fab fa-mastodon fa-1x" title="Mastodon"></a> + + <a href="https://github.com/rgdd" class="fab fa-github fa-1x" title="GitHub"></a> + + <a href="https://gitlab.torproject.org/rgdd" class="fab fa-gitlab fa-1x" title="GitLab"></a> + + <a href="https://git.glasklar.is/rgdd" class="fab fa-gitlab fa-1x" title="GitLab"></a> + + <a href="mailto:rasmus@rgdd.se" class="fas fa-envelope fa-1x" title="E-mail"></a> + + </div> + + + <div class="container text-center"> + <a href="http://cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion" title="cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion"><small>cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion</small></a> + </div> + +</div> +</body> +</html>` + +const htmlOnionLocationValue = "http://cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion/" + +// curl -s https://www.rgdd.se/ +// then add <meta http-equiv="onion-location" content="http://cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion/" /> +// somewhere in the head portion +const htmlOnionLocation = `<!DOCTYPE html> +<html lang=""><head> + <meta name="generator" content="Hugo 0.105.0"> + <meta charset="utf-8"> + <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> + + <title>rgdd.se</title> + <meta name="description" content="A simple monospaced resume theme for Hugo."> + <meta name="author" content='Rasmus Dahlberg'> + <meta http-equiv="onion-location" content="http://cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion/" /> + + <link rel="stylesheet" href="/cdnjs/bootstrap.min.css"> + <link rel="stylesheet" href="/cdnjs/all.min.css"> + <link rel="stylesheet" href="/fontawesome/all.css"> + + + <link rel="stylesheet" href="/sass/researcher.min.css"> + + + + <link rel="alternate" type="application/rss+xml" href="https://www.rgdd.se/index.xml" title="rgdd.se" /> + + + +</head> + + <body><div class="container mt-5"> + <nav class="navbar navbar-expand-sm flex-column flex-sm-row text-nowrap p-0"> + <a class="navbar-brand mx-0 mr-sm-auto" href="https://www.rgdd.se" title="rgdd.se"> + + rgdd.se + </a> + <div class="navbar-nav flex-row flex-wrap justify-content-center"> + + + + <a class="nav-item nav-link" href="/post" title="Blog"> + Blog + </a> + + + + </div> + </nav> +</div> +<hr> +<div id="content"> +<div class="container"> + <figure class="avatar"><img src="img/author.jpg" + alt="avatar"/> +</figure> + +<p>PhD student at <a href="https://www.kau.se/en/">Karlstad University</a>. Software engineer at <a href="https://www.glasklarteknik.se/">Glasklar Teknik</a>. +I am passionate about transparency logs, anonymity networks, and Linux. I have +a keen interest for the overlap between research, engineering, and operations. +Off-work I cook, walk, socialize, lift weights, and spoil my cat.</p> +<h1 id="project-involvement">Project involvement</h1> +<p>I am a core member of the following projects:</p> +<ul> +<li><a href="https://www.sigsum.org/">Sigsum</a>: a free and open source software project that makes a signer’s +key-usage transparent. It can be used as a building block to secure the +supply chain and more.</li> +<li><a href="https://www.system-transparency.org/">System Transparency</a>: an open source project that provides a security +architecture for bare metal servers. A system’s entire boot chain becomes +protected and auditable.</li> +<li><a href="https://www.torproject.org/">Tor</a>: a 501(c)(3) US nonprofit that advance human rights and defend online +privacy through free software and open networks.</li> +</ul> +<h1 id="selected-publications">Selected publications</h1> +<ul> +<li>Rasmus Dahlberg, Tobias Pulls. +<a href="https://www.usenix.org/conference/usenixsecurity23/presentation/dahlberg">Timeless Timing Attacks and Preload Defenses in Tor’s DNS Cache</a>. +USENIX Security (2023)</li> +<li>Rasmus Dahlberg, Tobias Pulls, Tom Ritter, and Paul Syverson. +<a href="https://petsymposium.org/2021/files/papers/issue2/popets-2021-0024.pdf">Privacy-Preserving & Incrementally-Deployable Support for Certificate Transparency in Tor</a>. +PETS (2021)</li> +<li>Tobias Pulls and Rasmus Dahlberg. +<a href="https://petsymposium.org/2020/files/papers/issue1/popets-2020-0013.pdf">Website Fingerprinting with Website Oracles</a>. +PETS (2020)</li> +<li>Rasmus Dahlberg, Tobias Pulls, Jonathan Vestin, Toke Høiland-Jørgensen, and Andreas Kassler. +<a href="https://arxiv.org/pdf/1806.08817.pdf">Aggregation-Based Certificate Transparency Gossip</a>. +SECUREWARE (2019)</li> +<li>Tobias Pulls and Rasmus Dahlberg. +<a href="https://eprint.iacr.org/2018/737.pdf">Steady: A Simple End-to-End Secure Logging System</a>. +NordSec (2018)</li> +</ul> +<h1 id="contact">Contact</h1> +<p>Feel free to reach out on email or other platforms as you see fit.</p> + +</div> + + </div><div id="footer" class="mb-5"> + <hr> + + <div class="container text-center"> + + <a href="https://www.instagram.com/__rgdd" class="fab fa-instagram fa-1x" title="Instagram"></a> + + <a href="https://mastodon.social/@rgdd" class="fab fa-mastodon fa-1x" title="Mastodon"></a> + + <a href="https://github.com/rgdd" class="fab fa-github fa-1x" title="GitHub"></a> + + <a href="https://gitlab.torproject.org/rgdd" class="fab fa-gitlab fa-1x" title="GitLab"></a> + + <a href="https://git.glasklar.is/rgdd" class="fab fa-gitlab fa-1x" title="GitLab"></a> + + <a href="mailto:rasmus@rgdd.se" class="fas fa-envelope fa-1x" title="E-mail"></a> + + </div> + + + <div class="container text-center"> + <a href="http://cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion" title="cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion"><small>cyigahm4clwlimo6mfl4yjie5fwfbhlbuag57xo3kimk6invht6ffrad.onion</small></a> + </div> + +</div> +</body> +</html>` |