/Users/eugenesiegel/btc/bitcoin/src/rpc/request.cpp
Line | Count | Source (jump to first uncovered line) |
1 | | // Copyright (c) 2010 Satoshi Nakamoto |
2 | | // Copyright (c) 2009-2022 The Bitcoin Core developers |
3 | | // Distributed under the MIT software license, see the accompanying |
4 | | // file COPYING or http://www.opensource.org/licenses/mit-license.php. |
5 | | |
6 | | #include <rpc/request.h> |
7 | | |
8 | | #include <common/args.h> |
9 | | #include <logging.h> |
10 | | #include <random.h> |
11 | | #include <rpc/protocol.h> |
12 | | #include <util/fs.h> |
13 | | #include <util/fs_helpers.h> |
14 | | #include <util/strencodings.h> |
15 | | |
16 | | #include <fstream> |
17 | | #include <stdexcept> |
18 | | #include <string> |
19 | | #include <vector> |
20 | | |
21 | | /** |
22 | | * JSON-RPC protocol. Bitcoin speaks version 1.0 for maximum compatibility, |
23 | | * but uses JSON-RPC 1.1/2.0 standards for parts of the 1.0 standard that were |
24 | | * unspecified (HTTP errors and contents of 'error'). |
25 | | * |
26 | | * 1.0 spec: https://www.jsonrpc.org/specification_v1 |
27 | | * 1.2 spec: https://jsonrpc.org/historical/json-rpc-over-http.html |
28 | | * |
29 | | * If the server receives a request with the JSON-RPC 2.0 marker `{"jsonrpc": "2.0"}` |
30 | | * then Bitcoin will respond with a strictly specified response. |
31 | | * It will only return an HTTP error code if an actual HTTP error is encountered |
32 | | * such as the endpoint is not found (404) or the request is not formatted correctly (500). |
33 | | * Otherwise the HTTP code is always OK (200) and RPC errors will be included in the |
34 | | * response body. |
35 | | * |
36 | | * 2.0 spec: https://www.jsonrpc.org/specification |
37 | | * |
38 | | * Also see https://www.simple-is-better.org/rpc/#differences-between-1-0-and-2-0 |
39 | | */ |
40 | | |
41 | | UniValue JSONRPCRequestObj(const std::string& strMethod, const UniValue& params, const UniValue& id) |
42 | 0 | { |
43 | 0 | UniValue request(UniValue::VOBJ); |
44 | 0 | request.pushKV("method", strMethod); |
45 | 0 | request.pushKV("params", params); |
46 | 0 | request.pushKV("id", id); |
47 | 0 | request.pushKV("jsonrpc", "2.0"); |
48 | 0 | return request; |
49 | 0 | } |
50 | | |
51 | | UniValue JSONRPCReplyObj(UniValue result, UniValue error, std::optional<UniValue> id, JSONRPCVersion jsonrpc_version) |
52 | 0 | { |
53 | 0 | UniValue reply(UniValue::VOBJ); |
54 | | // Add JSON-RPC version number field in v2 only. |
55 | 0 | if (jsonrpc_version == JSONRPCVersion::V2) reply.pushKV("jsonrpc", "2.0"); |
56 | | |
57 | | // Add both result and error fields in v1, even though one will be null. |
58 | | // Omit the null field in v2. |
59 | 0 | if (error.isNull()) { |
60 | 0 | reply.pushKV("result", std::move(result)); |
61 | 0 | if (jsonrpc_version == JSONRPCVersion::V1_LEGACY) reply.pushKV("error", NullUniValue); |
62 | 0 | } else { |
63 | 0 | if (jsonrpc_version == JSONRPCVersion::V1_LEGACY) reply.pushKV("result", NullUniValue); |
64 | 0 | reply.pushKV("error", std::move(error)); |
65 | 0 | } |
66 | 0 | if (id.has_value()) reply.pushKV("id", std::move(id.value())); |
67 | 0 | return reply; |
68 | 0 | } |
69 | | |
70 | | UniValue JSONRPCError(int code, const std::string& message) |
71 | 0 | { |
72 | 0 | UniValue error(UniValue::VOBJ); |
73 | 0 | error.pushKV("code", code); |
74 | 0 | error.pushKV("message", message); |
75 | 0 | return error; |
76 | 0 | } |
77 | | |
78 | | /** Username used when cookie authentication is in use (arbitrary, only for |
79 | | * recognizability in debugging/logging purposes) |
80 | | */ |
81 | | static const std::string COOKIEAUTH_USER = "__cookie__"; |
82 | | /** Default name for auth cookie file */ |
83 | | static const char* const COOKIEAUTH_FILE = ".cookie"; |
84 | | |
85 | | /** Get name of RPC authentication cookie file */ |
86 | | static fs::path GetAuthCookieFile(bool temp=false) |
87 | 0 | { |
88 | 0 | fs::path arg = gArgs.GetPathArg("-rpccookiefile", COOKIEAUTH_FILE); |
89 | 0 | if (arg.empty()) { |
90 | 0 | return {}; // -norpccookiefile was specified |
91 | 0 | } |
92 | 0 | if (temp) { |
93 | 0 | arg += ".tmp"; |
94 | 0 | } |
95 | 0 | return AbsPathForConfigVal(gArgs, arg); |
96 | 0 | } |
97 | | |
98 | | static bool g_generated_cookie = false; |
99 | | |
100 | | GenerateAuthCookieResult GenerateAuthCookie(const std::optional<fs::perms>& cookie_perms, |
101 | | std::string& user, |
102 | | std::string& pass) |
103 | 0 | { |
104 | 0 | const size_t COOKIE_SIZE = 32; |
105 | 0 | unsigned char rand_pwd[COOKIE_SIZE]; |
106 | 0 | GetRandBytes(rand_pwd); |
107 | 0 | const std::string rand_pwd_hex{HexStr(rand_pwd)}; |
108 | | |
109 | | /** the umask determines what permissions are used to create this file - |
110 | | * these are set to 0077 in common/system.cpp. |
111 | | */ |
112 | 0 | std::ofstream file; |
113 | 0 | fs::path filepath_tmp = GetAuthCookieFile(true); |
114 | 0 | if (filepath_tmp.empty()) { |
115 | 0 | return GenerateAuthCookieResult::DISABLED; // -norpccookiefile |
116 | 0 | } |
117 | 0 | file.open(filepath_tmp); |
118 | 0 | if (!file.is_open()) { |
119 | 0 | LogWarning("Unable to open cookie authentication file %s for writing", fs::PathToString(filepath_tmp));Line | Count | Source | 357 | 0 | #define LogWarning(...) LogPrintLevel_(BCLog::LogFlags::ALL, BCLog::Level::Warning, /*should_ratelimit=*/true, __VA_ARGS__) Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
|
|
120 | 0 | return GenerateAuthCookieResult::ERR; |
121 | 0 | } |
122 | 0 | file << COOKIEAUTH_USER << ":" << rand_pwd_hex; |
123 | 0 | file.close(); |
124 | |
|
125 | 0 | fs::path filepath = GetAuthCookieFile(false); |
126 | 0 | if (!RenameOver(filepath_tmp, filepath)) { |
127 | 0 | LogWarning("Unable to rename cookie authentication file %s to %s", fs::PathToString(filepath_tmp), fs::PathToString(filepath));Line | Count | Source | 357 | 0 | #define LogWarning(...) LogPrintLevel_(BCLog::LogFlags::ALL, BCLog::Level::Warning, /*should_ratelimit=*/true, __VA_ARGS__) Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
|
|
128 | 0 | return GenerateAuthCookieResult::ERR; |
129 | 0 | } |
130 | 0 | if (cookie_perms) { |
131 | 0 | std::error_code code; |
132 | 0 | fs::permissions(filepath, cookie_perms.value(), fs::perm_options::replace, code); |
133 | 0 | if (code) { |
134 | 0 | LogWarning("Unable to set permissions on cookie authentication file %s", fs::PathToString(filepath));Line | Count | Source | 357 | 0 | #define LogWarning(...) LogPrintLevel_(BCLog::LogFlags::ALL, BCLog::Level::Warning, /*should_ratelimit=*/true, __VA_ARGS__) Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
|
|
135 | 0 | return GenerateAuthCookieResult::ERR; |
136 | 0 | } |
137 | 0 | } |
138 | | |
139 | 0 | g_generated_cookie = true; |
140 | 0 | LogInfo("Generated RPC authentication cookie %s\n", fs::PathToString(filepath));Line | Count | Source | 356 | 0 | #define LogInfo(...) LogPrintLevel_(BCLog::LogFlags::ALL, BCLog::Level::Info, /*should_ratelimit=*/true, __VA_ARGS__) Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
|
|
141 | 0 | LogInfo("Permissions used for cookie: %s\n", PermsToSymbolicString(fs::status(filepath).permissions()));Line | Count | Source | 356 | 0 | #define LogInfo(...) LogPrintLevel_(BCLog::LogFlags::ALL, BCLog::Level::Info, /*should_ratelimit=*/true, __VA_ARGS__) Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
|
|
142 | |
|
143 | 0 | user = COOKIEAUTH_USER; |
144 | 0 | pass = rand_pwd_hex; |
145 | 0 | return GenerateAuthCookieResult::OK; |
146 | 0 | } |
147 | | |
148 | | bool GetAuthCookie(std::string *cookie_out) |
149 | 0 | { |
150 | 0 | std::ifstream file; |
151 | 0 | std::string cookie; |
152 | 0 | fs::path filepath = GetAuthCookieFile(); |
153 | 0 | if (filepath.empty()) { |
154 | 0 | return true; // -norpccookiefile |
155 | 0 | } |
156 | 0 | file.open(filepath); |
157 | 0 | if (!file.is_open()) |
158 | 0 | return false; |
159 | 0 | std::getline(file, cookie); |
160 | 0 | file.close(); |
161 | |
|
162 | 0 | if (cookie_out) |
163 | 0 | *cookie_out = cookie; |
164 | 0 | return true; |
165 | 0 | } |
166 | | |
167 | | void DeleteAuthCookie() |
168 | 0 | { |
169 | 0 | try { |
170 | 0 | if (g_generated_cookie) { |
171 | | // Delete the cookie file if it was generated by this process |
172 | 0 | fs::remove(GetAuthCookieFile()); |
173 | 0 | } |
174 | 0 | } catch (const fs::filesystem_error& e) { |
175 | 0 | LogWarning("Unable to remove random auth cookie file %s: %s\n", fs::PathToString(e.path1()), e.code().message());Line | Count | Source | 357 | 0 | #define LogWarning(...) LogPrintLevel_(BCLog::LogFlags::ALL, BCLog::Level::Warning, /*should_ratelimit=*/true, __VA_ARGS__) Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
|
|
176 | 0 | } |
177 | 0 | } |
178 | | |
179 | | std::vector<UniValue> JSONRPCProcessBatchReply(const UniValue& in) |
180 | 0 | { |
181 | 0 | if (!in.isArray()) { |
182 | 0 | throw std::runtime_error("Batch must be an array"); |
183 | 0 | } |
184 | 0 | const size_t num {in.size()}; |
185 | 0 | std::vector<UniValue> batch(num); |
186 | 0 | for (const UniValue& rec : in.getValues()) { |
187 | 0 | if (!rec.isObject()) { |
188 | 0 | throw std::runtime_error("Batch member must be an object"); |
189 | 0 | } |
190 | 0 | size_t id = rec["id"].getInt<int>(); |
191 | 0 | if (id >= num) { |
192 | 0 | throw std::runtime_error("Batch member id is larger than batch size"); |
193 | 0 | } |
194 | 0 | batch[id] = rec; |
195 | 0 | } |
196 | 0 | return batch; |
197 | 0 | } |
198 | | |
199 | | void JSONRPCRequest::parse(const UniValue& valRequest) |
200 | 0 | { |
201 | | // Parse request |
202 | 0 | if (!valRequest.isObject()) |
203 | 0 | throw JSONRPCError(RPC_INVALID_REQUEST, "Invalid Request object"); |
204 | 0 | const UniValue& request = valRequest.get_obj(); |
205 | | |
206 | | // Parse id now so errors from here on will have the id |
207 | 0 | if (request.exists("id")) { |
208 | 0 | id = request.find_value("id"); |
209 | 0 | } else { |
210 | 0 | id = std::nullopt; |
211 | 0 | } |
212 | | |
213 | | // Check for JSON-RPC 2.0 (default 1.1) |
214 | 0 | m_json_version = JSONRPCVersion::V1_LEGACY; |
215 | 0 | const UniValue& jsonrpc_version = request.find_value("jsonrpc"); |
216 | 0 | if (!jsonrpc_version.isNull()) { |
217 | 0 | if (!jsonrpc_version.isStr()) { |
218 | 0 | throw JSONRPCError(RPC_INVALID_REQUEST, "jsonrpc field must be a string"); |
219 | 0 | } |
220 | | // The "jsonrpc" key was added in the 2.0 spec, but some older documentation |
221 | | // incorrectly included {"jsonrpc":"1.0"} in a request object, so we |
222 | | // maintain that for backwards compatibility. |
223 | 0 | if (jsonrpc_version.get_str() == "1.0") { |
224 | 0 | m_json_version = JSONRPCVersion::V1_LEGACY; |
225 | 0 | } else if (jsonrpc_version.get_str() == "2.0") { |
226 | 0 | m_json_version = JSONRPCVersion::V2; |
227 | 0 | } else { |
228 | 0 | throw JSONRPCError(RPC_INVALID_REQUEST, "JSON-RPC version not supported"); |
229 | 0 | } |
230 | 0 | } |
231 | | |
232 | | // Parse method |
233 | 0 | const UniValue& valMethod{request.find_value("method")}; |
234 | 0 | if (valMethod.isNull()) |
235 | 0 | throw JSONRPCError(RPC_INVALID_REQUEST, "Missing method"); |
236 | 0 | if (!valMethod.isStr()) |
237 | 0 | throw JSONRPCError(RPC_INVALID_REQUEST, "Method must be a string"); |
238 | 0 | strMethod = valMethod.get_str(); |
239 | 0 | if (fLogIPs) |
240 | 0 | LogDebug(BCLog::RPC, "ThreadRPCServer method=%s user=%s peeraddr=%s\n", SanitizeString(strMethod), Line | Count | Source | 381 | 0 | #define LogDebug(category, ...) LogPrintLevel(category, BCLog::Level::Debug, __VA_ARGS__) Line | Count | Source | 373 | 0 | do { \ | 374 | 0 | if (LogAcceptCategory((category), (level))) { \ | 375 | 0 | bool rate_limit{level >= BCLog::Level::Info}; \ | 376 | 0 | LogPrintLevel_(category, level, rate_limit, __VA_ARGS__); \ Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
| 377 | 0 | } \ | 378 | 0 | } while (0) |
|
|
241 | 0 | this->authUser, this->peerAddr); |
242 | 0 | else |
243 | 0 | LogDebug(BCLog::RPC, "ThreadRPCServer method=%s user=%s\n", SanitizeString(strMethod), this->authUser); Line | Count | Source | 381 | 0 | #define LogDebug(category, ...) LogPrintLevel(category, BCLog::Level::Debug, __VA_ARGS__) Line | Count | Source | 373 | 0 | do { \ | 374 | 0 | if (LogAcceptCategory((category), (level))) { \ | 375 | 0 | bool rate_limit{level >= BCLog::Level::Info}; \ | 376 | 0 | LogPrintLevel_(category, level, rate_limit, __VA_ARGS__); \ Line | Count | Source | 350 | 0 | #define LogPrintLevel_(category, level, should_ratelimit, ...) LogPrintFormatInternal(std::source_location::current(), category, level, should_ratelimit, __VA_ARGS__) |
| 377 | 0 | } \ | 378 | 0 | } while (0) |
|
|
244 | | |
245 | | // Parse params |
246 | 0 | const UniValue& valParams{request.find_value("params")}; |
247 | 0 | if (valParams.isArray() || valParams.isObject()) |
248 | 0 | params = valParams; |
249 | 0 | else if (valParams.isNull()) |
250 | 0 | params = UniValue(UniValue::VARR); |
251 | 0 | else |
252 | 0 | throw JSONRPCError(RPC_INVALID_REQUEST, "Params must be an array or object"); |
253 | 0 | } |