evo: allow ExtNetInfo to accept DomainPort if PLATFORM_HTTPS

Author: kwvg

src/evo/netinfo.cpp

@@ -25,14 +25,46 @@ static constexpr uint8_t DOMAIN_MAX_LEN{253};
 /** Minimum length of a FQDN */
 static constexpr uint8_t DOMAIN_MIN_LEN{3};
 
+static constexpr std::string_view SAFE_CHARS_ALPHA{"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"};
 static constexpr std::string_view SAFE_CHARS_IPV4{"1234567890."};
 static constexpr std::string_view SAFE_CHARS_IPV4_6{"abcdefABCDEF1234567890.:[]"};
 static constexpr std::string_view SAFE_CHARS_RFC1035{"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-"};
+static constexpr std::array<std::string_view, 13> TLDS_BAD{
+    // ICANN resolution 2018.02.04.12
+    ".mail",
+    // Infrastructure TLD
+    ".arpa",
+    // RFC 6761
+    ".example", ".invalid", ".localhost", ".test",
+    // RFC 6762
+    ".local",
+    // RFC 6762, Appendix G
+    ".corp", ".home", ".internal", ".intranet", ".lan", ".private",
+};
 
 bool MatchCharsFilter(std::string_view input, std::string_view filter)
 {
     return std::all_of(input.begin(), input.end(), [&filter](char c) { return filter.find(c) != std::string_view::npos; });
 }
+
+bool MatchSuffix(const std::string& str, Span<const std::string_view> list)
+{
+    if (str.empty()) return false;
+    for (const auto& suffix : list) {
+        if (suffix.size() > str.size()) continue;
+        if (std::string_view{str}.ends_with(suffix)) return true;
+    }
+    return false;
+}
+
+bool IsAllowedPlatformHTTPPort(uint16_t port)
+{
+    switch (port) {
+    case 443:
+        return true;
+    }
+    return false;
+}
 } // anonymous namespace
 
 bool IsNodeOnMainnet() { return Params().NetworkIDString() == CBaseChainParams::MAIN; }
@@ -387,6 +419,10 @@ NetInfoStatus ExtNetInfo::ProcessCandidate(const NetInfoPurpose purpose, const N
     if (IsAddrPortDuplicate(candidate)) {
         return NetInfoStatus::Duplicate;
     }
+    if (candidate.GetDomainPort().has_value() && purpose != NetInfoPurpose::PLATFORM_HTTPS) {
+        // Domains only allowed for Platform HTTPS API
+        return NetInfoStatus::BadInput;
+    }
     if (auto it{m_data.find(purpose)}; it != m_data.end()) {
         // Existing entries list found, check limit
         auto& [_, entries] = *it;
@@ -426,6 +462,26 @@ NetInfoStatus ExtNetInfo::ValidateService(const CService& service)
     return NetInfoStatus::Success;
 }
 
+NetInfoStatus ExtNetInfo::ValidateDomainPort(const DomainPort& domain)
+{
+    if (!domain.IsValid()) {
+        return NetInfoStatus::BadInput;
+    }
+    const uint16_t domain_port{domain.GetPort()};
+    if (domain_port == 0 || (IsBadPort(domain_port) && !IsAllowedPlatformHTTPPort(domain_port))) {
+        return NetInfoStatus::BadPort;
+    }
+    const std::string& addr{domain.ToStringAddr()};
+    if (MatchSuffix(addr, TLDS_BAD)) {
+        return NetInfoStatus::BadInput;
+    }
+    if (const auto labels{SplitString(addr, '.')}; !MatchCharsFilter(labels.at(labels.size() - 1), SAFE_CHARS_ALPHA)) {
+        return NetInfoStatus::BadInput;
+    }
+
+    return NetInfoStatus::Success;
+}
+
 NetInfoStatus ExtNetInfo::AddEntry(const NetInfoPurpose purpose, const std::string& input)
 {
     if (!IsValidPurpose(purpose)) {
@@ -437,11 +493,25 @@ NetInfoStatus ExtNetInfo::AddEntry(const NetInfoPurpose purpose, const std::stri
     std::string addr;
     uint16_t port{0};
     SplitHostPort(input, port, addr);
-    // Contains invalid characters, unlikely to pass Lookup(), fast-fail
+
     if (!MatchCharsFilter(addr, SAFE_CHARS_IPV4_6)) {
-        return NetInfoStatus::BadInput;
+        if (!MatchCharsFilter(addr, SAFE_CHARS_RFC1035)) {
+            // Neither IP:port safe nor domain-safe, we can safely assume it's bad input
+            return NetInfoStatus::BadInput;
+        }
+
+        // Not IP:port safe but domain safe, treat as domain.
+        if (DomainPort domain; domain.Set(addr, port) == DomainPort::Status::Success) {
+            const auto ret{ValidateDomainPort(domain)};
+            if (ret == NetInfoStatus::Success) {
+                return ProcessCandidate(purpose, NetInfoEntry{domain});
+            }
+            return ret; /* ValidateDomainPort() failed */
+        }
+        return NetInfoStatus::BadInput; /* DomainPort::Set() failed */
     }
 
+    // IP:port safe, try to parse it as IP:port
     if (auto service_opt{Lookup(addr, /*portDefault=*/port, /*fAllowLookup=*/false)}) {
         const auto ret{ValidateService(*service_opt)};
         if (ret == NetInfoStatus::Success) {
@@ -516,6 +586,15 @@ NetInfoStatus ExtNetInfo::Validate() const
                     // Stores CService underneath but doesn't pass validation rules
                     return ret;
                 }
+            } else if (const auto domain_opt{entry.GetDomainPort()}) {
+                if (purpose != NetInfoPurpose::PLATFORM_HTTPS) {
+                    // Domains only allowed for Platform HTTPS API
+                    return NetInfoStatus::BadInput;
+                }
+                if (auto ret{ValidateDomainPort(*domain_opt)}; ret != NetInfoStatus::Success) {
+                    // Stores DomainPort underneath but doesn't pass validation rules
+                    return ret;
+                }
             } else {
                 // Doesn't store valid type underneath
                 return NetInfoStatus::Malformed;

src/evo/netinfo.h

@@ -384,6 +384,7 @@ class ExtNetInfo final : public NetInfoInterface
 
     /** Validate CService candidate address against ruleset */
     static NetInfoStatus ValidateService(const CService& service);
+    static NetInfoStatus ValidateDomainPort(const DomainPort& domain);
 
 private:
     uint8_t m_version{CURRENT_VERSION};

src/test/evo_netinfo_tests.cpp

@@ -40,8 +40,12 @@ static const std::vector<TestEntry> addr_vals_main{
     // - Non-IPv4 addresses are prohibited in MnNetInfo
     // - Any valid BIP155 address is allowed in ExtNetInfo
     {{NetInfoPurpose::CORE_P2P, "[2606:4700:4700::1111]:9999"}, NetInfoStatus::BadInput, NetInfoStatus::Success},
-    // Domains are not allowed
+    // Domains are not allowed for Core P2P or Platform P2P
     {{NetInfoPurpose::CORE_P2P, "example.com:9999"}, NetInfoStatus::BadInput, NetInfoStatus::BadInput},
+    {{NetInfoPurpose::PLATFORM_P2P, "example.com:9999"}, NetInfoStatus::MaxLimit, NetInfoStatus::BadInput},
+    // - MnNetInfo doesn't allow storing anything except a Core P2P address
+    // - ExtNetInfo can store Platform HTTPS addresses *as domains*
+    {{NetInfoPurpose::PLATFORM_HTTPS, "example.com:9999"}, NetInfoStatus::MaxLimit, NetInfoStatus::Success},
     // Incorrect IPv4 address
     {{NetInfoPurpose::CORE_P2P, "1.1.1.256:9999"}, NetInfoStatus::BadInput, NetInfoStatus::BadInput},
     // Missing address
@@ -182,6 +186,21 @@ BOOST_FIXTURE_TEST_CASE(extnetinfo_rules_reg, RegTestingSetup)
         BOOST_CHECK(!netInfo.HasEntries(NetInfoPurpose::PLATFORM_HTTPS));
         ValidateGetEntries(netInfo.GetEntries(), /*expected_size=*/2);
     }
+
+    {
+        // ExtNetInfo has additional rules for domains
+        const std::vector<TestEntry> domain_vals{
+            // Port 80 (HTTP) is below the privileged ports threshold (1023), not allowed
+            {{NetInfoPurpose::PLATFORM_HTTPS, "example.com:80"}, NetInfoStatus::MaxLimit, NetInfoStatus::BadPort},
+            // Port 443 (HTTPS) is below the privileged ports threshold (1023) but still allowed
+            {{NetInfoPurpose::PLATFORM_HTTPS, "example.com:443"}, NetInfoStatus::MaxLimit, NetInfoStatus::Success},
+            // TLDs must be alphabetic to avoid ambiguation with IP addresses (per ICANN guidelines)
+            {{NetInfoPurpose::PLATFORM_HTTPS, "example.123:443"}, NetInfoStatus::MaxLimit, NetInfoStatus::BadInput},
+            // .local is a prohibited TLD
+            {{NetInfoPurpose::PLATFORM_HTTPS, "somebodys-macbook-pro.local:9998"}, NetInfoStatus::MaxLimit, NetInfoStatus::BadInput},
+        };
+        TestExtNetInfo(domain_vals);
+    }
 }
 
 BOOST_AUTO_TEST_CASE(netinfo_ser)
@@ -399,11 +418,15 @@ BOOST_AUTO_TEST_CASE(domainport_rules)
 
     for (const auto& [addr, retval] : domain_vals) {
         DomainPort domain;
-        BOOST_CHECK_EQUAL(domain.Set(addr, 9999), retval);
+        ExtNetInfo netInfo;
+        BOOST_CHECK_EQUAL(domain.Set(addr, 443), retval);
         if (retval != DomainPort::Status::Success) {
             BOOST_CHECK_EQUAL(domain.Validate(), DomainPort::Status::Malformed); // Empty values report as Malformed
+            BOOST_CHECK_EQUAL(netInfo.AddEntry(NetInfoPurpose::PLATFORM_HTTPS, domain.ToStringAddrPort()),
+                              NetInfoStatus::BadInput);
         } else {
             BOOST_CHECK_EQUAL(domain.Validate(), DomainPort::Status::Success);
+            BOOST_CHECK_EQUAL(netInfo.AddEntry(NetInfoPurpose::PLATFORM_HTTPS, domain.ToStringAddrPort()), NetInfoStatus::Success);
         }
     }