storj/pkg/peertls/tlsopts/tls.go

// Copyright (C) 2019 Storj Labs, Inc.
// See LICENSE for copying information.

package tlsopts

import (
	"crypto/tls"
	"crypto/x509"
	"strings"

	"google.golang.org/grpc"
	"google.golang.org/grpc/credentials"

	"storj.io/storj/pkg/identity"
	"storj.io/storj/pkg/peertls"
	"storj.io/storj/pkg/storj"
)

// ServerOption returns a grpc `ServerOption` for incoming connections
// to the node with this full identity.
func (opts *Options) ServerOption() grpc.ServerOption {
	tlsConfig := opts.ServerTLSConfig()
	return grpc.Creds(credentials.NewTLS(tlsConfig))
}

// DialOption returns a grpc `DialOption` for making outgoing connections
// to the node with this peer identity.
func (opts *Options) DialOption(id storj.NodeID) (grpc.DialOption, error) {
	if id.IsZero() {
		return nil, Error.New("no ID specified for DialOption")
	}
	tlsConfig := opts.ClientTLSConfig(id)
	return grpc.WithTransportCredentials(credentials.NewTLS(tlsConfig)), nil
}

// DialUnverifiedIDOption returns a grpc `DialUnverifiedIDOption`
func (opts *Options) DialUnverifiedIDOption() grpc.DialOption {
	tlsConfig := opts.tlsConfig(false)
	return grpc.WithTransportCredentials(credentials.NewTLS(tlsConfig))
}

// ServerTLSConfig returns a TSLConfig for use as a server in handshaking with a peer.
func (opts *Options) ServerTLSConfig() *tls.Config {
	return opts.tlsConfig(true)
}

// ClientTLSConfig returns a TSLConfig for use as a client in handshaking with a peer.
func (opts *Options) ClientTLSConfig(id storj.NodeID) *tls.Config {
	return opts.tlsConfig(false, verifyIdentity(id))
}

// ClientTLSConfigPrefix returns a TSLConfig for use as a client in handshaking with a peer.
// The peer node id is validated to match the given prefix
func (opts *Options) ClientTLSConfigPrefix(idPrefix string) *tls.Config {
	return opts.tlsConfig(false, verifyIdentityPrefix(idPrefix))
}

// UnverifiedClientTLSConfig returns a TLSConfig for use as a client in handshaking with
// an unknown peer.
func (opts *Options) UnverifiedClientTLSConfig() *tls.Config {
	return opts.tlsConfig(false)
}

func (opts *Options) tlsConfig(isServer bool, verificationFuncs ...peertls.PeerCertVerificationFunc) *tls.Config {
	verificationFuncs = append(
		[]peertls.PeerCertVerificationFunc{
			peertls.VerifyPeerCertChains,
		},
		verificationFuncs...,
	)

	switch isServer {
	case true:
		verificationFuncs = append(
			verificationFuncs,
			opts.VerificationFuncs.server...,
		)
	case false:
		verificationFuncs = append(
			verificationFuncs,
			opts.VerificationFuncs.client...,
		)
	}

	config := &tls.Config{
		Certificates:       []tls.Certificate{*opts.Cert},
		InsecureSkipVerify: true,
		MinVersion:         tls.VersionTLS12,
		VerifyPeerCertificate: peertls.VerifyPeerFunc(
			verificationFuncs...,
		),
	}

	if isServer {
		config.ClientAuth = tls.RequireAnyClientCert
	}

	return config
}

func verifyIdentity(id storj.NodeID) peertls.PeerCertVerificationFunc {
	return func(_ [][]byte, parsedChains [][]*x509.Certificate) (err error) {
		defer mon.TaskNamed("verifyIdentity")(nil)(&err)
		peer, err := identity.PeerIdentityFromChain(parsedChains[0])
		if err != nil {
			return err
		}

		if peer.ID.String() != id.String() {
			return Error.New("peer ID did not match requested ID")
		}

		return nil
	}
}

func verifyIdentityPrefix(idPrefix string) peertls.PeerCertVerificationFunc {
	return func(_ [][]byte, parsedChains [][]*x509.Certificate) (err error) {
		defer mon.TaskNamed("verifyIdentityPrefix")(nil)(&err)
		peer, err := identity.PeerIdentityFromChain(parsedChains[0])
		if err != nil {
			return err
		}

		if !strings.HasPrefix(peer.ID.String(), idPrefix) {
			return Error.New("peer ID did not match requested ID prefix")
		}

		return nil
	}
}
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`// Copyright (C) 2019 Storj Labs, Inc.`
			`// See LICENSE for copying information.`

			`package tlsopts`

			`import (`
			`"crypto/tls"`
			`"crypto/x509"`
pkg/rpc: defeat MITM attacks in most cases (#3215) This change adds a trusted registry (via the source code) of node address to node id mappings (currently only for well known Satellites) to defeat MITM attacks to Satellites. It also extends the uplink UI such that when entering a satellite address by hand, a node id prefix can also be added to defeat MITM attacks with unknown satellites. When running uplink setup, satellite addresses can now be of the form 12EayRS2V1k@us-central-1.tardigrade.io (not even using a full node id) to ensure that the peer contacted is the peer that was expected. When using a known satellite address, the known node ids are used if no override is provided. 2019-10-12 21:34:41 +01:00			`"strings"`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00
			`"google.golang.org/grpc"`
			`"google.golang.org/grpc/credentials"`

			`"storj.io/storj/pkg/identity"`
			`"storj.io/storj/pkg/peertls"`
			`"storj.io/storj/pkg/storj"`
			`)`

			// ServerOption returns a grpc `ServerOption` for incoming connections
dial node/address with bad server cert (#1342) 2019-02-26 18:35:16 +00:00			`// to the node with this full identity.`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`func (opts *Options) ServerOption() grpc.ServerOption {`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`tlsConfig := opts.ServerTLSConfig()`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`return grpc.Creds(credentials.NewTLS(tlsConfig))`
			`}`

			// DialOption returns a grpc `DialOption` for making outgoing connections
dial node/address with bad server cert (#1342) 2019-02-26 18:35:16 +00:00			`// to the node with this peer identity.`
[V3-1320] fix empty node ID verification non-error (#1395) * small identity refactor: + Optimize? iterative cert chain methods to use array instead of slice + Add `ToChain` helper for converting 1d to 2d cert chain TODO: replace literal declarations with this + rename `ChainRaw/RestChainRaw` to `RawChain/RawRestChain` (adjective noun, instead of nound adjective) * add regression tests for V3-1320 * fix V3-1320 * separate `DialUnverifiedIDOption` from `DialOption` * separate `PingNode` and `DialNode` from `PingAddress` and `DialAddress` * update node ID while bootstrapping * goimports & fix comment * add test case 2019-03-04 20:03:33 +00:00			`func (opts *Options) DialOption(id storj.NodeID) (grpc.DialOption, error) {`
			`if id.IsZero() {`
			`return nil, Error.New("no ID specified for DialOption")`
			`}`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`tlsConfig := opts.ClientTLSConfig(id)`
			`return grpc.WithTransportCredentials(credentials.NewTLS(tlsConfig)), nil`
[V3-1320] fix empty node ID verification non-error (#1395) * small identity refactor: + Optimize? iterative cert chain methods to use array instead of slice + Add `ToChain` helper for converting 1d to 2d cert chain TODO: replace literal declarations with this + rename `ChainRaw/RestChainRaw` to `RawChain/RawRestChain` (adjective noun, instead of nound adjective) * add regression tests for V3-1320 * fix V3-1320 * separate `DialUnverifiedIDOption` from `DialOption` * separate `PingNode` and `DialNode` from `PingAddress` and `DialAddress` * update node ID while bootstrapping * goimports & fix comment * add test case 2019-03-04 20:03:33 +00:00			`}`

			// DialUnverifiedIDOption returns a grpc `DialUnverifiedIDOption`
			`func (opts *Options) DialUnverifiedIDOption() grpc.DialOption {`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`tlsConfig := opts.tlsConfig(false)`
			`return grpc.WithTransportCredentials(credentials.NewTLS(tlsConfig))`
			`}`

			`// ServerTLSConfig returns a TSLConfig for use as a server in handshaking with a peer.`
			`func (opts Options) ServerTLSConfig() tls.Config {`
			`return opts.tlsConfig(true)`
dial node/address with bad server cert (#1342) 2019-02-26 18:35:16 +00:00			`}`

tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`// ClientTLSConfig returns a TSLConfig for use as a client in handshaking with a peer.`
			`func (opts Options) ClientTLSConfig(id storj.NodeID) tls.Config {`
			`return opts.tlsConfig(false, verifyIdentity(id))`
dial node/address with bad server cert (#1342) 2019-02-26 18:35:16 +00:00			`}`

pkg/rpc: defeat MITM attacks in most cases (#3215) This change adds a trusted registry (via the source code) of node address to node id mappings (currently only for well known Satellites) to defeat MITM attacks to Satellites. It also extends the uplink UI such that when entering a satellite address by hand, a node id prefix can also be added to defeat MITM attacks with unknown satellites. When running uplink setup, satellite addresses can now be of the form 12EayRS2V1k@us-central-1.tardigrade.io (not even using a full node id) to ensure that the peer contacted is the peer that was expected. When using a known satellite address, the known node ids are used if no override is provided. 2019-10-12 21:34:41 +01:00			`// ClientTLSConfigPrefix returns a TSLConfig for use as a client in handshaking with a peer.`
			`// The peer node id is validated to match the given prefix`
			`func (opts Options) ClientTLSConfigPrefix(idPrefix string) tls.Config {`
			`return opts.tlsConfig(false, verifyIdentityPrefix(idPrefix))`
			`}`

pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`// UnverifiedClientTLSConfig returns a TLSConfig for use as a client in handshaking with`
			`// an unknown peer.`
			`func (opts Options) UnverifiedClientTLSConfig() tls.Config {`
			`return opts.tlsConfig(false)`
			`}`

tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`func (opts Options) tlsConfig(isServer bool, verificationFuncs ...peertls.PeerCertVerificationFunc) tls.Config {`
			`verificationFuncs = append(`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`[]peertls.PeerCertVerificationFunc{`
			`peertls.VerifyPeerCertChains,`
			`},`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`verificationFuncs...,`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`)`
[V3-1147] Ensure certificate validation happens properly (#1403) * add regression test & update transport tests * separate client and server verificiation functions * goimports 2019-03-06 14:42:34 +00:00
			`switch isServer {`
			`case true:`
			`verificationFuncs = append(`
			`verificationFuncs,`
			`opts.VerificationFuncs.server...,`
			`)`
			`case false:`
			`verificationFuncs = append(`
			`verificationFuncs,`
			`opts.VerificationFuncs.client...,`
			`)`
			`}`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00
			`config := &tls.Config{`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`Certificates: []tls.Certificate{*opts.Cert},`
			`InsecureSkipVerify: true,`
all: use min tls 1.2 for grpc (#2967) 2019-09-09 21:09:01 +01:00			`MinVersion: tls.VersionTLS12,`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`VerifyPeerCertificate: peertls.VerifyPeerFunc(`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00			`verificationFuncs...,`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`),`
			`}`
tlsconfig refactor / cleanup (#1399) 2019-03-04 20:40:18 +00:00
			`if isServer {`
			`config.ClientAuth = tls.RequireAnyClientCert`
			`}`

			`return config`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`}`

			`func verifyIdentity(id storj.NodeID) peertls.PeerCertVerificationFunc {`
			`return func(_ [][]byte, parsedChains [][]*x509.Certificate) (err error) {`
			`defer mon.TaskNamed("verifyIdentity")(nil)(&err)`
Identity versioning (#1389) 2019-04-08 19:15:19 +01:00			`peer, err := identity.PeerIdentityFromChain(parsedChains[0])`
pkg/transport: require tls configuration for dialing (#1286) * separate TLS options from server options (because we need them for dialing too) * stop creating transports in multiple places * ensure that we actually check revocation, whitelists, certificate signing, etc, for all connections. 2019-02-11 11:17:32 +00:00			`if err != nil {`
			`return err`
			`}`

			`if peer.ID.String() != id.String() {`
			`return Error.New("peer ID did not match requested ID")`
			`}`

			`return nil`
			`}`
			`}`
pkg/rpc: defeat MITM attacks in most cases (#3215) This change adds a trusted registry (via the source code) of node address to node id mappings (currently only for well known Satellites) to defeat MITM attacks to Satellites. It also extends the uplink UI such that when entering a satellite address by hand, a node id prefix can also be added to defeat MITM attacks with unknown satellites. When running uplink setup, satellite addresses can now be of the form 12EayRS2V1k@us-central-1.tardigrade.io (not even using a full node id) to ensure that the peer contacted is the peer that was expected. When using a known satellite address, the known node ids are used if no override is provided. 2019-10-12 21:34:41 +01:00
			`func verifyIdentityPrefix(idPrefix string) peertls.PeerCertVerificationFunc {`
			`return func(_ [][]byte, parsedChains [][]*x509.Certificate) (err error) {`
			`defer mon.TaskNamed("verifyIdentityPrefix")(nil)(&err)`
			`peer, err := identity.PeerIdentityFromChain(parsedChains[0])`
			`if err != nil {`
			`return err`
			`}`

			`if !strings.HasPrefix(peer.ID.String(), idPrefix) {`
			`return Error.New("peer ID did not match requested ID prefix")`
			`}`

			`return nil`
			`}`
			`}`