tor+server: add OnionStore to AddOnionConfig with file-based impl

In this commit, we modify the AddOnionConfig struct to include an
abstract OnionStore, which will be responsible for storing all relevant
information of an onion service. We also add a file-based implementation
of the interface to maintain the same behavior of storing an onion
service's private key in a file.
This commit is contained in:
Wilmer Paulino 2020-03-06 16:26:51 -08:00
parent 46f4da0b6b
commit 2dfd6a7a3e
No known key found for this signature in database
GPG Key ID: 6DF57B9F9514972F
3 changed files with 145 additions and 26 deletions

@ -1967,7 +1967,7 @@ func (s *server) initTorController() error {
onionCfg := tor.AddOnionConfig{ onionCfg := tor.AddOnionConfig{
VirtualPort: defaultPeerPort, VirtualPort: defaultPeerPort,
TargetPorts: listenPorts, TargetPorts: listenPorts,
PrivateKeyPath: cfg.Tor.PrivateKeyPath, Store: tor.NewOnionFile(cfg.Tor.PrivateKeyPath, 0600),
} }
switch { switch {

@ -7,6 +7,12 @@ import (
"os" "os"
) )
var (
// ErrNoPrivateKey is an error returned by the OnionStore.PrivateKey
// method when a private key hasn't yet been stored.
ErrNoPrivateKey = errors.New("private key not found")
)
// OnionType denotes the type of the onion service. // OnionType denotes the type of the onion service.
type OnionType int type OnionType int
@ -18,6 +24,60 @@ const (
V3 V3
) )
// OnionStore is a store containing information about a particular onion
// service.
type OnionStore interface {
// StorePrivateKey stores the private key according to the
// implementation of the OnionStore interface.
StorePrivateKey(OnionType, []byte) error
// PrivateKey retrieves a stored private key. If it is not found, then
// ErrNoPrivateKey should be returned.
PrivateKey(OnionType) ([]byte, error)
// DeletePrivateKey securely removes the private key from the store.
DeletePrivateKey(OnionType) error
}
// OnionFile is a file-based implementation of the OnionStore interface that
// stores an onion service's private key.
type OnionFile struct {
privateKeyPath string
privateKeyPerm os.FileMode
}
// A compile-time constraint to ensure OnionFile satisfies the OnionStore
// interface.
var _ OnionStore = (*OnionFile)(nil)
// NewOnionFile creates a file-based implementation of the OnionStore interface
// to store an onion service's private key.
func NewOnionFile(privateKeyPath string, privateKeyPerm os.FileMode) *OnionFile {
return &OnionFile{
privateKeyPath: privateKeyPath,
privateKeyPerm: privateKeyPerm,
}
}
// StorePrivateKey stores the private key at its expected path.
func (f *OnionFile) StorePrivateKey(_ OnionType, privateKey []byte) error {
return ioutil.WriteFile(f.privateKeyPath, privateKey, f.privateKeyPerm)
}
// PrivateKey retrieves the private key from its expected path. If the file does
// not exist, then ErrNoPrivateKey is returned.
func (f *OnionFile) PrivateKey(_ OnionType) ([]byte, error) {
if _, err := os.Stat(f.privateKeyPath); os.IsNotExist(err) {
return nil, ErrNoPrivateKey
}
return ioutil.ReadFile(f.privateKeyPath)
}
// DeletePrivateKey removes the file containing the private key.
func (f *OnionFile) DeletePrivateKey(_ OnionType) error {
return os.Remove(f.privateKeyPath)
}
// AddOnionConfig houses all of the required parameters in order to successfully // AddOnionConfig houses all of the required parameters in order to successfully
// create a new onion service or restore an existing one. // create a new onion service or restore an existing one.
type AddOnionConfig struct { type AddOnionConfig struct {
@ -35,9 +95,12 @@ type AddOnionConfig struct {
// port. // port.
TargetPorts []int TargetPorts []int
// PrivateKeyPath is the full path to where the onion service's private // Store is responsible for storing all onion service related
// key is stored. This can be used to restore an existing onion service. // information.
PrivateKeyPath string //
// NOTE: If not specified, then nothing will be stored, making onion
// services unrecoverable after shutdown.
Store OnionStore
} }
// AddOnion creates an onion service and returns its onion address. Once // AddOnion creates an onion service and returns its onion address. Once
@ -53,24 +116,31 @@ func (c *Controller) AddOnion(cfg AddOnionConfig) (*OnionAddr, error) {
} }
} }
// We'll start off by checking if the file containing the private key // We'll start off by checking if the store contains an existing private
// exists. If it does not, then we should request the server to create // key. If it does not, then we should request the server to create a
// a new onion service and return its private key. Otherwise, we'll // new onion service and return its private key. Otherwise, we'll
// request the server to recreate the onion server from our private key. // request the server to recreate the onion server from our private key.
var keyParam string var keyParam string
if _, err := os.Stat(cfg.PrivateKeyPath); os.IsNotExist(err) {
switch cfg.Type { switch cfg.Type {
case V2: case V2:
keyParam = "NEW:RSA1024" keyParam = "NEW:RSA1024"
case V3: case V3:
keyParam = "NEW:ED25519-V3" keyParam = "NEW:ED25519-V3"
} }
} else {
privateKey, err := ioutil.ReadFile(cfg.PrivateKeyPath) if cfg.Store != nil {
if err != nil { privateKey, err := cfg.Store.PrivateKey(cfg.Type)
switch err {
// Proceed to request a new onion service.
case ErrNoPrivateKey:
// Recover the onion service with the private key found.
case nil:
keyParam = string(privateKey)
default:
return nil, err return nil, err
} }
keyParam = string(privateKey)
} }
// Now, we'll create a mapping from the virtual port to each target // Now, we'll create a mapping from the virtual port to each target
@ -126,13 +196,11 @@ func (c *Controller) AddOnion(cfg AddOnionConfig) (*OnionAddr, error) {
return nil, errors.New("service id not found in reply") return nil, errors.New("service id not found in reply")
} }
// If a new onion service was created, we'll write its private key to // If a new onion service was created and an onion store was provided,
// disk under strict permissions in the event that it needs to be // we'll store its private key to disk in the event that it needs to be
// recreated later on. // recreated later on.
if privateKey, ok := replyParams["PrivateKey"]; ok { if privateKey, ok := replyParams["PrivateKey"]; cfg.Store != nil && ok {
err := ioutil.WriteFile( err := cfg.Store.StorePrivateKey(cfg.Type, []byte(privateKey))
cfg.PrivateKeyPath, []byte(privateKey), 0600,
)
if err != nil { if err != nil {
return nil, fmt.Errorf("unable to write private key "+ return nil, fmt.Errorf("unable to write private key "+
"to file: %v", err) "to file: %v", err)

51
tor/add_onion_test.go Normal file

@ -0,0 +1,51 @@
package tor
import (
"bytes"
"io/ioutil"
"path/filepath"
"testing"
)
// TestOnionFile tests that the OnionFile implementation of the OnionStore
// interface behaves as expected.
func TestOnionFile(t *testing.T) {
t.Parallel()
tempDir, err := ioutil.TempDir("", "onion_store")
if err != nil {
t.Fatalf("unable to create temp dir: %v", err)
}
privateKey := []byte("hide_me_plz")
privateKeyPath := filepath.Join(tempDir, "secret")
// Create a new file-based onion store. A private key should not exist
// yet.
onionFile := NewOnionFile(privateKeyPath, 0600)
if _, err := onionFile.PrivateKey(V2); err != ErrNoPrivateKey {
t.Fatalf("expected ErrNoPrivateKey, got \"%v\"", err)
}
// Store the private key and ensure what's stored matches.
if err := onionFile.StorePrivateKey(V2, privateKey); err != nil {
t.Fatalf("unable to store private key: %v", err)
}
storePrivateKey, err := onionFile.PrivateKey(V2)
if err != nil {
t.Fatalf("unable to retrieve private key: %v", err)
}
if !bytes.Equal(storePrivateKey, privateKey) {
t.Fatalf("expected private key \"%v\", got \"%v\"",
string(privateKey), string(storePrivateKey))
}
// Finally, delete the private key. We should no longer be able to
// retrieve it.
if err := onionFile.DeletePrivateKey(V2); err != nil {
t.Fatalf("unable to delete private key: %v", err)
}
if _, err := onionFile.PrivateKey(V2); err != ErrNoPrivateKey {
t.Fatal("found deleted private key")
}
}