mirror of
https://github.com/AdguardTeam/AdGuardHome.git
synced 2024-11-25 06:25:44 +03:00
c908eec5de
Merge in DNS/adguard-home from AG-28194-plain-dns to master Squashed commit of the following: commit a033982b949217d46a8ea609f63198916f779a61 Merge: 03fc2821179d7a1ef4
Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Tue Dec 12 12:07:39 2023 +0200 Merge remote-tracking branch 'origin/master' into AG-28194-plain-dns commit 03fc282119a6372fcb4ce17a5d89779ad84589f5 Merge: e31a6593134a34dc05
Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Tue Dec 12 11:07:46 2023 +0200 Merge remote-tracking branch 'origin/master' into AG-28194-plain-dns # Conflicts: # CHANGELOG.md commit e31a659312fffe0cd5f57710843c8a6818515502 Merge: 0b735eb427b5cce517
Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Mon Dec 11 11:09:07 2023 +0200 Merge remote-tracking branch 'origin/master' into AG-28194-plain-dns # Conflicts: # CHANGELOG.md commit 0b735eb4261883961058aed562c1e72ad1a20915 Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 8 15:22:27 2023 +0200 Revert "safesearch: imp docs" This reverts commit bab6bf3467f8914a34413bbbcdc37e89ff0401a5. commit bab6bf3467f8914a34413bbbcdc37e89ff0401a5 Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 8 15:21:23 2023 +0200 safesearch: imp docs commit aa5e6e30e01bf947d645ac4a9578eeac09c92a19 Merge: 503888447 2b62901fe Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 8 14:48:13 2023 +0200 Merge remote-tracking branch 'origin/AG-28194-plain-dns' into AG-28194-plain-dns commit 503888447aaf30d48c3fb9a414e8a65beb1a4e23 Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 8 14:47:23 2023 +0200 home: imp code commit 2b62901feb29c9613ae648fa5e83598157207a17 Author: Ildar Kamalov <ik@adguard.com> Date: Fri Dec 8 11:55:25 2023 +0300 client: add plain dns description commit 3d51fc8ea1955e599953070a4b330dd4e2fd44bc Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 8 10:15:53 2023 +0200 all: changelog commit 59697b5f1ab049bd2259ffe42cef7223531ef7aa Merge: 81a15d081b668c04ea
Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 8 10:11:59 2023 +0200 Merge remote-tracking branch 'origin/master' into AG-28194-plain-dns commit 81a15d0818b18f99e651311a8502082b4a539e4b Author: Natalia Sokolova <n.sokolova@adguard.com> Date: Thu Dec 7 17:30:05 2023 +0300 client/src/__locales/en.json edited online with Bitbucket commit 0cf2f880fbd1592c02e6df42319cba357f0d7bc8 Author: Natalia Sokolova <n.sokolova@adguard.com> Date: Thu Dec 7 17:29:51 2023 +0300 client/src/__locales/en.json edited online with Bitbucket commit 2f32c59b8b1d764d060a69c35787566cf5210063 Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Thu Dec 7 13:14:04 2023 +0200 home: imp code commit 01e21a26bdd13c42c55c8ea3b5bbe84933bf0c04 Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Thu Dec 7 12:14:02 2023 +0200 all: imp docs commit b6beec6df7c2a9077ddce018656c701b7e875b53 Author: Ildar Kamalov <ik@adguard.com> Date: Thu Dec 7 12:42:21 2023 +0300 client: fix reset settings commit 93448500d56a4652a3a060b274936c40015ac8ec Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Thu Dec 7 10:55:25 2023 +0200 home: imp code commit eb32f8268bee097a81463ba29f7ea52be6e7d88b Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Thu Dec 7 10:42:23 2023 +0200 home: imp code commit 873d1412cf7c07ed985985a47325779bcfbf650a Merge: 627659680214175eb4
Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Thu Dec 7 10:22:25 2023 +0200 Merge remote-tracking branch 'origin/master' into AG-28194-plain-dns commit 627659680da8e973a3878d1722b276d30c7a27bb Author: Ildar Kamalov <ik@adguard.com> Date: Wed Dec 6 17:39:14 2023 +0300 client: handle plain dns setting commit ffdbf05fede721d271a84482a5759284d18eb189 Author: Dimitry Kolyshev <dkolyshev@adguard.com> Date: Fri Dec 1 15:12:50 2023 +0200 home: http dns plain ... and 1 more commit
797 lines
21 KiB
Go
797 lines
21 KiB
Go
package home
|
|
|
|
import (
|
|
"context"
|
|
"crypto"
|
|
"crypto/ecdsa"
|
|
"crypto/ed25519"
|
|
"crypto/rsa"
|
|
"crypto/tls"
|
|
"crypto/x509"
|
|
"encoding/base64"
|
|
"encoding/json"
|
|
"encoding/pem"
|
|
"fmt"
|
|
"net/http"
|
|
"os"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/AdguardTeam/AdGuardHome/internal/aghalg"
|
|
"github.com/AdguardTeam/AdGuardHome/internal/aghhttp"
|
|
"github.com/AdguardTeam/AdGuardHome/internal/aghtls"
|
|
"github.com/AdguardTeam/AdGuardHome/internal/dnsforward"
|
|
"github.com/AdguardTeam/golibs/errors"
|
|
"github.com/AdguardTeam/golibs/log"
|
|
"github.com/google/go-cmp/cmp"
|
|
)
|
|
|
|
// tlsManager contains the current configuration and state of AdGuard Home TLS
|
|
// encryption.
|
|
type tlsManager struct {
|
|
// status is the current status of the configuration. It is never nil.
|
|
status *tlsConfigStatus
|
|
|
|
// certLastMod is the last modification time of the certificate file.
|
|
certLastMod time.Time
|
|
|
|
confLock sync.Mutex
|
|
conf tlsConfigSettings
|
|
|
|
// servePlainDNS defines if plain DNS is allowed for incoming requests.
|
|
servePlainDNS bool
|
|
}
|
|
|
|
// newTLSManager initializes the manager of TLS configuration. m is always
|
|
// non-nil while any returned error indicates that the TLS configuration isn't
|
|
// valid. Thus TLS may be initialized later, e.g. via the web UI.
|
|
func newTLSManager(conf tlsConfigSettings, servePlainDNS bool) (m *tlsManager, err error) {
|
|
m = &tlsManager{
|
|
status: &tlsConfigStatus{},
|
|
conf: conf,
|
|
servePlainDNS: servePlainDNS,
|
|
}
|
|
|
|
if m.conf.Enabled {
|
|
err = m.load()
|
|
if err != nil {
|
|
m.conf.Enabled = false
|
|
|
|
return m, err
|
|
}
|
|
|
|
m.setCertFileTime()
|
|
}
|
|
|
|
return m, nil
|
|
}
|
|
|
|
// load reloads the TLS configuration from files or data from the config file.
|
|
func (m *tlsManager) load() (err error) {
|
|
err = loadTLSConf(&m.conf, m.status)
|
|
if err != nil {
|
|
return fmt.Errorf("loading config: %w", err)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// WriteDiskConfig - write config
|
|
func (m *tlsManager) WriteDiskConfig(conf *tlsConfigSettings) {
|
|
m.confLock.Lock()
|
|
*conf = m.conf
|
|
m.confLock.Unlock()
|
|
}
|
|
|
|
// setCertFileTime sets t.certLastMod from the certificate. If there are
|
|
// errors, setCertFileTime logs them.
|
|
func (m *tlsManager) setCertFileTime() {
|
|
if len(m.conf.CertificatePath) == 0 {
|
|
return
|
|
}
|
|
|
|
fi, err := os.Stat(m.conf.CertificatePath)
|
|
if err != nil {
|
|
log.Error("tls: looking up certificate path: %s", err)
|
|
|
|
return
|
|
}
|
|
|
|
m.certLastMod = fi.ModTime().UTC()
|
|
}
|
|
|
|
// start updates the configuration of t and starts it.
|
|
func (m *tlsManager) start() {
|
|
m.registerWebHandlers()
|
|
|
|
m.confLock.Lock()
|
|
tlsConf := m.conf
|
|
m.confLock.Unlock()
|
|
|
|
// The background context is used because the TLSConfigChanged wraps context
|
|
// with timeout on its own and shuts down the server, which handles current
|
|
// request.
|
|
Context.web.tlsConfigChanged(context.Background(), tlsConf)
|
|
}
|
|
|
|
// reload updates the configuration and restarts t.
|
|
func (m *tlsManager) reload() {
|
|
m.confLock.Lock()
|
|
tlsConf := m.conf
|
|
m.confLock.Unlock()
|
|
|
|
if !tlsConf.Enabled || len(tlsConf.CertificatePath) == 0 {
|
|
return
|
|
}
|
|
|
|
fi, err := os.Stat(tlsConf.CertificatePath)
|
|
if err != nil {
|
|
log.Error("tls: %s", err)
|
|
|
|
return
|
|
}
|
|
|
|
if fi.ModTime().UTC().Equal(m.certLastMod) {
|
|
log.Debug("tls: certificate file isn't modified")
|
|
|
|
return
|
|
}
|
|
|
|
log.Debug("tls: certificate file is modified")
|
|
|
|
m.confLock.Lock()
|
|
err = m.load()
|
|
m.confLock.Unlock()
|
|
if err != nil {
|
|
log.Error("tls: reloading: %s", err)
|
|
|
|
return
|
|
}
|
|
|
|
m.certLastMod = fi.ModTime().UTC()
|
|
|
|
_ = reconfigureDNSServer()
|
|
|
|
m.confLock.Lock()
|
|
tlsConf = m.conf
|
|
m.confLock.Unlock()
|
|
|
|
// The background context is used because the TLSConfigChanged wraps context
|
|
// with timeout on its own and shuts down the server, which handles current
|
|
// request.
|
|
Context.web.tlsConfigChanged(context.Background(), tlsConf)
|
|
}
|
|
|
|
// loadTLSConf loads and validates the TLS configuration. The returned error is
|
|
// also set in status.WarningValidation.
|
|
func loadTLSConf(tlsConf *tlsConfigSettings, status *tlsConfigStatus) (err error) {
|
|
defer func() {
|
|
if err != nil {
|
|
status.WarningValidation = err.Error()
|
|
if status.ValidCert && status.ValidKey && status.ValidPair {
|
|
// Do not return warnings since those aren't critical.
|
|
err = nil
|
|
}
|
|
}
|
|
}()
|
|
|
|
err = loadCertificateChainData(tlsConf, status)
|
|
if err != nil {
|
|
// Don't wrap the error, because it's informative enough as is.
|
|
return err
|
|
}
|
|
|
|
err = loadPrivateKeyData(tlsConf, status)
|
|
if err != nil {
|
|
// Don't wrap the error, because it's informative enough as is.
|
|
return err
|
|
}
|
|
|
|
err = validateCertificates(
|
|
status,
|
|
tlsConf.CertificateChainData,
|
|
tlsConf.PrivateKeyData,
|
|
tlsConf.ServerName,
|
|
)
|
|
|
|
return errors.Annotate(err, "validating certificate pair: %w")
|
|
}
|
|
|
|
// loadCertificateChainData loads PEM-encoded certificates chain data to the
|
|
// TLS configuration.
|
|
func loadCertificateChainData(tlsConf *tlsConfigSettings, status *tlsConfigStatus) (err error) {
|
|
tlsConf.CertificateChainData = []byte(tlsConf.CertificateChain)
|
|
if tlsConf.CertificatePath != "" {
|
|
if tlsConf.CertificateChain != "" {
|
|
return errors.Error("certificate data and file can't be set together")
|
|
}
|
|
|
|
tlsConf.CertificateChainData, err = os.ReadFile(tlsConf.CertificatePath)
|
|
if err != nil {
|
|
return fmt.Errorf("reading cert file: %w", err)
|
|
}
|
|
|
|
// Set status.ValidCert to true to signal the frontend that the
|
|
// certificate opens successfully while the private key can't be opened.
|
|
status.ValidCert = true
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// loadPrivateKeyData loads PEM-encoded private key data to the TLS
|
|
// configuration.
|
|
func loadPrivateKeyData(tlsConf *tlsConfigSettings, status *tlsConfigStatus) (err error) {
|
|
tlsConf.PrivateKeyData = []byte(tlsConf.PrivateKey)
|
|
if tlsConf.PrivateKeyPath != "" {
|
|
if tlsConf.PrivateKey != "" {
|
|
return errors.Error("private key data and file can't be set together")
|
|
}
|
|
|
|
tlsConf.PrivateKeyData, err = os.ReadFile(tlsConf.PrivateKeyPath)
|
|
if err != nil {
|
|
return fmt.Errorf("reading key file: %w", err)
|
|
}
|
|
|
|
status.ValidKey = true
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// tlsConfigStatus contains the status of a certificate chain and key pair.
|
|
type tlsConfigStatus struct {
|
|
// Subject is the subject of the first certificate in the chain.
|
|
Subject string `json:"subject,omitempty"`
|
|
|
|
// Issuer is the issuer of the first certificate in the chain.
|
|
Issuer string `json:"issuer,omitempty"`
|
|
|
|
// KeyType is the type of the private key.
|
|
KeyType string `json:"key_type,omitempty"`
|
|
|
|
// NotBefore is the NotBefore field of the first certificate in the chain.
|
|
NotBefore time.Time `json:"not_before,omitempty"`
|
|
|
|
// NotAfter is the NotAfter field of the first certificate in the chain.
|
|
NotAfter time.Time `json:"not_after,omitempty"`
|
|
|
|
// WarningValidation is a validation warning message with the issue
|
|
// description.
|
|
WarningValidation string `json:"warning_validation,omitempty"`
|
|
|
|
// DNSNames is the value of SubjectAltNames field of the first certificate
|
|
// in the chain.
|
|
DNSNames []string `json:"dns_names"`
|
|
|
|
// ValidCert is true if the specified certificate chain is a valid chain of
|
|
// X509 certificates.
|
|
ValidCert bool `json:"valid_cert"`
|
|
|
|
// ValidChain is true if the specified certificate chain is verified and
|
|
// issued by a known CA.
|
|
ValidChain bool `json:"valid_chain"`
|
|
|
|
// ValidKey is true if the key is a valid private key.
|
|
ValidKey bool `json:"valid_key"`
|
|
|
|
// ValidPair is true if both certificate and private key are correct for
|
|
// each other.
|
|
ValidPair bool `json:"valid_pair"`
|
|
}
|
|
|
|
// tlsConfig is the TLS configuration and status response.
|
|
type tlsConfig struct {
|
|
*tlsConfigStatus `json:",inline"`
|
|
tlsConfigSettingsExt `json:",inline"`
|
|
}
|
|
|
|
// tlsConfigSettingsExt is used to (un)marshal PrivateKeySaved field and
|
|
// ServePlainDNS field.
|
|
type tlsConfigSettingsExt struct {
|
|
tlsConfigSettings `json:",inline"`
|
|
|
|
// PrivateKeySaved is true if the private key is saved as a string and omit
|
|
// key from answer. It is used to ensure that clients don't send and
|
|
// receive previously saved private keys.
|
|
PrivateKeySaved bool `yaml:"-" json:"private_key_saved"`
|
|
|
|
// ServePlainDNS defines if plain DNS is allowed for incoming requests. It
|
|
// is an [aghalg.NullBool] to be able to tell when it's set without using
|
|
// pointers.
|
|
ServePlainDNS aghalg.NullBool `yaml:"-" json:"serve_plain_dns"`
|
|
}
|
|
|
|
// handleTLSStatus is the handler for the GET /control/tls/status HTTP API.
|
|
func (m *tlsManager) handleTLSStatus(w http.ResponseWriter, r *http.Request) {
|
|
m.confLock.Lock()
|
|
data := tlsConfig{
|
|
tlsConfigSettingsExt: tlsConfigSettingsExt{
|
|
tlsConfigSettings: m.conf,
|
|
ServePlainDNS: aghalg.BoolToNullBool(m.servePlainDNS),
|
|
},
|
|
tlsConfigStatus: m.status,
|
|
}
|
|
m.confLock.Unlock()
|
|
|
|
marshalTLS(w, r, data)
|
|
}
|
|
|
|
// handleTLSValidate is the handler for the POST /control/tls/validate HTTP API.
|
|
func (m *tlsManager) handleTLSValidate(w http.ResponseWriter, r *http.Request) {
|
|
setts, err := unmarshalTLS(r)
|
|
if err != nil {
|
|
aghhttp.Error(r, w, http.StatusBadRequest, "Failed to unmarshal TLS config: %s", err)
|
|
|
|
return
|
|
}
|
|
|
|
if setts.PrivateKeySaved {
|
|
setts.PrivateKey = m.conf.PrivateKey
|
|
}
|
|
|
|
if err = validateTLSSettings(setts); err != nil {
|
|
aghhttp.Error(r, w, http.StatusBadRequest, "%s", err)
|
|
|
|
return
|
|
}
|
|
|
|
// Skip the error check, since we are only interested in the value of
|
|
// status.WarningValidation.
|
|
status := &tlsConfigStatus{}
|
|
_ = loadTLSConf(&setts.tlsConfigSettings, status)
|
|
resp := tlsConfig{
|
|
tlsConfigSettingsExt: setts,
|
|
tlsConfigStatus: status,
|
|
}
|
|
|
|
marshalTLS(w, r, resp)
|
|
}
|
|
|
|
// setConfig updates manager conf with the given one.
|
|
func (m *tlsManager) setConfig(
|
|
newConf tlsConfigSettings,
|
|
status *tlsConfigStatus,
|
|
servePlain aghalg.NullBool,
|
|
) (restartHTTPS bool) {
|
|
m.confLock.Lock()
|
|
defer m.confLock.Unlock()
|
|
|
|
// Reset the DNSCrypt data before comparing, since we currently do not
|
|
// accept these from the frontend.
|
|
//
|
|
// TODO(a.garipov): Define a custom comparer for dnsforward.TLSConfig.
|
|
newConf.DNSCryptConfigFile = m.conf.DNSCryptConfigFile
|
|
newConf.PortDNSCrypt = m.conf.PortDNSCrypt
|
|
if !cmp.Equal(m.conf, newConf, cmp.AllowUnexported(dnsforward.TLSConfig{})) {
|
|
log.Info("tls config has changed, restarting https server")
|
|
restartHTTPS = true
|
|
} else {
|
|
log.Info("tls: config has not changed")
|
|
}
|
|
|
|
// Note: don't do just `t.conf = data` because we must preserve all other members of t.conf
|
|
m.conf.Enabled = newConf.Enabled
|
|
m.conf.ServerName = newConf.ServerName
|
|
m.conf.ForceHTTPS = newConf.ForceHTTPS
|
|
m.conf.PortHTTPS = newConf.PortHTTPS
|
|
m.conf.PortDNSOverTLS = newConf.PortDNSOverTLS
|
|
m.conf.PortDNSOverQUIC = newConf.PortDNSOverQUIC
|
|
m.conf.CertificateChain = newConf.CertificateChain
|
|
m.conf.CertificatePath = newConf.CertificatePath
|
|
m.conf.CertificateChainData = newConf.CertificateChainData
|
|
m.conf.PrivateKey = newConf.PrivateKey
|
|
m.conf.PrivateKeyPath = newConf.PrivateKeyPath
|
|
m.conf.PrivateKeyData = newConf.PrivateKeyData
|
|
m.status = status
|
|
|
|
if servePlain != aghalg.NBNull {
|
|
m.servePlainDNS = servePlain == aghalg.NBTrue
|
|
}
|
|
|
|
return restartHTTPS
|
|
}
|
|
|
|
// handleTLSConfigure is the handler for the POST /control/tls/configure HTTP
|
|
// API.
|
|
func (m *tlsManager) handleTLSConfigure(w http.ResponseWriter, r *http.Request) {
|
|
req, err := unmarshalTLS(r)
|
|
if err != nil {
|
|
aghhttp.Error(r, w, http.StatusBadRequest, "Failed to unmarshal TLS config: %s", err)
|
|
|
|
return
|
|
}
|
|
|
|
if req.PrivateKeySaved {
|
|
req.PrivateKey = m.conf.PrivateKey
|
|
}
|
|
|
|
if err = validateTLSSettings(req); err != nil {
|
|
aghhttp.Error(r, w, http.StatusBadRequest, "%s", err)
|
|
|
|
return
|
|
}
|
|
|
|
status := &tlsConfigStatus{}
|
|
err = loadTLSConf(&req.tlsConfigSettings, status)
|
|
if err != nil {
|
|
resp := tlsConfig{
|
|
tlsConfigSettingsExt: req,
|
|
tlsConfigStatus: status,
|
|
}
|
|
|
|
marshalTLS(w, r, resp)
|
|
|
|
return
|
|
}
|
|
|
|
restartHTTPS := m.setConfig(req.tlsConfigSettings, status, req.ServePlainDNS)
|
|
m.setCertFileTime()
|
|
|
|
if req.ServePlainDNS != aghalg.NBNull {
|
|
func() {
|
|
m.confLock.Lock()
|
|
defer m.confLock.Unlock()
|
|
|
|
config.DNS.ServePlainDNS = req.ServePlainDNS == aghalg.NBTrue
|
|
}()
|
|
}
|
|
|
|
onConfigModified()
|
|
|
|
err = reconfigureDNSServer()
|
|
if err != nil {
|
|
aghhttp.Error(r, w, http.StatusInternalServerError, "%s", err)
|
|
|
|
return
|
|
}
|
|
|
|
resp := tlsConfig{
|
|
tlsConfigSettingsExt: req,
|
|
tlsConfigStatus: m.status,
|
|
}
|
|
|
|
marshalTLS(w, r, resp)
|
|
if f, ok := w.(http.Flusher); ok {
|
|
f.Flush()
|
|
}
|
|
|
|
// The background context is used because the TLSConfigChanged wraps context
|
|
// with timeout on its own and shuts down the server, which handles current
|
|
// request. It is also should be done in a separate goroutine due to the
|
|
// same reason.
|
|
if restartHTTPS {
|
|
go func() {
|
|
Context.web.tlsConfigChanged(context.Background(), req.tlsConfigSettings)
|
|
}()
|
|
}
|
|
}
|
|
|
|
// validateTLSSettings returns error if the setts are not valid.
|
|
func validateTLSSettings(setts tlsConfigSettingsExt) (err error) {
|
|
if setts.Enabled {
|
|
err = validatePorts(
|
|
tcpPort(config.HTTPConfig.Address.Port()),
|
|
tcpPort(setts.PortHTTPS),
|
|
tcpPort(setts.PortDNSOverTLS),
|
|
tcpPort(setts.PortDNSCrypt),
|
|
udpPort(config.DNS.Port),
|
|
udpPort(setts.PortDNSOverQUIC),
|
|
)
|
|
if err != nil {
|
|
// Don't wrap the error since it's informative enough as is.
|
|
return err
|
|
}
|
|
} else if setts.ServePlainDNS == aghalg.NBFalse {
|
|
// TODO(a.garipov): Support full disabling of all DNS.
|
|
return errors.Error("plain DNS is required in case encryption protocols are disabled")
|
|
}
|
|
|
|
if !webCheckPortAvailable(setts.PortHTTPS) {
|
|
return fmt.Errorf("port %d is not available, cannot enable HTTPS on it", setts.PortHTTPS)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// validatePorts validates the uniqueness of TCP and UDP ports for AdGuard Home
|
|
// DNS protocols.
|
|
func validatePorts(
|
|
bindPort, dohPort, dotPort, dnscryptTCPPort tcpPort,
|
|
dnsPort, doqPort udpPort,
|
|
) (err error) {
|
|
tcpPorts := aghalg.UniqChecker[tcpPort]{}
|
|
addPorts(
|
|
tcpPorts,
|
|
tcpPort(bindPort),
|
|
tcpPort(dohPort),
|
|
tcpPort(dotPort),
|
|
tcpPort(dnscryptTCPPort),
|
|
)
|
|
|
|
err = tcpPorts.Validate()
|
|
if err != nil {
|
|
return fmt.Errorf("validating tcp ports: %w", err)
|
|
}
|
|
|
|
udpPorts := aghalg.UniqChecker[udpPort]{}
|
|
addPorts(udpPorts, udpPort(dnsPort), udpPort(doqPort))
|
|
|
|
err = udpPorts.Validate()
|
|
if err != nil {
|
|
return fmt.Errorf("validating udp ports: %w", err)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// validateCertChain verifies certs using the first as the main one and others
|
|
// as intermediate. srvName stands for the expected DNS name.
|
|
func validateCertChain(certs []*x509.Certificate, srvName string) (err error) {
|
|
main, others := certs[0], certs[1:]
|
|
|
|
pool := x509.NewCertPool()
|
|
for _, cert := range others {
|
|
log.Info("tls: got an intermediate cert")
|
|
pool.AddCert(cert)
|
|
}
|
|
|
|
opts := x509.VerifyOptions{
|
|
DNSName: srvName,
|
|
Roots: Context.tlsRoots,
|
|
Intermediates: pool,
|
|
}
|
|
_, err = main.Verify(opts)
|
|
if err != nil {
|
|
return fmt.Errorf("certificate does not verify: %w", err)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// errNoIPInCert is the error that is returned from [parseCertChain] if the leaf
|
|
// certificate doesn't contain IPs.
|
|
const errNoIPInCert errors.Error = `certificates has no IP addresses; ` +
|
|
`DNS-over-TLS won't be advertised via DDR`
|
|
|
|
// parseCertChain parses the certificate chain from raw data, and returns it.
|
|
// If ok is true, the returned error, if any, is not critical.
|
|
func parseCertChain(chain []byte) (parsedCerts []*x509.Certificate, ok bool, err error) {
|
|
log.Debug("tls: got certificate chain: %d bytes", len(chain))
|
|
|
|
var certs []*pem.Block
|
|
for decoded, pemblock := pem.Decode(chain); decoded != nil; {
|
|
if decoded.Type == "CERTIFICATE" {
|
|
certs = append(certs, decoded)
|
|
}
|
|
|
|
decoded, pemblock = pem.Decode(pemblock)
|
|
}
|
|
|
|
parsedCerts, err = parsePEMCerts(certs)
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
log.Info("tls: number of certs: %d", len(parsedCerts))
|
|
|
|
if !aghtls.CertificateHasIP(parsedCerts[0]) {
|
|
err = errNoIPInCert
|
|
}
|
|
|
|
return parsedCerts, true, err
|
|
}
|
|
|
|
// parsePEMCerts parses multiple PEM-encoded certificates.
|
|
func parsePEMCerts(certs []*pem.Block) (parsedCerts []*x509.Certificate, err error) {
|
|
for i, cert := range certs {
|
|
var parsed *x509.Certificate
|
|
parsed, err = x509.ParseCertificate(cert.Bytes)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("parsing certificate at index %d: %w", i, err)
|
|
}
|
|
|
|
parsedCerts = append(parsedCerts, parsed)
|
|
}
|
|
|
|
if len(parsedCerts) == 0 {
|
|
return nil, errors.Error("empty certificate")
|
|
}
|
|
|
|
return parsedCerts, nil
|
|
}
|
|
|
|
// validatePKey validates the private key, returning its type. It returns an
|
|
// empty string if error occurs.
|
|
func validatePKey(pkey []byte) (keyType string, err error) {
|
|
var key *pem.Block
|
|
|
|
// Go through all pem blocks, but take first valid pem block and drop the
|
|
// rest.
|
|
for decoded, pemblock := pem.Decode([]byte(pkey)); decoded != nil; {
|
|
if decoded.Type == "PRIVATE KEY" || strings.HasSuffix(decoded.Type, " PRIVATE KEY") {
|
|
key = decoded
|
|
|
|
break
|
|
}
|
|
|
|
decoded, pemblock = pem.Decode(pemblock)
|
|
}
|
|
|
|
if key == nil {
|
|
return "", errors.Error("no valid keys were found")
|
|
}
|
|
|
|
_, keyType, err = parsePrivateKey(key.Bytes)
|
|
if err != nil {
|
|
return "", fmt.Errorf("parsing private key: %w", err)
|
|
}
|
|
|
|
if keyType == keyTypeED25519 {
|
|
return "", errors.Error(
|
|
"ED25519 keys are not supported by browsers; " +
|
|
"did you mean to use X25519 for key exchange?",
|
|
)
|
|
}
|
|
|
|
return keyType, nil
|
|
}
|
|
|
|
// validateCertificates processes certificate data and its private key. status
|
|
// must not be nil, since it's used to accumulate the validation results. Other
|
|
// parameters are optional.
|
|
func validateCertificates(
|
|
status *tlsConfigStatus,
|
|
certChain []byte,
|
|
pkey []byte,
|
|
serverName string,
|
|
) (err error) {
|
|
// Check only the public certificate separately from the key.
|
|
if len(certChain) > 0 {
|
|
var certs []*x509.Certificate
|
|
certs, status.ValidCert, err = parseCertChain(certChain)
|
|
if !status.ValidCert {
|
|
// Don't wrap the error, since it's informative enough as is.
|
|
return err
|
|
}
|
|
|
|
mainCert := certs[0]
|
|
status.Subject = mainCert.Subject.String()
|
|
status.Issuer = mainCert.Issuer.String()
|
|
status.NotAfter = mainCert.NotAfter
|
|
status.NotBefore = mainCert.NotBefore
|
|
status.DNSNames = mainCert.DNSNames
|
|
|
|
if chainErr := validateCertChain(certs, serverName); chainErr != nil {
|
|
// Let self-signed certs through and don't return this error to set
|
|
// its message into the status.WarningValidation afterwards.
|
|
err = chainErr
|
|
} else {
|
|
status.ValidChain = true
|
|
}
|
|
}
|
|
|
|
// Validate the private key by parsing it.
|
|
if len(pkey) > 0 {
|
|
var keyErr error
|
|
status.KeyType, keyErr = validatePKey(pkey)
|
|
if keyErr != nil {
|
|
// Don't wrap the error, since it's informative enough as is.
|
|
return keyErr
|
|
}
|
|
|
|
status.ValidKey = true
|
|
}
|
|
|
|
// If both are set, validate together.
|
|
if len(certChain) > 0 && len(pkey) > 0 {
|
|
_, pairErr := tls.X509KeyPair(certChain, pkey)
|
|
if pairErr != nil {
|
|
return fmt.Errorf("certificate-key pair: %w", pairErr)
|
|
}
|
|
|
|
status.ValidPair = true
|
|
}
|
|
|
|
return err
|
|
}
|
|
|
|
// Key types.
|
|
const (
|
|
keyTypeECDSA = "ECDSA"
|
|
keyTypeED25519 = "ED25519"
|
|
keyTypeRSA = "RSA"
|
|
)
|
|
|
|
// Attempt to parse the given private key DER block. OpenSSL 0.9.8 generates
|
|
// PKCS#1 private keys by default, while OpenSSL 1.0.0 generates PKCS#8 keys.
|
|
// OpenSSL ecparam generates SEC1 EC private keys for ECDSA. We try all three.
|
|
//
|
|
// TODO(a.garipov): Find out if this version of parsePrivateKey from the stdlib
|
|
// is actually necessary.
|
|
func parsePrivateKey(der []byte) (key crypto.PrivateKey, typ string, err error) {
|
|
if key, err = x509.ParsePKCS1PrivateKey(der); err == nil {
|
|
return key, keyTypeRSA, nil
|
|
}
|
|
|
|
if key, err = x509.ParsePKCS8PrivateKey(der); err == nil {
|
|
switch key := key.(type) {
|
|
case *rsa.PrivateKey:
|
|
return key, keyTypeRSA, nil
|
|
case *ecdsa.PrivateKey:
|
|
return key, keyTypeECDSA, nil
|
|
case ed25519.PrivateKey:
|
|
return key, keyTypeED25519, nil
|
|
default:
|
|
return nil, "", fmt.Errorf(
|
|
"tls: found unknown private key type %T in PKCS#8 wrapping",
|
|
key,
|
|
)
|
|
}
|
|
}
|
|
|
|
if key, err = x509.ParseECPrivateKey(der); err == nil {
|
|
return key, keyTypeECDSA, nil
|
|
}
|
|
|
|
return nil, "", errors.Error("tls: failed to parse private key")
|
|
}
|
|
|
|
// unmarshalTLS handles base64-encoded certificates transparently
|
|
func unmarshalTLS(r *http.Request) (tlsConfigSettingsExt, error) {
|
|
data := tlsConfigSettingsExt{}
|
|
err := json.NewDecoder(r.Body).Decode(&data)
|
|
if err != nil {
|
|
return data, fmt.Errorf("failed to parse new TLS config json: %w", err)
|
|
}
|
|
|
|
if data.CertificateChain != "" {
|
|
var cert []byte
|
|
cert, err = base64.StdEncoding.DecodeString(data.CertificateChain)
|
|
if err != nil {
|
|
return data, fmt.Errorf("failed to base64-decode certificate chain: %w", err)
|
|
}
|
|
|
|
data.CertificateChain = string(cert)
|
|
if data.CertificatePath != "" {
|
|
return data, fmt.Errorf("certificate data and file can't be set together")
|
|
}
|
|
}
|
|
|
|
if data.PrivateKey != "" {
|
|
var key []byte
|
|
key, err = base64.StdEncoding.DecodeString(data.PrivateKey)
|
|
if err != nil {
|
|
return data, fmt.Errorf("failed to base64-decode private key: %w", err)
|
|
}
|
|
|
|
data.PrivateKey = string(key)
|
|
if data.PrivateKeyPath != "" {
|
|
return data, fmt.Errorf("private key data and file can't be set together")
|
|
}
|
|
}
|
|
|
|
return data, nil
|
|
}
|
|
|
|
func marshalTLS(w http.ResponseWriter, r *http.Request, data tlsConfig) {
|
|
if data.CertificateChain != "" {
|
|
encoded := base64.StdEncoding.EncodeToString([]byte(data.CertificateChain))
|
|
data.CertificateChain = encoded
|
|
}
|
|
|
|
if data.PrivateKey != "" {
|
|
data.PrivateKeySaved = true
|
|
data.PrivateKey = ""
|
|
}
|
|
|
|
aghhttp.WriteJSONResponseOK(w, r, data)
|
|
}
|
|
|
|
// registerWebHandlers registers HTTP handlers for TLS configuration.
|
|
func (m *tlsManager) registerWebHandlers() {
|
|
httpRegister(http.MethodGet, "/control/tls/status", m.handleTLSStatus)
|
|
httpRegister(http.MethodPost, "/control/tls/configure", m.handleTLSConfigure)
|
|
httpRegister(http.MethodPost, "/control/tls/validate", m.handleTLSValidate)
|
|
}
|