hoernschen/dendrite
1
0
Fork 0
mirror of https://github.com/hoernschen/dendrite.git synced 2025-04-11 22:33:40 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
dendrite/keyserver/internal/cross_signing.go

374 lines
12 KiB
Go
Raw Normal View History

Sanity checking of uploads
2021-07-28 16:07:57 +00:00
package internal
import (
"context"
Validate signatures
2021-07-29 11:45:29 +00:00
"crypto/ed25519"
"encoding/json"
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
"fmt"
"strings"
"github.com/matrix-org/dendrite/keyserver/api"
"github.com/matrix-org/gomatrixserverlib"
"github.com/sirupsen/logrus"
)
Some refactoring
2021-07-29 14:47:30 +00:00
func sanityCheckKey(key gomatrixserverlib.CrossSigningForKey, userID string, purpose gomatrixserverlib.CrossSigningKeyPurpose) error {
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
// Is there exactly one key?
if len(key.Keys) != 1 {
return fmt.Errorf("should contain exactly one key")
}
// Does the key ID match the key value? Iterates exactly once
for keyID, keyData := range key.Keys {
b64 := keyData.Encode()
tokens := strings.Split(string(keyID), ":")
if len(tokens) != 2 {
return fmt.Errorf("key ID is incorrectly formatted")
}
if tokens[1] != b64 {
return fmt.Errorf("key ID isn't correct")
}
}
// Does the key claim to be from the right user?
if userID != key.UserID {
return fmt.Errorf("key has a user ID mismatch")
}
// Does the key contain the correct purpose?
useful := false
for _, usage := range key.Usage {
if usage == purpose {
useful = true
}
}
if !useful {
return fmt.Errorf("key does not contain correct usage purpose")
}
return nil
}
func (a *KeyInternalAPI) PerformUploadDeviceKeys(ctx context.Context, req *api.PerformUploadDeviceKeysRequest, res *api.PerformUploadDeviceKeysResponse) {
Validate signatures
2021-07-29 11:45:29 +00:00
hasMasterKey := false
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
if len(req.MasterKey.Keys) > 0 {
if err := sanityCheckKey(req.MasterKey, req.UserID, gomatrixserverlib.CrossSigningKeyPurposeMaster); err != nil {
res.Error = &api.KeyError{
Err: "Master key sanity check failed: " + err.Error(),
}
return
}
Validate signatures
2021-07-29 11:45:29 +00:00
hasMasterKey = true
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
}
if len(req.SelfSigningKey.Keys) > 0 {
if err := sanityCheckKey(req.SelfSigningKey, req.UserID, gomatrixserverlib.CrossSigningKeyPurposeSelfSigning); err != nil {
res.Error = &api.KeyError{
Err: "Self-signing key sanity check failed: " + err.Error(),
}
return
}
}
if len(req.UserSigningKey.Keys) > 0 {
if err := sanityCheckKey(req.UserSigningKey, req.UserID, gomatrixserverlib.CrossSigningKeyPurposeUserSigning); err != nil {
res.Error = &api.KeyError{
Err: "User-signing key sanity check failed: " + err.Error(),
}
return
}
}
Validate signatures
2021-07-29 11:45:29 +00:00
// If the user hasn't given a new master key, then let's go and get their
// existing keys from the database.
var masterKey gomatrixserverlib.Base64Bytes
if !hasMasterKey {
existingKeys, err := a.DB.CrossSigningKeysForUser(ctx, req.UserID)
if err != nil {
res.Error = &api.KeyError{
Err: "User-signing key sanity check failed: " + err.Error(),
}
return
}
Storing device keys part 1
2021-07-29 08:48:09 +00:00
Validate signatures
2021-07-29 11:45:29 +00:00
masterKey, hasMasterKey = existingKeys[gomatrixserverlib.CrossSigningKeyPurposeMaster]
if !hasMasterKey {
res.Error = &api.KeyError{
Fix error values
2021-07-29 12:13:10 +00:00
Err: "No master key was found, either in the database or in the request!",
IsMissingParam: true,
Validate signatures
2021-07-29 11:45:29 +00:00
}
return
}
} else {
for _, keyData := range req.MasterKey.Keys { // iterates once, see sanityCheckKey
masterKey = keyData
}
}
masterKeyID := gomatrixserverlib.KeyID(fmt.Sprintf("ed25519:%s", masterKey.Encode()))
// Work out which things we need to verify the signatures for.
Some refactoring
2021-07-29 14:47:30 +00:00
toVerify := make(map[gomatrixserverlib.CrossSigningKeyPurpose]gomatrixserverlib.CrossSigningForKey, 3)
Validate signatures
2021-07-29 11:45:29 +00:00
toStore := api.CrossSigningKeyMap{}
if len(req.MasterKey.Keys) > 0 {
toVerify[gomatrixserverlib.CrossSigningKeyPurposeMaster] = req.MasterKey
}
if len(req.SelfSigningKey.Keys) > 0 {
toVerify[gomatrixserverlib.CrossSigningKeyPurposeSelfSigning] = req.SelfSigningKey
Storing device keys part 1
2021-07-29 08:48:09 +00:00
}
Validate signatures
2021-07-29 11:45:29 +00:00
if len(req.SelfSigningKey.Keys) > 0 {
toVerify[gomatrixserverlib.CrossSigningKeyPurposeUserSigning] = req.UserSigningKey
Storing device keys part 1
2021-07-29 08:48:09 +00:00
}
Validate signatures
2021-07-29 11:45:29 +00:00
for purpose, key := range toVerify {
// Collect together the key IDs we need to verify with. This will include
A fix
2021-07-29 11:54:03 +00:00
// all of the key IDs specified in the signatures. We don't do this for
// the master key because we have no means to verify the signatures - we
// instead just need to store them.
Validate signatures
2021-07-29 11:45:29 +00:00
if purpose != gomatrixserverlib.CrossSigningKeyPurposeMaster {
A fix
2021-07-29 11:54:03 +00:00
// Marshal the specific key back into JSON so that we can verify the
// signature of it.
keyJSON, err := json.Marshal(key)
if err != nil {
Validate signatures
2021-07-29 11:45:29 +00:00
res.Error = &api.KeyError{
Fix error values
2021-07-29 12:13:10 +00:00
Err: fmt.Sprintf("The JSON of the key section is invalid: %s", err.Error()),
Validate signatures
2021-07-29 11:45:29 +00:00
}
return
}
A fix
2021-07-29 11:54:03 +00:00
Only the master key signature matters
2021-07-29 12:10:10 +00:00
// Now check if the subkey is signed by the master key.
if err := gomatrixserverlib.VerifyJSON(req.UserID, masterKeyID, ed25519.PublicKey(masterKey), keyJSON); err != nil {
res.Error = &api.KeyError{
Err: fmt.Sprintf("The %q sub-key failed master key signature verification: %s", purpose, err.Error()),
IsInvalidSignature: true,
A fix
2021-07-29 11:54:03 +00:00
}
Only the master key signature matters
2021-07-29 12:10:10 +00:00
return
A fix
2021-07-29 11:54:03 +00:00
}
Validate signatures
2021-07-29 11:45:29 +00:00
}
// If we've reached this point then all the signatures are valid so
// add the key to the list of keys to store.
for _, keyData := range key.Keys { // iterates once, see sanityCheckKey
toStore[purpose] = keyData
}
Storing device keys part 1
2021-07-29 08:48:09 +00:00
}
Validate signatures
2021-07-29 11:45:29 +00:00
if err := a.DB.StoreCrossSigningKeysForUser(ctx, req.UserID, toStore, req.StreamID); err != nil {
Storing device keys part 1
2021-07-29 08:48:09 +00:00
res.Error = &api.KeyError{
Err: fmt.Sprintf("a.DB.StoreCrossSigningKeysForUser: %s", err),
}
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
}
}
func (a *KeyInternalAPI) PerformUploadDeviceSignatures(ctx context.Context, req *api.PerformUploadDeviceSignaturesRequest, res *api.PerformUploadDeviceSignaturesResponse) {
Some groundwork
2021-07-29 17:22:27 +00:00
selfSignatures := map[string]map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice{}
otherSignatures := map[string]map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice{}
for userID, forUserID := range req.Signatures {
for keyID, keyOrDevice := range forUserID {
switch key := keyOrDevice.CrossSigningBody.(type) {
case *gomatrixserverlib.CrossSigningForKey:
if key.UserID == req.UserID {
if _, ok := selfSignatures[userID]; !ok {
selfSignatures[userID] = map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice{}
Some refactoring
2021-07-29 14:47:30 +00:00
}
Some groundwork
2021-07-29 17:22:27 +00:00
selfSignatures[userID][keyID] = keyOrDevice
} else {
if _, ok := selfSignatures[userID]; !ok {
otherSignatures[userID] = map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice{}
Some refactoring
2021-07-29 14:47:30 +00:00
}
Some groundwork
2021-07-29 17:22:27 +00:00
otherSignatures[userID][keyID] = keyOrDevice
}
Some refactoring
2021-07-29 14:47:30 +00:00
Some groundwork
2021-07-29 17:22:27 +00:00
case *gomatrixserverlib.CrossSigningForDevice:
if key.UserID == req.UserID {
if _, ok := selfSignatures[userID]; !ok {
selfSignatures[userID] = map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice{}
Initial signature upload support maybe
2021-07-29 14:29:16 +00:00
}
Some groundwork
2021-07-29 17:22:27 +00:00
selfSignatures[userID][keyID] = keyOrDevice
} else {
if _, ok := selfSignatures[userID]; !ok {
otherSignatures[userID] = map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice{}
Some refactoring
2021-07-29 14:47:30 +00:00
}
Some groundwork
2021-07-29 17:22:27 +00:00
otherSignatures[userID][keyID] = keyOrDevice
Initial signature upload support maybe
2021-07-29 14:29:16 +00:00
}
Some groundwork
2021-07-29 17:22:27 +00:00
default:
continue
Initial signature upload support maybe
2021-07-29 14:29:16 +00:00
}
}
Some groundwork
2021-07-29 17:22:27 +00:00
}
if err := a.processSelfSignatures(ctx, req.UserID, selfSignatures); err != nil {
res.Error = &api.KeyError{
Err: fmt.Sprintf("a.processSelfSignatures: %s", err),
}
return
}
if err := a.processOtherSignatures(ctx, req.UserID, otherSignatures); err != nil {
res.Error = &api.KeyError{
Err: fmt.Sprintf("a.processOtherSignatures: %s", err),
}
return
}
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
res.Error = &api.KeyError{
Err: "Not supported yet",
}
}
Some groundwork
2021-07-29 17:22:27 +00:00
func (a *KeyInternalAPI) processSelfSignatures(
Test sig upload
2021-07-30 11:22:33 +00:00
ctx context.Context, _ string,
Some groundwork
2021-07-29 17:22:27 +00:00
signatures map[string]map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice,
) error {
// Here we will process:
// * The user signing their own devices using their self-signing key
// * The user signing their master key using one of their devices
Test sig upload
2021-07-30 11:22:33 +00:00
for targetUserID, forTargetUserID := range signatures {
for targetKeyID, signature := range forTargetUserID {
switch sig := signature.CrossSigningBody.(type) {
case *gomatrixserverlib.CrossSigningForKey:
for originUserID, forOriginUserID := range sig.Signatures {
for originKeyID, originSig := range forOriginUserID {
if err := a.DB.StoreCrossSigningSigsForTarget(
ctx, originUserID, originKeyID, targetUserID, targetKeyID, originSig,
); err != nil {
return fmt.Errorf("a.DB.StoreCrossSigningKeysForTarget: %w", err)
}
}
}
case *gomatrixserverlib.CrossSigningForDevice:
}
}
}
Some groundwork
2021-07-29 17:22:27 +00:00
return nil
}
func (a *KeyInternalAPI) processOtherSignatures(
ctx context.Context, userID string,
signatures map[string]map[gomatrixserverlib.KeyID]gomatrixserverlib.CrossSigningForKeyOrDevice,
) error {
// Here we will process:
// * A user signing someone else's master keys using their user-signing keys
return nil
}
Test sig upload
2021-07-30 11:22:33 +00:00
/*
func (a *KeyInternalAPI) crossSigningKeysForUser(
ctx context.Context, userID string,
) (api.CrossSigningKeyMap, error) {
keymap, err := a.DB.CrossSigningKeysForUser(ctx, userID)
if err != nil && err != sql.ErrNoRows {
return nil, fmt.Errorf("a.DB.CrossSigningKeysForUser: %w", err)
}
if len(keymap) > 0 {
return keymap, nil
}
req := &api.QueryKeysRequest{
UserToDevices: map[string][]string{
userID: {},
},
}
res := &api.QueryKeysResponse{}
a.QueryKeys(ctx, req, res)
if res.Error != nil {
return nil, fmt.Errorf("a.QueryKeys: %s", res.Error.Error())
}
result := api.CrossSigningKeyMap{}
if masterKey, ok := res.MasterKeys[userID]; ok {
if err := sanityCheckKey(masterKey, userID, gomatrixserverlib.CrossSigningKeyPurposeMaster); err != nil {
return nil, fmt.Errorf("sanityCheckKey: %w", err)
}
for _, key := range masterKey.Keys {
result[gomatrixserverlib.CrossSigningKeyPurposeMaster] = key
break
}
}
if selfSigningKey, ok := res.SelfSigningKeys[userID]; ok {
if err := sanityCheckKey(selfSigningKey, userID, gomatrixserverlib.CrossSigningKeyPurposeSelfSigning); err != nil {
return nil, fmt.Errorf("sanityCheckKey: %w", err)
}
for _, key := range selfSigningKey.Keys {
result[gomatrixserverlib.CrossSigningKeyPurposeSelfSigning] = key
break
}
}
return result, nil
}
*/
Logging
2021-07-30 10:19:29 +00:00
func (a *KeyInternalAPI) crossSigningKeysFromDatabase(
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
ctx context.Context, req *api.QueryKeysRequest, res *api.QueryKeysResponse,
Don't give up so quickly on errors
2021-07-30 09:50:49 +00:00
) {
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
for userID := range req.UserToDevices {
keys, err := a.DB.CrossSigningKeysForUser(ctx, userID)
if err != nil {
logrus.WithError(err).Errorf("Failed to get cross-signing keys for user %q", userID)
Don't give up so quickly on errors
2021-07-30 09:50:49 +00:00
continue
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
}
for keyType, keyData := range keys {
b64 := keyData.Encode()
Include signatures in key query
2021-07-29 13:35:42 +00:00
keyID := gomatrixserverlib.KeyID("ed25519:" + b64)
Some refactoring
2021-07-29 14:47:30 +00:00
key := gomatrixserverlib.CrossSigningForKey{
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
UserID: userID,
Usage: []gomatrixserverlib.CrossSigningKeyPurpose{
keyType,
},
Keys: map[gomatrixserverlib.KeyID]gomatrixserverlib.Base64Bytes{
Include signatures in key query
2021-07-29 13:35:42 +00:00
keyID: keyData,
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
},
}
Include signatures in key query
2021-07-29 13:35:42 +00:00
sigs, err := a.DB.CrossSigningSigsForTarget(ctx, userID, keyID)
if err != nil {
logrus.WithError(err).Errorf("Failed to get cross-signing signatures for user %q key %q", userID, keyID)
Don't give up so quickly on errors
2021-07-30 09:50:49 +00:00
continue
Include signatures in key query
2021-07-29 13:35:42 +00:00
}
appendSignature := func(originUserID string, originKeyID gomatrixserverlib.KeyID, signature gomatrixserverlib.Base64Bytes) {
Allocate the map
2021-07-29 13:39:12 +00:00
if key.Signatures == nil {
key.Signatures = api.CrossSigningSigMap{}
}
Include signatures in key query
2021-07-29 13:35:42 +00:00
if _, ok := key.Signatures[originUserID]; !ok {
key.Signatures[originUserID] = make(map[gomatrixserverlib.KeyID]gomatrixserverlib.Base64Bytes)
}
key.Signatures[originUserID][originKeyID] = signature
}
for originUserID, forOrigin := range sigs {
for originKeyID, signature := range forOrigin {
switch {
case req.UserID != "" && originUserID == req.UserID:
Add insert functions for cross-signing signatures
2021-07-29 13:47:09 +00:00
// Include signatures that we created
Include signatures in key query
2021-07-29 13:35:42 +00:00
appendSignature(originUserID, originKeyID, signature)
case originUserID == userID:
Add insert functions for cross-signing signatures
2021-07-29 13:47:09 +00:00
// Include signatures that were created by the person whose key
// we are processing
Include signatures in key query
2021-07-29 13:35:42 +00:00
appendSignature(originUserID, originKeyID, signature)
}
}
}
Sanity checking of uploads
2021-07-28 16:07:57 +00:00
switch keyType {
case gomatrixserverlib.CrossSigningKeyPurposeMaster:
res.MasterKeys[userID] = key
case gomatrixserverlib.CrossSigningKeyPurposeSelfSigning:
res.SelfSigningKeys[userID] = key
case gomatrixserverlib.CrossSigningKeyPurposeUserSigning:
res.UserSigningKeys[userID] = key
}
}
}
}
Reference in a new issue Copy permalink