Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement native-tls compatible APIs #3

Open
jethrogb opened this issue Oct 30, 2018 · 8 comments
Open

Implement native-tls compatible APIs #3

jethrogb opened this issue Oct 30, 2018 · 8 comments
Assignees
@jack-fortanix
Labels
enhancement

Comments

@jethrogb
Copy link
Member

To make sure it's easy for people to swap in MbedTLS where they were using some other TLS library before, we need to make sure native-tls could be implemented in terms of MbedTLS.
@jethrogb jethrogb mentioned this issue Oct 30, 2018
Closed
@jack-fortanix
Copy link
Contributor

One problem will be, native-tls assumes that PKCS12 is used as the container for keys and certs. In fact it supports no other method of configuration (there is no way to say pass say a certificate chain + a PKCS8 private key). Mbedtls doesn't support PKCS12 at all.

Last year I worked on a project that used mbedtls that needed PKCS12, I hacked up something that happened to be able to generate valid PKCS12 files + parse them but it was fragile and (with mbedtls's quite primitive ASN1 library) very verbose, it was easily 1K lines of C.

If PKCS12 support proves required (as I think it would be for native-tls) it would be easier and safer to implement a PKCS12 library in Rust in a new crate, using yasna for ASN1 and mbedtls crate for the crypto ops.

@jack-fortanix
Copy link
Contributor

rust-native-tls requires that the stream types implement both Sync and Send. Already (with threading support enabled), mbedtls::Context is Send, but not Sync. This appears to be correct, in that the underlying ssl_context does not take a lock. I suppose the fix is, within rust-native-tls, add a mutex which serializes access to the ssl_context and then implement Sync for that wrapper type.

This assumes it is safe to invoke a shared ssl_context from multiple threads in a serialized way. Which it should be unless they are doing something weird, like using thread IDs for something, but as with the un-movable AES context sometimes mbedtls is kind of odd. So I'll review the code to make sure there are nothing like that.

@jack-fortanix
Copy link
Contributor

I'm clearly misunderstanding what rust-native-tls expects wrt Sync, rust-openssl defines the wrapper around SSL as Sync with no external lock, but OpenSSL's SSL is very much not safe to access concurrently from multiple threads.

@jack-fortanix
Copy link
Contributor

Things missing that native-tls expects

  • Being able to distinguish server vs client endpoints. The getters in Config are commented out with "need bitfield support". This is needed to implement tls_server_end_point which returns a hash of the server certificate. This is used for channel binding.
  • Explicit shutdown API. Right now, it happens as a result of the Context being Droped.

Things that are missing but I think I can work around:

  • Ability to Clone a Config and Context, because TlsConnector and TlsAcceptor are also Clone.
  • No lifetimes. native-tls clearly expects reference counting, as is done eg in OpenSSL, because its TlsStream does not have a lifetime binding it to the life of the TlsConnector/TlsAcceptor. Since adding lifetimes to the public native-tls API would break downstream applications, that is presumably a no-go as far as upstream is concerned.

I think I will refactor my code so that the TlsConnector and TlsAcceptor basically do nothing and just cache the same data that was provided by the TlsConnectorBuilder/TlsAcceptorBuilder, then all state (eg our Config/Context) is created in connect and accept and owned by the TlsStream. That prevents lifetime issues and allows clone to work on the TlsConnector/TlsAcceptor.

Also an issue:

  • Very likely for upstream acceptance: some way to use rust-mbedtls in a way that isn't a total cluster#### of unsafe and raw pointers. Improve Config/Context API #4

@AdrianCX AdrianCX mentioned this issue Nov 30, 2020
Merged
bors bot added a commit that referenced this issue Dec 17, 2020
@bors
Merge #128
3cf759a 
128: MbedTLS Reference counted instead of lifetimes r=jethrogb a=AdrianCX

Moving from referene counting allows simpler move to native-tls / hyper.

Arc Changes:
- Each Config/Context/... will hold Arcs towards items it holds pointers to.
- This forces objects to live as long as needed, once no longer used they get destroyed by reference counting.

This allows passing the objects to multiple threads without worrying about lifetime.
I've also added notes why classes are Sync where used. Let me know if I missed any classes.

Usage example of an intermediate mbed-hyper integration is at: 
- https://github.com/fortanix/rust-mbedtls/tree/acruceru/wip-mbed-hyper-v2/mbedtls-hyper/examples/integrations

There I added a crate to wrap hyper - similar to native-tls. (that will be moved to native-tls layer soon)
That crate can be considered an integration test that I will raise a separate PR for.


Edit:

Changes after initial review:
-    Added forward_mbedtls_calloc / forward_mbedtls_free functions so we can pass certificates to and from mbedtls without allocator mismatches/corruptions.
-    Switched to MbedtlsList<Certificate> and Certificate. A MbedtlsBox is pending for this PR as well.
-    Fixed most comments.

Still pending:
-    Update define! macros
-    Add MbedtlsBox<Certificate>


Fixes #1
Partial progress on #3
Fixes #4
Fixes #8
Partially addresses #9

Co-authored-by: Adrian Cruceru <adrian.cruceru@fortanix.com>
bors bot added a commit that referenced this issue Dec 17, 2020
@bors
Merge #128
ca38f0f 
128: MbedTLS Reference counted instead of lifetimes r=jethrogb a=AdrianCX

Moving from referene counting allows simpler move to native-tls / hyper.

Arc Changes:
- Each Config/Context/... will hold Arcs towards items it holds pointers to.
- This forces objects to live as long as needed, once no longer used they get destroyed by reference counting.

This allows passing the objects to multiple threads without worrying about lifetime.
I've also added notes why classes are Sync where used. Let me know if I missed any classes.

Usage example of an intermediate mbed-hyper integration is at: 
- https://github.com/fortanix/rust-mbedtls/tree/acruceru/wip-mbed-hyper-v2/mbedtls-hyper/examples/integrations

There I added a crate to wrap hyper - similar to native-tls. (that will be moved to native-tls layer soon)
That crate can be considered an integration test that I will raise a separate PR for.


Edit:

Changes after initial review:
-    Added forward_mbedtls_calloc / forward_mbedtls_free functions so we can pass certificates to and from mbedtls without allocator mismatches/corruptions.
-    Switched to MbedtlsList<Certificate> and Certificate. A MbedtlsBox is pending for this PR as well.
-    Fixed most comments.

Still pending:
-    Update define! macros
-    Add MbedtlsBox<Certificate>


Fixes #1
Partial progress on #3
Fixes #4
Fixes #8
Partially addresses #9

Co-authored-by: Adrian Cruceru <adrian.cruceru@fortanix.com>
Co-authored-by: Jethro Beekman <jethro@fortanix.com>
@keisrk keisrk mentioned this issue Jan 4, 2021
Open
@MabezDev
Copy link

MabezDev commented Dec 1, 2021

I'm currently taking another stab at this, as we want to use mbedtls for our os (espidf). With the changes made since the first attempt you folks made, its been relatively clean to implement. The final hurdle are the quite strict trait bounds on Context's accept & establish methods.

As far as I understand it, these trait bounds are required because unlike the openssl crate, Context is always Send + Sync, even if the stream (io) is not. This is due to the indirection of Box'ing the stream as dyn Any, essentially decoupling the stream from the Context.

I assume it was done this way for a reason, but I don't know enough about the internals of mbedtls to understand why, hopefully you can help me out here. Would it be possible to drop the indirection and move the stream into the Context with a generic type parameter?

@jethrogb
Copy link
Member Author

jethrogb commented Dec 1, 2021

@xinyufort FYI

@MabezDev MabezDev mentioned this issue Dec 9, 2021
Closed
@AdrianCX
Copy link
Contributor

AdrianCX commented Dec 9, 2021
edited
Loading

note: making Context generic is also covered via pr: #163

@MabezDev
Copy link

MabezDev commented Feb 3, 2022

Happy new year folks! :)

Is there anything we can do to push this forward? Is @AdrianCX's PR suitable? Would it be possible to separate the generic context element of the PR into another, if other parts of the PR are blocking?

I also see that there is another request for this in #178, seems this is also needed for use with the ureq library.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jack-fortanix jack-fortanix

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jethrogb @MabezDev @AdrianCX @jack-fortanix