Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make TLS connections to a remote wallet non-mandatory #7953

Merged
merged 12 commits into from
Dec 3, 2020
Merged

Make TLS connections to a remote wallet non-mandatory #7953

merged 12 commits into from
Dec 3, 2020

Conversation

rkapka
Copy link
Contributor

@rkapka rkapka commented Nov 25, 2020

What type of PR is this?

Feature

What does this PR do? Why is it needed?

TLS communication with a remote wallet will no longer be required. It can be configured with the disable-remote-signer-tls flag.

Which issues(s) does this PR fix?

N/A

Other notes for review

Even though this allows insecure connections, it does not realistically compromise security. For details, please see https://discord.com/channels/476244492043812875/774005284188323870/780838701563379792. Most important part from the linked discussion:

which means that (1) is a problem if (a) the flag is explicitly set and (b) the signer does not enforce secure communication and (c) we send private keys from the signer to the validator

@rkapka rkapka requested a review from a team as a code owner November 25, 2020 11:03
@rkapka rkapka added the Ready For Review A pull request ready for code review label Nov 25, 2020
@rkapka rkapka changed the title Allow to disable insecure connections to a remote wallet Make TLS connections to a remote wallet non-mandatory Nov 25, 2020
rkapka
rkapka commented Nov 25, 2020
View reviewed changes
validator/accounts/prompt/prompt.go
return nil, errors.Wrapf(err, "could not determine absolute path for %s", crt)

crtPath, keyPath, caPath := "", "", ""
if crt != "" {
Copy link
Contributor Author

@rkapka rkapka Nov 25, 2020
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

When TLS is disabled, then passing cert paths is optional, and we should validate a path if it's provided. That's why I didn't surround this code with the flag check.

@rkapka rkapka added release-target and removed Ready For Review A pull request ready for code review labels Nov 25, 2020
@rkapka rkapka added Ready For Review A pull request ready for code review and removed release-target labels Nov 25, 2020
rauljordan
rauljordan previously approved these changes Nov 25, 2020
View reviewed changes
@prestonvanloon prestonvanloon added this to the v1.1.0 milestone Nov 25, 2020
@rauljordan rauljordan changed the base branch from master to develop November 30, 2020 21:40
@rauljordan rauljordan dismissed their stale review November 30, 2020 21:40

The base branch was changed.

@rkapka rkapka modified the milestones: v1.0.3, v1.1.0 Dec 2, 2020
@prylabs-bulldozer prylabs-bulldozer bot merged commit 323769b into develop Dec 3, 2020
@delete-merged-branch delete-merged-branch bot deleted the disable-tls branch December 3, 2020 00:18
@nisdas nisdas mentioned this pull request Dec 12, 2020
Closed
@rkapka rkapka mentioned this pull request Dec 16, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@prestonvanloon prestonvanloon prestonvanloon approved these changes

@rauljordan rauljordan rauljordan left review comments

@shayzluf shayzluf Awaiting requested review from shayzluf

@0xKiwi 0xKiwi Awaiting requested review from 0xKiwi

Assignees
No one assigned
Labels
Ready For Review A pull request ready for code review
Projects
None yet
Milestone
v1.0.4
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@rkapka @rauljordan @prestonvanloon