Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue 649 node validation #741

Merged
merged 32 commits into from
May 10, 2019
Merged

Issue 649 node validation #741

merged 32 commits into from
May 10, 2019

Conversation

melowe
Copy link
Contributor

@melowe melowe commented May 9, 2019

  • Validate recipients (that url) in party info message that belong to caller/sender that it has at least one valid key.
  • Do not validate non sender recipients as they will be validated during their p2p dialogue.
  • Update only the sender's recipients into local party info.

melowe and others added 29 commits April 30, 2019 16:40
@melowe
Commit current code to remote for review
a35bf7f
@melowe
Node keys are validated by sending them an encrypted string that
89b5076 
the sending node unencrypt.
@melowe
Readd workaround for strange coverage issue with lambdas
bae320c
@melowe
Merge branch 'master' into issue_649_node_validation
ef2f14f
@melowe
Allow for multiple keys for a given url.
1f35dac 
Treat calling node not providing any valid keys as a security issue. 
Filter all recipients by valid key.
@melowe
Remove unessesary check on key - url pairs on storage all certs or
bf2d77e 
prefiltered before this stage
@melowe
Lookup first key not default.
386aab7
@melowe
Only validate certs for the node that is sending the data.
b7e641b
@prd-fox
Don't load resource file, instead use a stream for the bytes
f99760d 
Add extra debug info if needed
@melowe
Revert "Only validate certs for the node that is sending the data. "
7ffce26 
This reverts commit b7e641b.
@melowe
Revert "Remove unessesary check on key - url pairs on storage all cer…
f0b8703 
…ts or prefiltered before this stage "

This reverts commit bf2d77e.
@prd-fox
Don't rely on library to read the DDL
9346898
@prd-fox
Remove unused import
6650f71
@melowe
Merge branch 'master' into issue_649_node_validation
904c4d2
@melowe
Merge origin/issue_649_node_validation into issue_649_node_validation
13351ba
@melowe
Merge branch 'master' into issue_649_node_validation
1133f8d
@melowe
Merge origin/issue_649_node_validation into issue_649_node_validation
86ca88a
@melowe
Allow recipient url updates as we validate keys against the host before
7835b07 
 allowing them to connect.
@melowe
Add warning level message . Only reveal that a key has failed validation
1f592a7 
for the url and that the recipient will be ignored.
@melowe
Merge branch 'master' into issue_649_node_validation
bf2ee49
@melowe
Merge branch 'master' into issue_649_node_validation
bdd6e3b
@melowe
Merge origin/fix-resource-reading into issue_649_node_validation
1e7c11b
@melowe
Merge origin/issue_649_node_validation into issue_649_node_validation
c5cd35f
@melowe @prd-fox
Update jaxrs-service/src/main/java/com/quorum/tessera/p2p/PartyInfoRe…
4d57fa0 
…source.java

Co-Authored-By: Peter Fox <[email protected]>
@melowe
Merge branch 'master' into issue_649_node_validation
b95d186
@melowe
Merge origin/issue_649_node_validation into issue_649_node_validation
451129e
@melowe
Assume that any error during key validation renders the key invalid.
98572a7 
Add prefix to test suite annotations and executioncontext to allow
for custom namespaces when generating files and loggers. Add inital
tests for p2p changes to ensure interactions with 4 test nodes are
expected.
@melowe
Fix coding problem where url isn't geting read from recipient
1ce4527
@melowe
Only validate originators keys/recipients. Assume that party list wil…
e3fbe4b 
…l contain urls in the recipient list and therefore will be validated during their p2p dialogue.
@melowe melowe requested a review from chris-j-h as a code owner May 9, 2019 17:29
@codecov-io
Copy link

codecov-io commented May 9, 2019
edited
Loading

Codecov Report

Merging #741 into master will increase coverage by <.01%.
The diff coverage is 100%.

Impacted file tree graph

@@             Coverage Diff              @@
##             master     #741      +/-   ##
============================================
+ Coverage     99.44%   99.45%   +<.01%     
- Complexity     1886     1888       +2     
============================================
  Files           285      285              
  Lines          5620     5639      +19     
  Branches        284      282       -2     
============================================
+ Hits           5589     5608      +19     
  Misses            5        5              
  Partials         26       26
Impacted Files Coverage Δ Complexity Δ
...tessera/api/exception/SecurityExceptionMapper.java 100% <100%> (ø) 3 <3> (?)
...n/java/com/quorum/tessera/node/PartyInfoStore.java 100% <100%> (ø) 5 <2> (ø) ⬇️
...java/com/quorum/tessera/p2p/PartyInfoResource.java 100% <100%> (ø) 15 <7> (+7) ⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 907cbe3...9371959. Read the comment docs.

@Krish1979 Krish1979 merged commit 3815b1d into master May 10, 2019
@Krish1979 Krish1979 deleted the issue_649_node_validation branch May 10, 2019 14:55
@prd-fox prd-fox added 0.10.0 feature User features labels May 16, 2019
@prd-fox
Copy link
Contributor

prd-fox commented May 16, 2019

Linked issue: #649

@prd-fox prd-fox mentioned this pull request Jul 26, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@prd-fox prd-fox prd-fox approved these changes

@namtruong namtruong namtruong approved these changes

@chris-j-h chris-j-h Awaiting requested review from chris-j-h chris-j-h is a code owner

@nicolae-leonte-go nicolae-leonte-go Awaiting requested review from nicolae-leonte-go

@SatpalSandhu61 SatpalSandhu61 Awaiting requested review from SatpalSandhu61

Assignees
No one assigned
Labels
0.10.0 feature User features
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@melowe @codecov-io @prd-fox @namtruong @Krish1979