Domain owner + PCA + Policy Log (#3)

* first

* change name

* update_pca_policyLog

* new Policy Log; Refactoring will be done in monday

* Interaction between PCA and Policy log

* Interaction between PCA and Policy log

* Update README.md

* remove executables

* clean test files

* refactor

* refactored version

* add some certs

* clean up

* redesign return structure

* Update README.md

* update images

* modifies according to suggestions

* modifies according to suggestions

* Some instructions in README

* Update README.md

* clean exec and test files

* clean up

* change to lower cases

* delete pkg

* readd pkg

* fix go.mod issue

* use relative path

* fix small bugs

* final clean up

* Update README.md

* Update README.md

* remove unwanted files

* modify according to feedback

* remove test data

* clean up

* update readme

* go fmt ./...

* go mod tidy

* move api documentation to docs

* rename docs to doc

* remove spurious file

* start using stretchr/testify in our unit tests

* simplify SPT definition and Equal operation

* simplify NewPCA

* Add Makefile.

Remove opaque scripts/* and replace with makefile rules.
Binary files will go to bin/
Temporary file created in structure_test lives in a temporary dir and
it is deleted before finishing the test (under normal conditions).

* update .gitignore

* simplify policylog/server/logsigner/config and its test

* added two TODOs a the future fix

* remove another unnecessary testdata

* modification according to feedback

* modify make file

* add config file

* unit test for verifier

* minimize log server code

* more comments; fix missing err handling

* map server components; more comments

* fix small bugs

* batched smt

* batched smt

* map server interface

* use newer lib

* fix bug; deleted nodes will be removed from db

* fix db leak

* start implementing map server

* go mod tidy

* clean up; more comments

* refactor for PR

* small bugs

* delete .DS_Store added by mistake

* fix import files

* fix go.mod

* fix directory structure in README

* add make test target

* typo tire->trie

* check error in test: avoid panic

* no sudo to run the integration test

* remove strange targets from makefile

* fix doc string of public func; fix TODO string

* fmt.Errorf(,err with %w not %s

* rename file with typo

* fix makefile after removing one target

* refactor according to PR

* modify scripts

* add start mysql.server

* log picker

* go mod tidy

* use the same error

* fix small bugs in domain.go

* stress test; more complete tests; larger batch writes size;

* DONEgit add .! DO NOT read the code(messy), I will refactor tomorrow; Add PC and PC related funcs

* basically done; I will refactor tomorrow

* small change

* more comments

Co-authored-by: Juan A. Garcia Pardo <[email protected]>

Author: xuyongzhe-ncsu

.gitignore

@@ -1,15 +1,8 @@
 # Binaries for programs and plugins
-*.exe
-*.exe~
-*.dll
-*.so
-*.dylib
+bin/*
 
 # Test binary, built with `go test -c`
 *.test
 
 # Output of the go coverage tool, specifically when used with LiteIDE
 *.out
-
-# Dependency directories (remove the comment below to include it)
-# vendor/

Makefile

@@ -0,0 +1,55 @@
+.PHONY: all clean test policy_log
+
+all: build_policy_log build_integration_test build_benchmark
+
+clean:
+	@rm -f bin/*
+
+test:
+	@go test ./...
+
+build_policy_log:
+	@go build -o bin/logserver_exec cmd/logserver/logserver_exec.go
+	@go build -o bin/logsigner_exec cmd/logsigner/logsigner_exec.go
+
+setup_db: start_db create_smt_database create_log_database create_tables
+
+start_db:
+	@mysql.server start
+
+create_smt_database:
+	@mysql -u root -e "CREATE SCHEMA IF NOT EXISTS \`map\`;"
+
+create_tables:
+	@mysql -u root -e "CREATE TABLE IF NOT EXISTS \`map\`.\`cacheStore\` (\`key\` VARCHAR(64) NOT NULL,\`value\` VARCHAR(2048) NOT NULL, PRIMARY KEY (\`key\`));"
+	@mysql -u root -e "CREATE TABLE IF NOT EXISTS \`map\`.\`deleteTest\` (\`key\` VARCHAR(64) NOT NULL,\`value\` VARCHAR(2048) NOT NULL, PRIMARY KEY (\`key\`));"
+	@mysql -u root -e "CREATE TABLE IF NOT EXISTS \`map\`.\`domainEntries\` (\`key\` VARCHAR(64) NOT NULL,\`value\` LONGTEXT NOT NULL, PRIMARY KEY (\`key\`));"
+	@mysql -u root -e "CREATE TABLE IF NOT EXISTS \`map\`.\`updatedDomains\` (\`domainHash\` VARCHAR(64) NOT NULL, PRIMARY KEY (\`domainHash\`));"
+
+create_log_database:
+	@./scripts/reset_db/resetdb.sh
+
+
+
+build_integration_test:
+	@go build -o ./bin/policylog_interaction  ./tests/intergration_tests/policylog_interaction
+	@go build -o ./bin/domainowner_pca_policlog_interaction  ./tests/intergration_tests/domainowner_pca_policlog_interaction
+	@go build -o ./bin/mapserver  ./tests/intergration_tests/mapserver
+	@go build -o ./bin/smt  ./tests/intergration_tests/smt
+	@go build -o ./bin/log_picker  ./tests/intergration_tests/log_picker
+
+drop_cacheTable:
+	@mysql -u root -e "DROP TABLE map.deleteTest;"
+
+run_integration_test:
+	@./scripts/integration_tests.sh
+
+build_benchmark:
+	@go build -o ./bin/log_benchmark  ./tests/benchmark/logserver_benchmark
+	@go build -o ./bin/smt_benchmark  ./tests/benchmark/smt_benchmark
+
+run_log_benchmark:
+	@./scripts/log_benchmark.sh
+
+run_smt_benchmark:
+	@./bin/smt_benchmark

README.md

@@ -1 +1,68 @@
-# fpki
+# FPKI
+
+## Features
+
+- Issuance and logging of RPC (Root Policy Certificate)
+- Issuance of SPT (Signed Policy Certificate) using RPC
+- Verification of RPC using SPT
+- Consistency verification of the log
+
+## Dir structure
+
+    .
+    ├── cert                                  # certificates for testing. Eg. cert for PCA
+    ├── cmd                                   # Executables. Log server and log signer
+    ├── config                                # Config file for PCA and policy log
+    ├── doc                                   # FPKI design
+    │   ├── images
+    │   └── performance_test_output           # Some results of the policy log performance
+    ├── pkg                                   # Packages of the project
+    ├── scripts                               # Scripts to clean and build the executables
+    └── tests                                 # Some intergration tests. Unit tests are in the individual pkg 
+    
+    
+ ## Overview
+ ![Alt text](doc/images/overview.png?raw=true"Overview")
+ 
+ The figure above illustrates the components so far. The domain owner sends RCSR to the PCA, and PCA signs the RCSR to generate an RPC. Then the PCA sends the RPC to the policy log to get an SPT. The log verifier will verify the SPT and the consistency between the old tree head and the newest tree head.
+ 
+ ### Policy log
+ Trillian is used in the policy log.
+
+ The policy log is the most complex component so far. It consists of four sub-components:
+ - **(Log server)** Log server is responsible for receiving and sending responses. However, it does not generate proof of inclusion. It is similar to a user interface, which handles the RPC request and distributes the result.
+ - **(Log signer)** Log signer is responsible for adding the new leaves, generating the new tree head, and the proof of inclusion for every added leaf. 
+ - **(Log client)** Log client is responsible for sending the new leaves to the log server and retrieving information from the log server.
+ - **(Admin client)** Admin client is responsible for managing trees in the log server. For example, create a new tree or delete an existing tree.
+ 
+Within the policy log, the log client and admin client only communicate with the log server via grpc. Log signer only communicates with the log server, and the communication is internal, so we don't have access to it. For other components outside the policy log, they can only have access to the log client to add leaves of fetch proof of inclusion. Admin client should only be accessed internally.
+
+## How to run the integration tests
+There are two integration tests which require the setup of Trillian server.
+
+Download trillian and setup database (more information on https://github.com/google/trillian#mysql-setup)
+```
+git clone https://github.com/google/trillian.git
+cd scripts
+./resetdb.sh
+```
+Download the FPKI
+
+Conpile the executable
+ ```
+   make
+   make test_folders
+ ```
+ 
+ Open two terminals, run "cmd/logserver_exec" and "cmd/logsigner_exec"
+ 
+ Run the tests:
+  ```
+   cd fpki
+   go test ./...
+ ```
+ 
+
+
+ 
+ 

bin/.keepme

@@ -0,0 +1,9 @@
+package main
+
+import (
+	"github.com/netsec-ethz/fpki/pkg/policylog/server/logserver"
+)
+
+func main() {
+	logserver.CreateLogServer("./config/logserver_config.json")
+}

cmd/logserver/logserver_exec.go

@@ -0,0 +1,9 @@
+package main
+
+import (
+	"github.com/netsec-ethz/fpki/pkg/policylog/server/logsigner"
+)
+
+func main() {
+	logsigner.CreateLogSigner("./config/logsigner_config.json")
+}

cmd/logsigner/logsigner_exec.go

@@ -0,0 +1,10 @@
+{
+ "rpcMaxWaitingTimeInSec": 10,
+ "hashStrategy": "RFC6962_SHA256",
+ "displayName": "policy_log",
+ "description": "tree for policy log",
+ "maxRootDuration": 10,
+ "maxReceiveMessageSize": 10000,
+ "logAddress": "localhost:8090",
+ "OutPutPath": "./file_exchange/policylog"
+}

config/adminclient_config.json

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

config/certs/server_key.pem

@@ -0,0 +1,8 @@
+{
+ "TreeId": 55555555555,
+ "RPCAddress": "localhost:8090",
+ "MaxReceiveMessageSize": 10000,
+ "OutPutPath": "./file_exchange/policylog",
+ "RPCPath": "./file_exchange/pcaoutput/rpc",
+ "NumOfWorker": 15
+}

config/logclient_config.json

@@ -0,0 +1,12 @@
+{
+ "RpcEndpoint": "localhost:8090",
+ "HttpEndpoint": "localhost:8091",
+ "HealthzTimeout": 5,
+ "EtcdService": "trillian-logserver",
+ "EtcdHTTPService": "trillian-logserver-http",
+ "QuotaSystem": "mysql",
+ "StorageSystem": "mysql",
+ "TreeGCEnabled": true,
+ "TreeDeleteThresholdInHour": 168,
+ "TreeDeleteMinRunIntervalInHour": 4
+}

config/logserver_config.json

@@ -0,0 +1,23 @@
+{
+ "RpcEndpoint": "localhost:8092",
+ "HttpEndpoint": "localhost:8093",
+ "TlsCertFile": "",
+ "TlsKeyFile": "",
+ "HealthzTimeoutInSec": 5,
+ "QuotaSystem": "mysql",
+ "StorageSystem": "mysql",
+ "ConfigFile": "",
+ "SequencerIntervalFlagInMillSec": 100,
+ "BatchSizeFlag": 1000,
+ "NumSeqFlag": 10,
+ "SequencerGuardWindowFlag": 0,
+ "ForceMaster": true,
+ "EtcdHTTPService": "trillian-logsigner-http",
+ "LockDir": "/test/multimaster",
+ "QuotaIncreaseFactor": 0,
+ "PreElectionPauseInSec": 1,
+ "MasterHoldIntervalInSec": 60,
+ "MasterHoldJitterInSec": 120,
+ "CpuProfile": "",
+ "MemProfile": ""
+}

config/logsigner_config.json

@@ -0,0 +1,6 @@
+{
+ "CAName": "pca",
+ "KeyPath": "./config/certs/server_key.pem",
+ "OutputPath": "./file_exchange/pcaoutput",
+ "PolicyLogOutputPath": "./file_exchange/policylog"
+}

config/pca_config.json

@@ -0,0 +1,16 @@
+For 10000 leaves
+
+queue leaves succeed!
+8.434761293s
+fetch proofs succeed!
+8.656676005s
+
+AVG: 0.8 ms for adding, 0.8 ms for querying the proof
+
+
+Every second 500          leaves
+Every minute 30000        leaves
+Every hour   1.8 million  leaves
+
+
+There are 367 millions domains in total(does not change every year, even declines a little last year). Assume update frequency is 4 per year. Daily updates will be 8 millions(one RPC, one PC). It takes 4 hours to append and retrieve the daily updates. Even my lap top can do the job for all the domains -:)