Kyle Isom
d87b4b4042
- New internal/vault package: thread-safe Vault struct with seal/unseal state, key material zeroing, and key derivation - REST: POST /v1/vault/unseal, POST /v1/vault/seal, GET /v1/vault/status; health returns sealed status - UI: /unseal page with passphrase form, redirect when sealed - gRPC: sealedInterceptor rejects RPCs when sealed - Middleware: RequireUnsealed blocks all routes except exempt paths; RequireAuth reads pubkey from vault at request time - Startup: server starts sealed when passphrase unavailable - All servers share single *vault.Vault by pointer - CSRF manager derives key lazily from vault Security: Key material is zeroed on seal. Sealed middleware runs before auth. Handlers fail closed if vault becomes sealed mid-request. Unseal endpoint is rate-limited (3/s burst 5). No CSRF on unseal page (no session to protect; chicken-and-egg with master key). Passphrase never logged. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
150 lines
3.3 KiB
Go
150 lines
3.3 KiB
Go
package vault
|
|
|
|
import (
|
|
"crypto/ed25519"
|
|
"crypto/rand"
|
|
"sync"
|
|
"testing"
|
|
)
|
|
|
|
func generateTestKeys(t *testing.T) ([]byte, ed25519.PrivateKey, ed25519.PublicKey) {
|
|
t.Helper()
|
|
pub, priv, err := ed25519.GenerateKey(rand.Reader)
|
|
if err != nil {
|
|
t.Fatalf("generate key: %v", err)
|
|
}
|
|
mk := make([]byte, 32)
|
|
if _, err := rand.Read(mk); err != nil {
|
|
t.Fatalf("generate master key: %v", err)
|
|
}
|
|
return mk, priv, pub
|
|
}
|
|
|
|
func TestNewSealed(t *testing.T) {
|
|
v := NewSealed()
|
|
if !v.IsSealed() {
|
|
t.Fatal("NewSealed() should be sealed")
|
|
}
|
|
if _, err := v.MasterKey(); err != ErrSealed {
|
|
t.Fatalf("MasterKey() error = %v, want ErrSealed", err)
|
|
}
|
|
if _, err := v.PrivKey(); err != ErrSealed {
|
|
t.Fatalf("PrivKey() error = %v, want ErrSealed", err)
|
|
}
|
|
if _, err := v.PubKey(); err != ErrSealed {
|
|
t.Fatalf("PubKey() error = %v, want ErrSealed", err)
|
|
}
|
|
}
|
|
|
|
func TestNewUnsealed(t *testing.T) {
|
|
mk, priv, pub := generateTestKeys(t)
|
|
v := NewUnsealed(mk, priv, pub)
|
|
if v.IsSealed() {
|
|
t.Fatal("NewUnsealed() should not be sealed")
|
|
}
|
|
gotMK, err := v.MasterKey()
|
|
if err != nil {
|
|
t.Fatalf("MasterKey() error = %v", err)
|
|
}
|
|
if len(gotMK) != 32 {
|
|
t.Fatalf("MasterKey() len = %d, want 32", len(gotMK))
|
|
}
|
|
}
|
|
|
|
func TestUnsealFromSealed(t *testing.T) {
|
|
mk, priv, pub := generateTestKeys(t)
|
|
v := NewSealed()
|
|
if err := v.Unseal(mk, priv, pub); err != nil {
|
|
t.Fatalf("Unseal() error = %v", err)
|
|
}
|
|
if v.IsSealed() {
|
|
t.Fatal("should be unsealed after Unseal()")
|
|
}
|
|
gotPriv, err := v.PrivKey()
|
|
if err != nil {
|
|
t.Fatalf("PrivKey() error = %v", err)
|
|
}
|
|
if !priv.Equal(gotPriv) {
|
|
t.Fatal("PrivKey() mismatch")
|
|
}
|
|
}
|
|
|
|
func TestUnsealAlreadyUnsealed(t *testing.T) {
|
|
mk, priv, pub := generateTestKeys(t)
|
|
v := NewUnsealed(mk, priv, pub)
|
|
if err := v.Unseal(mk, priv, pub); err == nil {
|
|
t.Fatal("Unseal() on unsealed vault should return error")
|
|
}
|
|
}
|
|
|
|
func TestSealZeroesKeys(t *testing.T) {
|
|
mk, priv, pub := generateTestKeys(t)
|
|
// Keep references to the backing arrays so we can verify zeroing.
|
|
mkRef := mk
|
|
privRef := priv
|
|
v := NewUnsealed(mk, priv, pub)
|
|
v.Seal()
|
|
|
|
if !v.IsSealed() {
|
|
t.Fatal("should be sealed after Seal()")
|
|
}
|
|
// Verify the original backing arrays were zeroed.
|
|
for i, b := range mkRef {
|
|
if b != 0 {
|
|
t.Fatalf("masterKey[%d] = %d, want 0", i, b)
|
|
}
|
|
}
|
|
for i, b := range privRef {
|
|
if b != 0 {
|
|
t.Fatalf("privKey[%d] = %d, want 0", i, b)
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestSealUnsealCycle(t *testing.T) {
|
|
mk, priv, pub := generateTestKeys(t)
|
|
v := NewUnsealed(mk, priv, pub)
|
|
v.Seal()
|
|
|
|
mk2, priv2, pub2 := generateTestKeys(t)
|
|
if err := v.Unseal(mk2, priv2, pub2); err != nil {
|
|
t.Fatalf("Unseal() after Seal() error = %v", err)
|
|
}
|
|
gotPub, err := v.PubKey()
|
|
if err != nil {
|
|
t.Fatalf("PubKey() error = %v", err)
|
|
}
|
|
if !pub2.Equal(gotPub) {
|
|
t.Fatal("PubKey() mismatch after re-unseal")
|
|
}
|
|
}
|
|
|
|
func TestConcurrentAccess(t *testing.T) {
|
|
mk, priv, pub := generateTestKeys(t)
|
|
v := NewUnsealed(mk, priv, pub)
|
|
|
|
var wg sync.WaitGroup
|
|
// Concurrent readers.
|
|
for range 50 {
|
|
wg.Add(1)
|
|
go func() {
|
|
defer wg.Done()
|
|
_ = v.IsSealed()
|
|
_, _ = v.MasterKey()
|
|
_, _ = v.PrivKey()
|
|
_, _ = v.PubKey()
|
|
}()
|
|
}
|
|
// Concurrent seal/unseal cycles.
|
|
for range 10 {
|
|
wg.Add(1)
|
|
go func() {
|
|
defer wg.Done()
|
|
v.Seal()
|
|
mk2, priv2, pub2 := generateTestKeys(t)
|
|
_ = v.Unseal(mk2, priv2, pub2)
|
|
}()
|
|
}
|
|
wg.Wait()
|
|
}
|