Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feature] add a tampering proxy for integration tests #2316

Open
1 of 2 tasks
Rorical opened this issue Dec 23, 2024 · 1 comment
Open
1 of 2 tasks

[Feature] add a tampering proxy for integration tests #2316

Rorical opened this issue Dec 23, 2024 · 1 comment
Labels
enhancement New feature or request no-stale-bot OIDC OpenID Connect related issues

Comments

@Rorical
Copy link
Contributor

Rorical commented Dec 23, 2024

Use case

When I was trying to implement the test for #1812 which include an simulated MiTM attack to check if the verifer for oidc challenge code is working, I find it requires a lot of code specific to that test.

Specifically, I need to add the following functions:

func (s *AuthOIDCScenario) runTailscaleUpWithModifier(
	userStr string,
	loginServer string,
	httpClientModifier func(*http.Client),
) error { ... }

func (s *AuthOIDCScenario) CreateHeadscaleEnvWithHTTPModifier(
	users map[string]int,
	httpModifier func(*http.Client),
	opts ...hsic.Option,
) error { ... }

where the httpModifier function is used to modify the http roundtrips between headscale and oidc server.

In later discussion, @kradalby suggest to have a tampering proxy that is able to modify the requests: #1812 (comment)

Unless I am really missing something, I think what bothers me is that it isnt the tailscale client that is doing the request, but a httpClient.Do(req). I think the "correct" way to do this is to have the request go through a proxy and that could be passed as an option to hsic or tsic. where you can give it a func that will modify the requests.
That way we can have unmodified (and only one version of) runTailscaleUp, and have failing and passing nodes in the same test, some just get tampered with and some dont, compared to a dedicated test for each.
This is a lot of code that is very specific to one test, and a proxy in between headscale and tailscale for tampering would be quite useful.

I think adding such feature will be greatly helpful for future improvements, such as more attack simulation tests.

Description

We can have a tampering proxy that is able to modify the request among many parties in the integration tests:

  1. tailscale client
  2. headscale instance
  3. user operations (browser)
  4. thirdparty service providers (oidc server)

Therefore we can support more powerful integration test

Contribution

  • I can write the design doc for this feature
  • I can contribute this feature

How can it be implemented?

Having a Proxy set up and pass all request through it.
@Rorical Rorical added the enhancement New feature or request label Dec 23, 2024
@Rorical
Copy link
Contributor Author

Rorical commented Dec 23, 2024

#2315 This draft PR illustrate how the MiTM test is working before for OIDC Verifer feature in #2314 .

@kradalby kradalby added OIDC OpenID Connect related issues no-stale-bot labels Jan 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request no-stale-bot OIDC OpenID Connect related issues
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kradalby @Rorical