From 8f26c5fa8f9328e4a0b2c550380b888d9ce641e3 Mon Sep 17 00:00:00 2001 From: Hannes Mehnert Date: Mon, 20 Nov 2023 15:05:18 +0100 Subject: [PATCH] add milestone 2 blog article --- articles/miragevpn-ncp.md | 50 +++++++++++++++++++++++++++++++++++++++ 1 file changed, 50 insertions(+) create mode 100644 articles/miragevpn-ncp.md diff --git a/articles/miragevpn-ncp.md b/articles/miragevpn-ncp.md new file mode 100644 index 0000000..3fd3c73 --- /dev/null +++ b/articles/miragevpn-ncp.md @@ -0,0 +1,50 @@ +--- +date: 2023-11-20 +article.title: MirageVPN updated (AEAD, NCP) +article.description: + How we resurrected MirageVPN from its bitrot state +tags: + - OCaml + - MirageOS + - VPN + - security +author: + name: Hannes Mehnert + email: hannes@mehnert.org + link: https://hannes.robur.coop +--- + +## Updating MirageVPN + +As announced [earlier this month](https://blog.robur.coop/articles/miragevpn.html), we've been working hard over the last months on MirageVPN (initially developed in 2019, targeting OpenVPN™ 2.4.7, now 2.6.6). We managed to receive funding from [NGI Assure](https://www.assure.ngi.eu/) call (via [NLnet](https://nlnet.nl)). We've made over 250 commits with more than 10k lines added, and 18k lines removed. We closed nearly all old issues, and opened 100 fresh ones, of which we already closed more than half of them. :D + +### Actual bugs fixed (that were leading to non-working MirageVPN applications) + +In more detail, we had a specific configuration running over all the years, namely UDP mode with static keys (no TLS handshake, etc.). There were several issues (bitrot) that we encountered and solved along the path, amongst others: +- related to the [static-key mode and TCP/IP](https://github.com/robur-coop/miragevpn/pull/111), +- the [order of ACK between the client and the server](https://github.com/robur-coop/miragevpn/pull/98), +- [outgoing TLS packets](https://github.com/robur-coop/miragevpn/pull/110). + +To avoid any future breakage while revising the code (cleaning it up, extending it), we are now building several unikernels as part of our CI system. We also have setup OpenVPN™ servers with various configurations that we periodically test with our new code (we'll also work on further automation thereof). + +### New features: AEAD ciphers, supporting more configuration primitives + +We added various configuration primitives, amongst them configuratble tls ciphersuites, minimal and maximal tls version to use, [tls-crypt-v2](https://blog.robur.coop/articles/miragevpn.html), verify-x509-name, cipher, remote-random, ... + +From a cryptographic point of view, we are now supporting more [authentication hashes](https://github.com/robur-coop/miragevpn/pull/108) via the configuration directive `auth`, namely the SHA2 family - previously, only SHA1 was supported, [AEAD ciphers](https://github.com/robur-coop/miragevpn/pull/125) (AES-128-GCM, AES-256-GCM, CHACHA20-POLY1305) - previously only AES-256-CBC was supported. + +### NCP - Negotiation of cryptographic parameters + +OpenVPN™ has a way to negotiate cryptographic parameters, instead of hardcoding them in the configuration. The client can propose its supported ciphers, and other features (MTU, directly request a push message for IP configuration, use TLS exporter secret instead of the hand-crafted (TLS 1.0 based PRF), ...) once the TLS handshake has been completed. + +We are now supporting this negotiation protocol, and have been working on the different extensions that are useful to us. Namely, transmitting the [supported ciphers](https://github.com/robur-coop/miragevpn/pull/121), [request push](https://github.com/robur-coop/miragevpn/pull/129) (which deletes an entire round-trip), [TLS-exporter](https://github.com/robur-coop/miragevpn/pull/163). This will also be part of the [protocol specification](https://git.robur.coop/robur/openvpn-spec) that we're working on while finishing our implementation. + +### Cleanups and refactorings + +We also took some time to cleanup our code base, removing `Lwt.fail` (which doesn't produce proper backtraces), using lzo from the decompress package (since that code has been upstreamed a while ago), remove unneeded dependencies (rresult, astring), avoiding `assert false` in pattern matches by improving types, improve the log output (include a timestamp, show log source, use colors). + +### Future + +There is still some work that we want to do, namely a QubesOS client implementation, an operators manual, extending our specification, resurrecting and adapting the server implementation, supporting more NCP features (if appropriate), etc. So stay tuned, we'll also provide reproducible binaries once we're ready. + +Don't hesitate to reach out to us on [GitHub](https://github.com/robur-coop/miragevpn/issues), [by mail](https://robur.coop/Contact) or me personally [on Mastodon](https://mastodon.social/@hannesm) if you're stuck.