wip: mTLS

Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>
2024-06-10 15:57:25 +03:00 · 2024-06-10 15:57:25 +03:00 · 70e10c509b
commit 70e10c509b
parent 2b6122192a
29 changed files with 618 additions and 8 deletions
--- a/.env
+++ b/.env
@ -12,12 +12,12 @@ NEOGO_VERSION=0.104.0
 NEOGO_IMAGE=nspccdev/neo-go

 # FrostFS InnerRing nodes
-IR_VERSION=0.38.5
-IR_IMAGE=truecloudlab/frostfs-ir
+IR_VERSION=0.40.0-7-gc1cdd5d4
+IR_IMAGE=truecloudlab/frostfs-dirty-ir

 # FrostFS Storage nodes
-NODE_VERSION=0.38.5
-NODE_IMAGE=truecloudlab/frostfs-storage
+NODE_VERSION=0.40.0-7-gc1cdd5d4
+NODE_IMAGE=truecloudlab/frostfs-dirty-storage

 # NATS Server
 NATS_VERSION=2.7.2
@ -41,12 +41,12 @@ LOCODE_DB_URL=https://git.frostfs.info/attachments/a2e8def7-52b6-49f1-89cd-a0567

 # FrostFS CLI binary
 FROSTFS_CLI_URL=https://http.t5.fs.neo.org/7sm9csjtRLpr4c9QD55q9JJM73v79ohuAhTzP4fYRHFz/BtA6zWLtoDuDnzxSNkKPjyN5hGuSZFxGuJD1gh8kBwkP
-#FROSTFS_CLI_PATH=/path/to/frostfs-cli-binary
+FROSTFS_CLI_PATH=/repo/frostfs/node/bin/frostfs-cli

 # FrostFS ADM tool binary
 FROSTFS_ADM_VERSION=498f9955ea
 FROSTFS_ADM_URL=https://http.t5.fs.neo.org/7sm9csjtRLpr4c9QD55q9JJM73v79ohuAhTzP4fYRHFz/CjV4S6ENzo2FLK4KxXZHHNW4veR1ATtynGY6Mc1xQ6RB
-#FROSTFS_ADM_PATH=/path/to/frostfs-adm-binary
+FROSTFS_ADM_PATH=/repo/frostfs/node/bin/frostfs-adm

 # Compiled FrostFS Smart Contracts
 FROSTFS_CONTRACTS_VERSION=694daebb19
--- a/mtls/CA.cnf
+++ b/mtls/CA.cnf
@ -0,0 +1,12 @@
+[ req ]
+prompt = no
+distinguished_name = req_distinguished_name
+
+[ req_distinguished_name ]
+C = US
+ST = Localzone
+L = localhost
+O = Neo Go Testing Certificate Authority
+OU = Develop
+CN = localdomain
+emailAddress = root@localhost.localdomain
--- a/mtls/CA1_cert.pem
+++ b/mtls/CA1_cert.pem
@ -0,0 +1,25 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
--- a/mtls/CA1_cert.srl
+++ b/mtls/CA1_cert.srl
@ -0,0 +1 @@
+28484A1BD594A9F1C28B5F1E4D45010D923E9D17
--- a/mtls/CA1_key.pem
+++ b/mtls/CA1_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
--- a/mtls/CA2_cert.pem
+++ b/mtls/CA2_cert.pem
@ -0,0 +1,25 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
--- a/mtls/CA2_cert.srl
+++ b/mtls/CA2_cert.srl
@ -0,0 +1 @@
+2A340296D6CDD0E6A8F678126AC75B1DA2019ACE
--- a/mtls/CA2_key.pem
+++ b/mtls/CA2_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
--- a/mtls/generate
+++ b/mtls/generate
@ -0,0 +1,38 @@
+#!/bin/bash
+
+outdir="${1:-./out}"
+
+genca() {
+    local name="$1"
+
+    echo "Generating $name ..."
+    openssl req -nodes -new -x509 \
+        -keyout "${name}_key.pem" \
+        -out "${name}_cert.pem" \
+        -addext basicConstraints=CA:TRUE \
+        -days 1825 -config CA.cnf
+}
+
+gencert() {
+    local ca="$1"
+    local i="$2"
+
+    openssl req -sha256 -nodes -newkey rsa:2048 \
+        -keyout "peer${ca}_${i}_key.pem" \
+        -out "peer${i}.csr" -config "peer${i}.cnf"
+    openssl x509 -req -days 398 -in "peer${i}.csr" \
+        -CA "${ca}_cert.pem" \
+        -CAkey "${ca}_key.pem" \
+        -CAcreateserial -out "peer${ca}_${i}_cert.pem" \
+        -extensions req_ext \
+        -extfile "peer${i}.cnf"
+    rm "peer${i}.csr"
+}
+
+genca CA1
+genca CA2
+gencert CA1 X
+gencert CA2 1
+gencert CA2 2
+gencert CA2 3
+gencert CA2 4
--- a/mtls/peer1.cnf
+++ b/mtls/peer1.cnf
@ -0,0 +1,23 @@
+[req]
+default_bits  = 2048
+distinguished_name = req_distinguished_name
+req_extensions = req_ext
+x509_extensions = v3_req
+prompt = no
+
+[req_distinguished_name]
+countryName = US
+stateOrProvinceName = Localzone
+localityName = Localhost
+organizationName = Certificate signed by my CA
+commonName = peer1.localdomain
+
+[req_ext]
+subjectAltName = @alt_names
+
+[v3_req]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = node_one
+IP.1 = 192.168.130.71
--- a/mtls/peer2.cnf
+++ b/mtls/peer2.cnf
@ -0,0 +1,23 @@
+[req]
+default_bits  = 2048
+distinguished_name = req_distinguished_name
+req_extensions = req_ext
+x509_extensions = v3_req
+prompt = no
+
+[req_distinguished_name]
+countryName = US
+stateOrProvinceName = Localzone
+localityName = Localhost
+organizationName = Certificate signed by my CA
+commonName = peer2.localdomain
+
+[req_ext]
+subjectAltName = @alt_names
+
+[v3_req]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = node_two
+IP.1 = 192.168.130.72
--- a/mtls/peer3.cnf
+++ b/mtls/peer3.cnf
@ -0,0 +1,23 @@
+[req]
+default_bits  = 2048
+distinguished_name = req_distinguished_name
+req_extensions = req_ext
+x509_extensions = v3_req
+prompt = no
+
+[req_distinguished_name]
+countryName = US
+stateOrProvinceName = Localzone
+localityName = Localhost
+organizationName = Certificate signed by my CA
+commonName = peer3.localdomain
+
+[req_ext]
+subjectAltName = @alt_names
+
+[v3_req]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = node_three
+IP.1 = 192.168.130.73
--- a/mtls/peer4.cnf
+++ b/mtls/peer4.cnf
@ -0,0 +1,23 @@
+[req]
+default_bits  = 2048
+distinguished_name = req_distinguished_name
+req_extensions = req_ext
+x509_extensions = v3_req
+prompt = no
+
+[req_distinguished_name]
+countryName = US
+stateOrProvinceName = Localzone
+localityName = Localhost
+organizationName = Certificate signed by my CA
+commonName = peer4.localdomain
+
+[req_ext]
+subjectAltName = @alt_names
+
+[v3_req]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = node_four
+IP.1 = 192.168.130.74
--- a/mtls/peerCA1_1_cert.pem
+++ b/mtls/peerCA1_1_cert.pem
@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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==
+-----END CERTIFICATE-----
--- a/mtls/peerCA1_1_key.pem
+++ b/mtls/peerCA1_1_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
--- a/mtls/peerCA1_X_cert.pem
+++ b/mtls/peerCA1_X_cert.pem
@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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==
+-----END CERTIFICATE-----
--- a/mtls/peerCA1_X_key.pem
+++ b/mtls/peerCA1_X_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----
+MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQCgXdKU6buWmlZe
+PSXfcZQEUp6oxynIKlWTRuoP9NriplfiAcJgpOF39kgjbX4A4qSnkmzo8IgE6kKS
+ON/wE78Tl8Ge5f+ZOGM/5enhCPa357ZYC8xQZu41OzrC/h8WFjQG3MdbswJmU0mC
+iQPtmhfE94/0uAKKe1Y95Lw9tM55gCxknVm+NlfVYv8H4aywhCuYvBLPf01ET6dd
+dE27ngMxKrCtWlBOfIOLbdRykBC7aJ3AJaxvYDx+UniuOwKAKWENcJiNtFaFJXJs
+QETtVSh/TqbB5GhOyAMhVWJVQjy1ZtX5hJIIu14oP++oy+Pbw34CDberyxzN220e
+FQLUjo+/AgMBAAECggEAC0i+zhqqR/0hMa1k0lW4IBu+LUsiXgLYla3qP2gv1L32
+tiEAj/NaKCpMxi1oreBEzMPJZRSzxYDEYWyeGVMSYWsOxUMS2rG0jiT78YlDbwpf
+cs+Vt1yey2EZD+p4voGedJMpdgLhGtkmdYh1ncz3ejUfTI18JElsdpt3QXJNCxCE
+v+vTMRcSRTpPK9diuxIRQecMg5dtQaIvHfY3VexrHz17q4cokmkBsFdewEvWrrnO
+sLOyr0pgO2XYbjgLQECmLYDetSZVd+Ud1VWC2lsWWb+RBCefQjscXgKP063JH8U5
+ajbespa4yTMk2HNJiwguigWSom4ukVn+cnIYuoPxtQKBgQDWTP2DQqeftiIjo9e8
+w51WW9/mf72H8Tju5DZd+pGz1LxjnwCh9KMMU7EjMi0SJVjKyOYvon66T1bEJCyY
+Xp06Rf/E8dVgdH2ZgdoML/SCOQEXfS7F7fkv9TRvYojh1PUK0pQgeIfmIPTfPhoW
+lb6v01tN7hgCL9mASfpAk1E3fQKBgQC/kjGcFleL8c+ruWMy4IFygkM16Fa4v1fa
+BfpG5wFQ2eKiYSh2gC1XRzjXy9vue9URXMKsA90Q8uK71fHMkU0s56LG5SyP9pZg
+LT79tWoomfdcRF5mWTzRuOojezKNOWnC96BCaC4sni641tPGwr6wI2vnAb3Rct7E
+wE/DsSUg6wKBgDoysm5hPbCL//150276GNKJJOcuLcSrZ/DInVMsZ0FVNsw/NCbH
+jzgbynFqgP76kYCQyqKJGK10OnYN9OZ0W3Kl6+4KVw5Y1HtJ3nOM2nQ7EubUIk2y
+cQfrKZBOTCo4cUu9IGkpEo8WyCmQbflQNXb+iT9Ct9ZwNDs42/OJjnbpAoGACxoX
+0enhjPSoilUmEI6+Mbqm1nrue6prFvF9vZopk1vtLGfhBm0LM6GnA6qGxl1azbTI
+e1uF9jN9PFF7v9Uz2cRaxJgHaxhpQo2ctutKiavSkABOUDQfuC+1MfUzysdm/6uG
+GBMdiexo3MFmaIBkuKR03mBVdcvoaRKUDM05T50CgYAciaSVQBBi1w3jnFsOGmV6
+OeGApLL5gn64tqvP5CorfrqrWksFsdpfBTBuzYoKmWqUdBFtv4kVKdalMyFAa/T6
+o6/rxApbavawj2AACda62K3S6vxHaeVoI0MM22LMVHyJyfM3GWV/KCSY5Rl6W5MM
+lX3X+o2/5zBwm06mjXYi1A==
+-----END PRIVATE KEY-----
--- a/mtls/peerCA2_1_cert.pem
+++ b/mtls/peerCA2_1_cert.pem
@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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==
+-----END CERTIFICATE-----
--- a/mtls/peerCA2_1_key.pem
+++ b/mtls/peerCA2_1_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----
+MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC8xcYfOImxhiUy
+irOfnmUmDo9NMLceMsxGj+t+hNkmYZWIRVk9j5ugot7+Wbdd+Ct5rtwezvzSW9eg
+XvcyI8hjfdhntl9IxKFCtWtr8Iwjp/bt76//SSnlb0HNp6Ap2IJ9MP758HQivLWQ
+Kn3Xu0ps4c+jE6LoFck//bg534NkMWqqsoYpZM5Vdhd2ZEr4i7BFsAW6gPDEr8P8
+wkydXYIsAEaHT4/bRUU/c7NyFcoYRUEfw+7/lxD/0mUZt+nE3EHgMpAP+QmVzhOn
+zOQ322muTAWkr758f01Lvsfm/hwPXJ1/9GjRc1Yx7iSrZ8zzRLHXXzSlR5036oLR
+MCJL5UYhAgMBAAECggEABHt57ZmN7XG9VhKkje/FjS6JBdpx0q0xzzzq6NVpnMdy
+G0SYSDjhFC9uqS5crZ+VreOllU0X0Ql+WHzAx/qnbxm/IHe1+GUED9cw21gghiOe
+hNftTCjC1N0vYqoUoigifkU1gx5L4UJG8zFX5rfRnj2+mV7ycV1vd3R3e72CrqEr
+4fg8JVR9Xj6Zg5A0/FWkFHbrWJu/Ds+BLYs7jYNW02/ajWI0f8T5jiL06vkZfRA/
+WdXupWnw95XZs+JAxqUbXWfEY2jMmeIb0supp4r0wk93zOsLoHEBC2Jizfh+Za0k
+bZkE7ebjgwvs9y5SGtFDr/9znB8UP96EMUy7LjuWtQKBgQDvS8LZMTQ6YjdDxnOK
+XFULeqCQ1dZMcxnwkuoXFs+1odKz8ybpnrPXMrwwkAv3E60NaZst6UBIebYbBLE3
+CUGsyQkbERNujgiPuzqHI5s81a94RDW32INEm9ageNfRMZV/tpkl9h/Fc6gM9bhi
+uPGU4K526+y3lL1d5zMAz48DRQKBgQDJ8yfR5BbVJ95oNBYz8tTAIjV7I9bPS6DE
+fibDMV9ozVmnh+9BUrDH+fX9qtF2NVMD+2/AO4MDueL+NqBIIbFEOWpjvABk4p+3
+6HpN4KrTZm4PcqW2R8GFQ14I0oZWfEzLl2ub3myoroH4w7pweymdc3a1nkMnrf17
+77fPZMSXLQKBgATSyR2poTzgB+8ky+VpEQnHMf9ZYBVwaIBx5agLfKpTlbSs3Qbu
+fP+EdUihTqxvSBiyHT+iqPoNAf+va4cJd7ps3vMdt/+Ne1yyUG6y6Akk4YGSFmcb
+RSIX5g6cAPWlgzbszk92k5NeTm/ccBgFVFFE6h9ZiA73P43qABwvEtnlAoGBAKic
+ifymkaG6vekGxBrvfk5EwZ5kl+9P15T3Nun2CRD5kwdbaZmCrvLockgvHN+zOfKz
+NeSsS4EK7MkPVteiudyai4dl6nZQ+MWWJrdrA3Wpqe7f7Be65YqcaqC3FU6UTZIW
+hNQI63QS75WB5eIQEvjQ9KZC0xMIJAIcbb2NBs6pAoGBAK1IwIVp4hcf1OyCvm/S
+r2aUTgiV0dZv0p0QU5H8XTaUWIrNUosOQk0Tv0Vo6l8JTS72kl2aw+fhwYsWL48n
+HFI+owm+gxC7BveEyypnJm63Yjj7BJflZdxKFdLoKV+aUdQrSsLVYgsWIeJhB6Ol
+VsGEydVIUOnoDDtmLB8TYnmQ
+-----END PRIVATE KEY-----
--- a/mtls/peerCA2_2_cert.pem
+++ b/mtls/peerCA2_2_cert.pem
@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----
+MIIEGjCCAwKgAwIBAgIUKjQCltbN0Oao9ngSasdbHaIBmswwDQYJKoZIhvcNAQEL
+BQAwgbcxCzAJBgNVBAYTAlVTMRIwEAYDVQQIDAlMb2NhbHpvbmUxEjAQBgNVBAcM
+CWxvY2FsaG9zdDEtMCsGA1UECgwkTmVvIEdvIFRlc3RpbmcgQ2VydGlmaWNhdGUg
+QXV0aG9yaXR5MRAwDgYDVQQLDAdEZXZlbG9wMRQwEgYDVQQDDAtsb2NhbGRvbWFp
+bjEpMCcGCSqGSIb3DQEJARYacm9vdEBsb2NhbGhvc3QubG9jYWxkb21haW4wHhcN
+MjQwNjEwMTI1NjQ3WhcNMjUwNzEzMTI1NjQ3WjB3MQswCQYDVQQGEwJVUzESMBAG
+A1UECAwJTG9jYWx6b25lMRIwEAYDVQQHDAlMb2NhbGhvc3QxJDAiBgNVBAoMG0Nl
+cnRpZmljYXRlIHNpZ25lZCBieSBteSBDQTEaMBgGA1UEAwwRcGVlcjIubG9jYWxk
+b21haW4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzyQARfBnOBJwd
+EuyhraTu8QfncRFT8GGsqLQPY+M4xllGrbNjMhE/nRPBtPGzAVHHspgLddGh2+pu
+CBqSLt/ts/pvOlmaXL4yxlUaXwTlpSQ1stqtuBMIAhgAsknwGngKYJUQWmj1UdI9
+76F99cY4WENuqRNji/tyyPcx6om224VQoe4T14HiuenuZb0b2uadDIRpw0cQnoRF
+Qaj7A88aXQenj+69h2YcFqiXYYFUHQsMRXm4rq9OGynHTCTxmHg28kBhJFp+ADk0
+mVzurellU/Fx+I91eQw+AeRZ4NtPW+WmRvdP/NsKUCUD+wkS926p/wXOxrUI+0sd
+SWwgNs19AgMBAAGjXTBbMBkGA1UdEQQSMBCCCG5vZGVfdHdvhwTAqIJIMB0GA1Ud
+DgQWBBTlq+XQt0tw0n3v6qd4Fk7rsl49EjAfBgNVHSMEGDAWgBTT6QZAWJYgM/Tc
+YwTbmHQ16TX0yDANBgkqhkiG9w0BAQsFAAOCAQEAHQfWlOo9xxiFHCHyjyheFjV+
+EKuayAWyw4yAqH2rdULnzDD6kJtZ2RNb+NZy7XjT7xdhS5CibhyslQeNH8h9SSc3
+7UZvU8UbnolU5kGAs+d9AprOyakl3805ftU2fDuU/oTyQwUvI5wezz6UiZq7PXKv
+OnKQWoZX4IWntOFUiaBG72Af+AfCXPOhVWsNV+b/o3h2xeS5UTUPpNo+O5TycTBc
+HUlnHcUU7HVttNeY4hEw850L9eaMwT5ZQH+rEyy2zbRxhJmT7uxbva7ZJm9nbkJL
+XZI+d2MCCzdtL6l9iLd+CRDRWECLft5uQx0NEUItcVVK2i8fy9bSugegXImR5Q==
+-----END CERTIFICATE-----
--- a/mtls/peerCA2_2_key.pem
+++ b/mtls/peerCA2_2_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
--- a/mtls/peerCA2_3_cert.pem
+++ b/mtls/peerCA2_3_cert.pem
@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
--- a/mtls/peerCA2_3_key.pem
+++ b/mtls/peerCA2_3_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
--- a/mtls/peerCA2_4_cert.pem
+++ b/mtls/peerCA2_4_cert.pem
@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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=
+-----END CERTIFICATE-----
--- a/mtls/peerCA2_4_key.pem
+++ b/mtls/peerCA2_4_key.pem
@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
--- a/mtls/peerX.cnf
+++ b/mtls/peerX.cnf
@ -0,0 +1,23 @@
+[req]
+default_bits  = 2048
+distinguished_name = req_distinguished_name
+req_extensions = req_ext
+x509_extensions = v3_req
+prompt = no
+
+[req_distinguished_name]
+countryName = US
+stateOrProvinceName = Localzone
+localityName = Localhost
+organizationName = Certificate signed by my CA
+commonName = peer1.localdomain
+
+[req_ext]
+subjectAltName = @alt_names
+
+[v3_req]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = node_one
+IP.1 = 192.168.130.90
--- a/services/morph_chain/docker-compose.yml
+++ b/services/morph_chain/docker-compose.yml
@ -19,6 +19,7 @@ services:
    - ./config.yml:/wallets/config.yml
    - ./../../vendor/hosts:/etc/hosts
    - ./../../wallets/wallet.json:/wallets/wallet.json
+    - ./../../mtls:/wallets/mtls:ro

 networks:
  chain_int:
--- a/services/morph_chain/protocol.privnet.yml
+++ b/services/morph_chain/protocol.privnet.yml
@ -35,12 +35,20 @@ ApplicationConfiguration:
      Path: "./wallets/node-wallet.json"
      Password: "one"
  RPC:
-    Addresses:
-      - "192.168.130.90:30333"
+    # Addresses:
+    #   - "192.168.130.90:30333"
    Enabled: true
    SessionEnabled: true
    EnableCORSWorkaround: false
    MaxGasInvoke: 100
+    TLS:
+      Enabled: true
+      Addresses:
+        - "192.168.130.90:30333"
+      RootCAs:
+        - "/wallets/mtls/CA2_cert.pem"
+      CertFile: "/wallets/mtls/peerCA1_X_cert.pem"
+      KeyFile: "/wallets/mtls/peerCA1_X_key.pem"
  P2PNotary:
    Enabled: true
    UnlockWallet:
--- a/services/storage/docker-compose.yml
+++ b/services/storage/docker-compose.yml
@ -23,6 +23,7 @@ services:
      - ../nats/client-key.pem:/etc/frostfs-node/nats.tls.key
      - ../nats/ca-cert.pem:/etc/frostfs-node/nats.ca.crt
      - ./cfg:/etc/frostfs/storage
+      - ./../../mtls:/wallets/mtls:ro
    stop_signal: SIGTERM
    stop_grace_period: 15s
    env_file: [ ".env", ".storage.env", ".int_test.env" ]
@ -35,6 +36,9 @@ services:
      - FROSTFS_CONTROL_GRPC_ENDPOINT=s01.${LOCAL_DOMAIN}:8081
      - FROSTFS_NODE_ATTRIBUTE_1=UN-LOCODE:RU MOW
      - FROSTFS_NODE_ATTRIBUTE_2=Price:22
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_ROOT_CAS_0: /wallet/mtls/CA1_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_CERTIFICATE: /wallet/mtls/peerCA2_1_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_KEY: /wallet/mtls/peerCA2_1_key.pem
    healthcheck:
      test: ["CMD-SHELL", "/healthcheck.sh"]
      interval: 2s
@ -64,6 +68,7 @@ services:
      - ../nats/client-key.pem:/etc/frostfs-node/nats.tls.key
      - ../nats/ca-cert.pem:/etc/frostfs-node/nats.ca.crt
      - ./cfg:/etc/frostfs/storage
+      - ./../../mtls:/wallets/mtls:ro
    stop_signal: SIGTERM
    stop_grace_period: 15s
    env_file: [ ".env", ".storage.env", ".int_test.env" ]
@ -76,6 +81,9 @@ services:
      - FROSTFS_CONTROL_GRPC_ENDPOINT=s02.${LOCAL_DOMAIN}:8081
      - FROSTFS_NODE_ATTRIBUTE_1=UN-LOCODE:RU LED
      - FROSTFS_NODE_ATTRIBUTE_2=Price:33
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_ROOT_CAS_0: /wallet/mtls/CA1_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_CERTIFICATE: /wallet/mtls/peerCA2_2_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_KEY: /wallet/mtls/peerCA2_2_key.pem
    healthcheck:
      test: ["CMD-SHELL", "/healthcheck.sh"]
      interval: 2s
@ -105,6 +113,7 @@ services:
      - ../nats/client-key.pem:/etc/frostfs-node/nats.tls.key
      - ../nats/ca-cert.pem:/etc/frostfs-node/nats.ca.crt
      - ./cfg:/etc/frostfs/storage
+      - ./../../mtls:/wallets/mtls:ro
    stop_signal: SIGTERM
    stop_grace_period: 15s
    env_file: [ ".env", ".storage.env", ".int_test.env" ]
@ -117,6 +126,9 @@ services:
      - FROSTFS_CONTROL_GRPC_ENDPOINT=s03.${LOCAL_DOMAIN}:8081
      - FROSTFS_NODE_ATTRIBUTE_1=UN-LOCODE:SE STO
      - FROSTFS_NODE_ATTRIBUTE_2=Price:11
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_ROOT_CAS_0: /wallet/mtls/CA1_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_CERTIFICATE: /wallet/mtls/peerCA2_3_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_KEY: /wallet/mtls/peerCA2_3_key.pem
    healthcheck:
      test: ["CMD-SHELL", "/healthcheck.sh"]
      interval: 2s
@ -147,6 +159,7 @@ services:
      - ../nats/client-key.pem:/etc/frostfs-node/nats.tls.key
      - ../nats/ca-cert.pem:/etc/frostfs-node/nats.ca.crt
      - ./cfg:/etc/frostfs/storage
+      - ./../../mtls:/wallets/mtls:ro
    stop_signal: SIGTERM
    stop_grace_period: 15s
    env_file: [ ".env", ".storage.env", ".int_test.env" ]
@ -164,6 +177,9 @@ services:
      - FROSTFS_GRPC_1_TLS_KEY=/tls.key
      - FROSTFS_NODE_ATTRIBUTE_1=UN-LOCODE:FI HEL
      - FROSTFS_NODE_ATTRIBUTE_2=Price:44
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_ROOT_CAS_0: /wallet/mtls/CA1_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_CERTIFICATE: /wallet/mtls/peerCA2_4_cert.pem
+      - FROSTFS_MORPH_RPC_ENDPOINT_0_KEY: /wallet/mtls/peerCA2_4_key.pem
    healthcheck:
      test: ["CMD-SHELL", "/healthcheck.sh"]
      interval: 2s