Add local attestation support #60

longtomjr · 2021-05-14T17:36:27Z

Closes: #34

PiDelport · 2021-05-20T19:22:16Z

I rebased and resolved the conflicts, so long: I'll tackle the review next.

rtc_tenclave/src/dh/types.rs

PiDelport

Hefty review, but done! 🎉

rtc_uenclave/auth-sys/build.rs

rtc_uenclave/data-sys/build.rs

rtc_tenclave/Cargo.lock

rtc_tenclave/Cargo.toml

rtc_uenclave/data-sys/build.rs

rtc_tenclave/src/dh/sessions.rs

rtc_udh/src/lib.rs

rtc_tenclave/src/dh/sessions.rs

rtc_types/src/dh.rs

PiDelport · 2021-05-27T12:57:18Z

Rebased and updated for #80:

Changesets: 999d4e0...92952de
Files: https://github.com/registreerocks/rtc-data/compare/999d4e0..92952de

This simplifies the Cargo.lock diffs for this branch. 🎉

longtomjr

Changes looks good! Thanks

This will avoid pulling in post-sgx_1.1.3 revisions unexpectedly.

…ence This is more consistent with the surrounding code.

…ntion

… map

…er convention

…GcmIvConstructor Also add additional documentation and context around the IV construction.

PiDelport

I meant to push the remaining changes before this got merged, but missed the window, sorry! I pushed a quick follow-up PR: #85

longtomjr requested review from PiDelport and Nghondzweni May 14, 2021 17:36

longtomjr changed the base branch from he-uenclave-refactor to main May 18, 2021 18:16

longtomjr marked this pull request as ready for review May 18, 2021 18:17

longtomjr changed the title ~~WIP: Local attestation impl~~ Add local attestation support May 18, 2021

longtomjr force-pushed the he-local-attestation branch from 9b8dfcc to b1bc710 Compare May 18, 2021 18:19

longtomjr self-assigned this May 18, 2021

longtomjr added M: auth enclave Module: Authorisation enclave (rtc_auth_enclave) M: data enclave Module: Data enclave (rtc_data_enclave) feat New feature or request labels May 18, 2021

PiDelport force-pushed the he-local-attestation branch from b1bc710 to 589a029 Compare May 20, 2021 19:20

longtomjr commented May 21, 2021

View reviewed changes

rtc_tenclave/src/dh/types.rs Show resolved Hide resolved

longtomjr force-pushed the he-local-attestation branch from 589a029 to 999d4e0 Compare May 25, 2021 13:29

PiDelport reviewed May 26, 2021

View reviewed changes

longtomjr mentioned this pull request May 26, 2021

Use (X)ChaCha20Poly1305 instead of sgx provided AES-GCM for protected channel #84

Open

longtomjr added 10 commits May 27, 2021 14:23

feat(attestation): add functions for local dh

abe0267

feat: rework local attest state and add basic crypto funcs

1b8df41

feat(dh): add session closing

8274833

feat(dh): update comments and invariant checking

ae93ab6

feat(dh): return channel from channel creation functions

1d87d93

feat(dh): add function to be used for verifying trust

ff2c32b

feat(dh): add ecalls and ocall handlers

a3ad1ed

feat(dh): update data and auth enclave codegen

7555bb8

feat(dh): update codegen to const pointer for msg2

7854508

feat(dh): add sys bindings and lib for app side dh attestation

75be1fa

PiDelport force-pushed the he-local-attestation branch from 999d4e0 to 92952de Compare May 27, 2021 12:48

longtomjr commented May 28, 2021

View reviewed changes

PiDelport force-pushed the he-local-attestation branch from 652d2a7 to 5f1cb5e Compare May 28, 2021 12:48

PiDelport force-pushed the he-local-attestation branch from 1985ee9 to 5f1cb5e Compare May 28, 2021 13:03

longtomjr and others added 20 commits May 28, 2021 16:21

refactor(dh): prefix enclave functions from edl

322793f

feat(dh): add to uenclave and basic integration test

18af0c9

cleanup(dh): remove debug printlines

ea71a55

feat(dh): fix uenclave tests

3074594

test(dh): fix tenclave unit tests by ignoring the dh mod

acf43b9

feat(dh): support testing and cleanup module structure

f83f666

deps(rtc_tenclave): specify sgx_1.1.3 tag for once_cell-sgx

d23df5c

This will avoid pulling in post-sgx_1.1.3 revisions unexpectedly.

docs(HACKING): add section: Aligned memory allocation for secret values

1a90824

docs(auth-sys,data-sys): remove resolved TODO

d6619da

refactor(rtc_udh): get_responder: take enclave id by value, not refer…

6e0f8be

…ence This is more consistent with the surrounding code.

test(rtc_tenclave): use sgx_enclave_id_t return type for stub

0d2bfde

refactor(rtc_udh): use "enclave_id: sgx_enclave_id_t" parameter conve…

d62f352

…ntion

refactor(rtc_tenclave,dh): use sgx_enclave_id_t type for DhResponders…

8b3d486

… map

refactor(rtc_tenclave,dh): use "enclave_id: sgx_enclave_id_t" paramet…

9c2d49b

…er convention

refactor(rtc_tenclave,dh): default to passing sgx_enclave_id_t by value

d050e11

chore(rtc_udh): remove stray test code

9cefdbb

chore(rtc_tenclave): remove commented code

8de36cf

chore(rtc_tenclave,dh): remove commented code

b348f81

docs: add & update rustdoc comments

035359d

build(rtc_auth_enclave,rtc_data_enclave): factor out ENCLAVE_NAME

5b6f3d5

PiDelport force-pushed the he-local-attestation branch from 41e6643 to 5b6f3d5 Compare May 28, 2021 14:21

refactor(rtc_tenclave,protected_channel): factor out DeterministicAes…

2741ebe

…GcmIvConstructor Also add additional documentation and context around the IV construction.

longtomjr merged commit b396fb1 into main May 29, 2021

longtomjr deleted the he-local-attestation branch May 29, 2021 09:59

longtomjr restored the he-local-attestation branch May 29, 2021 09:59

PiDelport mentioned this pull request May 31, 2021

Add local attestation support - follow-up #85

Merged

PiDelport reviewed May 31, 2021

View reviewed changes

PiDelport mentioned this pull request May 31, 2021

address cargo check ✨ and enable cargo fix 🎉 #77

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add local attestation support #60

Add local attestation support #60

longtomjr commented May 14, 2021 •

edited

Loading

PiDelport commented May 20, 2021

PiDelport left a comment

PiDelport commented May 27, 2021

longtomjr left a comment

PiDelport left a comment

Add local attestation support #60

Add local attestation support #60

Conversation

longtomjr commented May 14, 2021 • edited Loading

PiDelport commented May 20, 2021

PiDelport left a comment

Choose a reason for hiding this comment

PiDelport commented May 27, 2021

longtomjr left a comment

Choose a reason for hiding this comment

PiDelport left a comment

Choose a reason for hiding this comment

longtomjr commented May 14, 2021 •

edited

Loading