Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
iang
/
teems
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: 1672a9efbe
Branche Tagy
teems
/
Enclave
/
comms.cpp

comms.cpp 2.3 KB
História Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. #include <cstring>
    2. 

  2. 

  3. #include "sgx_tcrypto.h"
    4. 

  4. #include "sgx_tseal.h"
    5. 

  5. #include "Enclave_t.h"
    6. 

  6. #include "utils.hpp"
    7. 

  7. 

  8. // Our public and private identity keys
    9. 

  9. sgx_ec256_private_t g_privkey;
    10. 

  10. sgx_ec256_public_t g_pubkey;
    11. 

  11. 

  12. // Generate a new identity signature key.  Output the public key and the
    13. 

  13. // sealed private key.  outsealedpriv must point to
    14. 

  14. // sizeof(sgx_sealed_data_t) + sizeof(sgx_ec256_private_t) + 19 bytes of
    15. 

  15. // memory.
    16. 

  16. void ecall_identity_key_new(sgx_ec256_public_t *outpub,
    17. 

  17.     sgx_sealed_data_t *outsealedpriv)
    18. 

  18. {
    19. 

  19.     sgx_ecc_state_handle_t ecc_handle;
    20. 

  20. 

  21.     sgx_ecc256_open_context(&ecc_handle);
    22. 

  22. 

  23.     sgx_ecc256_create_key_pair(&g_privkey, &g_pubkey, ecc_handle);
    24. 

  24.     memmove(outpub, &g_pubkey, sizeof(g_pubkey));
    25. 

  25. 

  26.     sgx_ecc256_close_context(ecc_handle);
    27. 

  27. 

  28.     sgx_seal_data(19, (const uint8_t*)"TEEMS Identity key",
    29. 

  29.         sizeof(g_privkey), (const uint8_t*)&g_privkey,
    30. 

  30.         sizeof(sgx_sealed_data_t) + sizeof(sgx_ec256_private_t) + 19,
    31. 

  31.         outsealedpriv);
    32. 

  32. }
    33. 

  33. 

  34. // Load an identity key from a sealed privkey.  Output the resulting
    35. 

  35. // public key.  insealedpriv must point to sizeof(sgx_sealed_data_t) +
    36. 

  36. // sizeof(sgx_ec256_private_t) bytes of memory.  Returns true for
    37. 

  37. // success, false for failure.
    38. 

  38. bool ecall_identity_key_load(sgx_ec256_public_t *outpub,
    39. 

  39.     const sgx_sealed_data_t *insealedpriv)
    40. 

  40. {
    41. 

  41.     sgx_ecc_state_handle_t ecc_handle;
    42. 

  42. 

  43.     char aad[19];
    44. 

  44.     uint32_t aadsize = sizeof(aad);
    45. 

  45.     sgx_ec256_private_t privkey;
    46. 

  46.     uint32_t privkeysize = sizeof(privkey);
    47. 

  47.     sgx_status_t res = sgx_unseal_data(
    48. 

  48.         insealedpriv, (uint8_t*)aad, &aadsize,
    49. 

  49.         (uint8_t*)&privkey, &privkeysize);
    50. 

  50. 

  51.     if (res || aadsize != sizeof(aad) || privkeysize != sizeof(privkey)
    52. 

  52.             || memcmp(aad, "TEEMS Identity key", sizeof(aad))) {
    53. 

  53.         return false;
    54. 

  54.     }
    55. 

  55. 

  56.     sgx_ecc256_open_context(&ecc_handle);
    57. 

  57. 

  58.     sgx_ec256_public_t pubkey;
    59. 

  59.     int valid;
    60. 

  60.     if (sgx_ecc256_calculate_pub_from_priv(&privkey, &pubkey) ||
    61. 

  61.             sgx_ecc256_check_point(&pubkey, ecc_handle, &valid) ||
    62. 

  62.             !valid) {
    63. 

  63.         sgx_ecc256_close_context(ecc_handle);
    64. 

  64.         return false;
    65. 

  65.     }
    66. 

  66. 

  67.     sgx_ecc256_close_context(ecc_handle);
    68. 

  68. 

  69.     memmove(&g_pubkey, &pubkey, sizeof(pubkey));
    70. 

  70.     memmove(&g_privkey, &privkey, sizeof(privkey));
    71. 

  71.     memmove(outpub, &pubkey, sizeof(pubkey));
    72. 

  72. 

  73.     return true;
    74. 

  74. }
    75.