| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182 | #include "Enclave_t.h"#include "comms.hpp"#include "config.hpp"#include "utils.hpp"#include "route.hpp"#include "ingest.hpp"#define CEILDIV(x,y) (((x)+(y)-1)/(y))unsigned long ingestion_epoch;unsigned long storage_epoch;Config g_teems_config;int generateMasterKeys(sgx_aes_gcm_128bit_key_t master_secret,    sgx_aes_gcm_128bit_key_t &ESK, sgx_aes_gcm_128bit_key_t &TSK){    unsigned char zeroes[SGX_AESGCM_KEY_SIZE];    unsigned char iv[SGX_AESGCM_IV_SIZE];    sgx_aes_gcm_128bit_tag_t mac;    memset(zeroes, 0, SGX_AESGCM_KEY_SIZE);    memset(iv, 0, SGX_AESGCM_IV_SIZE);    memcpy(iv, "Encryption", sizeof("Encryption"));    sgx_status_t ret = SGX_SUCCESS;    ret = sgx_rijndael128GCM_encrypt((const sgx_aes_gcm_128bit_key_t *)        (master_secret), zeroes, SGX_AESGCM_KEY_SIZE,        (uint8_t*) ESK, iv, SGX_AESGCM_IV_SIZE, NULL, 0, &mac);    if(ret!=SGX_SUCCESS) {        return -1;    }    printf("Encryption Master Key: ");    for(int i=0;i<SGX_AESGCM_KEY_SIZE;i++) {        printf("%x", ESK[i]);    }    printf("\n\n");    memset(iv, 0, SGX_AESGCM_IV_SIZE);    memcpy(iv, "Token", sizeof("Token"));    ret = sgx_rijndael128GCM_encrypt((const sgx_aes_gcm_128bit_key_t *)        (master_secret), zeroes, SGX_AESGCM_KEY_SIZE,        (uint8_t*) TSK, iv, SGX_AESGCM_IV_SIZE, NULL, 0, &mac);    if(ret!=SGX_SUCCESS) {        return -1;    }    printf("Token Master Key: ");    for(int i=0;i<SGX_AESGCM_KEY_SIZE;i++) {        printf("%x", TSK[i]);    }    printf("\n");    return 1;}bool ecall_config_load(threadid_t nthreads,    EnclaveAPIParams *apiparams,    EnclaveAPINodeConfig *apinodeconfigs,    nodenum_t num_nodes, nodenum_t my_node_num){    g_teems_config.nthreads = nthreads;    g_teems_config.num_nodes = num_nodes;    g_teems_config.num_ingestion_nodes = 0;    g_teems_config.num_routing_nodes = 0;    g_teems_config.num_storage_nodes = 0;    g_teems_config.my_node_num = my_node_num;    g_teems_config.user_count = apiparams->user_count;    g_teems_config.msg_size = apiparams->msg_size;    g_teems_config.m_priv_out = apiparams->m_priv_out;    g_teems_config.m_priv_in = apiparams->m_priv_in;    g_teems_config.m_pub_out = apiparams->m_pub_out;    g_teems_config.m_pub_in = apiparams->m_pub_in;    memcpy(g_teems_config.master_secret, apiparams->master_secret, SGX_AESGCM_KEY_SIZE);    g_teems_config.private_routing = apiparams->private_routing;    // Temporary vectors to store node numbers for nodes of different    // types, where the node numbers are smaller than our own node    // number    std::vector<nodenum_t> ing_smaller, rte_smaller, str_smaller;    uint16_t cumul_weight = 0;    g_teems_config.weights.clear();    g_teems_config.ingestion_nodes.clear();    g_teems_config.routing_nodes.clear();    g_teems_config.storage_nodes.clear();    g_teems_config.storage_map.clear();    for (nodenum_t i=0; i<num_nodes; ++i) {        NodeWeight nw;        nw.startweight = cumul_weight;        // Weights only matter for routing nodes        nw.weight = 0;        if (apinodeconfigs[i].roles & ROLE_INGESTION) {            g_teems_config.num_ingestion_nodes += 1;            if (i < my_node_num) {                ing_smaller.push_back(i);            } else {                g_teems_config.ingestion_nodes.push_back(i);            }        }        if (apinodeconfigs[i].roles & ROLE_ROUTING) {            // Only use weights in private routing            if (g_teems_config.private_routing) {                nw.weight = apinodeconfigs[i].weight;            } else  {                nw.weight = 1;            }            g_teems_config.num_routing_nodes += 1;            if (i < my_node_num) {                rte_smaller.push_back(i);            } else {                g_teems_config.routing_nodes.push_back(i);            }        }        if (apinodeconfigs[i].roles & ROLE_STORAGE) {            g_teems_config.num_storage_nodes += 1;            if (i < my_node_num) {                str_smaller.push_back(i);            } else {                g_teems_config.storage_nodes.push_back(i);            }            g_teems_config.storage_map.push_back(i);        }        cumul_weight += nw.weight;        g_teems_config.weights.push_back(nw);        g_teems_config.roles.push_back(apinodeconfigs[i].roles);        if (i == my_node_num) {            g_teems_config.my_weight = nw.weight;        }    }    g_teems_config.tot_weight = cumul_weight;    // Concatenate the *_smaller vectors to the ends of the    // g_teems_config.*_nodes vectors.  This way, each node has a list    // of nodes of each role starting with itself and "looping around".    // This should make the communication pattern have less of a    // bottleneck.    g_teems_config.ingestion_nodes.insert(        g_teems_config.ingestion_nodes.end(),        ing_smaller.begin(),        ing_smaller.end());    g_teems_config.routing_nodes.insert(        g_teems_config.routing_nodes.end(),        rte_smaller.begin(),        rte_smaller.end());    g_teems_config.storage_nodes.insert(        g_teems_config.storage_nodes.end(),        str_smaller.begin(),        str_smaller.end());    // Initialize the threadpool and the pseudorandom bytes pools    threadpool_init(nthreads);    uint8_t my_role = apinodeconfigs[my_node_num].roles;    if( (my_role & ROLE_INGESTION) || (my_role & ROLE_STORAGE) ) {        generateMasterKeys(g_teems_config.master_secret,            g_teems_config.ESK, g_teems_config.TSK);        uint32_t num_clients_total = g_teems_config.user_count;        if(my_role & ROLE_INGESTION) {            uint32_t num_ing_nodes = g_teems_config.num_ingestion_nodes;            uint32_t clients_per_server = CEILDIV(num_clients_total, num_ing_nodes);            uint32_t num_clients_this_ing = clients_per_server;            uint32_t client_start = ing_smaller.size();            g_ing.initialize(num_clients_this_ing, client_start, g_teems_config.ESK);        }    }    ingestion_epoch = 0;    storage_epoch = 0;    if (!route_init()) {        return false;    }    return comms_init_nodestate(apinodeconfigs, num_nodes, my_node_num);}void ecall_close(){    route_close();    threadpool_shutdown();}
 |