Apache_PHP_extension/systemMain.cpp

#include <phpcpp.h>
#include <string.h>
#include <string>
#include <unistd.h>
#include <errno.h>
#include<sys/time.h>
#include <fcntl.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <stdio.h>
#include "crypto.h"
#include "ProtobufLAInitiator.h"
using namespace std;

#define DECRYPTOR_PORT 3825
int local_attestation_successful=0;
int __ImageBase=0;

class Mitigator : public Php::Base
{
	private:
		static std::string mitigator_pubkey_header_value;
		static std::string mitigator_pubkey_header;
		static int time_file_fd;
	public:
		Mitigator() = default;
		virtual ~Mitigator() = default;

		static void local_attestation_initiator_wrapper()
		{
			setbuf(stdout,NULL);
			uint32_t return_sgx, base64_encoded_token_H_length;
			unsigned char* base64_encoded_mitigator_header_and_value;

			base64_encoded_mitigator_header_and_value = (unsigned char*) malloc( 400 ); 
			//		unsigned char base64_encoded_mitigator_header[229] ; //216=(ceil(160/3) * 4) + 1 (for null character) + 21 for "Mitigator-Public-Key"
			memcpy(base64_encoded_mitigator_header_and_value, mitigator_pubkey_header.c_str(), mitigator_pubkey_header.length());
			return_sgx = local_attestation_initiator(DECRYPTOR_PORT);
			if(return_sgx != 0)
			{
				if(return_sgx== 0xFFFFFFFF)
				{
					perror("\nCould not set up the socket: had the following error: "); fflush(stderr);
				}
				else
				{
					printf("\nHad the following error in SGX local attestation: 0x%x", return_sgx);
					fflush(stdout);
				}
			}
			else {
				printf("\nSuccessful LA with port %d.\n", DECRYPTOR_PORT);
				fflush(stdout);
				return_sgx= post_local_attestation_get_mitigator_header(base64_encoded_mitigator_header_and_value + mitigator_pubkey_header.length(),
					&base64_encoded_token_H_length);
				if(return_sgx != 0)
				{
					printf("\nHad the following error in SGX POST local attestation: 0x%x", return_sgx);
					fflush(stdout);
				}
				mitigator_pubkey_header_value=std::string((char*)base64_encoded_mitigator_header_and_value,mitigator_pubkey_header.length()+base64_encoded_token_H_length);
			}
			free(base64_encoded_mitigator_header_and_value); 
			time_file_fd=open("target_time.txt", O_APPEND | O_WRONLY);
		}

		static Php::Value get_mitigator_header()
		{
			return mitigator_pubkey_header_value;
		}

		static Php::Value php_decrypt_wrapper(Php::Parameters &params   )
		{
            // struct timeval  tv1, tv2;
			// char time_buf[60] = {0};
			// unsigned long int new_time, old_time;

			// gettimeofday(&tv1, NULL);

            uint32_t ret_status, counter, field_size;
            std::vector<std::string> binary_ciphertext_client_fields, plaintext_client_fields;
            unsigned char *binary_ciphertext_client_field;
            Php::Object ret_object;
            Php::Array php_plaintext_client_fields;
            const char* temp_ptr;
            std::string temp_str;

            ret_object["success"]="false";

			if(params.size() < 2 )
            {
                ret_object["error"]="Need to pass 2 or more arguments.";
                return ret_object;
            }

			binary_ciphertext_client_fields.push_back(params[0]);

            for (unsigned int i = 0; i < params.size(); i++)
            {
                field_size=params[i].size();
                temp_ptr = params[i];
                // upper limit - the binary data will always be smaller than this (base64 length ~= 4/3 * binary length)
                binary_ciphertext_client_field = (unsigned char*) malloc(field_size);
                ret_status = base64_decoding_wrapper(binary_ciphertext_client_field, temp_ptr, field_size);
                if(ret_status <= 0)
                {
                    free(binary_ciphertext_client_field);
                    ret_object["error"]="Could not perform base64 decoding correctly for the " + std::to_string(i) + "th argument.";
                    return ret_object;
                }
                binary_ciphertext_client_fields.push_back(std::string(reinterpret_cast<const char*> (binary_ciphertext_client_field), ret_status));
            }

            ret_status=decrypt_client_data_through_decryptor(binary_ciphertext_client_fields, plaintext_client_fields);
			if(ret_status != 0)
			{
			    ret_object["error"]="Received the following error code when trying to decrypt data thru decryptor " + std::to_string(ret_status);
				return ret_object;
			}

            ret_object["success"]="true";
            for(counter=0;counter<plaintext_client_fields.size();counter++)
                php_plaintext_client_fields[counter]=plaintext_client_fields[counter];
            ret_object["fields"]=php_plaintext_client_fields;

			/*gettimeofday(&tv2, NULL);
			new_time=tv2.tv_usec + tv2.tv_sec * 1000000;
			old_time=tv1.tv_usec + tv1.tv_sec * 1000000;
			bytes_written=sprintf(time_buf,  "%lu %lu\n", old_time, new_time);
			write(time_file_fd, time_buf, bytes_written);
			*/
			return ret_object;
		}
};

std::string Mitigator::mitigator_pubkey_header_value=std::string("!");
std::string Mitigator::mitigator_pubkey_header=std::string("Mitigator-Public-Key:");
int Mitigator::time_file_fd=0; 
extern "C" {

    // export the "get_module" function that will be called by the Zend engine
    PHPCPP_EXPORT void *get_module()
    {
        // create extension
        static Php::Extension extension("decryptor_la_setup_and_decryption","1.0");

        Php::Class<Mitigator> mitigator("Mitigator");
	mitigator.method<&Mitigator::get_mitigator_header>("get_mitigator_header");
	mitigator.method<&Mitigator::local_attestation_initiator_wrapper>("local_attestation_initiator_wrapper");
	mitigator.method<&Mitigator::php_decrypt_wrapper>("php_decrypt_wrapper", { Php::ByVal("string", Php::Type::String), Php::ByVal("string", Php::Type::String) }   );
        extension.onStartup(&Mitigator::local_attestation_initiator_wrapper);
        // return the extension module
	extension.add(mitigator);
        return extension.module();
    }
}