 dettanym
|
2a19d12ad0
Fix for sgxssl edl include path in docker
|
4 years ago |
|
dettanym
|
a7dea2f6e6
Temp commit with reproducibility changes
|
4 years ago |
|
dettanym
|
9d72384c4d
It works at runtime! Some frees in the decryptor enclave code cause it to crash.
|
4 years ago |
|
dettanym
|
5ec6682c84
Works for deployment stage for both apache, verifier.
|
4 years ago |
|
dettanym
|
e0aa56ff0c
Old uncommited code - instrumentation for timing.
|
4 years ago |
|
dettanym
|
8a3d1c826b
Got code to not crash when running enclave call - edl i/o stuff. ecall doesnt seem to work properly
|
5 years ago |
|
dettanym
|
ad68d3761a
Works for LA with verifier, apache. Need to extract sealed verification key to client. Need to get apaches php extension working - need to modify messages to send IV and expect a particular kind (even/odd) from apache, client.
|
5 years ago |
|
dettanym
|
0947cf3017
Works with verifier.
|
5 years ago |
|
dettanym
|
3d120ee423
Adding code to commit before working on local copy.
|
5 years ago |
|
dettanym
|
68189597cf
Decryptor.so is compiled and linked now.
|
5 years ago |
|
dettanym
|
b9991f04ab
Refactored code - to make it easier to set up encryption to enclaves and to the client
|
5 years ago |
|
dettanym
|
94b5df506b
Refactored some decryptors client data decryption code and added in encryption with Apache. Does not work with client side extension.
|
5 years ago |
|
dettanym
|
a27c0b3ca8
Got decryption of client data working. Yet to encrypt client-data back to the Apache. Refactored decryptor client data decryption functions in trusted and untrusted code. Added in a new base64 decoding function (CommonOpensslCode was intended to contain base64 function and it was supposed to be linkable by both trusted, untrusted code, but couldnot get the app to link against the same version of openssl as intel-sgx-ssl.
|
5 years ago |
|
dettanym
|
02c5dc0152
Encrypts hardcoded strings in aesgcm (for clientside extension)
|
5 years ago |
|
dettanym
|
c508171e76
Got decryptor working with intel-sgx-ssl libraries without any linker errors. Added in sample ECDHE key and shared secret generation code, key derivation code that worked outside sgx
|
5 years ago |
|
dettanym
|
a20b36689c
Not working commit of compiling ECDHE key generation code. Correct code is in openssl_ecdhe folder. Linking error of thread functions not defined in stdc keeps throwing up.
|
5 years ago |
|
dettanym
|
6e1febba9c
Added in ECDHE key generation code - does not work with 2 implementations on JS side
|
5 years ago |
|
dettanym
|
95ebb52e20
Modified ecalls and interface for post-LA AES encryption and decryption functions. Seems to work
|
5 years ago |
|
dettanym
|
4d36ab706b
Pre-verification changes - ecdsa verification function remains in decryptor.cpp but is not being called
|
5 years ago |
|
dettanym
|
3e7ec25c87
Got signature to be verified in encrypt_mitigator_header_value - had to change LA function signature to send public key from untrusted app
|
5 years ago |
|
dettanym
|
a293868311
Removed bug in ecdsa signature generation for message sent to Apache enclave
|
5 years ago |
|
dettanym
|
84ac2070dd
Works with sample verifier mrenclave being encrypted and written to Apache. Verification of signature not done yet.
|
5 years ago |
|
dettanym
|
e1f77b314f
EDL files - private ecalls are not inter-enclave function calls. For inter-enclave function calls, entries are removed from the edl files. Added in code for verify_peer_enclave_trust to save the mrenclave of the 1st LA and to compare mrsigner to a global one the second time LA is called. Cleaned up unused functions.
|
5 years ago |
|
dettanym
|
8410c52adb
Works with sgx_calc_sealed_data working properly. Had to make it return the uint32_t rather than pass it as a pointer, for some reason.
|
5 years ago |
|
dettanym
|
812ae31801
Initial working local attestation commit with the sdk library - version 2.1
|
5 years ago |
