Strona główna Odkrywaj Pomoc
Zaloguj się
miti
/
Decryptor
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 1b1dd06acf
Gałęzie Tagi
Decryptor
/
Decryptor
/
LA.cpp

LA.cpp 4.2 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104 
  1. /*
    2. 

  2.  * Copyright (C) 2011-2017 Intel Corporation. All rights reserved.
    3. 

  3.  *
    4. 

  4.  * Redistribution and use in source and binary forms, with or without
    5. 

  5.  * modification, are permitted provided that the following conditions
    6. 

  6.  * are met:
    7. 

  7.  *
    8. 

  8.  *   * Redistributions of source code must retain the above copyright
    9. 

  9.  *     notice, this list of conditions and the following disclaimer.
    10. 

  10.  *   * Redistributions in binary form must reproduce the above copyright
    11. 

  11.  *     notice, this list of conditions and the following disclaimer in
    12. 

  12.  *     the documentation and/or other materials provided with the
    13. 

  13.  *     distribution.
    14. 

  14.  *   * Neither the name of Intel Corporation nor the names of its
    15. 

  15.  *     contributors may be used to endorse or promote products derived
    16. 

  16.  *     from this software without specific prior written permission.
    17. 

  17.  *
    18. 

  18.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
    19. 

  19.  * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
    20. 

  20.  * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
    21. 

  21.  * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
    22. 

  22.  * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
    23. 

  23.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
    24. 

  24.  * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
    25. 

  25.  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
    26. 

  26.  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
    27. 

  27.  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
    28. 

  28.  * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    29. 

  29.  *
    30. 

  30.  */
    31. 

  31. 

  32. #include "../TrustedInclude/LA.h"
    33. 

  33.     //Handle the request from Source Enclave for a session
    34. 

  34.     uint32_t LA::session_request(sgx_dh_msg1_t *dh_msg1, uint32_t *session_id)
    35. 

  35.     {
    36. 

  36.         sgx_dh_session_t sgx_dh_session;
    37. 

  37.         sgx_status_t status = SGX_SUCCESS;
    38. 

  38. 

  39.         if(!session_id || !dh_msg1)
    40. 

  40.         {
    41. 

  41.             return INVALID_PARAMETER_ERROR;
    42. 

  42.         }
    43. 

  43. 

  44.         //Intialize the session as a session responder
    45. 

  45.         status = sgx_dh_init_session(SGX_DH_SESSION_RESPONDER, &sgx_dh_session);
    46. 

  46.         if(SGX_SUCCESS != status)
    47. 

  47.         {
    48. 

  48.             return status;
    49. 

  49.         }
    50. 

  50. 

  51.         *session_id=1;
    52. 

  52. 

  53.         global_session_info.status = IN_PROGRESS;
    54. 

  54. 

  55.         //Generate Message1 that will be returned to Source Enclave
    56. 

  56.         status = sgx_dh_responder_gen_msg1((sgx_dh_msg1_t*)dh_msg1, &sgx_dh_session);
    57. 

  57.         if(SGX_SUCCESS != status)
    58. 

  58.             return status;
    59. 

  59. 

  60.         memcpy(&global_session_info.in_progress.dh_session, &sgx_dh_session, sizeof(sgx_dh_session_t));
    61. 

  61. 

  62.         return 0;
    63. 

  63.     }
    64. 

  64. 

  65.     //Verify Message 2, generate Message3 and exchange Message 3 with Source Enclave
    66. 

  66.     uint32_t LA::exchange_report(sgx_dh_msg2_t *dh_msg2, sgx_dh_msg3_t *dh_msg3, uint32_t* session_id)
    67. 

  67.     {
    68. 

  68.         sgx_key_128bit_t dh_aek;
    69. 

  69.         uint32_t status = 0;
    70. 

  70.         sgx_dh_session_t sgx_dh_session;
    71. 

  71.         sgx_dh_session_enclave_identity_t initiator_identity;
    72. 

  72.         uint32_t verify_return;
    73. 

  73.         memset(&dh_aek,0, sizeof(sgx_key_128bit_t));
    74. 

  74. 

  75.         if(!dh_msg2 || !dh_msg3)
    76. 

  76.             return INVALID_PARAMETER_ERROR;
    77. 

  77. 

  78.         if(global_session_info.status != IN_PROGRESS)
    79. 

  79.             return INVALID_SESSION;
    80. 

  80. 

  81.         memcpy(&sgx_dh_session, &global_session_info.in_progress.dh_session, sizeof(sgx_dh_session_t));
    82. 

  82. 

  83.         dh_msg3->msg3_body.additional_prop_length = 0;
    84. 

  84. 

  85.         //Process message 2 from source enclave and obtain message 3
    86. 

  86.         status = sgx_dh_responder_proc_msg2(dh_msg2, dh_msg3, &sgx_dh_session, &dh_aek, &initiator_identity);
    87. 

  87.         if(SGX_SUCCESS != status)
    88. 

  88.             return status;
    89. 

  89. 

  90.         //Verify source enclave's trust
    91. 

  91.         // verify_return = Decryptor::verify_peer_enclave_trust(initiator_identity.mr_enclave.m, initiator_identity.mr_signer.m, dh_aek);
    92. 

  92.         // if(verify_return != 0)
    93. 

  93.         //    return verify_return;
    94. 

  94. 

  95.         /*
    96. 

  96.         //save the session ID, status and initialize the session nonce
    97. 

  97.         global_session_info.session_id = *session_id;
    98. 

  98.         global_session_info.status = ACTIVE; // This means that you can't keep calling exchange_report over and over again.
    99. 

  99.         global_session_info.active.counter = 0;
    100. 

  100.         memcpy(&global_session_info.active.AEK, &dh_aek, sizeof(sgx_key_128bit_t));
    101. 

  101.         memset(&dh_aek,0, sizeof(sgx_key_128bit_t));
    102. 

  102.         */
    103. 

  103.         return 0;
    104. 

  104.     }
    105.