Assignment 7 #4
4 changed files with 138 additions and 0 deletions
28
Assignment 7 - SGX Hands-on/src/enclave/enclave.c
Normal file
28
Assignment 7 - SGX Hands-on/src/enclave/enclave.c
Normal file
|
@ -0,0 +1,28 @@
|
||||||
|
#include "Enclave.h"
|
||||||
|
#include "Enclave_t.h"
|
||||||
|
#include <sgx_error.h>
|
||||||
|
#include <sgx_tcrypto.h>
|
||||||
|
|
||||||
|
sgx_status_t public_key(uint8_t *gx, uint8_t *gy) {
|
||||||
|
// unseal key or from file system
|
||||||
|
}
|
||||||
|
|
||||||
|
sgx_status_t sign_firmware(uint8_t *data, size_t data_size, uint8_t *signature, size_t signature_size) {
|
||||||
|
sgx_ecc_state_handle_t ecc_handle;
|
||||||
|
sgx_ec256_private_t private;
|
||||||
|
sgx_ec256_public_t public;
|
||||||
|
|
||||||
|
sgx_status_t status;
|
||||||
|
if((status = sgx_ecc256_open_context(&ecc_handle)) != SGX_SUCCESS)
|
||||||
|
return status;
|
||||||
|
|
||||||
|
if((status = sgx_ecc256_create_key_pair(&private, &public, ecc_handle)) != SGX_SUCCESS)
|
||||||
|
return status;
|
||||||
|
|
||||||
|
sgx_ec256_signature_t ecc_signature;
|
||||||
|
if((status = sgx_ecdsa_sign(data, data_size, &private, &ecc_signature, ecc_handle)) != SGX_SUCCESS)
|
||||||
|
return status;
|
||||||
|
|
||||||
|
sgx_ecc256_close_context(ecc_handle);
|
||||||
|
return SGX_SUCCESS;
|
||||||
|
}
|
12
Assignment 7 - SGX Hands-on/src/enclave/enclave.config.xml
Normal file
12
Assignment 7 - SGX Hands-on/src/enclave/enclave.config.xml
Normal file
|
@ -0,0 +1,12 @@
|
||||||
|
<EnclaveConfiguration>
|
||||||
|
<ProdID>0</ProdID>
|
||||||
|
<ISVSVN>0</ISVSVN>
|
||||||
|
<StackMaxSize>0x400000</StackMaxSize>
|
||||||
|
<HeapMaxSize>0x1000000</HeapMaxSize>
|
||||||
|
<TCSNum>10</TCSNum>
|
||||||
|
<TCSPolicy>1</TCSPolicy>
|
||||||
|
<!-- Recommend changing 'DisableDebug' to 1 to make the enclave undebuggable for enclave release -->
|
||||||
|
<DisableDebug>0</DisableDebug>
|
||||||
|
<MiscSelect>0</MiscSelect>
|
||||||
|
<MiscMask>0xFFFFFFFF</MiscMask>
|
||||||
|
</EnclaveConfiguration>
|
55
Assignment 7 - SGX Hands-on/src/enclave/enclave.edl
Normal file
55
Assignment 7 - SGX Hands-on/src/enclave/enclave.edl
Normal file
|
@ -0,0 +1,55 @@
|
||||||
|
/*
|
||||||
|
* Copyright (C) 2011-2018 Intel Corporation. All rights reserved.
|
||||||
|
*
|
||||||
|
* Redistribution and use in source and binary forms, with or without
|
||||||
|
* modification, are permitted provided that the following conditions
|
||||||
|
* are met:
|
||||||
|
*
|
||||||
|
* * Redistributions of source code must retain the above copyright
|
||||||
|
* notice, this list of conditions and the following disclaimer.
|
||||||
|
* * Redistributions in binary form must reproduce the above copyright
|
||||||
|
* notice, this list of conditions and the following disclaimer in
|
||||||
|
* the documentation and/or other materials provided with the
|
||||||
|
* distribution.
|
||||||
|
* * Neither the name of Intel Corporation nor the names of its
|
||||||
|
* contributors may be used to endorse or promote products derived
|
||||||
|
* from this software without specific prior written permission.
|
||||||
|
*
|
||||||
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
||||||
|
* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
||||||
|
* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
||||||
|
* A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
||||||
|
* OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
||||||
|
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
||||||
|
* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
||||||
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
||||||
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
||||||
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
||||||
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||||
|
*
|
||||||
|
*/
|
||||||
|
|
||||||
|
/* Enclave.edl - Top EDL file. */
|
||||||
|
|
||||||
|
enclave {
|
||||||
|
|
||||||
|
/* Import ECALL/OCALL from sub-directory EDLs.
|
||||||
|
* [from]: specifies the location of EDL file.
|
||||||
|
* [import]: specifies the functions to import,
|
||||||
|
* [*]: implies to import all functions.
|
||||||
|
*/
|
||||||
|
|
||||||
|
trusted {
|
||||||
|
public sgx_status_t public_key([out]uint8_t *gx, [out]uint8_t *gy);
|
||||||
|
public sgx_status_t sign_firmware([in, size=data_size]uint8_t *data, size_t data_size, [out, size=signature_size]uint8_t *signature, size_t signature_size);
|
||||||
|
};
|
||||||
|
|
||||||
|
/*
|
||||||
|
* ocall_print_string - invokes OCALL to display string buffer inside the enclave.
|
||||||
|
* [in]: copy the string buffer to App outside.
|
||||||
|
* [string]: specifies 'str' is a NULL terminated buffer.
|
||||||
|
*/
|
||||||
|
untrusted {
|
||||||
|
|
||||||
|
};
|
||||||
|
};
|
43
Assignment 7 - SGX Hands-on/src/enclave/enclave.h
Normal file
43
Assignment 7 - SGX Hands-on/src/enclave/enclave.h
Normal file
|
@ -0,0 +1,43 @@
|
||||||
|
/*
|
||||||
|
* Copyright (C) 2011-2018 Intel Corporation. All rights reserved.
|
||||||
|
*
|
||||||
|
* Redistribution and use in source and binary forms, with or without
|
||||||
|
* modification, are permitted provided that the following conditions
|
||||||
|
* are met:
|
||||||
|
*
|
||||||
|
* * Redistributions of source code must retain the above copyright
|
||||||
|
* notice, this list of conditions and the following disclaimer.
|
||||||
|
* * Redistributions in binary form must reproduce the above copyright
|
||||||
|
* notice, this list of conditions and the following disclaimer in
|
||||||
|
* the documentation and/or other materials provided with the
|
||||||
|
* distribution.
|
||||||
|
* * Neither the name of Intel Corporation nor the names of its
|
||||||
|
* contributors may be used to endorse or promote products derived
|
||||||
|
* from this software without specific prior written permission.
|
||||||
|
*
|
||||||
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
||||||
|
* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
||||||
|
* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
||||||
|
* A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
||||||
|
* OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
||||||
|
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
||||||
|
* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
||||||
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
||||||
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
||||||
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
||||||
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||||
|
*
|
||||||
|
*/
|
||||||
|
|
||||||
|
|
||||||
|
#ifndef _ENCLAVE_H_
|
||||||
|
#define _ENCLAVE_H_
|
||||||
|
|
||||||
|
#include <stdlib.h>
|
||||||
|
#include <assert.h>
|
||||||
|
#include <sgx_error.h>
|
||||||
|
|
||||||
|
sgx_status_t public_key(uint8_t *gx, uint8_t *gy);
|
||||||
|
sgx_status_t sign_firmware(uint8_t *data, size_t data_size, uint8_t *signature, size_t signature_size);
|
||||||
|
|
||||||
|
#endif /* !_ENCLAVE_H_ */
|
Loading…
Reference in a new issue