SampleEnclave Analysis

最新推荐文章于 2022-03-21 19:21:16 发布
最新推荐文章于 2022-03-21 19:21:16 发布
阅读量596 收藏 3
点赞数
分类专栏: sgx
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/houzhizhen/article/details/90288245
版权

Enclave.edl

import Edger8rSyntax/Types.edl



/* Enclave.edl - Top EDL file. */

enclave {
    
    include "user_types.h" /* buffer_t */

    from "Edger8rSyntax/Types.edl" import *;
    from "Edger8rSyntax/Pointers.edl" import *;
    from "Edger8rSyntax/Arrays.edl" import *;
    from "Edger8rSyntax/Functions.edl" import *;

    from "TrustedLibrary/Libc.edl" import *;
    from "TrustedLibrary/Libcxx.edl" import ecall_exception, ecall_map;
    from "TrustedLibrary/Thread.edl" import *;

    /* 
     * ocall_print_string - invokes OCALL to display string buffer inside the enclave.
     *  [in]: copy the string buffer to App outside.
     *  [string]: specifies 'str' is a NULL terminated buffer.
     */
    untrusted {
        void ocall_print_string([in, string] const char *str);
    };

};

Types.edl defines ecalls with different parameter type

trusted {

        public void ecall_type_char(char val);
        public void ecall_type_int(int val);
        // other functions omitted

Use sgx_edger8r generate App/Enclave_u.c App/Enclave_u.h

cd App && /opt/intel/sgxsdk/bin/x64/sgx_edger8r --untrusted ../Enclave/Enclave.edl --search-path ../Enclave --search-path /opt/intel/sgxsdk/include
Enclave_u.c

We can find that all trusted functions compiled to the function with same name, but add parameter sgx_enclave_id_t eid .
All trusted functions call sgx_ecall with first parameter indicates the enclave id, the second parameter is generated function id. Other parameters will be interpreted soon.

sgx_status_t ecall_type_char(sgx_enclave_id_t eid, char val)
{
	sgx_status_t status;
	ms_ecall_type_char_t ms;
	ms.ms_val = val;
	status = sgx_ecall(eid, 0, &ocall_table_Enclave, &ms);
	return status;
}

sgx_status_t ecall_type_enum_union(sgx_enclave_id_t eid, enum enum_foo_t val1, union union_foo_t* val2)
{
	sgx_status_t status;
	ms_ecall_type_enum_union_t ms;
	ms.ms_val1 = val1;
	ms.ms_val2 = val2;
	status = sgx_ecall(eid, 7, &ocall_table_Enclave, &ms);
	return status;
}

The third parameter of sgx_ecall is ocall_table_Enclave, which include all the functions untrusted, for example Enclave_ocall_print_string in Enclave.edl, added prefix Enclave_.

ocall_table_Enclave = {
	11,
	{
		(void*)Enclave_ocall_print_string,
		(void*)Enclave_ocall_pointer_user_check,
		(void*)Enclave_ocall_pointer_in,
		(void*)Enclave_ocall_pointer_out,
		(void*)Enclave_ocall_pointer_in_out,
		(void*)Enclave_ocall_function_allow,
		(void*)Enclave_sgx_oc_cpuidex,
		(void*)Enclave_sgx_thread_wait_untrusted_event_ocall,
		(void*)Enclave_sgx_thread_set_untrusted_event_ocall,
		(void*)Enclave_sgx_thread_setwait_untrusted_events_ocall,
		(void*)Enclave_sgx_thread_set_multiple_untrusted_events_ocall,
	}
};

The forth and last parameter is ms. Every trusted function has a struct to encapsulate all the parameters, for exmaple, function ecall_type_char has struct ms_ecall_type_char_t.

typedef struct ms_ecall_type_char_t {
	char ms_val;
} ms_ecall_type_char_t;

Parameters in and out

Pointers

   /* 
     * Following keywords/attributes are supported for pointers in Edger8r: 
     *      in, out, user_check, 
     *      string, wstring,
     *      const, size, count, isptr, readonly
     */

[user_check]

  • EDL Definition
  /*
         * [user_check]:
         *      the pointer won't be validated, and the buffer pointed by
         *      'val' is not copied into the enclave either. But Enclave 
         *      can modify the memory pointed by 'val'.
         */
        
        public size_t ecall_pointer_user_check([user_check] void *val, size_t sz);
  • Enclave Definition

size_t ecall_pointer_user_check(void* val, size_t sz)
{
    /* check if the buffer is allocated outside */
    if (sgx_is_outside_enclave(val, sz) != 1)
        abort();

    /*fence after sgx_is_outside_enclave check*/
    sgx_lfence();

    char tmp[100] = { 0 };
    size_t len = sz > 100 ? 100 : sz;

    /* copy the memory into the enclave to make sure 'val' 
     * is not being changed in checksum_internal() */
    memcpy(tmp, val, len);

    int32_t sum = checksum_internal((char*)tmp, len);
    printf("Checksum(0x%p, %zu) = 0x%x\n",
        val, len, (unsigned int)sum);

    /* modify outside memory directly */
    memcpy(val, "SGX_SUCCESS", len > 12 ? 12 : len);

    return len;
}
  • App Definition
 char c[128] = {0};
    size_t len = 0;
    memset(c, 0xe, 128);
    ret = ecall_pointer_user_check(global_eid, &len, &c, 128);
    if (ret != SGX_SUCCESS)
        abort();
    assert(strcmp(c, "SGX_SUCCESS") == 0);

[in]

  • EDL Definition
        /*
         * [in]:
         *      buffer with the same size will be allocated inside the enclave,
         *      content pointed by 'val' will be copied into the new allocated
         *      memory inside. Any changes performed inside the enclave will not 
         *      affect the buffer outside.
         */
        
        public void ecall_pointer_in([in] int *val);
  • Enclave Definition
/* ecall_pointer_in:
 *   the buffer of val is copied to the enclave.
 */

void ecall_pointer_in(int* val)
{
    if (sgx_is_within_enclave(val, sizeof(int)) != 1)
        abort();
    *val = 1234;
}
  • App Definition
	val = 0;
    ret = ecall_pointer_in(global_eid, &val);
    if (ret != SGX_SUCCESS)
        abort();
    assert(val == 0);

[out]

  • EDL Definition
   /*
         * [out]:
         *      buffer with the same size will be allocated inside the enclave,
         *      but the content pointed by 'val' won't be copied. But after return, 
         *      the buffer inside the enclave will copied into outside 'val'.
         */
        
        public void ecall_pointer_out([out] int *val);
  • Enclave Definition
/* ecall_pointer_out:
 *   the buffer of val is copied to the untrusted side.
 */
void ecall_pointer_out(int* val)
{
    if (sgx_is_within_enclave(val, sizeof(int)) != 1)
        abort();
    assert(*val == 0);
    *val = 1234;
}
  • App Definition
	val = 0;
    ret = ecall_pointer_out(global_eid, &val);
    if (ret != SGX_SUCCESS)
        abort();
    assert(val == 1234);

[in, out]

  • EDL Definition
 /*
         * [in, out]:
         *      buffer with the same size will be allocated inside the enclave,
         *      the content pointed by 'val' will be copied either. After return, 
         *      the buffer inside the enclave will by copied into outside 'val' again.
         */
        
        public void ecall_pointer_in_out([in, out] int *val);
  • Enclave Definition
/* ecall_pointer_in_out:
 * the buffer of val is double-copied.
 */
void ecall_pointer_in_out(int* val)
{
    if (sgx_is_within_enclave(val, sizeof(int)) != 1)
        abort();
    *val = 1234;
}
  • App Definition
    val = 0;
    ret = ecall_pointer_in_out(global_eid, &val);
    if (ret != SGX_SUCCESS)
        abort();
    assert(val == 1234);

[string]

  • EDL Definition
  /*
         * [string]:
         *      the attribute tells Edger8r 'str' is NULL terminated string, so strlen 
         *      will be used to count the length of buffer pointed by 'str'.
         */
        
        public void ecall_pointer_string([in, out, string] char *str);
  • Enclave Definition

/* ecall_pointer_string:
 *   [string] defines a string.
 */
void ecall_pointer_string(char* str)
{
    strncpy(str, "0987654321", strlen(str));
}
  • App Definition

    char str1[] = "1234567890";
    ret = ecall_pointer_string(global_eid, str1);
    if (ret != SGX_SUCCESS)
        abort();
    assert(strlen(str1) == 10 && memcmp(str1, "0987654321", strlen(str1)) == 0);

[const]

  • EDL Definition
  /*
         * [const]:
         *      the attribute tells Edger8r the buffer pointed by 'str' cannot be modified,
         *      so users cannot decorate 'str' with [out] attribute anymore.
         */
        
        public void ecall_pointer_string_const([in, string] const char *str);
  • Enclave Definition
/* ecall_pointer_string_const:
 *   const [string] defines a string that cannot be modified.
 */
void ecall_pointer_string_const(const char* str)
{
    char* temp = new char[strlen(str)];
    strncpy(temp, str, strlen(str));
    delete[] temp;
}
  • App Definition
	const char str2[] = "1234567890";
    ret = ecall_pointer_string_const(global_eid, str2);
    if (ret != SGX_SUCCESS)
        abort();
    assert(strlen(str2) == 10 && memcmp(str2, "1234567890", strlen(str2)) == 0);

[size]

  • EDL Definition
 /*
         * [size]:
         *      the attribute tells Edger8r the length of buffer in byte pointed by 'ptr' 
         *      (shall be copied or not). 
         * Note: Users shall not specify [size] on [string] parameters.
         */
        
        public void ecall_pointer_size([in, out, size=len] void *ptr, size_t len);
  • Enclave Definition
/* ecall_pointer_size:
 *   'len' needs to be specified to tell Edger8r the length of 'str'.
 */
void ecall_pointer_size(void* ptr, size_t len)
{
    strncpy((char*)ptr, "0987654321", len);
}
  • App Definition
char str3[] = "1234567890";
    ret = ecall_pointer_size(global_eid, (void*)str3, strlen(str3));
    if (ret != SGX_SUCCESS)
        abort();
    assert(strlen(str3) == 10 && memcmp(str3, "0987654321", strlen(str3)) == 0);

[count]

  • EDL Definition
 /*
         * [count]:
         *      the attribute tells Edger8r the number of integers to be copied from 'arr'.
         */
        
        public void ecall_pointer_count([in, out, count=cnt] int *arr, size_t cnt);
  • Enclave Definition
/* ecall_pointer_count:
 *   'cnt' needs to be specified to tell Edger8r the number of elements in 'arr'.
 */
void ecall_pointer_count(int* arr, size_t count)
{
    int cnt = (int)count;
    for (int i = (cnt - 1); i >= 0; i--)
        arr[i] = (cnt - 1 - i);
}
  • App Definition
    int arr[10] = {0, 1, 2, 3, 4, 5, 6, 7, 8, 9};
    ret = ecall_pointer_count(global_eid, arr, 10);
    if (ret != SGX_SUCCESS)
        abort();
    for (int i = 0; i < 10; i++)
        assert(arr[i] == (9 - i));

[isptr]

  • EDL Definition
/*
         * [isptr]:
         *      tells Edger8r the user defined type is a pointer; 
         * [readonly]:
         *      forbids the buffer allocated inside the enclave to be copied back to App
         *      (cannot use with [out]).
         */
        
        public void ecall_pointer_isptr_readonly([in, isptr, readonly, size=len] buffer_t buf, size_t len);
  • Enclave Definition
/* ecall_pointer_isptr_readonly:
 *   'buf' is user defined type, shall be tagged with [isptr].
 *   if it's not writable, [readonly] shall be specified. 
 */
void ecall_pointer_isptr_readonly(buffer_t buf, size_t len)
{
    strncpy((char*)buf, "0987654321", len);
}
  • App Definition
char str4[] = "1234567890";
    ret = ecall_pointer_isptr_readonly(global_eid, (buffer_t)str4, strlen(str4));
    if (ret != SGX_SUCCESS)
        abort();
    assert(strlen(str4) == 10 && memcmp(str4, "1234567890", strlen(str4)) == 0);

public functions and private function in edl

Edl Definition

trusted {

        /*
         * [public]:
         *      public ECALL can be called directly in App.
         */
        
        public void ecall_function_public(void);

        /*
         * [private]:
         *      private ECALL cannot be called directly in App.
         */
        
        int ecall_function_private(void);
    
    };

Enclave Definition

/* ecall_function_public:
 *   The public ECALL that invokes the OCALL 'ocall_function_allow'.
 */
void ecall_function_public(void)
{
    sgx_status_t ret = SGX_ERROR_UNEXPECTED;

    ret = ocall_function_allow();
    if (ret != SGX_SUCCESS)
        abort();
    
    return;
}

/* ecall_function_private:
 *   The private ECALL that only can be invoked in the OCALL 'ocall_function_allow'.
 */
int ecall_function_private(void)
{
    return 1;
}

App Definition

/* No need to implement memccpy here! */

/* edger8r_function_attributes:
 *   Invokes ECALL declared with calling convention attributes.
 *   Invokes ECALL declared with [public].
 */
void edger8r_function_attributes(void)
{
    sgx_status_t ret = SGX_ERROR_UNEXPECTED;

    ret = ecall_function_public(global_eid);
    if (ret != SGX_SUCCESS)
        abort();
    
    /* user shall not invoke private function here */
    int runned = 0;
    ret = ecall_function_private(global_eid, &runned);
    if (ret != SGX_ERROR_ECALL_NOT_ALLOWED || runned != 0)
        abort();
}

/* ocall_function_allow:
 *   The OCALL invokes the [allow]ed ECALL 'edger8r_private'.
 */
void ocall_function_allow(void)
{
    int runned = 0;
    sgx_status_t ret = SGX_ERROR_UNEXPECTED;
    
    ret = ecall_function_private(global_eid, &runned);
    if (ret != SGX_SUCCESS || runned != 1)
        abort();
}
houzhizhen
关注
  • 0
    点赞
  • 3
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
【Coding】——SGXSDK_SampleEncalve
qq_41488595的博客
06-01 364
TrustedLibrary Thread.cpp文件为调用Encalve中一些ECALL的接口函数,调用该函数即可调用对应的ECALL, global_eid在App.h中设置为全局变量,在这里添加上该头文件即可使用该变量 Enclave TrustedLibrary 供外部调用的ECALL函数的实现,要实现线程功能,需要在edl中引入一些函数,在开发文档中有相应描述 edl文件中引入对应的可信sgx接口函数 Include 用户自定义的类型,在这里进行包含,直接在enclave.edl中进行引入即
Note: EnclaveDB: A Secure Database using SGX
weixin_30497527的博客
03-27 576
EnclaveDB uses SGX security properties to secure database operations. Why The cloud database is continuously attacked by malicious entities, resulting in frequent data leakage. Semantic security encr...
Intel SGX Developer Reference 学习笔记(六)
TTTT的博客
03-21 1224
 在这之前,一直想学习关于SGX实操性的、应用相关的内容,我浏览了相关资料,总觉得跟不上那些作者的脚步,学到的都是些零零碎碎的知识,收获都不是很大,一边阅读还在一边质疑资料的可读性,所以我决定返朴归真,静下心来好好看一看官网的手册,并作一些笔记方便自己的日后学习。 手册下载地址: Intel® Software Guard Extensions (Intel® SGX) SDK for Linux* OS Intel® Software Guard Extensions SDK Sample Code
Intel SGX开发者参考书(四)—— Enclave开发基础(一)
Honglalala
04-19 3856
@Intel SGX 读书笔记… Enclave开发基础 本章节介绍以下Enclave开发工具: 编写Enclave函数 调用函数到Enclave内 调用函数到Enclave外 将Enclave与库连接起来 将应用程序与不可信库连接起来 Enclave定义语言(EDL)语法 加载和卸载Enclave 典型的Enclave开发过程包含以下步骤: 使用IDE插件向导生成Enclave项目 在EDL文...
使用CMake完成SGX SDK程序的编译
daichunkai123的博客
01-16 1906
前言 在使用SGX保护大工程中的一部分的时候,大工程往往使用的是CMake完成工程源码的编译并产生可执行文件,但是SGX SDK给的例子都是使用Makefile完成编译,为了在大工程中使用SGX SDK功能,那么就要实现使用CMake编译SGX SDK程序 准备工作 我的环境仍然是使用的以前SGX文章中的环境,在此不做赘述,现阶段我使用的SDK SDK版本是2.0版本,下载地址是https:
elasticsearch,analysis-ik + analysis-pinyin,7.4.2下载
03-06
在本主题中,我们关注的是两个重要的插件:analysis-ik和analysis-pinyin,它们分别用于中文分词处理。 首先,让我们深入了解`analysis-ik`。此插件是专门为Elasticsearch设计的中文分词器,由社区维护并持续更新。...
analysis-icu
10-14
analysis-icu:深入理解ICU库在文本分析中的应用》 在IT领域,特别是搜索引擎和信息处理系统中,analysis-icu是一个至关重要的工具。这个标题"analysis-icu"代表了一种针对Unicode字符集进行高级文本分析的解决...
SAP BPC系统 Analysis for Microsoft Office 管理手册
06-21
SAP BPC系统 Analysis for Microsoft Office 管理手册 SAP BPC系统 Analysis for Microsoft Office 管理手册是SAP公司提供的一份管理手册,旨在帮助用户了解SAP Analysis for Microsoft Office的安装、配置和使用...
最新版 elasticsearch-analysis-ik-7.17.6.zip
09-02
《Elasticsearch Analysis IK插件详解与7.17.6版本特性》 Elasticsearch是一种流行的开源全文搜索引擎,以其高效、灵活和可扩展性深受开发者喜爱。在处理中文分词方面,Elasticsearch-analysis-ik插件是不可或缺的...
最新版elasticsearch-analysis-ik-8.8.2.zip
最新发布
08-04
最新版elasticsearch-analysis-ik-8.8.2.zip最新版elasticsearch-analysis-ik-8.8.2.zip最新版elasticsearch-analysis-ik-8.8.2.zip最新版elasticsearch-analysis-ik-8.8.2.zip
linux-sgx:面向Linux的英特尔SGX *
05-11
用于Linux * OS的英特尔(R)软件保护扩展 linux-sgx 介绍 英特尔:registered:软件保护扩展(英特尔:registered:SGX)是面向寻求保护选定代码和数据免于泄露或修改的应用程序开发人员的英特尔技术。 Linux * Intel(R)SGX软件堆栈由Intel(R)SGX驱动程序,Intel(R)SGX SDK和Intel(R)SGX平台软件(PSW)组成。 英特尔SGX SDK和英特尔SGX PSW托管在项目中。 项目维护Linux * Intel(R)SGX软件堆栈的树外驱动程序,该驱动程序将一直使用到驱动程序上游过程完成为止。 它在具有灵活启动控制和Intel(R)AES新指令支持的平台上使用,并且既可以支持基于椭圆曲线数字签名算法(ECDSA)的证明,也可以支持基于增强隐私识别(EPID)的证明。 项目托管Linux * Intel(R)SGX软件堆栈的其他树外驱动程序,将在驱动程序上
Linux下SGX的使用(1)-makefile阅读
daichunkai123的博客
09-19 5315
预备Ubuntu:Ubuntu 16.04.1 LTS SGX版本:Intel SGX Linux 1.8 Release 下载地址:https://01.org/zh/intel-software-guard-extensions/downloads?langredirect=1 安装过程:https://download.01.org/intel-sgx/linux-1.8/docs/In
Ubuntu 16.04下Intel SGX SDK环境搭建(硬件不支持情况)
cyLee_的博客
05-14 3318
文章目录1.下载安装包2.安装必要的工具2.1 On Ubuntu* 16.04:2.2 安装alien:2.3 下载并安装Intel® Capability Licensing Service(iclsClient):2.4 安装JHI服务:3.安装SGX SDK4.测试SDK是否安装成功4.1 值修改4.2 进行测试 本文介绍了在Ubuntu 16.04下安装Intel SGX SDK的步骤。...
从0开始写一个 SGX
y734564892的博客
10-21 3666
从0开始写一个 SGX1.sgx project结构参考sgxsdk的samplecode中的sampleEnclave包含文件夹: App,Enclave,Include包含文件:Makefile,Readme.txt1.App:外部程序,在enclave外部运行的代码外部应用程序源码2.Enclave: Enclave.config.xml:enclave 配置文件tagdescription
Intel SGX入门(二)——SGX应用篇
小气球归来的博客
06-25 5650
大概了解SGX以后,SGX应用有哪些? 第一种,SGX应用于服务器端,云端 这一类个人觉得很需要结合代码、它们所描述的行业需求和以前的行业产品去考虑问题,毕竟是应用,不然可能体会不到精髓。 我对SGX应用的理解也停留在表层,就是他们拿SGX大概做了个啥,但是有些细节,我目前也说不太上来。 DelegaTEE(SEC’18)Siniša Matetić (ETH Zurich)下一篇也是他 以前Alice(Owner)想将自己部分Paypal中的资产给Bob(Delegatee),...
SGX中Enclave.edl代码解析
zhangyajunna的博客
04-21 1051
Enclave.edl文件中主要包括trusted和untrusted两部分。 一、trusted文件内容 (一)trusted中出现的不带返回值的函数如: public void process_log([in,string] char *str); 它必须得是public类型的,否则在enclave外无法进行ecall的调用。[in]表示数据流将从不可信部分拷贝进入enclave内部。...
Ubuntu 16.04下Intel SGX应用程序程序开发——获得Enclave函数返回值!
qiu_pengfei的博客
12-14 2377
这篇文章主要讲述获得Enclave函数执行后的返回值。以一个累加函数的返回值为例。 安装完SGX SDK后,我们可以在输入的安装目录下的/sgxsdk/SampleCode文件夹下找到Intel提供的SGX应用程序示例,共有6个例子,根据名字可以大概判断是做什么的,每个示例中的README.txt文件给出了示例的详细信息。6个示例如下所示: 1. 复制SampleEnclave示例并建
Enclave定义语言语法(.edl文件的编写)(一)
qq_46057969的博客
05-09 1634
姓名 性别 成绩 张三 男 60 王五 男 100
Secure Enclave相关猜想与记录 比较杂
u014311960的专栏
12-21 873
其实 系统SecGenerateKeyPair生成 或者openssl生成 密钥对 是一样的 用硬件 也就是 Mac系统生成.der和p12文件 植入到代码中 这样生成的密钥对也是用的openssl 和用代码生成的是一样的 而且每次生成密钥对 都是随机的串码 每次都不同 所以主要问题在于存储 因为我们的touchID等登录 需要用同一对密钥对 公钥在注册touchID的时候发给了server 密钥...
HPLoadRunner Analysis用户指南
Analysis User Guide.pdf 中的知识点 **概述** Analysis User Guide.pdf 是一份详细的用户指南,旨在帮助用户了解和使用 Analysis 软件。该指南涵盖了软件的使用、配置和故障排除等方面。 **法律声明** 法律声明...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值