enclave_runner/

loader.rs

/* Copyright (c) Fortanix, Inc.
 *
 * This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

use std::arch::x86_64::{self, CpuidResult};
use std::fs::File;
use std::io::{Error as IoError, ErrorKind, Read, Result as IoResult};
use std::ops::RangeInclusive;
use std::os::raw::c_void;
use std::path::Path;
use std::{arch, str};

use thiserror::Error as ThisError;
use anyhow::{Context, format_err};

#[cfg(feature = "crypto-openssl")]
use openssl::{
    hash::Hasher,
    pkey::PKey,
};

use sgx_isa::{Attributes, AttributesFlags, Miscselect, Sigstruct};
use sgxs::sgxs::PageReader;
use sgxs::crypto::{SgxHashOps, SgxRsaOps};
use sgxs::loader::{Load, MappingInfo, Tcs};
use sgxs::sigstruct::{self, EnclaveHash, Signer};

use crate::tcs::DebugBuffer;
use crate::usercalls::UsercallExtension;
use crate::{Command, Library};

enum EnclaveSource<'a> {
    Path(&'a Path),
    File(File),
    Data(&'a [u8]),
}

impl<'a> EnclaveSource<'a> {
    fn try_clone(&self) -> Option<Self> {
        match *self {
            EnclaveSource::Path(path) => Some(EnclaveSource::Path(path)),
            EnclaveSource::Data(data) => Some(EnclaveSource::Data(data)),
            EnclaveSource::File(_) => None,
        }
    }
}

impl<'a> Read for EnclaveSource<'a> {
    fn read(&mut self, buf: &mut [u8]) -> IoResult<usize> {
        if let &mut EnclaveSource::Path(path) = self {
            let file = File::open(path)?;
            *self = EnclaveSource::File(file);
        }

        match *self {
            EnclaveSource::File(ref mut file) => file.read(buf),
            EnclaveSource::Data(ref mut data) => data.read(buf),
            EnclaveSource::Path(_) => unreachable!(),
        }
    }
}

pub struct EnclaveBuilder<'a> {
    enclave: EnclaveSource<'a>,
    signature: Option<Sigstruct>,
    attributes: Option<Attributes>,
    miscselect: Option<Miscselect>,
    usercall_ext: Option<Box<dyn UsercallExtension>>,
    load_and_sign: Option<Box<dyn FnOnce(Signer) -> Result<Sigstruct, anyhow::Error>>>,
    hash_enclave: Option<Box<dyn FnOnce(&mut EnclaveSource<'_>) -> Result<EnclaveHash, anyhow::Error>>>,
    forward_panics: bool,
    force_time_usercalls: bool,
    cmd_args: Option<Vec<Vec<u8>>>,
    num_worker_threads: Option<usize>,
}

#[derive(Debug, ThisError)]
pub enum EnclavePanic {
    /// The first byte of the debug buffer was 0
    #[error("Enclave panicked.")]
    NoDebugBuf,
    /// The debug buffer could be interpreted as a zero-terminated UTF-8 string
    #[error("Enclave panicked: {}", _0)]
    DebugStr(String),
    /// The first byte of the debug buffer was not 0, but it was also not a
    /// zero-terminated UTF-8 string
    #[error("Enclave panicked: {:?}", _0)]
    DebugBuf(Vec<u8>),
}

impl From<DebugBuffer> for EnclavePanic {
    fn from(buf: DebugBuffer) -> EnclavePanic {
        if buf[0] == 0 {
            EnclavePanic::NoDebugBuf
        } else {
            match str::from_utf8(buf.split(|v| *v == 0).next().unwrap()) {
                Ok(s) => EnclavePanic::DebugStr(s.to_owned()),
                Err(_) => EnclavePanic::DebugBuf(buf.to_vec()),
            }
        }
    }
}

// Erased here refers to Type Erasure
#[derive(Debug)]
pub(crate) struct ErasedTcs {
    address: *mut c_void,
    // This represents a resource so we need to maintain ownership even if not
    // used
    #[allow(dead_code)]
    tcs: Box<dyn Tcs>,
}

// Would be `send` if we didn't cache the raw pointer address
unsafe impl Send for ErasedTcs {}

impl ErasedTcs {
    fn new<T: Tcs + 'static>(tcs: T) -> ErasedTcs {
        ErasedTcs {
            address: tcs.address(),
            tcs: Box::new(tcs),
        }
    }
}

impl Tcs for ErasedTcs {
    fn address(&self) -> *mut c_void {
        self.address
    }
}

impl<'a> EnclaveBuilder<'a> {
    pub fn new(enclave_path: &'a Path) -> EnclaveBuilder<'a> {
        Self::new_with_source(EnclaveSource::Path(enclave_path))
    }

    pub fn new_from_memory(enclave_data: &'a [u8]) -> EnclaveBuilder<'a> {
        Self::new_with_source(EnclaveSource::Data(enclave_data))
    }

    fn new_with_source(enclave: EnclaveSource<'a>) -> EnclaveBuilder<'a> {
        let mut ret = EnclaveBuilder {
            enclave,
            attributes: None,
            miscselect: None,
            signature: None,
            usercall_ext: None,
            load_and_sign: None,
            hash_enclave: None,
            forward_panics: false,
            force_time_usercalls: true, // By default, keep the old behavior of always doing a usercall on an insecure_time call
            cmd_args: None,
            num_worker_threads: None,
        };

        let _ = ret.coresident_signature();

        #[cfg(feature = "crypto-openssl")]
        ret.with_dummy_signature_signer::<Hasher, _, _, _, _>(|der| {
            PKey::private_key_from_der(der).unwrap().rsa().unwrap()
        });

        ret
    }

    fn generate_xfrm(max_ssaframesize_in_pages: u32) -> u64 {
        fn cpuid(eax: u32, ecx: u32) -> Option<CpuidResult> {
            unsafe {
                if eax <= x86_64::__get_cpuid_max(0).0 {
                    Some(x86_64::__cpuid_count(eax, ecx))
                } else {
                    None
                }
            }
        }

        fn xgetbv0() -> u64 {
            unsafe { arch::x86_64::_xgetbv(0) }
        }

        debug_assert_ne!(0, max_ssaframesize_in_pages);
        let xcr0 = xgetbv0();

        // See algorithm of Intel x86 dev manual Chpt 40.7.2.2
        let xfrm = (0..64)
            .map(|bit| {
                let select = 0x1 << bit;

                if bit == 0 || bit == 1 {
                    return select; // Bit 0 and 1 always need to be set
                }

                if xcr0 & select == 0 {
                    return 0;
                }

                let CpuidResult { ebx: base, eax: size, .. } = match cpuid(0x0d, bit) {
                    None | Some(CpuidResult { ebx: 0, .. }) => return 0,
                    Some(v) => v,
                };

                if max_ssaframesize_in_pages * 0x1000 < base + size {
                    return 0;
                }

                select
            })
            .fold(0, |xfrm, b| xfrm | b);

        // Intel x86 dev manual Vol 3 Chpt 13.3:
        // "Executing the XSETBV instruction causes a general-protection fault (#GP) if ECX = 0
        // and EAX[17] ≠ EAX[18] (TILECFG and TILEDATA must be enabled together). This implies
        // that the value of XCR0[18:17] is always either 00b or 11b."
        // The enclave entry code executes xrstor, and we may have just cleared bit 18, so we
        // need to correct the invariant
        const XCR0_TILE_BITS: u64 = 0b11 << 17;
        match xfrm & XCR0_TILE_BITS {
            XCR0_TILE_BITS | 0 => xfrm,
            _ => xfrm & !XCR0_TILE_BITS,
        }
    }

    fn generate_dummy_signature(&mut self) -> Result<Sigstruct, anyhow::Error> {
        let mut enclave = self.enclave.try_clone().unwrap();
        let create_info = PageReader::new(&mut enclave)?;
        let mut enclave = self.enclave.try_clone().unwrap();
        let hash = match self.hash_enclave.take() {
            Some(f) => f(&mut enclave)?,
            None => return Err(format_err!("either compile with default features or use with_dummy_signature_signer()"))
        };
        let mut signer = Signer::new(hash);

        let attributes = self.attributes.unwrap_or_else(|| Attributes {
            flags: AttributesFlags::DEBUG | AttributesFlags::MODE64BIT,
            xfrm: Self::generate_xfrm(create_info.0.ecreate.ssaframesize),
        });
        signer
            .attributes_flags(attributes.flags, !0)
            .attributes_xfrm(attributes.xfrm, !0);

        if let Some(miscselect) = self.miscselect {
            signer.miscselect(miscselect, !0);
        }

        match self.load_and_sign.take() {
            Some(f) => f(signer),
            None => Err(format_err!("either compile with default features or use with_dummy_signature_signer()"))
        }
    }

    pub fn dummy_signature(&mut self) -> &mut Self {
        self.signature = None;
        self
    }

    /// Use custom implemetations of [`SgxHashOps`] and [`SgxRsaOps`] for producing dummy signature.
    ///
    /// The hasher is specified through type parameter `H`, and the signer through `S`.
    /// `load_key` is used to parse an RSA private key in DER format and should return a type `T`
    /// that implements `AsRef<S>` where `S` is a type that implements [`SgxRsaOps`]. `E` is the
    /// associated `Error` type of `S` when implementing [`SgxRsaOps`].
    ///
    /// [`SgxHashOps`]: ../sgxs/crypto/trait.SgxHashOps.html
    /// [`SgxRsaOps`]: ../sgxs/crypto/trait.SgxRsaOps.html
    pub fn with_dummy_signature_signer<H, S, F, E, T>(&mut self, load_key: F)
    where
        H: SgxHashOps,
        E: std::error::Error + Send + Sync + 'static,
        S: SgxRsaOps<Error = E>,
        T: AsRef<S>,
        F: 'static + FnOnce(&[u8]) -> T,
    {
        self.load_and_sign = Some(Box::new(move |signer| {
            let key = load_key(include_bytes!("dummy.key"));
            signer.sign::<_, H>(key.as_ref()).map_err(|e| e.into())
        }));
        self.hash_enclave = Some(Box::new(|stream| {
            EnclaveHash::from_stream::<_, H>(stream)
        }));
    }

    pub fn coresident_signature(&mut self) -> IoResult<&mut Self> {
        if let EnclaveSource::Path(path) = self.enclave {
            let sigfile = path.with_extension("sig");
            self.signature(sigfile)
        } else {
            Err(IoError::new(
                ErrorKind::NotFound,
                "Can't load coresident signature for non-file enclave",
            ))
        }
    }

    pub fn signature<P: AsRef<Path>>(&mut self, path: P) -> IoResult<&mut Self> {
        let mut file = File::open(path)?;
        self.signature = Some(sigstruct::read(&mut file)?);
        Ok(self)
    }

    pub fn sigstruct(&mut self, sigstruct: Sigstruct) -> &mut Self {
        self.signature = Some(sigstruct);
        self
    }

    pub fn attributes(&mut self, attributes: Attributes) -> &mut Self {
        self.attributes = Some(attributes);
        self
    }

    pub fn miscselect(&mut self, miscselect: Miscselect) -> &mut Self {
        self.miscselect = Some(miscselect);
        self
    }

    pub fn usercall_extension<T: Into<Box<dyn UsercallExtension>>>(&mut self, extension: T) {
        self.usercall_ext = Some(extension.into());
    }

    /// Whether to panic the runner if any enclave thread panics.
    /// Defaults to `false`.
    /// Note: If multiple enclaves are loaded, and an enclave with this set to
    /// true panics, then all enclaves handled by this runner will exit because
    /// the runner itself will panic.
    pub fn forward_panics(&mut self, fp: bool) -> &mut Self {
        self.forward_panics = fp;
        self
    }

    /// SGXv2 platforms allow enclaves to use the `rdtsc` instruction. This can speed up
    /// performance significantly as enclave no longer need to call out to userspace to request the
    /// current time. Unfortunately, older enclaves are not compatible with new enclave runners.
    /// Also, sometimes the behavior of enclaves always calling out the userspace needs to be
    /// simulated. This setting enforces the old behavior.
    pub fn force_insecure_time_usercalls(&mut self, force_time_usercalls: bool) -> &mut Self {
        self.force_time_usercalls = force_time_usercalls;
        self
    }

    fn initialized_args_mut(&mut self) -> &mut Vec<Vec<u8>> {
        self.cmd_args.get_or_insert_with(|| vec![b"enclave".to_vec()])
    }

    /// Adds multiple arguments to pass to enclave's `fn main`.
    /// **NOTE:** This is not an appropriate channel for passing secrets or
    /// security configurations to the enclave.
    ///
    /// **NOTE:** This is only applicable to [`Command`] enclaves.
    /// Adding command arguments and then calling [`build_library`] will cause
    /// a panic.
    ///
    /// [`Command`]: struct.Command.html
    /// [`build_library`]: struct.EnclaveBuilder.html#method.build_library
    pub fn args<I, S>(&mut self, args: I) -> &mut Self
    where
        I: IntoIterator<Item = S>,
        S: AsRef<[u8]>,
    {
        let args = args.into_iter().map(|a| a.as_ref().to_owned());
        self.initialized_args_mut().extend(args);
        self
    }

    /// Adds an argument to pass to enclave's `fn main`.
    /// **NOTE:** This is not an appropriate channel for passing secrets or
    /// security configurations to the enclave.
    ///
    /// **NOTE:** This is only applicable to [`Command`] enclaves.
    /// Adding command arguments and then calling [`build_library`] will cause
    /// a panic.
    ///
    /// [`build_library`]: struct.EnclaveBuilder.html#method.build_library
    pub fn arg<S: AsRef<[u8]>>(&mut self, arg: S) -> &mut Self {
        let arg = arg.as_ref().to_owned();
        self.initialized_args_mut().push(arg);
        self
    }

    /// Sets the number of worker threads used to run the enclave.
    ///
    /// **NOTE:** This is only applicable to [`Command`] enclaves.
    /// Setting this and then calling [`build_library`](Self::build_library) will cause a panic.
    pub fn num_worker_threads(&mut self, num_worker_threads: usize) -> &mut Self {
        self.num_worker_threads = Some(num_worker_threads);
        self
    }

    fn load<T: Load>(
        mut self,
        loader: &mut T,
    ) -> Result<(Vec<ErasedTcs>, *mut c_void, usize, bool, bool), anyhow::Error> {
        let signature = match self.signature {
            Some(sig) => sig,
            None => self
                .generate_dummy_signature()
                .context("While generating dummy signature")?,
        };
        let attributes = self.attributes.unwrap_or(signature.attributes);
        let miscselect = self.miscselect.unwrap_or(signature.miscselect);
        let mapping = loader.load(&mut self.enclave, &signature, attributes, miscselect)?;
        let forward_panics = self.forward_panics;
        let force_time_usercalls = self.force_time_usercalls;
        if mapping.tcss.is_empty() {
            unimplemented!()
        }
        Ok((
            mapping.tcss.into_iter().map(ErasedTcs::new).collect(),
            mapping.info.address(),
            mapping.info.size(),
            forward_panics,
            force_time_usercalls,
        ))
    }

    pub fn build<T: Load>(mut self, loader: &mut T) -> Result<Command, anyhow::Error> {
        if let Some(num_worker_threads) = self.num_worker_threads {
            const NUM_WORKER_THREADS_RANGE: RangeInclusive<usize> = 1..=65536;
            anyhow::ensure!(
                NUM_WORKER_THREADS_RANGE.contains(&num_worker_threads),
                "`num_worker_threads` must be in range {NUM_WORKER_THREADS_RANGE:?}"
            );
        }
        let num_worker_threads = self.num_worker_threads.unwrap_or_else(num_cpus::get);

        self.initialized_args_mut();
        let args = self.cmd_args.take().unwrap_or_default();
        let c = self.usercall_ext.take();
        self.load(loader)
            .map(|(t, a, s, fp, dti)| Command::internal_new(t, a, s, c, fp, dti, args, num_worker_threads))
    }

    /// Panics if you have previously called [`arg`], [`args`], or [`num_worker_threads`].
    ///
    /// [`arg`]: struct.EnclaveBuilder.html#method.arg
    /// [`args`]: struct.EnclaveBuilder.html#method.args
    /// [`num_worker_threads`]: Self::num_worker_threads()
    pub fn build_library<T: Load>(mut self, loader: &mut T) -> Result<Library, anyhow::Error> {
        assert!(self.cmd_args.is_none(), "Command arguments do not apply to Library enclaves.");
        assert!(self.num_worker_threads.is_none(), "`num_worker_threads` cannot be specified for Library enclaves.");
        let c = self.usercall_ext.take();
        self.load(loader)
            .map(|(t, a, s, fp, dti)| Library::internal_new(t, a, s, c, fp, dti))
    }
}