Skip to content

S
sgxwallet
Unverified Commit a49e7767 authored by a72d9e2bad9edfd58d6c0248c12c953b71d409d2's avatar a72d9e2bad9edfd58d6c0248c12c953b71d409d2
Browse files
Options

Fixing BLS

parent 65e7bd3d
Hide whitespace changes
Inline Side-by-side
Showing with 22 additions and 27 deletions
secure_enclave/secure_enclave.c
View file @ a49e7767
...@@ -122,7 +122,7 @@ void encrypt_key(int *err_status, char *err_string, char *key, ...@@ -122,7 +122,7 @@ void encrypt_key(int *err_status, char *err_string, char *key,
*err_status = -1; *err_status = -1;
uint64_t keyLen = strnlen(key, MAX_KEY_LENGTH); uint64_t keyLen = strnlen(key, MAX_KEY_LENGTH);
// check that key is zero terminated string // check that key is zero terminated string
...@@ -137,7 +137,7 @@ void encrypt_key(int *err_status, char *err_string, char *key, ...@@ -137,7 +137,7 @@ void encrypt_key(int *err_status, char *err_string, char *key,
for (int i = keyLen; i < MAX_KEY_LENGTH; i++) { for (int i = keyLen; i < MAX_KEY_LENGTH; i++) {
if (key[i] != 0) { if (key[i] != 0) {
snprintf(err_string, MAX_ERR_LEN,"Unpadded key"); snprintf(err_string, BUF_LEN,"Unpadded key");
return; return;
} }
} }
...@@ -145,7 +145,7 @@ void encrypt_key(int *err_status, char *err_string, char *key, ...@@ -145,7 +145,7 @@ void encrypt_key(int *err_status, char *err_string, char *key,
*err_status = -3; *err_status = -3;
if (!check_key(key)) { if (!check_key(key)) {
snprintf(err_string, MAX_ERR_LEN,"check_key failed"); snprintf(err_string, BUF_LEN,"check_key failed");
return; return;
} }
...@@ -153,18 +153,18 @@ void encrypt_key(int *err_status, char *err_string, char *key, ...@@ -153,18 +153,18 @@ void encrypt_key(int *err_status, char *err_string, char *key,
*err_status = -4; *err_status = -4;
if (sealedLen > MAX_ENCRYPTED_KEY_LENGTH) { if (sealedLen > BUF_LEN) {
snprintf(err_string, MAX_ERR_LEN,"sealedLen > MAX_ENCRYPTED_KEY_LENGTH"); snprintf(err_string, BUF_LEN,"sealedLen > MAX_ENCRYPTED_KEY_LENGTH");
return; return;
} }
*err_status = -5; *err_status = -5;
memset(encrypted_key, 0, MAX_ENCRYPTED_KEY_LENGTH); memset(encrypted_key, 0, BUF_LEN);
if (sgx_seal_data(0, NULL, MAX_KEY_LENGTH, (uint8_t*) key, sealedLen, (sgx_sealed_data_t*) encrypted_key) != if (sgx_seal_data(0, NULL, MAX_KEY_LENGTH, (uint8_t*) key, sealedLen, (sgx_sealed_data_t*) encrypted_key) !=
SGX_SUCCESS) { SGX_SUCCESS) {
snprintf(err_string, MAX_ERR_LEN,"SGX seal data failed"); snprintf(err_string, BUF_LEN,"SGX seal data failed");
return; return;
} }
...@@ -172,14 +172,14 @@ void encrypt_key(int *err_status, char *err_string, char *key, ...@@ -172,14 +172,14 @@ void encrypt_key(int *err_status, char *err_string, char *key,
char key2[MAX_KEY_LENGTH]; char key2[BUF_LEN];
memset(key2, 0, MAX_KEY_LENGTH); memset(key2, 0, BUF_LEN);
decrypt_key(err_status, err_string, encrypted_key, sealedLen, key2); decrypt_key(err_status, err_string, encrypted_key, sealedLen, key2);
if (*err_status != 0) { if (*err_status != 0) {
snprintf(err_string + strlen(err_string), MAX_ERR_LEN , ":decrypt_key failed"); snprintf(err_string + strlen(err_string), BUF_LEN , ":decrypt_key failed");
return; return;
} }
...@@ -212,13 +212,13 @@ void decrypt_key(int *err_status, char *err_string, uint8_t *encrypted_key, ...@@ -212,13 +212,13 @@ void decrypt_key(int *err_status, char *err_string, uint8_t *encrypted_key,
(const sgx_sealed_data_t *)encrypted_key, NULL, 0, (uint8_t*) key, &decLen); (const sgx_sealed_data_t *)encrypted_key, NULL, 0, (uint8_t*) key, &decLen);
if (status != SGX_SUCCESS) { if (status != SGX_SUCCESS) {
snprintf(err_string, MAX_ERR_LEN,"sgx_unseal_data failed with status %d", status); snprintf(err_string, BUF_LEN,"sgx_unseal_data failed with status %d", status);
return; return;
} }
if (decLen != MAX_KEY_LENGTH) { if (decLen != MAX_KEY_LENGTH) {
snprintf(err_string, MAX_ERR_LEN, "decLen != MAX_KEY_LENGTH"); snprintf(err_string, BUF_LEN, "decLen != MAX_KEY_LENGTH");
return; return;
} }
...@@ -229,7 +229,7 @@ void decrypt_key(int *err_status, char *err_string, uint8_t *encrypted_key, ...@@ -229,7 +229,7 @@ void decrypt_key(int *err_status, char *err_string, uint8_t *encrypted_key,
if (keyLen == MAX_KEY_LENGTH) { if (keyLen == MAX_KEY_LENGTH) {
snprintf(err_string, MAX_ERR_LEN, "Key is not null terminated"); snprintf(err_string, BUF_LEN, "Key is not null terminated");
return; return;
} }
...@@ -237,7 +237,7 @@ void decrypt_key(int *err_status, char *err_string, uint8_t *encrypted_key, ...@@ -237,7 +237,7 @@ void decrypt_key(int *err_status, char *err_string, uint8_t *encrypted_key,
for (int i = keyLen; i < MAX_KEY_LENGTH; i++) { for (int i = keyLen; i < MAX_KEY_LENGTH; i++) {
if (key[i] != 0) { if (key[i] != 0) {
snprintf(err_string, MAX_ERR_LEN,"Unpadded key"); snprintf(err_string, BUF_LEN,"Unpadded key");
return; return;
} }
} }
...@@ -262,7 +262,7 @@ void ecdsa_sign_message(int *err_status, char *err_string, uint8_t *encrypted_k ...@@ -262,7 +262,7 @@ void ecdsa_sign_message(int *err_status, char *err_string, uint8_t *encrypted_k
*err_status = -1; *err_status = -1;
char key[MAX_KEY_LENGTH]; char key[BUF_LEN];
decrypt_key(err_status, err_string, encrypted_key, enc_len, key); decrypt_key(err_status, err_string, encrypted_key, enc_len, key);
......
secure_enclave/secure_enclave.edl
View file @ a49e7767
...@@ -30,7 +30,7 @@ enclave { ...@@ -30,7 +30,7 @@ enclave {
public void encrypt_key ( public void encrypt_key (
[user_check] int *err_status, [user_check] int *err_status,
[out, count = 1024] char* err_string, [out, count = 1024] char* err_string,
[in, count = 128] char* key, [in, count = 1024] char* key,
[out, count = 1024] uint8_t* encrypted_key, [user_check] uint32_t *enc_len); [out, count = 1024] uint8_t* encrypted_key, [user_check] uint32_t *enc_len);
public void decrypt_key ( public void decrypt_key (
...@@ -38,15 +38,15 @@ enclave { ...@@ -38,15 +38,15 @@ enclave {
[out, count = 1024] char* err_string, [out, count = 1024] char* err_string,
[in, count = 1024] uint8_t* encrypted_key, [in, count = 1024] uint8_t* encrypted_key,
uint32_t enc_len, uint32_t enc_len,
[out, count = 128] char* key ); [out, count = 1024] char* key );
public void bls_sign_message ( public void bls_sign_message (
[user_check] int *err_status, [user_check] int *err_status,
[out, count = 1024] char* err_string, [out, count = 1024] char* err_string,
[in, count = 1024] uint8_t* encrypted_key, [in, count = 1024] uint8_t* encrypted_key,
uint32_t enc_len, uint32_t enc_len,
[in, count = 128] char* hashX , [in, count = 1024] char* hashX ,
[in, count = 128] char* hashY , [in, count = 1024] char* hashY ,
[out, count = 1024] char* signature); [out, count = 1024] char* signature);
public void ecdsa_sign_message ( public void ecdsa_sign_message (
...@@ -54,15 +54,8 @@ enclave { ...@@ -54,15 +54,8 @@ enclave {
[out, count = 1024] char* err_string, [out, count = 1024] char* err_string,
[in, count = 1024] unsigned char* encrypted_key, [in, count = 1024] unsigned char* encrypted_key,
uint32_t enc_len, uint32_t enc_len,
[in, count = 16] uint8_t* hash, [in, count = 1024] uint8_t* hash,
[out, count = 1024] char* signature); [out, count = 1024] char* signature);
}; };
......
sgxd_common.h
View file @ a49e7767
...@@ -5,6 +5,8 @@ ...@@ -5,6 +5,8 @@
#ifndef SGXD_SGXD_COMMON_H #ifndef SGXD_SGXD_COMMON_H
#define SGXD_SGXD_COMMON_H #define SGXD_SGXD_COMMON_H
#define BUF_LEN 1024
#define MAX_KEY_LENGTH 128 #define MAX_KEY_LENGTH 128
#define MAX_COMPONENT_LENGTH 80 #define MAX_COMPONENT_LENGTH 80
#define MAX_COMPONENT_HEX_LENGTH MAX_COMPONENT_LENGTH * 2 #define MAX_COMPONENT_HEX_LENGTH MAX_COMPONENT_LENGTH * 2
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment