From e9f160303b8ad35556d313f9d1e6fcd7f9032bab Mon Sep 17 00:00:00 2001 From: Kevin Wang Date: Tue, 26 Dec 2023 11:20:48 +0000 Subject: [PATCH] Add pRPC AllowHandoverTo --- Cargo.lock | 3 + crates/phactory/api/Cargo.toml | 1 + crates/phactory/api/build.rs | 7 ++ crates/phactory/api/proto | 2 +- crates/phactory/api/src/crypto.rs | 91 ++++++++-------- crates/phactory/src/lib.rs | 5 + crates/phactory/src/prpc_service.rs | 101 +++++++++++++----- crates/phactory/src/storage.rs | 6 +- docs/pruntime-handover-by-council.md | 45 ++++++++ pallets/phala/src/utils/attestation.rs | 29 ++++- standalone/pruntime/Cargo.lock | 4 + standalone/pruntime/gramine-build/.gitignore | 1 + standalone/pruntime/gramine-build/Makefile | 2 + .../pruntime/gramine-build/parse-sigs.py | 19 ++++ standalone/pruntime/src/api_server.rs | 2 + 15 files changed, 247 insertions(+), 71 deletions(-) create mode 100644 docs/pruntime-handover-by-council.md create mode 100755 standalone/pruntime/gramine-build/parse-sigs.py diff --git a/Cargo.lock b/Cargo.lock index 59fcbe22c7..ceede6475b 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -4938,6 +4938,9 @@ name = "hex" version = "0.4.3" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "7f24254aa9a54b5c858eaee2f5bccdb46aaf0e486a595ed5fd8f86ba55232a70" +dependencies = [ + "serde", +] [[package]] name = "hex-literal" diff --git a/crates/phactory/api/Cargo.toml b/crates/phactory/api/Cargo.toml index ced317e061..285fcc0900 100644 --- a/crates/phactory/api/Cargo.toml +++ b/crates/phactory/api/Cargo.toml @@ -39,6 +39,7 @@ ethers = "2.0.8" hex-literal = "0.4.1" secp256k1 = "0.28.0" +hex = { version = "0.4", default-features = false, features = ["alloc", "serde"] } [dev-dependencies] insta = "1.13.0" diff --git a/crates/phactory/api/build.rs b/crates/phactory/api/build.rs index 1cbc9c0f13..29d7f46a06 100644 --- a/crates/phactory/api/build.rs +++ b/crates/phactory/api/build.rs @@ -33,6 +33,13 @@ fn main() { ] { builder = builder.field_attribute(field, "#[serde(default)]"); } + for field in [ + "AllowHandoverToRequest.measurement", + "SigInfo.pubkey", + "SigInfo.signature", + ] { + builder = builder.field_attribute(field, "#[serde(with=\"hex::serde\")]"); + } builder .compile(&["pruntime_rpc.proto"], &[render_dir]) .unwrap(); diff --git a/crates/phactory/api/proto b/crates/phactory/api/proto index 5acae19ba6..5405cef6bc 160000 --- a/crates/phactory/api/proto +++ b/crates/phactory/api/proto @@ -1 +1 @@ -Subproject commit 5acae19ba602c4285ccfb1e34bc45ac222ad87f9 +Subproject commit 5405cef6bc4d47844663804304270ae97b4e97c3 diff --git a/crates/phactory/api/src/crypto.rs b/crates/phactory/api/src/crypto.rs index 5c8f3fbc26..464f364f28 100644 --- a/crates/phactory/api/src/crypto.rs +++ b/crates/phactory/api/src/crypto.rs @@ -61,8 +61,10 @@ impl From for SignatureVerifyError { } } +#[derive(Default, Clone, Encode, Decode, Debug)] pub enum MessageType { Certificate { ttl: u32 }, + #[default] ContractQuery, } @@ -216,49 +218,50 @@ impl CertificateBody { sig_type: SignatureType, signature: &[u8], ) -> Result { - let signer = match sig_type { - SignatureType::Ed25519 => { - recover::(&self.pubkey, signature, msg)?.into() - } - SignatureType::Sr25519 => { - recover::(&self.pubkey, signature, msg)?.into() - } - SignatureType::Ecdsa => sp_core::blake2_256( - recover::(&self.pubkey, signature, msg)?.as_ref(), - ) - .into(), - SignatureType::Ed25519WrapBytes => { - let wrapped = wrap_bytes(msg); - recover::(&self.pubkey, signature, &wrapped)?.into() - } - SignatureType::Sr25519WrapBytes => { - let wrapped = wrap_bytes(msg); - recover::(&self.pubkey, signature, &wrapped)?.into() - } - SignatureType::EcdsaWrapBytes => { - let wrapped = wrap_bytes(msg); - sp_core::blake2_256( - recover::(&self.pubkey, signature, &wrapped)?.as_ref(), - ) - .into() - } - SignatureType::Eip712 => { - account_id_from_evm_pubkey(eip712::recover(&self.pubkey, signature, msg, msg_type)?) - } - SignatureType::EvmEcdsa => account_id_from_evm_pubkey(recover::( - &self.pubkey, - signature, - msg, - )?), - SignatureType::EvmEcdsaWrapBytes => { - let wrapped = wrap_bytes(msg); - account_id_from_evm_pubkey(recover::( - &self.pubkey, - signature, - &wrapped, - )?) - } - }; - Ok(signer) + recover_signer_account(&self.pubkey, msg, msg_type, sig_type, signature) } } + +pub fn recover_signer_account( + pubkey: &[u8], + msg: &[u8], + msg_type: MessageType, + sig_type: SignatureType, + signature: &[u8], +) -> Result { + use account_id_from_evm_pubkey as evm_account; + let signer = match sig_type { + SignatureType::Ed25519 => recover::(pubkey, signature, msg)?.into(), + SignatureType::Sr25519 => recover::(pubkey, signature, msg)?.into(), + SignatureType::Ecdsa => { + sp_core::blake2_256(recover::(pubkey, signature, msg)?.as_ref()) + .into() + } + SignatureType::Ed25519WrapBytes => { + let wrapped = wrap_bytes(msg); + recover::(pubkey, signature, &wrapped)?.into() + } + SignatureType::Sr25519WrapBytes => { + let wrapped = wrap_bytes(msg); + recover::(pubkey, signature, &wrapped)?.into() + } + SignatureType::EcdsaWrapBytes => { + let wrapped = wrap_bytes(msg); + sp_core::blake2_256( + recover::(pubkey, signature, &wrapped)?.as_ref(), + ) + .into() + } + SignatureType::Eip712 => evm_account(eip712::recover(pubkey, signature, msg, msg_type)?), + SignatureType::EvmEcdsa => { + evm_account(recover::(pubkey, signature, msg)?) + } + SignatureType::EvmEcdsaWrapBytes => { + let wrapped = wrap_bytes(msg); + evm_account(recover::( + pubkey, signature, &wrapped, + )?) + } + }; + Ok(signer) +} diff --git a/crates/phactory/src/lib.rs b/crates/phactory/src/lib.rs index 2af7a306a3..b9217890d4 100644 --- a/crates/phactory/src/lib.rs +++ b/crates/phactory/src/lib.rs @@ -270,6 +270,10 @@ pub struct Phactory { #[serde(skip)] pub(crate) cluster_state_to_apply: Option>, + + /// The pRuntime measurement that allowed by the Council. + #[serde(skip)] + allow_handover_to: Option>, } #[derive(Serialize, Deserialize, Clone)] @@ -310,6 +314,7 @@ impl Phactory { pending_effects: Vec::new(), started_at: Instant::now(), cluster_state_to_apply: None, + allow_handover_to: None, } } diff --git a/crates/phactory/src/prpc_service.rs b/crates/phactory/src/prpc_service.rs index c3fd9fd9c4..c1b4f6d802 100644 --- a/crates/phactory/src/prpc_service.rs +++ b/crates/phactory/src/prpc_service.rs @@ -258,6 +258,9 @@ impl Phactory ), "dispatch_block", ); + + self.allow_handover_to = None; + let counters = self.runtime_state()?.storage_synchronizer.counters(); blocks.retain(|b| b.block_header.number >= counters.next_block_number); @@ -381,7 +384,7 @@ impl Phactory let chain_storage = ChainStorage::from_pairs(genesis_state.into_iter()); let para_id = chain_storage.para_id(); info!( - "Genesis state loaded: root={:?}, para_id={para_id}", + "Genesis state loaded: root={:?}, para_id={para_id}, genesis_hash={genesis_block_hash:?}", chain_storage.root() ); @@ -1574,24 +1577,7 @@ impl PhactoryApi for Rpc } // 5. verify pruntime launch date, never handover to old pruntime if !dev_mode && in_sgx { - let my_la_report = { - // target_info and reportdata not important, we just need the report metadata - let target_info = - sgx_api_lite::target_info().expect("should not fail in SGX; qed."); - sgx_api_lite::report(&target_info, &[0; 64]) - .map_err(|_| from_display("Cannot read server pRuntime info"))? - }; - let my_runtime_hash = { - let ias_fields = IasFields { - mr_enclave: my_la_report.body.mr_enclave.m, - mr_signer: my_la_report.body.mr_signer.m, - isv_prod_id: my_la_report.body.isv_prod_id.to_ne_bytes(), - isv_svn: my_la_report.body.isv_svn.to_ne_bytes(), - report_data: [0; 64], - confidence_level: 0, - }; - ias_fields.extend_mrenclave() - }; + let my_runtime_hash = my_measurement()?; let runtime_state = phactory.runtime_state()?; let my_runtime_timestamp = runtime_state .chain_storage @@ -1611,13 +1597,15 @@ impl PhactoryApi for Rpc ias_fields.extend_mrenclave() } }; - let req_runtime_timestamp = runtime_state + if let Some(req_runtime_timestamp) = runtime_state .chain_storage .get_pruntime_added_at(&runtime_hash) - .ok_or_else(|| from_display("Client pRuntime not allowed on chain"))?; - - if my_runtime_timestamp >= req_runtime_timestamp { - return Err(from_display("No handover for old pRuntime")); + { + if my_runtime_timestamp >= req_runtime_timestamp { + return Err(from_display("No handover for old pRuntime")); + } + } else if phactory.allow_handover_to != Some(runtime_hash) { + return Err(from_display("Client pRuntime not allowed on chain")); } } else { info!("Skip pRuntime timestamp check in dev mode"); @@ -2004,4 +1992,69 @@ impl PhactoryApi for Rpc .load_cluster_state(&req.filename) .map_err(from_debug) } + + async fn allow_handover_to( + &mut self, + request: pb::AllowHandoverToRequest, + ) -> Result<(), prpc::server::Error> { + let mut phactory = self.lock_phactory(false, true)?; + let runtime_state = phactory.runtime_state()?; + let council_members = runtime_state.chain_storage.council_members(); + if request.signatures.len() > council_members.len() { + return Err(from_display("Too many signatures")); + } + let genesis_hash = hex::encode(runtime_state.genesis_block_hash); + let mr_to = hex::encode(&request.measurement); + let mr_from = hex::encode(my_measurement()?); + let signed_message = format!("Allow pRuntime to handover\n from: 0x{mr_from}\n to: 0x{mr_to}\n genesis: 0x{genesis_hash}").into_bytes(); + debug!("Signed message: {:?}", hex::encode(&signed_message)); + let mut signers = std::collections::BTreeSet::new(); + for sig in &request.signatures { + let sig_type = pb::SignatureType::from_i32(sig.signature_type) + .ok_or_else(|| from_display("Invalid signature type"))?; + let signer = crypto::recover_signer_account( + &sig.pubkey, + &signed_message, + Default::default(), + sig_type, + &sig.signature, + ) + .map_err(|_| from_display("Invalid signature"))?; + if !council_members.contains(&signer) { + return Err(from_display("Not a council member")); + } + debug!("Signed by {signer:?}"); + signers.insert(signer); + } + let percent = signers.len() * 100 / council_members.len(); + // At least 7 of 8 members. 6/8 = 75%, 7/8 = 87.5%. + let threshold = 80; + if percent < threshold { + return Err(from_display("Not enough signatures")); + } + phactory.allow_handover_to = Some(request.measurement); + Ok(()) + } +} + +fn my_measurement() -> Result, RpcError> { + let my_la_report = { + // target_info and reportdata not important, we just need the report metadata + let target_info = + sgx_api_lite::target_info().or(Err(from_display("Failed to get SGX info")))?; + sgx_api_lite::report(&target_info, &[0; 64]) + .or(Err(from_display("Cannot read server pRuntime info")))? + }; + let mrenclave = { + let ias_fields = IasFields { + mr_enclave: my_la_report.body.mr_enclave.m, + mr_signer: my_la_report.body.mr_signer.m, + isv_prod_id: my_la_report.body.isv_prod_id.to_ne_bytes(), + isv_svn: my_la_report.body.isv_svn.to_ne_bytes(), + report_data: [0; 64], + confidence_level: 0, + }; + ias_fields.extend_mrenclave() + }; + Ok(mrenclave) } diff --git a/crates/phactory/src/storage.rs b/crates/phactory/src/storage.rs index d6fd9592fb..4d3b8d4c20 100644 --- a/crates/phactory/src/storage.rs +++ b/crates/phactory/src/storage.rs @@ -36,7 +36,7 @@ impl BlockValidator for LightValidation { mod storage_ext { use crate::{chain, light_validation::utils::storage_prefix}; - use chain::{pallet_computation, pallet_mq, pallet_phat, pallet_registry}; + use chain::{pallet_computation, pallet_mq, pallet_phat, pallet_registry, AccountId}; use log::error; use parity_scale_codec::{Decode, Error}; use phala_mq::{ContractClusterId, Message, MessageOrigin}; @@ -207,5 +207,9 @@ mod storage_ext { ) -> Option { self.execute_with(|| pallet_phat::ClusterByWorkers::::get(worker)) } + + pub(crate) fn council_members(&self) -> Vec { + self.execute_with(chain::Council::members) + } } } diff --git a/docs/pruntime-handover-by-council.md b/docs/pruntime-handover-by-council.md new file mode 100644 index 0000000000..111618d738 --- /dev/null +++ b/docs/pruntime-handover-by-council.md @@ -0,0 +1,45 @@ +PR https://github.com/Phala-Network/phala-blockchain/pull/1500 + +Suppose we have two version of pRuntime A and B, where A is stucked, and we want to force handover to B. + +SGX MR of A: 0x10c24c0e6bf8a86634417fcd8f934e62439c62907a6f1bc726906a50b054ddf10000000083d719e77deaca1470f6baf62a4d774303c899db69020f9c70ee1dfc08c7ce9e +SGX MR of B: 0xf42f7e095735702d1d3c6ac5fa3b4581d3c3673d3c5ce261a43fe782ccb3e1dc0000000083d719e77deaca1470f6baf62a4d774303c899db69020f9c70ee1dfc08c7ce9e +Genisis block hash: 0x0a15d23307d533d581291ff6dedca9ca10927c7dff6f4df9e8c3bf00bc5a6ded (Can be found in prpc::get_info) + +Then the steps would be: + +1. Ask at least half of the council members to sign a message as below: +``` +Allow pRuntime to handover + from: 0x10c24c0e6bf8a86634417fcd8f934e62439c62907a6f1bc726906a50b054ddf10000000083d719e77deaca1470f6baf62a4d774303c899db69020f9c70ee1dfc08c7ce9e + to: 0xf42f7e095735702d1d3c6ac5fa3b4581d3c3673d3c5ce261a43fe782ccb3e1dc0000000083d719e77deaca1470f6baf62a4d774303c899db69020f9c70ee1dfc08c7ce9e + genesis: 0x0a15d23307d533d581291ff6dedca9ca10927c7dff6f4df9e8c3bf00bc5a6ded +``` + See https://files.kvin.wang:8443/signit/ for an example + +2. Collect the signatures and assamble them into a rpc request like this: + ``` + $ cat sigs.json + { + "measurement": "f42f7e095735702d1d3c6ac5fa3b4581d3c3673d3c5ce261a43fe782ccb3e1dc0000000083d719e77deaca1470f6baf62a4d774303c899db69020f9c70ee1dfc08c7ce9e", + "signatures": [ + { + "signature": "fe6eeb25c088975df9bd136cc29c01a1b0bec3c4a58027efd7ca2908b233983c908a7159b81e265948a45e2c9129560f96aef24b93612f1dd4fc9aa40880ff88", + "signature_type": 4, + "pubkey": "d43593c715fdd31c61141abd04a99fd6822c8558854ccde39a5684e7a56da27d" + }, + { + "signature": "22591a9f308e9d1a2af2ad103334cf8ab3674a2dab9e9a6372cf1e09c8671066668ed90af1c88ad7c5c280b8e5dfb043402774cf59e38d312ee107bd8aee2f8c", + "signature_type": 4, + "pubkey": "8eaf04151687736326c9fea17e25fc5287613693c912909cb226aa4794f26a48" + } + ] + } + ``` +3. Load the sigs.json to pruntime A + ``` + $ curl -d @sigs.json localhost:8000/prpc/PhactoryAPI.AllowHandoverTo?json + ``` + **Note**: Don't sync any chain state to the pruntime A after this step, otherwise the handover will be rejected. +4. Run a new pruntime B instance to start the handover + `$ ./gramine-sgx pruntime --request-handover-from http://localhost:8000` \ No newline at end of file diff --git a/pallets/phala/src/utils/attestation.rs b/pallets/phala/src/utils/attestation.rs index 5b6b59126a..a2a5285886 100644 --- a/pallets/phala/src/utils/attestation.rs +++ b/pallets/phala/src/utils/attestation.rs @@ -194,6 +194,10 @@ pub fn validate_ias_report( return Err(Error::OutdatedIASReport); } + if (report_timestamp - now as i64) >= 3600 * 24 * 7 { + return Err(Error::OutdatedIASReport); + } + let commit = &ias_fields.report_data[..32]; if commit != user_data_hash { return Err(Error::InvalidUserDataHash); @@ -213,7 +217,7 @@ mod test { use frame_support::assert_ok; pub const ATTESTATION_SAMPLE: &[u8] = include_bytes!("../../sample/ias_attestation.json"); - pub const ATTESTATION_TIMESTAMP: u64 = 1631441180; // 2021-09-12T18:06:20.402478 + pub const ATTESTATION_TIMESTAMP: u64 = 1631469980; // 2021-09-12T18:06:20.402478 pub const PRUNTIME_HASH: &str = "518422fa769d2d55982015a0e0417c6a8521fdfc7308f5ec18aaa1b6924bd0f300000000815f42f11cf64430c30bab7816ba596a1da0130c3b028b673133a66cf9a3e0e6"; #[test] @@ -257,6 +261,29 @@ mod test { Err(Error::OutdatedIASReport) ); + assert_ok!(validate_ias_report( + commit, + report, + &signature, + &raw_signing_cert, + ATTESTATION_TIMESTAMP - 3600*24*7 + 1, + false, + vec![] + )); + + assert_eq!( + validate_ias_report( + commit, + report, + &signature, + &raw_signing_cert, + ATTESTATION_TIMESTAMP - 3600*24*7, + false, + vec![] + ), + Err(Error::OutdatedIASReport) + ); + assert_eq!( validate_ias_report( commit, diff --git a/standalone/pruntime/Cargo.lock b/standalone/pruntime/Cargo.lock index 2f63cee8bb..3cd86bf228 100644 --- a/standalone/pruntime/Cargo.lock +++ b/standalone/pruntime/Cargo.lock @@ -2850,6 +2850,9 @@ name = "hex" version = "0.4.3" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "7f24254aa9a54b5c858eaee2f5bccdb46aaf0e486a595ed5fd8f86ba55232a70" +dependencies = [ + "serde", +] [[package]] name = "hex-literal" @@ -5204,6 +5207,7 @@ dependencies = [ "derive_more", "ethers", "frame-system", + "hex", "hex-literal", "im", "log", diff --git a/standalone/pruntime/gramine-build/.gitignore b/standalone/pruntime/gramine-build/.gitignore index 7f29bc21a2..430b6fc87c 100644 --- a/standalone/pruntime/gramine-build/.gitignore +++ b/standalone/pruntime/gramine-build/.gitignore @@ -4,6 +4,7 @@ /pruntime.manifest /pruntime.manifest.sgx /pruntime.sig +/pruntime.sig.txt /pruntime.token /bin /data diff --git a/standalone/pruntime/gramine-build/Makefile b/standalone/pruntime/gramine-build/Makefile index aa84f80f45..03df81c477 100644 --- a/standalone/pruntime/gramine-build/Makefile +++ b/standalone/pruntime/gramine-build/Makefile @@ -139,6 +139,8 @@ dist: pre-dist ${BIN_NAME}.manifest signed-sgx-artifacts cp ${BIN_NAME}.manifest.sgx ${PREFIX}/ cp ${BIN_NAME}.sig ${PREFIX}/ cp gramine-sgx ${PREFIX}/ + gramine-sgx-sigstruct-view ${BIN_NAME}.sig | ./parse-sigs.py | tee ${BIN_NAME}.sig.txt + cp ${BIN_NAME}.sig.txt ${PREFIX}/ else dist: pre-dist ${BIN_NAME}.manifest cp ${BIN_NAME}.manifest ${PREFIX}/ diff --git a/standalone/pruntime/gramine-build/parse-sigs.py b/standalone/pruntime/gramine-build/parse-sigs.py new file mode 100755 index 0000000000..8c57988435 --- /dev/null +++ b/standalone/pruntime/gramine-build/parse-sigs.py @@ -0,0 +1,19 @@ +#!/usr/bin/env python + +import sys +import codecs + +attrs = {} +for line in sys.stdin: + print(line.rstrip()) + key, value = line.split(':', 1) + attrs[key.strip()] = value.strip() + +def hex16(n): + n = int(n) + l = n & 0xff + h = (n > 8 )& 0xff + return codecs.encode(bytes([l, h]), 'hex').decode() + +measurement = attrs['mr_enclave'] + hex16(attrs['isv_prod_id']) + hex16(attrs['isv_svn']) + attrs['mr_signer'] +print("pruntime_finger_print: " + measurement) diff --git a/standalone/pruntime/src/api_server.rs b/standalone/pruntime/src/api_server.rs index ab6efe0782..a9e36dab5f 100644 --- a/standalone/pruntime/src/api_server.rs +++ b/standalone/pruntime/src/api_server.rs @@ -206,6 +206,7 @@ fn rpc_type(method: &str) -> RpcType { GenerateClusterStateRequest => Private, SaveClusterState => Public, LoadClusterState => Private, + AllowHandoverTo => Private, }, } } @@ -250,6 +251,7 @@ fn default_payload_limit_for_method(method: PhactoryAPIMethod) -> ByteUnit { GenerateClusterStateRequest => 1.kibibytes(), SaveClusterState => 1.kibibytes(), LoadClusterState => 1.kibibytes(), + AllowHandoverTo => 64.kibibytes(), } }