pruntime: Implement dcap key handover

[kvinwang]

This PR implements the key handover feature according to the design from @shelvenzhou.

the RTP time is got from at least two of the white listed servers as show below:

/// Ref: https://github.com/jauderho/nts-servers/
const TRUSTED_NTS_SERVERS: &[&str] = &[
    "time.cloudflare.com",
    "gps.ntp.br",
    "a.st1.ntp.br",
    "paris.time.system76.com",
    "ntp3.fau.de",
    "ptbtime1.ptb.de",
    "ntppool1.time.nl",
    "nts.netnod.se",
];

A few points to note:

• We use cfnts as nts client with much refactor here to make it meet our requirements.
• Because our phala-nts introduce dep of latest rustls, some of the crates in the deps tree conflicts. So we have to patch them.
• SGX Local attestation is used instead of the RA in the design, I think it meet the requirement.
• Since RTP use trusted server from foreign countries and over UDP, it is hard to success get time from those servers in China mainland.
• dev_mode is not fully supported in this version (Won't success in dev_mode). (Maybe added in the future).

[shelvenzhou]

make these thresholds as constants so we can easily notice and update them

[kvinwang]

Done

[shelvenzhou]

as above

[kvinwang]

Done

[shelvenzhou]

This seems superceded by the challenge.ntp_time_secs check above

[kvinwang]

Removed this one.

[shelvenzhou]

Does this mean an IAS pRuntime can also get key from DCAP pRuntime?

[kvinwang]

No, IAS pruntime validates RA to each other during handover, while dcap pruntime server won't generate RA report. So, an IAS pruntime won't accept an handover from DCAP pruntime.

[shelvenzhou]

Double check @kvinwang : is NTP Authentication enabled in phala-nts?

[shelvenzhou]

I would also like to highlight some constants for future reference:

1. The handover is only allowed on the same physical machine, remote handover is not allowed;
2. The key sender must be a DCAP pRuntime, whether the receiver must be a DCAP is under checking;
3. Now we use NTP server for timestamp. We have 8 time servers, and will request all of them; at least 2 responses need to be received within 5s timeout, and their difference need to be within 60s. The average is used as final timestamp;
4. For sender worker: its latest block must be within one week of the challenge timestamp;
5. For receiver worker: it must reply to the challenge within 1min.

[nanometerzhu]

Regarding to the NTP servers, there are 5 servers are in north Europe, and 2 are in Brazil. Are they too close?

[kvinwang]

is NTP Authentication enabled in phala-nts?

Yes, it's enabled.

[kvinwang]

Regarding to the NTP servers, there are 5 servers are in north Europe, and 2 are in Brazil. Are they too close?

@shelvenzhou do you think this is a problem?

[shelvenzhou]

Regarding to the NTP servers, there are 5 servers are in north Europe, and 2 are in Brazil. Are they too close?

@shelvenzhou do you think this is a problem?

Can we make this configurable with on-chain governance?

[kvinwang]

Can we make this configurable with on-chain governance?

Good idea.

[kvinwang]

Can we make this configurable with on-chain governance?

Added on-chain governance.

[shelvenzhou]

LGTM