fix output format

Signed-off-by: Jun Kimura <jun.kimura@datachain.jp>

Author: bluele

contracts/DCAPValidator.sol

@@ -2,7 +2,7 @@
 pragma solidity ^0.8.12;
 
 library DCAPValidator {
-    uint256 internal constant SGX_QUOTE_BODY_OFFSET = 63;
+    uint256 internal constant SGX_QUOTE_BODY_OFFSET = 67;
     uint256 internal constant ATTRIBUTES_OFFSET = SGX_QUOTE_BODY_OFFSET + 16 + 4 + 28;
     uint256 internal constant MRENCLAVE_OFFSET = ATTRIBUTES_OFFSET + 16;
     uint256 internal constant MRENCLAVE_END_OFFSET = MRENCLAVE_OFFSET + 32;
@@ -32,23 +32,23 @@ library DCAPValidator {
         string[] advisoryIDs;
     }
 
-    function parseCommit(bytes calldata commit) public pure returns (Output memory) {
-        require(bytes2(commit[0:2]) == hex"0000", "unexpected version");
-        require(uint16(bytes2(commit[2:4])) == 3, "unexpected quote version");
-        require(uint32(bytes4(commit[4:8])) == 0, "unexpected tee type");
+    function parseOutput(bytes calldata outputBytes) public pure returns (Output memory) {
+        require(bytes2(outputBytes[0:2]) == hex"0000", "unexpected version");
+        require(uint16(bytes2(outputBytes[2:4])) == 3, "unexpected quote version");
+        require(uint32(bytes4(outputBytes[4:8])) == 0, "unexpected tee type");
 
         Output memory output;
-        output.tcbStatus = uint8(commit[8]);
-        output.sgxIntelRootCAHash = bytes32(commit[15:47]);
-        output.validityNotBeforeMax = uint64(bytes8(commit[47:55]));
-        output.validityNotAfterMin = uint64(bytes8(commit[55:63]));
-        output.enclaveDebugEnabled = uint8(commit[ATTRIBUTES_OFFSET]) & uint8(2) != 0;
-        output.mrenclave = bytes32(commit[MRENCLAVE_OFFSET:MRENCLAVE_END_OFFSET]);
+        output.tcbStatus = uint8(outputBytes[8]);
+        output.sgxIntelRootCAHash = bytes32(outputBytes[19:51]);
+        output.validityNotBeforeMax = uint64(bytes8(outputBytes[51:59]));
+        output.validityNotAfterMin = uint64(bytes8(outputBytes[59:67]));
+        output.enclaveDebugEnabled = uint8(outputBytes[ATTRIBUTES_OFFSET]) & uint8(2) != 0;
+        output.mrenclave = bytes32(outputBytes[MRENCLAVE_OFFSET:MRENCLAVE_END_OFFSET]);
 
-        require(commit[REPORT_DATA_OFFSET] == 0x01, "unexpected report data version");
-        output.enclaveKey = address(bytes20(commit[REPORT_DATA_ENCLAVE_KEY_OFFSET:REPORT_DATA_OPERATOR_OFFSET]));
-        output.operator = address(bytes20(commit[REPORT_DATA_OPERATOR_OFFSET:REPORT_DATA_OPERATOR_END_OFFSET]));
-        output.advisoryIDs = abi.decode(commit[ADVISORY_IDS_OFFSET:commit.length], (string[]));
+        require(outputBytes[REPORT_DATA_OFFSET] == 0x01, "unexpected report data version");
+        output.enclaveKey = address(bytes20(outputBytes[REPORT_DATA_ENCLAVE_KEY_OFFSET:REPORT_DATA_OPERATOR_OFFSET]));
+        output.operator = address(bytes20(outputBytes[REPORT_DATA_OPERATOR_OFFSET:REPORT_DATA_OPERATOR_END_OFFSET]));
+        output.advisoryIDs = abi.decode(outputBytes[ADVISORY_IDS_OFFSET:outputBytes.length], (string[]));
         return output;
     }
 

contracts/LCPClientZKDCAPBase.sol

@@ -132,8 +132,10 @@ abstract contract LCPClientZKDCAPBase is LCPClientBase {
             revert LCPClientZKDCAPRisc0ImageIdNotSet();
         }
         // NOTE: the client must revert if the proof is invalid
-        riscZeroVerifier.verify(message.proof, clientStorage.zkDCAPRisc0ImageId, sha256(message.commit));
-        DCAPValidator.Output memory output = DCAPValidator.parseCommit(message.commit);
+        riscZeroVerifier.verify(
+            message.proof, clientStorage.zkDCAPRisc0ImageId, sha256(message.quote_verification_output)
+        );
+        DCAPValidator.Output memory output = DCAPValidator.parseOutput(message.quote_verification_output);
         if (output.sgxIntelRootCAHash != intelRootCAHash) {
             revert LCPClientZKDCAPUnexpectedIntelRootCAHash();
         }
@@ -177,7 +179,7 @@ abstract contract LCPClientZKDCAPBase is LCPClientBase {
             operator = verifyECDSASignature(
                 keccak256(
                     LCPOperator.computeEIP712ZKDCAPRegisterEnclaveKey(
-                        clientStorage.clientState.zkdcap_verifier_infos[0], keccak256(message.commit)
+                        clientStorage.clientState.zkdcap_verifier_infos[0], keccak256(message.quote_verification_output)
                     )
                 ),
                 message.operator_signature

contracts/proto/ibc/lightclients/lcp/v1/LCP.sol

@@ -647,7 +647,7 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
   //struct definition
   struct Data {
     uint32 zkvm_type;
-    bytes commit;
+    bytes quote_verification_output;
     bytes proof;
     bytes operator_signature;
   }
@@ -701,7 +701,7 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
         pointer += _read_zkvm_type(pointer, bs, r);
       } else
       if (fieldId == 2) {
-        pointer += _read_commit(pointer, bs, r);
+        pointer += _read_quote_verification_output(pointer, bs, r);
       } else
       if (fieldId == 3) {
         pointer += _read_proof(pointer, bs, r);
@@ -743,13 +743,13 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
    * @param r The in-memory struct
    * @return The number of bytes decoded
    */
-  function _read_commit(
+  function _read_quote_verification_output(
     uint256 p,
     bytes memory bs,
     Data memory r
   ) internal pure returns (uint) {
     (bytes memory x, uint256 sz) = ProtoBufRuntime._decode_bytes(p, bs);
-    r.commit = x;
+    r.quote_verification_output = x;
     return sz;
   }
 
@@ -829,14 +829,14 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
     );
     pointer += ProtoBufRuntime._encode_uint32(r.zkvm_type, pointer, bs);
     }
-    if (r.commit.length != 0) {
+    if (r.quote_verification_output.length != 0) {
     pointer += ProtoBufRuntime._encode_key(
       2,
       ProtoBufRuntime.WireType.LengthDelim,
       pointer,
       bs
     );
-    pointer += ProtoBufRuntime._encode_bytes(r.commit, pointer, bs);
+    pointer += ProtoBufRuntime._encode_bytes(r.quote_verification_output, pointer, bs);
     }
     if (r.proof.length != 0) {
     pointer += ProtoBufRuntime._encode_key(
@@ -900,7 +900,7 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
   ) internal pure returns (uint) {
     uint256 e;
     e += 1 + ProtoBufRuntime._sz_uint32(r.zkvm_type);
-    e += 1 + ProtoBufRuntime._sz_lendelim(r.commit.length);
+    e += 1 + ProtoBufRuntime._sz_lendelim(r.quote_verification_output.length);
     e += 1 + ProtoBufRuntime._sz_lendelim(r.proof.length);
     e += 1 + ProtoBufRuntime._sz_lendelim(r.operator_signature.length);
     return e;
@@ -915,7 +915,7 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
     return false;
   }
 
-  if (r.commit.length != 0) {
+  if (r.quote_verification_output.length != 0) {
     return false;
   }
 
@@ -939,7 +939,7 @@ library IbcLightclientsLcpV1ZKDCAPRegisterEnclaveKeyMessage {
    */
   function store(Data memory input, Data storage output) internal {
     output.zkvm_type = input.zkvm_type;
-    output.commit = input.commit;
+    output.quote_verification_output = input.quote_verification_output;
     output.proof = input.proof;
     output.operator_signature = input.operator_signature;
 

proto/ibc/lightclients/lcp/v1/LCP.proto

@@ -19,7 +19,7 @@ message RegisterEnclaveKeyMessage {
 
 message ZKDCAPRegisterEnclaveKeyMessage {
   uint32 zkvm_type = 1;
-  bytes commit = 2;
+  bytes quote_verification_output = 2;
   bytes proof = 3;
   bytes operator_signature = 4;
 }

test/ZKDCAPVerifier.t.sol

@@ -59,34 +59,49 @@ contract ZKDCAPVerifierTest is BasicTest {
         );
     }
 
-    function testParseCommit() public view {
-        bytes memory commit =
-            hex"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";
-        DCAPValidator.Output memory output = DCAPValidatorTestHelper.parseCommit(commit);
+    function testParseOutputSWHardeningNeeded() public pure {
+        bytes memory outputBytes =
+            hex"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";
+        DCAPValidator.Output memory output = DCAPValidatorTestHelper.parseOutput(outputBytes);
         assertEq(
             output.sgxIntelRootCAHash, bytes32(hex"a1acc73eb45794fa1734f14d882e91925b6006f79d3bb2460df9d01b333d7009")
         );
         assertTrue(output.tcbStatus == DCAPValidator.TCB_STATUS_SW_HARDENING_NEEDED);
         assertFalse(output.enclaveDebugEnabled);
-        assertEq(output.mrenclave, bytes32(hex"813c146e403f203f2784fa222b3edeac70727dee21c0b08f74883aa189e7b0ed"));
-        assertEq(output.enclaveKey, address(bytes20(hex"7dcf7408c72ebe9076aebbb208d2c85e62050db4")));
+        assertEq(output.mrenclave, bytes32(hex"26ae825ffce1cf9dcdf682614f4d36704e7bca087bbb5264aca9301d7824cec8"));
+        assertEq(output.enclaveKey, address(bytes20(hex"c170f98628b3a01b15654fbfaad1aaf3419b2c3c")));
         assertEq(output.operator, address(0));
         assertEq(output.advisoryIDs.length, 2);
         assertEq(output.advisoryIDs[0], "INTEL-SA-00334");
         assertEq(output.advisoryIDs[1], "INTEL-SA-00615");
     }
 
-    function testParseCommitEnclaveDebugEnabled() public view {
-        bytes memory commit =
-            hex"00000003000000000500906ed50000a1acc73eb45794fa1734f14d882e91925b6006f79d3bb2460df9d01b333d700900000000679afeb70000000067c2831415150b07ff800e000000000000000000000000000000000000000000000000000000000000000000000000000000000007000000000000000700000000000000813c146e403f203f2784fa222b3edeac70727dee21c0b08f74883aa189e7b0ed000000000000000000000000000000000000000000000000000000000000000083d719e77deaca1470f6baf62a4d774303c899db69020f9c70ee1dfc08c7ce9e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000017c10dd734cac9a4588b7886b2a4820cba182907d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000e494e54454c2d53412d3030333334000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e494e54454c2d53412d3030363135000000000000000000000000000000000000";
-        DCAPValidator.Output memory output = DCAPValidatorTestHelper.parseCommit(commit);
+    function testParseOutputSimulationUpToDate() public pure {
+        bytes memory outputBytes =
+            hex"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";
+        DCAPValidator.Output memory output = DCAPValidatorTestHelper.parseOutput(outputBytes);
+        assertEq(
+            output.sgxIntelRootCAHash, bytes32(hex"d61f4e3d30011899d16131d4c940ef1f75ec53d7f9a70cbb3aab1f5ab0235b2b")
+        );
+        assertTrue(output.tcbStatus == DCAPValidator.TCB_STATUS_UP_TO_DATE);
+        assertTrue(output.enclaveDebugEnabled);
+        assertEq(output.mrenclave, bytes32(hex"3a354bf808b89267b19c6b390ee484d1bee8d301d0058fac511a900d5d0a6f68"));
+        assertEq(output.enclaveKey, address(bytes20(hex"9c69756b02dd84ad5d7a11758025ae4a7edf938d")));
+        assertEq(output.operator, address(0));
+        assertEq(output.advisoryIDs.length, 0);
+    }
+
+    function testParseCommitEnclaveDebugEnabled() public pure {
+        bytes memory outputBytes =
+            hex"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";
+        DCAPValidator.Output memory output = DCAPValidatorTestHelper.parseOutput(outputBytes);
         assertEq(
             output.sgxIntelRootCAHash, bytes32(hex"a1acc73eb45794fa1734f14d882e91925b6006f79d3bb2460df9d01b333d7009")
         );
         assertTrue(output.tcbStatus == DCAPValidator.TCB_STATUS_SW_HARDENING_NEEDED);
         assertTrue(output.enclaveDebugEnabled);
-        assertEq(output.mrenclave, bytes32(hex"813c146e403f203f2784fa222b3edeac70727dee21c0b08f74883aa189e7b0ed"));
-        assertEq(output.enclaveKey, address(bytes20(hex"7c10dd734cac9a4588b7886b2a4820cba182907d")));
+        assertEq(output.mrenclave, bytes32(hex"26ae825ffce1cf9dcdf682614f4d36704e7bca087bbb5264aca9301d7824cec8"));
+        assertEq(output.enclaveKey, address(bytes20(hex"988143c0a5645a38c7900b3102859d136f3bcc2c")));
         assertEq(output.operator, address(0));
         assertEq(output.advisoryIDs.length, 2);
         assertEq(output.advisoryIDs[0], "INTEL-SA-00334");
@@ -95,7 +110,7 @@ contract ZKDCAPVerifierTest is BasicTest {
 }
 
 library DCAPValidatorTestHelper {
-    function parseCommit(bytes calldata commit) public pure returns (DCAPValidator.Output memory) {
-        return DCAPValidator.parseCommit(commit);
+    function parseOutput(bytes calldata outputBytes) public pure returns (DCAPValidator.Output memory) {
+        return DCAPValidator.parseOutput(outputBytes);
     }
 }