Test remote attestation in UEFI app (#2703)

* add remote attestation test inside UEFI app

* Stub missing symbols

* improve comment spelling somewhat

* Use ___chkstk_ms from go

* simplify test to aid debugging: just test ring source of randomness

* log random data in test

* patch rdrand availability check for debuggingnd enable KVM

* Add test to check that the byte array has in fact been filled

* add remote attestation handshake test

* Update config to match #2725

* Remoe test of ring, as remote attestation is now tested

* remove debugging logs from remote attestation test

* wip

* Revert "wip"

This reverts commit 2779e2a.

* Move the UEFI remote attestation test into it's own module

* remove now unneeded crate imports in the main UEFI app

* finalize moving remote attestation test

* redundant surplus qemu cpu flags

* Add anyhow as dev dep for test

* Add extra context to ring stubs

* Only run remote attestation tests if the hosts supports kvm, and the kvm feature is set

* improve comment for clarity

* improve comment copy

* disable ring default features to fix duplicate lang items

* bust CI cache

* toggle tests that require kvm by disabling a default flag, as xtask enables all flags for tests

* Clarify comment

* Improve comments for accuracy and clarity

* Don't lint target subdirectories created by cargo fuzz

Author: jul-sh

.github/workflows/ci.yaml

@@ -64,7 +64,7 @@ jobs:
         uses: actions/cache@v2
         env:
           # Increment this value to invalidate previous cache entries.
-          CACHE_VERSION: 3
+          CACHE_VERSION: 4
         with:
           path: |
             ./cargo-cache/bin

experimental/uefi/app/.cargo/config.toml

@@ -2,7 +2,7 @@
 target = "x86_64-unknown-uefi"
 
 [target.x86_64-unknown-uefi]
-runner = "qemu-system-x86_64 -nodefaults -nographic -bios /usr/share/OVMF/OVMF_CODE.fd -serial file:target/console.log -serial stdio -machine q35 -device isa-debug-exit,iobase=0xf4,iosize=0x04 -kernel"
+runner = "./runner"
 
 [unstable]
 build-std = ["core", "alloc"]

experimental/uefi/app/Cargo.lock

@@ -5,6 +5,10 @@ authors = ["Andri Saar <[email protected]>"]
 edition = "2021"
 license = "Apache-2.0"
 
+[features]
+default = ["support_emulated_runner"]
+support_emulated_runner = []
+
 [dependencies]
 uefi = { version = "*", features = ["exts"] }
 uefi-services = "*"
@@ -14,4 +18,5 @@ ciborium-io = "*"
 oak_remote_attestation = { path = "../../../remote_attestation/rust" }
 
 [dev-dependencies]
+anyhow = { version = "*", default-features = false }
 uefi-services = { version = "*", features = ["qemu"] }

experimental/uefi/app/Cargo.toml

@@ -0,0 +1,35 @@
+#!/usr/bin/env bash
+
+# Thin shell script invoked as a cargo runner to run the compiled efi firmware
+# in QEMU. Detects if kvm is supported, and sets qemu flags based on that.
+# Instead of this single runner script it would be preferable to use a different
+# runner based on whether the kvm feature is set. However, cargo does not
+# currently allow this. Ref: https://github.com/rust-lang/cargo/issues/8170
+
+readonly TARGET=$1
+
+qemu_flags=(
+  '-nodefaults'
+  '-nographic'
+  '-bios' '/usr/share/OVMF/OVMF_CODE.fd'
+  '-serial' 'file:target/console.log'
+  '-serial' 'stdio'
+  '-machine' 'q35'
+  '-device' 'isa-debug-exit,iobase=0xf4,iosize=0x04'
+)
+
+# Use kvm if supported, as it is required for certain features. Note
+# that hosts that support kvm still need to disable the default
+# `support_emulated_runner` feature in cargo to include code that requires kvm
+# in the compiled firmware. Ideally this check would rely on the cargo
+# flag itself, enabling kvm if it is disabled. However cargo does not expose
+# which flags are set to the runner. Ref: https://doc.rust-lang.org/cargo/reference/environment-variables.html
+if [[ -e "/dev/kvm" ]]; then
+  qemu_flags+=(
+    '-enable-kvm'
+    '-cpu' 'Broadwell-IBRS'
+  )
+fi
+
+qemu-system-x86_64 "${qemu_flags[@]}" -kernel "${TARGET}"
+

experimental/uefi/app/runner

@@ -121,3 +121,6 @@ fn test_simple() {
     let x = 1;
     assert_eq!(x, 1);
 }
+
+#[cfg(test)]
+mod tests;

experimental/uefi/app/src/main.rs

@@ -0,0 +1,20 @@
+//
+// Copyright 2022 The Project Oak Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+
+// Uses advanced CPU features not available when using running tests in qemu
+// with CPU emulation.
+#[cfg(not(feature = "support_emulated_runner"))]
+mod remote_attestation;

experimental/uefi/app/src/tests/mod.rs

@@ -0,0 +1,110 @@
+//
+// Copyright 2022 The Project Oak Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+
+//! Integration Test of Remote Attestation in UEFI.
+//!
+//! This tests that remote attestion works inside the UEFI app. While the test
+//! code is identical to (a subset of) the tests in the remote attestation crate
+//! they here utilize the qemu runner configured in the UEFI app. This means
+//! that test code actually compiled to a UEFI target, which changes the
+//! underlying implementation of the remote attestation crate.
+//! TODO(#2654): It would be preferable to remove the test here, and instead
+//! run the tests in the oak_remote_attestation crate itself for both standard
+//! and UEFI targets. Due to concerns related to the workspace this is presently
+//! not possible. Ref: https://github.com/project-oak/oak/issues/2654
+
+extern crate alloc;
+
+use alloc::{boxed::Box, sync::Arc};
+use oak_remote_attestation::handshaker::{AttestationBehavior, ClientHandshaker, ServerHandshaker};
+
+const TEE_MEASUREMENT: &str = "Test TEE measurement";
+const DATA: [u8; 10] = [0, 1, 2, 3, 4, 5, 6, 7, 8, 9];
+
+fn create_handshakers() -> (ClientHandshaker, ServerHandshaker) {
+    let bidirectional_attestation =
+        AttestationBehavior::create_bidirectional_attestation(&[], TEE_MEASUREMENT.as_bytes())
+            .unwrap();
+    let client_handshaker = ClientHandshaker::new(
+        bidirectional_attestation,
+        Box::new(|server_identity| {
+            if !server_identity.additional_info.is_empty() {
+                Ok(())
+            } else {
+                anyhow::bail!("No additional info provided.")
+            }
+        }),
+    );
+
+    let bidirectional_attestation =
+        AttestationBehavior::create_bidirectional_attestation(&[], TEE_MEASUREMENT.as_bytes())
+            .unwrap();
+
+    let additional_info = br"Additional Info".to_vec();
+    let server_handshaker =
+        ServerHandshaker::new(bidirectional_attestation, Arc::new(additional_info));
+
+    (client_handshaker, server_handshaker)
+}
+
+#[test_case]
+fn test_handshake() {
+    let (mut client_handshaker, mut server_handshaker) = create_handshakers();
+
+    let client_hello = client_handshaker
+        .create_client_hello()
+        .expect("Couldn't create client hello message");
+
+    let server_identity = server_handshaker
+        .next_step(&client_hello)
+        .expect("Couldn't process client hello message")
+        .expect("Empty server identity message");
+
+    let client_identity = client_handshaker
+        .next_step(&server_identity)
+        .expect("Couldn't process server identity message")
+        .expect("Empty client identity message");
+    assert!(client_handshaker.is_completed());
+
+    let result = server_handshaker
+        .next_step(&client_identity)
+        .expect("Couldn't process client identity message");
+    assert_eq!(result, None);
+    assert!(server_handshaker.is_completed());
+
+    let mut client_encryptor = client_handshaker
+        .get_encryptor()
+        .expect("Couldn't get client encryptor");
+    let mut server_encryptor = server_handshaker
+        .get_encryptor()
+        .expect("Couldn't get server encryptor");
+
+    let encrypted_client_data = client_encryptor
+        .encrypt(&DATA)
+        .expect("Couldn't encrypt client data");
+    let decrypted_client_data = server_encryptor
+        .decrypt(&encrypted_client_data)
+        .expect("Couldn't decrypt client data");
+    assert_eq!(decrypted_client_data, DATA);
+
+    let encrypted_server_data = server_encryptor
+        .encrypt(&DATA)
+        .expect("Couldn't encrypt server data");
+    let decrypted_server_data = client_encryptor
+        .decrypt(&encrypted_server_data)
+        .expect("Couldn't decrypt server data");
+    assert_eq!(decrypted_server_data, DATA);
+}

experimental/uefi/app/src/tests/remote_attestation.rs

@@ -14,7 +14,7 @@ anyhow = { version = "*", default-features = false }
 bytes = { version = "*", default-features = false }
 log = "*"
 prost = { version = "*", default-features = false, features = ["prost-derive"] }
-ring = { path = "../../third_party/ring" }
+ring = { path = "../../third_party/ring", default-features = false }
 
 [build-dependencies]
 prost-build = "*"

remote_attestation/rust/Cargo.toml

@@ -33,6 +33,8 @@ include = [
     "benches/*.rs",
     "build.rs",
 
+    "stubs.c",
+
     "crypto/chacha/asm/chacha-armv4.pl",
     "crypto/chacha/asm/chacha-armv8.pl",
     "crypto/chacha/asm/chacha-x86.pl",