Shutdown with UEFI error code if a remote attestation error occurs

Juliette Pretot · Juliette Pretot · commit ef7cd630fed6 · 2022-04-22T14:20:26.000+01:00
diff --git a/experimental/uefi/app/src/main.rs b/experimental/uefi/app/src/main.rs
@@ -103,7 +103,12 @@ fn serial_echo(handle: Handle, bt: &BootServices, index: usize) -> Result<!, uef
             }
             de::Error::RecursionLimitExceeded => uefi::Error::from(Status::ABORTED),
         })?;
-        let response = attestation_handler.message(MOCK_SESSION_ID, msg);
+        let response = attestation_handler
+            .message(MOCK_SESSION_ID, msg)
+            .map_err(|err| {
+                error!("Error handling remote attestation: {:?}", err);
+                uefi::Error::from(Status::PROTOCOL_ERROR)
+            })?;
         ser::into_writer(&response, &mut serial).map_err(|err| match err {
             ser::Error::Io(err) => err,
             ser::Error::Value(msg) => {
diff --git a/experimental/uefi/app/src/remote_attestation.rs b/experimental/uefi/app/src/remote_attestation.rs
@@ -21,6 +21,7 @@
 //! crate. TODO(#2741): Refactor this to share more code between the two runtimes.
 
 use alloc::vec::Vec;
+use anyhow::Context;
 use oak_remote_attestation_sessions::{SessionId, SessionState, SessionTracker};
 
 /// Number of sessions that will be kept in memory.
@@ -51,7 +52,7 @@ where
         }
     }
 
-    pub fn message(&mut self, session_id: SessionId, request: Vec<u8>) -> Vec<u8> {
+    pub fn message(&mut self, session_id: SessionId, request: Vec<u8>) -> anyhow::Result<Vec<u8>> {
         let mut session_state = {
             self.session_tracker
                 .pop_session_state(session_id)
@@ -61,7 +62,7 @@ where
             SessionState::HandshakeInProgress(ref mut handshaker) => {
                 handshaker
                     .next_step(&request)
-                    .expect("Couldn't process handshake message")
+                    .context("Couldn't process handshake message")?
                     // After receiving a valid `ClientIdentity` message
                     // (the last step of the key exchange)
                     // ServerHandshaker.next_step returns `None`. For unary
@@ -73,19 +74,19 @@ where
             SessionState::EncryptedMessageExchange(ref mut encryptor) => {
                 let decrypted_request = encryptor
                     .decrypt(&request)
-                    .expect("Couldn't decrypt response");
+                    .context("Couldn't decrypt response")?;
 
                 let response = (self.request_handler.clone())(decrypted_request);
 
                 encryptor
                     .encrypt(&response)
-                    .expect("Couldn't encrypt response")
+                    .context("Couldn't encrypt response")?
             }
         };
 
         self.session_tracker
             .put_session_state(session_id, session_state);
 
-        response_body
+        Ok(response_body)
     }
 }
