KBS /resource: support CoCo-AS token without public key in it #307
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -28,6 +28,7 @@ pub(crate) async fn get_resource( | |
| #[cfg(feature = "as")] map: web::Data<SessionMap>, | ||
| token_verifier: web::Data<Arc<RwLock<dyn AttestationTokenVerifier + Send + Sync>>>, | ||
| #[cfg(feature = "policy")] policy_engine: web::Data<PolicyEngine>, | ||
| https_enabled: web::Data<crate::HttpsFlag>, | ||
| ) -> Result<HttpResponse> { | ||
| #[allow(unused_mut)] | ||
| let mut claims_option = None; | ||
|
|
@@ -46,31 +47,6 @@ pub(crate) async fn get_resource( | |
| Error::AttestationClaimsParseFailed(format!("illegal attestation claims: {e}")) | ||
| })?; | ||
|
|
||
| let resource_description = ResourceDesc { | ||
| repository_name: request | ||
| .match_info() | ||
|
|
@@ -123,13 +99,24 @@ pub(crate) async fn get_resource( | |
| .await | ||
| .map_err(|e| Error::ReadSecretFailed(e.to_string()))?; | ||
|
|
||
| // If public key is included in claims, use JWE to wrap resource byte, | ||
| // else check if HTTPS is enabled. | ||
| match get_pkey(claims) { | ||
| Ok(pubkey) => { | ||
| let jwe = jwe(pubkey, resource_byte)?; | ||
| let res = serde_json::to_string(&jwe).map_err(|e| Error::JWEFailed(e.to_string()))?; | ||
| Ok(HttpResponse::Ok() | ||
| .content_type("application/json") | ||
| .body(res)) | ||
| } | ||
| Err(_) => { | ||
| if !https_enabled.enabled { | ||
| return Err(Error::InsecureResponse); | ||
| } | ||
| let res = URL_SAFE_NO_PAD.encode(resource_byte); | ||
| Ok(HttpResponse::Ok().body(res)) | ||
|
Member
There was a problem hiding this comment. I am confused by this PR. Isn't it fundamental that the secure channel is bound to the hw evidence? In other words, doesn't the KBS want to know that when it encrypts a value using a public key, it can only be decrypted inside the enclave that has the corresponding private key? I'm not sure it's valid to support secret delivery without this. What use case are you looking at?
Member
Author
There was a problem hiding this comment. @fitzthum I am trying to get CDH to support calling AA to obtain a token from AS, and then using this token to access KBS to obtain resources. However, currently, AA does not carry a pubkey in the tokens obtained from AS. Another possible path is to add a runtime data parameter to the API for obtaining AS tokens for AA to pass the pubkey, and CDH is responsible for generating and managing this pubkey, so that KBS can still wrap and return resources using JWE.
Member
Author
|
||
| } | ||
| } | ||
| } | ||
|
|
||
| #[cfg(feature = "as")] | ||
|
|
@@ -243,3 +230,32 @@ pub(crate) fn jwe(tee_pub_key: TeePubKey, payload_data: Vec<u8>) -> Result<Respo | |
| tag: "".to_string(), | ||
| }) | ||
| } | ||
|
|
||
| pub(crate) fn get_pkey(claims: Value) -> Result<TeePubKey> { | ||
| let pkey_value = claims | ||
| .get("customized_claims") | ||
|
Contributor
There was a problem hiding this comment. Can we define/reuse a type |
||
| .ok_or(Error::AttestationClaimsParseFailed(String::from( | ||
| "No `customized_claims` in the attestation claims thus no `tee-pubkey`", | ||
| )))? | ||
| .as_object() | ||
| .ok_or(Error::AttestationClaimsParseFailed(String::from( | ||
| "`customized_claims` should be a JSON map", | ||
| )))? | ||
| .get("runtime_data") | ||
| .ok_or(Error::AttestationClaimsParseFailed(String::from( | ||
| "No `runtime_data` in the attestation claims thus no `tee-pubkey`", | ||
| )))? | ||
| .as_object() | ||
| .ok_or(Error::AttestationClaimsParseFailed(String::from( | ||
| "`runtime_data` should be a JSON map", | ||
| )))? | ||
| .get("tee-pubkey") | ||
| .ok_or(Error::AttestationClaimsParseFailed(String::from( | ||
| "No `tee-pubkey` in the attestation claims", | ||
| )))?; | ||
| let pubkey = TeePubKey::deserialize(pkey_value).map_err(|e| { | ||
| Error::AttestationClaimsParseFailed(format!("illegal attestation claims: {e}")) | ||
| })?; | ||
|
|
||
| Ok(pubkey) | ||
| } | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
If I understand correctly we want to support requests without public key for KBS deployments without HTTPs. In this case there would never be a be pkey, right? Does it still make sense to attempt to fetch it or should we rather start the with the HttpsEnabled == false check and return the unwrapped resource? (Instead of swallowing the get_pkey() error).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
As you mentioned, this PR hopes to support requests without pubkey in KBS with HTTPS enabled. However, "HTTPS enabled" is a minimum security measure. Even if HTTPS is enabled, pubkeys may still exist. In this case, the returned resource data is protected by both HTTPS and JWE. Only when the pubkey cannot be found, data will be returned when HTTPS is enabled. If HTTPS is not enabled, it is completely unsafe, and KBS will refuse to return data.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I see. thanks for clarifying. So, it looks like having no pubkey in the claims is a legitimate code path, i.e. the signature is actually something like:
fn get_pkey() => Option<Result<TeePubKey>>. A result should capture unexpected states. An alternative would be to match on a concrete error type:Failing to parse (
TeePubKey::deserialize(pkey_value)) should probably result in an error and not in a fallback to https, because this shouldn't happen in any case.If
customized_claimsis specified as always havingruntime_data.tee-pubkeywe probably want to error out, too.