add verification for the block header hash inside the enclave

Author: cboh4

cosmwasm/enclaves/Cargo.lock

@@ -91,9 +91,9 @@ block-verifier = { path = "../shared/block-verifier", optional = true }
 time = "=0.3.17"
 ed25519-dalek = { version = "1.0", default-features = false }
 sha2 = "0.10"
-tendermint = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false, features = ["rust-crypto"] }
-tendermint-proto = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false }
-tendermint-light-client-verifier = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false, features = ["rust-crypto"] }
+tendermint = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false, features = ["rust-crypto"] }
+tendermint-proto = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false }
+tendermint-light-client-verifier = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false, features = ["rust-crypto"] }
 
 [dependencies.webpki]
 git = "https://github.com/mesalock-linux/webpki"

cosmwasm/enclaves/execute/Cargo.toml

@@ -19,9 +19,9 @@ sgx_types = { rev = "d2d339cbb005f676bb700059bd51dc689c025f6b", git = "https://g
 
 [dependencies]
 sha2 = "0.10"
-tendermint = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false, features = ["rust-crypto"] }
-tendermint-proto = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false }
-tendermint-light-client-verifier = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false, features = ["rust-crypto"] }
+tendermint = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false, features = ["rust-crypto"] }
+tendermint-proto = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false }
+tendermint-light-client-verifier = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false, features = ["rust-crypto"] }
 lazy_static = "1.4.0"
 log = "0.4.17"
 

cosmwasm/enclaves/shared/block-verifier/Cargo.toml

@@ -1,11 +1,15 @@
+use core::convert::TryInto;
 use std::slice;
 
 use sgx_types::sgx_status_t;
 
 use enclave_utils::{validate_const_ptr, validate_input_length, validate_mut_ptr, KEY_MANAGER};
 use log::debug;
 use log::error;
+use std::convert::TryFrom;
+use tendermint::signature::Ed25519Signature;
 use tendermint::Hash;
+use tendermint::Signature;
 
 macro_rules! unwrap_or_return {
     ($result:expr) => {
@@ -136,13 +140,6 @@ pub unsafe fn submit_block_signatures_impl(
 
     let implicit_hash = tendermint::Hash::Sha256(hash_result);
 
-    debug!("implicit_hash: {:?}", &implicit_hash);
-
-    debug!(
-        "header.header.implicit_hash: {:?}",
-        &header.header.implicit_hash
-    );
-
     if implicit_hash != header.header.implicit_hash {
         error!("Implicit hash does not match header implicit hash");
         return sgx_status_t::SGX_ERROR_INVALID_PARAMETER;

cosmwasm/enclaves/shared/block-verifier/src/submit_block_signatures.rs

@@ -1,14 +1,15 @@
+use crate::verify::block::verify_block;
+use core::time::Duration;
 use log::error;
 use sgx_types::sgx_status_t;
+use sha2::{Digest, Sha256};
 use tendermint::block::signed_header::SignedHeader;
 use tendermint::block::{Commit, Header};
 use tendermint::validator::Set;
 use tendermint_light_client_verifier::types::UntrustedBlockState;
 use tendermint_proto::v0_38::types::Header as RawHeader;
 use tendermint_proto::Protobuf;
 
-use crate::verify::block::verify_block;
-
 pub fn validate_block_header(
     block_header_slice: &[u8],
     validator_set: &Set,
@@ -32,6 +33,15 @@ pub fn validate_block_header(
         return Err(sgx_status_t::SGX_ERROR_FILE_RECOVERY_NEEDED);
     }
 
+    if signed_header.header.hash() != signed_header.commit.block_id.hash {
+        error!(
+            "Error verifying block hash in header! got {:?}, expected: {:?}",
+            signed_header.header.hash(),
+            signed_header.commit.block_id.hash
+        );
+        return Err(sgx_status_t::SGX_ERROR_INVALID_PARAMETER);
+    }
+
     let untrusted_block = UntrustedBlockState {
         signed_header: &signed_header,
         validators: validator_set,

cosmwasm/enclaves/shared/block-verifier/src/verify/header.rs

@@ -32,6 +32,6 @@ serde = { git = "https://github.com/mesalock-linux/serde-sgx", features = [
   "derive"
 ] }
 serde_json = { git = "https://github.com/mesalock-linux/serde-json-sgx" }
-tendermint-proto = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false }
-tendermint = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.3", default-features = false, features = ["rust-crypto"] }
+tendermint-proto = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false }
+tendermint = { git = "https://github.com/scrtlabs/tendermint-rs", tag = "v0.38.0-secret.9-add-implicit-hash", default-features = false, features = ["rust-crypto"] }
 enclave_crypto = { path = "../crypto" }

cosmwasm/enclaves/shared/utils/Cargo.toml

@@ -9,8 +9,8 @@ replace (
 	cosmossdk.io/store => github.com/scrtlabs/cosmos-sdk-store v1.1.1-secret.1
 	cosmossdk.io/x/tx => github.com/scrtlabs/cosmos-sdk-x-tx v0.13.7-secret.0
 	// github.com/cometbft/cometbft => github.com/scrtlabs/tendermint v0.38.17-secret.0
-	github.com/cometbft/cometbft => github.com/scrtlabs/tendermint v0.38.17-secret-7-add-implicit-hash
-	github.com/cosmos/cosmos-sdk => github.com/scrtlabs/cosmos-sdk v0.50.11-secret-4-implicit-hash
+	github.com/cometbft/cometbft => github.com/scrtlabs/tendermint v0.38.17-secret-23-add-implicit-hash
+	github.com/cosmos/cosmos-sdk => github.com/scrtlabs/cosmos-sdk v0.50.11-secret-15-implicit-hash
 	github.com/cosmos/iavl => github.com/scrtlabs/iavl v1.2.2-secret.0
 	github.com/syndtr/goleveldb => github.com/syndtr/goleveldb v1.0.1-0.20210819022825-2ae1ddf74ef7
 

go.mod

@@ -1593,8 +1593,8 @@ github.com/sagikazarmark/slog-shim v0.1.0/go.mod h1:SrcSrq8aKtyuqEI1uvTDTK1arOWR
 github.com/samuel/go-zookeeper v0.0.0-20190923202752-2cc03de413da/go.mod h1:gi+0XIa01GRL2eRQVjQkKGqKF3SF9vZR/HnPullcV2E=
 github.com/sasha-s/go-deadlock v0.3.5 h1:tNCOEEDG6tBqrNDOX35j/7hL5FcFViG6awUGROb2NsU=
 github.com/sasha-s/go-deadlock v0.3.5/go.mod h1:bugP6EGbdGYObIlx7pUZtWqlvo8k9H6vCBBsiChJQ5U=
-github.com/scrtlabs/cosmos-sdk v0.50.11-secret-4-implicit-hash h1:BKQ6Z0piKAKaFpsBHRvJkfi07ozNyd1u6otmpGCD9cw=
-github.com/scrtlabs/cosmos-sdk v0.50.11-secret-4-implicit-hash/go.mod h1:dJQYQ36O/vHv5h7HJECpnSQzelkobTPgwy1ND4pG1dI=
+github.com/scrtlabs/cosmos-sdk v0.50.11-secret-15-implicit-hash h1:4nIG7McsrhkbMQkrLz6VRd0UQiOg24RX6Gf7Z1T42kA=
+github.com/scrtlabs/cosmos-sdk v0.50.11-secret-15-implicit-hash/go.mod h1:2emBr6HobBqfY1gpDsRuCWgQiQYIwG+U600DiwzSgTs=
 github.com/scrtlabs/cosmos-sdk-api v0.7.6-secret.0 h1:9IGLySVhC2qSrxT3fZvvqwjKsnXWSSKnywQDzT8y1Gs=
 github.com/scrtlabs/cosmos-sdk-api v0.7.6-secret.0/go.mod h1:IcxpYS5fMemZGqyYtErK7OqvdM0C8kdW3dq8Q/XIG38=
 github.com/scrtlabs/cosmos-sdk-store v1.1.1-secret.1 h1:TELtwBkSg0xBrs2ObFE0pVVWF6E31fPCDX2tk8OiJPo=
@@ -1603,8 +1603,8 @@ github.com/scrtlabs/cosmos-sdk-x-tx v0.13.7-secret.0 h1:i3k5706sDHKhaCvzokB+n33/
 github.com/scrtlabs/cosmos-sdk-x-tx v0.13.7-secret.0/go.mod h1:V6DImnwJMTq5qFjeGWpXNiT/fjgE4HtmclRmTqRVM3w=
 github.com/scrtlabs/iavl v1.2.2-secret.0 h1:P96PL1Lf8OBSW9pMrlaRxhceZ4z9Hc7jk12g9ShWeHw=
 github.com/scrtlabs/iavl v1.2.2-secret.0/go.mod h1:GiM43q0pB+uG53mLxLDzimxM9l/5N9UuSY3/D0huuVw=
-github.com/scrtlabs/tendermint v0.38.17-secret-7-add-implicit-hash h1:enOfMMDhEANlxnmf0aQfRIa3aIwWKUYsgSx86lQVJb0=
-github.com/scrtlabs/tendermint v0.38.17-secret-7-add-implicit-hash/go.mod h1:vVQJOjosVUoChSxdYGQQ2Ojy35m/8el7r1LziCy4ox4=
+github.com/scrtlabs/tendermint v0.38.17-secret-23-add-implicit-hash h1:DNE7aW19nTUgFMUNIIRgJBi/I6vYYEP4WQLQclY1ZIw=
+github.com/scrtlabs/tendermint v0.38.17-secret-23-add-implicit-hash/go.mod h1:vVQJOjosVUoChSxdYGQQ2Ojy35m/8el7r1LziCy4ox4=
 github.com/scrtlabs/tm-secret-enclave v1.12.3-implicit-hash h1:vssSAjnieWcH4XsGjpGv5MRk1fJTL4boCWrwbgkCFDQ=
 github.com/scrtlabs/tm-secret-enclave v1.12.3-implicit-hash/go.mod h1:nxZQtzzAqBNBLOEXSv4cKlUnVA4vRmHOn6ujr3kxVME=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=

go.sum

@@ -158,26 +158,23 @@ func (am AppModule) BeginBlock(c context.Context) error {
 		ctx.Logger().Error("Failed to get scheduled cron msgs")
 		return err
 	}
+	// hash := sha256.Sum256([]byte("random"))
+	// block_header.ImplicitHash = hash[:]
+	// block_header.AppHash = hash[:]
 
 	cron_msgs := tm_type.Data{Txs: bytesCronMsgs}
 	cron_data, err := cron_msgs.Marshal()
 	if err != nil {
 		ctx.Logger().Error("Failed to marshal cron_msgs")
 		return err
 	}
-	// hash := sha256.Sum256(cron_data)
 
 	header, err := block_header.Marshal()
 	if err != nil {
 		ctx.Logger().Error("Failed to marshal block header")
 		return err
 	}
 
-	// fmt.Printf("---------------bytesCronMsgs--------------\n%+v\n", bytesCronMsgs)
-	// fmt.Printf("---------------execCronMsgs--------------\n%+v\n", execCronMsgs)
-	// fmt.Printf("ImplicitHash: %+v\n", hex.EncodeToString(hash[:]))
-	// fmt.Printf("beginBlock: block_header: %+v\n", block_header)
-
 	commit := ctx.Commit()
 	b_commit, err := commit.Marshal()
 	if err != nil {
@@ -222,8 +219,6 @@ func (am AppModule) BeginBlock(c context.Context) error {
 // EndBlock returns the end blocker for the compute module.
 func (am AppModule) EndBlock(c context.Context) error {
 	ctx := c.(sdk.Context)
-	block_header := ctx.BlockHeader()
-	fmt.Printf("endBlock: block_header: %+v\n", block_header)
 
 	_, bytesCronMsgs, err := am.keeper.GetScheduledMsgs(ctx, crontypes.ExecutionStage_EXECUTION_STAGE_END_BLOCKER)
 	if err != nil {
@@ -245,7 +240,6 @@ func (am AppModule) EndBlock(c context.Context) error {
 		ctx.Logger().Error("Failed to set implicit hash %+v", err)
 		return err
 	}
-	fmt.Printf("---------------EndBlock--------------\n")
 	return nil
 }