From 75cc3d4dd2401ba614ec3698bf39ee35c8d6cd51 Mon Sep 17 00:00:00 2001 From: Jia Zhang Date: Sun, 21 Jun 2020 09:50:23 +0000 Subject: [PATCH] rune & runectl: Refactor intelsgx.GetToken() The interaction with aesmd can be shared with other aesm service messages. Signed-off-by: Jia Zhang --- rune/libenclave/intelsgx/aesmd.go | 78 ++++++++++--------- .../runc/libenclave/intelsgx/aesmd.go | 78 ++++++++++--------- 2 files changed, 86 insertions(+), 70 deletions(-) diff --git a/rune/libenclave/intelsgx/aesmd.go b/rune/libenclave/intelsgx/aesmd.go index 4831aaf..1d6ae93 100644 --- a/rune/libenclave/intelsgx/aesmd.go +++ b/rune/libenclave/intelsgx/aesmd.go @@ -30,6 +30,48 @@ func dialAesmd() (*net.UnixConn, error) { return conn, nil } +func transmitAesmd(conn *net.UnixConn, req *pb.AesmServiceRequest) ([]byte, error) { + rdata, err := proto.Marshal(req) + if err != nil { + return nil, err + } + + msgSize := uint32(len(rdata)) + byteBuf := bytes.NewBuffer([]byte{}) + binary.Write(byteBuf, binary.LittleEndian, &msgSize) + if _, err = conn.Write(byteBuf.Bytes()); err != nil { + return nil, err + } + + if _, err = conn.Write(rdata); err != nil { + return nil, err + } + + rdata = append(rdata[:4]) + if _, err = conn.Read(rdata); err != nil { + return nil, err + } + + byteBuf = bytes.NewBuffer(rdata) + if err = binary.Read(byteBuf, binary.LittleEndian, &msgSize); err != nil { + return nil, err + } + + rdata = make([]byte, msgSize) + var msgSizeRead int + msgSizeRead, err = conn.Read(rdata) + if err != nil { + return nil, err + } + + if msgSizeRead != int(msgSize) { + return nil, fmt.Errorf("invalid response size (returned %d, expected %d)", + msgSizeRead, msgSize) + } + + return rdata, nil +} + func GetToken(sig []byte) ([]byte, error) { if len(sig) != SigStructLength { return nil, fmt.Errorf("signature not match SIGSTRUCT") @@ -94,45 +136,11 @@ func GetToken(sig []byte) ([]byte, error) { Timeout: 10000, } - var rdata []byte - rdata, err = proto.Marshal(&req) - if err != nil { - return nil, err - } - - msgSize := uint32(len(rdata)) - byteBuf := bytes.NewBuffer([]byte{}) - binary.Write(byteBuf, binary.LittleEndian, &msgSize) - if _, err = conn.Write(byteBuf.Bytes()); err != nil { - return nil, err - } - - if _, err = conn.Write(rdata); err != nil { - return nil, err - } - - rdata = append(rdata[:4]) - if _, err = conn.Read(rdata); err != nil { - return nil, err - } - - byteBuf = bytes.NewBuffer(rdata) - if err = binary.Read(byteBuf, binary.LittleEndian, &msgSize); err != nil { - return nil, err - } - - rdata = make([]byte, msgSize) - var msgSizeRead int - msgSizeRead, err = conn.Read(rdata) + rdata, err := transmitAesmd(conn, &req) if err != nil { return nil, err } - if msgSizeRead != int(msgSize) { - return nil, fmt.Errorf("invalid response size (returned %d, expected %d)", - msgSizeRead, msgSize) - } - resp := pb.AesmServiceResponse{} resp.GetLaunchToken = &pb.AesmServiceResponse_GetLaunchToken{} if err := proto.Unmarshal(rdata, &resp); err != nil { diff --git a/runectl/vendor/github.com/opencontainers/runc/libenclave/intelsgx/aesmd.go b/runectl/vendor/github.com/opencontainers/runc/libenclave/intelsgx/aesmd.go index 4831aaf..1d6ae93 100644 --- a/runectl/vendor/github.com/opencontainers/runc/libenclave/intelsgx/aesmd.go +++ b/runectl/vendor/github.com/opencontainers/runc/libenclave/intelsgx/aesmd.go @@ -30,6 +30,48 @@ func dialAesmd() (*net.UnixConn, error) { return conn, nil } +func transmitAesmd(conn *net.UnixConn, req *pb.AesmServiceRequest) ([]byte, error) { + rdata, err := proto.Marshal(req) + if err != nil { + return nil, err + } + + msgSize := uint32(len(rdata)) + byteBuf := bytes.NewBuffer([]byte{}) + binary.Write(byteBuf, binary.LittleEndian, &msgSize) + if _, err = conn.Write(byteBuf.Bytes()); err != nil { + return nil, err + } + + if _, err = conn.Write(rdata); err != nil { + return nil, err + } + + rdata = append(rdata[:4]) + if _, err = conn.Read(rdata); err != nil { + return nil, err + } + + byteBuf = bytes.NewBuffer(rdata) + if err = binary.Read(byteBuf, binary.LittleEndian, &msgSize); err != nil { + return nil, err + } + + rdata = make([]byte, msgSize) + var msgSizeRead int + msgSizeRead, err = conn.Read(rdata) + if err != nil { + return nil, err + } + + if msgSizeRead != int(msgSize) { + return nil, fmt.Errorf("invalid response size (returned %d, expected %d)", + msgSizeRead, msgSize) + } + + return rdata, nil +} + func GetToken(sig []byte) ([]byte, error) { if len(sig) != SigStructLength { return nil, fmt.Errorf("signature not match SIGSTRUCT") @@ -94,45 +136,11 @@ func GetToken(sig []byte) ([]byte, error) { Timeout: 10000, } - var rdata []byte - rdata, err = proto.Marshal(&req) - if err != nil { - return nil, err - } - - msgSize := uint32(len(rdata)) - byteBuf := bytes.NewBuffer([]byte{}) - binary.Write(byteBuf, binary.LittleEndian, &msgSize) - if _, err = conn.Write(byteBuf.Bytes()); err != nil { - return nil, err - } - - if _, err = conn.Write(rdata); err != nil { - return nil, err - } - - rdata = append(rdata[:4]) - if _, err = conn.Read(rdata); err != nil { - return nil, err - } - - byteBuf = bytes.NewBuffer(rdata) - if err = binary.Read(byteBuf, binary.LittleEndian, &msgSize); err != nil { - return nil, err - } - - rdata = make([]byte, msgSize) - var msgSizeRead int - msgSizeRead, err = conn.Read(rdata) + rdata, err := transmitAesmd(conn, &req) if err != nil { return nil, err } - if msgSizeRead != int(msgSize) { - return nil, fmt.Errorf("invalid response size (returned %d, expected %d)", - msgSizeRead, msgSize) - } - resp := pb.AesmServiceResponse{} resp.GetLaunchToken = &pb.AesmServiceResponse_GetLaunchToken{} if err := proto.Unmarshal(rdata, &resp); err != nil { -- GitLab