Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WIP] [libOS] Single Process lifetime rollback protection for Protected Files #1856

Draft
wants to merge 22 commits into
base: master
Choose a base branch
from
Draft

[WIP] [libOS] Single Process lifetime rollback protection for Protected Files #1856

wants to merge 22 commits into from

Commits on Aug 22, 2024

  1. [LibOS] Remove unused function 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 22, 2024
    Configuration menu
    Copy the full SHA
    314533d View commit details
    Browse the repository at this point in the history

  2. [LibOS] Missing lock around dentry->inode derefences 

    * also fixes one missing call to put_handle in error handling

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 22, 2024
    Configuration menu
    Copy the full SHA
    90e907d View commit details
    Browse the repository at this point in the history

  3. [LibOS] Protect handle->dentry with handle->lock 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 22, 2024
    Configuration menu
    Copy the full SHA
    a0b4832 View commit details
    Browse the repository at this point in the history

  4. [LibOS] Fix dentry of open files after rename 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 22, 2024
    Configuration menu
    Copy the full SHA
    166ba45 View commit details
    Browse the repository at this point in the history

Commits on Aug 23, 2024

  1. Make pytest debugging a bit more user-friendly 

    * use --skip-teardown to prevent removal of artifacts
* for tamper tests, run all of them instead of abort on first failure

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    a43d048 View commit details
    Browse the repository at this point in the history

  2. Fix pf_tamper testing 

    * Make sure decrypt is called on correct path (or it will fail always
  due to invalid path it didn't fail already due to plain text tampering)
* Remove undetectable "tampering" test-cases but also add a few use-cases
  tampering with header ciphertext

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    da09629 View commit details
    Browse the repository at this point in the history

  3. [LibOS] Consolidate path normalization and fix missing one 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    12279f9 View commit details
    Browse the repository at this point in the history

  4. [LibOS] Allow run_gdb optionally exposing tty to debug scripts 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    69b3edc View commit details
    Browse the repository at this point in the history

  5. [LibOS] Single-process-lifetime rollback protection for protected fil… 

    …es (SPLRB)

* adds libos_encrypted_volume as mount-data for protected fileystem which
  includes map <name, <last-root-hash, ...>> to keep track of root hashes
  across open/close cycles of a particular value, ensuring consistency across
  the whole enclave life-time

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    549e415 View commit details
    Browse the repository at this point in the history

  6. [LibOS] Test-cases for SPLRB (1) 

    * Updated existing non-adverserial ones

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    e577866 View commit details
    Browse the repository at this point in the history

  7. [LibOS] Test-cases for SPLRB (2) 

    * New adverserial ones

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    ac5302b View commit details
    Browse the repository at this point in the history

  8. fixup! [LibOS] Single-process-lifetime rollback protection for protec… 

    …ted files (SPLRB)

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    9ced55f View commit details
    Browse the repository at this point in the history

  9. fixup! [LibOS] Test-cases for SPLRB (2) 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    bd8006e View commit details
    Browse the repository at this point in the history

  10. WIP: rollback status introspection 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    980835e View commit details
    Browse the repository at this point in the history

  11. fixup! [LibOS] Single-process-lifetime rollback protection for protec… 

    …ted files (SPLRB)

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    5c4f384 View commit details
    Browse the repository at this point in the history

  12. [LibOS] Updates to encrypted files 

    * make corruption status for encrypted files sticky
* update filemap state for any corruption also encountered
  during operations other than open, close, unlink and rename

Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 23, 2024
    Configuration menu
    Copy the full SHA
    b5ea57a View commit details
    Browse the repository at this point in the history

Commits on Aug 26, 2024

  1. [LibOS] Make handling of corruption more consistent (WIP) 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 26, 2024
    Configuration menu
    Copy the full SHA
    7687328 View commit details
    Browse the repository at this point in the history

  2. Missing mbedtls errors and more sane PAL-PF error mapping 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 26, 2024
    Configuration menu
    Copy the full SHA
    d850657 View commit details
    Browse the repository at this point in the history

  3. fixup! [LibOS] Make handling of corruption more consistent (WIP)

    @g2flyer
    g2flyer committed Aug 26, 2024
    Configuration menu
    Copy the full SHA
    f15133b View commit details
    Browse the repository at this point in the history

  4. fixup! [LibOS] Make handling of corruption more consistent (WIP) 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 26, 2024
    Configuration menu
    Copy the full SHA
    62543cd View commit details
    Browse the repository at this point in the history

Commits on Aug 27, 2024

  1. fixup! [LibOS] Make handling of corruption more consistent (WIP) 

    Signed-off-by: g2flyer <michael.steiner@intel.com>
    @g2flyer
    g2flyer committed Aug 27, 2024
    Configuration menu
    Copy the full SHA
    977e999 View commit details
    Browse the repository at this point in the history

  2. fixup! [LibOS] Make handling of corruption more consistent (WIP) 

    Signed-off-by: Michael Steiner <steiner@acm.org>
    Michael Steiner committed Aug 27, 2024
    Configuration menu
    Copy the full SHA
    ce2ad18 View commit details
    Browse the repository at this point in the history