Merge pull request #536 from nicolaspernoud/main

File encryption and decryption example ; dev container with c library build and tpm emulator

Author: ionut-arm

.devcontainer/Dockerfile

@@ -0,0 +1,37 @@
+FROM rust:latest
+
+RUN apt -y update && apt -y install \
+    autoconf-archive \
+    libcmocka0 \
+    libcmocka-dev \
+    procps \
+    iproute2 \
+    build-essential \
+    git \
+    pkg-config \
+    gcc \
+    libtool \
+    automake \
+    libssl-dev \
+    uthash-dev \
+    autoconf \
+    doxygen \
+    libjson-c-dev \
+    libini-config-dev \
+    libcurl4-openssl-dev \
+    uuid-dev \
+    libltdl-dev \
+    libusb-1.0-0-dev \
+    libftdi-dev \
+    clang
+
+WORKDIR /build
+ADD . /build
+
+# TPM Lib
+RUN git clone --depth 1 --branch 4.1.3 https://github.com/tpm2-software/tpm2-tss.git && \
+    cd tpm2-tss && \
+    ./bootstrap && \
+    ./configure --prefix=/usr  && \
+    make -j5  && \
+    make install

.devcontainer/devcontainer.json

@@ -0,0 +1,18 @@
+{
+	"name": "Development environment",
+	"dockerComposeFile": "docker-compose.yml",
+	"service": "app",
+	"workspaceFolder": "/workspaces/${localWorkspaceFolderBasename}",
+	"customizations": {
+		"vscode": {
+			"extensions": [
+				"1YiB.rust-bundle",
+				"fill-labs.dependi"
+			],
+			"settings": {
+				"remote.autoForwardPorts": false,
+				"editor.formatOnSave": true
+			}
+		}
+	}
+}

.devcontainer/docker-compose.yml

@@ -0,0 +1,26 @@
+services:
+  app:
+    hostname: app
+    build:
+      context: .
+      dockerfile: Dockerfile
+    volumes:
+      - ../..:/workspaces:cached
+    command: sleep infinity
+    network_mode: host
+    environment:
+      TPM2TOOLS_TCTI: mssim:host=localhost,port=2321
+    deploy:
+      resources:
+        limits:
+          cpus: '4.0'
+          memory: 16G
+
+  tpm:
+    image: tpmdev/tpm2-runtime
+    network_mode: host
+    restart: unless-stopped
+    environment:
+      TPM2TOOLS_TCTI: mssim:host=localhost,port=2321
+    command: /bin/bash -c "tpm_server >/dev/null & sleep 1; tpm2_startup -c; sleep infinity"
+

.github/workflows/ci.yml

@@ -12,6 +12,8 @@ jobs:
       - uses: actions/checkout@v2
       - name: Check spelling
         uses: codespell-project/actions-codespell@v1
+        with:
+          exclude_file: tss-esapi/examples/symmetric_file_encrypt_decrypt_example.txt
 
   formatting:
     name: Check formatting

tss-esapi/examples/symmetric_file_encrypt_decrypt.rs

@@ -0,0 +1,219 @@
+use core::str;
+use std::convert::TryFrom;
+use std::fs;
+use tss_esapi::{
+    attributes::ObjectAttributesBuilder,
+    interface_types::{
+        algorithm::{HashingAlgorithm, PublicAlgorithm, SymmetricMode},
+        reserved_handles::Hierarchy,
+    },
+    structures::{
+        CreatePrimaryKeyResult, Digest, InitialValue, MaxBuffer, PublicBuilder,
+        SymmetricCipherParameters, SymmetricDefinitionObject,
+    },
+    Context, TctiNameConf,
+};
+
+fn main() {
+    // Create a new TPM context. This reads from the environment variable `TPM2TOOLS_TCTI` or `TCTI`
+    //
+    // It's recommended you use `TCTI=device:/dev/tpmrm0` for the linux kernel
+    // tpm resource manager.
+    let mut context = Context::new(
+        TctiNameConf::from_environment_variable()
+            .expect("Failed to get TCTI / TPM2TOOLS_TCTI from environment. Try `export TCTI=device:/dev/tpmrm0`"),
+    )
+    .expect("Failed to create Context");
+
+    // This example won't go over the process to create a new parent. For more detail see `examples/hmac.rs`.
+    let primary = create_primary(&mut context);
+
+    // Create the AES key. This key exists under the primary key in it's hierarchy
+    // and can only be used if the same primary key is recreated from the parameters
+    // defined above.
+    let object_attributes = ObjectAttributesBuilder::new()
+        .with_fixed_tpm(true)
+        .with_fixed_parent(true)
+        .with_st_clear(false)
+        .with_sensitive_data_origin(true)
+        .with_user_with_auth(true)
+        .with_sign_encrypt(true)
+        .with_decrypt(true)
+        .build()
+        .expect("Failed to build object attributes");
+
+    let key_pub = PublicBuilder::new()
+        // This key is an AES key
+        .with_public_algorithm(PublicAlgorithm::SymCipher)
+        .with_name_hashing_algorithm(HashingAlgorithm::Sha256)
+        .with_symmetric_cipher_parameters(SymmetricCipherParameters::new(
+            SymmetricDefinitionObject::AES_128_CFB,
+        ))
+        .with_object_attributes(object_attributes)
+        .with_symmetric_cipher_unique_identifier(Digest::default())
+        .build()
+        .unwrap();
+
+    let (private, public) = context
+        .execute_with_nullauth_session(|ctx| {
+            // Create the AES key given our primary key as it's parent. This returns the private
+            // and public portions of the key. It's *important* to note that the private component
+            // is *encrypted* by a key associated with the primary key. It is not plaintext or
+            // leaked in this step.
+            ctx.create(primary.key_handle, key_pub, None, None, None, None)
+                .map(|key| (key.out_private, key.out_public))
+        })
+        .unwrap();
+
+    // Once the key is created, we have it's parameters in the private and public values.
+    // We now need to load it into the tpm so that it can be used.
+    //
+    // The enc_private and public values can be serialised and persisted - that way they can
+    // be reloaded for future use.
+
+    // We load the data from a file system file, it can be somewhat large (like a certificate), larger than MaxBuffer::MAX_SIZE
+    let initial_data = fs::read("tss-esapi/examples/symmetric_file_encrypt_decrypt_example.txt")
+        .expect("could not open data file");
+
+    // We create an initialisation vector, since it is needed for decryption, it should be persisted in a real world use case
+    let iv = context
+        .execute_with_nullauth_session(|ctx| {
+            InitialValue::from_bytes(
+                ctx.get_random(16)
+                    .expect("could not get random bytes for initialisation vector")
+                    .as_bytes(),
+            )
+        })
+        .expect("could not create iv from random bytes");
+
+    // We encrypt the data
+    let encrypted_data = context
+        .execute_with_nullauth_session(|ctx| {
+            let mut encrypted_data = Vec::new();
+            let handle = ctx
+                .load(primary.key_handle, private.clone(), public.clone())
+                .expect("could not load child key");
+
+            let mut chunk_iv = iv.clone();
+
+            // This file is larger than the MaxBuffer::MAX_SIZE, so we need to chunk it
+            // The iv must be different for every chunk, the encrypt_decrypt_2 function conveniently provide a new one at each iteration
+            for chunk in initial_data.chunks(MaxBuffer::MAX_SIZE) {
+                let data = MaxBuffer::try_from(Vec::from(chunk))
+                    .expect("failed to create data from file buffer chunk");
+                let (enc_data, chunk_iv_out) = ctx.encrypt_decrypt_2(
+                    handle,             // Handle to a symmetric key
+                    false,              // false, indicates that the data should be encrypted
+                    SymmetricMode::Cfb, // The symmetric mode of the encryption
+                    data,               // The data that is to be encrypted
+                    chunk_iv,           // Initial value needed by the algorithm
+                )?;
+                chunk_iv = chunk_iv_out;
+                encrypted_data.push(enc_data);
+            }
+            Ok::<Vec<MaxBuffer>, tss_esapi::Error>(encrypted_data)
+        })
+        .expect("Call to encrypt_decrypt_2 failed when encrypting data");
+    let encrypted_data = encrypted_data
+        .iter()
+        .map(|e| e.as_bytes())
+        .collect::<Vec<_>>()
+        .concat();
+
+    // Decrypting is exactly the opposite, with the same first iv
+    let decrypted_data = context
+        .execute_with_nullauth_session(|ctx| {
+            let mut decrypted_data = Vec::new();
+            let handle = ctx
+                .load(primary.key_handle, private.clone(), public.clone())
+                .expect("could not load child key");
+
+            let mut chunk_iv = iv;
+
+            for chunk in encrypted_data.chunks(MaxBuffer::MAX_SIZE) {
+                let data = MaxBuffer::try_from(Vec::from(chunk))
+                    .expect("failed to create data from encrypted data chunk");
+                let (enc_data, chunk_iv_out) = ctx.encrypt_decrypt_2(
+                    handle,             // Handle to a symmetric key
+                    true,               // true, indicates that the data should be decrypted
+                    SymmetricMode::Cfb, // The symmetric mode of the encryption
+                    data,               // The data that is to be encrypted
+                    chunk_iv,           // Initial value needed by the algorithm
+                )?;
+                chunk_iv = chunk_iv_out;
+                decrypted_data.push(enc_data);
+            } //
+            Ok::<Vec<MaxBuffer>, tss_esapi::Error>(decrypted_data)
+        })
+        .expect("Call to encrypt_decrypt_2 failed when encrypting data");
+    let decrypted_data = decrypted_data
+        .iter()
+        .map(|e| e.as_bytes())
+        .collect::<Vec<_>>()
+        .concat();
+
+    println!(
+        "=== Initial data ===\n\n{}\n\n\n\n",
+        str::from_utf8(&initial_data).unwrap()
+    );
+    print!("");
+    println!(
+        "=== Decrypted data ===\n\n{}",
+        str::from_utf8(&decrypted_data).unwrap()
+    );
+    // They are the same!
+    assert_eq!(initial_data, decrypted_data);
+}
+
+fn create_primary(context: &mut Context) -> CreatePrimaryKeyResult {
+    // Create the primary key. A primary key is the "root" of a collection of objects.
+    // These other objects are encrypted by the primary key allowing them to persist
+    // over a reboot and reloads.
+    //
+    // A primary key is derived from a seed, and provided that the same inputs are given
+    // the same primary key will be derived in the tpm. This means that you do not need
+    // to store or save the details of this key - only the parameters of how it was created.
+    let object_attributes = ObjectAttributesBuilder::new()
+        // Indicate the key can only exist within this tpm and can not be exported.
+        .with_fixed_tpm(true)
+        // The primary key and it's descendent keys can't be moved to other primary
+        // keys.
+        .with_fixed_parent(true)
+        // The primary key will persist over suspend and resume of the system.
+        .with_st_clear(false)
+        // The primary key was generated entirely inside the TPM - only this TPM
+        // knows it's content.
+        .with_sensitive_data_origin(true)
+        // This key requires "authentication" to the TPM to access - this can be
+        // an HMAC or password session. HMAC sessions are used by default with
+        // the "execute_with_nullauth_session" function.
+        .with_user_with_auth(true)
+        // This key has the ability to decrypt
+        .with_decrypt(true)
+        // This key may only be used to encrypt or sign objects that are within
+        // the TPM - it can not encrypt or sign external data.
+        .with_restricted(true)
+        .build()
+        .expect("Failed to build object attributes");
+
+    let primary_pub = PublicBuilder::new()
+        // This key is a symmetric key.
+        .with_public_algorithm(PublicAlgorithm::SymCipher)
+        .with_name_hashing_algorithm(HashingAlgorithm::Sha256)
+        .with_object_attributes(object_attributes)
+        .with_symmetric_cipher_parameters(SymmetricCipherParameters::new(
+            SymmetricDefinitionObject::AES_128_CFB,
+        ))
+        .with_symmetric_cipher_unique_identifier(Digest::default())
+        .build()
+        .unwrap();
+
+    context
+        .execute_with_nullauth_session(|ctx| {
+            // Create the key under the "owner" hierarchy. Other hierarchies are platform
+            // which is for boot services, null which is ephemeral and resets after a reboot,
+            // and endorsement which allows key certification by the TPM manufacturer.
+            ctx.create_primary(Hierarchy::Owner, primary_pub, None, None, None, None)
+        })
+        .unwrap()
+}

tss-esapi/examples/symmetric_file_encrypt_decrypt_example.txt

@@ -0,0 +1 @@
+Lorem ipsum dolor sit amet consectetur adipiscing elit in lacinia egestas, eget cubilia laoreet vel iaculis urna gravida elementum himenaeos. Mattis mus nullam fames malesuada scelerisque quisque nec enim nisl inceptos, vehicula dapibus cursus nunc convallis diam lacinia proin. Accumsan mattis felis varius ligula, sagittis dignissim potenti rhoncus lectus, purus sed arcu. Arcu augue eleifend litora ultrices senectus laoreet fusce, suspendisse pharetra pulvinar risus penatibus odio eu, nam nulla platea interdum erat aptent. Dis euismod tincidunt tortor luctus morbi netus sagittis consequat, sollicitudin aptent volutpat fermentum condimentum ridiculus risus ullamcorper turpis, class penatibus in vel diam pretium est. Varius tempus fames habitasse et nibh turpis nam lobortis faucibus, eget dapibus odio nunc praesent nullam interdum. Rutrum mollis iaculis netus elementum potenti tristique phasellus, porta sociis integer tortor sodales neque, quis vestibulum varius morbi viverra himenaeos. Habitasse inceptos cursus elementum mi dictumst blandit nam, habitant montes quis praesent fames potenti sem, consequat tellus sollicitudin vivamus mollis dui. Nostra felis ullamcorper sociosqu integer penatibus luctus lacus bibendum suspendisse dis, eu a ridiculus sapien litora hendrerit blandit fusce fringilla viverra, suscipit habitasse odio aliquet mus congue quam conubia himenaeos. Sem porttitor vehicula consequat pretium fames ullamcorper posuere rutrum, vulputate cursus phasellus magnis accumsan diam. Iaculis hendrerit sodales sagittis in maecenas vel tristique, ultrices augue malesuada accumsan etiam pulvinar, ligula mauris convallis turpis natoque imperdiet pellentesque, diam torquent tempus commodo sapien. Consequat habitasse porta ut nascetur augue urna, eu tortor placerat eleifend proin, egestas natoque tincidunt feugiat morbi. Lacus faucibus viverra cubilia nascetur dictum a potenti commodo facilisi, fames mauris posuere erat mus senectus est placerat ornare mollis, vitae sociosqu suscipit luctus montes sem maecenas vel. Lacinia sollicitudin lobortis duis nisl posuere gravida tristique tempus volutpat netus class parturient arcu, velit torquent in cursus etiam ultricies eu sem lacus habitasse rutrum morbi. Molestie facilisis sodales lobortis et ultrices cum nam curabitur, odio bibendum nec platea placerat natoque tempor, habitant morbi montes tristique nullam massa cursus. Natoque quam pharetra fames iaculis rutrum leo metus dis dictum, sollicitudin per tempus senectus cum magna nisl scelerisque accumsan, justo ligula massa mattis primis est nullam congue. Pulvinar arcu tempor fermentum diam nisl ridiculus molestie accumsan nostra volutpat fringilla placerat, venenatis dapibus penatibus aliquam lacinia quam risus sagittis neque velit ac. Turpis inceptos est morbi primis vulputate euismod in vivamus iaculis, suscipit platea curae rhoncus montes aliquet sapien nostra, quisque vitae dignissim rutrum id gravida feugiat pretium. Integer arcu litora facilisis hac accumsan nisi suspendisse, aenean suscipit vel curabitur nostra. Molestie conubia venenatis nullam placerat mollis vulputate egestas, sodales tellus justo commodo metus suspendisse turpis, volutpat dignissim laoreet ante est sociis. Mauris rutrum suspendisse lacinia massa lectus natoque arcu nostra est sem mollis rhoncus per, fermentum curae tristique eros suscipit justo fames nec ligula himenaeos velit. Euismod felis platea velit cum rhoncus aptent, mollis aliquam penatibus non nisl per pellentesque, eget tortor magnis at varius. Ut magnis suspendisse turpis montes sociis aptent gravida arcu, mus vehicula eu facilisi molestie hendrerit hac dictumst, quam id ultrices in parturient scelerisque dignissim. Elementum primis porta nibh ullamcorper placerat ad dapibus mauris velit, nascetur cursus senectus consequat platea sagittis inceptos orci, taciti fusce parturient feugiat sapien imperdiet leo vitae. Nam tellus suscipit viverra lacus ac maecenas molestie quisque, ut natoque vel feugiat magna nulla bibendum, mi purus euismod hac phasellus ad arcu. Scelerisque facilisi a eros enim et purus, malesuada pretium mauris interdum natoque, ut dignissim magnis senectus ac. Facilisis tempus viverra penatibus mi rhoncus ut montes semper duis, posuere laoreet ultrices luctus molestie cras ac neque aptent, metus eu ridiculus urna nisl arcu vehicula fermentum. Aenean class eget sociis ridiculus accumsan, porta fringilla facilisi netus cum, eu sed imperdiet vel. Parturient odio proin integer lobortis primis lectus magnis sapien dictumst per sociis, condimentum euismod eros cras nascetur vel facilisi leo urna. Natoque fusce eleifend integer porttitor felis fermentum lacus iaculis dignissim, erat sapien malesuada primis pharetra etiam potenti neque, facilisi luctus tempor accumsan faucibus rutrum tristique dis. Nulla egestas nisl risus condimentum scelerisque diam sed mollis cursus, netus libero facilisi proin semper phasellus varius nullam nam parturient, donec est sociosqu acc.