mirror of
https://github.com/corda/corda.git
synced 2025-01-06 21:18:46 +00:00
c545a58c1d
* Initial host server skeleton. * Create IASProxy project, and skeleton for attestation host. * Fix up tests * Extend attestation host skeleton, and make test ports configurable. * Enhance MockIAS to make pseManifestStatus optional. * Make IASProxy endpoints asynchronous. * Add sub-modules for challenger and for common code. * Create integration test for host's provisioning endpoint. * Flesh out attestation challenger WAR. * Package refactoring, to be more Java9 friendly. * Refactor more messages into attestation-common. * Remove our private key from the repository. * Declare an empty PSE Manifest to be invalid. * Fix basic integration test issues for challenger and host. * Integrate keystore scripts into the build properly. * Name keystore targets explicitly for Gradle. * Allow HTTP conversation between Challenger, Host and ISV using session ID. * Add MockHost for challenger's integration tests. * Reconcile HTTP port numbers between Phase1 and Phase2 components. * Remove elements that can be inherited from root project. * Add placeholder README. * Add convenient extension functions to ObjectMapper. * Extend integration test coverage for challenger/host/isv. * Catch IOException from HttpClient for challenger. * Integrate host sub-module with remote-attestation project. * Begin integrating host/enclave code from Phase I. * Rename challenger's HTTP endpoint. * Generate keystore for challenger "on the fly". * Add native JNI code for accessing the SGX enclave. * Point Gradle to the correct enclave object. * Fixes for generating a Quote for this enclave. * Return the IAS report to the challenger for verification. * Begin populating the challenger's AttestationResponse message. * Enable the challenger to pass encrypted secrets into the enclave. * Align challenger, host and isv ports. * Refactor challenger as a fat-jar application. * AttestationResponse is not shared, so refactor into challenger. * Move HttpClientContext objects into HttpClient blocks. * Remove unused Message2 and Message3 objects. * Add realistic dummy value for reportID from IAS. * Small tidy-up on attestation host. * First set of review comments. * Add missing exception message. * Update location of environment file. * Use empty mock revocation lists by default. * Improve logging and add "happy path" test for provisioning secrets. * Update Gradle files so that we can run attestation-host from IntelliJ. * The platformInfo field from IAS can be null, so allow this. Also protect other JNI pointer parameters from NPE. * Allow Gradle to build hardware enclave.
62 lines
1.8 KiB
Groovy
62 lines
1.8 KiB
Groovy
String[] runArgs(List<String> prefix, List<String> args) {
|
|
return [
|
|
*prefix,
|
|
"-Dcorda.sgx.enclave.path=/code/sgx-jvm/remote-attestation/enclave/build",
|
|
"-Djava.library.path=/code/sgx-jvm/remote-attestation/attestation-host/native/build",
|
|
"-Dattestation.home=/code/sgx-jvm/remote-attestation/attestation-host/build/logs",
|
|
"-Dfile.encoding=UTF-8", "-Duser.country=US", "-Duser.language=en", "-Duser.variant",
|
|
"-cp", sourceSets.main.runtimeClasspath.collect { it.toString() }.join(":"),
|
|
debugArgs, *args
|
|
]
|
|
}
|
|
|
|
String[] containerArgs(String project, String... args) {
|
|
def buildArgs = [ "bash", "$projectDir/../../tools/sx/sx", "build" ]
|
|
if (ext.hardware) {
|
|
buildArgs << "-hp"
|
|
}
|
|
return [
|
|
*buildArgs, "remote-attestation/$project", *args
|
|
]
|
|
}
|
|
|
|
def execWait(String[] command, File directory, String ready) {
|
|
ProcessBuilder builder = new ProcessBuilder(command)
|
|
builder.redirectErrorStream(true)
|
|
builder.directory(directory)
|
|
Process process = builder.start()
|
|
|
|
if (ready == null) {
|
|
process.waitFor()
|
|
return
|
|
}
|
|
|
|
InputStream stdout = process.getInputStream()
|
|
try {
|
|
BufferedReader reader = new BufferedReader(new InputStreamReader(stdout))
|
|
|
|
def line
|
|
while ((line = reader.readLine()) != null) {
|
|
println line
|
|
if (line.contains(ready)) {
|
|
println "Command $command is ready"
|
|
break
|
|
}
|
|
}
|
|
} finally {
|
|
stdout.close()
|
|
}
|
|
}
|
|
|
|
def containerDebugWait(File directory, String project, String... args) {
|
|
def ready = "Listening for transport dt_socket at address:"
|
|
execWait(containerArgs(project, args), directory, ready)
|
|
}
|
|
|
|
ext {
|
|
runArgs = this.&runArgs
|
|
containerArgs = this.&containerArgs
|
|
containerDebugWait = this.&containerDebugWait
|
|
}
|
|
|