Add U and V key handlers, and decrypt + run payload

[lkatalin]

• I'll need to figure out how to avoid using

#![feature(string_remove_matches)]
#![feature(mutex_unlock)]

in order for CI to pass as these are unstable features. The former should be easy, the latter maybe not so much.

• There are a few details still to fill in re: running the decrypted payload, checking if it's a zip file, etc.
  The decrypted payload appears to be the excludes list; there is no autorun.sh sent.

Resolves #97
Resolves #203
Resolves #221
Resolves #226
Resolves #202
Resolves #99

[puiterwijk]

So, you could just automatically derive the Cipher value.

[puiterwijk]

Since I'm pretty sure that for cryptography, the default depends on the length of the key.

[puiterwijk]

(Also, given the fact that ukey, vkey and sym_key are 32 bytes, that means that this is 256 bit AES.)

[puiterwijk]

Suggested change

	Cipher::aes_128_gcm(),
	match symm_key.len() {
	16 => Cipher::aes_128_gcm(),
	32 => Cipher::aes_256_gcm(),
	_ => return Err(....),
	}

[lkatalin]

Terrific idea.

[puiterwijk]

I think a better reference for this constant could be FIPS 197, Introduction: This standard specifies the Rijndael algorithm ([3] and [4]), a symmetric block cipher that can process data blocks of 128 bits, .... (128 bits / 8 bits-per-byte gives you 16)

[puiterwijk]

There is no additional data: that would be a call like encryptor.authenticate_additional_data(associated_data) in the encrypt function, or decryptor.authenticate_additional_data(authenticated_data) in decrypt.

[puiterwijk]

All the unsafe stuff makes me feel a bit worried. Would it be a possibility to put this data as a fully locked struct field in the overall HTTP state?

[lkatalin]

Good point, I've put this in the app_data now.

[lkatalin]

@puiterwijk @lukehinds @ashcrow This is updated, I'm able to run a small script with it. Still having the problem referenced in #202 but that is the fail point right now after the payload script runs.

[lkatalin]

I can also split these commits out into their own PRs if that makes it easier to review; just let me know.

[lkatalin]

@puiterwijk @lukehinds @ashcrow This is updated, I'm able to run a small script with it. Still having the problem referenced in #202 but that is the fail point right now after the payload script runs.

Happy to say #202 is fixed now in this PR. To use the revocation feature and ensure that the revocation certificate is sent correctly, you must run the tenant with the following command (example directory and script shown here):

[root@localhost ~]# ls /root/senddir/
autorun.sh

[root@localhost ~]# keylime_tenant -v 127.0.0.1 -t 127.0.0.1 --uuid d432fbb3-d2f1-4a97-9ef7-75bd81c00000 
--allowlist /root/allowlist.txt --include /root/senddir --cert /root/ca --exclude /root/excludes.txt -c add

... where autorun.sh is any script you want for testing. You must also ensure that the following values are set in /etc/keylime.conf:

[cloud_agent]
...
extract_payload_zip = True
...
listen_notfications = True
...
payload_script=autorun.sh

I'll include this in some documentation.

[ashcrow]

There is nothing wrong with this, though I do want to ask: Why use the system command instead of a library?

[lkatalin]

@ashcrow I tried a library, but it was a bit more fiddly than I expected and this just worked. I suppose we could always update it on a second pass if we want to make some enhancements.

[lukehinds]

The zip_rs is not nice I agree, check out compress tools, I find it a lot simpler https://crates.io/crates/compress-tools

[lkatalin]

@lukehinds Sure will do, I can push a new version of that commit if I get that working.

[lkatalin]

The library seems straightforward, but I keep getting

 INFO  keylime_agent > Unzipping payload decrypted_payload.zip to /tmp/secure/unzipped
Error: Io(Os { code: 2, kind: NotFound, message: "No such file or directory" })

Despite

[keylime-ima@localhost rust-keylime]$ ls /tmp/secure/unzipped/
decrypted_payload.zip  derived_tci_key
[keylime-ima@localhost rust-keylime]$ file /tmp/secure/unzipped/decrypted_payload.zip 
/tmp/secure/unzipped/decrypted_payload.zip: Zip archive data, at least v2.0 to extract
[keylime-ima@localhost rust-keylime]$ ls -la /tmp/secure/unzipped/decrypted_payload.zip 
-rw-r--r--. 1 root root 8738 Jul 12 14:02 /tmp/secure/unzipped/decrypted_payload.zip

The code:

let zipped_payload = config_get("cloud_agent", "dec_payload_file")?;
        info!("Unzipping payload {} to {}", &zipped_payload, &unzipped);

        let mut source = fs::File::open(&zipped_payload)?;    
        assert!(Path::new(&zipped_payload).exists());

        let dest = Path::new(&unzipped);
        assert!(Path::new(&dest).exists());

        let file_list = list_archive_files(&mut source).expect("failed to list files");
        info!("File list: {:?}", file_list);

        uncompress_archive(&mut source, &dest, Ownership::Ignore).expect("failed to unzip");

Still debugging...

[lkatalin]

Okay, it worked with a test example so it should be doable here shortly.

[lkatalin]

It says it succeeds, but then the unzipped files aren't there. All I can think of is maybe it isn't opening with the correct permissions, as it's apparently r only. This should be easy to update but for some reason is not.

[lkatalin]

I figured out the error... apparently compress_tools::list_archive_files mutates the src archive you give it so that there are no files left afterwards. Bizarre!

[ashcrow]

One question but overall 👍

[lukehinds]

This LGTM, would you like me to test again first thing tomorrow @lkatalin ?

[lkatalin]

Thanks @ashcrow and @lukehinds !

@lukehinds Thanks for the offer - if you test again with this branch, you will get the same intermittent quote error we saw at the end of last week. I bypassed that to test the U/V key handling behavior by setting the Python tpm2_checkquote function to return true so that I could at least build out the rest of the code following the quote check. So if you want to test the code in this branch, I could send you a branch of the Python code that I use for testing the interaction. If you want to test the whole system, we will need to fix the intermittent quote error first. I am about to give that a go, but could use help, as it seems to be esoteric TPM behavior.

[lkatalin]

@ashcrow @lukehinds Updated to use a zip library!