Created
August 11, 2018 19:47
-
-
Save sangfansh/22f356186a48f8b1e980b7ca6d41e5ad to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
int ecall_add_item(const char* master_password, const item_t* item, const size_t item_size) { | |
// | |
// OVERVIEW: | |
// 1. [ocall] load wallet | |
// 2. unseal wallet | |
// 3. verify master-password | |
// 4. check input length | |
// 5. add item to the wallet | |
// 6. seal wallet | |
// 7. [ocall] save sealed wallet | |
// 8. exit enclave | |
// | |
// | |
sgx_status_t ocall_status, sealing_status; | |
int ocall_ret; | |
// 2. load wallet | |
size_t sealed_size = sizeof(sgx_sealed_data_t) + sizeof(wallet_t); | |
uint8_t* sealed_data = (uint8_t*)malloc(sealed_size); | |
ocall_status = ocall_load_wallet(&ocall_ret, sealed_data, sealed_size); | |
if (ocall_ret != 0 || ocall_status != SGX_SUCCESS) { | |
free(sealed_data); | |
return ERR_CANNOT_LOAD_WALLET; | |
} | |
// 3. unseal wallet | |
uint32_t plaintext_size = sizeof(wallet_t); | |
wallet_t* wallet = (wallet_t*)malloc(plaintext_size); | |
sealing_status = unseal_wallet((sgx_sealed_data_t*)sealed_data, wallet, plaintext_size); | |
free(sealed_data); | |
if (sealing_status != SGX_SUCCESS) { | |
free(wallet); | |
return ERR_FAIL_UNSEAL; | |
} | |
// 3. verify master-password | |
if (strcmp(wallet->master_password, master_password) != 0) { | |
free(wallet); | |
return ERR_WRONG_MASTER_PASSWORD; | |
} | |
// 4. check input length | |
if (strlen(item->title)+1 > MAX_ITEM_SIZE || | |
strlen(item->username)+1 > MAX_ITEM_SIZE || | |
strlen(item->password)+1 > MAX_ITEM_SIZE | |
) { | |
free(wallet); | |
return ERR_ITEM_TOO_LONG; | |
} | |
// 5. add item to the wallet | |
size_t wallet_size = wallet->size; | |
if (wallet_size >= MAX_ITEMS) { | |
free(wallet); | |
return ERR_WALLET_FULL; | |
} | |
wallet->items[wallet_size] = *item; | |
++wallet->size; | |
// 6. seal wallet | |
sealed_data = (uint8_t*)malloc(sealed_size); | |
sealing_status = seal_wallet(wallet, (sgx_sealed_data_t*)sealed_data, sealed_size); | |
free(wallet); | |
if (sealing_status != SGX_SUCCESS) { | |
free(wallet); | |
free(sealed_data); | |
return ERR_FAIL_SEAL; | |
} | |
// 7. save wallet | |
ocall_status = ocall_save_wallet(&ocall_ret, sealed_data, sealed_size); | |
free(sealed_data); | |
if (ocall_ret != 0 || ocall_status != SGX_SUCCESS) { | |
return ERR_CANNOT_SAVE_WALLET; | |
} | |
// 8. exit enclave | |
return RET_SUCCESS; | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment