Skip to content

Lesly-Ann/guardian

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
evaluation
evaluation
 
 
examples
examples
 
 
guardian
guardian
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
LICENCE
LICENCE
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 
setup.cfg
setup.cfg
 
 
tox.ini
tox.ini
 
 

Repository files navigation

Guardian

What is it?

Guardian is a tool that uses symbolic execution to validate whether an SGX enclave binary is orderly according to the definition in [1]—it also tries to detect typical enclave attack primitives in the process. It uses angr [3]—a symbolic execution engine that focus on usability—as a backend. For more details, please read our paper.

Licence

Guardian is licensed under the GNU Affero General Public License v3.0. If you have any queries about that, please reach out to us.

Running Guardian

Prerequisites

Guardian requires Python 3.6 or newer --- make sure you have pip for Python3 installed. It also relies on angr [3], which can be installed using pip as follows:

pip install angr

Setup

You can setup Guardian using pip or tox automation tool.

pip

Run pip install . in the main folder of the Guardian repository. > ⚠️ If you get AttributeError: module 'enum' has no attribute 'IntFlag' error, check if you have enum34 library installed, which is not compatibile with Python

3.4. You can uninstall it by calling pip uninstall -y enum34. This step is not required if you use tox.

⚠️ If you want to run tests, you need pytest framework. You can either install it via pip or use tox, which installs pytest automatically. If you want to use pip, call pytest in the main folder of the Guardian repository.

tox

Guardian supports tox automation tool. You can install tox using pip by calling pip install tox. Once you have tox installed, simply call tox in the main folder of the Guardian repository. By default, it will run some tests under Python 3.6, 3.7, and 3.8. You can modify this behaviour by editing the file tox.ini.

Breakdown of the repository structure

Guardian repository comes with the main tool, evaluation script referenced in [1], examples, and some tests.

guardian

It contains the content of the Guardian tool package that you install, either using tox or pip.

Structure

  • tools.py:

    • Define the heuristics to find ecall/ocalls automatically in Helper class
    • Define the Report class that runs the analysis for each ecall/ocall and logs the result.

  • plugins.py: Define the EnclaveState class, which is the symbolic state used by guardian. It contains for instance the ControlState of the execution (e.g. Entering, Trusted, Exiting, Ocall, etc.), the corresponding permissions (read/write outside enclave), the violations found, the jump trace, call stack, and the predicate entry_sanitisation_complete (see SimulationProcedures for details).

  • breakpoints.py: Place breakpoints in symbolic execution and trigger some dedicated code. In particular, detect memory violations and jump violations. It also returns symbolic values when an instruction reads outside the enclave. Important breakpoints are:

    • mem_read: triggers detect_read_violations which reports a vulnerability when read are not allowed and it detects an out-of-enclave read or a read from symbolic (non unique) address.
    • mem_write: triggers detect_write_violations which reports a vulnerability when write are not allowed and it detect out-of-enclave write or a write from a symbolic (non unique) address.
    • exit (a successor is being generated from execution): detect out-of-enclave jump & jump to symbolic (non unique) address. detect_jump_violations.

  • hooker.py: Defines hooks that are triggered at specific addresses. In particular, it defines hooks for ecalls and ocalls that call SimulationProcedures to transition between phases described in the paper. Also defines hooks for 1) replacing unrecognized instructions 2) stubbing some calls to libc. Corresponding SimluationProcedures are defined in simulation_procedures.py

    • ecall enter: triggers TransitionToTrusted
    • ecall return: triggers TransitionToExiting
    • ocall enter: triggers TransitionToOcall
    • ocall return: triggers TransitionToTrusted
    • sgx_ocall_addr: triggers OcallAbstraction
    • exit_addr: triggers TransitionToExited
    • enter_addr: triggers RegisterEnteringValidation

  • simulation_procedures.py: define SimProcedures used by Guardian (i.e. Python function to be executed when some specific address is reached in the symbolic exploration).

    • TransitionToTrusted: check that transition comes from entry phase (Entering) or ocall (Ocall) & check that entry_sanitisation_complete predicate is true. Finally, set the permission to NoReadOrWrite and control state to Trusted.
    • TransitionToOcall: check that transition comes from secure phase (Trusted). Set permissions to ReadWrite and control state to Ocall.
    • TransitionToExiting: check that transition comes from secure phase (Trusted). Set the permission to Write and control state to Exiting.
    • TransitionToExited: check that transition comes from exiting phase (Exiting) or entry phase (Entering). Check that Validation.exited is true i.e. that register are sanitized on exit. Set control state to Exited.
    • OcallAbstraction: check that the current phase is Ocall. Returns symbolic value.
    • RegisterEnteringValidation: check that transition comes from entry phase (Entering) and that Validation.entering is true, i.e. that registers are properly sanitized. Set entry_sanitisation_complete predicate to True.
    • Validation.entering: check that "rcx = 0", "r8-15 = 0", ac = 0, and df = 1.
    • Validation.exited: check that "rcx = 0", "r8-15 = 0", ac = 0, and df = 1.

Questions:

  • What about proper stack setup?

Not important files:

  • project.py: Initialize the symbolic execution.
  • controlstate.py: Define ControlState (the current state of the enclave execution) and Rights (permissions associated with control states) types
  • explorer.py: Define EnclaveExploration class which sorts symbolic states in stashes and defines when to stop exploration (i.e. when more than 99 active stashes or more than 19 violations)
  • layout.py: Define the memory layout (stack, heap, etc.)
  • loggers.py: Just includes guardian logger to default angr loggers
  • timout.py: Probably simply sets an alarm to end symbolic execution after a certain time
  • violation_type.py: Type of violations reported by Guardian

evaluation

This folder contains SGX enclave binaries and a script we used in the vulnerability analysis in [1]. You should be able to reproduce our evaluation by running, from this folder:

python evaluation.py

examples

In this folder, you can find several scripts: *.py and *-after-fix.py, together with some SGX enclave binaries. These scripts expose vulnerabilities we found during our analysis in [1] and demonstrate these issues have been resolved after reporting them to the maintainers. If you want to run these scripts using tox, you will have to modify tox.ini. > ⚠️ If you want to run these examples, make sure that your current working directory is the main folder of the Guardian repository.

You can run specific examples by executing, for instance, the following:

python examples/sgx-gmp-demo_2.6.py

tests

Here, you can find a limited number of tests for our tool, together with some SGX enclave binaries they use. The purpose of these tests is to ascertain that violations types are correctly reported and that we do not detect any false-positives. If you set up Guardian using pip, you can run tests by calling pytest in the main folder of the Guardian repository. Alternatively, tox will run them automatically for you.

Citing

Guardian is a part of the research effort that we present in [1]; the paper is available here and its preprint here. If you want to refer to our work, please use the following BibTeX entry for citation.

@inproceedings{DBLP:conf/ccsw-ws/AntoninoW021,
  author    = {Pedro Antonino and
               Wojciech Aleksander Woloszyn and
               A. W. Roscoe},
  editor    = {Yinqian Zhang and
               Marten van Dijk},
  title     = {Guardian: Symbolic Validation of Orderliness in {SGX} Enclaves},
  booktitle = {CCSW@CCS '21: Proceedings of the 2021 on Cloud Computing Security
               Workshop, Virtual Event, Republic of Korea, 15 November 2021},
  pages     = {111--123},
  publisher = {{ACM}},
  year      = {2021},
  url       = {https://doi.org/10.1145/3474123.3486755},
  doi       = {10.1145/3474123.3486755},
  timestamp = {Thu, 25 Nov 2021 14:33:02 +0100},
  biburl    = {https://dblp.org/rec/conf/ccsw-ws/AntoninoW021.bib},
  bibsource = {dblp computer science bibliography, https://dblp.org}
}

References

[1] Antonino, Pedro and Wołoszyn, Wojciech Aleksander and Roscoe, Andrew William (2021). Guardian: symbolic execution of orderly SGX enclaves. Presented at CCSW@CCS '21 and available at https://doi.org/10.1145/3474123.3486755.

[2] Antonino, Pedro and Wołoszyn, Wojciech Aleksander and Roscoe, Andrew William (2021). Guardian: symbolic execution of orderly SGX enclaves. Preprint. Available at: https://arxiv.org/abs/2105.05962.

[3] Shoshitaishvili, Yan and Wang, Ruoyu and Salls, Christopher and Stephens, Nick and Polino, Mario and Dutcher, Audrey and Grosen, John and Feng, Siji and Hauser, Christophe and Kruegel, Christopher and Vigna, Giovanni (2016). IEEE Symposium on Security and Privacy.

About

No description, website, or topics provided.

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Makefile 31.5%
  • C++ 24.6%
  • C 23.8%
  • Python 20.1%