Initial commit

Signed-off-by: Jukka Julku <[email protected]>

Author: jujlk

.gitignore

@@ -0,0 +1,3 @@
+/target
+Cargo.lock
+*~

Cargo.toml

@@ -0,0 +1,26 @@
+cargo-features = ["per-package-target"]
+
+[workspace]
+members = [
+  "libedge",
+  "libeapp",
+  "libhapp",
+]
+
+[workspace.package]
+version      = "0.2.0"
+edition      = "2021"
+authors      = ["Jukka Julku <[email protected]>",
+                "Markku Kylänpää <[email protected]>"]
+repository   = "https://github.com/vector-sdk/rust-sdk"
+readme       = "README.md"
+license      = "MIT"
+description  = "Rust SDK for Keystone Enclaves"
+
+[profile.dev]
+opt-level = 1
+debug = false
+
+[profile.release]
+opt-level = 1
+debug = false

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2022 VTT Technical Research Centre of Finland Ltd.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

Makefile

@@ -0,0 +1,43 @@
+# List of subdirectories. Not used for build, but cleanup!
+SUBDIRS := 	.cargo               \
+		libedge              \
+		libedge/src          \
+		libeapp              \
+		libeapp/.cargo       \
+		libeapp/macros       \
+		libeapp/macros/src   \
+		libeapp/src          \
+		libeapp/src/internal \
+		libhapp              \
+		libhapp/.cargo       \
+		libhapp/src          \
+		libhapp/src/internal \
+
+# Target architecture for the host application libraries
+TARGET_ARCH := riscv64gc-unknown-linux-gnu
+x86_64: TARGET_ARCH := x86_64-unknown-linux-gnu
+
+# Common build options. Always build for release to minimize binary size!
+CARGO_FLAGS       := -v --release
+CARGO_DEBUG_FLAGS := --features debug_memory
+
+dir2tgt = $(patsubst %, ./%/$(strip $(2)),$(strip $(1)))
+
+all: riscv64
+
+riscv64:
+	cargo build --target $(TARGET_ARCH) $(CARGO_FLAGS)
+
+# This target builds the host application libraries for x86_64 architecture.
+# Enclave application libraries will still be built for the RISC-V target.
+x86_64:
+	cargo build --target $(TARGET_ARCH) $(CARGO_FLAGS)
+
+# Build with SDK's internal enclave memory debugging support
+debug:
+	cargo build --target $(TARGET_ARCH) $(CARGO_DEBUG_FLAGS) $(CARGO_FLAGS)
+
+# Clean build and temporary files:
+clean:
+	cargo clean
+	rm -f *~ $(call dir2tgt, $(strip $(SUBDIRS)), *~)

README.md

@@ -0,0 +1,43 @@
+# A Rust SDK for building Keystone enclave applications
+
+This project aims to provide a Rust programming language SDK for building
+[Keystone](https://keystone-enclave.org/) enclave and host applications for the
+RISC-V architecture.
+
+The SDK is designed to be compatible with the
+[Keystone Eyrie Modular Runtime](https://github.com/keystone-enclave/keystone-runtime).
+
+**NOTE**: This work is experimental and on a very early stage. The security of
+          the API or its implementation has not been properly verified yet.
+          Therefore, **Do not use in production!**
+
+# Prequisites
+
+### Bulding Keystone
+
+Download and build [Keystone](https://github.com/keystone-enclave/keystone) for QEMU
+environment using [instructions](http://docs.keystone-enclave.org/en/latest/Getting-Started/Install-Dependencies.html)
+given in [Keystone documentation](http://docs.keystone-enclave.org).
+
+**NOTE:** The code in this repository has only been tested using QEMU!
+
+### Install Rust
+
+This project uses experimental Rust features currently only available in Rust's
+nightly build.
+
+Use [rustup](https://www.rust-lang.org/tools/install) to install the Rust
+environment and add required RISC-V targets:
+
+      curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
+      rustup default nightly
+      rustup target add riscv64gc-unknown-none-elf
+      rustup target add riscv64gc-unknown-linux-gnu
+
+# Build SDK crates
+
+      cargo build --release
+
+# Test
+
+Test with Rust SDK [demo application](https://github.com/vector-sdk/rust-sdk-demo)!

libeapp/.cargo/config

@@ -0,0 +1,2 @@
+[build]
+target = "riscv64gc-unknown-none-elf"

libeapp/.gitignore

@@ -0,0 +1,3 @@
+/target
+Cargo.lock
+*~

libeapp/Cargo.toml

@@ -0,0 +1,30 @@
+cargo-features = ["per-package-target"]
+
+[package]
+name                 = "eapp"
+version.workspace    = true
+edition.workspace    = true
+authors.workspace    = true
+repository.workspace = true
+readme.workspace     = true
+license.workspace    = true
+description          = """
+A library for enclave application development
+"""
+forced-target           = "riscv64gc-unknown-none-elf"
+
+[dependencies]
+buddy_system_allocator = "0.8"
+spin = {version = "0.9.3" }
+
+[dependencies.eapp-macros]
+path = "./macros"
+
+[dependencies.edge]
+path = "../libedge"
+
+[features]
+default      = ["heap", "heap_rt"]
+heap         = []       # Application has heap available
+heap_rt      = ["heap"] # Runtime has heap available
+debug_memory = ["heap", "edge/debug_memory"]

libeapp/README.md

@@ -0,0 +1,3 @@
+# libeapp
+
+A Rust library for building enclave applications

libeapp/build.rs

@@ -0,0 +1,11 @@
+//! Build options
+//
+// SPDX-License-Identifier: MIT
+// Copyright (C) 2022 VTT Technical Research Centre of Finland Ltd
+
+fn main() {
+    // Always link statically as no libraries are available in the enclave
+    println!("cargo:rustc-link-arg=-static");
+    // No standard libraries available in the enclave
+    println!("cargo:rustc-link-arg=-nostdlib");
+}

libeapp/eapp.lds

@@ -0,0 +1,123 @@
+/* An example linker script for Rust Keystone enclave application
+ *
+ * SPDX-License-Identifier: MIT
+ * Copyright (C) 2022 VTT Technical Research Centre of Finland Ltd
+ */
+OUTPUT_ARCH( "riscv" )
+
+/* Use linker argument '--defsym HEAP_SIZE=<size>' to alter heap size. The size
+ * must a multiple of page size (4096 bytes). Default value is 0. */
+EXTERN(HEAP_SIZE)
+
+ASSERT(DEFINED(HEAP_SIZE) ? HEAP_SIZE % 4096 == 0 : 1,
+       "HEAP_SIZE must be multiple of page size (4096 bytes)")
+
+/* Use linker argument '--defsym ECALL_INPUT_SIZE=<size>' to alter the amount of
+ * space reserved for ecall input buffer. This option is only needed if feature
+ * "heap_rt" is NOT used. Default value is 0.
+ */
+EXTERN(ECALL_INPUT_SIZE)
+
+/* Use linker argument '--defsym ECALL_OUTPUT_SIZE=<size>' to alter the amount
+ * of space reserved for ecall output buffer. This option is only needed if
+ * feature "heap_rt" is NOT used. Default value is 0.
+ */
+EXTERN(ECALL_OUTPUT_SIZE)
+
+/* ECall header is always 20 bytes */
+ECALL_HEADER_LENGTH = 24;
+/* Length of the ecall input buffer in bytes */
+ECALL_IBUF_SIZE = DEFINED(ECALL_INPUT_SIZE)
+                 ? ECALL_INPUT_SIZE + ECALL_HEADER_LENGTH
+                 : 0;
+/* Length of the ecall output buffer in bytes */
+ECALL_OBUF_SIZE = DEFINED(ECALL_OUTPUT_SIZE)
+                 ? ECALL_OUTPUT_SIZE + ECALL_HEADER_LENGTH
+                 : 0;
+
+/* Program's actual entry point before eapp_entry. Defined in libeapp */
+ENTRY(_start)
+
+PHDRS
+{
+/*   phdrs PT_PHDR PHDRS; */
+   text  PT_LOAD FILEHDR PHDRS FLAGS(5);
+   data  PT_LOAD FLAGS (6);
+   alloc PT_LOAD FLAGS (6);
+   bss   PT_LOAD;
+}
+
+SECTIONS
+{
+  /* The text section must be aligned to page boundary. Keystone
+   * runtime will check it.
+   */
+  . = 0x00001000;
+  .text : {
+   /* The _start function should always be at address 0x00001000 */
+    *(.text._start)
+    *(.text)
+    *(.text.*)
+  } : text
+  .rodata :
+  {
+    *(.rdata)
+    *(.rodata)
+    *(.rodata.*)
+  } /* defaults to .text */
+  . = ALIGN(0x1000);
+  .data :  { *(.data) } : data
+  .debug : { *(.debug) }
+
+  /* Ecall buffers, in case feature "heap_rt" is not used */
+  . = ALIGN(0x1000);
+  .ecall_zone (NOLOAD):
+  {
+    *(.ecall_zone);
+    PROVIDE(__ecall_inbuf_end    = DEFINED(__ecall_inbuf_start)
+                                   ? . + ECALL_IBUF_SIZE
+                                   : . );
+    PROVIDE(__ecall_outbuf_start = DEFINED(__ecall_inbuf_start)
+                                   ? . + ECALL_IBUF_SIZE
+                                   : . );
+    PROVIDE(__ecall_outbuf_end   = DEFINED(__ecall_inbuf_start)
+                                   ? . + ECALL_IBUF_SIZE + ECALL_OBUF_SIZE
+                                   : . );
+    /* This statement enforces correct section size since the location counter
+     * is not moved otherwise (only symbols are defined). However, if none of
+     * the symbols are needed and .ecall_zone is effectively empty, this
+     * statement also causes the linker not to remove the section (TODO?)
+     */
+    . = DEFINED(__ecall_inbuf_start)
+        ? . + ECALL_IBUF_SIZE + ECALL_OBUF_SIZE
+        : . ;
+  } : alloc
+
+  /* Section .malloc_zone and its symbols are used by the tiny malloc
+   * included in the Keystone enclave application libraries.
+   */
+  . = ALIGN(0x1000);
+  .malloc_zone (NOLOAD):
+  {
+    __malloc_zone_start = .;
+    /* '__malloc_start' defined in libeapp will be placed here: */
+    *(.malloc_zone);
+    PROVIDE(__malloc_start = .);
+    . = DEFINED(HEAP_SIZE) ? (. + HEAP_SIZE) : . ;
+     PROVIDE(__malloc_zone_stop = .);
+  } : alloc
+
+  . = ALIGN(0x4);
+  .bss :   { *(.bss)
+             *(.bss.*) } : bss
+
+  /* Unless specified, the linker by default outputs the .eh_frame section
+   * before the text section, which moves the text section from the page
+   * boundary, causing trouble with Eyrie, as the _start function will shift
+   * from its intended address 0x00001000.
+   */
+  /DISCARD/ : {
+    *(.eh_frame)
+  }
+  _end = .;
+}

libeapp/macros/Cargo.toml

@@ -0,0 +1,18 @@
+[package]
+name                 = "eapp-macros"
+version.workspace    = true
+edition.workspace    = true
+authors.workspace    = true
+repository.workspace = true
+readme.workspace     = true
+license.workspace    = true
+description          = """
+A macro for defining enclave application entry points
+"""
+
+[lib]
+proc-macro = true
+
+[dependencies]
+syn   = { version = "1.0.86", features = ["full", "extra-traits"] }
+quote = "1.0.15"