Skip to content

Latest commit

 

History

History

verify

README.md

Attestation Verification

This directory contains instructions and code for verifying the oracle running inside the TEE.

Here's a high-level diagram of the steps needed to fully verify the oracle:

  1. Verify that the docker image was converted into the enclave image correctly.
  2. Verify an oracle attestation by pulling it from the chain and checking that it is correctly signed by AWS, and that it corresponds to the enclave image hash.

We explain below how to execute both verification steps below.

0. Prerequisites

System requirements:

  • An AWS EC2 instance with Nitro Enclave support (we have tested on m5.xlarge EC2 instance).
    • You must enable the "Nitro Enclave enabled" option when creating the instance
    • Amazon Linux (tested on Amazon Linux 2023 AMI 2023.3.20240312.0 x86_64 HVM kernel-6.1)
    • x86_64 architecture CPU
    • It is easiest to use an EC2 image with Docker and nitro-cli installed
    • If you want to support a different linux distro, you need additional configuration
    • If the Nitro Enclave kernel driver is not included on chosen linux kernel, it needs to be installed manually. See more here

For Amazon Linux:

sudo yum update -y
sudo dnf install aws-nitro-enclaves-cli -y
sudo dnf install aws-nitro-enclaves-cli-devel -y
sudo systemctl enable --now nitro-enclaves-allocator.service
sudo usermod -aG ne $USER

sudo yum install docker -y
sudo systemctl start docker
sudo systemctl enable docker
sudo usermod -a -G docker $(whoami)

sudo yum install python-pip -y

sudo reboot

1. Create the enclave image

nitro-cli build-enclave --docker-uri "ghcr.io/galadriel-ai/aws_enclave:v0.0.2" --output-file "galadriel.eif"

You need to get exactly the same hashes:

Enclave Image successfully created.
{
  "Measurements": {
    "HashAlgorithm": "Sha384 { ... }",
    "PCR0": "b3a233e8a1d2682455777643d5a793c9d231754ebd89e8ffc14b07a21da0de07920763e87f8cc6eb3a6d362beeb4f541",
    "PCR1": "52b919754e1643f4027eeee8ec39cc4a2cb931723de0c93ce5cc8d407467dc4302e86490c01c0d755acfe10dbf657546",
    "PCR2": "3bf7565751ec5865be41221c62fc7e69429a0d9a219a91ba858fd4b2fa31fac6cc416d5eca29cc9405a83749c896e494"
  }
}

Setup Python

python3 -m pip install -r requirements.txt
python3 -m pip install --upgrade pyOpenSSL

2. Verify attestation

Optionally, you can download the root.pem from Amazon and verify it is the same as the root.pem in this repo: https://aws-nitro-enclaves.amazonaws.com/AWS_NitroEnclaves_Root-G1.zip

Verify with pcr0 hash
This uses the attestation_doc_b64.txt file

# The argument is the PCR0 from the enclave image build step.
python3 verify.py --pcr0_hash b3a233e8a1d2682455777643d5a793c9d231754ebd89e8ffc14b07a21da0de07920763e87f8cc6eb3a6d362beeb4f541

Verify with oracle address

python3 verify.py --oracle_address 0xAEF14f51b3716F6CeDc483DDB3fBE1C30D084457

Verify with a transaction hash made by the oracle

python3 verify.py --tx_hash 0xd7dccc2479a78b6f711673f4a49f022a28ff5daafcf8b267cae236b6da49a690