commit 1c42f6c8273fcddcbd0614f53b1db90da9c089de
author sunhe05 <sunhe05@baidu.com> Thu Mar 23 02:27:28 2023 +0000
committer He Sun <sunhe2007@gmail.com> Thu Mar 23 13:51:50 2023 +0800
tree 3c7aaffad1074d938c3b97cdcf3f40a7d47d8d93
parent 37d8895e284780b7745fbec46a8126cbd4c93b43

Check the binding of the server certificate with the sgx quote

The fix is reported from https://github.com/mithril-security/poison-tea.

sdk/python/teaclave.py

diff --git a/sdk/python/teaclave.py b/sdk/python/teaclave.py
index 1dad615..2fec9cd 100644
--- a/sdk/python/teaclave.py
+++ b/sdk/python/teaclave.py
@@ -199,6 +199,21 @@
         quote = report['isvEnclaveQuoteBody']
         quote = base64.b64decode(quote)
 
+        # get report_data from the quote
+        report_data = quote[368:368 + 64]
+        # get EC pub key from the certificate
+        pub_key = cert.public_key().public_bytes(
+            cryptography.hazmat.primitives.serialization.Encoding.X962,
+            cryptography.hazmat.primitives.serialization.PublicFormat.
+            UncompressedPoint)
+
+        # verify whether the certificate is bound to the quote
+        assert (pub_key[0] == 4)
+        if pub_key[1:] != report_data:
+            raise TeaclaveException(
+                "Failed to verify the certificate agaist the report data in the quote"
+            )
+
         # get mr_enclave and mr_signer from the quote
         mr_enclave = quote[112:112 + 32].hex()
         mr_signer = quote[176:176 + 32].hex()