This is a document to guide developer run a KBS with IBM SE verifier locally for development purpose.
This section is about deployment of KBS without rvps checking.
Generate RSA 4096 key pair following commands:
openssl genrsa -aes256 -passout pass:test1234 -out encrypt_key-psw.pem 4096
openssl rsa -in encrypt_key-psw.pem -passin pass:test1234 -pubout -out encrypt_key.pub
openssl rsa -in encrypt_key-psw.pem -out encrypt_key.pemDonwload these materials from: https://www.ibm.com/support/resourcelink/api/content/public/secure-execution-gen2.html Which includes:
ibm-z-host-key-signing-gen2.crt DigiCertCA.crt
ibm-z-host-key-gen2.crl
Download IBM Secure Execution Host Key Document following: https://www.ibm.com/docs/en/linux-on-z?topic=execution-verify-host-key-document
Build se.img following Generate an IBM Secure Execution image and retrieve the hdr.bin via command like below.
./pvextract-hdr -o hdr.bin se.imgRefer ibm-s390-linux to get pvextract-hdr.
Generate keys used by KBS service.
openssl genpkey -algorithm ed25519 > kbs.key
openssl pkey -in kbs.key -pubout -out kbs.pem- Build KBS
cargo install --locked --debug --path kbs/src/kbs --no-default-features --features coco-as-builtin,openssl,resource,opa - Prepare the material retrieved above, similar as:
/run/confidential-containers/ibmse#
.
├── certs
│ ├── ibm-z-host-key-signing-gen2.crt
| └── DigiCertCA.crt
├── crls
│ └── ibm-z-host-key-gen2.crl
├── hdr
│ └── hdr.bin
├── hkds
│ └── HKD-3931-0275D38.crt
└── rsa
├── encrypt_key.pem
└── encrypt_key.pub
Note: alternative is to use system variables listed in ibmse.rs to overwrite the files.
- Prepare the
kbs-config.toml, similar as:
sockets = ["0.0.0.0:8080"]
auth_public_key = "/kbs/kbs.pem"
# Ideally we should use some solution like cert-manager to issue let's encrypt based certificate:
# https://cert-manager.io/docs/configuration/acme/
insecure_http = true
[attestation_token_config]
attestation_token_type = "CoCo"
[as_config]
work_dir = "/opt/confidential-containers/attestation-service"
policy_engine = "opa"
attestation_token_broker = "Simple"
[as_config.attestation_token_config]
duration_min = 5
[as_config.rvps_config]
store_type = "LocalFs"
remote_addr = ""
- Launch the KBS program
export RUST_LOG=debug
export SE_SKIP_CERTS_VERIFICATION=true
./kbs --config-file ./kbs-config.tomlNote:
SE_SKIP_CERTS_VERIFICATION=trueonly required for a development machine.
- Build the docker image
DOCKER_BUILDKIT=1 docker build --build-arg HTTPS_CRYPTO="openssl" --build-arg ARCH="s390x" -t ghcr.io/confidential-containers/staged-images/kbs:latest . -f kbs/docker/Dockerfile
Note: Please add
--debugin statement likecargo installin filekbs/docker/Dockerfileif you're using a development host key document to skip HKD's signature verification.
- Prepare a docker compose file, similar as:
services:
kbs:
image: ghcr.io/confidential-containers/staged-images/kbs:latest
command: [
"/usr/local/bin/kbs",
"--config-file",
"/etc/kbs-config.toml",
]
restart: always # keep the server running
environment:
- RUST_LOG=debug
- SE_SKIP_CERTS_VERIFICATION=true
ports:
- "8080:8080"
volumes:
- ./data/kbs-storage:/opt/confidential-containers/kbs/repository:rw
- ./data/attestation-service:/opt/confidential-containers/attestation-service:rw
- ./kbs.pem:/kbs/kbs.pem
- ./kbs-config.toml:/etc/kbs-config.toml
- ./data/hkds:/run/confidential-containers/ibmse/hkds
- ./data/certs:/run/confidential-containers/ibmse/certs
- ./data/crls:/run/confidential-containers/ibmse/crls
- ./data/hdr.bin:/run/confidential-containers/ibmse/hdr/hdr.bin
- ./data/rsa/encrypt_key.pem:/run/confidential-containers/ibmse/rsa/encrypt_key.pem
- ./data/rsa/encrypt_key.pub:/run/confidential-containers/ibmse/rsa/encrypt_key.pub
Note:
SE_SKIP_CERTS_VERIFICATION=trueonly required for a development machine.
- Prepare the material, similar as:
.
├── data
│ ├── attestation-service
│ │ ├── opa
│ │ │ └── default.rego
│ ├── certs
│ │ ├── ibm-z-host-key-signing-gen2.crt
│ │ └── DigiCertCA.crt
│ ├── crls
│ │ └── ibm-z-host-key-gen2.crl
│ ├── hdr.bin
│ ├── hkds
│ │ └── HKD-3931-0275D38.crt
│ ├── kbs-storage
│ │ ├── default
│ │ └── one
│ │ └── two
│ │ └── key
│ └── rsa
│ ├── encrypt_key.pem
│ └── encrypt_key.pub
├── docker-compose.yaml
├── kbs-config.toml
├── kbs.key
└── kbs.pem
- Launch KBS as docker compose application
docker-compose up -d
docker-compose logs kbs
docker-compose downThis section is about setting attestation policy.
Using se_parse_hdr.py on a s390x instance to retrieve the IBM SE fields for attestation policy.
python3 se_parse_hdr.py hdr.bin HKD-3931.crt
...
================================================
se.image_phkh: xxx
se.version: 256
se.tag: xxx
se.attestation_phkh: xxxWe get following fields and will set these fields in rvps for attestation policy.
se.version: 256
se.tag: xxx
se.attestation_phkh: xxx
se.image_phkh: xxx
cat << EOF > ibmse-policy.rego
package policy
import rego.v1
default allow = false
converted_version := sprintf("%v", [input["se.version"]])
allow if {
input["se.attestation_phkh"] == "xxx"
input["se.image_phkh"] == "xxx"
input["se.tag"] == "xxx"
input["se.user_data"] == "00"
converted_version == "256"
}
EOFWhere the values come from retrive-the-rvps-field-for-an-ibm-se-image
kbs-client --url http://127.0.0.1:8080 config --auth-private-key ./kbs/kbs.key set-attestation-policy --policy-file ./ibmse-policy.rego