baremetal-coco: Add DCAP deployment for TDX

Let's set up a per-cluster PCCS, meaning:
* a single service that chaces all the DCAP collateral requests
* "indirect" DCAP registration, which stores the encrypted platform keys
  on PCCS
* PCCS database on a dedicated node, where the admin knows what to back
  up (if needed)

This is required in order to have attestation working for TDX, be it
using DCAP directly or ITA.

Signed-off-by: Fabiano Fidêncio <[email protected]>
Signed-off-by: Mikko Ylinen <[email protected]>

Author: fidencio

scripts/install-helpers/baremetal-coco/install.sh

@@ -9,6 +9,14 @@ SKIP_NFD="${SKIP_NFD:-false}"
 TRUSTEE_URL="${TRUSTEE_URL:-"http://kbs-service:8080"}"
 CMD_TIMEOUT="${CMD_TIMEOUT:-900}"
 
+export PCCS_API_KEY="${PCCS_API_KEY:-}"
+export PCCS_DB_NAME="${PCCS_DB_NAME:-database}"
+export PCCS_DB_USERNAME="${PCCS_DB_USERNAME:-username}"
+export PCCS_DB_PASSWORD="${PCCS_DB_PASSWORD:-password}"
+export PCCS_USER_TOKEN="${PCCS_USER_TOKEN:-}"
+PCCS_ADMIN_TOKEN="${PCCS_ADMIN_TOKEN:-}"
+PCCS_PEM_CERT_PATH="${PCCS_PEM_CERT_PATH:-}"
+
 # Function to check if a command is available
 function check_command() {
     local cmd="$1"
@@ -40,6 +48,29 @@ function wait_for_deployment() {
     return 1
 }
 
+# Function to wait for a daemonset deployment to be ready
+function wait_for_daemonset() {
+    local daemonset=$1
+    local namespace=$2
+    local timeout=$CMD_TIMEOUT
+    local interval=5
+    local elapsed=0
+    local ready=0
+
+    local total_pods=$(oc get daemonset -n "$namespace" "$daemonset" -o=jsonpath='{.status.desiredNumberScheduled}' 2>/dev/null)
+    while [ $elapsed -lt "$timeout" ]; do
+        pods_ready=$(oc get daemonset -n "$namespace" "$daemonset" -o=jsonpath='{.status.numberReady}' 2>/dev/null)
+        if [ "$total_pods" -eq "$pods_ready" ]; then
+            echo "Daemonset $daemonset is ready"
+            return 0
+        fi
+        sleep $interval
+        elapsed=$((elapsed + interval))
+    done
+    echo "Daemonset $deployment is not ready after $timeout seconds"
+    return 1
+}
+
 # Function to wait for service endpoints IP to be available
 # Example json for service endpoints. IP is available in the "addresses" field
 #  "subsets": [
@@ -247,6 +278,41 @@ function deploy_intel_device_plugins() {
     echo "Intel Device Plugins operator | deployment finished successfully"
 }
 
+function deploy_intel_dcap() {
+    echo "Intel DCAP | starting the deployment"
+
+    pushd intel-dcap || return 1
+    oc apply -f ns.yaml || return 1
+
+    oc project intel-dcap
+    oc adm policy add-scc-to-user privileged -z default
+    oc project default
+
+    local PCCS_NODE=$(oc get nodes -l 'node-role.kubernetes.io/control-plane=,node-role.kubernetes.io/master=' -o jsonpath='{.items[0].metadata.name}')
+    export PCCS_NODE
+    envsubst < pccs.yaml.in > pccs.yaml
+    oc apply -f pccs.yaml || return 1
+    wait_for_deployment pccs intel-dcap || return 1
+
+    local PCCS_URL=$(echo -n "https://pccs-service:8042" | base64 -w 0)
+    local SECURE_CERT=$(echo -n "false" | base64 -w 0)
+    local USER_TOKEN=$(echo -n $PCCS_USER_TOKEN | base64 -w 0)
+    local REGISTRATION_HTTP_PROXY=$(echo -n $HTTP_PROXY | base64 -w 0)
+    export PCCS_URL
+    export SECURE_CERT
+    export USER_TOKEN
+    export REGISTRATION_HTTP_PROXY
+    envsubst < registration-ds.yaml.in > registration-ds.yaml
+    oc apply -f registration-ds.yaml || return 1
+    wait_for_daemonset intel-dcap-registration-flow intel-dcap || return 1
+
+    oc apply -f qgs.yaml || return 1
+    wait_for_daemonset tdx-qgs intel-dcap || return 1
+    popd || return 1
+
+    echo "Intel DCAP | deployment finished successfully"
+}
+
 function create_amd_node_feature_rules() {
     echo "Node Feature Discovery operator | creating amd node feature rules"
 
@@ -415,6 +481,15 @@ function display_help() {
     echo "SKIP_NFD: Skip NFD operator installation and CR creation (default: false)"
     echo "TRUSTEE_URL: Trustee URL to be used in the kernel config (default: http://kbs-service:8080)"
     echo "CMD_TIMEOUT: Timeout for the commands (default: 900)"
+    echo " "
+    echo "Some environment variables required for TDX deployment:"
+    echo "PCCS_API_KEY: The API key from https://api.portal.trustedservices.intel.com/ (THIS MUST BE PROVIDED)"
+    echo "PCCS_DB_NAME: The name of the pccs database (if none is set, \"database\" will be used)"
+    echo "PCCS_DB_USERNAME: The name of the pccs database user (if none is set, \"username\" will be used)"
+    echo "PCCS_DB_PASSWORD: The password of the pccs database user (if none is set, \"password\" will be used)"
+    echo "PCCS_USER_TOKEN: the user token for the PCCS client user to register a platform (if none is set, \"mytoken\" will be used)"
+    echo "PCCS_ADMIN_TOKEN: the admin token for the PCCS client user to register a platform (if none is set, \"mytoken\" will be used)"
+    echo "PCCS_PEM_CERT_PATH: The path where PCK (private.pem) and PCK Cert (certificate.pem) can be found (if none is passed, a pccs_tls folder will be created in your \$HOME directory, where PKC and PKC Cert will be created and used)"
     # Add some example usage options
     echo " "
     echo "Example usage:"
@@ -465,6 +540,47 @@ function verify_params() {
         return 1
     fi
 
+    if [ "$TEE_TYPE" = "tdx" ]; then
+        if [ -z "$PCCS_API_KEY" ]; then
+            echo "PCCS_API_KEY is a required environment variable for TDX deployment"
+            display_help
+            return 1
+        fi
+
+        if [ -z "$PCCS_USER_TOKEN" ]; then
+            PCCS_USER_TOKEN="mytoken"
+        fi
+        export PCCS_USER_TOKEN_HASH=$(echo -n "$PCCS_USER_TOKEN" | sha512sum | tr -d '[:space:]-')
+
+        if [ -z "$PCCS_ADMIN_TOKEN" ]; then
+            PCCS_ADMIN_TOKEN="mytoken"
+        fi
+        export PCCS_ADMIN_TOKEN_HASH=$(echo -n "$PCCS_ADMIN_TOKEN" | sha512sum | tr -d '[:space:]-')
+
+        if [ -z "$PCCS_PEM_CERT_PATH" ]; then
+            PCCS_PEM_CERT_PATH="$HOME/pccs-tls"
+            mkdir -p "$PCCS_PEM_CERT_PATH"
+            pushd "$PCCS_PEM_CERT_PATH"
+            openssl req -x509 -sha256 -nodes -days 365 -newkey rsa:2048 -keyout private.pem -out certificate.pem -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=www.example.com"
+            popd
+        fi
+
+        if [ ! -f $PCCS_PEM_CERT_PATH/private.pem ]; then
+            echo "PCCS_PEM_CERT_PATH does NOT contain a private.pem file, required for TDX deployment"
+            display_help
+            return 1
+        fi
+
+        if [ ! -f $PCCS_PEM_CERT_PATH/certificate.pem ]; then
+            echo "PCCS_PEM_CERT_PATH does NOT contain a certificate.pem file, required for TDX deployment"
+            display_help
+            return 1
+        fi
+
+        export PCCS_PEM=$(cat $PCCS_PEM_CERT_PATH/private.pem | base64 | tr -d '\n')
+        export PCCS_CERT=$(cat $PCCS_PEM_CERT_PATH/certificate.pem | base64 | tr -d '\n')
+    fi
+
     # If ADD_IMAGE_PULL_SECRET is true,  then check if PULL_SECRET_JSON is set
     if [ "$ADD_IMAGE_PULL_SECRET" = true ] && [ -z "$PULL_SECRET_JSON" ]; then
         echo "ADD_IMAGE_PULL_SECRET is set but required environment variable: PULL_SECRET_JSON is not set"
@@ -473,6 +589,19 @@ function verify_params() {
 
 }
 
+function uninstall_intel_dcap() {
+    echo "Intel DCAP | starting the uninstall"
+
+    pushd intel-dcap || return 1
+    oc delete -f qgs.yaml || return 1
+    oc delete -f registration-ds.yaml || return 1
+    oc delete -f pccs.yaml || return 1
+    oc delete -f ns.yaml || return 1
+    popd || return 1
+
+    echo "Intel DCAP | deployment uninstalled successfully"
+}
+
 function uninstall_intel_device_plugins() {
     echo "Intel Device Plugins operator | starting the uninstall"
 
@@ -514,6 +643,7 @@ function uninstall() {
     echo "Uninstalling all the artifacts"
 
     if [ "$TEE_TYPE" = "tdx" ]; then
+        uninstall_intel_dcap || exit 1
         uninstall_intel_device_plugins || exit 1
     fi
 
@@ -689,6 +819,7 @@ if [ "$SKIP_NFD" = false ]; then
     tdx)
         create_intel_node_feature_rules || exit 1
         deploy_intel_device_plugins || exit 1
+        deploy_intel_dcap || exit 1
         ;;
     snp)
         create_amd_node_feature_rules || exit 1

scripts/install-helpers/baremetal-coco/intel-dcap/ns.yaml

@@ -0,0 +1,4 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: intel-dcap

scripts/install-helpers/baremetal-coco/intel-dcap/pccs.yaml.in

@@ -0,0 +1,123 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: pccs-config
+  namespace: intel-dcap
+data:
+  default.json: |
+    {
+      "HTTPS_PORT" : 8042,
+      "hosts" : "0.0.0.0",
+      "uri": "https://api.trustedservices.intel.com/sgx/certification/v4/",
+      "ApiKey" : "${PCCS_API_KEY}",
+      "proxy" : "${HTTP_PROXY}",
+      "RefreshSchedule": "0 0 1 * * *",
+      "UserTokenHash" : "${PCCS_USER_TOKEN_HASH}",
+      "AdminTokenHash" : "${PCCS_ADMIN_TOKEN_HASH}",
+      "CachingFillMode" : "LAZY",
+      "OPENSSL_FIPS_MODE" : false,
+      "LogLevel" : "info",
+      "DB_CONFIG" : "sqlite",
+      "sqlite" : {
+        "database" : "${PCCS_DB_NAME}",
+        "username" : "${PCCS_DB_USERNAME}",
+        "password" : "${PCCS_DB_PASSWORD}",
+        "options" : {
+          "host": "localhost",
+          "dialect": "sqlite",
+          "pool": {
+            "max": 5,
+            "min": 0,
+            "acquire": 30000,
+            "idle": 10000
+          },
+          "define": {
+            "freezeTableName": true
+          },
+          "logging" : true,
+          "storage": "/var/cache/pccs/pckcache.db"
+        }
+      }
+    }
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: pccs-tls
+  namespace: intel-dcap
+type: Opaque
+data:
+  private.pem: ${PCCS_PEM}
+  file.crt: ${PCCS_CERT}
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: pccs-service
+  namespace: intel-dcap
+spec:
+  selector:
+    trustedservices.intel.com/cache: pccs
+  ports:
+  - name: pccs
+    protocol: TCP
+    port: 8042
+    targetPort: pccs-port
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: pccs
+  namespace: intel-dcap
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: pccs
+  template:
+    metadata:
+      labels:
+        app: pccs
+        trustedservices.intel.com/cache: pccs
+    spec:
+      nodeSelector:
+        kubernetes.io/hostname: ${PCCS_NODE}
+      initContainers:
+       - name: init-seclabel
+         image: quay.io/fidencio/init-seclabel:latest
+         command: ["sh", "-c", "chcon -Rt container_file_t /var/cache/pccs"]
+         volumeMounts:
+         - name: host-database
+           mountPath: /var/cache/pccs
+         securityContext:
+           runAsUser: 0
+           runAsGroup: 0
+           privileged: true  # Required for chcon to work on host files
+      containers:
+        - name: pccs
+          image: quay.io/fidencio/dcap/pccs:1.21
+          ports:
+            - containerPort: 8042
+              name: pccs-port
+          volumeMounts:
+            - name: pccs-tls
+              mountPath: /opt/intel/pccs/ssl_key
+              readOnly: true
+            - name: pccs-config
+              mountPath: /opt/intel/pccs/config
+              readOnly: true
+            - name: host-database
+              mountPath: /var/cache/pccs/
+          securityContext:
+            runAsUser: 0
+      volumes:
+        - name: pccs-tls
+          secret:
+            secretName: pccs-tls
+        - name: pccs-config
+          configMap:
+            name: pccs-config
+        - name: host-database
+          hostPath:
+            path: /var/cache/pccs/
+            type: DirectoryOrCreate

scripts/install-helpers/baremetal-coco/intel-dcap/qgs.yaml

@@ -0,0 +1,70 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: qgs-config
+  namespace: intel-dcap
+data:
+  qgs.conf: |
+    port = 4050
+    number_threads = 4
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: sgx-default-qcnl-conf
+  namespace: intel-dcap
+data:
+  sgx_default_qcnl.conf: |
+    {
+      "pccs_url": https://pccs-service:8042/sgx/certification/v4",
+      "use_secure_cert": false,
+      "retry_times": 6,
+      "retry_delay": 10,
+      "pck_cache_expire_hours": 168,
+      "verify_collateral_cache_expire_hours": 168,
+      "local_cache_only": false
+    }
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: tdx-qgs
+  namespace: intel-dcap
+spec:
+  nodeSelector:
+    intel.feature.node.kubernetes.io/tdx: true
+  selector:
+    matchLabels:
+      app: tdx-qgs
+  template:
+    metadata:
+      labels:
+        app: tdx-qgs
+      annotations:
+        sgx.intel.com/quote-provider: tdx-qgs
+    spec:
+      hostNetwork: true
+      containers:
+        - name: tdx-qgs
+          image: quay.io/fidencio/dcap/tdx-qgs:1.21
+          workingDir: /opt/intel/tdx-qgs
+          securityContext:
+            readOnlyRootFilesystem: true
+            allowPrivilegeEscalation: false
+          resources:
+            limits:
+              sgx.intel.com/epc: "512Ki"
+          volumeMounts:
+            - name: qgs-config
+              mountPath: /etc/qgs.conf
+              subPath: qgs.conf
+            - name: sgx-default-qcnl-conf
+              mountPath: /etc/sgx_default_qcnl.conf
+              subPath: sgx_default_qcnl.conf
+      volumes:
+        - name: qgs-config
+          configMap:
+            name: qgs-config
+        - name: sgx-default-qcnl-conf
+          configMap:
+            name: sgx-default-qcnl-conf