-
#3526 adds PROVISION key and EINIT key support, and its test cases require setting the `PROVISION_KEY` attribute bit for the test enclaves, which is however disallowed in the test environment by bors.…
-
OE SDK uses various tools and 3rd party libraries.
Here are the notables ones:
- compilers: clang (for SGX), GCC (for OPTEE)
- Linkers: Special linkers for LVI mitigation
- Formatters: clang-for…
-
I am trying to sign an enclave library that I have created that includes a Haskell runtime and other facilities. I was wondering what input does the signer require to sign the enclave library? Is it a…
-
Hi,
I want to call [create key](https://docs.aws.amazon.com/kms/latest/APIReference/API_CreateKey.html) with a predefined key policy to generate an asymmetric CMK, and check the `include/aws/nitro_…
-
When we do verification on SGX platform, we need enhancements to return other 'collateral' (to be specified).
in SEV, we check platform properties, e.g. if debug is turned ON, if you can share keys…
-
I have searched through the documentation and made some experiments.
Yet i have not figured out what the maximum amount of vCPUs and memory i could allocate to an enclave is.
Have you done these t…
-
### Background & motivation
Currently `upload_files` allows to pass the GitHub URL, I have a usecase where I wish to upload files from my local machine into kurtosis enclave. The files are present …
-
The Readme file does not say this can only be done on Linux, and enclaves are OS-agnostic.
Please either add the equivalent steps for Windows, or state how to install the prerequisites so the command…
-
Currently, page-fault attack code is rather unclean and has a lot of code duplication to setup fault handlers and revoke enclave page permissions through either `mprotect` calls and/or PTE remapping +…
-
I wonder if the current ``BoringSSL`` wrapper is actually benefiting from the trusted hardware (see https://github.com/google/channel-id-enclave/tree/master/boringssl). Simply put, are the secrets (pr…
mr-ma updated
6 years ago