search

edgelesssys / edgelessdb

EdgelessDB is a MySQL-compatible database for confidential computing. It runs entirely inside a secure enclave and comes with advanced features for collaboration, recovery, and access control.
https://edgeless.systems/products/edgelessdb
GNU General Public License v2.0
170 stars 17 forks source link

Bug when process step 1 #132

Open Klein920116 opened 1 year ago

Klein920116 commented 1 year ago

When I run the command: docker run -t --name my-edb -p3306:3306 -p8080:8080 --device /dev/sgx_enclave --device /dev/sgx_provision ghcr.io/edgelesssys/edgelessdb-sgx-1gb

The errors show below:

root@zt-sgxtest105:/home/sscadmin# docker run -t --name my-edb -p3306:3306 -p8080:8080 --device /dev/sgx_enclave --device /dev/sgx_provision ghcr.io/edgelesssys/edgelessdb-sgx-1gb debconf: delaying package configuration, since apt-utils is not installed Selecting previously unselected package libsgx-dcap-default-qpl. (Reading database ... 4914 files and directories currently installed.) Preparing to unpack .../libsgx-dcap-default-qpl_1.15.100.3-focal1_amd64.deb ... Unpacking libsgx-dcap-default-qpl (1.15.100.3-focal1) ... Setting up libsgx-dcap-default-qpl (1.15.100.3-focal1) ... Processing triggers for libc-bin (2.31-0ubuntu9.9) ... PCCS_URL: https://172.17.0.1:8081/sgx/certification/v3/ [erthost] loading enclave ... [erthost] entering enclave ... [EDB] 2023/02/09 01:27:39 EdgelessDB v0.3.2 (619e16871072635985030083b3fc3536c2d7df01) [EDB] 2023/02/09 01:27:39 DB has not been initialized, waiting for manifest. ERROR: dcap_quoteprov: [ERROR]: [QCNL] Encountered CURL error: (7) Couldn't connect to server

ERROR: dcap_quoteprov: [ERROR]: [QPL] Failed to get quote config. Error code is 0xb006

[get_platform_quote_cert_data ../qe_logic.cpp:378] Error returned from the p_sgx_get_quote_config API. 0xe019 ERROR: quote3_error_t=SGX_QL_NETWORK_ERROR (oe_result_t=OE_PLATFORM_ERROR) [openenclave-src/host/sgx/sgxquote.c:oe_sgx_qe_get_target_info:706] [EDB] 2023/02/09 01:27:39 Failed to get quote: OE_PLATFORM_ERROR [EDB] 2023/02/09 01:27:39 Attestation will not be available. [EDB] 2023/02/09 01:27:39 HTTP REST API listening on :8080

What's going on? fail on first step

thomasten commented 1 year ago

Hi, For remote attestation to work, you need to configure it as explained here: https://docs.edgeless.systems/edgelessdb/getting-started/install#remote-attestation For testing, you may also ignore the error. EdgelessDB will still work, but can't be verified.