EdgelessDB is a MySQL-compatible database for confidential computing. It runs entirely inside a secure enclave and comes with advanced features for collaboration, recovery, and access control.
Generate a quote for the temporary certificate upon entering recovery mode
Add the URL to the "Recovery" documentation (this was a TODO that never was finished :P)
Add quote checking to the integration test. Requires DCAP_TEST_ENABLED to be set to "1" and a path to the SGX config to be provided to enable.
The combination of the two options is required, since we want to:
Keep using ctestand just toggle DCAP on and off.
Cannot trivially distinguish between an enclave binary and a no-enclave binary (TEST_DCAP_ENABLED is passed to both versions when called with ctest, but only works with enclave binaries, and the edb "binary" we usually use is a shell script and not an ELF)
Need the path to the SGX config to attestate against (unless we want to make assumptions about the path and filename which might break things in certain conditions).
Add quote checking to the integration test. Requires DCAP_TEST_ENABLED to be set to "1" and a path to the SGX config to be provided to enable.
The combination of the two options is required, since we want to:
ctest
and just toggle DCAP on and off.ctest
, but only works with enclave binaries, and theedb
"binary" we usually use is a shell script and not an ELF)Fixes #91